Page MenuHomeFreeBSD
Differential D15683

Change image activator to check length of interpreter is less then MAXPATHLEN.
Needs ReviewPublic
Actions

Authored by ambrisko on Jun 6 2018, 10:56 PM.
Tags
None
Referenced Files
Unknown Object (File)
Tue, Apr 16, 8:36 PM
Unknown Object (File)
Tue, Apr 16, 3:37 PM
Unknown Object (File)
Jan 28 2024, 7:08 PM
Unknown Object (File)
Jan 17 2024, 12:41 AM
Unknown Object (File)
Jan 9 2024, 10:04 PM
Unknown Object (File)
Dec 23 2023, 2:39 AM
Unknown Object (File)
Dec 19 2023, 4:04 AM
Unknown Object (File)
Nov 26 2023, 5:45 PM
View All 31 Files
Subscribers
imp
markj
Contributor Reviews (src)
This revision needs review, but there are no reviewers specified.

Details

Reviewers
None
Summary

The image activator checks to see if the space for the path of the interpreter
is larger then MAXPATHLEN. This is bad since it should check the length
of the interpreter is less then MAXPATHLEN. Update the error message to
give a better idea of why a binary won't run.

Also on failure, only free interp_buf if it is not NULL to prevent double
free. Do the VOP_UNLOCK even if it is not locked. I'm not sure about
this but the success part does this so I'm following suite.

Test Plan

Ran cross compile tools that had a long path name to the interpreter that
now works. Didn't do negative testing.

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Passed
Unit
No Test Coverage
Build Status
Buildable 17055
Build 16918: arc lint + arc unit

Event Timeline

ambrisko created this revision.Jun 6 2018, 10:56 PM
Herald added subscribers: Contributor Reviews (src), imp. · View Herald TranscriptJun 6 2018, 10:56 PM
Harbormaster completed remote builds in B17055: Diff 43392.Jun 6 2018, 10:56 PM
markj added a subscriber: markj.Jul 11 2018, 3:33 PM

In what situation is this change needed?

sys/kern/imgact_elf.c
851

Now userland can specify an arbitrarily large size to a malloc call.

868

The interp != NULL check doesn't seem to be needed.

869

"too"

1092

How can this be preventing a double free?

ambrisko updated this revision to Diff 45749.Jul 23 2018, 10:49 PM
  1. Updating D15683: Change image activator to check length of interpreter is less then MAXPATHLEN. #
  2. Enter a brief description of the changes included in this update.
  3. The first line is used as subject, next lines as comment. #
  4. If you intended to create a new revision, use:
  5. $ arc diff --create

Address markj's feedback.

Limit the malloc to the MAXPATHLEN. Add in a failure check after malloc
and not later on. Change "to" to "too".

Clarify that when errors happen, the malloc may not have happened so then
there is no memory to free (ie. goto ret; calls when malloc didn't happen).

Thanks for the feedback.

Harbormaster completed remote builds in B18280: Diff 45749.Jul 23 2018, 10:49 PM
markj added inline comments.Aug 2 2018, 3:22 PM
sys/kern/imgact_elf.c
847

Extra semicolon.

853

malloc(M_WAITOK) can't fail.

1092

This part of the change is not needed.

ambrisko updated this revision to Diff 46248.Aug 3 2018, 4:10 PM

Get rid of the malloc check and spurious ';'.

Thanks for the feedback.

Harbormaster completed remote builds in B18557: Diff 46248.Aug 3 2018, 4:10 PM
ambrisko marked 5 inline comments as done.Aug 3 2018, 4:17 PM
ambrisko added inline comments.
sys/kern/imgact_elf.c
1092

Are you saying there is no way the goto ret's or interp = imgp->image_header)
+ phdr[i].p_offset is done bypassing the malloc?

markj added inline comments.Aug 3 2018, 4:21 PM
sys/kern/imgact_elf.c
1092

No, but free(NULL) is a no-op.

ambrisko updated this revision to Diff 46255.Aug 3 2018, 6:05 PM

Remove NULL check since free does that.

Harbormaster completed remote builds in B18562: Diff 46255.Aug 3 2018, 6:05 PM
ambrisko marked 4 inline comments as done.Aug 3 2018, 6:39 PM

Revision Contents
Changeset List

PathSize
sys/
kern/
14 lines

Diff 43392

View Options

sys/kern/imgact_elf.c

Loading...