From: Benjamin Marzinski <bmarzins@redhat.com>
To: mwilck@suse.com
Cc: dm-devel@redhat.com
Subject: Re: [dm-devel] [PATCH v2 07/21] libmultipath: use strbuf in parse_vpd_pg83()
Date: Wed, 1 Dec 2021 12:36:53 -0600 [thread overview]
Message-ID: <20211201183653.GQ19591@octiron.msp.redhat.com> (raw)
In-Reply-To: <20211201123650.16240-8-mwilck@suse.com>
On Wed, Dec 01, 2021 at 01:36:36PM +0100, mwilck@suse.com wrote:
> From: Martin Wilck <mwilck@suse.com>
>
> By using the strbuf API, the code gets more readable, as we need
> less output size checks.
>
> While at it, avoid a possible crash by passing a NULL pointer
> to memchr().
>
Reviewed-by: Benjamin Marzinski <bmarzins@redhat.com>
> Signed-off-by: Martin Wilck <mwilck@suse.com>
> ---
> libmultipath/discovery.c | 111 +++++++++++++++++----------------------
> 1 file changed, 48 insertions(+), 63 deletions(-)
>
> diff --git a/libmultipath/discovery.c b/libmultipath/discovery.c
> index 977aed9..7d939ae 100644
> --- a/libmultipath/discovery.c
> +++ b/libmultipath/discovery.c
> @@ -1121,6 +1121,7 @@ parse_vpd_pg83(const unsigned char *in, size_t in_len,
> size_t len, vpd_len, i;
> int vpd_type, prio = -1;
> int err = -ENODATA;
> + STRBUF_ON_STACK(buf);
>
> /* Need space at least for one digit */
> if (out_len <= 1)
> @@ -1239,92 +1240,76 @@ parse_vpd_pg83(const unsigned char *in, size_t in_len,
> if (vpd_type == 0x2 || vpd_type == 0x3) {
> size_t i;
>
> - len = sprintf(out, "%d", vpd_type);
> - if (2 * vpd_len >= out_len - len) {
> - condlog(1, "%s: WWID overflow, type %d, %zu/%zu bytes required",
> - __func__, vpd_type,
> - 2 * vpd_len + len + 1, out_len);
> - vpd_len = (out_len - len - 1) / 2;
> - }
> + if ((err = print_strbuf(&buf, "%d", vpd_type)) < 0)
> + return err;
> for (i = 0; i < vpd_len; i++)
> - len += sprintf(out + len,
> - "%02x", vpd[i]);
> + if ((err = print_strbuf(&buf, "%02x", vpd[i])) < 0)
> + return err;
> } else if (vpd_type == 0x8) {
> + char type;
> +
> if (!memcmp("eui.", vpd, 4))
> - out[0] = '2';
> + type = '2';
> else if (!memcmp("naa.", vpd, 4))
> - out[0] = '3';
> + type = '3';
> else
> - out[0] = '8';
> + type = '8';
> + if ((err = fill_strbuf(&buf, type, 1)) < 0)
> + return err;
>
> vpd += 4;
> len = vpd_len - 4;
> - while (len > 2 && vpd[len - 2] == '\0')
> - --len;
> - if (len > out_len - 1) {
> - condlog(1, "%s: WWID overflow, type 8/%c, %zu/%zu bytes required",
> - __func__, out[0], len + 1, out_len);
> - len = out_len - 1;
> + if ((err = __append_strbuf_str(&buf, (const char *)vpd, len)) < 0)
> + return err;
> +
> + /* The input is 0-padded, make sure the length is correct */
> + truncate_strbuf(&buf, strlen(get_strbuf_str(&buf)));
> + len = get_strbuf_len(&buf);
> + if (type != '8') {
> + char *buffer = __get_strbuf_buf(&buf);
> +
> + for (i = 0; i < len; ++i)
> + buffer[i] = tolower(buffer[i]);
> }
>
> - if (out[0] == '8')
> - for (i = 0; i < len; ++i)
> - out[1 + i] = vpd[i];
> - else
> - for (i = 0; i < len; ++i)
> - out[1 + i] = tolower(vpd[i]);
> -
> - /* designator should be 0-terminated, but let's make sure */
> - out[len] = '\0';
> -
> } else if (vpd_type == 0x1) {
> const unsigned char *p;
> size_t p_len;
>
> - out[0] = '1';
> - len = 1;
> - while ((p = memchr(vpd, ' ', vpd_len))) {
> + if ((err = fill_strbuf(&buf, '1', 1)) < 0)
> + return err;
> + while (vpd && (p = memchr(vpd, ' ', vpd_len))) {
> p_len = p - vpd;
> - if (len + p_len > out_len - 1) {
> - condlog(1, "%s: WWID overflow, type 1, %zu/%zu bytes required",
> - __func__, len + p_len, out_len);
> - p_len = out_len - len - 1;
> - }
> - memcpy(out + len, vpd, p_len);
> - len += p_len;
> - if (len >= out_len - 1) {
> - out[len] = '\0';
> - break;
> - }
> - out[len] = '_';
> - len ++;
> - if (len >= out_len - 1) {
> - out[len] = '\0';
> - break;
> - }
> + if ((err = __append_strbuf_str(&buf, (const char *)vpd,
> + p_len)) < 0)
> + return err;
> vpd = p;
> vpd_len -= p_len;
> - while (vpd && *vpd == ' ') {
> + while (vpd && vpd_len > 0 && *vpd == ' ') {
> vpd++;
> vpd_len --;
> }
> + if (vpd_len > 0 && (err = fill_strbuf(&buf, '_', 1)) < 0)
> + return err;
> }
> - p_len = vpd_len;
> - if (p_len > 0 && len < out_len - 1) {
> - if (len + p_len > out_len - 1) {
> - condlog(1, "%s: WWID overflow, type 1, %zu/%zu bytes required",
> - __func__, len + p_len + 1, out_len);
> - p_len = out_len - len - 1;
> - }
> - memcpy(out + len, vpd, p_len);
> - len += p_len;
> - out[len] = '\0';
> - }
> - if (len > 1 && out[len - 1] == '_') {
> - out[len - 1] = '\0';
> - len--;
> + if (vpd_len > 0) {
> + if ((err = __append_strbuf_str(&buf, (const char *)vpd,
> + vpd_len)) < 0)
> + return err;
> }
> }
> +
> + len = get_strbuf_len(&buf);
> + if (len >= out_len) {
> + condlog(1, "%s: WWID overflow, type %d, %zu/%zu bytes required",
> + __func__, vpd_type, len, out_len);
> + if (vpd_type == 2 || vpd_type == 3)
> + /* designator must have an even number of characters */
> + len = 2 * (out_len / 2) - 1;
> + else
> + len = out_len - 1;
> + }
> + strlcpy(out, get_strbuf_str(&buf), len + 1);
> return len;
> }
>
> --
> 2.33.1
--
dm-devel mailing list
dm-devel@redhat.com
https://listman.redhat.com/mailman/listinfo/dm-devel
next prev parent reply other threads:[~2021-12-01 18:37 UTC|newest]
Thread overview: 26+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-12-01 12:36 [dm-devel] [PATCH v2 00/21] multipath-tools: coverity fixes mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 01/21] multipath tools: github workflows: add coverity workflow mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 02/21] multipathd (coverity): check atexit() return value mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 03/21] multipathd (coverity): terminate uxlsnr when polls allocation fails mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 04/21] libmultipath: strbuf: add __get_strbuf_buf() mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 05/21] libmultipath (coverity): improve input checking in parse_vpd_pg83 mwilck
2021-12-01 18:35 ` Benjamin Marzinski
2021-12-01 12:36 ` [dm-devel] [PATCH v2 06/21] multipath-tools: add tests for broken VPD page 83 mwilck
2021-12-01 18:37 ` Benjamin Marzinski
2021-12-01 12:36 ` [dm-devel] [PATCH v2 07/21] libmultipath: use strbuf in parse_vpd_pg83() mwilck
2021-12-01 18:36 ` Benjamin Marzinski [this message]
2021-12-01 12:36 ` [dm-devel] [PATCH v2 08/21] libmultipath (coverity): fix tainted values in alua_rtpg.c mwilck
2021-12-01 19:08 ` Benjamin Marzinski
2021-12-01 12:36 ` [dm-devel] [PATCH v2 09/21] multipath, multipathd: exit if bindings file is broken mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 10/21] libmultipath (coverity): silence unchecked return value warning mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 11/21] multipath: remove pointless code from getopt processing mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 12/21] libmultipath (coverity): set umask before mkstemp mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 13/21] multipathd (coverity): simplify set_oom_adj() mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 14/21] kpartx: open /dev/loop-control only once mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 15/21] kpartx: use opened loop device immediately mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 16/21] kpartx: find_unused_loop_device(): add newlines mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 17/21] multipathd (coverity): daemonize(): use dup2 mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 18/21] libmultipath (coverity): avoid sleeping in dm_mapname() mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 19/21] libmultipath (coverity): Revert "setup_map: wait for pending path checkers to finish" mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 20/21] libmultipath (coverity): check return values in dm_get_multipath() mwilck
2021-12-01 12:36 ` [dm-devel] [PATCH v2 21/21] libmultipath: update_pathvec_from_dm: don't force DI_WWID mwilck
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20211201183653.GQ19591@octiron.msp.redhat.com \
--to=bmarzins@redhat.com \
--cc=dm-devel@redhat.com \
--cc=mwilck@suse.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.