projects / qemu.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 2ec83d6)
hw/sd/sdcard: Restrict SWITCH_FUNCTION to sd_transfer_state (CMD6)
authorPhilippe Mathieu-Daudé <philmd@linaro.org>
Tue, 25 Jun 2024 02:48:12 +0000 (04:48 +0200)
committerPhilippe Mathieu-Daudé <philmd@linaro.org>
Tue, 2 Jul 2024 08:07:48 +0000 (10:07 +0200)
SWITCH_FUNCTION is only allowed in TRANSFER state
(See 4.8 "Card State Transition Table).

Fixes: a1bb27b1e9 ("Initial SD card emulation")
Signed-off-by: Philippe Mathieu-Daudé <philmd@linaro.org>
Tested-by: Cédric Le Goater <clg@redhat.com>
Reviewed-by: Cédric Le Goater <clg@redhat.com>
Message-Id: <20240628070216.92609-13-philmd@linaro.org>

hw/sd/sd.c patch | blob | history

diff --git a/hw/sd/sd.c b/hw/sd/sd.c
index 396185f240d41f3c30de9130a583d3790c3593f2..b5d002e6d712aa303b325c515a8f796620ccff0d 100644 (file)
--- a/hw/sd/sd.c
+++ b/hw/sd/sd.c
@@ -1204,6 +1204,10 @@ static sd_rsp_type_t sd_normal_command(SDState *sd, SDRequest req)
         if (sd->mode != sd_data_transfer_mode) {
             return sd_invalid_mode_for_cmd(sd, req);
         }
+        if (sd->state != sd_transfer_state) {
+            return sd_invalid_state_for_cmd(sd, req);
+        }
+
         sd_function_switch(sd, req.arg);
         sd->state = sd_sendingdata_state;
         sd->data_start = 0;
Unnamed repository; edit this file 'description' to name the repository.