From: Geraldo Netto <geraldonetto@gmail.com>
To: linux-bluetooth@vger.kernel.org
Cc: Geraldo Netto <geraldonetto@gmail.com>
Subject: [PATCH BlueZ 2/2] audio: reduce a2dp parser complexity
Date: Sat, 20 Jun 2026 21:17:35 +0200 [thread overview]
Message-ID: <20260620191735.2675946-3-geraldonetto@gmail.com> (raw)
In-Reply-To: <20260620191735.2675946-1-geraldonetto@gmail.com>
---
profiles/audio/a2dp-helpers.c | 55 +++++++++++++++++++++++++++--------
1 file changed, 43 insertions(+), 12 deletions(-)
diff --git a/profiles/audio/a2dp-helpers.c b/profiles/audio/a2dp-helpers.c
index 035236df6..09dc6db91 100644
--- a/profiles/audio/a2dp-helpers.c
+++ b/profiles/audio/a2dp-helpers.c
@@ -74,6 +74,46 @@ static bool parse_caps(const char *value, uint8_t *caps, size_t caps_len,
return true;
}
+static bool has_delay_field(const char *value)
+{
+ return value[0] != '\0' && value[1] != '\0' &&
+ g_ascii_isxdigit(value[0]) &&
+ g_ascii_isxdigit(value[1]) &&
+ value[2] == ':';
+}
+
+static bool parse_endpoint_header(const char **value, uint8_t *type,
+ uint8_t *codec)
+{
+ if (!parse_hex_byte(value, type) || !parse_colon(value))
+ return false;
+
+ if (!parse_hex_byte(value, codec) || !parse_colon(value))
+ return false;
+
+ return true;
+}
+
+static bool parse_delay_field(const char **value, uint8_t *delay)
+{
+ *delay = 0;
+
+ if (!has_delay_field(*value))
+ return true;
+
+ parse_hex_byte(value, delay);
+ parse_colon(value);
+
+ return *delay <= 1;
+}
+
+static bool valid_endpoint_args(const char *value,
+ const uint8_t *type, const uint8_t *codec,
+ const bool *delay_reporting, const size_t *size)
+{
+ return value && type && codec && delay_reporting && size;
+}
+
bool a2dp_parse_capabilities_array(DBusMessageIter *value,
uint8_t **caps, int *size)
{
@@ -106,27 +146,18 @@ bool a2dp_parse_persisted_endpoint(const char *value, uint8_t *type,
const char *pos;
uint8_t delay = 0;
- if (!value || !type || !codec || !delay_reporting || !size)
+ if (!valid_endpoint_args(value, type, codec, delay_reporting, size))
return false;
*size = 0;
pos = value;
- if (!parse_hex_byte(&pos, type) || !parse_colon(&pos))
+ if (!parse_endpoint_header(&pos, type, codec))
return false;
- if (!parse_hex_byte(&pos, codec) || !parse_colon(&pos))
+ if (!parse_delay_field(&pos, &delay))
return false;
- if (pos[0] != '\0' && pos[1] != '\0' &&
- g_ascii_isxdigit(pos[0]) && g_ascii_isxdigit(pos[1]) &&
- pos[2] == ':') {
- parse_hex_byte(&pos, &delay);
- parse_colon(&pos);
- if (delay > 1)
- return false;
- }
-
if (!parse_caps(pos, caps, caps_len, size))
return false;
--
2.43.0
prev parent reply other threads:[~2026-06-20 19:17 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-06-20 19:17 [PATCH BlueZ 0/2] audio: harden A2DP parser handling Geraldo Netto
2026-06-20 19:17 ` [PATCH BlueZ 1/2] audio: harden a2dp parsers Geraldo Netto
2026-06-20 21:07 ` audio: harden A2DP parser handling bluez.test.bot
2026-06-20 19:17 ` Geraldo Netto [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20260620191735.2675946-3-geraldonetto@gmail.com \
--to=geraldonetto@gmail.com \
--cc=linux-bluetooth@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox