[PATCH] Fix bug in SELinux convert_context

From: Stephen Smalley <sds@epoch.ncsc.mil> This patch fixes a bug introduced by earlier code cleanups in the SELinux convert_context code that manifests upon a policy reload that removes previously valid security attributes. Thanks to Magosanyi Arpad for reporting the bug.

[PATCH] Fix bug in SELinux convert_context
From: Stephen Smalley <sds@epoch.ncsc.mil> This patch fixes a bug introduced by earlier code cleanups in the SELinux convert_context code that manifests upon a policy reload that removes previously valid security attributes. Thanks to Magosanyi Arpad for reporting the bug.
4dfbe983 · Andrew Morton · Linus Torvalds · ff2de3b3 · 4dfbe983
Commit 4dfbe983 authored Oct 01, 2003 by Andrew Morton Committed by Linus Torvalds Oct 01, 2003
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 1 deletion

security/selinux/ss/services.c security/selinux/ss/services.c +3 -1

No files found.
--- a/security/selinux/ss/services.c
+++ b/security/selinux/ss/services.c
@@ -896,7 +896,7 @@ static int convert_context(u32 key,
 	struct user_datum *usrdatum;
 	char *s;
 	u32 len;
-	int rc = -EINVAL;
+	int rc;

 	args = p;

@@ -904,6 +904,8 @@ static int convert_context(u32 key,
 	if (rc)
 		goto out;

+	rc = -EINVAL;
+
 	/* Convert the user. */
 	usrdatum = hashtab_search(args->newp->p_users.table,
 	                          args->oldp->p_user_val_to_name[c->user - 1]);