[PATCH] selinux: Fix MLS compatibility off-by-one bug Fix an off-by-one error in the MLS compatibility code that was causing contexts with a MLS suffix to be rejected, preventing sharing partitions between FC4 and FC5. Bug reported in https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=188068 Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Acked-by: James Morris <jmorris@redhat.com> Cc: <stable@kernel.org> Signed-off-by: Andrew Morton <akpm@osdl.org> Signed-off-by: Linus Torvalds <torvalds@osdl.org>

commit: ab5703b34237da7034800ec2466ceebf88a7e685 [log] [tgz]
author: Ron Yorston <rmy@tigress.co.uk> Tue Apr 18 22:21:04 2006 -0700
committer: Linus Torvalds <torvalds@g5.osdl.org> Wed Apr 19 09:13:50 2006 -0700
tree: 1c319edf228bb9467a0b8b2bc2a069d0545f5c52
parent: dda27d1a55e185b0c5fd184b86ac26c66846f095 [diff] [blame]
diff --git a/security/selinux/ss/mls.c b/security/selinux/ss/mls.c
index 640d0bf..84047f6 100644
--- a/security/selinux/ss/mls.c
+++ b/security/selinux/ss/mls.c

@@ -264,7 +264,7 @@
 
 	if (!selinux_mls_enabled) {
 		if (def_sid != SECSID_NULL && oldc)
-			*scontext += strlen(*scontext);
+			*scontext += strlen(*scontext)+1;
 		return 0;
 	}
commit	ab5703b34237da7034800ec2466ceebf88a7e685	[log] [tgz]
author	Ron Yorston <rmy@tigress.co.uk>	Tue Apr 18 22:21:04 2006 -0700
committer	Linus Torvalds <torvalds@g5.osdl.org>	Wed Apr 19 09:13:50 2006 -0700
tree	1c319edf228bb9467a0b8b2bc2a069d0545f5c52
parent	dda27d1a55e185b0c5fd184b86ac26c66846f095 [diff] [blame]