[PATCH 11/11] target: go through normal processing for all zero-length commands

From: Paolo Bonzini
Date: Fri Sep 07 2012 - 11:31:34 EST

Next message: Daniel Drake: "Re: Loop device partition scanning is unreliable"
Previous message: Paolo Bonzini: "[PATCH 09/11] target: support zero allocation length in SBC commands"
In reply to: Paolo Bonzini: "[PATCH 09/11] target: support zero allocation length in SBC commands"
Next in thread: Paolo Bonzini: "[PATCH 10/11] target: do not submit a zero-bio I/O request"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Yay, all users of transport_kmap_data_sg now check for a zero-length
request and/or a too-small parameter list length. We can thus go through
the normal emulation path even for such commands.

This means that out-of-bounds reads and writes are now reported correctly
even if they transfer 0 blocks. Other errors are also reported correctly.

Testcase: sg_raw /dev/sdb 28 00 80 00 00 00 00 00 00 00
should fail with ILLEGAL REQUEST / LBA OUT OF RANGE sense
does not fail without the patch
(still wrong with the patch, but better: the ASC is INVALID FIELD IN CDB)

Signed-off-by: Paolo Bonzini <pbonzini@xxxxxxxxxx>
---
drivers/target/target_core_transport.c | 18 ------------------
1 files changed, 0 insertions(+), 18 deletions(-)

diff --git a/drivers/target/target_core_transport.c b/drivers/target/target_core_transport.c
index 09d9279..c071d0b 100644
--- a/drivers/target/target_core_transport.c
+++ b/drivers/target/target_core_transport.c
@@ -2295,24 +2295,6 @@ int transport_generic_new_cmd(struct se_cmd *cmd)
if (ret < 0)
goto out_fail;
}
- /*
- * If this command doesn't have any payload and we don't have to call
- * into the fabric for data transfers, go ahead and complete it right
- * away.
- */
- if (!cmd->data_length &&
- cmd->t_task_cdb[0] != REQUEST_SENSE &&
- (cmd->se_dev->transport->transport_type != TRANSPORT_PLUGIN_PHBA_PDEV ||
- cmd->t_task_cdb[0] == REPORT_LUNS) {
- spin_lock_irq(&cmd->t_state_lock);
- cmd->t_state = TRANSPORT_COMPLETE;
- cmd->transport_state |= CMD_T_ACTIVE;
- spin_unlock_irq(&cmd->t_state_lock);
-
- INIT_WORK(&cmd->work, target_complete_ok_work);
- queue_work(target_completion_wq, &cmd->work);
- return 0;
- }

atomic_inc(&cmd->t_fe_count);

--
1.7.1
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Daniel Drake: "Re: Loop device partition scanning is unreliable"
Previous message: Paolo Bonzini: "[PATCH 09/11] target: support zero allocation length in SBC commands"
In reply to: Paolo Bonzini: "[PATCH 09/11] target: support zero allocation length in SBC commands"
Next in thread: Paolo Bonzini: "[PATCH 10/11] target: do not submit a zero-bio I/O request"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]