From patchwork Sun Jun 21 20:54:16 2020 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Paul Moore X-Patchwork-Id: 11616753 Return-Path: Received: from mail.kernel.org (pdx-korg-mail-1.web.codeaurora.org [172.30.200.123]) by pdx-korg-patchwork-2.web.codeaurora.org (Postfix) with ESMTP id 84D4992A for ; Sun, 21 Jun 2020 20:54:30 +0000 (UTC) Received: from vger.kernel.org (vger.kernel.org [23.128.96.18]) by mail.kernel.org (Postfix) with ESMTP id 6BE9D2528B for ; Sun, 21 Jun 2020 20:54:30 +0000 (UTC) Authentication-Results: mail.kernel.org; dkim=pass (2048-bit key) header.d=paul-moore-com.20150623.gappssmtp.com header.i=@paul-moore-com.20150623.gappssmtp.com header.b="Cm6eHqFV" Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1730737AbgFUUya (ORCPT ); Sun, 21 Jun 2020 16:54:30 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:35734 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1730663AbgFUUy3 (ORCPT ); Sun, 21 Jun 2020 16:54:29 -0400 Received: from mail-ed1-x544.google.com (mail-ed1-x544.google.com [IPv6:2a00:1450:4864:20::544]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 16705C061796 for ; Sun, 21 Jun 2020 13:54:29 -0700 (PDT) Received: by mail-ed1-x544.google.com with SMTP id t21so11975327edr.12 for ; Sun, 21 Jun 2020 13:54:28 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=paul-moore-com.20150623.gappssmtp.com; s=20150623; h=mime-version:from:date:message-id:subject:to:cc; bh=Fxeo892Xd0EGs3eDXfjXWElkMo4o1Rn9QPeImEgGuFc=; b=Cm6eHqFVEH8ZbMjVNb6vE6XKOFxYuSkKt1/OPZrXyt86N4CB3Cc7c/Ys5tDLRpwurN A1YGyH10ekZ5dXM5Kw3hsOGarzfcSHBmuxw+5Q7qwKcRRRZEFyaAZSkTY+ORAM5/zAAB ccpvzVFO9tHnc6fPYY3oCnjqwf3JAgj5PTZvJCEGXam42HZRaGvPBjUoqsb2JGzabRHr hNdoTnfa2mk4NQnCvzngmSE/qZ9szhTUPk5epawuI5TWs1Cw3zl2C4KTsSqdPvYe5OwM 2WX90vD9fcP1dqcUT5GZSNshdEpl4P1ExmbULnzviRckPfccwbccPWK9v5+6xR/+VxhQ Ot5A== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to:cc; bh=Fxeo892Xd0EGs3eDXfjXWElkMo4o1Rn9QPeImEgGuFc=; b=hcxC74mYI9HRE/g4BDjcUV28EZ6GyhuvXfkggF8y04/VP1R7KHZB6AVSBV8r4S9D+7 HLvmwWpmIxUuMmBHFgOzS2nGkULW5er23nfqxxLthsU1gUZHgBUCl2T08sPWPS4D+AId K319NwitIW+LfZ+dW3Ze591TSNO8LD/3wAZMA+vKyky2wZHaajMJKzypa3vn4RHyCt6a GZjQQLEUqRPbOwBbPmWjgWAA+gl2v/C9qJ5eeu0CUba3jKKBraGEOW1n66U2cdwEFVfq hZJGJGJXd0L3hw7ptiNkGeLNKanMLVp0p47wxBMh8SUjARNxa56exvfiRmR/HWLdAxFR ck1g== X-Gm-Message-State: AOAM530Ibs7ZK9OucKizdhc4YDvVoFKCCPyzzmQR6IKr9noTjcEJxJsb RodrtVmeIcQ0e+gYpG+RFsamFL4ICcppm49xoOehAWKLww== X-Google-Smtp-Source: ABdhPJwqkvqnVxNRdV5MvD6SdPikXCfdA5vmAMA3RLX/mZxQLF7YtJN6D4Hjjo6bQ44hUAWVymjMJtFxSsUC+MgmKL0= X-Received: by 2002:a50:a881:: with SMTP id k1mr13707390edc.12.1592772867486; Sun, 21 Jun 2020 13:54:27 -0700 (PDT) MIME-Version: 1.0 From: Paul Moore Date: Sun, 21 Jun 2020 16:54:16 -0400 Message-ID: Subject: [GIT PULL] SELinux fixes for v5.8 (#1) To: Linus Torvalds Cc: selinux@vger.kernel.org, linux-security-module@vger.kernel.org, linux-kernel@vger.kernel.org Sender: selinux-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: selinux@vger.kernel.org Hi Linus, Three small patches to fix problems in the SELinux code, all found via clang. Two patches fix potential double-free conditions and one fixes an undefined return value. All are pretty easy to understand and the commit descriptions are reasonably good so I don't think there is a need to go into more detail here. Please merge these for v5.8-rcX. Thanks, -Paul --- The following changes since commit fe5a90b8c14914397a3bb0c214d142103c1ba3bf: selinux: netlabel: Remove unused inline function (2020-05-12 20:16:33 -0400) are available in the Git repository at: git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/selinux.git tags/selinux-pr-20200621 for you to fetch changes up to 8231b0b9c322c894594fb42eb0eb9f93544a6acc: selinux: fix undefined return of cond_evaluate_expr (2020-06-17 17:36:40 -0400) ---------------------------------------------------------------- selinux/stable-5.8 PR 20200621 ---------------------------------------------------------------- Tom Rix (3): selinux: fix double free selinux: fix a double free in cond_read_node()/cond_read_list() selinux: fix undefined return of cond_evaluate_expr security/selinux/ss/conditional.c | 21 ++++++++------------- security/selinux/ss/services.c | 4 ++++ 2 files changed, 12 insertions(+), 13 deletions(-)