Re: [PATCH 08/11] sockets: Fix socket_sockaddr_to_address

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH 08/11] sockets: Fix socket_sockaddr_to_address_unix() for abs

From:	Eric Blake
Subject:	Re: [PATCH 08/11] sockets: Fix socket_sockaddr_to_address_unix() for abstract sockets
Date:	Fri, 30 Oct 2020 07:39:07 -0500
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.3.1

On 10/30/20 4:04 AM, Markus Armbruster wrote:

>>> +    addr->u.q_unix.path = g_strdup(su->sun_path);
>>
>> This is wrong on at least Linux, where su->sun_path need not be
>> NUL-terminated (allowing file-system Unix sockets to have one more byte
>> in their name);
> 
> Out of curiosity: is this usage portable?  I tried man pages and SUS, no
> luck.

On Linux, 'man 7 unix' says:

> BUGS
>        When binding a socket to an address, Linux is one  of  the  implementa‐
>        tions  that  appends a null terminator if none is supplied in sun_path.
>        In most cases  this  is  unproblematic:  when  the  socket  address  is
>        retrieved,  it  will  be  one  byte  longer than that supplied when the
>        socket was bound.  However, there is one case where confusing  behavior
>        can  result: if 108 non-null bytes are supplied when a socket is bound,
>        then the addition of the null terminator takes the length of the  path‐
>        name beyond sizeof(sun_path).  Consequently, when retrieving the socket
>        address (for example, via accept(2)), if the input addrlen argument for
>        the  retrieving  call  is specified as sizeof(struct sockaddr_un), then
>        the  returned  address  structure  won't  have  a  null  terminator  in
>        sun_path.
> 
>        In  addition, some implementations don't require a null terminator when
>        binding a socket (the addrlen argument is used to determine the  length
>        of  sun_path)  and when the socket address is retrieved on these imple‐
>        mentations, there is no null terminator in sun_path.

along with advice on using strnlen and/or overallocation to handle
various cases in a cleaner manner, and the caveat that if you always use
a name smaller than sun_path you can avoid the tricky code (at the
expense of one byte less in your namespace).

-- 
Eric Blake, Principal Software Engineer
Red Hat, Inc.           +1-919-301-3226
Virtualization:  qemu.org | libvirt.org

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH 03/11] test-util-sockets: Clean up SocketAddress construction, (continued)
- [PATCH 03/11] test-util-sockets: Clean up SocketAddress construction, Markus Armbruster, 2020/10/29
  - Re: [PATCH 03/11] test-util-sockets: Clean up SocketAddress construction, Eric Blake, 2020/10/29
  - Re: [PATCH 03/11] test-util-sockets: Clean up SocketAddress construction, Daniel P . Berrangé, 2020/10/30
- [PATCH 04/11] test-util-sockets: Factor out test_socket_unix_abstract_one(), Markus Armbruster, 2020/10/29
  - Re: [PATCH 04/11] test-util-sockets: Factor out test_socket_unix_abstract_one(), Eric Blake, 2020/10/29
- [PATCH 08/11] sockets: Fix socket_sockaddr_to_address_unix() for abstract sockets, Markus Armbruster, 2020/10/29
  - Re: [PATCH 08/11] sockets: Fix socket_sockaddr_to_address_unix() for abstract sockets, Paolo Bonzini, 2020/10/29
    - Re: [PATCH 08/11] sockets: Fix socket_sockaddr_to_address_unix() for abstract sockets, Markus Armbruster, 2020/10/30
  - Re: [PATCH 08/11] sockets: Fix socket_sockaddr_to_address_unix() for abstract sockets, Eric Blake, 2020/10/29
    - Re: [PATCH 08/11] sockets: Fix socket_sockaddr_to_address_unix() for abstract sockets, Markus Armbruster, 2020/10/30
    - Re: [PATCH 08/11] sockets: Fix socket_sockaddr_to_address_unix() for abstract sockets, Eric Blake <=
- [PATCH 02/11] test-util-sockets: Correct to set has_abstract, has_tight, Markus Armbruster, 2020/10/29
  - Re: [PATCH 02/11] test-util-sockets: Correct to set has_abstract, has_tight, Eric Blake, 2020/10/29
- [PATCH 01/11] test-util-sockets: Plug file descriptor leak, Markus Armbruster, 2020/10/29
  - Re: [PATCH 01/11] test-util-sockets: Plug file descriptor leak, Eric Blake, 2020/10/29
- [PATCH 05/11] test-util-sockets: Synchronize properly, don't sleep(1), Markus Armbruster, 2020/10/29
  - Re: [PATCH 05/11] test-util-sockets: Synchronize properly, don't sleep(1), Eric Blake, 2020/10/29
    - Re: [PATCH 05/11] test-util-sockets: Synchronize properly, don't sleep(1), Markus Armbruster, 2020/10/30
- [PATCH 07/11] sockets: Fix default of UnixSocketAddress member @tight, Markus Armbruster, 2020/10/29
  - Re: [PATCH 07/11] sockets: Fix default of UnixSocketAddress member @tight, Paolo Bonzini, 2020/10/29
    - Re: [PATCH 07/11] sockets: Fix default of UnixSocketAddress member @tight, Paolo Bonzini, 2020/10/29

Prev by Date: Re: [PATCH 2/2] tests/9pfs: fix coverity error in create_local_test_dir()
Next by Date: Re: [PATCH 00/12] block/export: vhost-user-blk server cleanups and tests
Previous by thread: Re: [PATCH 08/11] sockets: Fix socket_sockaddr_to_address_unix() for abstract sockets
Next by thread: [PATCH 02/11] test-util-sockets: Correct to set has_abstract, has_tight
Index(es):
- Date
- Thread