selinux: format all invalid context as untrusted - openslx/kernel-qcow2-linux.git

diff options

author	Richard Guy Briggs	2019-06-27 18:48:01 +0200
committer	Paul Moore	2019-07-01 22:29:05 +0200
commit	ea74a685ad819aeed316a9bae3d2a5bf762da82d (patch)
tree	ba13e694ed22fbd1494bdca74db130914f5d900a /drivers/usb/dwc3/core.c
parent	selinux: fix empty write to keycreate file (diff)
download	kernel-qcow2-linux-ea74a685ad819aeed316a9bae3d2a5bf762da82d.tar.gz kernel-qcow2-linux-ea74a685ad819aeed316a9bae3d2a5bf762da82d.tar.xz kernel-qcow2-linux-ea74a685ad819aeed316a9bae3d2a5bf762da82d.zip

selinux: format all invalid context as untrusted

The userspace tools expect all fields of the same name to be logged consistently with the same encoding. Since the invalid_context fields contain untrusted strings in selinux_inode_setxattr() and selinux_setprocattr(), encode all instances of this field the same way as though they were untrusted even though compute_sid_handle_invalid_context() and security_sid_mls_copy() are trusted. Please see github issue https://github.com/linux-audit/audit-kernel/issues/57 Signed-off-by: Richard Guy Briggs <rgb@redhat.com> Signed-off-by: Paul Moore <paul@paul-moore.com>

Diffstat (limited to 'drivers/usb/dwc3/core.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: