[RFC,20/20] selinux: selinuxfs: avoid implicit conversions

Message ID	20230706132337.15924-20-cgzones@googlemail.com (mailing list archive)
State	Changes Requested
Delegated to:	Paul Moore
Headers	show Return-Path: <selinux-owner@vger.kernel.org> From: =?utf-8?q?Christian_G=C3=B6ttsche?= <cgzones@googlemail.com> To: selinux@vger.kernel.org Cc: Paul Moore <paul@paul-moore.com>, Stephen Smalley <stephen.smalley.work@gmail.com>, Eric Paris <eparis@parisplace.org>, linux-kernel@vger.kernel.org Subject: [RFC PATCH 20/20] selinux: selinuxfs: avoid implicit conversions Date: Thu, 6 Jul 2023 15:23:35 +0200 Message-Id: <20230706132337.15924-20-cgzones@googlemail.com> In-Reply-To: <20230706132337.15924-1-cgzones@googlemail.com> References: <20230706132337.15924-1-cgzones@googlemail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Precedence: bulk
Series	[RFC,01/20] selinux: check for multiplication overflow in put_entry() \| expand [RFC,01/20] selinux: check for multiplication overflow in put_entry() [RFC,02/20] selinux: avtab: avoid implicit conversions [RFC,03/20] selinux: avoid avtab overflows [RFC,04/20] selinux: ebitmap: use u32 as bit type [RFC,05/20] selinux: hashtab: use identical iterator type [RFC,06/20] selinux: mls: avoid implicit conversions [RFC,07/20] selinux: services: update type for umber of class permissions [RFC,08/20] selinux: services: avoid implicit conversions [RFC,09/20] selinux: status: consistently use u32 as sequence number type [RFC,10/20] selinux: netif: avoid implicit conversions [RFC,11/20] selinux: avc: avoid implicit conversions [RFC,12/20] selinux: hooks: avoid implicit conversions [RFC,13/20] selinux: selinuxfs: avoid implicit conversions [RFC,14/20] selinux: use consistent type for AV rule specifier [RFC,15/20] selinux: policydb: implicit conversions [RFC,16/20] selinux: symtab: implicit conversion [RFC,17/20] selinux: services: implicit conversions [RFC,18/20] selinux: nlmsgtab: implicit conversion [RFC,19/20] selinux: status: avoid implicit conversions regarding enforcing status [RFC,20/20] selinux: selinuxfs: avoid implicit conversions

Message ID

20230706132337.15924-20-cgzones@googlemail.com (mailing list archive)

State

Changes Requested

Delegated to:

Paul Moore

Headers

From: =?utf-8?q?Christian_G=C3=B6ttsche?= <cgzones@googlemail.com>
To: selinux@vger.kernel.org
Cc: Paul Moore <paul@paul-moore.com>,
        Stephen Smalley <stephen.smalley.work@gmail.com>,
        Eric Paris <eparis@parisplace.org>,
        linux-kernel@vger.kernel.org
Subject: [RFC PATCH 20/20] selinux: selinuxfs: avoid implicit conversions
Date: Thu,  6 Jul 2023 15:23:35 +0200
Message-Id: <20230706132337.15924-20-cgzones@googlemail.com>
In-Reply-To: <20230706132337.15924-1-cgzones@googlemail.com>
References: <20230706132337.15924-1-cgzones@googlemail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Precedence: bulk

Series

[RFC,01/20] selinux: check for multiplication overflow in put_entry() | expand

Use unsigned loop counters where the upper bound is of unsigned type. Signed-off-by: Christian Göttsche <cgzones@googlemail.com> --- security/selinux/selinuxfs.c | 14 +++++--------- 1 file changed, 5 insertions(+), 9 deletions(-)

Comments

Paul Moore July 18, 2023, 10:01 p.m. UTC | #1

On Jul  6, 2023 =?UTF-8?q?Christian=20G=C3=B6ttsche?= <cgzones@googlemail.com> wrote:
> 
> Use unsigned loop counters where the upper bound is of unsigned
> type.
> 
> Signed-off-by: Christian Göttsche <cgzones@googlemail.com>
> ---
>  security/selinux/selinuxfs.c | 14 +++++---------
>  1 file changed, 5 insertions(+), 9 deletions(-)

More loop iterator declarations inside the loop, see my previous
comments.

--
paul-moore.com

diff --git a/security/selinux/selinuxfs.c b/security/selinux/selinuxfs.c
index 88d856f5c6bc..a2dc415779ae 100644
--- a/security/selinux/selinuxfs.c
+++ b/security/selinux/selinuxfs.c
@@ -1074,7 +1074,7 @@  static ssize_t sel_write_user(struct file *file, char *buf, size_t size)
 	u32 sid, *sids = NULL;
 	ssize_t length;
 	char *newcon;
-	int i, rc;
+	int rc;
 	u32 len, nsids;
 
 	length = avc_has_perm(current_sid(), SECINITSID_SECURITY,
@@ -1107,7 +1107,7 @@  static ssize_t sel_write_user(struct file *file, char *buf, size_t size)
 
 	length = sprintf(buf, "%u", nsids) + 1;
 	ptr = buf + length;
-	for (i = 0; i < nsids; i++) {
+	for (u32 i = 0; i < nsids; i++) {
 		rc = security_sid_to_context(sids[i], &newcon, &len);
 		if (rc) {
 			length = rc;
@@ -1612,7 +1612,6 @@  static int sel_make_avc_files(struct dentry *dir)
 {
 	struct super_block *sb = dir->d_sb;
 	struct selinux_fs_info *fsi = sb->s_fs_info;
-	int i;
 	static const struct tree_descr files[] = {
 		{ "cache_threshold",
 		  &sel_avc_cache_threshold_ops, S_IRUGO|S_IWUSR },
@@ -1622,7 +1621,7 @@  static int sel_make_avc_files(struct dentry *dir)
 #endif
 	};
 
-	for (i = 0; i < ARRAY_SIZE(files); i++) {
+	for (u32 i = 0; i < ARRAY_SIZE(files); i++) {
 		struct inode *inode;
 		struct dentry *dentry;
 
@@ -1648,12 +1647,11 @@  static int sel_make_ss_files(struct dentry *dir)
 {
 	struct super_block *sb = dir->d_sb;
 	struct selinux_fs_info *fsi = sb->s_fs_info;
-	int i;
 	static const struct tree_descr files[] = {
 		{ "sidtab_hash_stats", &sel_sidtab_hash_stats_ops, S_IRUGO },
 	};
 
-	for (i = 0; i < ARRAY_SIZE(files); i++) {
+	for (u32 i = 0; i < ARRAY_SIZE(files); i++) {
 		struct inode *inode;
 		struct dentry *dentry;
 
@@ -1699,9 +1697,7 @@  static const struct file_operations sel_initcon_ops = {
 
 static int sel_make_initcon_files(struct dentry *dir)
 {
-	int i;
-
-	for (i = 1; i <= SECINITSID_NUM; i++) {
+	for (u32 i = 1; i <= SECINITSID_NUM; i++) {
 		struct inode *inode;
 		struct dentry *dentry;
 		const char *s = security_get_initial_sid_context(i);

[RFC,20/20] selinux: selinuxfs: avoid implicit conversions

Commit Message

Comments

Patch