[PATCH] Smack: prevent revoke-subject from failing when unseen labelis written to it

From: Rafal Krypa
Date: Tue Nov 27 2012 - 10:28:27 EST

Next message: Rafal Krypa: "[PATCH] Smack: add missing support for transmute bit insmack_str_from_perm()"
Previous message: Paul E. McKenney: "Re: [RFC PATCH] Fix abnormal rcu dynticks_nesting values related toasync page fault"
Next in thread: Casey Schaufler: "Re: [PATCH] Smack: prevent revoke-subject from failing when unseenlabel is written to it"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Special file /smack/revoke-subject will silently accept labels that are not
present on the subject label list. Nothing has to be done for such labels,
as there are no rules for them to revoke.

Targeted for git://git.gitorious.org/smack-next/kernel.git

Signed-off-by: Rafal Krypa <r.krypa@xxxxxxxxxxx>
---
security/smack/smackfs.c | 4 +---
1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/security/smack/smackfs.c b/security/smack/smackfs.c
index 76a5dca..337e32c 100644
--- a/security/smack/smackfs.c
+++ b/security/smack/smackfs.c
@@ -2035,10 +2035,8 @@ static ssize_t smk_write_revoke_subj(struct file *file, const char __user *buf,
}

skp = smk_find_entry(cp);
- if (skp == NULL) {
- rc = -EINVAL;
+ if (skp == NULL)
goto free_out;
- }

rule_list = &skp->smk_rules;
rule_lock = &skp->smk_rules_lock;
--
1.7.10.4

--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Rafal Krypa: "[PATCH] Smack: add missing support for transmute bit insmack_str_from_perm()"
Previous message: Paul E. McKenney: "Re: [RFC PATCH] Fix abnormal rcu dynticks_nesting values related toasync page fault"
Next in thread: Casey Schaufler: "Re: [PATCH] Smack: prevent revoke-subject from failing when unseenlabel is written to it"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]