[PATCH] Fix used_idx wrap-around in virtio

From: Anthony Liguori
Date: Wed Nov 07 2007 - 16:49:19 EST

Next message: Romano Giannetti: "Re: 2.6.34-rc1 eat my photo SD card :-("
Previous message: Heikki Orsila: "net: skge breakage on 2.6.24-rc1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The more_used() function compares the vq->vring.used->idx with last_used_idx.
Since vq->vring.used->idx is a 16-bit integer, and last_used_idx is an
unsigned int, this results in unpredictable behavior when vq->vring.used->idx
wraps around.

This patch corrects this by changing last_used_idx to the correct type.

Signed-off-by: Anthony Liguori <aliguori@xxxxxxxxxx>

diff --git a/drivers/virtio/virtio_ring.c b/drivers/virtio/virtio_ring.c
index 0e4baca..0e1bf05 100644
--- a/drivers/virtio/virtio_ring.c
+++ b/drivers/virtio/virtio_ring.c
@@ -53,7 +53,7 @@ struct vring_virtqueue
unsigned int num_added;

/* Last used index we've seen. */
- unsigned int last_used_idx;
+ u16 last_used_idx;

/* How to notify other side. FIXME: commonalize hcalls! */
void (*notify)(struct virtqueue *vq);
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Romano Giannetti: "Re: 2.6.34-rc1 eat my photo SD card :-("
Previous message: Heikki Orsila: "net: skge breakage on 2.6.24-rc1"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]