* [PATCH] [virt-server] trace-cmd listen: Use sockaddr_storage for client addresses
@ 2018-10-03 8:27 slavomir.kaslev
2018-10-03 13:53 ` Steven Rostedt
0 siblings, 1 reply; 2+ messages in thread
From: slavomir.kaslev @ 2018-10-03 8:27 UTC (permalink / raw)
To: rostedt; +Cc: linux-trace-devel
From: Slavomir Kaslev <kaslevs@vmware.com>
`trace-cmd listen` is passing a pointer to `struct sockaddr` to `accept`
with `addrlen` larger than its size which may corrupt the stack.
Switching it to `struct sockaddr_storage` provides enough space to store
both TCP and UNIX sockets address.
Signed-off-by: Slavomir Kaslev <kaslevs@vmware.com>
---
tracecmd/trace-listen.c | 14 ++++++--------
1 file changed, 6 insertions(+), 8 deletions(-)
diff --git a/tracecmd/trace-listen.c b/tracecmd/trace-listen.c
index c05c2d8..2f2cecc 100644
--- a/tracecmd/trace-listen.c
+++ b/tracecmd/trace-listen.c
@@ -1956,7 +1956,7 @@ static void release_fds(struct client_list *manager)
static void do_accept_loop(int nfd, int vfd, int mfd)
{
struct client_list *client;
- struct sockaddr addr;
+ struct sockaddr_storage addr;
socklen_t addrlen;
char *domain = NULL;
int timeout = -1;
@@ -2024,12 +2024,8 @@ static void do_accept_loop(int nfd, int vfd, int mfd)
continue;
if (i < FD_CONNECTED) {
- if (i == FD_NET)
- addrlen = sizeof(struct sockaddr_storage);
- else
- addrlen = sizeof(struct sockaddr_un);
-
- cfd = accept(fds[i].fd, &addr, &addrlen);
+ addrlen = sizeof(addr);
+ cfd = accept(fds[i].fd, (struct sockaddr *)&addr, &addrlen);
printf("connected!\n");
if (cfd < 0 && errno == EINTR)
continue;
@@ -2106,7 +2102,9 @@ static void do_accept_loop(int nfd, int vfd, int mfd)
}
if (i == FD_NET)
- pid = do_connection(cfd, &addr, addrlen, NULL, 0, NET,
+ pid = do_connection(cfd,
+ (struct sockaddr *)&addr,
+ addrlen, NULL, 0, NET,
NULL);
else {
pid = do_connection(cfd, NULL, 0,
--
2.17.1
^ permalink raw reply related [flat|nested] 2+ messages in thread
* Re: [PATCH] [virt-server] trace-cmd listen: Use sockaddr_storage for client addresses
2018-10-03 8:27 [PATCH] [virt-server] trace-cmd listen: Use sockaddr_storage for client addresses slavomir.kaslev
@ 2018-10-03 13:53 ` Steven Rostedt
0 siblings, 0 replies; 2+ messages in thread
From: Steven Rostedt @ 2018-10-03 13:53 UTC (permalink / raw)
To: slavomir.kaslev; +Cc: linux-trace-devel
On Wed, 3 Oct 2018 11:27:43 +0300
slavomir.kaslev@gmail.com wrote:
> From: Slavomir Kaslev <kaslevs@vmware.com>
>
> `trace-cmd listen` is passing a pointer to `struct sockaddr` to `accept`
> with `addrlen` larger than its size which may corrupt the stack.
>
> Switching it to `struct sockaddr_storage` provides enough space to store
> both TCP and UNIX sockets address.
>
> Signed-off-by: Slavomir Kaslev <kaslevs@vmware.com>
> ---
> tracecmd/trace-listen.c | 14 ++++++--------
> 1 file changed, 6 insertions(+), 8 deletions(-)
>
> diff --git a/tracecmd/trace-listen.c b/tracecmd/trace-listen.c
> index c05c2d8..2f2cecc 100644
> --- a/tracecmd/trace-listen.c
> +++ b/tracecmd/trace-listen.c
> @@ -1956,7 +1956,7 @@ static void release_fds(struct client_list *manager)
> static void do_accept_loop(int nfd, int vfd, int mfd)
> {
> struct client_list *client;
> - struct sockaddr addr;
> + struct sockaddr_storage addr;
Bah, nice catch.
-- Steve
> socklen_t addrlen;
> char *domain = NULL;
> int timeout = -1;
> @@ -2024,12 +2024,8 @@ static void do_accept_loop(int nfd, int vfd, int mfd)
> continue;
>
> if (i < FD_CONNECTED) {
> - if (i == FD_NET)
> - addrlen = sizeof(struct sockaddr_storage);
> - else
> - addrlen = sizeof(struct sockaddr_un);
> -
> - cfd = accept(fds[i].fd, &addr, &addrlen);
> + addrlen = sizeof(addr);
> + cfd = accept(fds[i].fd, (struct sockaddr *)&addr, &addrlen);
> printf("connected!\n");
> if (cfd < 0 && errno == EINTR)
> continue;
> @@ -2106,7 +2102,9 @@ static void do_accept_loop(int nfd, int vfd, int mfd)
> }
>
> if (i == FD_NET)
> - pid = do_connection(cfd, &addr, addrlen, NULL, 0, NET,
> + pid = do_connection(cfd,
> + (struct sockaddr *)&addr,
> + addrlen, NULL, 0, NET,
> NULL);
> else {
> pid = do_connection(cfd, NULL, 0,
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2018-10-03 20:42 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2018-10-03 8:27 [PATCH] [virt-server] trace-cmd listen: Use sockaddr_storage for client addresses slavomir.kaslev
2018-10-03 13:53 ` Steven Rostedt
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.