mm/usercopy: Detect vmalloc overruns (0aef499f) · Commits · Mirrors / git.kernel.org / pub_scm_linux_kernel_git_stable_linux · GitLab

Commit 0aef499f authored Jan 10, 2022 by

Matthew Wilcox (Oracle) Committed by Kees Cook Apr 13, 2022

mm/usercopy: Detect vmalloc overruns

If you have a vmalloc() allocation, or an address from calling vmap(),
you cannot overrun the vm_area which describes it, regardless of the
size of the underlying allocation. This probably doesn't do much for
security because vmalloc comes with guard pages these days, but it
prevents usercopy aborts when copying to a vmap() of smaller pages.

Signed-off-by: Matthew Wilcox (Oracle) <willy@infradead.org>
Acked-by: Kees Cook <keescook@chromium.org>
Signed-off-by: Kees Cook <keescook@chromium.org>
Link: https://lore.kernel.org/r/20220110231530.665970-3-willy@infradead.org

parent 4e140f59

Hide whitespace changes

Inline Side-by-side

mirror @mirror
mentioned in commit aaf61a31
· Jun 15, 2022

mentioned in commit aaf61a31

mentioned in commit aaf61a312af63e1cfe2264c4c5b8cd4ea3626025

Toggle commit list
mirror @mirror
mentioned in commit 0cf7aaff
· Jun 15, 2022

mentioned in commit 0cf7aaff

mentioned in commit 0cf7aaff290cdc4d7cee683d4a18138b0dacac48

Toggle commit list
mirror @mirror
mentioned in commit e412b3d1
· Jun 15, 2022

mentioned in commit e412b3d1

mentioned in commit e412b3d178ea4bf746f6b8ee086761613704c6be

Toggle commit list
mirror @mirror
mentioned in commit 59298997
· Sep 28, 2022

mentioned in commit 59298997

mentioned in commit 59298997df89e19aad426d4ae0a7e5037074da5a

Toggle commit list
mirror @mirror
mentioned in commit decf4f5c
· Oct 06, 2022

mentioned in commit decf4f5c

mentioned in commit decf4f5c01a85a631b678212653bbe8eb3011e7b

Toggle commit list

Please register or to comment