mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2025-01-11 15:27:47 +00:00
better error checking for LOCAL_PEERCRED
This patch improves the error checking in the LOCAL_PEERCRED version
of virNetSocketGetUNIXIdentity, used by FreeBSD and Mac OSX.
1. The error return paths now correctly unlock the socket. This is
implemented in exactly the same way as the SO_PEERCRED version,
using "goto cleanup"
2. cr.cr_ngroups is initialised to -1, and cr.cr_ngroups is checked
for negative and overlarge values.
This means that if the getsockopt() call returns success but doesn't
actually update the xucred structure, this is now caught. This
happened previously when getsockopt was called with SOL_SOCKET
instead of SOL_LOCAL, prior to commit 5a468b3
, and resulted in
random uids being accepted.
Signed-off-by: Eric Blake <eblake@redhat.com>
This commit is contained in:
parent
55da09933f
commit
aa0f09929d
@ -1174,25 +1174,27 @@ int virNetSocketGetUNIXIdentity(virNetSocketPtr sock,
|
|||||||
{
|
{
|
||||||
struct xucred cr;
|
struct xucred cr;
|
||||||
socklen_t cr_len = sizeof(cr);
|
socklen_t cr_len = sizeof(cr);
|
||||||
|
int ret = -1;
|
||||||
|
|
||||||
virObjectLock(sock);
|
virObjectLock(sock);
|
||||||
|
|
||||||
|
cr.cr_ngroups = -1;
|
||||||
if (getsockopt(sock->fd, VIR_SOL_PEERCRED, LOCAL_PEERCRED, &cr, &cr_len) < 0) {
|
if (getsockopt(sock->fd, VIR_SOL_PEERCRED, LOCAL_PEERCRED, &cr, &cr_len) < 0) {
|
||||||
virReportSystemError(errno, "%s",
|
virReportSystemError(errno, "%s",
|
||||||
_("Failed to get client socket identity"));
|
_("Failed to get client socket identity"));
|
||||||
virObjectUnlock(sock);
|
goto cleanup;
|
||||||
return -1;
|
|
||||||
}
|
}
|
||||||
|
|
||||||
if (cr.cr_version != XUCRED_VERSION) {
|
if (cr.cr_version != XUCRED_VERSION) {
|
||||||
virReportError(VIR_ERR_SYSTEM_ERROR, "%s",
|
virReportError(VIR_ERR_SYSTEM_ERROR, "%s",
|
||||||
_("Failed to get valid client socket identity"));
|
_("Failed to get valid client socket identity"));
|
||||||
return -1;
|
goto cleanup;
|
||||||
}
|
}
|
||||||
|
|
||||||
if (cr.cr_ngroups == 0) {
|
if (cr.cr_ngroups <= 0 || cr.cr_ngroups > NGROUPS) {
|
||||||
virReportError(VIR_ERR_SYSTEM_ERROR, "%s",
|
virReportError(VIR_ERR_SYSTEM_ERROR, "%s",
|
||||||
_("Failed to get valid client socket identity groups"));
|
_("Failed to get valid client socket identity groups"));
|
||||||
return -1;
|
goto cleanup;
|
||||||
}
|
}
|
||||||
|
|
||||||
/* PID and process creation time are not supported on BSDs */
|
/* PID and process creation time are not supported on BSDs */
|
||||||
@ -1201,8 +1203,11 @@ int virNetSocketGetUNIXIdentity(virNetSocketPtr sock,
|
|||||||
*uid = cr.cr_uid;
|
*uid = cr.cr_uid;
|
||||||
*gid = cr.cr_gid;
|
*gid = cr.cr_gid;
|
||||||
|
|
||||||
|
ret = 0;
|
||||||
|
|
||||||
|
cleanup:
|
||||||
virObjectUnlock(sock);
|
virObjectUnlock(sock);
|
||||||
return 0;
|
return ret;
|
||||||
}
|
}
|
||||||
#else
|
#else
|
||||||
int virNetSocketGetUNIXIdentity(virNetSocketPtr sock ATTRIBUTE_UNUSED,
|
int virNetSocketGetUNIXIdentity(virNetSocketPtr sock ATTRIBUTE_UNUSED,
|
||||||
|
Loading…
Reference in New Issue
Block a user