drivers/iommu/tegra-gart.c · d652ea30ba32db12fe8365182fad5ba2e7c22822 · Kirill Smelkov / linux

iommu: Switch gather->end to the inclusive end · 862c3715

Yong Wu authored Jan 07, 2021

Currently gather->end is "unsigned long" which may be overflow in
arch32 in the corner case: 0xfff00000 + 0x100000(iova + size).
Although it doesn't affect the size(end - start), it affects the checking
"gather->end < end"

This patch changes this "end" to the real end address
(end = start + size - 1). Correspondingly, update the length to
"end - start + 1".

Fixes: a7d20dc1 ("iommu: Introduce struct iommu_iotlb_gather for batching TLB flushes")
Signed-off-by: Yong Wu <yong.wu@mediatek.com>
Reviewed-by: Robin Murphy <robin.murphy@arm.com>
Acked-by: Will Deacon <will@kernel.org>
Link: https://lore.kernel.org/r/20210107122909.16317-5-yong.wu@mediatek.comSigned-off-by: Will Deacon <will@kernel.org>

862c3715

tegra-gart.c 9.13 KB

Replace tegra-gart.c