IB/iser: Fix wrong calculation of protection buffer length

commit a065fe6a upstream. This length miss-calculation may cause a silent data corruption in the DIX case and cause the device to reference unmapped area. Fixes: d77e6535 ('libiscsi, iser: Adjust data_length to include protection information') Signed-off-by: Sagi Grimberg <sagig@mellanox.com> Signed-off-by: Doug Ledford <dledford@redhat.com> Signed-off-by: Luis Henriques <luis.henriques@canonical.com>

IB/iser: Fix wrong calculation of protection buffer length
commit a065fe6a upstream. This length miss-calculation may cause a silent data corruption in the DIX case and cause the device to reference unmapped area. Fixes: d77e6535 ('libiscsi, iser: Adjust data_length to include protection information') Signed-off-by: Sagi Grimberg <sagig@mellanox.com> Signed-off-by: Doug Ledford <dledford@redhat.com> Signed-off-by: Luis Henriques <luis.henriques@canonical.com>
b458805c · Sagi Grimberg · Luis Henriques · 9bae3dbf · b458805c
Commit b458805c authored Apr 14, 2015 by Sagi Grimberg Committed by Luis Henriques May 06, 2015
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 2 deletions

drivers/infiniband/ulp/iser/iser_initiator.c drivers/infiniband/ulp/iser/iser_initiator.c +2 -2

No files found.
--- a/drivers/infiniband/ulp/iser/iser_initiator.c
+++ b/drivers/infiniband/ulp/iser/iser_initiator.c
@@ -402,8 +402,8 @@ int iser_send_command(struct iscsi_conn *conn,
 	if (scsi_prot_sg_count(sc)) {
 		prot_buf->buf  = scsi_prot_sglist(sc);
 		prot_buf->size = scsi_prot_sg_count(sc);
-		prot_buf->data_len = data_buf->data_len >>
+		prot_buf->data_len = (data_buf->data_len >>
-				     ilog2(sc->device->sector_size) * 8;
+				     ilog2(sc->device->sector_size)) * 8;
 	}
 	if (hdr->flags & ISCSI_FLAG_CMD_READ) {