Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 1e6b63e847946cbc9caf7e0389b3a09a6b403124^! / .
commit1e6b63e847946cbc9caf7e0389b3a09a6b403124[log] [tgz]
authorIndira Biruduraju <ibirudur@codeaurora.org>Tue Aug 11 15:24:16 2020 +0530
committerLuca Weiss <luca.weiss@fairphone.com>Thu Jul 15 13:18:12 2021 +0200
tree3f2bc0cb9fb8b0d5b2bc747999c473af23c0cd89
parent08a82c8020a153e5d61242d3079cabddef09ab77 [diff]
msm: kgsl: Remove VM_MAYWRITE flag to restrict mprotect

When VM_MAYWRITE flag is used during mmap(), mprotect()
can be used later to change the protection of memstore
to allow write. Make sure this does not happen by
removing VM_MAYWRITE from the vm_flags of vma.

Change-Id: I6f69f05858ea40611d512cfa796caabeaa88cdb5
Signed-off-by: Indira Biruduraju <ibirudur@codeaurora.org>

diff --git a/drivers/gpu/msm/kgsl.c b/drivers/gpu/msm/kgsl.c
index b47f095..2ddf48a 100644
--- a/drivers/gpu/msm/kgsl.c
+++ b/drivers/gpu/msm/kgsl.c

@@ -4139,6 +4139,8 @@
 	if (vma->vm_flags & VM_WRITE)
 		return -EPERM;
 
+	vma->vm_flags &= ~VM_MAYWRITE;
+
 	if (memdesc->size  !=  vma_size) {
 		KGSL_MEM_ERR(device, "memstore bad size: %d should be %llu\n",
 			     vma_size, memdesc->size);