From: Chad Sellers <csellers@tresys.com>
Date: Fri, 6 Oct 2006 20:09:52 +0000 (-0400)
Subject: SELinux: Bug fix in polidydb_destroy
X-Git-Tag: v2.6.19-rc2~17^2~13
X-Git-Url: http://git.openpandora.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=6e8c751e07b34d73069e9333f67fbe5ffe31ec3a;p=pandora-kernel.git

SELinux: Bug fix in polidydb_destroy

This patch fixes two bugs in policydb_destroy. Two list pointers
(policydb.ocontexts[i] and policydb.genfs) were not being reset to NULL when
the lists they pointed to were being freed. This caused a problem when the
initial policy load failed, as the policydb being destroyed was not a
temporary new policydb that was thrown away, but rather was the global
(active) policydb. Consequently, later functions, particularly
sys_bind->selinux_socket_bind->security_node_sid and
do_rw_proc->selinux_sysctl->selinux_proc_get_sid->security_genfs_sid tried
to dereference memory that had previously been freed.

Signed-off-by: Chad Sellers <csellers@tresys.com>
Signed-off-by: James Morris <jmorris@namei.org>
---

Reading git-diff-tree failed