From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from eggs.gnu.org ([208.118.235.92]:38146) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1SzSxb-0002WA-PD for qemu-devel@nongnu.org; Thu, 09 Aug 2012 09:39:36 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1SzSxa-0003tL-PG for qemu-devel@nongnu.org; Thu, 09 Aug 2012 09:39:35 -0400 Received: from mail-pb0-f45.google.com ([209.85.160.45]:34613) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1SzSxa-0003qC-IL for qemu-devel@nongnu.org; Thu, 09 Aug 2012 09:39:34 -0400 Received: by mail-pb0-f45.google.com with SMTP id rp12so868953pbb.4 for ; Thu, 09 Aug 2012 06:39:34 -0700 (PDT) Sender: Paolo Bonzini From: Paolo Bonzini Date: Thu, 9 Aug 2012 15:38:30 +0200 Message-Id: <1344519511-18147-7-git-send-email-pbonzini@redhat.com> In-Reply-To: <1344519511-18147-1-git-send-email-pbonzini@redhat.com> References: <1344519511-18147-1-git-send-email-pbonzini@redhat.com> Subject: [Qemu-devel] [PATCH 6/7] scsi-disk: improve out-of-range LBA detection for WRITE SAME List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: qemu-devel@nongnu.org Signed-off-by: Paolo Bonzini --- hw/scsi-disk.c | 3 ++- 1 file modificato, 2 inserzioni(+). 1 rimozione(-) diff --git a/hw/scsi-disk.c b/hw/scsi-disk.c index 3baa238..dd7ae6d 100644 --- a/hw/scsi-disk.c +++ b/hw/scsi-disk.c @@ -1712,7 +1712,8 @@ static int32_t scsi_disk_emulate_command(SCSIRequest *req, uint8_t *buf) scsi_check_condition(r, SENSE_CODE(WRITE_PROTECTED)); return 0; } - if (r->req.cmd.lba > s->qdev.max_lba) { + if (r->req.cmd.lba > r->req.cmd.lba + nb_sectors || + r->req.cmd.lba + nb_sectors - 1 > s->qdev.max_lba) { goto illegal_lba; } -- 1.7.11.2