Re: [PATCH v2 1/1] selinux: fix double free

From: Stephen Smalley
Date: Wed Jun 10 2020 - 18:07:07 EST

Next message: Theodore Y. Ts'o: "Re: BUG: unable to handle kernel NULL pointer dereference in generic_perform_write (2)"
Previous message: Roman Gushchin: "Re: [PATCH 7/9] mm, slub: introduce kmem_cache_debug_flags()"
In reply to: trix: "[PATCH v2 1/1] selinux: fix double free"
Next in thread: Paul Moore: "Re: [PATCH v2 1/1] selinux: fix double free"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Jun 10, 2020 at 5:57 PM <trix@xxxxxxxxxx> wrote:
>
> From: Tom Rix <trix@xxxxxxxxxx>
>
> Clang's static analysis tool reports these double free memory errors.
>
> security/selinux/ss/services.c:2987:4: warning: Attempt to free released memory [unix.Malloc]
> kfree(bnames[i]);
> ^~~~~~~~~~~~~~~~
> security/selinux/ss/services.c:2990:2: warning: Attempt to free released memory [unix.Malloc]
> kfree(bvalues);
> ^~~~~~~~~~~~~~
>
> So improve the security_get_bools error handling by freeing these variables
> and setting their return pointers to NULL and the return len to 0
>
> Signed-off-by: Tom Rix <trix@xxxxxxxxxx>

Acked-by: Stephen Smalley <stephen.smalley.work@xxxxxxxxx>

Next message: Theodore Y. Ts'o: "Re: BUG: unable to handle kernel NULL pointer dereference in generic_perform_write (2)"
Previous message: Roman Gushchin: "Re: [PATCH 7/9] mm, slub: introduce kmem_cache_debug_flags()"
In reply to: trix: "[PATCH v2 1/1] selinux: fix double free"
Next in thread: Paul Moore: "Re: [PATCH v2 1/1] selinux: fix double free"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]