From 48c6ccdf068a0639f46d8fa39df09ca61dc16841 Mon Sep 17 00:00:00 2001
From: Jonas 'Sortie' Termansen <sortie@maxsi.org>
Date: Fri, 8 Jan 2016 00:39:13 +0100
Subject: [PATCH] Fix MapPCIBAR potential overflow.

---
 kernel/pci-mmio.cpp | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/kernel/pci-mmio.cpp b/kernel/pci-mmio.cpp
index 9c895048..bbcd7b61 100644
--- a/kernel/pci-mmio.cpp
+++ b/kernel/pci-mmio.cpp
@@ -79,22 +79,21 @@ bool MapPCIBAR(addralloc_t* allocation, pcibar_t bar, int flags)
 		bool failure = false;
 
 		int prot = PROT_KWRITE | PROT_KREAD;
-		uint64_t physaddr = bar.addr() + i;
 		uintptr_t mapat = allocation->from + i;
 
-		if ( sizeof(void*) <= 4 && 0x100000000 <= physaddr )
+		if ( sizeof(void*) <= 4 && 0x100000000 <= phys_addr + i )
 			errno = EOVERFLOW, failure = true;
 #if defined(__i386__) || defined(__x86_64__)
 		else if ( flags & MAP_PCI_BAR_WRITE_COMBINE )
 		{
 			const addr_t mtype = Memory::PAT_WC;
-			if ( !Memory::MapPAT(physaddr, mapat, prot, mtype) )
+			if ( !Memory::MapPAT(phys_addr + i, mapat, prot, mtype) )
 				failure = true;
 		}
 #endif
 		else
 		{
-			if ( !Memory::Map(physaddr, mapat, prot) )
+			if ( !Memory::Map(phys_addr + i, mapat, prot) )
 				failure = true;
 		}