cryptodev-builtin: Limit the maximum size

author zhenwei pi <pizhenwei@tensorfer.com>

Sun, 21 Dec 2025 02:43:21 +0000 (10:43 +0800)

committer Michael S. Tsirkin <mst@redhat.com>

Thu, 5 Feb 2026 10:06:46 +0000 (05:06 -0500)
author zhenwei pi <pizhenwei@tensorfer.com>
Sun, 21 Dec 2025 02:43:21 +0000 (10:43 +0800)
committer Michael S. Tsirkin <mst@redhat.com>
Thu, 5 Feb 2026 10:06:46 +0000 (05:06 -0500)
diff --git a/backends/cryptodev-builtin.c b/backends/cryptodev-builtin.c

index 0414c01e06d907eca80da519f330b167f07d5c47..55a3fbd27b1e2ebe1e53878f58b531e0887d32e3 100644 (file)
--- a/backends/cryptodev-builtin.c
+++ b/backends/cryptodev-builtin.c
@@ -53,6 +53,8 @@ typedef struct CryptoDevBackendBuiltinSession {
  
  #define CRYPTODEV_BUITLIN_MAX_AUTH_KEY_LEN    512
  #define CRYPTODEV_BUITLIN_MAX_CIPHER_KEY_LEN  64
+/* demonstration purposes only, use a limited size to avoid QEMU OOM */
+#define CRYPTODEV_BUITLIN_MAX_REQUEST_SIZE  (1024 * 1024)
  
  struct CryptoDevBackendBuiltin {
      CryptoDevBackend parent_obj;
@@ -98,12 +100,7 @@ static void cryptodev_builtin_init(
                           1u << QCRYPTODEV_BACKEND_SERVICE_TYPE_MAC;
      backend->conf.cipher_algo_l = 1u << VIRTIO_CRYPTO_CIPHER_AES_CBC;
      backend->conf.hash_algo = 1u << VIRTIO_CRYPTO_HASH_SHA1;
-    /*
-     * Set the Maximum length of crypto request.
-     * Why this value? Just avoid to overflow when
-     * memory allocation for each crypto request.
-     */
-    backend->conf.max_size = LONG_MAX - sizeof(CryptoDevBackendOpInfo);
+    backend->conf.max_size = CRYPTODEV_BUITLIN_MAX_REQUEST_SIZE;
      backend->conf.max_cipher_key_len = CRYPTODEV_BUITLIN_MAX_CIPHER_KEY_LEN;
      backend->conf.max_auth_key_len = CRYPTODEV_BUITLIN_MAX_AUTH_KEY_LEN;
      cryptodev_builtin_init_akcipher(backend);
author	zhenwei pi <pizhenwei@tensorfer.com>
	Sun, 21 Dec 2025 02:43:21 +0000 (10:43 +0800)
committer	Michael S. Tsirkin <mst@redhat.com>
	Thu, 5 Feb 2026 10:06:46 +0000 (05:06 -0500)