Received: by 2002:a05:6358:16cc:b0:ea:6187:17c9 with SMTP id r12csp8108805rwl;
        Tue, 10 Jan 2023 09:08:18 -0800 (PST)
X-Google-Smtp-Source: AMrXdXve+m2c3Pjjh5pNwYfM+QLiOvHXaZnFOC59gqANdxtPRGL8m3469Sx2xWTzM6KJ3K2/G6H+
X-Received: by 2002:a17:907:d407:b0:7ad:f962:dba1 with SMTP id vi7-20020a170907d40700b007adf962dba1mr63487973ejc.53.1673370498068;
        Tue, 10 Jan 2023 09:08:18 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1673370498; cv=none;
        d=google.com; s=arc-20160816;
        b=ia07+/qTpo6lIXmPpuOZlNvkVi2HoupLHW41menwtZIm4AteJKc+pDpShh524AYdhU
         ayQOmSBBDB9dR4xD53pOUMqBYYBjhmRlrX+u4tHrGRNz32UzH219xf1Z8PXl/83Au+c4
         2PD36SUqABjPLQVGSOw1iZiWrQayoYF58I3d2l2RghzcrpOW4wJX0yUjxwXey2geltJz
         lRecte1hRfzmqOorZqmozo8APOjRd+mMDx8kzvHLKiolF7iuvwWjfwunuCFyav72U0q2
         kLhowNN8wxrBkR6Ch9/y/yAkAZsTAQ/USk8ThmGJtN4RyB+2P+vMID3s8r9XLuf3a3PL
         ufKw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to
         :references:mime-version:dkim-signature;
        bh=JZWhn3safCoj73gyJNv7llgnh8yjRd4wZSAzSjVs0Mc=;
        b=fht4hs3kldY9uXtLKJGZPB/9ftue4LSd/Vz0B7qYGb9Kw4f1F6JO5/1Enfz/ICXzWl
         /JqnfMWwJcn/4vh4IDWjAEfOG1up1AlhZWA+McbTraHL/HXmQ5JxszM8UFdJ1C73oxGv
         ErHkXPQgBcuXUymcMwPElRQGp+t9ihmiTtx3WawFHYBuPIueRQ2EnKc/HDibdAKpMYtT
         0jK+/Exryp5VKM8EOWUn4hoiF44hMf/BjiFdlqWNNT43Z9cIjmzQOhEJSCpRJIQdWMZ6
         IgdntVlAvUDL+VKapqObFqOYsqpwH0ZFZGfN64mBsLf4hdW1gkNEsdduCO8T52j2IPXb
         fCxw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@google.com header.s=20210112 header.b=G4fKiY1G;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id sg19-20020a170907a41300b0084f1fb57f50si3880410ejc.345.2023.01.10.09.08.05;
        Tue, 10 Jan 2023 09:08:18 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@google.com header.s=20210112 header.b=G4fKiY1G;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S234759AbjAJQpE (ORCPT <rfc822;aaronngray.lists@gmail.com>
        + 53 others); Tue, 10 Jan 2023 11:45:04 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:57314 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S232186AbjAJQop (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 10 Jan 2023 11:44:45 -0500
Received: from mail-lf1-x132.google.com (mail-lf1-x132.google.com [IPv6:2a00:1450:4864:20::132])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id E508A6B5EF
        for <linux-kernel@vger.kernel.org>; Tue, 10 Jan 2023 08:44:44 -0800 (PST)
Received: by mail-lf1-x132.google.com with SMTP id bt23so19346628lfb.5
        for <linux-kernel@vger.kernel.org>; Tue, 10 Jan 2023 08:44:44 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=google.com; s=20210112;
        h=cc:to:subject:message-id:date:from:in-reply-to:references
         :mime-version:from:to:cc:subject:date:message-id:reply-to;
        bh=JZWhn3safCoj73gyJNv7llgnh8yjRd4wZSAzSjVs0Mc=;
        b=G4fKiY1GSJz4BMFlJGMIQ8IJ+V6RoKrvGgo4E7eINRfxVVyCEPPwtL4t+NFyZ3NVpP
         pXD/jlY42w6Qm6ugJmoy2rRP7WCDl41E+tSVXNpp6Y0gSzLWKlEJV7DQ3pyUACYT53Fh
         wfz4FW6Wxto2vZjVn3uPnQExGp3WC3v2LeiZ2eA2ODwZ6jRlAqxA9QMVNMuPxDy5Jmba
         zKtfFS64roWvRzntgLLsAP1Iwcx02Zn09Q3BnimXqPJUnGfTcGaBCf3OwGE2kg84UX/b
         dM6n7EO537qlLuMWCF1aAVwAXf8yLaGoB2uEwG8o3IRcnoyphfmT7JlH+X849IHhWt4s
         vx6Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=cc:to:subject:message-id:date:from:in-reply-to:references
         :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=JZWhn3safCoj73gyJNv7llgnh8yjRd4wZSAzSjVs0Mc=;
        b=anzIDBBEVqPT8/XIBNnmBZmxjQ1Te5sjleREMQGDQyP1rlc44syXXwM4DGPzgucKi4
         Vk7Rsak1fZwJrGAd4/BFnaKF+ETOl7Rrf9dG02+Ckn2tdu2hplNA/wxCf5aYtnSZo/NX
         zpp7cXHtIhDms0zOw84ZL+oRdyjwRXuuQ+qesle6lU8TPQx3FiiN+UM+XAyS/PKjAptr
         VCudfc9+gqzPtjmwlT/EvYG2qZcEgNDigqLllsiK85QiqceGv0DJdcnQDNPpEqUX/x4b
         zPLeHZozF8xtQ6lBCdaHfP8AVBSYT4N2C9fvxdIJ6KatwSoMiRPf5tCcNtYfmo8swRCx
         0lRg==
X-Gm-Message-State: AFqh2kqT96Qlm2RfFD7qXRAyCoEdbNjVH/Pr+uhN/ixxuoGyD0b/34Qs
        2c0WGrliLWHISVxjEGI2ADDj82xrk+6hQ/H6+b3Ceg==
X-Received: by 2002:ac2:5e7c:0:b0:4c3:d803:4427 with SMTP id
 a28-20020ac25e7c000000b004c3d8034427mr2897698lfr.170.1673369083178; Tue, 10
 Jan 2023 08:44:43 -0800 (PST)
MIME-Version: 1.0
References: <20230109160808.3618132-1-pgonda@google.com> <74745684-785e-71b2-288e-91fbcf1b555b@amd.com>
In-Reply-To: <74745684-785e-71b2-288e-91fbcf1b555b@amd.com>
From:   Peter Gonda <pgonda@google.com>
Date:   Tue, 10 Jan 2023 09:44:31 -0700
Message-ID: <CAMkAt6q_E-+VV=KOs9LbDzawirWR7M4xL2pCF9fR2kMuBuFM-A@mail.gmail.com>
Subject: Re: [PATCH] KVM: sev: Fix int overflow in send|recieve_update_data ioctls
To:     Tom Lendacky <thomas.lendacky@amd.com>
Cc:     kvm@vger.kernel.org, Andy Nguyen <theflow@google.com>,
        David Rientjes <rientjes@google.com>,
        Paolo Bonzini <pbonzini@redhat.com>,
        Sean Christopherson <seanjc@google.com>,
        stable@vger.kernel.org, linux-kernel@vger.kernel.org
Content-Type: text/plain; charset="UTF-8"
X-Spam-Status: No, score=-17.6 required=5.0 tests=BAYES_00,DKIMWL_WL_MED,
        DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,
        ENV_AND_HDR_SPF_MATCH,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS,
        USER_IN_DEF_DKIM_WL,USER_IN_DEF_SPF_WL autolearn=ham
        autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

> >
> > diff --git a/arch/x86/kvm/svm/sev.c b/arch/x86/kvm/svm/sev.c
> > index 273cba809328..9451de72f917 100644
> > --- a/arch/x86/kvm/svm/sev.c
> > +++ b/arch/x86/kvm/svm/sev.c
> > @@ -1294,7 +1294,7 @@ static int sev_send_update_data(struct kvm *kvm, struct kvm_sev_cmd *argp)
> >
> >       /* Check if we are crossing the page boundary */
> >       offset = params.guest_uaddr & (PAGE_SIZE - 1);
> > -     if ((params.guest_len + offset > PAGE_SIZE))
> > +     if (params.guest_len > PAGE_SIZE || (params.guest_len + offset > PAGE_SIZE))
>
> I see the original if statement had double parentheses, which looks
> strange. Should this if (and the one below) be:
>
>         if (params.guest_len > PAGE_SIZE || (params.guest_len + offset) > PAGE_SIZE)

Isn't the order of operations here: '+' and then '>'. So is the patch
correct and matches the old conditional? I am fine adding additional
() for clarity though.