git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Rick Edgecombe <rick.p.edgecombe@intel.com>
	Mon, 11 Mar 2024 16:15:54 +0000 (09:15 -0700)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Sun, 6 Jul 2025 08:57:58 +0000 (10:57 +0200)
commit	7f2afcbfe4f6b6047b5f68db5067b7321e5be125
tree	fb97f9f208293bcf748b2e9401e39dbb55b083c9	tree
parent	c86078dd890dd1ec8c9aee31c269cfcd0f5e40d7	commit \| diff

Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails

[ Upstream commit 03f5a999adba062456c8c818a683beb1b498983a ]

In CoCo VMs it is possible for the untrusted host to cause
set_memory_encrypted() or set_memory_decrypted() to fail such that an
error is returned and the resulting memory is shared. Callers need to
take care to handle these errors to avoid returning decrypted (shared)
memory to the page allocator, which could lead to functional or security
issues.

VMBus code could free decrypted pages if set_memory_encrypted()/decrypted()
fails. Leak the pages if this happens.

Signed-off-by: Rick Edgecombe <rick.p.edgecombe@intel.com>
Signed-off-by: Michael Kelley <mhklinux@outlook.com>
Reviewed-by: Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com>
Acked-by: Kirill A. Shutemov <kirill.shutemov@linux.intel.com>
Link: https://lore.kernel.org/r/20240311161558.1310-2-mhklinux@outlook.com
Signed-off-by: Wei Liu <wei.liu@kernel.org>
Message-ID: <20240311161558.1310-2-mhklinux@outlook.com>
Stable-dep-of: 09eea7ad0b8e ("Drivers: hv: Allocate interrupt and monitor pages aligned to system page boundary")
Signed-off-by: Sasha Levin <sashal@kernel.org>