From mboxrd@z Thu Jan 1 00:00:00 1970 From: Srinivas Kandagatla Subject: Re: [PATCH 2/4] thermal: imx: Add support for reading OCOTP through nvmem Date: Fri, 14 Jul 2017 09:48:49 +0100 Message-ID: <3dd43cba-02f2-204c-c3a2-582827018ef8@linaro.org> References: <68b476b35b0c0cbce21da0e87338323bb77e9bc4.1499347157.git.leonard.crestez@nxp.com> <20170712063629.GD3172@dragon> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: <20170712063629.GD3172@dragon> Content-Language: en-US Sender: linux-pm-owner@vger.kernel.org To: Shawn Guo , Leonard Crestez Cc: Zhang Rui , Eduardo Valentin , Rob Herring , Mark Rutland , =?UTF-8?Q?Lothar_Wa=c3=9fmann?= , Fabio Estevam , Dong Aisheng , Bai Ping , Anson Huang , Octavian Purdila , linux-pm@vger.kernel.org, devicetree@vger.kernel.org, linux-kernel@vger.kernel.org List-Id: devicetree@vger.kernel.org On 12/07/17 07:36, Shawn Guo wrote: >> >> +static int nvmem_cell_read_u32(struct device* dev, const char *cell_id, u32 *val) >> +{ >> + struct nvmem_cell *cell; >> + void *buf; >> + size_t len; >> + >> + cell = nvmem_cell_get(dev, cell_id); >> + if (IS_ERR(cell)) >> + return PTR_ERR(cell); >> + >> + buf = nvmem_cell_read(cell, &len); >> + if (IS_ERR(buf)) { >> + nvmem_cell_put(cell); >> + return PTR_ERR(buf); >> + } >> + if (len != sizeof(*val)) { >> + kfree(buf); >> + nvmem_cell_put(cell); >> + return -EINVAL; >> + } >> + memcpy(val, buf, sizeof(*val)); This can overflow the memory allocated to val, we should be careful here not to do so. limit this to sizeof(u32) should be good. Also add some sanity checks to make sure that len is atleast 4 bytes. >> + >> + kfree(buf); >> + nvmem_cell_put(cell); >> + return 0; >> +} > The function looks nothing IMX specific, and could be a nvmem core > function? > > @Srinivas, thoughts? Yep, this function looks generic, can be moved to nvmem layer. Thanks, srini