[1/3] smbus: fix writes

Message ID	1402304133-29620-2-git-send-email-marc.mari.barcelo@gmail.com
State	New
Headers	show Return-Path: <qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org> From: =?UTF-8?q?Marc=20Mar=C3=AD?= <marc.mari.barcelo@gmail.com> To: qemu-devel@nongnu.org Date: Mon, 9 Jun 2014 10:55:31 +0200 Message-Id: <1402304133-29620-2-git-send-email-marc.mari.barcelo@gmail.com> In-Reply-To: <1402304133-29620-1-git-send-email-marc.mari.barcelo@gmail.com> References: <1402304133-29620-1-git-send-email-marc.mari.barcelo@gmail.com> Error: Malformed IPv6 address (bad octet value). Cc: Paolo Bonzini <pbonzini@redhat.com>, =?UTF-8?q?Andreas=20F=C3=A4rber?= <afaerber@suse.de>, Stefan Hajnoczi <stefanha@redhat.com> Subject: [Qemu-devel] [PATCH 1/3] smbus: fix writes Precedence: list Errors-To: qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org Sender: qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org

Message ID

1402304133-29620-2-git-send-email-marc.mari.barcelo@gmail.com

State

New

Headers

From: =?UTF-8?q?Marc=20Mar=C3=AD?= <marc.mari.barcelo@gmail.com>
To: qemu-devel@nongnu.org
Date: Mon,  9 Jun 2014 10:55:31 +0200
Message-Id: <1402304133-29620-2-git-send-email-marc.mari.barcelo@gmail.com>
In-Reply-To: <1402304133-29620-1-git-send-email-marc.mari.barcelo@gmail.com>
References: <1402304133-29620-1-git-send-email-marc.mari.barcelo@gmail.com>
Cc: Paolo Bonzini <pbonzini@redhat.com>,
	=?UTF-8?q?Andreas=20F=C3=A4rber?= <afaerber@suse.de>,
	Stefan Hajnoczi <stefanha@redhat.com>
Subject: [Qemu-devel] [PATCH 1/3] smbus: fix writes
Precedence: list
Errors-To: qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org
Sender: qemu-devel-bounces+incoming=patchwork.ozlabs.org@nongnu.org

Commit Message

Marc Marí June 9, 2014, 8:55 a.m. UTC

From: Paolo Bonzini <pbonzini@redhat.com>

SMBus protocol sends offset and length before the actual data that
is transferred.  So we need to skip two bytes rather than one.

Signed-off-by: Paolo Bonzini <pbonzini@redhat.com>
---
 hw/i2c/smbus.c |    7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/hw/i2c/smbus.c b/hw/i2c/smbus.c
index 6e27ae8..173a533 100644
--- a/hw/i2c/smbus.c
+++ b/hw/i2c/smbus.c
@@ -59,9 +59,12 @@  static void smbus_do_write(SMBusDevice *dev)
     } else {
         dev->command = dev->data_buf[0];
         DPRINTF("Command %d len %d\n", dev->command, dev->data_len - 1);
+        if (dev->data_buf[1] > dev->data_len - 2) {
+            fprintf(stderr, "SMBus data transfer overrun!\n");
+        }
         if (sc->write_data) {
-            sc->write_data(dev, dev->command, dev->data_buf + 1,
-                           dev->data_len - 1);
+            sc->write_data(dev, dev->command, dev->data_buf + 2,
+                           MIN(dev->data_buf[1], dev->data_len - 2));
         }
     }
 }

[1/3] smbus: fix writes

Commit Message

Patch