Commit 1e0db6a0 authored Dec 10, 2024 by Carlos Llamas Committed by Treehugger Robot Sep 08, 2025

UPSTREAM: binder: replace alloc->vma with alloc->mapped



It is unsafe to use alloc->vma outside of the mmap_sem. Instead, add a
new boolean alloc->mapped to save the vma state (mapped or unmmaped) and
use this as a replacement for alloc->vma to validate several paths.

Using the alloc->vma caused several performance and security issues in
the past. Now that it has been replaced with either vm_lookup() or the
alloc->mapped state, we can finally remove it.

Cc: Minchan Kim <minchan@kernel.org>
Cc: Liam R. Howlett <Liam.Howlett@oracle.com>
Cc: Matthew Wilcox <willy@infradead.org>
Cc: Suren Baghdasaryan <surenb@google.com>
Reviewed-by: Suren Baghdasaryan <surenb@google.com>
Signed-off-by: Carlos Llamas <cmllamas@google.com>
Link: https://lore.kernel.org/r/20241210143114.661252-6-cmllamas@google.com


Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Bug: 410746221
(cherry picked from commit 072010ab)
Change-Id: I25e555433793b5e3e3d8a25b732290ee8a3ba154
Signed-off-by: Carlos Llamas <cmllamas@google.com>

parent 1414bd7d

Show whitespace changes

Inline Side-by-side

CodeLinaro @codelinaro
mentioned in commit 5ca93344
· Nov 05, 2025

mentioned in commit 5ca93344

mentioned in commit 5ca93344e6ab5181d92820a13902e100354ad45a

Toggle commit list
CodeLinaro @codelinaro
mentioned in commit 2257473d
· Nov 05, 2025

mentioned in commit 2257473d

mentioned in commit 2257473d4a0611db735a2cf6ed11eaffd8b7933e

Toggle commit list

Please to comment