git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Sean Christopherson <seanjc@google.com>
	Fri, 13 Mar 2026 00:32:58 +0000 (17:32 -0700)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Wed, 22 Apr 2026 11:30:49 +0000 (13:30 +0200)
commit	c29ff288a2d97a6f4640a498a367cf0eb91312eb
tree	07333788257ee53a45a062bb5a81138560ed0f09	tree \| snapshot
parent	4df77742e8b9a6b935bdf46f02fd0aca4d4ee7f5	commit \| diff

KVM: SEV: Drop WARN on large size for KVM_MEMORY_ENCRYPT_REG_REGION

commit 8acffeef5ef720c35e513e322ab08e32683f32f2 upstream.

Drop the WARN in sev_pin_memory() on npages overflowing an int, as the
WARN is comically trivially to trigger from userspace, e.g. by doing:

  struct kvm_enc_region range = {
          .addr = 0,
          .size = -1ul,
  };

  __vm_ioctl(vm, KVM_MEMORY_ENCRYPT_REG_REGION, &range);

Note, the checks in sev_mem_enc_register_region() that presumably exist to
verify the incoming address+size are completely worthless, as both "addr"
and "size" are u64s and SEV is 64-bit only, i.e. they _can't_ be greater
than ULONG_MAX.  That wart will be cleaned up in the near future.

if (range->addr > ULONG_MAX || range->size > ULONG_MAX)
return -EINVAL;

Opportunistically add a comment to explain why the code calculates the
number of pages the "hard" way, e.g. instead of just shifting @ulen.

Fixes: 78824fabc72e ("KVM: SVM: fix svn_pin_memory()'s use of get_user_pages_fast()")
Cc: stable@vger.kernel.org
Reviewed-by: Liam Merwick <liam.merwick@oracle.com>
Tested-by: Liam Merwick <liam.merwick@oracle.com>
Link: https://patch.msgid.link/20260313003302.3136111-2-seanjc@google.com
Signed-off-by: Sean Christopherson <seanjc@google.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>