apparmor: Fix aa_label_build() error handling for failed merges
aa_label_merge() can return NULL for memory allocations failures make sure to handle and set the correct error in this case. Reported-by: Peng Hao <peng.hao2@zte.com.cn> Signed-off-by: John Johansen <john.johansen@canonical.com>
This commit is contained in:
parent
a1a02062ad
commit
d6d478aee0
|
@ -1444,7 +1444,10 @@ int aa_change_profile(const char *fqname, int flags)
|
|||
new = aa_label_merge(label, target, GFP_KERNEL);
|
||||
if (IS_ERR_OR_NULL(new)) {
|
||||
info = "failed to build target label";
|
||||
error = PTR_ERR(new);
|
||||
if (!new)
|
||||
error = -ENOMEM;
|
||||
else
|
||||
error = PTR_ERR(new);
|
||||
new = NULL;
|
||||
perms.allow = 0;
|
||||
goto audit;
|
||||
|
|
Loading…
Reference in New Issue