[PATCH 15/20] selinux: change handling of invalid classes (Was: Re: 2.6.26-rc5-mm1 selinux whine)

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

From: James Morris

Subject: [PATCH 15/20] selinux: change handling of invalid classes (Was: Re: 2.6.26-rc5-mm1 selinux whine)

Date: Monday, July 7, 2008 - 9:42 am

From: Stephen Smalley <sds@tycho.nsa.gov>

On Mon, 2008-06-09 at 01:24 -0700, Andrew Morton wrote:
quoted text> Getting a few of these with FC5:
>
> SELinux: context_struct_compute_av:  unrecognized class 69
> SELinux: context_struct_compute_av:  unrecognized class 69
>
> one came out when I logged in.
>
> No other symptoms, yet.

Change handling of invalid classes by SELinux, reporting class values
unknown to the kernel as errors (w/ ratelimit applied) and handling
class values unknown to policy as normal denials.

Signed-off-by:  Stephen Smalley <sds@tycho.nsa.gov>
Acked-by: Eric Paris <eparis@redhat.com>
Signed-off-by: James Morris <jmorris@namei.org>
---
 security/selinux/ss/services.c |   16 +++++++++++++---
 1 files changed, 13 insertions(+), 3 deletions(-)

diff --git a/security/selinux/ss/services.c b/security/selinux/ss/services.c
index 543fd0f..04c0b70 100644
--- a/security/selinux/ss/services.c
+++ b/security/selinux/ss/services.c
@@ -407,9 +407,19 @@ static int context_struct_compute_av(struct context *scontext,
 	return 0;
 
 inval_class:
-	printk(KERN_ERR "SELinux: %s:  unrecognized class %d\n", __func__,
-		tclass);
-	return -EINVAL;
+	if (!tclass || tclass > kdefs->cts_len ||
+	    !kdefs->class_to_string[tclass]) {
+		if (printk_ratelimit())
+			printk(KERN_ERR "SELinux: %s:  unrecognized class %d\n",
+			       __func__, tclass);
+		return -EINVAL;
+	}
+
+	/*
+	 * Known to the kernel, but not to the policy.
+	 * Handle as a denial (allowed is 0).
+	 */
+	return 0;
 }
 
 /*
-- 
1.5.5.1

--
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

SELinux patches for 2.6.26, James Morris, (Mon Jul 7, 9:42 am)

[PATCH 01/20] selinux: support deferred mapping of contexts, James Morris, (Mon Jul 7, 9:42 am)

[PATCH 02/20] SELinux: fix sleeping allocation in security ..., James Morris, (Mon Jul 7, 9:42 am)

[PATCH 03/20] SELinux: keep the code clean formating and s ..., James Morris, (Mon Jul 7, 9:42 am)

[PATCH 04/20] SELinux: reorder inode_security_struct to in ..., James Morris, (Mon Jul 7, 9:42 am)

[PATCH 05/20] SELinux: remove inherit field from inode_sec ..., James Morris, (Mon Jul 7, 9:42 am)

[PATCH 06/20] Security: split proc ptrace checking into re ..., James Morris, (Mon Jul 7, 9:42 am)

[PATCH 07/20] SELinux: enable processes with mac_admin to ..., James Morris, (Mon Jul 7, 9:42 am)

[PATCH 08/20] selinux: simplify ioctl checking, James Morris, (Mon Jul 7, 9:42 am)

[PATCH 09/20] selinux: fix endianness bug in network node ..., James Morris, (Mon Jul 7, 9:42 am)

[PATCH 10/20] SELinux: open code policy_rwlock, James Morris, (Mon Jul 7, 9:42 am)

[PATCH 11/20] SELinux: open code load_mutex, James Morris, (Mon Jul 7, 9:42 am)

[PATCH 12/20] SELinux: open code sidtab lock, James Morris, (Mon Jul 7, 9:42 am)

[PATCH 13/20] SELinux: fix off by 1 reference of class_to_ ..., James Morris, (Mon Jul 7, 9:42 am)

[PATCH 14/20] SELinux: drop load_mutex in security_load_policy, James Morris, (Mon Jul 7, 9:42 am)

[PATCH 15/20] selinux: change handling of invalid classes ..., James Morris, (Mon Jul 7, 9:42 am)

[PATCH 16/20] SELinux: more user friendly unknown handling ..., James Morris, (Mon Jul 7, 9:42 am)

[PATCH 17/20] SELinux: remove unused and shadowed addrlen ..., James Morris, (Mon Jul 7, 9:42 am)

[PATCH 18/20] SELinux: use do_each_thread as a proper do/w ..., James Morris, (Mon Jul 7, 9:42 am)

[PATCH 19/20] security: fix return of void-valued expressions, James Morris, (Mon Jul 7, 9:42 am)

[PATCH 20/20] SELinux: allow fstype unknown to policy to u ..., James Morris, (Mon Jul 7, 9:42 am)

Re: SELinux patches for 2.6.26, Theodore Tso, (Mon Jul 7, 11:23 am)

Re: SELinux patches for 2.6.26, James Morris, (Mon Jul 7, 3:49 pm)


linux-kernel:
Eric Sandeen	Re: [PATCH] xfs: do not pass unused params to xfs_flush_pages
Daniel Hazelton	Re: x86: 4kstacks default
Mathieu Desnoyers	Re: Linux 2.6.25-rc2
Alexey Dobriyan	Re: [2.6.22.2 review 09/84] Fix rfkill IRQ flags.
Alexandre Oliva	Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3
git:
Felipe Contreras	Re: [kernel.org users] [RFD] On deprecating "git-foo" for builtins
Johannes Schindelin	[PATCH] fetch: refuse to fetch into the current branch in a non-bare repository
Johannes Schindelin	Re: [PATCH] Fix install-doc-quick target
Nicolas Pitre	Re: About git and the use of SHA-1
Alex Riesen	Re: git exclude patterns for directory
linux-netdev:
Andi Kleen	Re: RFC: Nagle latency tuning
Herbert Xu	Re: Oops in tun: bisected to Limit amount of queued packets per device
gregkh	Patch "IPv6: keep route for tentative address" has been added to the 2.6.34-stable...
Patrick McHardy	Re: [rfc 02/13] [RFC 02/13] netfilter: nf_conntrack_sip: Add callid parser
Paul Gortmaker	[PATCH net-next 09/16] tipc: Relocate trivial link status functions to header file
git-commits-head:
Linux Kernel Mailing List	sh: Fix compile error by operands(mov.l) in sh3/entry.S
Linux Kernel Mailing List	New device ID for sc92031 [1088:2031]
Linux Kernel Mailing List	tmpfs: depend on shmem
Linux Kernel Mailing List	drivers/acpi: use kasprintf
Linux Kernel Mailing List	Staging: et131x: prune all the debug code
openbsd-misc:
Andres Salazar	About priorities in /etc/resolv.conf
Tonnerre LOMBARD	Re: bge0: watchdog timeout
Rob Shepherd	x86 hardware for router system
Damien Miller	Re: Patching a SSH 'Weakness'
ropers	Re: Real men don't attack straw men