selinux: fix lsm_get_self_attr()

l0kod · pcmoore · commit 86dc9693145b · 2024-02-23T17:16:33.000-05:00
selinux_getselfattr() doesn't properly initialize the string pointer it passes to selinux_lsm_getattr() which can cause a problem when an attribute hasn't been explicitly set; selinux_lsm_getattr() returns 0/success, but does not set or initialize the string label/attribute. Failure to properly initialize the string causes problems later in selinux_getselfattr() when the function attempts to kfree() the string. Cc: Casey Schaufler <casey@schaufler-ca.com> Fixes: 762c934 ("SELinux: Add selfattr hooks") Suggested-by: Paul Moore <paul@paul-moore.com> [PM: description changes as discussed in the thread] Signed-off-by: Mickaël Salaün <mic@digikod.net> Signed-off-by: Paul Moore <paul@paul-moore.com>
diff --git a/security/selinux/hooks.c b/security/selinux/hooks.c
@@ -6559,7 +6559,7 @@ static int selinux_getselfattr(unsigned int attr, struct lsm_ctx __user *ctx,
 			       size_t *size, u32 flags)
 {
 	int rc;
-	char *val;
+	char *val = NULL;
 	int val_len;
 
 	val_len = selinux_lsm_getattr(attr, current, &val);

Original file line number	Diff line number	Diff line change
`@@ -6559,7 +6559,7 @@ static int selinux_getselfattr(unsigned int attr, struct lsm_ctx __user *ctx,`
`6559`	`6559`	`size_t *size, u32 flags)`
`6560`	`6560`	`{`
`6561`	`6561`	`int rc;`
`6562`		`- char *val;`
	`6562`	`+ char *val = NULL;`
`6563`	`6563`	`int val_len;`
`6564`	`6564`
`6565`	`6565`	`val_len = selinux_lsm_getattr(attr, current, &val);`