[linxsrv] fix unsafe usages like buffer boundaries

Author: tsymiar

LinxSrvc/IM/IM.cc

@@ -299,7 +299,7 @@ int main(int argc, char* argv[])
         inst_mssg(argc, argv);
         setsid();
         chdir("/");
-        umask(0);
+        umask(0077);
         close(STDIN_FILENO);
         close(STDOUT_FILENO);
         close(STDERR_FILENO);
@@ -952,7 +952,7 @@ type_thread_func monitor(void* arg)
                                 total += 10;
                                 break;
                             default:
-                                snprintf((sd_bufs + offset), 15, "Unknown error.");
+                                snprintf((sd_bufs + offset), 33, "Unknown error while JOIN_ZONE.");
                                 break;
                             }
                         } else {
@@ -1006,7 +1006,10 @@ type_thread_func monitor(void* arg)
                             }//for MAX_MEMBERS_PER_GROUP
                         }//else val_rtn < 0
                     } break;
-                    default: break;
+                    default:
+                        snprintf((sd_bufs + offset), 24, "Unknown command [%c].", sd_bufs[1]);
+                        *length = total = 48;
+                        break;
                     }
                     if ((memcmp(g_usrMsg.chk, "P2P", 4) != 0) &&
                         (send(cur_sock, sd_bufs, total, 0) < 0)) {
@@ -1100,9 +1103,8 @@ int inst_mssg(int argc, char* argv[])
     _beginthreadex(nullptr, 0, (_beginthreadex_proc_type)commands, nullptr, 0, &threadid);
     WSADATA wsaData;
     if (WSAStartup(0x202, &wsaData) == SOCKET_ERROR) {
-        std::cerr << "WSAStartup failed with error " << WSAGetLastError() << std::endl;
+        std::cerr << "WSAStartup failed with error [" << WSAGetLastError() << "](" << errno << "): " << strerror(errno) << std::endl;
         WSACleanup();
-        std::cerr << "ERROR(" << errno << "): " << strerror(errno) << std::endl;
         return -1;
     }
 #else
@@ -1135,7 +1137,7 @@ int inst_mssg(int argc, char* argv[])
 #else
         < 0) {
 #endif
-        std::cerr << "ERROR(" << errno << "): " << strerror(errno) << std::endl;
+        std::cerr << "ERROR(" << errno << ") bindport [" << srvPort << "]: " << strerror(errno) << std::endl;
         exit(-1);
     }
     if (listen(listen_socket, 50)
@@ -1146,7 +1148,7 @@ int inst_mssg(int argc, char* argv[])
 #else
         < 0) {
 #endif
-        std::cerr << "ERROR(" << errno << "): " << strerror(errno) << std::endl;
+        std::cerr << "ERROR(" << errno << ") listen [" << srvPort << "]: " << strerror(errno) << std::endl;
         exit(-1);
     }
     int threadCnt = 0;
@@ -1174,7 +1176,7 @@ int inst_mssg(int argc, char* argv[])
 #else
             < 0) {
 #endif // use socklen
-            std::cerr << "ERROR(" << errno << "," << socklen << "): " << strerror(errno) << std::endl;
+            std::cerr << "ERROR(" << errno << ") accept [" << socklen << "]: " << strerror(errno) << std::endl;
             return -1;
         } else {
             char IPdotDec[16];
@@ -1206,7 +1208,7 @@ int inst_mssg(int argc, char* argv[])
 #elif !defined SOCK_CONN_TEST || defined SOCK_CONN_TEST
         type_socket msg_socket = accept(listen_socket, (struct sockaddr*)&fromAddr, &socklen);
         if (msg_socket < 0) {
-            std::cerr << "ERROR(" << errno << "): " << strerror(errno) << std::endl;
+            std::cerr << "ERROR(" << errno << ") accept [" << listen_socket << "]: " << strerror(errno) << std::endl;
             return -1;
         } else {
             int PID = 0;
@@ -1309,24 +1311,51 @@ void func_waitpid(int signo)
 #else
         ssize_t total = 0;
         char* sock_0 = reinterpret_cast<char*>(&sock);
-        while (total < (ssize_t)sizeof(sock)) {
-            ssize_t len = read(g_filedes[0], sock_0 + total, sizeof(sock) - total);
-            if (len < 0) {
-                fprintf(stderr, "Read error: %s\n", strerror(errno));
-                break;
+        const ssize_t expect = sizeof(sock);
+        while (total < expect && total >= 0) {
+            ssize_t len = read(g_filedes[0], sock_0 + total, expect - total);
+            if (len > 0) {
+                if (total + len > expect) {
+                    fprintf(stderr, "Buffer overflow prevented: expects %zd, got %zd!\n", expect, total + len);
+                    break;
+                }
+                total += len;
+                continue;
             }
             if (len == 0) {
-                fprintf(stderr, "Read EOF: expects %zu, got %zd!\n", sizeof(sock), total);
+                fprintf(stderr, "Read EOF: expects %zd, got %zd!\n", expect, total);
                 break;
             }
-            if (total + len > (ssize_t)sizeof(sock)) {
-                fprintf(stderr, "Buffer overflow prevented: expects %zu, got %zd!\n", sizeof(sock), total + len);
-                break;
+            // len < 0: handle transient errors specially
+            if (errno == EINTR) {
+                // interrupted by signal, retry read
+                continue;
             }
-            total += len;
+            if (errno == EAGAIN || errno == EWOULDBLOCK) {
+                // no data available right now; wait briefly for readability
+                fd_set rfds;
+                FD_ZERO(&rfds);
+                FD_SET(g_filedes[0], &rfds);
+                timeval tv;
+                tv.tv_sec = 1;
+                tv.tv_usec = 0;
+                int sel = select(g_filedes[0] + 1, &rfds, NULL, NULL, &tv);
+                if (sel > 0) {
+                    // socket ready, retry read
+                    continue;
+                } else if (sel == 0) {
+                    fprintf(stderr, "Read timeout on pipe: expects %zd, got %zd!\n", expect, total);
+                    break;
+                } else {
+                    // select error; fall through to error reporting
+                }
+            }
+            // fatal read error
+            fprintf(stderr, "Read error: %s\n", strerror(errno));
+            break;
         }
-        if (total != (ssize_t)sizeof(sock)) {
-            fprintf(stderr, "Read size mismatch: expects %zu, got %zd!\n", sizeof(sock), total);
+        if (total != expect) {
+            fprintf(stderr, "Read size mismatch: expects %zd, got %zd!\n", expect, total);
             break;
         }
 #endif

LinxSrvc/hdware/test.c

@@ -8,9 +8,11 @@
 #elif defined(VIDEO) || defined(SNAP)
 #include "test.h"
 #elif defined(DRIVER)
-#include "stdio.h"
-#include "fcntl.h"
-#include "unistd.h"
+#include <stdio.h>
+#include <fcntl.h>
+#include <unistd.h>
+#include <string.h>
+#include <sys/stat.h>
 #else
 #error compile command unsupported
 #endif
@@ -44,22 +46,33 @@ int main(int argc, char** argv)
 #define SizeOfBuf 1024
     int fd = open(DEV_NODE, O_RDWR, S_IRUSR | S_IWUSR);
     if (fd < 0) {
-        perror("open ["DEV_NODE"] fail");
+        perror("open [" DEV_NODE "] fail");
     } else {
         char msg[SizeOfBuf];
-        ssize_t len = read(fd, msg, sizeof(msg));
-        if (len > SizeOfBuf || len < 0) {
-            perror("beyond read size");
+        ssize_t len = read(fd, msg, SizeOfBuf - 1);
+        if (len < 0) {
+            perror("read fail");
+            close(fd);
             return -1;
         }
         msg[SizeOfBuf - 1] = '\0';
         printf("Default chars is [%s].\n", msg);
         printf("Please input a string written to chars device: ");
-        scanf("%1023s", msg);
-        write(fd, msg, sizeof(msg));
-        len = read(fd, msg, sizeof(msg));
-        if (len > SizeOfBuf || len < 0) {
-            perror("beyond read size");
+        if (scanf("%1023s", msg) != 1) {
+            fprintf(stderr, "scanf error\n");
+            close(fd);
+            return -1;
+        }
+        ssize_t wlen = write(fd, msg, strlen(msg));
+        if (wlen < 0) {
+            perror("write fail");
+            close(fd);
+            return -1;
+        }
+        ssize_t rlen = read(fd, msg, SizeOfBuf - 1);
+        if (rlen < 0) {
+            perror("read fail");
+            close(fd);
             return -1;
         }
         msg[SizeOfBuf - 1] = '\0';

LinxSrvc/lookup/common.h

@@ -6,8 +6,8 @@
 #include <iostream>
 #include <sys/time.h>
 
-#ifndef MAX_PATH_LEN
-#define MAX_PATH_LEN 256
+#ifndef MAX_NAME_LEN
+#define MAX_NAME_LEN 128
 #endif
 
 #define DELETE(x) do { \
@@ -63,7 +63,7 @@ struct SeekTimeValue {
 #pragma pack(push)
 #pragma pack(4)
 typedef struct tagSeekTimeContent {
-    char fileName[MAX_PATH_LEN];
+    char fileName[MAX_NAME_LEN];
     uint32_t fileid = 1;
     uint64_t totalSize;
     int32_t duration;

LinxSrvc/lookup/seek/SeekComm.h

@@ -30,7 +30,7 @@ struct SelectFileOffset {
 
 struct FileFrameData {
     uint32_t id;
-    char fileName[128];
+    char fileName[MAX_NAME_LEN];
     struct {
         int64_t timestamp;
         int64_t offset;

LinxSrvc/lookup/seek/SeekTime.cpp

@@ -81,7 +81,7 @@ int SeekTime::findFileFragmentDetail(FILE* file, FileFrameData& startframe, File
     fseek(file, curpos, SEEK_SET);
 
     SeekTimeContent comidx{};
-    memcpy(comidx.fileName, startframe.fileName, sizeof(startframe.fileName));
+    memcpy(comidx.fileName, startframe.fileName, MAX_NAME_LEN);
 
     uint8_t buffer[m_windSize];
     uint32_t buffSize = m_windSize > cursize ? cursize : m_windSize;
@@ -337,25 +337,25 @@ int SeekTime::seekFileDataTime(uint32_t duration, std::vector<SeekTimeContent>&
         }
         for (SelectTime& seekTime : vecFileTime.second) {
             SeekTimeContent fileinfo{};
-            strncpy(fileinfo.fileName, vecFileTime.first.c_str(), MAX_PATH_LEN);
+            snprintf(fileinfo.fileName, MAX_NAME_LEN, "%s", vecFileTime.first.c_str());
             LOG_INF("'%s', selecting time=%lld ...", fileinfo.fileName, seekTime.average());
 
             // First check the database TblFileIdMapping for a record of this file; if not found, insert a record
             uint32_t fileId = 0;
             FileFrameData startframe{};
             FileFrameData tailframe{};
-            strncpy(startframe.fileName, vecFileTime.first.c_str(), 128);
-            strncpy(tailframe.fileName, vecFileTime.first.c_str(), 128);
+            snprintf(startframe.fileName, MAX_NAME_LEN, "%s", vecFileTime.first.c_str());
+            snprintf(tailframe.fileName, MAX_NAME_LEN, "%s", vecFileTime.first.c_str());
             startframe.target.timestamp = seekTime.first;
             tailframe.target.timestamp = seekTime.last;
             FileFrameData fileMapping{};
             if (m_dbMgr->queryFileIdbyName(vecFileTime.first, fileId) != 0) {
                 SeekTimeContent headIdx{};
                 SeekTimeContent tailIdx{};
-                strncpy(fileMapping.fileName, vecFileTime.first.c_str(), 128);
+                snprintf(fileMapping.fileName, MAX_NAME_LEN, "%s", vecFileTime.first.c_str());
                 bool find = getFirstFrame(m_pfile, m_windSize, headIdx, offset);
                 if (find) {
-                    memcpy(headIdx.fileName, vecFileTime.first.c_str(), vecFileTime.first.size());
+                    snprintf(headIdx.fileName, MAX_NAME_LEN, "%s", vecFileTime.first.c_str());
                     fileMapping.offset.head = headIdx.value.offset;
                     fileMapping.ftime.first = headIdx.value.timestamp;
                     LOG_INF("getFirstFrame offset=%lld len=%lld timestamp=%lld fileid=%u", headIdx.value.offset, headIdx.value.size, headIdx.value.timestamp, headIdx.fileid);
@@ -371,7 +371,7 @@ int SeekTime::seekFileDataTime(uint32_t duration, std::vector<SeekTimeContent>&
                 }
                 find = getTailFrame(m_pfile, m_windSize, tailIdx);
                 if (find) {
-                    memcpy(tailIdx.fileName, vecFileTime.first.c_str(), vecFileTime.first.size());
+                    snprintf(tailIdx.fileName, MAX_NAME_LEN, "%s", vecFileTime.first.c_str());
                     /* Insert file information into TblFileIdMapping table */
                     fileMapping.offset.tail = tailIdx.value.offset;
                     fileMapping.ftime.last = tailIdx.value.timestamp;

LinxSrvc/lookup/time/TimeSeek.cpp

@@ -254,7 +254,7 @@ int TimeSeek::seekFileDataTime(std::vector<SeekTimeContent>& fileinfos)
     for (auto it : m_seekTimeMap) {
         for (auto at : it.second) {
             SeekTimeContent fileinfo{};
-            snprintf(fileinfo.fileName, MAX_PATH_LEN, "%s", it.first.c_str());
+            snprintf(fileinfo.fileName, MAX_NAME_LEN, "%s", it.first.c_str());
             printf("--- '%s', selecting time=%lu\n", fileinfo.fileName, at.average());
             // check first if time is in database
             if (getTimefromDatabase(m_dbMgr, at, fileinfo, fileinfos)) {
@@ -305,7 +305,7 @@ int TimeSeek::seekFileDataTime(std::vector<SeekTimeContent>& fileinfos)
                 fileinfo = parseFileFrame(selectOffset, at.average(), m_timeDetail.offset.first);
             }
             if (fileinfo.found) {
-                snprintf(fileinfo.fileName, MAX_PATH_LEN, "%s", it.first.c_str());
+                snprintf(fileinfo.fileName, MAX_NAME_LEN, "%s", it.first.c_str());
                 fileinfo.param = at.average();
                 fileinfos.emplace_back(fileinfo);
             } else {