LSM: general protection fault in legacy_parse_param - linux

diff options

author	Casey Schaufler <casey@schaufler-ca.com>	2022-01-27 05:51:00 +0100
committer	Paul Moore <paul@paul-moore.com>	2022-01-28 02:43:02 +0100
commit	ecff30575b5ad0eda149aadad247b7f75411fd47 (patch)
tree	5d8e8802ce75d4c3e43d7dd1a4c5d0c300e401a5 /security/lsm_audit.c
parent	selinux: fix a type cast problem in cred_init_security() (diff)
download	linux-ecff30575b5ad0eda149aadad247b7f75411fd47.tar.xz linux-ecff30575b5ad0eda149aadad247b7f75411fd47.zip

LSM: general protection fault in legacy_parse_param

The usual LSM hook "bail on fail" scheme doesn't work for cases where a security module may return an error code indicating that it does not recognize an input. In this particular case Smack sees a mount option that it recognizes, and returns 0. A call to a BPF hook follows, which returns -ENOPARAM, which confuses the caller because Smack has processed its data. The SELinux hook incorrectly returns 1 on success. There was a time when this was correct, however the current expectation is that it return 0 on success. This is repaired. Reported-by: syzbot+d1e3b1d92d25abf97943@syzkaller.appspotmail.com Signed-off-by: Casey Schaufler <casey@schaufler-ca.com> Acked-by: James Morris <jamorris@linux.microsoft.com> Signed-off-by: Paul Moore <paul@paul-moore.com>

Diffstat (limited to 'security/lsm_audit.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: