Bug#645469: bind fails for AF_UNIX sockets with EINVAL

To: Petr Salinger <Petr.Salinger@seznam.cz>, 645469@bugs.debian.org
Subject: Bug#645469: bind fails for AF_UNIX sockets with EINVAL
From: Robert Millan <rmh@debian.org>
Date: Mon, 17 Oct 2011 18:18:36 +0200
Message-id: <[🔎] CAOfDtXPabhCM=2KF05yfgzwouk4BGatKP=g3RjCL4OMw=ETX1w@mail.gmail.com>
Reply-to: Robert Millan <rmh@debian.org>, 645469@bugs.debian.org
In-reply-to: <[🔎] alpine.LRH.2.02.1110161525370.4613@sci.felk.cvut.cz>
References: <[🔎] 20111015235922.GA20071@elie.hsd1.il.comcast.net> <[🔎] CAOfDtXN=Y8rATF_YpG5fxeO-MorJ4VcOaVi=orH_4muMfYpgiQ@mail.gmail.com> <[🔎] 20111016101542.GA15487@elie.hsd1.il.comcast.net> <[🔎] CAOfDtXMnrsHa1rTZum5YBrjEh_bZw2-XWBEFeb2jBZ+PQ+1VDg@mail.gmail.com> <[🔎] 20111016113158.GB22780@elie.hsd1.il.comcast.net> <[🔎] 20111016114047.GA23159@elie.hsd1.il.comcast.net> <[🔎] CAOfDtXPOth=5neQ6JKeerfCSH0ju+-ez=6TgRftOc8dmm4eQjg@mail.gmail.com> <[🔎] 20111016120305.GA27959@gaara.hadrons.org> <[🔎] alpine.LRH.2.02.1110161525370.4613@sci.felk.cvut.cz>

2011/10/16 Petr Salinger <Petr.Salinger@seznam.cz>:
>> Yes, I think this should be handled in glibc, and the sockaddr_un be
>> fixed to match what the kernel expects, the compat code would be there
>> to fix applications built against the bogus sockaddr_un type.
>
> In fact, we already clip the passed size in our eglibc in
> bind() and connect(), it might suffice in eglibc to

Silent truncation sounds a bit dangerous.  Could this introduce a
security problem?  E.g. a malliciously placed socket which matches the
truncated path.

> On the other hand we cannot change size of userland
> sockaddr_un without ABI change. To do it correctly it would mean
> to raise soname of eglibc and perform transition involving all packages.

Is that really so bad?  I guess the impact is minimal.  How many
libraries would make sockaddr_un part of their ABI?

> May be the limit can be raised in upstream in kernel only,
> to allow 108 instead of 104 only bytes.

Maybe.  You mean something like this?

struct sockaddr_un
{
...
#ifdef _KERNEL
sun_path[108];
#else
sun_path[104];
#endif
}

It's ugly though.  I wouldn't count on this being accepted, specially
not backported.  If it doesn't serve us to support people running
upstream kernels, is there a point in pushing this change?

-- 
Robert Millan

Reply to:

Follow-Ups:
- Bug#645469: bind fails for AF_UNIX sockets with EINVAL
  - From: Petr Salinger <Petr.Salinger@seznam.cz>

References:
- Bug#645469: bind() fails for AF_UNIX sockets with EINVAL
  - From: Jonathan Nieder <jrnieder@gmail.com>
- Bug#645469: bind() fails for AF_UNIX sockets with EINVAL
  - From: Robert Millan <rmh@debian.org>
- Bug#645469: bind() fails for AF_UNIX sockets with EINVAL
  - From: Jonathan Nieder <jrnieder@gmail.com>
- Bug#645469: bind() fails for AF_UNIX sockets with EINVAL
  - From: Robert Millan <rmh@debian.org>
- Bug#645469: bind() fails for AF_UNIX sockets with EINVAL
  - From: Jonathan Nieder <jrnieder@gmail.com>
- Bug#645469: bind() fails for AF_UNIX sockets with EINVAL
  - From: Jonathan Nieder <jrnieder@gmail.com>
- Bug#645469: bind() fails for AF_UNIX sockets with EINVAL
  - From: Robert Millan <rmh@debian.org>
- Bug#645469: bind() fails for AF_UNIX sockets with EINVAL
  - From: Guillem Jover <guillem@debian.org>
- Bug#645469: bind fails for AF_UNIX sockets with EINVAL
  - From: Petr Salinger <Petr.Salinger@seznam.cz>

Prev by Date: Bug#645546: clang: FTBFS(kfreebsd): error: Operating system is unknown, configure can't continue
Next by Date: Bug#645469: bind fails for AF_UNIX sockets with EINVAL
Previous by thread: Bug#645469: bind fails for AF_UNIX sockets with EINVAL
Next by thread: Bug#645469: bind fails for AF_UNIX sockets with EINVAL
Index(es):
- Date
- Thread