Banner_AURIX_Security-Solution Banner_AURIX_Security-Solution Banner_AURIX_Security-Solution Banner_AURIX_Security-Solution

infineon4engineers Facebook

infineon@google+ Google+

infineon@linkedin linkedin

infineon4engi@twitter twitter

infineon@youtube youtube

+ Reply to Thread
Results 1 to 2 of 2

Thread: Contacts for MCAL improvement issues

  1. #1
    New Member New Member reinholds is on a distinguished road
    Join Date
    May 2019

    Contacts for MCAL improvement issues

    Hello Guys,
    i am working as SW-Engineer at an OEM since long time,

    Inside MCAL Layer I detected a robustness issue, the Fls_lMainRead() inside Fls_17_Dmu.c uses a do {...} while(count>0) loop to copy data from NV to RAM buffer.
    if the size (presented in a global struct) is Zero, the copy will overwrite the whole RAM until stopped by exception. Reading 'Zero' Bytes may be wrong, but at the end the value is set to zero,
    so a second (unintended) call of the function also leads to this behaviour.
    Changing the loop into a while(count>0) { ...} would solve this issue.

    If it's my code i would do such immediate, but I received it from my tTier1 Ecu supplier, he received it from his Autosar Stack supplier, that company finally received the code from Infineon.

    Teh code has a 'do not modify' attribute, so lawyers and business staff say. do not modify, you will loose the Guarantees. The only allowed to do is Infineon.

    I want to have this 'bug' changed before my car is going into production. For that i ask here how to contact MCAL developers/responsibles to supply them the details here.
    Going the full chain backwards i am quite shure will be slower or even blocked.

    Target CPU is TC39x, using AUTOSAR 4.2 and up.

    If ALL is implemented correct, this will not occur, but for ASIL relevant SW i expect also a good kind of ROBUSTNESS against (maybe seldom) parameter faults.

    Here the reduced code:

    uint32 cnt; // shall be set by other function to a value > 0

    uint8 *src, *dst;

    void CopyBuffer(void)
    *dst++ = *src++;
    } while (cnt>0);

    i could use sint32 cnt to reduce overwriting to ONE byte,
    or move the while() up to not copy any byte at all.

  2. #2
    Advanced Advanced
    Infineon Employee
    Infineon Employee
    MoD is on a distinguished road
    Join Date
    Feb 2012
    I forwarded your hint to the responsible department for check and improvement.
    The views expressed here are my personal opinions, have not been reviewed or authorized by Infineon and do not necessarily represent the views of Infineon.

+ Reply to Thread

Tags for this Thread


All content and materials on this site are provided “as is“. Infineon makes no warranties or representations with regard to this content and these materials of any kind, whether express or implied, including without limitation, warranties or representations of merchantability, fitness for a particular purpose, title and non-infringement of any third party intellectual property right. No license, whether express or implied, is granted by Infineon. Use of the information on this site may require a license from a third party, or a license from Infineon.

Infineon accepts no liability for the content and materials on this site being accurate, complete or up- to-date or for the contents of external links. Infineon distances itself expressly from the contents of the linked pages, over the structure of which Infineon has no control.

Content on this site may contain or be subject to specific guidelines or limitations on use. All postings and use of the content on this site are subject to the Usage Terms of the site; third parties using this content agree to abide by any limitations or guidelines and to comply with the Usage Terms of this site. Infineon reserves the right to make corrections, deletions, modifications, enhancements, improvements and other changes to the content and materials, its products, programs and services at any time or to move or discontinue any content, products, programs, or services without notice.