This ensures that the residual bytes in response (might come from an
untrusted device) will not exceed the data buffer length.
Link: https://lore.kernel.org/r/20210615105218.214-1-xieyongji@bytedance.com
Acked-by: Jason Wang <jasowang@redhat.com>
Signed-off-by: Xie Yongji <xieyongji@bytedance.com>
Signed-off-by: Martin K. Petersen <martin.petersen@oracle.com>
 static void virtscsi_compute_resid(struct scsi_cmnd *sc, u32 resid)
 {
        if (resid)
-               scsi_set_resid(sc, resid);
+               scsi_set_resid(sc, min(resid, scsi_bufflen(sc)));
 }
 
 /*