Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security

Pull security subsystem updates from James Morris: "Nothing major for this kernel, just maintenance updates" * 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security: (21 commits) apparmor: add the ability to report a sha1 hash of loaded policy apparmor: export set of capabilities supported by the apparmor module apparmor: add the profile introspection file to interface apparmor: add an optional profile attachment string for profiles apparmor: add interface files for profiles and namespaces apparmor: allow setting any profile into the unconfined state apparmor: make free_profile available outside of policy.c apparmor: rework namespace free path apparmor: update how unconfined is handled apparmor: change how profile replacement update is done apparmor: convert profile lists to RCU based locking apparmor: provide base for multiple profiles to be replaced at once apparmor: add a features/policy dir to interface apparmor: enable users to query whether apparmor is enabled apparmor: remove minimum size check for vmalloc() Smack: parse multiple rules per write to load2, up to PAGE_SIZE-1 bytes Smack: network label match fix security: smack: add a hash table to quicken smk_find_entry() security: smack: fix memleak in smk_write_rules_list() xattr: Constify ->name member of "struct xattr". ...
author: Linus Torvalds <torvalds@linux-foundation.org> 2013-09-07 17:34:07 -0400
committer: Linus Torvalds <torvalds@linux-foundation.org> 2013-09-07 17:34:07 -0400
commit: 11c7b03d42a847db90862d0f9d8be6ce9b2f0553 (patch)
tree: 9c1d9e95c8ae09b4ee44821a9e570247d5a85a72 /security/selinux
parent: 6be48f2940af9ea8d93c23a0dd8e322672c92efd (diff)
parent: 73203361468894c3c017bfbdd9ddcbb468039604 (diff)
1 files changed, 6 insertions, 11 deletions
diff --git a/security/selinux/hooks.c b/security/selinux/hooks.c
index c956390a9136..a5091ec06aa6 100644
--- a/security/selinux/hooks.c
+++ b/security/selinux/hooks.c
@@ -2587,7 +2587,8 @@ static int selinux_dentry_init_security(struct dentry *dentry, int mode,
 }
 static int selinux_inode_init_security(struct inode *inode, struct inode *dir,
-                                       const struct qstr *qstr, char **name,
+                                       const struct qstr *qstr,
+                                       const char **name,
                                       void **value, size_t *len)
 {
        const struct task_security_struct *tsec = current_security();
@@ -2595,7 +2596,7 @@ static int selinux_inode_init_security(struct inode *inode, struct inode *dir,
        struct superblock_security_struct *sbsec;
        u32 sid, newsid, clen;
        int rc;
-        char *namep = NULL, *context;
+        char *context;
        dsec = dir->i_security;
        sbsec = dir->i_sb->s_security;
@@ -2631,19 +2632,13 @@ static int selinux_inode_init_security(struct inode *inode, struct inode *dir,
        if (!ss_initialized || !(sbsec->flags & SE_SBLABELSUPP))
                return -EOPNOTSUPP;
-        if (name) {
+        if (name)
-                namep = kstrdup(XATTR_SELINUX_SUFFIX, GFP_NOFS);
+                *name = XATTR_SELINUX_SUFFIX;
-                if (!namep)
-                        return -ENOMEM;
-                *name = namep;
-        }
        if (value && len) {
                rc = security_sid_to_context_force(newsid, &context, &clen);
-                if (rc) {
+                if (rc)
-                        kfree(namep);
                        return rc;
-                }
                *value = context;
                *len = clen;
        }
author	Linus Torvalds <torvalds@linux-foundation.org>	2013-09-07 17:34:07 -0400
committer	Linus Torvalds <torvalds@linux-foundation.org>	2013-09-07 17:34:07 -0400
commit	11c7b03d42a847db90862d0f9d8be6ce9b2f0553 (patch)
tree	9c1d9e95c8ae09b4ee44821a9e570247d5a85a72 /security/selinux
parent	6be48f2940af9ea8d93c23a0dd8e322672c92efd (diff)
parent	73203361468894c3c017bfbdd9ddcbb468039604 (diff)