Re: [PATCH] drivers: scsi: fix shift-out-of-bounds in sg_build_indirect

From: Bart Van Assche
Date: Mon Apr 15 2024 - 13:26:39 EST

Next message: Rob Herring: "Re: [PATCH v2 1/2] dt-bindings: display: panel: Add Raydium RM69380"
Previous message: Luis Garcia: "Re: [PATCH v3 22/25] dt-bindings: media: imx258: Add binding for powerdown-gpio"
In reply to: Sam Sun: "[PATCH] drivers: scsi: fix shift-out-of-bounds in sg_build_indirect"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 4/14/24 20:14, Sam Sun wrote:

- num = scatter_elem_sz;
+ num = max(scatter_elem_sz, PAGE_SIZE);

Shouldn't the following statements be modified instead of the above
statement? I think these are the only statements that can cause
scatter_elem_sz to become smaller than PAGE_SIZE:

scatter_elem_sz = ret_sz;
scatter_elem_sz_prev = ret_sz;

Thanks,

Bart.

Next message: Rob Herring: "Re: [PATCH v2 1/2] dt-bindings: display: panel: Add Raydium RM69380"
Previous message: Luis Garcia: "Re: [PATCH v3 22/25] dt-bindings: media: imx258: Add binding for powerdown-gpio"
In reply to: Sam Sun: "[PATCH] drivers: scsi: fix shift-out-of-bounds in sg_build_indirect"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]