The patch titled
selinux: fix bug in security_compute_sid
has been added to the -mm tree. Its filename is
selinux-fix-bug-in-security_compute_sid.patch
See http://www.zip.com.au/~akpm/linux/patches/stuff/added-to-mm.txt to find
out what to do about this
------------------------------------------------------
Subject: selinux: fix bug in security_compute_sid
From: Venkat Yekkirala <vyekkirala@xxxxxxxxxxxxx>
Initializes newcontext sooner to allow for its destruction in all cases.
Signed-off-by: Venkat Yekkirala <vyekkirala@xxxxxxxxxxxxx>
Signed-off-by: Stephen Smalley <sds@xxxxxxxxxxxxx>
Acked-by: James Morris <jmorris@xxxxxxxxx>
Signed-off-by: Andrew Morton <akpm@xxxxxxxx>
---
security/selinux/ss/services.c | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff -puN security/selinux/ss/services.c~selinux-fix-bug-in-security_compute_sid security/selinux/ss/services.c
--- a/security/selinux/ss/services.c~selinux-fix-bug-in-security_compute_sid
+++ a/security/selinux/ss/services.c
@@ -833,6 +833,8 @@ static int security_compute_sid(u32 ssid
goto out;
}
+ context_init(&newcontext);
+
POLICY_RDLOCK;
scontext = sidtab_search(&sidtab, ssid);
@@ -850,8 +852,6 @@ static int security_compute_sid(u32 ssid
goto out_unlock;
}
- context_init(&newcontext);
-
/* Set the user identity. */
switch (specified) {
case AVTAB_TRANSITION:
_
Patches currently in -mm which might be from vyekkirala@xxxxxxxxxxxxx are
selinux-fix-bug-in-security_compute_sid.patch
-
To unsubscribe from this list: send the line "unsubscribe mm-commits" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
