Commit d9aa56ed authored by Kai Huang's avatar Kai Huang Committed by Sean Christopherson
Browse files

KVM: VMX: Do not account for temporary memory allocation in ECREATE emulation 

In handle_encls_ecreate(), a page is allocated to store a copy of SECS
structure used by the ENCLS[ECREATE] leaf from the guest.  This page is
only used temporarily and is freed after use in handle_encls_ecreate().

Don't account for the memory allocation of this page per [1].

Link: https://lore.kernel.org/kvm/b999afeb588eb75d990891855bc6d58861968f23.camel@intel.com/T/#mb81987afc3ab308bbb5861681aa9a20f2aece7fd

 [1]
Signed-off-by: default avatarKai Huang <kai.huang@intel.com>
Link: https://lore.kernel.org/r/20240715101224.90958-1-kai.huang@intel.com


Signed-off-by: default avatarSean Christopherson <seanjc@google.com>
parent caf22c6d

arch/x86/kvm/vmx/sgx.c

+1 −1
Original line number Diff line number Diff line
@@ -274,7 +274,7 @@ static int handle_encls_ecreate(struct kvm_vcpu *vcpu) 
	 * simultaneously set SGX_ATTR_PROVISIONKEY to bypass the check to

	 * enforce restriction of access to the PROVISIONKEY.

	 */

	contents = (struct sgx_secs *)__get_free_page(GFP_KERNEL_ACCOUNT);

	contents = (struct sgx_secs *)__get_free_page(GFP_KERNEL);

	if (!contents)

		return -ENOMEM;