importd: immediately validate whether fd is of right type when receiving it

Just some paranoia.
2018-10-26 16:51:34 +02:00 · 2018-10-26 16:51:34 +02:00 · 176a05c24b
parent 844416b64c
commit 176a05c24b
1 changed files with 13 additions and 0 deletions
--- a/src/import/importd.c
+++ b/src/import/importd.c
@ -22,6 +22,7 @@
 #include "process-util.h"
 #include "signal-util.h"
 #include "socket-util.h"
+#include "stat-util.h"
 #include "string-table.h"
 #include "strv.h"
 #include "syslog-util.h"
@ -716,6 +717,10 @@ static int method_import_tar_or_raw(sd_bus_message *msg, void *userdata, sd_bus_
        if (r < 0)
                return r;

+        r = fd_verify_regular(fd);
+        if (r < 0)
+                return r;
+
        if (!machine_name_is_valid(local))
                return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Local name %s is invalid", local);

@ -780,6 +785,10 @@ static int method_import_fs(sd_bus_message *msg, void *userdata, sd_bus_error *e
        if (r < 0)
                return r;

+        r = fd_verify_directory(fd);
+        if (r < 0)
+                return r;
+
        if (!machine_name_is_valid(local))
                return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Local name %s is invalid", local);

@ -846,6 +855,10 @@ static int method_export_tar_or_raw(sd_bus_message *msg, void *userdata, sd_bus_
        if (!machine_name_is_valid(local))
                return sd_bus_error_setf(error, SD_BUS_ERROR_INVALID_ARGS, "Local name %s is invalid", local);

+        r = fd_verify_regular(fd);
+        if (r < 0)
+                return r;
+
        type = streq_ptr(sd_bus_message_get_member(msg), "ExportTar") ? TRANSFER_EXPORT_TAR : TRANSFER_EXPORT_RAW;

        r = transfer_new(m, &t);