[SCSI] Prevent scsi_execute_async from guessing cdb length When the scsi_execute_async interface was added it ended up reducing the flexibility of userspace to send arbitrary scsi commands through sg using SG_IO. The SG_IO interface allows userspace to specify the CDB length. This is now ignored in scsi_execute_async and it is guessed using the COMMAND_SIZE macro, which is not always correct, particularly for vendor specific commands. This patch adds a cmd_len parameter to the scsi_execute_async interface to allow the caller to specify the length of the CDB. Signed-off-by: Brian King <brking@us.ibm.com> Signed-off-by: James Bottomley <James.Bottomley@SteelEye.com>

commit: bb1d1073a10fdc8547e3eb821ee2488260094b39 [log] [tgz]
author: brking@us.ibm.com <brking@us.ibm.com> Mon Jan 23 15:03:22 2006 -0600
committer: James Bottomley <jejb@mulgrave.(none)> Thu Jan 26 15:13:50 2006 -0500
tree: 139a30834cea40e0d967506cfdaea603cf56a192
parent: 15084a4a63bc300c18b28a8a9afac870c552abce [diff] [blame]
diff --git a/drivers/scsi/st.c b/drivers/scsi/st.c
index 13b1d3a..7f96f33 100644
--- a/drivers/scsi/st.c
+++ b/drivers/scsi/st.c

@@ -508,7 +508,7 @@
 	STp->buffer->cmdstat.have_sense = 0;
 	STp->buffer->syscall_result = 0;
 
-	if (scsi_execute_async(STp->device, cmd, direction,
+	if (scsi_execute_async(STp->device, cmd, COMMAND_SIZE(cmd[0]), direction,
 			&((STp->buffer)->sg[0]), bytes, (STp->buffer)->sg_segs,
 			       timeout, retries, SRpnt, st_sleep_done, GFP_KERNEL)) {
 		/* could not allocate the buffer or request was too large */
commit	bb1d1073a10fdc8547e3eb821ee2488260094b39	[log] [tgz]
author	brking@us.ibm.com <brking@us.ibm.com>	Mon Jan 23 15:03:22 2006 -0600
committer	James Bottomley <jejb@mulgrave.(none)>	Thu Jan 26 15:13:50 2006 -0500
tree	139a30834cea40e0d967506cfdaea603cf56a192
parent	15084a4a63bc300c18b28a8a9afac870c552abce [diff] [blame]