arm64: zynqmp: Fix set_fdtfile() not to break u-boots DTB

Message ID	5192ad3001c704c47cb578746f3200aab1dabd94.1593002658.git.michal.simek@xilinx.com
State	Accepted
Commit	1b208d59bac12da6f8bd2f7d9e9482fa16340705
Delegated to:	Michal Simek
Headers	show Return-Path: <u-boot-bounces@lists.denx.de> From: Michal Simek <michal.simek@xilinx.com> To: u-boot@lists.denx.de, git@xilinx.com Subject: [PATCH] arm64: zynqmp: Fix set_fdtfile() not to break u-boots DTB Date: Wed, 24 Jun 2020 14:44:20 +0200 Message-Id: <5192ad3001c704c47cb578746f3200aab1dabd94.1593002658.git.michal.simek@xilinx.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Precedence: list Errors-To: u-boot-bounces@lists.denx.de Sender: "U-Boot" <u-boot-bounces@lists.denx.de>
Series	arm64: zynqmp: Fix set_fdtfile() not to break u-boots DTB \| expand arm64: zynqmp: Fix set_fdtfile() not to break u-boots DTB

Message ID

5192ad3001c704c47cb578746f3200aab1dabd94.1593002658.git.michal.simek@xilinx.com

State

Accepted

Commit

1b208d59bac12da6f8bd2f7d9e9482fa16340705

Delegated to:

Michal Simek

Headers

show

Return-Path: <u-boot-bounces@lists.denx.de>
X-Original-To: incoming@patchwork.ozlabs.org
Delivered-To: patchwork-incoming@bilbo.ozlabs.org
Authentication-Results: ozlabs.org;
 spf=pass (sender SPF authorized) smtp.mailfrom=lists.denx.de
 (client-ip=85.214.62.61; helo=phobos.denx.de;
 envelope-from=u-boot-bounces@lists.denx.de; receiver=<UNKNOWN>)
Authentication-Results: ozlabs.org;
 dmarc=none (p=none dis=none) header.from=xilinx.com
Authentication-Results: ozlabs.org;
	dkim=fail reason="signature verification failed" (2048-bit key;
 unprotected) header.d=monstr-eu.20150623.gappssmtp.com
 header.i=@monstr-eu.20150623.gappssmtp.com header.a=rsa-sha256
 header.s=20150623 header.b=ewfRiF3I;
	dkim-atps=neutral
Received: from phobos.denx.de (phobos.denx.de [85.214.62.61])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (4096 bits))
	(No client certificate requested)
	by ozlabs.org (Postfix) with ESMTPS id 49sNBk3xCYz9sRN
	for <incoming@patchwork.ozlabs.org>; Wed, 24 Jun 2020 22:44:30 +1000 (AEST)
Received: from h2850616.stratoserver.net (localhost [IPv6:::1])
	by phobos.denx.de (Postfix) with ESMTP id 800C982008;
	Wed, 24 Jun 2020 14:44:27 +0200 (CEST)
Authentication-Results: phobos.denx.de;
 dmarc=none (p=none dis=none) header.from=xilinx.com
Authentication-Results: phobos.denx.de;
 spf=pass smtp.mailfrom=u-boot-bounces@lists.denx.de
Authentication-Results: phobos.denx.de;
	dkim=fail reason="signature verification failed" (2048-bit key;
 unprotected) header.d=monstr-eu.20150623.gappssmtp.com
 header.i=@monstr-eu.20150623.gappssmtp.com header.b="ewfRiF3I";
	dkim-atps=neutral
Received: by phobos.denx.de (Postfix, from userid 109)
 id 257488203F; Wed, 24 Jun 2020 14:44:26 +0200 (CEST)
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on phobos.denx.de
X-Spam-Level: 
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,DKIM_SIGNED,
 DKIM_VALID,SPF_HELO_NONE,URIBL_BLOCKED autolearn=ham
 autolearn_force=no version=3.4.2
Received: from mail-ed1-x543.google.com (mail-ed1-x543.google.com
 [IPv6:2a00:1450:4864:20::543])
 (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits))
 (No client certificate requested)
 by phobos.denx.de (Postfix) with ESMTPS id 1335D81F87
 for <u-boot@lists.denx.de>; Wed, 24 Jun 2020 14:44:23 +0200 (CEST)
Authentication-Results: phobos.denx.de;
 dmarc=none (p=none dis=none) header.from=xilinx.com
Authentication-Results: phobos.denx.de;
 spf=none smtp.mailfrom=monstr@monstr.eu
Received: by mail-ed1-x543.google.com with SMTP id m21so1360285eds.13
 for <u-boot@lists.denx.de>; Wed, 24 Jun 2020 05:44:23 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=monstr-eu.20150623.gappssmtp.com; s=20150623;
 h=sender:from:to:subject:date:message-id:mime-version
 :content-transfer-encoding;
 bh=SldFdQjk92BZ4os9c3yYzDGQ1awtp0RpEbeb2USX/9c=;
 b=ewfRiF3IEGZpsnFzv0okclmkpWPTxArZG7hpTljRNdRbV03F5ZNyW0LB6I8oLrd7NV
 5H3oolG1ZzjWu6AfCXZXsSjljSCSFay9u6lXe5Evr0pi/WLebxe9GpwFTYto+YshOWVv
 vq1VB/0vagvetYr7Y+tIcvYqCgpd1e2V5udt9vdap9GCwuCPv9tjpl4iAZmH8v9bnIcP
 hK/dmrKk2tLhL3dRDIoXTvrNuiXFQtHBpjG/kShmVT4yXMwfauwP7Cv/i7fAx16/540y
 qgy52yCQDpHxAeSZ22uPlHLSTl6++vf1xNEIZKFWVHRXzUPDXe5NWAJGURmeCRLL1rVG
 5j6g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:sender:from:to:subject:date:message-id
 :mime-version:content-transfer-encoding;
 bh=SldFdQjk92BZ4os9c3yYzDGQ1awtp0RpEbeb2USX/9c=;
 b=E9XzirN4jbgXbjZ76BBQz+LTmsdT6qINWdUbxKElwCbIQSHTtyy9BkQn+hUypOdZGq
 QNFqmSYT/vNved/qkeoxyVgX923z3lzkMvlS0cfIDSDLsFly3EboZLKJncKAM+VA6I89
 BQrq4UHeO0DrfUOhjSKDvN6S3nUJ7nlLzvNa4PfBRDUfhHM23dcMn8/YgGoy8llsSZVd
 IPNJ3ariHWw/vGDs2TMXOPG7z8FIaH38dr5tyw7wmPNdxnAqkPAxSC/jtFfCfd0xrijg
 SuzWRq+2DafDOaWYK+j080uXJyLWfmiI02saVJPsg1sw1W40HWiLX12l59qcBsw1rK6u
 Lggg==
X-Gm-Message-State: AOAM530ggAX4hyRXhCvqWUnY4mpVF+R2/M6gGcSmaTJ3IAsjvFWveaA7
 OLspYebFb9qIMxHos2MGROi2aHYgaNDUCA==
X-Google-Smtp-Source: 
 ABdhPJy3B8U2pwkb5f4kdvnXbJyTgVmbajAgoAslalAmZApUDlKYHblH3e4mZ9T8XgwHY5hqnpsQsQ==
X-Received: by 2002:a05:6402:22b3:: with SMTP id
 cx19mr26061941edb.329.1593002662467;
 Wed, 24 Jun 2020 05:44:22 -0700 (PDT)
Received: from localhost (nat-35.starnet.cz. [178.255.168.35])
 by smtp.gmail.com with ESMTPSA id aq25sm7109592ejc.11.2020.06.24.05.44.21
 (version=TLS1_2 cipher=ECDHE-ECDSA-CHACHA20-POLY1305 bits=256/256);
 Wed, 24 Jun 2020 05:44:21 -0700 (PDT)
From: Michal Simek <michal.simek@xilinx.com>
To: u-boot@lists.denx.de,
	git@xilinx.com
Subject: [PATCH] arm64: zynqmp: Fix set_fdtfile() not to break u-boots DTB
Date: Wed, 24 Jun 2020 14:44:20 +0200
Message-Id: 
 <5192ad3001c704c47cb578746f3200aab1dabd94.1593002658.git.michal.simek@xilinx.com>
X-Mailer: git-send-email 2.27.0
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-BeenThere: u-boot@lists.denx.de
X-Mailman-Version: 2.1.30rc1
Precedence: list
List-Id: U-Boot discussion <u-boot.lists.denx.de>
List-Unsubscribe: <https://lists.denx.de/options/u-boot>,
 <mailto:u-boot-request@lists.denx.de?subject=unsubscribe>
List-Archive: <https://lists.denx.de/pipermail/u-boot/>
List-Post: <mailto:u-boot@lists.denx.de>
List-Help: <mailto:u-boot-request@lists.denx.de?subject=help>
List-Subscribe: <https://lists.denx.de/listinfo/u-boot>,
 <mailto:u-boot-request@lists.denx.de?subject=subscribe>
Errors-To: u-boot-bounces@lists.denx.de
Sender: "U-Boot" <u-boot-bounces@lists.denx.de>
X-Virus-Scanned: clamav-milter 0.102.2 at phobos.denx.de
X-Virus-Status: Clean

Series

arm64: zynqmp: Fix set_fdtfile() not to break u-boots DTB | expand

Commit Message

Michal Simek June 24, 2020, 12:44 p.m. UTC

Origin function was calling strsep which replaced delimiter ',' by a null
byte ('\0'). Operation was done directly on FDT which ends up with the
following behavior:

ZynqMP>  printenv fdtfile
fdtfile=xilinx/zynqmp.dtb
ZynqMP> fdt addr $fdtcontroladdr
ZynqMP> fdt print / compatible
compatible = "xlnx", "zynqmp"

As is visible fdtfile was correctly composed but a null byte caused that
xlnx was separated from zynqmp.
This hasn't been spotted because in all Xilinx DTs there are at least 3
compatible string and only the first one was affected by this issue.
But for systems which only had one compatible string "xlnx,zynqmp" it was
causing an issue when U-Boot's DT was used by Linux kernel.

The patch removes strsep calling and strchr is called instead which just
locate the first char after deliminator ',' (variable called "name").
And using this pointer in fdtfile composing.

Fixes: 91d7e0c47f51 ("arm64: zynqmp: Create fdtfile from compatible string")
Signed-off-by: Michal Simek <michal.simek@xilinx.com>
---

 board/xilinx/zynqmp/zynqmp.c | 19 +++++++++++++------
 1 file changed, 13 insertions(+), 6 deletions(-)

Comments

Michal Simek June 24, 2020, 12:52 p.m. UTC | #1

On 24. 06. 20 14:44, Michal Simek wrote:
> Origin function was calling strsep which replaced delimiter ',' by a null
> byte ('\0'). Operation was done directly on FDT which ends up with the
> following behavior:
> 
> ZynqMP>  printenv fdtfile
> fdtfile=xilinx/zynqmp.dtb
> ZynqMP> fdt addr $fdtcontroladdr
> ZynqMP> fdt print / compatible
> compatible = "xlnx", "zynqmp"
> 
> As is visible fdtfile was correctly composed but a null byte caused that
> xlnx was separated from zynqmp.
> This hasn't been spotted because in all Xilinx DTs there are at least 3
> compatible string and only the first one was affected by this issue.
> But for systems which only had one compatible string "xlnx,zynqmp" it was
> causing an issue when U-Boot's DT was used by Linux kernel.
> 
> The patch removes strsep calling and strchr is called instead which just
> locate the first char after deliminator ',' (variable called "name").
> And using this pointer in fdtfile composing.
> 
> Fixes: 91d7e0c47f51 ("arm64: zynqmp: Create fdtfile from compatible string")
> Signed-off-by: Michal Simek <michal.simek@xilinx.com>
> ---
> 
>  board/xilinx/zynqmp/zynqmp.c | 19 +++++++++++++------
>  1 file changed, 13 insertions(+), 6 deletions(-)
> 
> diff --git a/board/xilinx/zynqmp/zynqmp.c b/board/xilinx/zynqmp/zynqmp.c
> index ebb71729081d..8a4df6fc1ab6 100644
> --- a/board/xilinx/zynqmp/zynqmp.c
> +++ b/board/xilinx/zynqmp/zynqmp.c
> @@ -541,23 +541,30 @@ static int set_fdtfile(void)
>  	char *compatible, *fdtfile;
>  	const char *suffix = ".dtb";
>  	const char *vendor = "xilinx/";
> +	int fdt_compat_len;
>  
>  	if (env_get("fdtfile"))
>  		return 0;
>  
> -	compatible = (char *)fdt_getprop(gd->fdt_blob, 0, "compatible", NULL);
> -	if (compatible) {
> +	compatible = (char *)fdt_getprop(gd->fdt_blob, 0, "compatible",
> +					 &fdt_compat_len);
> +	if (compatible && fdt_compat_len) {
> +		char *name;
> +
>  		debug("Compatible: %s\n", compatible);
>  
> -		/* Discard vendor prefix */
> -		strsep(&compatible, ",");
> +		name = strchr(compatible, ',');
> +		if (!name)
> +			return -EINVAL;
> +
> +		name++;
>  
> -		fdtfile = calloc(1, strlen(vendor) + strlen(compatible) +
> +		fdtfile = calloc(1, strlen(vendor) + strlen(name) +
>  				 strlen(suffix) + 1);
>  		if (!fdtfile)
>  			return -ENOMEM;
>  
> -		sprintf(fdtfile, "%s%s%s", vendor, compatible, suffix);
> +		sprintf(fdtfile, "%s%s%s", vendor, name, suffix);
>  
>  		env_set("fdtfile", fdtfile);
>  		free(fdtfile);
> 


Also:
Reported-by: Igor Lantsman <igor.lantsman@opsys-tech.com>
Signed-off-by: Igor Lantsman <igor.lantsman@opsys-tech.com>

Thanks,
Michal

Michal Simek July 24, 2020, 12:14 p.m. UTC | #2

st 24. 6. 2020 v 14:44 odesílatel Michal Simek <michal.simek@xilinx.com> napsal:
>
> Origin function was calling strsep which replaced delimiter ',' by a null
> byte ('\0'). Operation was done directly on FDT which ends up with the
> following behavior:
>
> ZynqMP>  printenv fdtfile
> fdtfile=xilinx/zynqmp.dtb
> ZynqMP> fdt addr $fdtcontroladdr
> ZynqMP> fdt print / compatible
> compatible = "xlnx", "zynqmp"
>
> As is visible fdtfile was correctly composed but a null byte caused that
> xlnx was separated from zynqmp.
> This hasn't been spotted because in all Xilinx DTs there are at least 3
> compatible string and only the first one was affected by this issue.
> But for systems which only had one compatible string "xlnx,zynqmp" it was
> causing an issue when U-Boot's DT was used by Linux kernel.
>
> The patch removes strsep calling and strchr is called instead which just
> locate the first char after deliminator ',' (variable called "name").
> And using this pointer in fdtfile composing.
>
> Fixes: 91d7e0c47f51 ("arm64: zynqmp: Create fdtfile from compatible string")
> Signed-off-by: Michal Simek <michal.simek@xilinx.com>
> ---
>
>  board/xilinx/zynqmp/zynqmp.c | 19 +++++++++++++------
>  1 file changed, 13 insertions(+), 6 deletions(-)
>
> diff --git a/board/xilinx/zynqmp/zynqmp.c b/board/xilinx/zynqmp/zynqmp.c
> index ebb71729081d..8a4df6fc1ab6 100644
> --- a/board/xilinx/zynqmp/zynqmp.c
> +++ b/board/xilinx/zynqmp/zynqmp.c
> @@ -541,23 +541,30 @@ static int set_fdtfile(void)
>         char *compatible, *fdtfile;
>         const char *suffix = ".dtb";
>         const char *vendor = "xilinx/";
> +       int fdt_compat_len;
>
>         if (env_get("fdtfile"))
>                 return 0;
>
> -       compatible = (char *)fdt_getprop(gd->fdt_blob, 0, "compatible", NULL);
> -       if (compatible) {
> +       compatible = (char *)fdt_getprop(gd->fdt_blob, 0, "compatible",
> +                                        &fdt_compat_len);
> +       if (compatible && fdt_compat_len) {
> +               char *name;
> +
>                 debug("Compatible: %s\n", compatible);
>
> -               /* Discard vendor prefix */
> -               strsep(&compatible, ",");
> +               name = strchr(compatible, ',');
> +               if (!name)
> +                       return -EINVAL;
> +
> +               name++;
>
> -               fdtfile = calloc(1, strlen(vendor) + strlen(compatible) +
> +               fdtfile = calloc(1, strlen(vendor) + strlen(name) +
>                                  strlen(suffix) + 1);
>                 if (!fdtfile)
>                         return -ENOMEM;
>
> -               sprintf(fdtfile, "%s%s%s", vendor, compatible, suffix);
> +               sprintf(fdtfile, "%s%s%s", vendor, name, suffix);
>
>                 env_set("fdtfile", fdtfile);
>                 free(fdtfile);
> --
> 2.27.0
>

Applied.
M

diff --git a/board/xilinx/zynqmp/zynqmp.c b/board/xilinx/zynqmp/zynqmp.c
index ebb71729081d..8a4df6fc1ab6 100644
--- a/board/xilinx/zynqmp/zynqmp.c
+++ b/board/xilinx/zynqmp/zynqmp.c
@@ -541,23 +541,30 @@  static int set_fdtfile(void)
 	char *compatible, *fdtfile;
 	const char *suffix = ".dtb";
 	const char *vendor = "xilinx/";
+	int fdt_compat_len;
 
 	if (env_get("fdtfile"))
 		return 0;
 
-	compatible = (char *)fdt_getprop(gd->fdt_blob, 0, "compatible", NULL);
-	if (compatible) {
+	compatible = (char *)fdt_getprop(gd->fdt_blob, 0, "compatible",
+					 &fdt_compat_len);
+	if (compatible && fdt_compat_len) {
+		char *name;
+
 		debug("Compatible: %s\n", compatible);
 
-		/* Discard vendor prefix */
-		strsep(&compatible, ",");
+		name = strchr(compatible, ',');
+		if (!name)
+			return -EINVAL;
+
+		name++;
 
-		fdtfile = calloc(1, strlen(vendor) + strlen(compatible) +
+		fdtfile = calloc(1, strlen(vendor) + strlen(name) +
 				 strlen(suffix) + 1);
 		if (!fdtfile)
 			return -ENOMEM;
 
-		sprintf(fdtfile, "%s%s%s", vendor, compatible, suffix);
+		sprintf(fdtfile, "%s%s%s", vendor, name, suffix);
 
 		env_set("fdtfile", fdtfile);
 		free(fdtfile);

arm64: zynqmp: Fix set_fdtfile() not to break u-boots DTB

Commit Message

Comments

Patch