Skip to content

Commit

Permalink
Reworked array of pppd args (adrienverge#295)
Browse files Browse the repository at this point in the history
This is a re-worked variant for commit de87e36
which had to be reverted for the patch series to apply.

Original description:

Use a dynamically (re)allocated array instead of a fixed-length args[].

This eliminates the need to carefully match the number of NULL
placeholders with the number of possible options, and also the need for
a-posteriori check of bounds.
  • Loading branch information
mrbaseman committed Apr 26, 2018
1 parent 3147454 commit 1c121e5
Showing 1 changed file with 73 additions and 71 deletions.
144 changes: 73 additions & 71 deletions src/tunnel.c
Original file line number Diff line number Diff line change
Expand Up @@ -56,6 +56,33 @@
#include <assert.h>


struct ofv_varr {
unsigned cap; // current capacity
unsigned off; // next slot to write, always < max(cap - 1, 1)
const void **data; // NULL terminated
};

static void ofv_append_varr(struct ofv_varr *p, const void *x)
{
if (p->off + 1 >= p->cap) {
const void **ndata;
unsigned ncap = (p->off + 1) * 2;
assert(p->off + 1 < ncap);
ndata = realloc(p->data, ncap * sizeof(const void *));
if (ndata) {
p->data = ndata;
p->cap = ncap;
} else {
log_error("realloc: %s\n", strerror(errno));
assert(ndata);
return;
}
}
assert(p->off + 1 < p->cap);
p->data[p->off] = x;
p->data[++p->off] = NULL;
}

static int on_ppp_if_up(struct tunnel *tunnel)
{
log_info("Interface %s is UP.\n", tunnel->ppp_iface);
Expand Down Expand Up @@ -129,100 +156,75 @@ static int pppd_run(struct tunnel *tunnel)
return 1;
} else if (pid == 0) { // child process

#if HAVE_USR_SBIN_PPPD
static const char *args[] = {
ppp_path,
"38400", // speed
":192.0.2.1", // <local_IP_address>:<remote_IP_address>
"noipdefault",
"noaccomp",
"noauth",
"default-asyncmap",
"nopcomp",
"receive-all",
"nodefaultroute",
"nodetach",
"lcp-max-configure", "40",
"mru", "1354",
NULL, // "usepeerdns"
NULL, NULL, NULL, // "debug", "logfile", pppd_log
NULL, NULL, // "plugin", pppd_plugin
NULL, NULL, // "ipparam", pppd_ipparam
NULL, NULL, // "ifname", pppd_ifname
NULL // terminal null pointer required by execvp()
};
#else
struct ofv_varr pppd_args = { 0, 0, NULL };

#if HAVE_USR_SBIN_PPP
/*
* assume there is a default configuration to start.
* Support for taking options from the command line
* e.g. the name of the configuration or options
* to send interactively to ppp will be added later
*/
static const char *args[] = {
* assume there is a default configuration to start.
* Support for taking options from the command line
* e.g. the name of the configuration or options
* to send interactively to ppp will be added later
*/
const char *v[] = {
ppp_path,
"-background",
NULL, // "ipparam", reuse pppd_ipparam for "system"
NULL // terminal null pointer required by execvp()
"-background"
};
for (unsigned i = 0; i < sizeof v/sizeof v[0]; i++)
ofv_append_varr(&pppd_args, v[i]);
#endif

#if HAVE_USR_SBIN_PPPD
if (tunnel->config->pppd_call) {
/* overwrite args[]: keep ppp_path, replace all
* options with "call <name>" */
int j = 1;
args[j++] = "call";
args[j++] = tunnel->config->pppd_call;
while (j < ARRAY_SIZE(args))
args[j++] = NULL;
ofv_append_varr(&pppd_args, pppd_path);
ofv_append_varr(&pppd_args, "call");
ofv_append_varr(&pppd_args, tunnel->config->pppd_call);
} else {
const char *v[] = {
ppp_path,
"38400", // speed
":192.0.2.1", // <local_IP_address>:<remote_IP_address>
"noipdefault",
"noaccomp",
"noauth",
"default-asyncmap",
"nopcomp",
"receive-all",
"nodefaultroute",
"nodetach",
"lcp-max-configure", "40",
"mru", "1354"
};
for (unsigned i = 0; i < sizeof v/sizeof v[0]; i++)
ofv_append_varr(&pppd_args, v[i]);
}
#endif
// Dynamically get first NULL pointer so that changes of
// args above don't need code changes here
int i = ARRAY_SIZE(args) - 1;
while (args[i] == NULL)
i--;
i++;

/*
* Coverity detected a defect:
* CID 196857: Out-of-bounds write (OVERRUN)
*
* It is actually a false positive:
* Although 'args' is constant, Coverity is unable
* to infer there are enough NULL elements in 'args'
* to add the following options.
*/
#if HAVE_USR_SBIN_PPPD
if (tunnel->config->pppd_use_peerdns)
args[i++] = "usepeerdns";
ofv_append_varr(&pppd_args, "usepeerdns");
if (tunnel->config->pppd_log) {
args[i++] = "debug";
args[i++] = "logfile";
args[i++] = tunnel->config->pppd_log;
ofv_append_varr(&pppd_args, "debug");
ofv_append_varr(&pppd_args, "logfile");
ofv_append_varr(&pppd_args, tunnel->config->pppd_log);
}
if (tunnel->config->pppd_plugin) {
args[i++] = "plugin";
args[i++] = tunnel->config->pppd_plugin;
ofv_append_varr(&pppd_args, "plugin");
ofv_append_varr(&pppd_args, tunnel->config->pppd_plugin);
}
if (tunnel->config->pppd_ifname) {
args[i++] = "ifname";
args[i++] = tunnel->config->pppd_ifname;
ofv_append_varr(&pppd_args, "plugin");
ofv_append_varr(&pppd_args, tunnel->config->pppd_plugin);
}
if (tunnel->config->pppd_ipparam) {
args[i++] = tunnel->config->pppd_ipparam;
ofv_append_varr(&pppd_args, "ipparam");
ofv_append_varr(&pppd_args, tunnel->config->pppd_ipparam);
}
#endif
#if HAVE_USR_SBIN_PPP
if (tunnel->config->ppp_system) {
args[i++] = tunnel->config->ppp_system;
ofv_append_varr(&pppd_args, tunnel->config->ppp_system);
}
#endif

// Assert that we didn't use up all NULL pointers above
assert(i < ARRAY_SIZE(args));
close(tunnel->ssl_socket);
execv(args[0], (char *const *)args);
execv(pppd_args.data[0], (char *const *)pppd_args.data);
free(pppd_args.data);

/*
* The following call to fprintf() doesn't work, probably
Expand Down

0 comments on commit 1c121e5

Please sign in to comment.