From 5ea84e17c03dc86222fbda5c60f2ff00152b8017 Mon Sep 17 00:00:00 2001
From: wm4 <wm4@nowhere>
Date: Mon, 1 Sep 2014 00:12:47 +0200
Subject: player: don't allow remote playlists to load local files

Because that might be a bad idea.

Note that remote playlists still can use any protocol marked with
is_safe and is_network, because the case of http-hosted playlists
containing URLs using other streaming protocols is not unusual.
---
 stream/stream_lavf.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'stream/stream_lavf.c')

diff --git a/stream/stream_lavf.c b/stream/stream_lavf.c
index 2270831b88..5702ec228c 100644
--- a/stream/stream_lavf.c
+++ b/stream/stream_lavf.c
@@ -324,10 +324,10 @@ const stream_info_t stream_info_ffmpeg = {
   .protocols = (const char *const[]){
      "rtmp", "rtsp", "http", "https", "mms", "mmst", "mmsh", "mmshttp", "rtp",
      "httpproxy", "hls", "rtmpe", "rtmps", "rtmpt", "rtmpte", "rtmpts", "srtp",
-     "md5",
      NULL },
   .can_write = true,
   .is_safe = true,
+  .is_network = true,
 };
 
 // Unlike above, this is not marked as safe, and can contain protocols which
@@ -338,7 +338,7 @@ const stream_info_t stream_info_ffmpeg_unsafe = {
   .name = "ffmpeg",
   .open = open_f,
   .protocols = (const char *const[]){
-     "lavf", "ffmpeg", "udp", "ftp", "tcp", "tls", "unix", "sftp",
+     "lavf", "ffmpeg", "udp", "ftp", "tcp", "tls", "unix", "sftp", "md5",
      NULL },
   .can_write = true,
 };
-- 
cgit v1.2.3