MIPS: 64-bit: Fix system lockup.

The address range size calculation inside local_flush_tlb_kernel_range() is being truncated by a too small size variable holder on 64-bit systems. The truncated size can result in an erroneous tlbsize check that means we sit spinning inside a loop trying to flush a hige number of TLB entries. This is for all intents and purposes a system hang. Fix by using an appropriately sized valiable to hold the size. [Ralf: Greg's original patch submission identified the issue and fixed one instance in tlb-r4k.c but there there were several more. For consistency I also modified tlb-r3k.c even though that file is only used on 32-bit.] Signed-off-by: Greg Ungerer <gerg@snapgear.com> Signed-off-by: Ralf Baechle <ralf@linux-mips.org>
author: Greg Ungerer <gerg@snapgear.com> 2009-05-20 02:12:32 -0400
committer: Ralf Baechle <ralf@linux-mips.org> 2009-05-20 13:53:14 -0400
commit: a5e696e5d0f1377ff6beb10d2f40edb6a3d1de18 (patch)
tree: 2f7b194c53e9a7e2ab6c8b58335c299a897231fe /arch
parent: 195d1a96ae5fdfbedb8dc4b97afee578921fa99e (diff)
3 files changed, 5 insertions, 10 deletions
diff --git a/arch/mips/mm/tlb-r3k.c b/arch/mips/mm/tlb-r3k.c
index f0cf46adb97..1c0048a6f5c 100644
--- a/arch/mips/mm/tlb-r3k.c
+++ b/arch/mips/mm/tlb-r3k.c
@@ -82,8 +82,7 @@ void local_flush_tlb_range(struct vm_area_struct *vma, unsigned long start,
        int cpu = smp_processor_id();
        if (cpu_context(cpu, mm) != 0) {
-                unsigned long flags;
+                unsigned long size, flags;
-                int size;
 #ifdef DEBUG_TLB
                printk("[tlbrange<%lu,0x%08lx,0x%08lx>]",
@@ -121,8 +120,7 @@ void local_flush_tlb_range(struct vm_area_struct *vma, unsigned long start,
 void local_flush_tlb_kernel_range(unsigned long start, unsigned long end)
 {
-        unsigned long flags;
+        unsigned long size, flags;
-        int size;
 #ifdef DEBUG_TLB
        printk("[tlbrange<%lu,0x%08lx,0x%08lx>]", start, end);
diff --git a/arch/mips/mm/tlb-r4k.c b/arch/mips/mm/tlb-r4k.c
index 9619f66e531..892be426787 100644
--- a/arch/mips/mm/tlb-r4k.c
+++ b/arch/mips/mm/tlb-r4k.c
@@ -117,8 +117,7 @@ void local_flush_tlb_range(struct vm_area_struct *vma, unsigned long start,
        int cpu = smp_processor_id();
        if (cpu_context(cpu, mm) != 0) {
-                unsigned long flags;
+                unsigned long size, flags;
-                int size;
                ENTER_CRITICAL(flags);
                size = (end - start + (PAGE_SIZE - 1)) >> PAGE_SHIFT;
@@ -160,8 +159,7 @@ void local_flush_tlb_range(struct vm_area_struct *vma, unsigned long start,
 void local_flush_tlb_kernel_range(unsigned long start, unsigned long end)
 {
-        unsigned long flags;
+        unsigned long size, flags;
-        int size;
        ENTER_CRITICAL(flags);
        size = (end - start + (PAGE_SIZE - 1)) >> PAGE_SHIFT;
diff --git a/arch/mips/mm/tlb-r8k.c b/arch/mips/mm/tlb-r8k.c
index 4f01a3be215..4ec95cc2df2 100644
--- a/arch/mips/mm/tlb-r8k.c
+++ b/arch/mips/mm/tlb-r8k.c
@@ -111,8 +111,7 @@ out_restore:
 /* Usable for KV1 addresses only! */
 void local_flush_tlb_kernel_range(unsigned long start, unsigned long end)
 {
-        unsigned long flags;
+        unsigned long size, flags;
-        int size;
        size = (end - start + (PAGE_SIZE - 1)) >> PAGE_SHIFT;
        size = (size + 1) >> 1;
author	Greg Ungerer <gerg@snapgear.com>	2009-05-20 02:12:32 -0400
committer	Ralf Baechle <ralf@linux-mips.org>	2009-05-20 13:53:14 -0400
commit	a5e696e5d0f1377ff6beb10d2f40edb6a3d1de18 (patch)
tree	2f7b194c53e9a7e2ab6c8b58335c299a897231fe /arch
parent	195d1a96ae5fdfbedb8dc4b97afee578921fa99e (diff)