selinux: remove the BUG_ON() from selinux_skb_xfrm_sid()

Remove the BUG_ON() from selinux_skb_xfrm_sid() and propogate the error code up to the caller. Also check the return values in the only caller function, selinux_skb_peerlbl_sid(). Signed-off-by: N Paul Moore <pmoore@redhat.com> Signed-off-by: N Eric Paris <eparis@redhat.com>

selinux: remove the BUG_ON() from selinux_skb_xfrm_sid()
Remove the BUG_ON() from selinux_skb_xfrm_sid() and propogate the error code up to the caller. Also check the return values in the only caller function, selinux_skb_peerlbl_sid(). Signed-off-by: N Paul Moore <pmoore@redhat.com> Signed-off-by: N Eric Paris <eparis@redhat.com>
bed4d7ef · Paul Moore · Eric Paris · d1b17b09 · bed4d7ef · bed4d7ef
隐藏空白更改
内联并排

Showing with 8 addition and 5 deletion

security/selinux/hooks.c security/selinux/hooks.c +6 -2

security/selinux/include/xfrm.h security/selinux/include/xfrm.h +2 -3

未找到文件。
--- a/security/selinux/hooks.c
+++ b/security/selinux/hooks.c
@@ -3722,8 +3722,12 @@ static int selinux_skb_peerlbl_sid(struct sk_buff *skb, u16 family, u32 *sid)
 	u32 nlbl_sid;
 	u32 nlbl_type;
-	selinux_skb_xfrm_sid(skb, &xfrm_sid);
+	err = selinux_skb_xfrm_sid(skb, &xfrm_sid);
-	selinux_netlbl_skbuff_getsid(skb, family, &nlbl_type, &nlbl_sid);
+	if (unlikely(err))
+		return -EACCES;
+	err = selinux_netlbl_skbuff_getsid(skb, family, &nlbl_type, &nlbl_sid);
+	if (unlikely(err))
+		return -EACCES;
 	err = security_net_peersid_resolve(nlbl_sid, nlbl_type, xfrm_sid, sid);
 	if (unlikely(err)) {

--- a/security/selinux/include/xfrm.h
+++ b/security/selinux/include/xfrm.h
@@ -76,10 +76,9 @@ static inline void selinux_xfrm_notify_policyload(void)
 }
 #endif
-static inline void selinux_skb_xfrm_sid(struct sk_buff *skb, u32 *sid)
+static inline int selinux_skb_xfrm_sid(struct sk_buff *skb, u32 *sid)
 {
-	int err = selinux_xfrm_decode_session(skb, sid, 0);
+	return selinux_xfrm_decode_session(skb, sid, 0);
-	BUG_ON(err);
 }
 #endif /* _SELINUX_XFRM_H_ */