1
linux/security/selinux/ss
Vesa-Matti Kari 421fae06be selinux: conditional expression type validation was off-by-one
expr_isvalid() in conditional.c was off-by-one and allowed
invalid expression type COND_LAST. However, it is this header file
that needs to be fixed. That way the if-statement's disjunction's
second component reads more naturally, "if expr type is greater than
the last allowed value" ( rather than using ">=" in conditional.c):

  if (expr->expr_type <= 0 || expr->expr_type > COND_LAST)

Signed-off-by: Vesa-Matti Kari <vmkari@cc.helsinki.fi>
Signed-off-by: James Morris <jmorris@namei.org>
2008-08-07 08:56:16 +10:00
..
avtab.c SELinux: trivial, remove unneeded local variable 2008-08-05 10:55:38 +10:00
avtab.h SELinux: add more validity checks on policy load 2007-11-08 08:56:23 +11:00
conditional.c SELinux: Trivial minor fixes that change C null character style 2008-08-05 10:55:30 +10:00
conditional.h selinux: conditional expression type validation was off-by-one 2008-08-07 08:56:16 +10:00
constraint.h
context.h selinux: support deferred mapping of contexts 2008-07-14 15:01:34 +10:00
ebitmap.c SELinux: ebitmap.c whitespace, syntax, and static declaraction cleanups 2008-04-21 19:07:32 +10:00
ebitmap.h SELinux: kills warnings in Improve SELinux performance when AVC misses 2007-10-17 08:59:36 +10:00
hashtab.c SELinux: hashtab.c whitespace, syntax, and static declaraction cleanups 2008-04-21 19:07:32 +10:00
hashtab.h SELinux: hashtab.h whitespace, syntax, and other cleanups 2008-04-28 09:29:04 +10:00
Makefile
mls_types.h SELinux: mls_types.h whitespace, syntax, and other cleanups 2008-04-28 09:29:06 +10:00
mls.c SELinux: Trivial minor fixes that change C null character style 2008-08-05 10:55:30 +10:00
mls.h selinux: support deferred mapping of contexts 2008-07-14 15:01:34 +10:00
policydb.c SELinux: Trivial minor fixes that change C null character style 2008-08-05 10:55:30 +10:00
policydb.h SELinux: policydb.h whitespace, syntax, and other cleanups 2008-04-28 09:29:07 +10:00
services.c Revert "SELinux: allow fstype unknown to policy to use xattrs if present" 2008-07-15 18:32:49 +10:00
services.h
sidtab.c SELinux: open code sidtab lock 2008-07-14 15:01:57 +10:00
sidtab.h selinux: support deferred mapping of contexts 2008-07-14 15:01:34 +10:00
symtab.c
symtab.h