Re: [RFC PATCH] security/apparmor: use kfree_sensitive() in unpack_secmark()

From: Zilin Guan
Date: Thu Apr 24 2025 - 23:10:14 EST

Next message: Shawn Guo: "Re: [PATCH v2 0/8] arm64: dts: imx8: create common imx-pcie[0,1]-ep overlay file"
Previous message: Sunny Patel: "[PATCH] media: i2c: ov13858: Enable clock frequency macro"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Apr 18, 2025 at 04:52:50AM+0000, Zilin Guan wrote:
> To mitigate this, replace kfree() with kfree_sensitive() for freeing
> secmark structures and their labels, aligning with the approach used
> in free_ruleset().

To clarify, we propose using kfree_sensitive() for secmark structures and
their labels because they are already freed with kfree_sensitive() in
another error path, specifically in aa_free_profile() -> free_ruleset().

This change aligns both cleanup pathways, whether aborting early in
unpack_secmark() or cleaning up later via aa_free_profile() ->
free_ruleset(). It ensures that all secmark-related allocations are
scrubbed before deallocation, mitigating any potential security risks.

Best Regards,
Zilin Guan

Next message: Shawn Guo: "Re: [PATCH v2 0/8] arm64: dts: imx8: create common imx-pcie[0,1]-ep overlay file"
Previous message: Sunny Patel: "[PATCH] media: i2c: ov13858: Enable clock frequency macro"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]