RepoMirrors/selinux
1
0
Fork 0
mirror of https://github.com/SELinuxProject/selinux synced 2025-01-05 04:59:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

libsepol: avoid potential NULL dereference on optional parameter

Browse Source 
The parameter `reason` of `context_struct_compute_av()` is optional and
can be passed in as NULL, like from `type_attribute_bounds_av()`.

Signed-off-by: Christian Göttsche <cgzones@googlemail.com>
Acked-by: James Carter <jwcart2@gmail.com>
This commit is contained in:
Christian Göttsche 2022-06-10 17:06:23 +02:00 committed by James Carter
parent 956bda08f6
commit f505a73b06
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
libsepol/src/services.c
View File

@ -894,7 +894,8 @@ static void type_attribute_bounds_av(context_struct_t *scontext,
/* mask violated permissions */ /* mask violated permissions */
avd->allowed &= ~masked; avd->allowed &= ~masked;
*reason |= SEPOL_COMPUTEAV_BOUNDS; if (reason)
*reason |= SEPOL_COMPUTEAV_BOUNDS;
} }
/* /*