SRU Justification: This bug can cause confined process to oops at address 0.
As reported by Tetsuo Handa on kernel-team mailing list:
In aa_may_change_ptraced_domain, if (!tracer) cred == NULL, and
put_cred(cred) will oops. This will only happen on exec if the task
is marked as LSM_UNSAFE_PTRACE | LSM_UNSAFE_PTRACE_CAP, so should
only happen to ptraced tasks that are confined.
Fix this by returning directly from aa_may_change_ptrace_domain if
there is now tracer.
SRU Justification: This bug can cause confined process to oops at address 0.
As reported by Tetsuo Handa on kernel-team mailing list:
In aa_may_ change_ ptraced_ domain, if (!tracer) cred == NULL, and PTRACE_ CAP, so should
put_cred(cred) will oops. This will only happen on exec if the task
is marked as LSM_UNSAFE_PTRACE | LSM_UNSAFE_
only happen to ptraced tasks that are confined.
Fix this by returning directly from aa_may_ change_ ptrace_ domain if
there is now tracer.