SELinux: add more validity checks on policy load Add more validity checks at policy load time to reject malformed policies and prevent subsequent out-of-range indexing when in permissive mode. Resolves the NULL pointer dereference reported in https://bugzilla.redhat.com/show_bug.cgi?id=357541. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: James Morris <jmorris@namei.org>

commit: 45e5421eb5bbcd9efa037d682dd357284e3ef982 [log] [tgz]
author: Stephen Smalley <sds@tycho.nsa.gov> Wed Nov 07 10:08:00 2007 -0500
committer: James Morris <jmorris@namei.org> Thu Nov 08 08:56:23 2007 +1100
tree: ceb24143024fe335d08ac30fb4da9ca25fbeb6e6
parent: 6d2b685564ba417f4c6d80c3661f0dfee13fff85 [diff] [blame]
diff --git a/security/selinux/ss/avtab.h b/security/selinux/ss/avtab.h
index d8edf8c..8da6a84 100644
--- a/security/selinux/ss/avtab.h
+++ b/security/selinux/ss/avtab.h

@@ -64,12 +64,13 @@
 void avtab_destroy(struct avtab *h);
 void avtab_hash_eval(struct avtab *h, char *tag);
 
-int avtab_read_item(void *fp, uint32_t vers, struct avtab *a,
+struct policydb;
+int avtab_read_item(struct avtab *a, void *fp, struct policydb *pol,
 		    int (*insert)(struct avtab *a, struct avtab_key *k,
 				  struct avtab_datum *d, void *p),
 		    void *p);
 
-int avtab_read(struct avtab *a, void *fp, u32 vers);
+int avtab_read(struct avtab *a, void *fp, struct policydb *pol);
 
 struct avtab_node *avtab_insert_nonunique(struct avtab *h, struct avtab_key *key,
 					  struct avtab_datum *datum);
commit	45e5421eb5bbcd9efa037d682dd357284e3ef982	[log] [tgz]
author	Stephen Smalley <sds@tycho.nsa.gov>	Wed Nov 07 10:08:00 2007 -0500
committer	James Morris <jmorris@namei.org>	Thu Nov 08 08:56:23 2007 +1100
tree	ceb24143024fe335d08ac30fb4da9ca25fbeb6e6
parent	6d2b685564ba417f4c6d80c3661f0dfee13fff85 [diff] [blame]