proxmox-mirrors/mirror_lxc
1
0
Fork 0
mirror of https://git.proxmox.com/git/mirror_lxc synced 2025-07-27 16:18:16 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

tree-wide: harden mount option parsing

Browse Source 
Signed-off-by: Christian Brauner <christian.brauner@ubuntu.com>
This commit is contained in:
Christian Brauner 2020-03-26 12:51:31 +01:00
parent 591f6f44a7
commit a08bfbe340
No known key found for this signature in database
GPG Key ID: 8EB056D53EECB12D
11 changed files with 77 additions and 53 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
src/include/strlcat.c
View File

@ -27,11 +27,13 @@
#include "strlcpy.h" #include "strlcpy.h"
#endif #endif
size_t strlcat(char *d, const char *s, size_t n) size_t strlcat(char *src, const char *append, size_t len)
{ {
size_t l = strnlen(d, n); size_t src_len;
if (l == n)
return l + strlen(s);
return l + strlcpy(d + l, s, n - l); src_len = strnlen(src, len);
if (src_len == len)
return src_len + strlen(append);
return src_len + strlcpy(src + src_len, append, len - src_len);
} }

2
src/include/strlcat.h
View File

@ -24,6 +24,6 @@
#include <stdio.h> #include <stdio.h>
extern size_t strlcat(char *d, const char *s, size_t n); extern size_t strlcat(char *src, const char *append, size_t len);
#endif #endif

70
src/lxc/conf.c
View File

@ -1694,61 +1694,70 @@ static int lxc_setup_console(const struct lxc_rootfs *rootfs,
return lxc_setup_ttydir_console(rootfs, console, ttydir); return lxc_setup_ttydir_console(rootfs, console, ttydir);
} }
static void parse_mntopt(char *opt, unsigned long *flags, char **data, size_t size) static int parse_mntopt(char *opt, unsigned long *flags, char **data, size_t size)
{ {
struct mount_opt *mo; ssize_t ret;
/* If '=' is contained in opt, the option must go into data. */ /* If '=' is contained in opt, the option must go into data. */
if (!strchr(opt, '=')) { if (!strchr(opt, '=')) {
/*
/* If opt is found in mount_opt, set or clear flags. * If opt is found in mount_opt, set or clear flags.
* Otherwise append it to data. */ * Otherwise append it to data.
*/
size_t opt_len = strlen(opt); size_t opt_len = strlen(opt);
for (mo = &mount_opt[0]; mo->name != NULL; mo++) { for (struct mount_opt *mo = &mount_opt[0]; mo->name != NULL; mo++) {
size_t mo_name_len = strlen(mo->name); size_t mo_name_len = strlen(mo->name);
if (opt_len == mo_name_len && strncmp(opt, mo->name, mo_name_len) == 0) { if (opt_len == mo_name_len && strncmp(opt, mo->name, mo_name_len) == 0) {
if (mo->clear) if (mo->clear)
*flags &= ~mo->flag; *flags &= ~mo->flag;
else else
*flags |= mo->flag; *flags |= mo->flag;
return; return 0;
} }
} }
} }
if (strlen(*data)) if (strlen(*data)) {
(void)strlcat(*data, ",", size); ret = strlcat(*data, ",", size);
if (ret < 0)
return log_error_errno(ret, errno, "Failed to append \",\" to %s", *data);
}
(void)strlcat(*data, opt, size); ret = strlcat(*data, opt, size);
if (ret < 0)
return log_error_errno(ret, errno, "Failed to append \"%s\" to %s", opt, *data);
return 0;
} }
int parse_mntopts(const char *mntopts, unsigned long *mntflags, char **mntdata) int parse_mntopts(const char *mntopts, unsigned long *mntflags, char **mntdata)
{ {
__do_free char *data = NULL, *s = NULL; __do_free char *mntopts_new = NULL, *mntopts_dup = NULL;
char *p; char *mntopt_cur = NULL;
size_t size; size_t size;
*mntdata = NULL; if (*mntdata || *mntflags)
*mntflags = 0L; return ret_errno(EINVAL);
if (!mntopts) if (!mntopts)
return 0; return 0;
s = strdup(mntopts); mntopts_dup = strdup(mntopts);
if (!s) if (!mntopts_dup)
return -1; return ret_errno(ENOMEM);
size = strlen(s) + 1; size = strlen(mntopts_dup) + 1;
data = malloc(size); mntopts_new = zalloc(size);
if (!data) if (!mntopts_new)
return -1; return ret_errno(ENOMEM);
*data = 0;
lxc_iterate_parts(p, s, ",") lxc_iterate_parts(mntopt_cur, mntopts_dup, ",")
parse_mntopt(p, mntflags, &data, size); if (parse_mntopt(mntopt_cur, mntflags, &mntopts_new, size) < 0)
return ret_errno(EINVAL);
if (*data) if (*mntopts_new)
*mntdata = move_ptr(data); *mntdata = move_ptr(mntopts_new);
return 0; return 0;
} }
@ -2001,11 +2010,10 @@ static inline int mount_entry_on_generic(struct mntent *mntent,
const char *lxc_path) const char *lxc_path)
{ {
__do_free char *mntdata = NULL; __do_free char *mntdata = NULL;
int ret; unsigned long mntflags = 0, pflags = 0;
unsigned long mntflags;
bool dev, optional, relative;
unsigned long pflags = 0;
char *rootfs_path = NULL; char *rootfs_path = NULL;
int ret;
bool dev, optional, relative;
optional = hasmntopt(mntent, "optional") != NULL; optional = hasmntopt(mntent, "optional") != NULL;
dev = hasmntopt(mntent, "dev") != NULL; dev = hasmntopt(mntent, "dev") != NULL;
@ -2030,7 +2038,7 @@ static inline int mount_entry_on_generic(struct mntent *mntent,
ret = parse_mntopts(mntent->mnt_opts, &mntflags, &mntdata); ret = parse_mntopts(mntent->mnt_opts, &mntflags, &mntdata);
if (ret < 0) if (ret < 0)
return -1; return ret;
ret = mount_entry(mntent->mnt_fsname, path, mntent->mnt_type, mntflags, ret = mount_entry(mntent->mnt_fsname, path, mntent->mnt_type, mntflags,
pflags, mntdata, optional, dev, relative, rootfs_path); pflags, mntdata, optional, dev, relative, rootfs_path);

2
src/lxc/confile.c
View File

@ -2572,9 +2572,9 @@ static int set_config_rootfs_mount(const char *key, const char *value,
static int set_config_rootfs_options(const char *key, const char *value, static int set_config_rootfs_options(const char *key, const char *value,
struct lxc_conf *lxc_conf, void *data) struct lxc_conf *lxc_conf, void *data)
{ {
int ret;
unsigned long mflags = 0, pflags = 0; unsigned long mflags = 0, pflags = 0;
char *mdata = NULL, *opts = NULL; char *mdata = NULL, *opts = NULL;
int ret;
struct lxc_rootfs *rootfs = &lxc_conf->rootfs; struct lxc_rootfs *rootfs = &lxc_conf->rootfs;
ret = parse_mntopts(value, &mflags, &mdata); ret = parse_mntopts(value, &mflags, &mdata);

4
src/lxc/criu.c
View File

@ -367,9 +367,9 @@ static void exec_criu(struct cgroup_ops *cgroup_ops, struct lxc_conf *conf,
goto err; goto err;
while (getmntent_r(mnts, &mntent, buf, sizeof(buf))) { while (getmntent_r(mnts, &mntent, buf, sizeof(buf))) {
char *mntdata; unsigned long flags = 0;
char *mntdata = NULL;
char arg[2 * PATH_MAX + 2]; char arg[2 * PATH_MAX + 2];
unsigned long flags;
if (parse_mntopts(mntent.mnt_opts, &flags, &mntdata) < 0) if (parse_mntopts(mntent.mnt_opts, &flags, &mntdata) < 0)
goto err; goto err;

4
src/lxc/storage/btrfs.c
View File

@ -192,8 +192,8 @@ bool btrfs_detect(const char *path)
int btrfs_mount(struct lxc_storage *bdev) int btrfs_mount(struct lxc_storage *bdev)
{ {
unsigned long mntflags; unsigned long mntflags = 0;
char *mntdata; char *mntdata = NULL;
const char *src; const char *src;
int ret; int ret;

4
src/lxc/storage/dir.c
View File

@ -138,9 +138,9 @@ bool dir_detect(const char *path)
int dir_mount(struct lxc_storage *bdev) int dir_mount(struct lxc_storage *bdev)
{ {
int ret; char *mntdata = NULL;
unsigned long mflags = 0, mntflags = 0, pflags = 0; unsigned long mflags = 0, mntflags = 0, pflags = 0;
char *mntdata; int ret;
const char *src; const char *src;
if (strcmp(bdev->type, "dir")) if (strcmp(bdev->type, "dir"))

7
src/lxc/storage/overlay.c
View File

@ -342,13 +342,12 @@ bool ovl_detect(const char *path)
int ovl_mount(struct lxc_storage *bdev) int ovl_mount(struct lxc_storage *bdev)
{ {
__do_free char *options = NULL, __do_free char *options = NULL, *options_work = NULL;
*options_work = NULL; unsigned long mntflags = 0;
char *mntdata = NULL;
char *tmp, *dup, *lower, *upper; char *tmp, *dup, *lower, *upper;
char *work, *lastslash; char *work, *lastslash;
size_t len, len2; size_t len, len2;
unsigned long mntflags;
char *mntdata;
int ret, ret2; int ret, ret2;
if (strcmp(bdev->type, "overlay") && strcmp(bdev->type, "overlayfs")) if (strcmp(bdev->type, "overlay") && strcmp(bdev->type, "overlayfs"))

5
src/lxc/storage/storage_utils.c
View File

@ -315,9 +315,8 @@ int find_fstype_cb(char *buffer, void *data)
const char *target; const char *target;
const char *options; const char *options;
} *cbarg = data; } *cbarg = data;
unsigned long mntflags = 0;
unsigned long mntflags; char *mntdata = NULL;
char *mntdata;
char *fstype; char *fstype;
/* we don't try 'nodev' entries */ /* we don't try 'nodev' entries */

5
src/lxc/storage/zfs.c
View File

@ -159,11 +159,12 @@ bool zfs_detect(const char *path)
int zfs_mount(struct lxc_storage *bdev) int zfs_mount(struct lxc_storage *bdev)
{ {
unsigned long mntflags = 0;
char *mntdata = NULL;
int ret; int ret;
size_t oldlen, newlen, totallen; size_t oldlen, newlen, totallen;
char *mntdata, *tmp; char *tmp;
const char *src; const char *src;
unsigned long mntflags;
char cmd_output[PATH_MAX] = {0}; char cmd_output[PATH_MAX] = {0};
if (strcmp(bdev->type, "zfs")) if (strcmp(bdev->type, "zfs"))

15
src/lxc/string_utils.h
View File

@ -10,6 +10,10 @@
#include "initutils.h" #include "initutils.h"
#include "macro.h" #include "macro.h"
#ifndef HAVE_STRLCAT
#include "include/strlcat.h"
#endif
/* convert variadic argument lists to arrays (for execl type argument lists) */ /* convert variadic argument lists to arrays (for execl type argument lists) */
extern char **lxc_va_arg_list_to_argv(va_list ap, size_t skip, int do_strdup); extern char **lxc_va_arg_list_to_argv(va_list ap, size_t skip, int do_strdup);
extern const char **lxc_va_arg_list_to_argv_const(va_list ap, size_t skip); extern const char **lxc_va_arg_list_to_argv_const(va_list ap, size_t skip);
@ -103,4 +107,15 @@ static inline bool is_empty_string(const char *s)
return !s || strcmp(s, "") == 0; return !s || strcmp(s, "") == 0;
} }
static inline ssize_t safe_strlcat(char *src, const char *append, size_t len)
{
size_t new_len;
new_len = strlcat(src, append, len);
if (new_len >= len)
return ret_errno(EINVAL);
return (ssize_t)new_len;
}
#endif /* __LXC_STRING_UTILS_H */ #endif /* __LXC_STRING_UTILS_H */