Received: by 2002:a05:6358:1087:b0:cb:c9d3:cd90 with SMTP id j7csp131405rwi; Wed, 12 Oct 2022 17:18:01 -0700 (PDT) X-Google-Smtp-Source: AMsMyM79uA4jiv2oqYihi7kMCDmCERJDkTcNag2ixk5wZ3/R5d0974TghGK3uXh5gckt+5sBOSQ3 X-Received: by 2002:a17:907:2bda:b0:78d:9144:fb6d with SMTP id gv26-20020a1709072bda00b0078d9144fb6dmr19759397ejc.238.1665620270233; Wed, 12 Oct 2022 17:17:50 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1665620270; cv=none; d=google.com; s=arc-20160816; b=aXP4+UCy71Lf6uLL/iFwqggo06RfK0sAQy+caT2L2avJFkD6VRf1HmdJXvmoLnkCHB d9uP88doZeEKELAUI4KsE88Co029Fyfs4yotz7fBFqjXe1G8zvE/OpYlI3kpegmrQ5Xa Sn4avhlblcjty0qMHsQAeunDE75nc2aXQZ0DjsA4PL5+qsFkMf7i6TNxF+EZtZAbXt+w BH5siRmxaIeKq2xhQtlDvAYbAfo2/vsoKeKFMAKdIWdxdHVxLr+dEK7xi2R0pZ4tWTsV zpjDmWyVrTKhOXgDC4o3DpsttZbLy88tnDrlR5v68aVQICK7VrPTnzeVqtgc6MlfN/1I bBGA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=oVfzjJywpJ4GYbFJMqXBRtUkuMRGMygdtzhfFYhaojo=; b=SISEUky354SV9JZ5DFiVX8Jnp6EEYX4WJNtgRgtB07usQIohj9CHOtwVbCL3JeKFTL QzkMuEPLwJ3Pxl2dkwQQt+SdRSVqOBgNHdtCDiVjo0zIgIucsGFEZyURoDSHPlQt/EJU 2M4AizabarWuk0ggSaJhCeowpDq3he+563fR7BA6qz5iH/Zfy6so0gb79lYxAYDipvXE VMdC4ZBdk9CbuZjz9vrMwNJFGv+ToUMF7Vqx2v6ylmSpdwOGj9oGfcBKttIoCZbDAsyO dykLpAldhoTJUvlo3Xg//HNizi3OZR68+a9tAjGNGlQizIScURuRdJEBmpF0bKFdffC2 B8EA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20210112 header.b=aaH5lDtO; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id ee21-20020a056402291500b004587cd5a5bdsi14535185edb.81.2022.10.12.17.17.24; Wed, 12 Oct 2022 17:17:50 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20210112 header.b=aaH5lDtO; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S229639AbiJLXbg (ORCPT + 99 others); Wed, 12 Oct 2022 19:31:36 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:50168 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229544AbiJLXbe (ORCPT ); Wed, 12 Oct 2022 19:31:34 -0400 Received: from mail-lf1-x12c.google.com (mail-lf1-x12c.google.com [IPv6:2a00:1450:4864:20::12c]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 3E31B792E8 for ; Wed, 12 Oct 2022 16:31:33 -0700 (PDT) Received: by mail-lf1-x12c.google.com with SMTP id bu25so62194lfb.3 for ; Wed, 12 Oct 2022 16:31:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=oVfzjJywpJ4GYbFJMqXBRtUkuMRGMygdtzhfFYhaojo=; b=aaH5lDtO91ywVHHYdmOfHL7xUWG7/eFKHgAbuU9PEmtFkFq+BxZRA4lv6oZLyvJWgQ t9QVrtipWZY4+uvfZ6afTID3CMSX1CKpE9Te0lhopse702/QvnRrVP0bUwFVxNn6jCWS DeseKmsgklxt0n5dUCYbyoJ8XQSzfJ3je2gYiQ7RnOycEvHcEgmmvLBD1nbefj9RP9Lh FxpJuyTrztRapcwUaY0su4uFFZNJTyu22Ww28nB+WYpSmagGQADxgM1jRHKRQFM5w5Uv 8Tz9WORorRT++XkfYAUHK87VqBeTWV2LBscsxAk7rJAbP1MQjFkZTsFNF2A2Hln8gkGj uyYw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=oVfzjJywpJ4GYbFJMqXBRtUkuMRGMygdtzhfFYhaojo=; b=YJQgYeLt/sCA4N6NgGHWUBaFQU2kdMVGcvtFcw4iQpdFQGAI9spMlHk0Fu1yOKy5dI qaFyxmybCu2iAikIzB/yQ7ioar5H1AxN9Esy8PMWCLPQEfi6XoDwRdoi18AKONUQqvTp Je6gU+Kuzyus7ODpIEZPwjn7vJaKTsOYCNmbo27Sq8h7rn8BZSW+mucmJo+UZb3936vN +xZA3iJN7dvhI25pd7R5AEBQdK/pZzdUjK1SVuQLIfeuIlSol/xNCWDKIZrNLZWytOiw LZfjHCsQvujHlRu04jnRGXgy7oqaPQ3G27+MsKw0QJEOl4YSI3Crx4cxN7+z+t5IW6I4 /PMw== X-Gm-Message-State: ACrzQf0mz9If7vBEP42B/M8MpUKEY+vqXN55KCRwE6mP/nvX+g4I48Pj IxrfhIgjCTygMpyXzxa3WyOtFTdq6LwXHT55lopaqg== X-Received: by 2002:a05:6512:70d:b0:4a2:2bd5:4694 with SMTP id b13-20020a056512070d00b004a22bd54694mr11666957lfs.313.1665617491441; Wed, 12 Oct 2022 16:31:31 -0700 (PDT) MIME-Version: 1.0 References: <20221012002323.2015637-1-dionnaglaze@google.com> In-Reply-To: <20221012002323.2015637-1-dionnaglaze@google.com> From: Peter Gonda Date: Wed, 12 Oct 2022 17:31:19 -0600 Message-ID: Subject: Re: [PATCH] virt/coco/sev-guest: Initialize err in handle_guest_request To: Dionna Glaze Cc: x86@kernel.org, linux-kernel@vger.kernel.org, Tom Lendacky , Paolo Bonzini , Joerg Roedel , Thomas Gleixner , Dave Hansen Content-Type: text/plain; charset="UTF-8" X-Spam-Status: No, score=-17.6 required=5.0 tests=BAYES_00,DKIMWL_WL_MED, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF, ENV_AND_HDR_SPF_MATCH,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS, USER_IN_DEF_DKIM_WL,USER_IN_DEF_SPF_WL autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Tue, Oct 11, 2022 at 6:23 PM Dionna Glaze wrote: > > The err variable may not be set in the call to snp_issue_guest_request, > yet it is unconditionally written back to fw_err if fw_err is non-null. > This is undefined behavior, and currently returns uninitialized kernel > stack memory to user space. Should this be fixed in: snp_issue_guest_request()? Since other callers might make similar mistakes. And currently we have: static long snp_guest_ioctl(...) { .. input.fw_err = 0xff; .. } Which I think is an attempt to make fw_err make sense if the FW is never called, should we try to maintain that property? > > Cc: Tom Lendacky > Cc: Paolo Bonzini > Cc: Joerg Roedel > Cc: Peter Gonda > Cc: Thomas Gleixner > Cc: Dave Hansen > > Signed-off-by: Dionna Glaze > --- > drivers/virt/coco/sevguest/sevguest.c | 2 +- > 1 file changed, 1 insertion(+), 1 deletion(-) > > diff --git a/drivers/virt/coco/sevguest/sevguest.c b/drivers/virt/coco/sevguest/sevguest.c > index 112c0458cbda..7a62bfc063fc 100644 > --- a/drivers/virt/coco/sevguest/sevguest.c > +++ b/drivers/virt/coco/sevguest/sevguest.c > @@ -307,7 +307,7 @@ static int handle_guest_request(struct snp_guest_dev *snp_dev, u64 exit_code, in > u8 type, void *req_buf, size_t req_sz, void *resp_buf, > u32 resp_sz, __u64 *fw_err) > { > - unsigned long err; > + unsigned long err = 0; > u64 seqno; > int rc; > > -- > 2.38.0.rc1.362.ged0d419d3c-goog >