Re: [PATCH] dma-direct: Don't over-decrypt memory

From: David Rientjes
Date: Sun May 22 2022 - 21:04:59 EST

Next message: Stephen Rothwell: "linux-next: manual merge of the net-next tree with the net tree"
Previous message: Xiubo Li: "Re: [PATCH] netfs: Fix gcc-12 warning by embedding vfs inode in netfs_i_context"
In reply to: Christoph Hellwig: "Re: [PATCH] dma-direct: Don't over-decrypt memory"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 20 May 2022, Robin Murphy wrote:

> The original x86 sev_alloc() only called set_memory_decrypted() on
> memory returned by alloc_pages_node(), so the page order calculation
> fell out of that logic. However, the common dma-direct code has several
> potential allocators, not all of which are guaranteed to round up the
> underlying allocation to a power-of-two size, so carrying over that
> calculation for the encryption/decryption size was a mistake. Fix it by
> rounding to a *number* of pages, rather than an order.
>
> Until recently there was an even worse interaction with DMA_DIRECT_REMAP
> where we could have ended up decrypting part of the next adjacent
> vmalloc area, only averted by no architecture actually supporting both
> configs at once. Don't ask how I found that one out...
>
> CC: stable@xxxxxxxxxxxxxxx
> Fixes: c10f07aa27da ("dma/direct: Handle force decryption for DMA coherent buffers in common code")
> Signed-off-by: Robin Murphy <robin.murphy@xxxxxxx>

Acked-by: David Rientjes <rientjes@xxxxxxxxxx>

Next message: Stephen Rothwell: "linux-next: manual merge of the net-next tree with the net tree"
Previous message: Xiubo Li: "Re: [PATCH] netfs: Fix gcc-12 warning by embedding vfs inode in netfs_i_context"
In reply to: Christoph Hellwig: "Re: [PATCH] dma-direct: Don't over-decrypt memory"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]