init: do not print environment variable value

cyphar · cyphar · commit 20e38fb2b120 · 2023-04-28T16:32:15.000+10:00
When given an environment variable that is invalid, it's not a good idea
to output the contents in case they are supposed to be private (though
such a container wouldn't start anyway so it seems unlikely there's a
real way to use this to exfiltrate environment variables you didn't
already know).

Reported-by: Carl Henrik Lunde &lt;chlunde@ifi.uio.no&gt;
Signed-off-by: Aleksa Sarai &lt;cyphar@cyphar.com&gt;
diff --git a/libcontainer/init_linux.go b/libcontainer/init_linux.go
@@ -116,17 +116,17 @@ func populateProcessEnvironment(env []string) error {
 	for _, pair := range env {
 		p := strings.SplitN(pair, "=", 2)
 		if len(p) < 2 {
-			return fmt.Errorf("invalid environment variable: %q", pair)
+			return errors.New("invalid environment variable: missing '='")
 		}
 		name, val := p[0], p[1]
 		if name == "" {
-			return fmt.Errorf("environment variable name can't be empty: %q", pair)
+			return errors.New("invalid environment variable: name cannot be empty")
 		}
 		if strings.IndexByte(name, 0) >= 0 {
-			return fmt.Errorf("environment variable name can't contain null(\\x00): %q", pair)
+			return fmt.Errorf("invalid environment variable %q: name contains nul byte (\\x00)", name)
 		}
 		if strings.IndexByte(val, 0) >= 0 {
-			return fmt.Errorf("environment variable value can't contain null(\\x00): %q", pair)
+			return fmt.Errorf("invalid environment variable %q: value contains nul byte (\\x00)", name)
 		}
 		if err := os.Setenv(name, val); err != nil {
 			return err

Original file line number	Diff line number	Diff line change
`@@ -116,17 +116,17 @@ func populateProcessEnvironment(env []string) error {`
`116`	`116`	`for _, pair := range env {`
`117`	`117`	`p := strings.SplitN(pair, "=", 2)`
`118`	`118`	`if len(p) < 2 {`
`119`		`- return fmt.Errorf("invalid environment variable: %q", pair)`
	`119`	`+ return errors.New("invalid environment variable: missing '='")`
`120`	`120`	`}`
`121`	`121`	`name, val := p[0], p[1]`
`122`	`122`	`if name == "" {`
`123`		`- return fmt.Errorf("environment variable name can't be empty: %q", pair)`
	`123`	`+ return errors.New("invalid environment variable: name cannot be empty")`
`124`	`124`	`}`
`125`	`125`	`if strings.IndexByte(name, 0) >= 0 {`
`126`		`- return fmt.Errorf("environment variable name can't contain null(\\x00): %q", pair)`
	`126`	`+ return fmt.Errorf("invalid environment variable %q: name contains nul byte (\\x00)", name)`
`127`	`127`	`}`
`128`	`128`	`if strings.IndexByte(val, 0) >= 0 {`
`129`		`- return fmt.Errorf("environment variable value can't contain null(\\x00): %q", pair)`
	`129`	`+ return fmt.Errorf("invalid environment variable %q: value contains nul byte (\\x00)", name)`
`130`	`130`	`}`
`131`	`131`	`if err := os.Setenv(name, val); err != nil {`
`132`	`132`	`return err`