busybox: fix busybox lock applet pidstr buffer overflow
Kernel setting `/proc/sys/kernel/pid_max` can be set up to 4194304 (7
digits) which will cause buffer overflow in busbox lock patch, this
often happens when running in a rootfs container environment.
This commit enlarges `pidstr` to 12 bytes to ensure a sufficient buffer
for pid number and an additional char '\n'.
Signed-off-by: Qichao Zhang <njuzhangqichao@gmail.com>
(cherry picked from commit 34567750db)
This commit is contained in:
Qichao Zhang
Hauke Mehrtens
parent
1b59515456
commit
9d2b26d5a7
1 changed files with 3 additions and 3 deletions
|
|
@ -72,9 +72,9 @@
|
||||||
+
|
+
|
||||||
+static int do_lock(void)
|
+static int do_lock(void)
|
||||||
+{
|
+{
|
||||||
+ int pid;
|
+ pid_t pid;
|
||||||
+ int flags;
|
+ int flags;
|
||||||
+ char pidstr[8];
|
+ char pidstr[12];
|
||||||
+
|
+
|
||||||
+ if ((fd = open(file, O_RDWR | O_CREAT | O_EXCL, 0700)) < 0) {
|
+ if ((fd = open(file, O_RDWR | O_CREAT | O_EXCL, 0700)) < 0) {
|
||||||
+ if ((fd = open(file, O_RDWR)) < 0) {
|
+ if ((fd = open(file, O_RDWR)) < 0) {
|
||||||
|
|
@ -109,7 +109,7 @@
|
||||||
+ if (!waitonly) {
|
+ if (!waitonly) {
|
||||||
+ lseek(fd, 0, SEEK_SET);
|
+ lseek(fd, 0, SEEK_SET);
|
||||||
+ ftruncate(fd, 0);
|
+ ftruncate(fd, 0);
|
||||||
+ sprintf(pidstr, "%d\n", pid);
|
+ snprintf(sizeof(pidstr), pidstr, "%d\n", pid);
|
||||||
+ write(fd, pidstr, strlen(pidstr));
|
+ write(fd, pidstr, strlen(pidstr));
|
||||||
+ close(fd);
|
+ close(fd);
|
||||||
+ }
|
+ }
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue