aha/net/netlabel
Paul Moore 014ab19a69 selinux: Set socket NetLabel based on connection endpoint
Previous work enabled the use of address based NetLabel selectors, which while
highly useful, brought the potential for additional per-packet overhead when
used.  This patch attempts to solve that by applying NetLabel socket labels
when sockets are connect()'d.  This should alleviate the per-packet NetLabel
labeling for all connected sockets (yes, it even works for connected DGRAM
sockets).

Signed-off-by: Paul Moore <paul.moore@hp.com>
Reviewed-by: James Morris <jmorris@namei.org>
2008-10-10 10:16:33 -04:00
..
Kconfig [NETLABEL]: Fix build failure. 2006-11-05 16:44:06 -08:00
Makefile netlabel: Add a generic way to create ordered linked lists of network addrs 2008-10-10 10:16:32 -04:00
netlabel_addrlist.c netlabel: Add network address selectors to the NetLabel/LSM domain mapping 2008-10-10 10:16:32 -04:00
netlabel_addrlist.h netlabel: Add network address selectors to the NetLabel/LSM domain mapping 2008-10-10 10:16:32 -04:00
netlabel_cipso_v4.c netlabel: Replace protocol/NetLabel linking with refrerence counts 2008-10-10 10:16:31 -04:00
netlabel_cipso_v4.h NetLabel: introduce a new kernel configuration API for NetLabel 2008-02-05 09:44:20 -08:00
netlabel_domainhash.c netlabel: Add network address selectors to the NetLabel/LSM domain mapping 2008-10-10 10:16:32 -04:00
netlabel_domainhash.h netlabel: Add network address selectors to the NetLabel/LSM domain mapping 2008-10-10 10:16:32 -04:00
netlabel_kapi.c selinux: Set socket NetLabel based on connection endpoint 2008-10-10 10:16:33 -04:00
netlabel_mgmt.c netlabel: Add network address selectors to the NetLabel/LSM domain mapping 2008-10-10 10:16:32 -04:00
netlabel_mgmt.h netlabel: Add network address selectors to the NetLabel/LSM domain mapping 2008-10-10 10:16:32 -04:00
netlabel_unlabeled.c netlabel: Add network address selectors to the NetLabel/LSM domain mapping 2008-10-10 10:16:32 -04:00
netlabel_unlabeled.h NetLabel: Introduce static network labels for unlabeled connections 2008-01-30 08:17:28 +11:00
netlabel_user.c Audit: collect sessionid in netlink messages 2008-04-28 06:18:03 -04:00
netlabel_user.h Audit: collect sessionid in netlink messages 2008-04-28 06:18:03 -04:00