From owner-svn-src-head@freebsd.org  Thu Aug 16 14:34:19 2018
Return-Path: <owner-svn-src-head@freebsd.org>
Delivered-To: svn-src-head@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 260DC1067E6D;
 Thu, 16 Aug 2018 14:34:19 +0000 (UTC)
 (envelope-from freebsd@pdx.rh.CN85.dnsmgr.net)
Received: from pdx.rh.CN85.dnsmgr.net (br1.CN84in.dnsmgr.net [69.59.192.140])
 (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 829E5853C5;
 Thu, 16 Aug 2018 14:34:18 +0000 (UTC)
 (envelope-from freebsd@pdx.rh.CN85.dnsmgr.net)
Received: from pdx.rh.CN85.dnsmgr.net (localhost [127.0.0.1])
 by pdx.rh.CN85.dnsmgr.net (8.13.3/8.13.3) with ESMTP id w7GEYEov053814;
 Thu, 16 Aug 2018 07:34:14 -0700 (PDT)
 (envelope-from freebsd@pdx.rh.CN85.dnsmgr.net)
Received: (from freebsd@localhost)
 by pdx.rh.CN85.dnsmgr.net (8.13.3/8.13.3/Submit) id w7GEYEsm053813;
 Thu, 16 Aug 2018 07:34:14 -0700 (PDT) (envelope-from freebsd)
From: "Rodney W. Grimes" <freebsd@pdx.rh.CN85.dnsmgr.net>
Message-Id: <201808161434.w7GEYEsm053813@pdx.rh.CN85.dnsmgr.net>
Subject: Re: svn commit: r337887 - head/usr.sbin/bhyve
In-Reply-To: <CANCZdfpwTA7u1Td7FXF_AJOE6kTMv4yzsSjZR08WYqHv+F1EGA@mail.gmail.com>
To: Warner Losh <imp@bsdimp.com>
Date: Thu, 16 Aug 2018 07:34:14 -0700 (PDT)
CC: "Rodney W. Grimes" <rgrimes@freebsd.org>,
 Marcelo Araujo <araujo@freebsd.org>,
 src-committers <src-committers@freebsd.org>, svn-src-all@freebsd.org,
 svn-src-head@freebsd.org
Reply-To: rgrimes@freebsd.org
X-Mailer: ELM [version 2.4ME+ PL121h (25)]
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=US-ASCII
X-BeenThere: svn-src-head@freebsd.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: SVN commit messages for the src tree for head/-current
 <svn-src-head.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-src-head>,
 <mailto:svn-src-head-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-src-head/>
List-Post: <mailto:svn-src-head@freebsd.org>
List-Help: <mailto:svn-src-head-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-src-head>,
 <mailto:svn-src-head-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Aug 2018 14:34:19 -0000

> On Thu, Aug 16, 2018 at 8:03 AM, Rodney W. Grimes <
> freebsd@pdx.rh.cn85.dnsmgr.net> wrote:
> 
> > > Author: araujo
> > > Date: Thu Aug 16 06:31:54 2018
> > > New Revision: 337887
> > > URL: https://svnweb.freebsd.org/changeset/base/337887
> > >
> > > Log:
> > >   Add a comment explaining how the PSN works and why there is no need for
> > >   a null terminator. Also mark CID 1394825 as intentional.
> > >
> > >   Reported by:        Coverity
> > >   CID:                1394825
> > >   MFC after:  1 week
> > >   Sponsored by:       iXsystems Inc.
> > >
> > > Modified:
> > >   head/usr.sbin/bhyve/pci_nvme.c
> > >
> > > Modified: head/usr.sbin/bhyve/pci_nvme.c
> > > ============================================================
> > ==================
> > > --- head/usr.sbin/bhyve/pci_nvme.c    Thu Aug 16 06:20:25 2018
> > (r337886)
> > > +++ head/usr.sbin/bhyve/pci_nvme.c    Thu Aug 16 06:31:54 2018
> > (r337887)
> > > @@ -1714,6 +1714,11 @@ pci_nvme_parse_opts(struct pci_nvme_softc *sc,
> > char *o
> > >               } else if (!strcmp("sectsz", xopts)) {
> > >                       sectsz = atoi(config);
> > >               } else if (!strcmp("ser", xopts)) {
> > > +                     /*
> > > +                      * This field indicates the Product Serial Number
> > in
> > > +                      * 8-bit ASCII, unused bytes should be NULL
> > characters.
> > > +                      * Ref: NVM Express Management Interface 1.0a.
> > > +                      */
> >
> > I have seen this before on ATA devices,
> > if the vendor fills all bytes of PSN,
> > there well be no unused bytes,
> > so no null byte at the end,
> > and you end up with an unterminated string.
> >
> > Can you please verify that this edge case is handled correctly?
> > Thanks,
> > Rod
> >
> > >                       memset(sc->ctrldata.sn, 0, sizeof(sc->ctrldata.sn
> > ));
> > >                       strncpy(sc->ctrldata.sn, config,
> > >                               sizeof(sc->ctrldata.sn));
> > >
> >
> 
> strncpy will not NUL terminate when there's exactly sizeof(ctrldata.sn)
> bytes in the 'config' string. Thus that case where all characters are
> non-NUL is handled properly (the standard says the string need not be NUL
> terminated).

I get that, are we certain that all consumers of ctrldata.sn
obey this, ie it is never attempted to print this string
with a %s?

> Keep in mind, though, that ATA is 100% irrelevant to NVMe,
> since the NVMe standard specifies everything.

I was using that as a case that has been seen where
an assumption about there always being a null in the SN
would be certain that strings are null terminated,
not saying that ATA applied to NVMe.

> 
> I've sent a followup to marcelo though about the 8-bit and NUL details,
> however, since I have conflicting info about that.
> 
> Warner

-- 
Rod Grimes                                                 rgrimes@freebsd.org