Received: by 2002:a6b:fb09:0:0:0:0:0 with SMTP id h9csp1564956iog; Tue, 14 Jun 2022 08:30:17 -0700 (PDT) X-Google-Smtp-Source: AGRyM1vWhF5bBellIxGEJ22vKEwGB3aWbs/g6V8T8BvmDyZGFJ+vEiG6hX2/fq61AkKAhp83/8NR X-Received: by 2002:a17:907:3d8d:b0:70f:257b:a34f with SMTP id he13-20020a1709073d8d00b0070f257ba34fmr5012542ejc.352.1655220617030; Tue, 14 Jun 2022 08:30:17 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1655220617; cv=none; d=google.com; s=arc-20160816; b=vWAKyKXnOb1dcGayCmSoqXmbwnXHOEI5BVBStnOZEGvXC5LA5tDh2SgxG4ccxpr5bR uXdioSHtEnblqG1bJSL8UbyGdB1irvICBUWcAtPB/hpFwvkS9jbL98Myuq2TuT1SlnU7 HLF9n4HlvXBX2VyXTqwVsxfNzTp0O+JYp5nq6fX6wFQtAPH28On1SQI5dRaSwf655eaH Y+YoBZ0vP5ToxBge6iqDOAOu7wZqxnM3O3jGIhxuQXPV0WeZit4brcHbr5JehNadWwQt m1AqN76Pf/4YemZo7GvqTB74c3NHLyky+JTxhEuNf9LXOTto9WYQnu25QB3Dt/ETNQIs WMAQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:cc:to:subject :message-id:date:from:in-reply-to:references:mime-version :dkim-signature; bh=YeP+puKC7iqc3JqJxcTM30hLBB3IQ9iXeo4CTxtOs1Q=; b=MUK2qZKJ5Do06y6oyaSxUASw9+XoSGIyJj6vVpMBmE3AtoLD7f+9f+48ai1tZuHsmg DrVJEIrxOzmDvv9Oy3GiB1m8RDwzUlPIBFKhKHkk3yFMWRYkWQU7wIYoFRczLOKzw+ST 1P0YXpjjsjSRhZEQ2ZB2iqdmmF+QeMPMZ4J7lPG3rfAMFFuNSgcGp87MbYz8pnuA63jf pViO0Pu/0UIYKVMCxRaa2jcTyUzHpItwubohAFsd0QwvWkTn0+/8NSWv8vACNEtI98T1 p74ktsc+QgnOCzsYscwA075Sxql+vonEFRcMBpkltKLKegnk0gd/0q69f1a91vFSXwhC uZdg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=KkSArLTQ; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id s3-20020a170906220300b006fee9ca7540si9848285ejs.244.2022.06.14.08.29.51; Tue, 14 Jun 2022 08:30:17 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@redhat.com header.s=mimecast20190719 header.b=KkSArLTQ; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=redhat.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1344082AbiFNO5u (ORCPT + 99 others); Tue, 14 Jun 2022 10:57:50 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:55216 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1344072AbiFNO5s (ORCPT ); Tue, 14 Jun 2022 10:57:48 -0400 Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.133.124]) by lindbergh.monkeyblade.net (Postfix) with ESMTP id 0BE6ABE31 for ; Tue, 14 Jun 2022 07:57:45 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1655218665; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=YeP+puKC7iqc3JqJxcTM30hLBB3IQ9iXeo4CTxtOs1Q=; b=KkSArLTQ/EvpXl1gg4Kz2GcJXyVNUTRzyNCaqego3FtQTSkMMchCHJIBsB/eFJhffzDa8l 9J0VJl/jWIRy2qRDkUNKllKcF0WK43qJxcZn3l67Y5lzZ4dmU+0R7EJqNH2eRMQTJcRMVh /Oe9dU/YRf15nIpLbotUCUR0ap4Gu4Y= Received: from mail-yw1-f199.google.com (mail-yw1-f199.google.com [209.85.128.199]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id us-mta-554-44DjIFCGM6yjk8NnZnsiDQ-1; Tue, 14 Jun 2022 10:57:44 -0400 X-MC-Unique: 44DjIFCGM6yjk8NnZnsiDQ-1 Received: by mail-yw1-f199.google.com with SMTP id 00721157ae682-30c24697ffaso26950397b3.16 for ; Tue, 14 Jun 2022 07:57:44 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=YeP+puKC7iqc3JqJxcTM30hLBB3IQ9iXeo4CTxtOs1Q=; b=hvq87KFuJG5xAAeUaUSccDnzSQQJJQx3AjI6jkyAZAHWfSrrPtqZhjoWGcz8KNT9Cv 8nWHmNE18vTkP/mIJT9/OyQGHmTT1EGWxsLieIX0VDYwJWzP1sZT/UYHBSGmQjFEmlag /0mrGTwaBIXYpmlLjEyYJRILoVMSFZ3Zwr9Opn6EhBD0f8wMCkwL5WsY8H4PNq7INhsA /8zRn3Sw1Vv4QeKoH984tEBM0L+CA0bSPUN8KiDjqP51FGdv6V1m8yIVWQPbJMTjkuKc j85jeTHrAhf03tbEjKk6kPD8GMvHDLif8pWWJYILBpMSQxjIXrAS+JmvmWijDCeac2rH SeOg== X-Gm-Message-State: AJIora+qJDuj/HqRX0u/KRBRqXChW+IYVfUcXfX1DMo0p4SiP6dGVIw4 ce/Y10ZpCbXK0J7g0TiUvxxN1AKQuAQRPt8Z1W46z0s24vbsTpT5QXJ8hUQnWlpvYIpvaTum7i5 zR5sTaGsnfvuuKzT6Q0U3O/ptlC/EH5Kvy3S8cSka X-Received: by 2002:a81:7010:0:b0:30c:c6cf:d4af with SMTP id l16-20020a817010000000b0030cc6cfd4afmr5862960ywc.459.1655218663604; Tue, 14 Jun 2022 07:57:43 -0700 (PDT) X-Received: by 2002:a81:7010:0:b0:30c:c6cf:d4af with SMTP id l16-20020a817010000000b0030cc6cfd4afmr5862927ywc.459.1655218663378; Tue, 14 Jun 2022 07:57:43 -0700 (PDT) MIME-Version: 1.0 References: <20220613135953.135998-1-xiujianfeng@huawei.com> In-Reply-To: From: Ondrej Mosnacek Date: Tue, 14 Jun 2022 16:57:32 +0200 Message-ID: Subject: Re: [PATCH -next] selinux: Fix memleak in security_read_state_kernel To: xiujianfeng Cc: Paul Moore , Stephen Smalley , Eric Paris , =?UTF-8?Q?Christian_G=C3=B6ttsche?= , michalorzel.eng@gmail.com, Austin Kim , SElinux list , Linux kernel mailing list Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Spam-Status: No, score=-4.0 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_LOW, SPF_HELO_NONE,SPF_NONE,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Tue, Jun 14, 2022 at 3:35 PM xiujianfeng wrote: > > > =E5=9C=A8 2022/6/14 20:57, Ondrej Mosnacek =E5=86=99=E9=81=93: > > On Mon, Jun 13, 2022 at 4:02 PM Xiu Jianfeng w= rote: > >> In this function, it directly returns the result of __security_read_po= licy > >> without freeing the allocated memory in *data, cause memory leak issue= , > >> so free the memory if __security_read_policy failed. > >> > >> Signed-off-by: Xiu Jianfeng > >> --- > >> security/selinux/ss/services.c | 9 ++++++++- > >> 1 file changed, 8 insertions(+), 1 deletion(-) > >> > >> diff --git a/security/selinux/ss/services.c b/security/selinux/ss/serv= ices.c > >> index 69b2734311a6..fe5fcf571c56 100644 > >> --- a/security/selinux/ss/services.c > >> +++ b/security/selinux/ss/services.c > >> @@ -4048,6 +4048,7 @@ int security_read_policy(struct selinux_state *s= tate, > >> int security_read_state_kernel(struct selinux_state *state, > >> void **data, size_t *len) > >> { > >> + int err; > >> struct selinux_policy *policy; > >> > >> policy =3D rcu_dereference_protected( > >> @@ -4060,5 +4061,11 @@ int security_read_state_kernel(struct selinux_s= tate *state, > >> if (!*data) > >> return -ENOMEM; > >> > >> - return __security_read_policy(policy, *data, len); > >> + err =3D __security_read_policy(policy, *data, len); > >> + if (err) { > >> + vfree(*data); > >> + *data =3D NULL; > >> + *len =3D 0; > >> + } > >> + return err; > >> } > >> -- > >> 2.17.1 > >> > > security_read_policy() defined a few lines above has the same pattern > > (just with vmalloc_user() in place of vmalloc()). Would you like to > > send another patch to fix that function as well? > No problem, patch already sent. Wow, you're fast :) Thanks! --=20 Ondrej Mosnacek Software Engineer, Linux Security - SELinux kernel Red Hat, Inc.