qemu-devel.nongnu.org archive mirror
 help / color / mirror / Atom feed
* [Qemu-devel] [PATCH] Fix parse of usb device description with multiple configurations
@ 2011-12-08  6:36 Cao,Bing Bu
  2011-12-12  8:23 ` Gerd Hoffmann
  0 siblings, 1 reply; 2+ messages in thread
From: Cao,Bing Bu @ 2011-12-08  6:36 UTC (permalink / raw)
  To: qemu-devel; +Cc: Cao,Bing Bu, kraxel


When testing ipod on QEMU by He Jie Xu<xuhj@linux.vnet.ibm.com>,qemu made a assertion.
We found that the ipod with 2 configurations,and the usb-linux did not parse the descriptor correctly.
The descr_len returned is the total length of the all configurations,not one configuration.
The older version will through the other configurations instead of skip,continue parsing the descriptor of interfaces/endpoints in other configurations,then went wrong.

This patch will put the configuration descriptor parse in loop outside and dispel the other configurations not requested.


Signed-off-by: Cao,Bing Bu <mars@linux.vnet.ibm.com>
---
 usb-linux.c |   20 ++++++++++++--------
 1 files changed, 12 insertions(+), 8 deletions(-)

diff --git a/usb-linux.c b/usb-linux.c
index ab4c693..a53b558 100644
--- a/usb-linux.c
+++ b/usb-linux.c
@@ -1141,15 +1141,19 @@ static int usb_linux_update_endp_table(USBHostDevice *s)
     length = s->descr_len - 18;
     i = 0;
 
-    if (descriptors[i + 1] != USB_DT_CONFIG ||
-        descriptors[i + 5] != s->configuration) {
-        fprintf(stderr, "invalid descriptor data - configuration %d\n",
-                s->configuration);
-        return 1;
-    }
-    i += descriptors[i];
-
     while (i < length) {
+        if (descriptors[i + 1] != USB_DT_CONFIG) {
+            fprintf(stderr, "invalid descriptor data\n");
+            return 1;
+        } else if (descriptors[i + 5] != s->configuration) {
+            fprintf(stderr, "not requested configuration %d\n",
+                    s->configuration);
+            i += (descriptors[i + 3] << 8) + descriptors[i + 2];
+            continue;
+        }
+
+        i += descriptors[i];
+
         if (descriptors[i + 1] != USB_DT_INTERFACE ||
             (descriptors[i + 1] == USB_DT_INTERFACE &&
              descriptors[i + 4] == 0)) {
-- 
1.7.1

^ permalink raw reply related	[flat|nested] 2+ messages in thread
* Re: [Qemu-devel] [PATCH] Fix parse of usb device description with multiple configurations
  2011-12-08  6:36 [Qemu-devel] [PATCH] Fix parse of usb device description with multiple configurations Cao,Bing Bu
@ 2011-12-12  8:23 ` Gerd Hoffmann
  0 siblings, 0 replies; 2+ messages in thread
From: Gerd Hoffmann @ 2011-12-12  8:23 UTC (permalink / raw)
  To: Cao,Bing Bu; +Cc: qemu-devel

  Hi,

> +        } else if (descriptors[i + 5] != s->configuration) {
> +            fprintf(stderr, "not requested configuration %d\n",
> +                    s->configuration);
> +            i += (descriptors[i + 3] << 8) + descriptors[i + 2];
> +            continue;
> +        }

That message doesn't indicate an error and should be a DPRINTF instead
of a fprintf.  Otherwise the patch looks fine.

cheers,
  Gerd

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2011-12-12  8:23 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2011-12-08  6:36 [Qemu-devel] [PATCH] Fix parse of usb device description with multiple configurations Cao,Bing Bu
2011-12-12  8:23 ` Gerd Hoffmann

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).