fix: buffer overflow in the binding of libuuid

luau-project · Dec 27, 2024 · 175e8f1 · 175e8f1
1 parent fbb2c15
commit 175e8f1
Show file tree

Hide file tree

Showing 4 changed files with 292 additions and 3 deletions.
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -11,7 +11,7 @@ on:
       - "docs/**"
 
 env:
-  ROCKSPEC_VERSION: 0.0.5
+  ROCKSPEC_VERSION: 0.0.6
   DEV_ROCKSPEC: lua-uuid-dev-1.rockspec
 
 jobs:
@@ -166,6 +166,11 @@ jobs:
               Write-Host "Running sample file: ${color}$_";
 
               lua "$_";
+
+              if ($LASTEXITCODE -ne 0)
+              {
+                exit 1;
+              }
             };
   
   cplusplus-build:
@@ -184,6 +189,10 @@ jobs:
           - 5.2.4
           - 5.3.6
           - 5.4.7
+
+        use-clang:
+          - 'true'
+          - 'false'
 
     steps:
 
@@ -203,6 +212,10 @@ jobs:
       - name: Install dependencies
         run: sudo apt install -y uuid-dev libreadline-dev
 
+      - name: Install clang
+        if: ${{ matrix.use-clang == 'true' }}
+        run: sudo apt install -y clang
+
       - name: Download and extract Lua ${{ matrix.lua-version }} source code, and set environment variables
         run: |
           $targz = "lua-${{ matrix.lua-version }}.tar.gz";
@@ -224,7 +237,14 @@ jobs:
 
           $install_dir = Join-Path -Path "${{ runner.temp }}" -ChildPath "installed-lua-${{ matrix.lua-version }}";
           
-          Add-Content "${{ github.env }}" "CC=g++";
+          if ("${{ matrix.use-clang }}" -eq "true")
+          {
+            Add-Content "${{ github.env }}" "CC=clang++";
+          }
+          else
+          {
+            Add-Content "${{ github.env }}" "CC=g++";
+          }
           Add-Content "${{ github.env }}" "LUA_SRC_DIR=${lua_source_dir}";
           Add-Content "${{ github.env }}" "LUA_DIR=${install_dir}";
       
@@ -283,6 +303,133 @@ jobs:
               Write-Host "Running sample file: ${color}$_";
 
               lua "$_";
+
+              if ($LASTEXITCODE -ne 0)
+              {
+                exit 1;
+              }
+            };
+  
+  clang-build:
+    name: Clang Build
+    runs-on: ubuntu-latest
+
+    defaults:
+      run:
+        shell: pwsh
+
+    strategy:
+      matrix:
+
+        lua-version:
+          - 5.1.5
+          - 5.2.4
+          - 5.3.6
+          - 5.4.7
+
+    steps:
+
+      - name: Validate Lua version
+        run: |
+          if (-not ("${{ matrix.lua-version }}" -match "^(\d+)\.(\d+)(\.\d+)*$"))
+          {
+            Write-Host "Invalid Lua version (X.Y.Z) expected";
+            exit 1;
+          }
+
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          path: lua-uuid
+
+      - name: Install dependencies
+        run: sudo apt install -y uuid-dev libreadline-dev clang
+
+      - name: Download and extract Lua ${{ matrix.lua-version }} source code, and set environment variables
+        run: |
+          $targz = "lua-${{ matrix.lua-version }}.tar.gz";
+          $targz_path = Join-Path -Path "${{ runner.temp }}" -ChildPath $targz;
+
+          Invoke-WebRequest -Uri "https://lua.org/ftp/${targz}" -OutFile "$targz_path";
+          tar -C "${{ runner.temp }}" -xf "$targz_path";
+
+          $lua_source_dir = Join-Path -Path "${{ runner.temp }}" -ChildPath "lua-${{ matrix.lua-version }}";
+
+          if (-not (Test-Path $lua_source_dir))
+          {
+            $color = (0x1b -as [char]) + "[36m";
+
+            Write-Host "Unable to find Lua source code directory: ${color}${lua_source_dir}";
+
+            exit 1;
+          }
+
+          $install_dir = Join-Path -Path "${{ runner.temp }}" -ChildPath "installed-lua-${{ matrix.lua-version }}";
+          
+          Add-Content "${{ github.env }}" "CC=clang";
+          Add-Content "${{ github.env }}" "LUA_SRC_DIR=${lua_source_dir}";
+          Add-Content "${{ github.env }}" "LUA_DIR=${install_dir}";
+      
+      - name: Build Lua ${{ matrix.lua-version }}
+        run: |
+          make -C "${{ env.LUA_SRC_DIR }}" `
+            linux `
+            "CC=${{ env.CC }}";
+      
+      - name: Install Lua ${{ matrix.lua-version }}, and set environment variables
+        run: |
+          make -C "${{ env.LUA_SRC_DIR }}" `
+            install `
+            "INSTALL_TOP=${{ env.LUA_DIR }}";
+
+          $lua_bindir = Join-Path -Path "${{ env.LUA_DIR }}" -ChildPath "bin";
+          $lua_incdir = Join-Path -Path "${{ env.LUA_DIR }}" -ChildPath "include";
+
+          Add-Content "${{ github.path }}" "${lua_bindir}";
+          Add-Content "${{ github.env }}" "LUA_INCDIR=${lua_incdir}";
+      
+      - name: Compile lua-uuid
+        working-directory: lua-uuid
+        run: |
+          ${{ env.CC }} `
+            "-O2" `
+            "-Wall" `
+            "-c" `
+            "-fPIC" `
+            "-o" "src/lua-uuid.o" `
+            "-I${{ env.LUA_INCDIR }}" `
+            "-Isrc" `
+            "-I/usr/include/uuid" `
+            "-DLUA_UUID_BUILD_SHARED" `
+            "-DLUA_UUID_USE_LIBUUID" `
+            "src/lua-uuid.c";
+ 
+      - name: Link lua-uuid
+        working-directory: lua-uuid
+        run: |
+          ${{ env.CC }} "-shared" `
+            "-o" "lua-uuid.so" `
+            "src/lua-uuid.o" `
+            "-ldl" `
+            "-luuid";
+ 
+      - name: Run samples
+        working-directory: lua-uuid
+        run: |
+          Get-ChildItem "samples" -Recurse -File |
+            Where-Object Extension -EQ ".lua" |
+            Select-Object -ExpandProperty FullName |
+            Foreach-Object {
+              $color = (0x1b -as [char]) + "[36m";
+
+              Write-Host "Running sample file: ${color}$_";
+
+              lua "$_";
+
+              if ($LASTEXITCODE -ne 0)
+              {
+                exit 1;
+              }
             };
   
   build:
@@ -358,6 +505,11 @@ jobs:
               Write-Host "Linting rockspec: ${color}$_";
 
               luarocks lint "$_";
+
+              if ($LASTEXITCODE -ne 0)
+              {
+                exit 1;
+              }
             }
 
       - name: Build lua-uuid
@@ -384,6 +536,11 @@ jobs:
               Write-Host "Running sample file: ${color}$_";
 
               lua "$_";
+
+              if ($LASTEXITCODE -ne 0)
+              {
+                exit 1;
+              }
             };
   
   msys2-build:
@@ -480,6 +637,7 @@ jobs:
     needs:
       - c89-build
       - cplusplus-build
+      - clang-build
       - build
       - msys2-build
 

diff --git a/README.md b/README.md
@@ -217,6 +217,10 @@ print(id3:isnil())
 
 ## Change log
 
+* v0.0.6:
+> [!IMPORTANT]
+> 
+> This is a bug-fix release that fixed a buffer overflow in the binding of ```libuuid```. Users running older versions must upgrade as soon as possible to avoid potential exploits.
 * v0.0.5:
     * Adhering to C89;
     * Added CI job to make sure that this library conforms to C89;

diff --git a/rockspecs/lua-uuid-0.0.6-1.rockspec b/rockspecs/lua-uuid-0.0.6-1.rockspec
@@ -0,0 +1,106 @@
+package = "lua-uuid"
+version = "0.0.6-1"
+
+source = {
+    url = "git://github.com/luau-project/lua-uuid.git",
+    tag = "v0.0.6"
+}
+
+description = {
+    homepage = "https://github.com/luau-project/lua-uuid",
+    summary = [[Lightweight, native GUID / UUID library for Lua]],
+    detailed = [=[
+lua-uuid is a lightweight, native library for Lua (5.1 and newer) to deal with Universally Unique Id (UUID).
+
+* On Linux and BSD, it uses libuuid to generate UUIDs;
+* On Windows, it uses the WINAPI rpcrt4 library;
+* On macOS / iOS, it uses the CoreFoundation framework.
+
+lua-uuid is implemented in pure ANSI C, and also compiles as C++.
+
+Visit the GitHub repository for more information.]=],
+    license = "MIT"
+}
+
+supported_platforms = { "linux", "windows", "cygwin", "macosx", "bsd" }
+
+dependencies = {
+    "lua >= 5.1"
+}
+
+external_dependencies = {
+    platforms = {
+        linux = {
+            ["UUID"] = {
+                header = "uuid/uuid.h"
+            }
+        },
+        bsd = {
+            ["UUID"] = {
+                header = "uuid/uuid.h"
+            }
+        }
+    }
+}
+
+local function build_plat(plat)
+    if (plat == "linux" or plat == "bsd") then
+        return {
+            type = "builtin",
+            modules = {
+                ["lua-uuid"] = {
+                    sources = { "src/lua-uuid.c" },
+                    libraries = { "uuid" },
+                    defines = { "LUA_UUID_BUILD_SHARED", "LUA_UUID_USE_LIBUUID" },
+                    incdirs = { "src", "$(UUID_INCDIR)" },
+                    libdirs = { "$(UUID_LIBDIR)" }
+                }
+            }
+        }
+    elseif (plat == "windows" or plat == "cygwin") then
+        return {
+            type = "builtin",
+            modules = {
+                ["lua-uuid"] = {
+                    sources = { "src/lua-uuid.c" },
+                    libraries = { "rpcrt4" },
+                    defines = { "LUA_UUID_BUILD_SHARED", "LUA_UUID_USE_WIN32" },
+                    incdirs = { "src" },
+                    libdirs = { }
+                }
+            }
+        }
+    elseif (plat == "macosx") then
+        return {
+            type = "make",
+            makefile = "Makefile.macosx",
+            build_variables = {
+                CFLAGS = "$(CFLAGS)",
+                LIBFLAG = "$(LIBFLAG)",
+                CFLAGS_EXTRA = "-DLUA_UUID_BUILD_SHARED -DLUA_UUID_USE_APPLE",
+                LIBFLAG_EXTRA = "-framework CoreFoundation",
+                LUA_INCDIR = "$(LUA_INCDIR)",
+                OBJ_EXTENSION = "$(OBJ_EXTENSION)",
+                LIB_EXTENSION = "$(LIB_EXTENSION)"
+            },
+            install_variables = {
+                INSTALL_PREFIX = "$(PREFIX)",
+                INSTALL_LIBDIR = "$(LIBDIR)",
+                LUA_VERSION = "$(LUA_VERSION)",
+                LIB_EXTENSION = "$(LIB_EXTENSION)"
+            }
+        }
+    else
+        error("Unknown platform", 2)
+    end
+end
+
+build = {
+    platforms = {
+        linux = build_plat("linux"),
+        windows = build_plat("windows"),
+        cygwin = build_plat("cygwin"),
+        macosx = build_plat("macosx"),
+        bsd = build_plat("bsd")
+    }
+}
diff --git a/src/lua-uuid.c b/src/lua-uuid.c
@@ -24,6 +24,27 @@ typedef struct tagLuaUuid
 #endif
 } LuaUuid;
 
+/*
+** 
+** String buffer capacity
+** to hold a string representation
+** of the GUID / UUID.
+** 
+** Each character (16 chars) expands
+** to 2 bytes each (16 * 2)
+** + 4 hyphens
+** + 1 null-terminator.
+** 
+** As a safety measure, we double the number
+** to avoid any potential overflow.
+ */
+#define LUA_UUID_BUFFER_LEN ((16 * 2 + 4 + 1) * 2)
+
+/*
+** 
+** Metatable for GUID / UUID
+** 
+*/
 #define LUA_UUID_METATABLE "lua-uuid-metatable"
 
 static LuaUuid *lua_uuid_check(lua_State *L, int index)
@@ -226,7 +247,7 @@ static int lua_uuid_to_string(lua_State *L)
         RpcStringFreeA(&buffer);
     }
 #elif defined(LUA_UUID_USE_LIBUUID)
-    char buffer[32];
+    char buffer[LUA_UUID_BUFFER_LEN];
     uuid_unparse(uuid->data, buffer);
     lua_pushstring(L, buffer);
 #elif defined(LUA_UUID_USE_APPLE)