apparmor: provide a bounded version of label_parse some label/context sources might not be guaranteed to be null terminiated provide a size bounded version of label parse to deal with these. Signed-off-by: John Johansen <john.johansen@canonical.com> Acked-by: Seth Arnold <seth.arnold@canonical.com>

commit: 95652cac83605d96cf3849e80e3e3f4dce74f5da [log] [tgz]
author: John Johansen <john.johansen@canonical.com> Wed Sep 06 16:33:56 2017 -0700
committer: John Johansen <john.johansen@canonical.com> Fri Feb 09 11:30:01 2018 -0800
tree: 7359f5c6003ac7e7af47eeceed173bc10fb3a4a1
parent: 6e0654d20ed9679cbf75a0ff7cd786e364f7f09a [diff] [blame]
diff --git a/security/apparmor/include/label.h b/security/apparmor/include/label.h
index 80e9ba9..d871e7f 100644
--- a/security/apparmor/include/label.h
+++ b/security/apparmor/include/label.h

@@ -327,6 +327,9 @@ void aa_label_audit(struct audit_buffer *ab, struct aa_label *label, gfp_t gfp);
 void aa_label_seq_print(struct seq_file *f, struct aa_label *label, gfp_t gfp);
 void aa_label_printk(struct aa_label *label, gfp_t gfp);
 
+struct aa_label *aa_label_strn_parse(struct aa_label *base, const char *str,
+				     size_t n, gfp_t gfp, bool create,
+				     bool force_stack);
 struct aa_label *aa_label_parse(struct aa_label *base, const char *str,
 				gfp_t gfp, bool create, bool force_stack);
commit	95652cac83605d96cf3849e80e3e3f4dce74f5da	[log] [tgz]
author	John Johansen <john.johansen@canonical.com>	Wed Sep 06 16:33:56 2017 -0700
committer	John Johansen <john.johansen@canonical.com>	Fri Feb 09 11:30:01 2018 -0800
tree	7359f5c6003ac7e7af47eeceed173bc10fb3a4a1
parent	6e0654d20ed9679cbf75a0ff7cd786e364f7f09a [diff] [blame]