1. Patchew
  2. Libvirt
  3. View series

[PATCH] virMacAddrParse: Fix wrong termination character

Eustance Wu posted 1 patch 1 year, 10 months ago
Failed in applying to current master (apply log)
There is a newer version of this series
src/util/virmacaddr.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
[PATCH] virMacAddrParse: Fix wrong termination character
Posted by Eustance Wu 1 year, 10 months ago 
From 7df034e93d392c734ac5c4f4148a3d05f9edce29 Mon Sep 17 00:00:00 2001
From: WuLongTao <eustancewu@gmail.com>
Date: Thu, 16 Jun 2022 10:43:29 +0800
Subject: [PATCH] virMacAddrParse: Fix wrong termination character

The judgment of the termination character should be the null character, not
a space. Using spaces to judge, content can be injected into mac. such as:
"70:af:e7:1f:3f:89\001
injected".

This will result in an error: "virNetSocketReadWire:1805 : End of file
while reading data: Input/output error"
---
 src/util/virmacaddr.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/util/virmacaddr.c b/src/util/virmacaddr.c
index 6b22384cee..5c4aa07713 100644
--- a/src/util/virmacaddr.c
+++ b/src/util/virmacaddr.c
@@ -163,7 +163,7 @@ virMacAddrParse(const char* str, virMacAddr *addr)

         addr->addr[i] = (unsigned char) result;

-        if ((i == 5) && (*end_ptr <= ' '))
+        if ((i == 5) && (*end_ptr <= 0))
             return 0;
         if (*end_ptr != ':')
             break;
-- 
2.32.0
Re: [PATCH] virMacAddrParse: Fix wrong termination character
Posted by Ján Tomko 1 year, 10 months ago 
On a Thursday in 2022, Eustance Wu wrote:
>From 7df034e93d392c734ac5c4f4148a3d05f9edce29 Mon Sep 17 00:00:00 2001
>From: WuLongTao <eustancewu@gmail.com>
>Date: Thu, 16 Jun 2022 10:43:29 +0800
>Subject: [PATCH] virMacAddrParse: Fix wrong termination character
>
>The judgment of the termination character should be the null character, not
>a space. Using spaces to judge, content can be injected into mac. such as:
>"70:af:e7:1f:3f:89\001
>injected".
>
>This will result in an error: "virNetSocketReadWire:1805 : End of file
>while reading data: Input/output error"

What steps did you take to get such error?

>---
> src/util/virmacaddr.c | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
>
>diff --git a/src/util/virmacaddr.c b/src/util/virmacaddr.c
>index 6b22384cee..5c4aa07713 100644
>--- a/src/util/virmacaddr.c
>+++ b/src/util/virmacaddr.c
>@@ -163,7 +163,7 @@ virMacAddrParse(const char* str, virMacAddr *addr)
>
>         addr->addr[i] = (unsigned char) result;
>
>-        if ((i == 5) && (*end_ptr <= ' '))
>+        if ((i == 5) && (*end_ptr <= 0))

The comparison is "less or equal", '\0' was already being used as a
termination character before this patch.

Jano

>             return 0;
>         if (*end_ptr != ':')
>             break;
>-- 
>2.32.0

Patchew 2.1-devel-0870f84

© 2016 - 2024 Red Hat, Inc.