Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

usb: device_next: usbd_hid: Fix size in HID report get #79001

Merged
merged 1 commit into from
Sep 30, 2024
Merged

usb: device_next: usbd_hid: Fix size in HID report get #79001

merged 1 commit into from
Sep 30, 2024

Conversation

MarekPieta
Copy link
Collaborator

Since UDC buffers are allocated with UDC_BUF_GRANULARITY granularity, the net_buf_tailroom may no longer be equal to the HID report size. Use setup->wLength instead to ensure that proper HID report size is passed to the application's callback.

@MarekPieta
usb: device_next: usbd_hid: Fix size in HID report get
fc7b40a 
Since UDC buffers are allocated with `UDC_BUF_GRANULARITY` granularity,
the `net_buf_tailroom` may no longer be equal to the HID report size.
Use `setup->wLength` instead to ensure that proper HID report size is
passed to the application's callback.

Signed-off-by: Marek Pieta <[email protected]>
@zephyrbot zephyrbot added the area: USB Universal Serial Bus label Sep 25, 2024
tmon-nordic
tmon-nordic reviewed Sep 25, 2024
View reviewed changes
subsys/usb/device_next/class/usbd_hid.c
@@ -235,7 +235,7 @@ static int handle_get_report(const struct device *dev,
const uint8_t id = HID_GET_REPORT_ID(setup->wValue);
struct hid_device_data *const ddata = dev->data;
const struct hid_device_ops *ops = ddata->ops;
const size_t size = net_buf_tailroom(buf);
const size_t size = setup->wLength;
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not sure if using setup->wLength directly is appropriate, a potential alternative would be MIN(setup->wLength, net_buf_tailroom(buf)). Host can submit any wLength value up to 65535 regardless the actual buffer size. Currently the stack will fail if it cannot allocate such large request even if the actual payloads are much smaller.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I can use MIN(setup->wLength, net_buf_tailroom(buf) here. Still, I wonder if the condition should not be validated somewhere in lower layers (so that USB class implementation could already assume that setup->wLength is proper.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is more of a wondering how this issue should be solved in general. This sort of mechanism currently results in USB2CV MSC failure with default build settings because the testcase is requesting string descriptors length with 4096 wLength whereas the strings are significantly shorter than that. While the strings would definitely fit inside the much smaller buffer, they are not even given a chance because default UDC buf pool is failing to allocate 4096 bytes long buffer.

@henrikbrixandersen henrikbrixandersen merged commit 88231b5 into zephyrproject-rtos:main Sep 30, 2024
26 checks passed
@MarekPieta MarekPieta deleted the usb_next_hid_report_get_fix_size branch September 30, 2024 11:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tmon-nordic tmon-nordic tmon-nordic approved these changes

@jfischer-no jfischer-no jfischer-no approved these changes

Assignees

@jfischer-no jfischer-no

Labels
area: USB Universal Serial Bus
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@MarekPieta @jfischer-no @tmon-nordic @henrikbrixandersen @zephyrbot