boot_serial: Fix SMP echo sending incomplete CBOR container

In case when echo string would be too long to fit into buffer,
there would be no space left for container termination.
Due to lack of error checking such non-terminated container would
be sent out, where error response should be sent out instead.

Signed-off-by: Dominik Ermel <dominik.ermel@nordicsemi.no>
This commit is contained in:
Dominik Ermel 2022-03-04 15:47:37 +00:00 committed by Andrzej Puzdrowski
parent 8dae84441f
commit 4c0f6c177f
2 changed files with 30 additions and 19 deletions

View File

@ -104,6 +104,14 @@ static cbor_state_t cbor_state = {
.backups = &dummy_backups .backups = &dummy_backups
}; };
void reset_cbor_state(void)
{
cbor_state.payload_mut = (uint8_t *)bs_obuf;
cbor_state.payload_end = (const uint8_t *)bs_obuf
+ sizeof(bs_obuf);
cbor_state.elem_count = 0;
}
/** /**
* Function that processes MGMT_GROUP_ID_PERUSER mcumgr group and may be * Function that processes MGMT_GROUP_ID_PERUSER mcumgr group and may be
* used to process any groups that have not been processed by generic boot * used to process any groups that have not been processed by generic boot
@ -470,6 +478,20 @@ out:
#endif //#ifdef MCUBOOT_ENC_IMAGES #endif //#ifdef MCUBOOT_ENC_IMAGES
} }
/*
* Send rc code only.
*/
static void
bs_rc_rsp(int rc_code)
{
map_start_encode(&cbor_state, 10);
tstrx_put(&cbor_state, "rc");
uintx32_put(&cbor_state, rc_code);
map_end_encode(&cbor_state, 10);
boot_serial_output();
}
#ifdef MCUBOOT_BOOT_MGMT_ECHO #ifdef MCUBOOT_BOOT_MGMT_ECHO
static bool static bool
decode_echo(cbor_state_t *state, cbor_string_type_t *result) decode_echo(cbor_state_t *state, cbor_string_type_t *result)
@ -495,26 +517,16 @@ bs_echo(char *buf, int len)
if (entry_function((const uint8_t *)buf, len, str, &bsstrdecoded, (void *)decode_echo, 1, 2)) { if (entry_function((const uint8_t *)buf, len, str, &bsstrdecoded, (void *)decode_echo, 1, 2)) {
map_start_encode(&cbor_state, 10); map_start_encode(&cbor_state, 10);
tstrx_put(&cbor_state, "r"); tstrx_put(&cbor_state, "r");
tstrx_encode(&cbor_state, &str[1]); if (tstrx_encode(&cbor_state, &str[1]) && map_end_encode(&cbor_state, 10)) {
map_end_encode(&cbor_state, 10); boot_serial_output();
boot_serial_output(); } else {
reset_cbor_state();
bs_rc_rsp(MGMT_ERR_ENOMEM);
}
} }
} }
#endif #endif
/*
* Send rc code only.
*/
static void
bs_rc_rsp(int rc_code)
{
map_start_encode(&cbor_state, 10);
tstrx_put(&cbor_state, "rc");
uintx32_put(&cbor_state, rc_code);
map_end_encode(&cbor_state, 10);
boot_serial_output();
}
/* /*
* Reset, and (presumably) boot to newly uploaded image. Flush console * Reset, and (presumably) boot to newly uploaded image. Flush console
* before restarting. * before restarting.
@ -558,9 +570,7 @@ boot_serial_input(char *buf, int len)
buf += sizeof(*hdr); buf += sizeof(*hdr);
len -= sizeof(*hdr); len -= sizeof(*hdr);
cbor_state.payload_mut = (uint8_t *)bs_obuf; reset_cbor_state();
cbor_state.payload_end = (const uint8_t *)bs_obuf
+ sizeof(bs_obuf);
/* /*
* Limited support for commands. * Limited support for commands.

View File

@ -38,6 +38,7 @@ extern "C" {
*/ */
#define MGMT_ERR_OK 0 #define MGMT_ERR_OK 0
#define MGMT_ERR_EUNKNOWN 1 #define MGMT_ERR_EUNKNOWN 1
#define MGMT_ERR_ENOMEM 2
#define MGMT_ERR_EINVAL 3 #define MGMT_ERR_EINVAL 3
#define MGMT_ERR_ENOTSUP 8 #define MGMT_ERR_ENOTSUP 8