pci/dmar: correct off-by-one error in dmar_fault()
authorTroy Heber <troy.heber@hp.com>
Wed, 19 Aug 2009 21:26:11 +0000 (15:26 -0600)
committerDavid Woodhouse <David.Woodhouse@intel.com>
Sun, 30 Aug 2009 18:05:04 +0000 (19:05 +0100)
DMAR faults are recorded into a ring of "fault recording registers".
fault_index is a 0-based index into the ring. The code allows the
0-based fault_index to be equal to the total number of fault registers
available from the cap_num_fault_regs() macro, which causes access
beyond the last available register.

Signed-off-by Troy Heber <troy.heber@hp.com>
Signed-off-by: David Woodhouse <David.Woodhouse@intel.com>
drivers/pci/dmar.c

index 380b60e677e038b51c781609cf3eb03f5d11bc0c..3264b626725a32077ed1196b29f0305b8ecf3be2 100644 (file)
@@ -1226,7 +1226,7 @@ irqreturn_t dmar_fault(int irq, void *dev_id)
                                source_id, guest_addr);
 
                fault_index++;
-               if (fault_index > cap_num_fault_regs(iommu->cap))
+               if (fault_index >= cap_num_fault_regs(iommu->cap))
                        fault_index = 0;
                spin_lock_irqsave(&iommu->register_lock, flag);
        }