diff mbox series

[v2,06/74] semihosting: Simplify softmmu_lock_user_string

Message ID	20220503194843.1379101-7-richard.henderson@linaro.org
State	Superseded
Headers	show Delivered-To: patch@linaro.org Received-SPF: pass (google.com: domain of qemu-devel-bounces+patch=linaro.org@nongnu.org designates 209.51.188.17 as permitted sender) client-ip=209.51.188.17; From: Richard Henderson <richard.henderson@linaro.org> To: qemu-devel@nongnu.org Subject: [PATCH v2 06/74] semihosting: Simplify softmmu_lock_user_string Date: Tue, 3 May 2022 12:47:35 -0700 Message-Id: <20220503194843.1379101-7-richard.henderson@linaro.org> In-Reply-To: <20220503194843.1379101-1-richard.henderson@linaro.org> References: <20220503194843.1379101-1-richard.henderson@linaro.org> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Received-SPF: pass client-ip=2607:f8b0:4864:20::102a; envelope-from=richard.henderson@linaro.org; helo=mail-pj1-x102a.google.com X-Spam_score_int: -20 X-Spam_score: -2.1 X-Spam_bar: -- X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01 autolearn=ham autolearn_force=no X-Spam_action: no action Precedence: list Errors-To: qemu-devel-bounces+patch=linaro.org@nongnu.org Sender: "Qemu-devel" <qemu-devel-bounces+patch=linaro.org@nongnu.org>
Series	semihosting cleanup \| expand [v2,00/74] semihosting cleanup [v2,01/74] semihosting: Move exec/softmmu-semi.h to semihosting/softmmu-uaccess.h [v2,02/74] semihosting: Return failure from softmmu-uaccess.h functions [v2,03/74] semihosting: Improve condition for config.c and console.c [v2,04/74] semihosting: Move softmmu-uaccess.h functions out of line [v2,05/74] semihosting: Add target_strlen for softmmu-uaccess.h [v2,06/74] semihosting: Simplify softmmu_lock_user_string [v2,07/74] semihosting: Split out guestfd.c [v2,08/74] semihosting: Generalize GuestFDFeatureFile [v2,09/74] semihosting: Return void from do_common_semihosting [v2,10/74] semihosting: Adjust error checking in common_semi_cb [v2,11/74] semihosting: Move common-semi.h to include/semihosting/ [v2,12/74] include/exec: Move gdb open flags to gdbstub.h [v2,13/74] include/exec: Move gdb_stat and gdb_timeval to gdbstub.h [v2,14/74] include/exec: Define errno values in gdbstub.h [v2,15/74] semihosting: Use struct gdb_stat in common_semi_flen_cb [v2,16/74] semihosting: Split is_64bit_semihosting per target [v2,17/74] semihosting: Split common_semi_flen_buf per target [v2,18/74] semihosting: Split out common_semi_has_synccache [v2,19/74] semihosting: Use env more often in do_common_semihosting [v2,20/74] semihosting: Move GET_ARG/SET_ARG earlier in the file [v2,21/74] semihosting: Split out semihost_sys_open [v2,22/74] semihosting: Split out semihost_sys_close [v2,23/74] semihosting: Split out semihost_sys_read [v2,24/74] semihosting: Split out semihost_sys_write [v2,25/74] semihosting: Bound length for semihost_sys_{read, write} [v2,26/74] semihosting: Split out semihost_sys_lseek [v2,27/74] semihosting: Split out semihost_sys_isatty [v2,28/74] semihosting: Split out semihost_sys_flen [v2,29/74] semihosting: Split out semihost_sys_remove [v2,30/74] semihosting: Split out semihost_sys_rename [v2,31/74] semihosting: Split out semihost_sys_system [v2,32/74] semihosting: Create semihost_sys_{stat,fstat} [v2,33/74] semihosting: Create semihost_sys_gettimeofday [v2,34/74] gdbstub: Widen gdb_syscall_complete_cb return value [v2,35/74] semihosting: Fix docs comment for qemu_semihosting_console_inc [v2,36/74] semihosting: Pass CPUState to qemu_semihosting_console_inc [v2,37/74] semihosting: Expand qemu_semihosting_console_inc to read [v2,38/74] semihosting: Cleanup chardev init [v2,39/74] semihosting: Create qemu_semihosting_console_write [v2,40/74] semihosting: Add GuestFDConsole [v2,41/74] semihosting: Create qemu_semihosting_guestfd_init [v2,42/74] semihosting: Use console_in_gf for SYS_READC [v2,43/74] semihosting: Use console_out_gf for SYS_WRITEC [v2,44/74] semihosting: Remove qemu_semihosting_console_outc [v2,45/74] semihosting: Use console_out_gf for SYS_WRITE0 [v2,46/74] semihosting: Remove qemu_semihosting_console_outs [v2,47/74] semihosting: Create semihost_sys_poll_one [v2,48/74] target/m68k: Eliminate m68k_semi_is_fseek [v2,49/74] target/m68k: Make semihosting system only [v2,50/74] target/m68k: Use semihosting/syscalls.h [v2,51/74] target/nios2: Eliminate nios2_semi_is_lseek [v2,52/74] target/nios2: Move nios2-semi.c to nios2_softmmu_ss [v2,53/74] target/nios2: Use semihosting/syscalls.h [v2,54/74] target/mips: Use an exception for semihosting [v2,55/74] target/mips: Add UHI errno values [v2,56/74] target/mips: Create report_fault for semihosting [v2,57/74] target/mips: Drop link syscall from semihosting [v2,58/74] target/mips: Drop pread and pwrite syscalls from semihosting [v2,59/74] target/mips: Use semihosting/syscalls.h [v2,60/74] target/mips: Avoid qemu_semihosting_log_out for UHI_plog [v2,61/74] target/mips: Use error_report for UHI_assert [v2,62/74] semihosting: Remove qemu_semihosting_log_out [v2,63/74] target/mips: Simplify UHI_argnlen and UHI_argn [v2,64/74] target/mips: Remove GET_TARGET_STRING and FREE_TARGET_STRING [v2,65/74] target/xtensa: Use an exception for semihosting [v2,66/74] target/xtensa: Use semihosting/syscalls.h [v2,67/74] tests/docker: Add debian-rx-cross image [v2,68/74] hw/rx: Handle a kernel file that is ELF [v2,69/74] target/rx: Fix the base of the fixed vector table [v2,70/74] target/rx: Name the exceptions [v2,71/74] target/rx: Consolidate exception helpers [v2,72/74] target/rx: Cleanup rx_cpu_do_interrupt [v2,73/74] target/rx: Implement libgloss semihosting [v2,74/74] tests/tcg/rx: Enable semihosting multiarch tests

Commit Message

Richard Henderson May 3, 2022, 7:47 p.m. UTC

We are not currently bounding the search to the 1024 bytes
that we allocated, possibly overrunning the buffer.
Use softmmu_strlen_user to find the length and allocate the
correct size from the beginning.

Signed-off-by: Richard Henderson <richard.henderson@linaro.org>
---
 semihosting/uaccess.c | 15 +++------------
 1 file changed, 3 insertions(+), 12 deletions(-)

Comments

Peter Maydell May 16, 2022, 3:12 p.m. UTC | #1

On Tue, 3 May 2022 at 21:05, Richard Henderson
<richard.henderson@linaro.org> wrote:
>
> We are not currently bounding the search to the 1024 bytes
> that we allocated, possibly overrunning the buffer.
> Use softmmu_strlen_user to find the length and allocate the
> correct size from the beginning.
>
> Signed-off-by: Richard Henderson <richard.henderson@linaro.org>
Reviewed-by: Peter Maydell <peter.maydell@linaro.org>

thanks
-- PMM

diff mbox series

Patch

diff --git a/semihosting/uaccess.c b/semihosting/uaccess.c
index 3cd809122c..f5fc94c401 100644
--- a/semihosting/uaccess.c
+++ b/semihosting/uaccess.c
@@ -54,20 +54,11 @@  ssize_t softmmu_strlen_user(CPUArchState *env, target_ulong addr)
 
 char *softmmu_lock_user_string(CPUArchState *env, target_ulong addr)
 {
-    /* TODO: Make this something that isn't fixed size.  */
-    char *s = malloc(1024);
-    size_t len = 0;
-
-    if (!s) {
+    ssize_t len = softmmu_strlen_user(env, addr);
+    if (len < 0) {
         return NULL;
     }
-    do {
-        if (cpu_memory_rw_debug(env_cpu(env), addr++, s + len, 1, 0)) {
-            free(s);
-            return NULL;
-        }
-    } while (s[len++]);
-    return s;
+    return softmmu_lock_user(env, addr, len + 1, true);
 }
 
 void softmmu_unlock_user(CPUArchState *env, void *p,