Received: by 10.223.176.46 with SMTP id f43csp2652461wra;
        Mon, 22 Jan 2018 00:57:04 -0800 (PST)
X-Google-Smtp-Source: AH8x226fIXADMYbMh9S40q1fUEFVD5uwjVPB7TD4V2+eqZz7XHpYt0EIXWUKTPhKM8/z6RE2Qr/l
X-Received: by 2002:a17:902:9a97:: with SMTP id w23-v6mr3109279plp.100.1516611424076;
        Mon, 22 Jan 2018 00:57:04 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1516611424; cv=none;
        d=google.com; s=arc-20160816;
        b=Vkjqg4i+IRzcGRRREjUD+d8OS2IFd07Bv2vItX7sz8FFfvSWGvHRirrvnC9DnfufKl
         ZwvHCmq/oWzvp8QkBJ/6SQpQgLwV9aNT4fr0IXXMWzBRYO48LMi96Fy7RWu/BJm+/0I2
         jB/2EHwN4G2s3SPrdvkOzQH+vFpouqqAtgUaaV93nvh3aj4j78v/Sw3TsY4fNNv0G6/p
         xAcwXcI1UeGhI85+AGiqU0Xm+VbZcFRDPJh+O2aiJwDysmmYMYO8Fd0E8B9mPPych5xL
         k9i/jROIiED2bloH8WiYNMKh2puBei2+9JjfVgYiAocWWxPZUEmNclfMcd/8HINSdC8a
         eNhA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:mime-version:user-agent:references
         :in-reply-to:message-id:date:subject:cc:to:from
         :arc-authentication-results;
        bh=NdLaMx5IbDj3eLj3Ogo1accNI56uBcB3Rlzu28v/MRA=;
        b=kmAx44UvLzUJrmclqZKvrkuWxA41dxvMetogfMOwTrNYZ+HuUltx6sNi0N905IJh3w
         oY7qmrpCCWFokniJ/l4gsW7HuhgoSdylerjg9RJH/UAmSvikw3/vZ4B3TNxW+E3jvglb
         hqBFH0GAcvIWfyazw4iBRDJZl/5N+Vz+53HTYzF3rhvNjT2XZuN+v9rBjpo/Qr9O3qzd
         SowC7+S5nSKnAE0lmHUjxSx7BYQZ1/DbYGhKIwT/KC43zFtIGm3Kpf2/bLmRMTxgsPE9
         MlVLEZGoU7+bVfzyxdW5ZLb2nlr7PvkoX+ARRqmmlNUSAdYGloVokLV8tM5zJAa2AJMI
         BvLw==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id v4-v6si3190310plp.746.2018.01.22.00.56.50;
        Mon, 22 Jan 2018 00:57:04 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1751216AbeAVIzr (ORCPT <rfc822;austinkernel.kim@gmail.com>
        + 99 others); Mon, 22 Jan 2018 03:55:47 -0500
Received: from mail.linuxfoundation.org ([140.211.169.12]:34346 "EHLO
        mail.linuxfoundation.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1753798AbeAVIyj (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 22 Jan 2018 03:54:39 -0500
Received: from localhost (LFbn-1-12258-90.w90-92.abo.wanadoo.fr [90.92.71.90])
        by mail.linuxfoundation.org (Postfix) with ESMTPSA id 6EFE3F50;
        Mon, 22 Jan 2018 08:54:38 +0000 (UTC)
From:   Greg Kroah-Hartman <gregkh@linuxfoundation.org>
To:     linux-kernel@vger.kernel.org
Cc:     Greg Kroah-Hartman <gregkh@linuxfoundation.org>,
        stable@vger.kernel.org, Punit Agrawal <punit.agrawal@arm.com>,
        Marc Zyngier <marc.zyngier@arm.com>,
        Christoffer Dall <christoffer.dall@linaro.org>
Subject: [PATCH 4.14 79/89] KVM: arm/arm64: Check pagesize when allocating a hugepage at Stage 2
Date:   Mon, 22 Jan 2018 09:45:59 +0100
Message-Id: <20180122084002.349818588@linuxfoundation.org>
X-Mailer: git-send-email 2.16.0
In-Reply-To: <20180122083954.683903493@linuxfoundation.org>
References: <20180122083954.683903493@linuxfoundation.org>
User-Agent: quilt/0.65
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

4.14-stable review patch.  If anyone has any objections, please let me know.

------------------

From: Punit Agrawal <punit.agrawal@arm.com>

commit c507babf10ead4d5c8cca704539b170752a8ac84 upstream.

KVM only supports PMD hugepages at stage 2 but doesn't actually check
that the provided hugepage memory pagesize is PMD_SIZE before populating
stage 2 entries.

In cases where the backing hugepage size is smaller than PMD_SIZE (such
as when using contiguous hugepages), KVM can end up creating stage 2
mappings that extend beyond the supplied memory.

Fix this by checking for the pagesize of userspace vma before creating
PMD hugepage at stage 2.

Fixes: 66b3923a1a0f77a ("arm64: hugetlb: add support for PTE contiguous bit")
Signed-off-by: Punit Agrawal <punit.agrawal@arm.com>
Cc: Marc Zyngier <marc.zyngier@arm.com>
Reviewed-by: Christoffer Dall <christoffer.dall@linaro.org>
Signed-off-by: Christoffer Dall <christoffer.dall@linaro.org>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

---
 virt/kvm/arm/mmu.c |    2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

--- a/virt/kvm/arm/mmu.c
+++ b/virt/kvm/arm/mmu.c
@@ -1310,7 +1310,7 @@ static int user_mem_abort(struct kvm_vcp
 		return -EFAULT;
 	}
 
-	if (is_vm_hugetlb_page(vma) && !logging_active) {
+	if (vma_kernel_pagesize(vma) == PMD_SIZE && !logging_active) {
 		hugetlb = true;
 		gfn = (fault_ipa & PMD_MASK) >> PAGE_SHIFT;
 	} else {