apparmor: Fix aa_label_build() error handling for failed merges
[ Upstream commit d6d478aee003e19ef90321176552a8ad2929a47f ] aa_label_merge() can return NULL for memory allocations failures make sure to handle and set the correct error in this case. Reported-by: Peng Hao <peng.hao2@zte.com.cn> Signed-off-by: John Johansen <john.johansen@canonical.com> Signed-off-by: Sasha Levin <sashal@kernel.org>
This commit is contained in:
John Johansen
Greg Kroah-Hartman
parent
d92d3caf81
commit
d7807b6227
1 changed files with 4 additions and 1 deletions
|
|
@ -1444,7 +1444,10 @@ int aa_change_profile(const char *fqname, int flags)
|
|||
new = aa_label_merge(label, target, GFP_KERNEL);
|
||||
if (IS_ERR_OR_NULL(new)) {
|
||||
info = "failed to build target label";
|
||||
error = PTR_ERR(new);
|
||||
if (!new)
|
||||
error = -ENOMEM;
|
||||
else
|
||||
error = PTR_ERR(new);
|
||||
new = NULL;
|
||||
perms.allow = 0;
|
||||
goto audit;
|
||||
|
|
|
|||
Loading…
Reference in a new issue