dhcp6: refuse zero length dhcp user class

author Yu Watanabe <watanabe.yu+github@gmail.com>

Tue, 12 Jan 2021 13:03:43 +0000 (22:03 +0900)

committer Yu Watanabe <watanabe.yu+github@gmail.com>

Tue, 12 Jan 2021 15:00:56 +0000 (00:00 +0900)
author Yu Watanabe <watanabe.yu+github@gmail.com>
Tue, 12 Jan 2021 13:03:43 +0000 (22:03 +0900)
committer Yu Watanabe <watanabe.yu+github@gmail.com>
Tue, 12 Jan 2021 15:00:56 +0000 (00:00 +0900)
diff --git a/src/libsystemd-network/dhcp6-internal.h b/src/libsystemd-network/dhcp6-internal.h

index 24d8a314a48d4ade47f2de95656b5ded99394674..d02186a4b201436a45b4c0f41787d6720697e348 100644 (file)
--- a/src/libsystemd-network/dhcp6-internal.h
+++ b/src/libsystemd-network/dhcp6-internal.h
@@ -99,7 +99,7 @@ int dhcp6_option_append(uint8_t **buf, size_t *buflen, uint16_t code,
  int dhcp6_option_append_ia(uint8_t **buf, size_t *buflen, const DHCP6IA *ia);
  int dhcp6_option_append_pd(uint8_t *buf, size_t len, const DHCP6IA *pd, DHCP6Address *hint_pd_prefix);
  int dhcp6_option_append_fqdn(uint8_t **buf, size_t *buflen, const char *fqdn);
-int dhcp6_option_append_user_class(uint8_t **buf, size_t *buflen, char **user_class);
+int dhcp6_option_append_user_class(uint8_t **buf, size_t *buflen, char * const *user_class);
  int dhcp6_option_append_vendor_class(uint8_t **buf, size_t *buflen, char **user_class);
  int dhcp6_option_append_vendor_option(uint8_t **buf, size_t *buflen, OrderedHashmap *vendor_options);
  int dhcp6_option_parse(uint8_t **buf, size_t *buflen, uint16_t *optcode,
diff --git a/src/libsystemd-network/dhcp6-option.c b/src/libsystemd-network/dhcp6-option.c

index e2bf4f7e36fec44ca419190e1096ab670efed914..8151e66bcad8ec90c764261c5e8092ad97b4954c 100644 (file)
--- a/src/libsystemd-network/dhcp6-option.c
+++ b/src/libsystemd-network/dhcp6-option.c
@@ -200,19 +200,22 @@ int dhcp6_option_append_fqdn(uint8_t **buf, size_t *buflen, const char *fqdn) {
          return r;
  }
  
-int dhcp6_option_append_user_class(uint8_t **buf, size_t *buflen, char **user_class) {
+int dhcp6_option_append_user_class(uint8_t **buf, size_t *buflen, char * const *user_class) {
          _cleanup_free_ uint8_t *p = NULL;
          size_t total = 0, offset = 0;
-        char **s;
+        char * const *s;
  
-        assert_return(buf && *buf && buflen && user_class, -EINVAL);
+        assert(buf);
+        assert(*buf);
+        assert(buflen);
+        assert(!strv_isempty(user_class));
  
          STRV_FOREACH(s, user_class) {
                  size_t len = strlen(*s);
                  uint8_t *q;
  
-                if (len > 0xffff)
-                        return -ENAMETOOLONG;
+                if (len > 0xffff || len == 0)
+                        return -EINVAL;
                  q = realloc(p, total + len + 2);
                  if (!q)
                          return -ENOMEM;
diff --git a/src/libsystemd-network/sd-dhcp6-client.c b/src/libsystemd-network/sd-dhcp6-client.c

index e068e0dc912e5b4b2c5bf2755554cb66ea240a79..105d09f334e43bc99456c8f950ca676606fee70c 100644 (file)
--- a/src/libsystemd-network/sd-dhcp6-client.c
+++ b/src/libsystemd-network/sd-dhcp6-client.c
@@ -464,26 +464,26 @@ int sd_dhcp6_client_set_request_mud_url(sd_dhcp6_client *client, const char *mud
          return free_and_strdup(&client->mudurl, mudurl);
  }
  
-int sd_dhcp6_client_set_request_user_class(sd_dhcp6_client *client, char **user_class) {
-        _cleanup_strv_free_ char **s = NULL;
-        char **p;
+int sd_dhcp6_client_set_request_user_class(sd_dhcp6_client *client, char * const *user_class) {
+        char * const *p;
+        char **s;
  
          assert_return(client, -EINVAL);
          assert_return(client->state == DHCP6_STATE_STOPPED, -EBUSY);
+        assert_return(!strv_isempty(user_class), -EINVAL);
  
-        assert_return(user_class, -EINVAL);
+        STRV_FOREACH(p, user_class) {
+                size_t len = strlen(*p);
  
-        STRV_FOREACH(p, user_class)
-                if (strlen(*p) > UINT16_MAX)
-                        return -ENAMETOOLONG;
+                if (len > UINT16_MAX || len == 0)
+                        return -EINVAL;
+        }
  
          s = strv_copy(user_class);
          if (!s)
                  return -ENOMEM;
  
-        client->user_class = TAKE_PTR(s);
-
-        return 0;
+        return strv_free_and_replace(client->user_class, s);
  }
  
  int sd_dhcp6_client_set_request_vendor_class(sd_dhcp6_client *client, char **vendor_class) {
diff --git a/src/systemd/sd-dhcp6-client.h b/src/systemd/sd-dhcp6-client.h

index 75ee27d68bdb41826f74993a9d169a1b3c477503..492e281f8b57a40e89a109df351abcc59d1cbbfc 100644 (file)
--- a/src/systemd/sd-dhcp6-client.h
+++ b/src/systemd/sd-dhcp6-client.h
@@ -133,7 +133,7 @@ int sd_dhcp6_client_set_request_mud_url(
                  const char *mudurl);
  int sd_dhcp6_client_set_request_user_class(
                  sd_dhcp6_client *client,
-                char** user_class);
+                char * const *user_class);
  int sd_dhcp6_client_set_request_vendor_class(
                  sd_dhcp6_client *client,
                  char** vendor_class);
author	Yu Watanabe <watanabe.yu+github@gmail.com>
	Tue, 12 Jan 2021 13:03:43 +0000 (22:03 +0900)
committer	Yu Watanabe <watanabe.yu+github@gmail.com>
	Tue, 12 Jan 2021 15:00:56 +0000 (00:00 +0900)
src/libsystemd-network/dhcp6-internal.h		patch \| blob \| blame \| history
src/libsystemd-network/dhcp6-option.c		patch \| blob \| blame \| history
src/libsystemd-network/sd-dhcp6-client.c		patch \| blob \| blame \| history
src/systemd/sd-dhcp6-client.h		patch \| blob \| blame \| history