From fcae272638b490160419b555091a5cbe2b052acc Mon Sep 17 00:00:00 2001
From: Con Kolivas <kernel@kolivas.org>
Date: Fri, 29 Aug 2014 20:41:29 +1000
Subject: [PATCH] Disallow slashes in usernames

---
 src/stratifier.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/src/stratifier.c b/src/stratifier.c
index 6d073c36..cef3e8d6 100644
--- a/src/stratifier.c
+++ b/src/stratifier.c
@@ -1430,6 +1430,10 @@ static json_t *parse_authorise(stratum_instance_t *client, json_t *params_val, j
 		*err_val = json_string("Empty username parameter");
 		goto out;
 	}
+	if (strchr(buf, '/')) {
+		*err_val = json_string("Invalid character in username");
+		goto out;
+	}
 	user_instance = client->user_instance = authorise_user(client->ckp, buf);
 	client->user_id = user_instance->id;
 	ts_realtime(&now);