From: Joel Fernandes <joelagnelf@nvidia.com>
To: Eliot Courtney <ecourtney@nvidia.com>,
Danilo Krummrich <dakr@kernel.org>,
Alice Ryhl <aliceryhl@google.com>,
Alexandre Courbot <acourbot@nvidia.com>,
David Airlie <airlied@gmail.com>, Simona Vetter <simona@ffwll.ch>
Cc: John Hubbard <jhubbard@nvidia.com>,
Alistair Popple <apopple@nvidia.com>,
Timur Tabi <ttabi@nvidia.com>,
rust-for-linux@vger.kernel.org, dri-devel@lists.freedesktop.org,
linux-kernel@vger.kernel.org
Subject: Re: [PATCH v2 08/11] gpu: nova-core: vbios: compute FWSEC-relative Falcon data offset
Date: Thu, 16 Apr 2026 12:13:34 -0400 [thread overview]
Message-ID: <54b13fa0-9405-4fc8-ae41-fd1d310c7aa9@nvidia.com> (raw)
In-Reply-To: <20260414-fix-vbios-v2-8-705d30d16bba@nvidia.com>
On 4/14/2026 7:54 AM, Eliot Courtney wrote:
> Push the computation of the falcon data offset into a helper function.
> The subtraction to create the offset should be checked, and by doing
> this the check can be folded into the existing check in
> `falcon_data_ptr`.
>
> Signed-off-by: Eliot Courtney <ecourtney@nvidia.com>
> ---
> drivers/gpu/nova-core/vbios.rs | 48 +++++++++++++++++-------------------------
> 1 file changed, 19 insertions(+), 29 deletions(-)
>
> diff --git a/drivers/gpu/nova-core/vbios.rs b/drivers/gpu/nova-core/vbios.rs
> index 01f65d50cbb3..0c0e0402e715 100644
> --- a/drivers/gpu/nova-core/vbios.rs
> +++ b/drivers/gpu/nova-core/vbios.rs
> @@ -765,33 +765,29 @@ fn get_bit_token(&self, token_id: u8) -> Result<BitToken> {
> BitToken::from_id(self, token_id)
> }
>
> - /// Find the Falcon data pointer structure in the [`PciAtBiosImage`].
> + /// Find the Falcon data offset from the start of the FWSEC region.
The comment change is incorrect, this subtraction is just for normalizing.
It basically normalizes the pointer wrt the PciAt image.
It is only after the following in the caller that we get the true offset
within the FWSEC.
offset -= first_fwsec.base.data.len();
I suggest, let us rename falcon_data_offset() to
falcon_normalize_fwsec_offset() and update the comment above.
With these changed, please add:
Reviewed-by: Joel Fernandes <joelagnelf@nvidia.com>
Thanks.
> ///
> - /// This is just a 4 byte structure that contains a pointer to the Falcon data in the FWSEC
> - /// image.
> - fn falcon_data_ptr(&self) -> Result<u32> {
> + /// The BIT table contains a 4-byte pointer to the Falcon data. Testing shows this pointer
> + /// treats the PCI-AT and FWSEC images as logically contiguous even when an EFI image sits in
> + /// between them, so subtract the PCI-AT image size here to convert it to a FWSEC-relative
> + /// offset.
> + fn falcon_data_offset(&self) -> Result<usize> {
> let token = self.get_bit_token(BIT_TOKEN_ID_FALCON_DATA)?;
> -
> - // Make sure we don't go out of bounds
> - if usize::from(token.data_offset) + 4 > self.base.data.len() {
> - return Err(EINVAL);
> - }
> -
> - // read the 4 bytes at the offset specified in the token
> let offset = usize::from(token.data_offset);
> - let bytes: [u8; 4] = self.base.data[offset..offset + 4].try_into().map_err(|_| {
> - dev_err!(self.base.dev, "Failed to convert data slice to array\n");
> - EINVAL
> - })?;
>
> - let data_ptr = u32::from_le_bytes(bytes);
> + // Read the 4-byte falcon data pointer at the offset specified in the token.
> + let data = &self.base.data;
> + let (ptr, _) = data
> + .get(offset..)
> + .and_then(u32::from_bytes_copy_prefix)
> + .ok_or(EINVAL)?;
>
> - if (usize::from_safe_cast(data_ptr)) < self.base.data.len() {
> - dev_err!(self.base.dev, "Falcon data pointer out of bounds\n");
> - return Err(EINVAL);
> - }
> -
> - Ok(data_ptr)
> + usize::from_safe_cast(ptr)
> + .checked_sub(data.len())
> + .ok_or(EINVAL)
> + .inspect_err(|_| {
> + dev_err!(self.base.dev, "Falcon data pointer out of bounds\n");
> + })
> }
> }
>
> @@ -908,15 +904,9 @@ fn setup_falcon_data(
> pci_at_image: &PciAtBiosImage,
> first_fwsec: &FwSecBiosBuilder,
> ) -> Result {
> - let mut offset = usize::from_safe_cast(pci_at_image.falcon_data_ptr()?);
> + let mut offset = pci_at_image.falcon_data_offset()?;
> let mut pmu_in_first_fwsec = false;
>
> - // The falcon data pointer assumes that the PciAt and FWSEC images
> - // are contiguous in memory. However, testing shows the EFI image sits in
> - // between them. So calculate the offset from the end of the PciAt image
> - // rather than the start of it. Compensate.
> - offset -= pci_at_image.base.data.len();
> -
> // The offset is now from the start of the first Fwsec image, however
> // the offset points to a location in the second Fwsec image. Since
> // the fwsec images are contiguous, subtract the length of the first Fwsec
>
next prev parent reply other threads:[~2026-04-16 16:13 UTC|newest]
Thread overview: 24+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-04-14 11:54 [PATCH v2 00/11] gpu: nova-core: vbios: harden various array accesses and refactor Eliot Courtney
2026-04-14 11:54 ` [PATCH v2 01/11] gpu: nova-core: vbios: fix various cases of reading past `BIOS_MAX_SCAN_LEN` Eliot Courtney
2026-04-14 11:54 ` [PATCH v2 02/11] gpu: nova-core: vbios: limit `BitToken` entry reads Eliot Courtney
2026-04-14 11:54 ` [PATCH v2 03/11] gpu: nova-core: vbios: use checked ops and accesses in `FwSecBiosImage::ucode` Eliot Courtney
2026-04-14 11:54 ` [PATCH v2 04/11] gpu: nova-core: vbios: use checked access in `FwSecBiosImage::header` Eliot Courtney
2026-04-16 16:20 ` Joel Fernandes
2026-04-14 11:54 ` [PATCH v2 05/11] gpu: nova-core: vbios: use checked accesses in `setup_falcon_data` Eliot Courtney
2026-04-16 16:14 ` Joel Fernandes
2026-04-14 11:54 ` [PATCH v2 06/11] gpu: nova-core: vbios: drop unused falcon_data_offset from FwSecBiosBuilder Eliot Courtney
2026-04-16 16:14 ` Joel Fernandes
2026-04-14 11:54 ` [PATCH v2 07/11] gpu: nova-core: vbios: keep PmuLookupTable local in setup_falcon_data Eliot Courtney
2026-04-16 15:56 ` Joel Fernandes
2026-04-14 11:54 ` [PATCH v2 08/11] gpu: nova-core: vbios: compute FWSEC-relative Falcon data offset Eliot Courtney
2026-04-16 16:13 ` Joel Fernandes [this message]
2026-04-17 2:41 ` Eliot Courtney
2026-04-14 11:54 ` [PATCH v2 09/11] gpu: nova-core: vbios: simplify setup_falcon_data Eliot Courtney
2026-04-16 15:30 ` Joel Fernandes
2026-04-17 2:07 ` Eliot Courtney
2026-04-14 11:54 ` [PATCH v2 10/11] gpu: nova-core: vbios: construct `FwSecBiosImage` directly from BIOS images Eliot Courtney
2026-04-16 15:54 ` Joel Fernandes
2026-04-14 11:54 ` [PATCH v2 11/11] gpu: nova-core: vbios: reject extra PCI-AT and FWSEC images Eliot Courtney
2026-04-14 23:39 ` Timur Tabi
2026-04-15 0:02 ` Joel Fernandes
2026-04-17 2:34 ` Eliot Courtney
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=54b13fa0-9405-4fc8-ae41-fd1d310c7aa9@nvidia.com \
--to=joelagnelf@nvidia.com \
--cc=acourbot@nvidia.com \
--cc=airlied@gmail.com \
--cc=aliceryhl@google.com \
--cc=apopple@nvidia.com \
--cc=dakr@kernel.org \
--cc=dri-devel@lists.freedesktop.org \
--cc=ecourtney@nvidia.com \
--cc=jhubbard@nvidia.com \
--cc=linux-kernel@vger.kernel.org \
--cc=rust-for-linux@vger.kernel.org \
--cc=simona@ffwll.ch \
--cc=ttabi@nvidia.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox