selinux: ensure the context is NUL terminated in security_context_to_sid_core() - linux-dev - Linux kernel development work

diff options

author	Paul Moore <paul@paul-moore.com>	2017-11-28 18:51:12 -0500
committer	Paul Moore <paul@paul-moore.com>	2017-11-28 18:51:12 -0500
commit	ef28df55ac27e1e5cd122e19fa311d886d47a756 (patch)
tree	61410c34607ca1bdf625b74467f1811f947f5690 /crypto/algapi.c
parent	security: replace FSF address with web source in license notices (diff)
download	linux-dev-ef28df55ac27e1e5cd122e19fa311d886d47a756.tar.xz linux-dev-ef28df55ac27e1e5cd122e19fa311d886d47a756.zip

selinux: ensure the context is NUL terminated in security_context_to_sid_core()

The syzbot/syzkaller automated tests found a problem in security_context_to_sid_core() during early boot (before we load the SELinux policy) where we could potentially feed context strings without NUL terminators into the strcmp() function. We already guard against this during normal operation (after the SELinux policy has been loaded) by making a copy of the context strings and explicitly adding a NUL terminator to the end. The patch extends this protection to the early boot case (no loaded policy) by moving the context copy earlier in security_context_to_sid_core(). Reported-by: syzbot <syzkaller@googlegroups.com> Signed-off-by: Paul Moore <paul@paul-moore.com> Reviewed-By: William Roberts <william.c.roberts@intel.com>

Diffstat (limited to 'crypto/algapi.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: