mmanon: Simplified and fixed IPv4 digit detection.

- Fixed an issue with numbers above int64 in syntax_ipv4. Numbers that were up to 256 above the max of an int64 could incorrectly be detected as valid ipv4 digit. - Simplified the IPv4 digit detection function and renamed to isPosByte. - added testcasse for malformed IPvc4 addresses closes: https://github.com/rsyslog/rsyslog/issues/4940
2025-12-12 19:30:42 +01:00 · 2022-07-28 16:17:41 +02:00 · 2022-07-28 16:17:41 +02:00 · a335ec06f0
commit a335ec06f0
parent 8001a614ba
4 changed files with 73 additions and 25 deletions
--- a/plugins/mmanon/mmanon.c
+++ b/plugins/mmanon/mmanon.c
@ -22,6 +22,7 @@
 #include "config.h"
 #include "rsyslog.h"
 #include <stdio.h>
 #include <ctype.h>
 #include <stdarg.h>
 #include <stdlib.h>
 #include <string.h>
@ -388,72 +389,76 @@ getHexVal(char c)
 }
-/* returns -1 if no integer found, else integer */
+/* returns 1 if valid IPv4 digit, 0 if not */
-static int64_t
+static int
-getPosInt(const uchar *const __restrict__ buf,
+isPosByte(const uchar *const __restrict__ buf,
 	const size_t buflen,
 	size_t *const __restrict__ nprocessed)
 {
-	int64_t val = 0;
+	int val = 0; /* Default means no byte found */
 	size_t i;
-	for(i = 0 ; i < buflen ; i++) {
+	for(i = 0 ; i < buflen; i++) {
-		if('0' <= buf[i] && buf[i] <= '9')
+		if('0' <= buf[i] && buf[i] <= '9') {
-			val = val*10 + buf[i]-'0';
+			/* Maximum 3 digits for single IPv4 Number, we only copy up to 4 numbers
-		else
+			 * but process forward to non digits */
 			if (i < 4) {
 				val = val*10 + buf[i]-'0';
 			}
 		} else
 			break;
 	}
 	*nprocessed = i;
-	if(i == 0)
+	/* Return 1 if more than 1 and less the 4 digits and between 0 and 255 */
-		val = -1;
+	if(	i > 0 &&
-	return val;
+		i < 4 &&
 		(val >= 0 && val <= 255)) {
 		return 1;
 	} else {
 		return 0;
 	}
 }
 /* 1 - is IPv4, 0 not */
 static int
 syntax_ipv4(const uchar *const __restrict__ buf,
 	const size_t buflen,
 	size_t *const __restrict__ nprocessed)
 {
-	int64_t val;
+	size_t nproc = 0;
 	size_t nproc;
 	size_t i;
 	int r = 0;
-
+	if(isPosByte(buf, buflen, &i) == 0) {
 	val = getPosInt(buf, buflen, &i);
 	if(val < 0 || val > 255)
 		goto done;
-
+	}
 	if(i >= buflen || buf[i] != '.') {
 		goto done;
 	}
 	i++;
-	val = getPosInt(buf+i, buflen-i, &nproc);
+	if(isdigit(buf[i]) == 0 || isPosByte(buf+i, buflen-i, &nproc) == 0) {
 	if(val < 0 || val > 255)
 		goto done;
 	}
 	i += nproc;
 	if(i >= buflen || buf[i] != '.') {
 		goto done;
 	}
 	i++;
-	val = getPosInt(buf+i, buflen-i, &nproc);
+	if(isdigit(buf[i]) == 0 || isPosByte(buf+i, buflen-i, &nproc) == 0) {
 	if(val < 0 || val > 255)
 		goto done;
 	}
 	i += nproc;
 	if(i >= buflen || buf[i] != '.') {
 		goto done;
 	}
 	i++;
-	val = getPosInt(buf+i, buflen-i, &nproc);
+	if(isdigit(buf[i]) == 0 || isPosByte(buf+i, buflen-i, &nproc) == 0) {
 	if(val < 0 || val > 255)
 		goto done;
 	}
 	i += nproc;
 	*nprocessed = i;
 	r = 1;
 done:
 	return r;
 }
--- a/tests/Makefile.am
+++ b/tests/Makefile.am
@ -617,6 +617,7 @@ TESTS +=  \
 	mmanon_simple_12_ipv4.sh \
 	mmanon_simple_33_ipv4.sh \
 	mmanon_simple_8_ipv4.sh \
 	mmanon_simple_mallformed_ipv4.sh \
 	mmanon_random_128_ipv6.sh \
 	mmanon_zero_128_ipv6.sh \
 	mmanon_zero_96_ipv6.sh \
@ -1966,6 +1967,7 @@ EXTRA_DIST= \
 	mmanon_simple_12_ipv4.sh \
 	mmanon_simple_33_ipv4.sh \
 	mmanon_simple_8_ipv4.sh \
 	mmanon_simple_mallformed_ipv4.sh \
 	mmanon_random_128_ipv6.sh \
 	mmanon_zero_128_ipv6.sh \
 	mmanon_zero_96_ipv6.sh \
--- a/tests/mmanon_recognize_ipv4.sh
+++ b/tests/mmanon_recognize_ipv4.sh
@ -2,6 +2,10 @@
 # add 2016-11-22 by Jan Gerhards, released under ASL 2.0
 . ${srcdir:=.}/diag.sh init
 #export RSYSLOG_DEBUG="debug nostdout noprintmutexaction"
 #export RSYSLOG_DEBUGLOG="$RSYSLOG_DYNNAME.debuglog"
 generate_conf
 add_conf '
 template(name="outfmt" type="string" string="%msg%\n")
--- a/tests/mmanon_simple_mallformed_ipv4.sh
+++ b/tests/mmanon_simple_mallformed_ipv4.sh
@ -0,0 +1,37 @@
 #!/bin/bash
 # add 2022-07-28 by Andre Lorbach, released under ASL 2.0
 . ${srcdir:=.}/diag.sh init
 #export USE_VALGRIND="YES" # this test only makes sense with valgrind enabled
 #export RS_TEST_VALGRIND_EXTRA_OPTS="--keep-debuginfo=yes"
 #export RSYSLOG_DEBUG="debug nostdout noprintmutexaction"
 #export RSYSLOG_DEBUGLOG="$RSYSLOG_DYNNAME.debuglog"
 generate_conf
 add_conf '
 template(name="outfmt" type="string" string="%msg%\n")
 module(load="../plugins/mmanon/.libs/mmanon")
 module(load="../plugins/imtcp/.libs/imtcp")
 input(type="imtcp" port="0" listenPortFileName="'$RSYSLOG_DYNNAME'.tcpflood_port" ruleset="testing")
 ruleset(name="testing") {
 	action(type="mmanon" ipv4.bits="32" ipv4.mode="simple")
 	action(type="omfile" file=`echo $RSYSLOG_OUT_LOG` template="outfmt")
 }'
 startup
 tcpflood -m1 -M "\"<129>Mar 10 01:00:00 172.20.245.8 tag: 165874883373.1.15599155266856607338.91@whatever
 <129>Mar 10 01:00:00 172.20.245.8 tag: 1.165874883373.15599155266856607338.91@whatever
 <129>Mar 10 01:00:00 172.20.245.8 tag: 15599155266856607338.165874883373.1.91@whatever
 <129>Mar 10 01:00:00 172.20.245.8 tag: 91.165874883373.1.15599155266856607338.@whatever\""
 shutdown_when_empty
 wait_shutdown
 export EXPECTED=' 165874883373.1.15599155266856607338.91@whatever
 1.165874883373.15599155266856607338.91@whatever
 15599155266856607338.165874883373.1.91@whatever
 91.165874883373.1.15599155266856607338.@whatever'
 cmp_exact
 exit_test