Commit 617cc646 authored Sep 19, 2018 by Dan Carpenter Committed by Jeff Kirsher Oct 03, 2018

ixgbevf: off by one in ixgbevf_ipsec_tx()



The ipsec->tx_tbl[] array has IXGBE_IPSEC_MAX_SA_COUNT elements so the >
should be a >=.

Fixes: 0062e7cc ("ixgbevf: add VF IPsec offload code")
Signed-off-by: Dan Carpenter <dan.carpenter@oracle.com>
Signed-off-by: Shannon Nelson <shannon.nelson@oracle.com>
Tested-by: Andrew Bowers <andrewx.bowers@intel.com>
Signed-off-by: Jeff Kirsher <jeffrey.t.kirsher@intel.com>

parent 6b27f3de

drivers/net/ethernet/intel/ixgbevf/ipsec.c

+1 −1

Original line number	Diff line number	Diff line
		@@ -467,7 +467,7 @@ int ixgbevf_ipsec_tx(struct ixgbevf_ring *tx_ring,
		}

		sa_idx = xs->xso.offload_handle - IXGBE_IPSEC_BASE_TX_INDEX;
		if (unlikely(sa_idx > IXGBE_IPSEC_MAX_SA_COUNT)) {
		if (unlikely(sa_idx >= IXGBE_IPSEC_MAX_SA_COUNT)) {
		netdev_err(tx_ring->netdev, "%s: bad sa_idx=%d handle=%lu\n",
		__func__, sa_idx, xs->xso.offload_handle);
		return 0;