[PATCH] udev: check for invalid chars in various fields received from the kernel

author Luca Boccassi <luca.boccassi@gmail.com>

Fri, 6 Mar 2026 19:32:35 +0000 (19:32 +0000)

committer Tobias Deiminger <tobias.deiminger@linutronix.de>

Mon, 27 Apr 2026 19:48:55 +0000 (21:48 +0200)
author Luca Boccassi <luca.boccassi@gmail.com>
Fri, 6 Mar 2026 19:32:35 +0000 (19:32 +0000)
committer Tobias Deiminger <tobias.deiminger@linutronix.de>
Mon, 27 Apr 2026 19:48:55 +0000 (21:48 +0200)
diff --git a/src/udev/dmi_memory_id/dmi_memory_id.c b/src/udev/dmi_memory_id/dmi_memory_id.c

index 4793c0f038e26a0584eeb7b80fbefbf2af7449e4..8f170d6071a6c1222e8b38739b429b4c43f9a191 100644 (file)
--- a/src/udev/dmi_memory_id/dmi_memory_id.c
+++ b/src/udev/dmi_memory_id/dmi_memory_id.c
@@ -51,6 +51,7 @@
  #include "udev-util.h"
  #include "unaligned.h"
  #include "version.h"
+#include "utf8.h"
  
  #define SUPPORTED_SMBIOS_VER 0x030300
  
@@ -185,7 +186,7 @@ static void dmi_memory_device_string(
  
          str = strdupa_safe(dmi_string(h, s));
          str = strstrip(str);
-        if (!isempty(str))
+        if (!isempty(str) && utf8_is_valid(str) && !string_has_cc(str, /* ok= */ NULL))
                  printf("MEMORY_DEVICE_%u_%s=%s\n", slot_num, attr_suffix, str);
  }
  
diff --git a/src/udev/scsi_id/scsi_id.c b/src/udev/scsi_id/scsi_id.c

index 364d5677051248f0f3b7d7cad89f65f1937d2417..f689582bd09f7f2e9844b47826df3a6f837520c9 100644 (file)
--- a/src/udev/scsi_id/scsi_id.c
+++ b/src/udev/scsi_id/scsi_id.c
@@ -27,6 +27,7 @@
  #include "strxcpyx.h"
  #include "udev-util.h"
  #include "version.h"
+#include "utf8.h"
  
  static const struct option options[] = {
          { "device",             required_argument, NULL, 'd' },
@@ -441,7 +442,7 @@ static int scsi_id(char *maj_min_dev) {
                  }
                  if (dev_scsi.tgpt_group[0] != '\0')
                          printf("ID_TARGET_PORT=%s\n", dev_scsi.tgpt_group);
-                if (dev_scsi.unit_serial_number[0] != '\0')
+                if (dev_scsi.unit_serial_number[0] != '\0' && utf8_is_valid(dev_scsi.unit_serial_number) && !string_has_cc(dev_scsi.unit_serial_number, /* ok= */ NULL))
                          printf("ID_SCSI_SERIAL=%s\n", dev_scsi.unit_serial_number);
                  goto out;
          }
diff --git a/src/udev/udev-builtin-net_id.c b/src/udev/udev-builtin-net_id.c

index 6425494f9c75377b0c7c2cd653d1ed171d1ecae0..3587a1da5ae5fff4f7f3df7b800ef68e9db21f43 100644 (file)
--- a/src/udev/udev-builtin-net_id.c
+++ b/src/udev/udev-builtin-net_id.c
@@ -39,6 +39,7 @@
  #include "strv.h"
  #include "strxcpyx.h"
  #include "udev-builtin.h"
+#include "utf8.h"
  
  #define ONBOARD_14BIT_INDEX_MAX ((1U << 14) - 1)
  #define ONBOARD_16BIT_INDEX_MAX ((1U << 16) - 1)
@@ -220,7 +221,13 @@ static int dev_pci_onboard(sd_device *dev, const LinkInfo *info, NetNames *names
                           special_glyph(SPECIAL_GLYPH_ARROW_RIGHT), empty_to_na(names->pci_onboard));
  
          if (sd_device_get_sysattr_value(names->pcidev, "label", &names->pci_onboard_label) >= 0)
-                log_device_debug(dev, "Onboard label from PCI device: %s", names->pci_onboard_label);
+        {
+                if (!utf8_is_valid(names->pci_onboard_label) || string_has_cc(names->pci_onboard_label, /* ok= */ NULL)) {
+                        names->pci_onboard_label = NULL;
+                        log_device_debug_errno(dev, SYNTHETIC_ERRNO(EINVAL), "Invalid label");
+                } else
+                        log_device_debug(dev, "Onboard label from PCI device: %s", names->pci_onboard_label);
+        }
          else
                  names->pci_onboard_label = NULL;
  
@@ -1083,6 +1090,12 @@ static int get_link_info(sd_device *dev, LinkInfo *info) {
                  return r;
  
          (void) sd_device_get_sysattr_value(dev, "phys_port_name", &info->phys_port_name);
+        if (!isempty(info->phys_port_name)) {
+                if (!utf8_is_valid(info->phys_port_name) || string_has_cc(info->phys_port_name, /* ok= */ NULL)) {
+                        info->phys_port_name = NULL;
+                        log_device_debug_errno(dev, SYNTHETIC_ERRNO(EINVAL), "Invalid phys_port_name");
+                }
+        }
  
          r = sd_device_get_sysattr_value(dev, "address", &s);
          if (r < 0 && r != -ENOENT)
diff --git a/src/udev/v4l_id/v4l_id.c b/src/udev/v4l_id/v4l_id.c

index c2312c790998d9f669d31acf3dabd32281722ae2..f363441de39c7307820cec0fabcc852c879ceb9c 100644 (file)
--- a/src/udev/v4l_id/v4l_id.c
+++ b/src/udev/v4l_id/v4l_id.c
@@ -28,6 +28,8 @@
  
  #include "fd-util.h"
  #include "util.h"
+#include "string-util.h"
+#include "utf8.h"
  
  int main(int argc, char *argv[]) {
          static const struct option options[] = {
@@ -66,7 +68,8 @@ int main(int argc, char *argv[]) {
          if (ioctl(fd, VIDIOC_QUERYCAP, &v2cap) == 0) {
                  int capabilities;
                  printf("ID_V4L_VERSION=2\n");
-                printf("ID_V4L_PRODUCT=%s\n", v2cap.card);
+                if (utf8_is_valid((char *)v2cap.card) && !string_has_cc((char *)v2cap.card, /* ok= */ NULL))
+                        printf("ID_V4L_PRODUCT=%s\n", v2cap.card);
                  printf("ID_V4L_CAPABILITIES=:");
                  if (v2cap.capabilities & V4L2_CAP_DEVICE_CAPS)
                          capabilities = v2cap.device_caps;
author	Luca Boccassi <luca.boccassi@gmail.com>
	Fri, 6 Mar 2026 19:32:35 +0000 (19:32 +0000)
committer	Tobias Deiminger <tobias.deiminger@linutronix.de>
	Mon, 27 Apr 2026 19:48:55 +0000 (21:48 +0200)
src/udev/dmi_memory_id/dmi_memory_id.c		patch \| blob \| history
src/udev/scsi_id/scsi_id.c		patch \| blob \| history
src/udev/udev-builtin-net_id.c		patch \| blob \| history
src/udev/v4l_id/v4l_id.c		patch \| blob \| history