diff options
author | Mike Yuan <me@yhndnzj.com> | 2024-09-02 16:24:10 +0200 |
---|---|---|
committer | Mike Yuan <me@yhndnzj.com> | 2024-09-04 18:50:55 +0200 |
commit | 3ad7f7902354e8e05ea315fb51688b8fcf00305d (patch) | |
tree | 6a0645b65c542bc512b88d301fbdd86ba30489b0 /src/udev | |
parent | audit-util: check correct errno (diff) | |
download | systemd-3ad7f7902354e8e05ea315fb51688b8fcf00305d.tar.xz systemd-3ad7f7902354e8e05ea315fb51688b8fcf00305d.zip |
udev-ctrl: add missing size check of received message
While at it, downgrade log level of ignored errors to LOG_WARNING.
Diffstat (limited to '')
-rw-r--r-- | src/udev/udev-ctrl.c | 11 |
1 files changed, 8 insertions, 3 deletions
diff --git a/src/udev/udev-ctrl.c b/src/udev/udev-ctrl.c index 28716347e7..5ce77af89a 100644 --- a/src/udev/udev-ctrl.c +++ b/src/udev/udev-ctrl.c @@ -183,19 +183,24 @@ static int udev_ctrl_connection_event_handler(sd_event_source *s, int fd, uint32 cmsg_close_all(&smsg); + if (size != sizeof(msg_wire) || FLAGS_SET(smsg->flags, MSG_TRUNC)) { + log_warning("Received message with invalid length, ignoring"); + return 0; + } + cred = CMSG_FIND_DATA(&smsg, SOL_SOCKET, SCM_CREDENTIALS, struct ucred); if (!cred) { - log_error("No sender credentials received, ignoring message"); + log_warning("No sender credentials received, ignoring message"); return 0; } if (cred->uid != 0) { - log_error("Invalid sender uid "UID_FMT", ignoring message", cred->uid); + log_warning("Invalid sender uid "UID_FMT", ignoring message", cred->uid); return 0; } if (msg_wire.magic != UDEV_CTRL_MAGIC) { - log_error("Message magic 0x%08x doesn't match, ignoring message", msg_wire.magic); + log_warning("Message magic 0x%08x doesn't match, ignoring message", msg_wire.magic); return 0; } |