Re: [RFC PATCH 1/1] can: virtio: Initial virtio CAN driver.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hello,

On 27.08.22 11:02, Oliver Hartkopp wrote:
+    if ((can_flags & ~CAN_KNOWN_FLAGS) != 0u) {

For your entire patch:

Please remove this pointless " != 0u)" stuff.

    if (can_flags & ~CAN_KNOWN_FLAGS) {

is just ok.
Too much MISRA habit in my head which has no place here. Did so.
+        if (can_id > CAN_EFF_MASK) {

The MASK is not a number value.

The check should be

if (can_id & ~CAN_EFF_MASK) {

or you simply mask the can_id value to be really sure without the netdev_warn() stuff.
CAN_EFF_MASK is now treated as bitmask. And decided to remove this netdev_warn() stuff as proposed, masked the values. So I will miss invalid combinations from the virtio CAN device (may also be buggy) I might still be interested in but this excessive netdev_warn() usage was in the end also for my taste too much.

Are you sure that you could get undefined CAN ID values here?

+            stats->rx_dropped++;
+            netdev_warn(dev, "RX: CAN Ext Id 0x%08x too big\n",

The proposed virtio CAN specification says: "The type of a CAN message identifier is determined by flags. The 3 most significant bits of can_id do not bear the information about the type of the CAN message identifier and are 0."

=> This trace could have been seen when a buggy device wasn't obeying the 2nd sentence.

+        if (len != 0u) {
+            stats->rx_dropped++;
+            netdev_warn(dev, "RX: CAN Id 0x%08x: RTR with len != 0\n",
+                    can_id);

This is not the right handling.

Classical CAN frames with RTR bit set can have a DLC value from 0 .. F which is represented in

can_frame.len (for values 0 .. 8)
can_frame.len8_dlc (values 9 .. F; len must be 8)

With the RTR bit set, the CAN controller does not send CAN data, but the DLC value is set from 0 .. F.

RTR frames! DLC values <> 0 but then no payload. This needed to be reworked and fixed.

When you silently sanitize the length value here, you should do the same with the can_id checks above and simply do a masking like

can_id &= CAN_SFF_MASK or can_id &= CAN_EFF_MASK

Did so. Too much netdev_warn() in the code, really. Too much is too much.
+    (void)netif_receive_skb(skb);

Why this "(void)" here and at other places in the patch? Please remove.
Is there no error handling needed when netif_receive_skb() fails? Or ar least some statistics rollback?
Old MISRA habit to silence the warning when no error is expected to be possible to occur. This has no place here and was replaced by some better error handling evaluating the returned error not updating the statistics as proposed. For the (void) below just omitted the (void), I see no possible good error handling there and we're not going to run the driver through the MISRA checker.
+
+putback:
+    /* Put processed RX buffer back into avail queue */
+    (void)virtio_can_add_inbuf(vq, can_rx, sizeof(struct virtio_can_rx));
+
+    return 1; /* Queue was not emtpy so there may be more data */
+}

Best regards,
Oliver

Regards
Harald

(First answering all those review E-Mails, then will have to fight with sending the changed code).

--
Dipl.-Ing. Harald Mommer
Senior Software Engineer

OpenSynergy GmbH
Rotherstr. 20, 10245 Berlin

Phone:  +49 (30) 60 98 540-0 <== Zentrale
Fax:    +49 (30) 60 98 540-99
E-Mail: harald.mommer@xxxxxxxxxxxxxxx

www.opensynergy.com

Handelsregister: Amtsgericht Charlottenburg, HRB 108616B
Geschäftsführer/Managing Director: Regis Adjamah




[Index of Archives]     [Automotive Discussions]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [eCos]     [Asterisk Internet PBX]     [Linux API]     [CAN Bus]

  Powered by Linux