Fix handling of too long label and subsystem fields

mbroz · mbroz · commit 0eaaa4553e42 · 2025-10-01T21:41:55.000+02:00
These LUKS2 labels are stored in the binary header area that has limited size.

While we have been silently truncating strings here, it is something that
is not expected, as the final label is then different than expected.

Let's fix the code to explicitly print and return error here.

Also remove the comment about duplicate check. It is incorrect  optimization,
as some users will expect a real write on disk, we should no skip it.

Fixes: #958
diff --git a/lib/luks2/luks2_json_metadata.c b/lib/luks2/luks2_json_metadata.c
@@ -1272,7 +1272,11 @@ int LUKS2_hdr_uuid(struct crypt_device *cd, struct luks2_hdr *hdr, const char *u
 int LUKS2_hdr_labels(struct crypt_device *cd, struct luks2_hdr *hdr,
 		     const char *label, const char *subsystem, int commit)
 {
-	//FIXME: check if the labels are the same and skip this.
+	if ((label && strlen(label) >= LUKS2_LABEL_L) ||
+	    (subsystem && strlen(subsystem) >= LUKS2_LABEL_L)) {
+		log_err(cd, _("Label is too long."));
+		return -EINVAL;
+	}
 
 	memset(hdr->label, 0, LUKS2_LABEL_L);
 	if (label)
diff --git a/tests/api-test-2.c b/tests/api-test-2.c
@@ -4059,6 +4059,7 @@ static void Luks2Refresh(void)
 static void Luks2Flags(void)
 {
 	uint32_t flags = 42;
+	const char *longlabel = "0123456789abcedf0123456789abcedf0123456789abcedf";
 
 	OK_(crypt_init(&cd, DEVICE_1));
 	OK_(crypt_load(cd, CRYPT_LUKS2, NULL));
@@ -4089,6 +4090,9 @@ static void Luks2Flags(void)
 	OK_(strcmp("", crypt_get_label(cd)));
 	OK_(strcmp("", crypt_get_subsystem(cd)));
 
+	FAIL_(crypt_set_label(cd, longlabel, NULL), "long label");
+	FAIL_(crypt_set_label(cd, NULL, longlabel), "long subsystem");
+
 	CRYPT_FREE(cd);
 }
 
diff --git a/tests/compat-test2 b/tests/compat-test2
@@ -1278,6 +1278,8 @@ $CRYPTSETUP luksDump $LOOPDEV | grep "Label:" | grep -q "(no label)" || fail
 $CRYPTSETUP config $LOOPDEV --subsystem SatelliteThree --label TheLabel
 $CRYPTSETUP luksDump $LOOPDEV | grep "Subsystem:" | grep -q "SatelliteThree" || fail
 $CRYPTSETUP luksDump $LOOPDEV | grep "Label:" | grep -q "TheLabel" || fail
+$CRYPTSETUP config $LOOPDEV --label 0123456789abcdef0123456789abcdef0123456789abcdef 2>/dev/null && fail
+$CRYPTSETUP config $LOOPDEV --subsystem 0123456789abcdef0123456789abcdef0123456789abcdef 2>/dev/null && fail
 
 prepare "[36] LUKS PBKDF setting" wipe
 echo $PWD1 | $CRYPTSETUP luksFormat --type luks2 --pbkdf bla $LOOPDEV >/dev/null 2>&1 && fail

Original file line number	Diff line number	Diff line change
`@@ -4059,6 +4059,7 @@ static void Luks2Refresh(void)`
`4059`	`4059`	`static void Luks2Flags(void)`
`4060`	`4060`	`{`
`4061`	`4061`	`uint32_t flags = 42;`
	`4062`	`+ const char *longlabel = "0123456789abcedf0123456789abcedf0123456789abcedf";`
`4062`	`4063`
`4063`	`4064`	`OK_(crypt_init(&cd, DEVICE_1));`
`4064`	`4065`	`OK_(crypt_load(cd, CRYPT_LUKS2, NULL));`
`@@ -4089,6 +4090,9 @@ static void Luks2Flags(void)`
`4089`	`4090`	`OK_(strcmp("", crypt_get_label(cd)));`
`4090`	`4091`	`OK_(strcmp("", crypt_get_subsystem(cd)));`
`4091`	`4092`
	`4093`	`+ FAIL_(crypt_set_label(cd, longlabel, NULL), "long label");`
	`4094`	`+ FAIL_(crypt_set_label(cd, NULL, longlabel), "long subsystem");`
	`4095`	`+`
`4092`	`4096`	`CRYPT_FREE(cd);`
`4093`	`4097`	`}`
`4094`	`4098`