diff options
| author |   Jianglei Nie <niejianglei2021@163.com> | 2022-07-12 09:10:37 +0800 |
|---|---|---|
| committer |   Mimi Zohar <zohar@linux.ibm.com> | 2022-07-13 10:13:58 -0400 |
| commit | 067d2521874135267e681c19d42761c601d503d6 (patch) | |
| tree | 29219651d1768c1cde4edd739967201d38639b3e /security | |
| parent | ima: force signature verification when CONFIG_KEXEC_SIG is configured (diff) | |
| download | linux-dev-067d2521874135267e681c19d42761c601d503d6.tar.xz linux-dev-067d2521874135267e681c19d42761c601d503d6.zip | |
ima: Fix potential memory leak in ima_init_crypto()
On failure to allocate the SHA1 tfm, IMA fails to initialize and exits
without freeing the ima_algo_array. Add the missing kfree() for
ima_algo_array to avoid the potential memory leak.
Signed-off-by: Jianglei Nie <niejianglei2021@163.com>
Fixes: 6d94809af6b0 ("ima: Allocate and initialize tfm for each PCR bank")
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
Diffstat (limited to 'security')
| -rw-r--r-- | security/integrity/ima/ima_crypto.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/security/integrity/ima/ima_crypto.c b/security/integrity/ima/ima_crypto.c index a7206cc1d7d1..64499056648a 100644 --- a/security/integrity/ima/ima_crypto.c +++ b/security/integrity/ima/ima_crypto.c @@ -205,6 +205,7 @@ out_array: crypto_free_shash(ima_algo_array[i].tfm); } + kfree(ima_algo_array); out: crypto_free_shash(ima_shash_tfm); return rc; |