selinux: Augment BUG_ON assertion for secclass_map. Ensure that we catch any cases where tclass == 0. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: Paul Moore <pmoore@redhat.com>

commit: bd1741f4cf05d7709348f591d16eeb5f786de673 [log] [tgz]
author: Stephen Smalley <sds@tycho.nsa.gov> Fri Jul 10 17:19:57 2015 -0400
committer: Paul Moore <pmoore@redhat.com> Mon Jul 13 13:31:59 2015 -0400
tree: 282ed00d354dbd524846f1abe394c8c3b408c819
parent: 5dee25d08eac01472904b0ab32ce35edee5c0518 [diff] [blame]
diff --git a/security/selinux/avc.c b/security/selinux/avc.c
index 2d5e1b0..324acc6 100644
--- a/security/selinux/avc.c
+++ b/security/selinux/avc.c

@@ -116,6 +116,7 @@
 		return;
 	}
 
+	BUG_ON(!tclass || tclass >= ARRAY_SIZE(secclass_map));
 	perms = secclass_map[tclass-1].perms;
 
 	audit_log_format(ab, " {");
@@ -164,7 +165,7 @@
 		kfree(scontext);
 	}
 
-	BUG_ON(tclass >= ARRAY_SIZE(secclass_map));
+	BUG_ON(!tclass || tclass >= ARRAY_SIZE(secclass_map));
 	audit_log_format(ab, " tclass=%s", secclass_map[tclass-1].name);
 }
commit	bd1741f4cf05d7709348f591d16eeb5f786de673	[log] [tgz]
author	Stephen Smalley <sds@tycho.nsa.gov>	Fri Jul 10 17:19:57 2015 -0400
committer	Paul Moore <pmoore@redhat.com>	Mon Jul 13 13:31:59 2015 -0400
tree	282ed00d354dbd524846f1abe394c8c3b408c819
parent	5dee25d08eac01472904b0ab32ce35edee5c0518 [diff] [blame]