Fix checks for reading and writing FuseMessage.

Previously FuseMessage were checking result of read/write operation after checking header.len value is valid. This was wrong because header.len does not contain correct value when read function does not read any bytes and returns zero. Bug: 33278098 Test: libappfuse_test Change-Id: Icf998ca6c3eeee20cbc4aa2f65195a87e59ffc27
author: Daichi Hirono 2016-12-05 01:50:44 -0600
committer: Daichi Hirono 2016-12-11 23:34:29 -0600
commit: a6373ec1d47c0b370c87b3915feeba8f2b4523f7 (patch)
tree: d8e532d25edd551db366b825e96f22a69faf8b48 /libappfuse/FuseBuffer.cc
parent: 4b4475308598659137657261218fc5a3207ec79c (diff)
download: platform-system-core-a6373ec1d47c0b370c87b3915feeba8f2b4523f7.tar.gz
platform-system-core-a6373ec1d47c0b370c87b3915feeba8f2b4523f7.tar.xz
platform-system-core-a6373ec1d47c0b370c87b3915feeba8f2b4523f7.zip
1 files changed, 25 insertions, 12 deletions
diff --git a/libappfuse/FuseBuffer.cc b/libappfuse/FuseBuffer.cc
index 3ade31c54..882d54552 100644
--- a/libappfuse/FuseBuffer.cc
+++ b/libappfuse/FuseBuffer.cc
@@ -34,26 +34,38 @@ static_assert(
    "FuseBuffer must be standard layout union.");
 template <typename T>
-bool FuseMessage<T>::CheckHeaderLength() const {
+bool FuseMessage<T>::CheckPacketSize(size_t size, const char* name) const {
  const auto& header = static_cast<const T*>(this)->header;
-  if (sizeof(header) <= header.len && header.len <= sizeof(T)) {
+  if (size >= sizeof(header) && size <= sizeof(T)) {
    return true;
  } else {
-    LOG(ERROR) << "Packet size is invalid=" << header.len;
+    LOG(ERROR) << name << " is invalid=" << size;
    return false;
  }
 }
 template <typename T>
-bool FuseMessage<T>::CheckResult(
+bool FuseMessage<T>::CheckResult(int result, const char* operation_name) const {
-    int result, const char* operation_name) const {
+  if (result == 0) {
+    // Expected close of other endpoints.
+    return false;
+  }
+  if (result < 0) {
+    PLOG(ERROR) << "Failed to " << operation_name << " a packet";
+    return false;
+  }
+  return true;
+}
+template <typename T>
+bool FuseMessage<T>::CheckHeaderLength(int result, const char* operation_name) const {
  const auto& header = static_cast<const T*>(this)->header;
-  if (result >= 0 && static_cast<uint32_t>(result) == header.len) {
+  if (static_cast<uint32_t>(result) == header.len) {
    return true;
  } else {
-    PLOG(ERROR) << "Failed to " << operation_name
+    LOG(ERROR) << "Invalid header length: operation_name=" << operation_name
-        << " a packet. result=" << result << " header.len="
+               << " result=" << result
-        << header.len;
+               << " header.len=" << header.len;
    return false;
  }
 }
@@ -61,17 +73,18 @@ bool FuseMessage<T>::CheckResult(
 template <typename T>
 bool FuseMessage<T>::Read(int fd) {
  const ssize_t result = TEMP_FAILURE_RETRY(::read(fd, this, sizeof(T)));
-  return CheckHeaderLength() && CheckResult(result, "read");
+  return CheckResult(result, "read") && CheckPacketSize(result, "read count") &&
+      CheckHeaderLength(result, "read");
 }
 template <typename T>
 bool FuseMessage<T>::Write(int fd) const {
  const auto& header = static_cast<const T*>(this)->header;
-  if (!CheckHeaderLength()) {
+  if (!CheckPacketSize(header.len, "header.len")) {
    return false;
  }
  const ssize_t result = TEMP_FAILURE_RETRY(::write(fd, this, header.len));
-  return CheckResult(result, "write");
+  return CheckResult(result, "write") && CheckHeaderLength(result, "write");
 }
 template class FuseMessage<FuseRequest>;
author	Daichi Hirono	2016-12-05 01:50:44 -0600
committer	Daichi Hirono	2016-12-11 23:34:29 -0600
commit	a6373ec1d47c0b370c87b3915feeba8f2b4523f7 (patch)
tree	d8e532d25edd551db366b825e96f22a69faf8b48 /libappfuse/FuseBuffer.cc
parent	4b4475308598659137657261218fc5a3207ec79c (diff)
download	platform-system-core-a6373ec1d47c0b370c87b3915feeba8f2b4523f7.tar.gz platform-system-core-a6373ec1d47c0b370c87b3915feeba8f2b4523f7.tar.xz platform-system-core-a6373ec1d47c0b370c87b3915feeba8f2b4523f7.zip