[PATCH] binder: fix proc->files use-after-free
Todd Kjos
tkjos at android.com
Thu Nov 16 17:48:13 UTC 2017
> @@ -875,22 +871,34 @@ static void binder_free_thread(struct binder_thread *thread);
> static void binder_free_proc(struct binder_proc *proc);
> static void binder_inc_node_tmpref_ilocked(struct binder_node *node);
>
> +struct files_struct *binder_get_files_struct(struct binder_proc *proc)
This should be declared static:
static struct files_struct *binder_get_files_struct(struct binder_proc *proc)
Greg- should I send a "v2" for this?
> +{
> + return get_files_struct(proc->tsk);
> +}
> +
More information about the devel
mailing list