> It's probably really not worth it. The u100w2 is a pretty old SCSI > driver. I can't imagine there's more than a handful of them left. As I > said, there's no evidence of a problem. I would argue that having hardened code is always better if you plan to support this code at all. And these bugs manifest more frequently as hardware gets older. Sanitizing inputs from hardware is a good idea and this one is particularly insidious since it uses it uses hardware values in pointer operations. -Asim-- To unsubscribe from this list: send the line "unsubscribe linux-scsi" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html