selinux: fix missing dput() before selinuxfs unmount

stephensmalley · torvalds · commit fd40ffc72e2f · 2018-04-09T11:52:56.000-07:00
Commit 0619f0f ("selinux: wrap selinuxfs state") triggers a BUG when SELinux is runtime-disabled (i.e. systemd or equivalent disables SELinux before initial policy load via /sys/fs/selinux/disable based on /etc/selinux/config SELINUX=disabled). This does not manifest if SELinux is disabled via kernel command line argument or if SELinux is enabled (permissive or enforcing). Before: SELinux: Disabled at runtime. BUG: Dentry 000000006d77e5c7{i=17,n=null} still in use (1) [unmount of selinuxfs selinuxfs] After: SELinux: Disabled at runtime. Fixes: 0619f0f ("selinux: wrap selinuxfs state") Reported-by: Tetsuo Handa <penguin-kernel@i-love.sakura.ne.jp> Reported-by: Dmitry Vyukov <dvyukov@google.com> Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>
diff --git a/security/selinux/selinuxfs.c b/security/selinux/selinuxfs.c
@@ -2061,6 +2061,7 @@ __initcall(init_sel_fs);
 void exit_sel_fs(void)
 {
 	sysfs_remove_mount_point(fs_kobj, "selinux");
+	dput(selinux_null.dentry);
 	kern_unmount(selinuxfs_mount);
 	unregister_filesystem(&sel_fs_type);
 }

Original file line number	Diff line number	Diff line change
`@@ -2061,6 +2061,7 @@ __initcall(init_sel_fs);`
`2061`	`2061`	`void exit_sel_fs(void)`
`2062`	`2062`	`{`
`2063`	`2063`	`sysfs_remove_mount_point(fs_kobj, "selinux");`
	`2064`	`+ dput(selinux_null.dentry);`
`2064`	`2065`	`kern_unmount(selinuxfs_mount);`
`2065`	`2066`	`unregister_filesystem(&sel_fs_type);`
`2066`	`2067`	`}`