linux-hardened/net/netlabel
Paul Moore 07feee8f81 netlabel: Cleanup the Smack/NetLabel code to fix incoming TCP connections
This patch cleans up a lot of the Smack network access control code.  The
largest changes are to fix the labeling of incoming TCP connections in a
manner similar to the recent SELinux changes which use the
security_inet_conn_request() hook to label the request_sock and let the label
move to the child socket via the normal network stack mechanisms.  In addition
to the incoming TCP connection fixes this patch also removes the smk_labled
field from the socket_smack struct as the minor optimization advantage was
outweighed by the difficulty in maintaining it's proper state.

Signed-off-by: Paul Moore <paul.moore@hp.com>
Acked-by: Casey Schaufler <casey@schaufler-ca.com>
Signed-off-by: James Morris <jmorris@namei.org>
2009-03-28 15:01:37 +11:00
..
Kconfig [NETLABEL]: Fix build failure. 2006-11-05 16:44:06 -08:00
Makefile netlabel: Add a generic way to create ordered linked lists of network addrs 2008-10-10 10:16:32 -04:00
netlabel_addrlist.c net: replace NIPQUAD() in net/*/ 2008-10-31 00:54:56 -07:00
netlabel_addrlist.h netlabel: Fix compilation warnings in net/netlabel/netlabel_addrlist.c 2008-10-30 10:44:48 -04:00
netlabel_cipso_v4.c netlabel: Update kernel configuration API 2008-12-31 12:54:11 -05:00
netlabel_cipso_v4.h netlabel: Add configuration support for local labeling 2008-10-10 10:16:34 -04:00
netlabel_domainhash.c netlabel: Update kernel configuration API 2008-12-31 12:54:11 -05:00
netlabel_domainhash.h netlabel: Update kernel configuration API 2008-12-31 12:54:11 -05:00
netlabel_kapi.c netlabel: Cleanup the Smack/NetLabel code to fix incoming TCP connections 2009-03-28 15:01:37 +11:00
netlabel_mgmt.c net: remove redundant argument comments 2008-11-21 17:15:03 -08:00
netlabel_mgmt.h netlabel: Add network address selectors to the NetLabel/LSM domain mapping 2008-10-10 10:16:32 -04:00
netlabel_unlabeled.c netlabel: Update kernel configuration API 2008-12-31 12:54:11 -05:00
netlabel_unlabeled.h netlabel: Update kernel configuration API 2008-12-31 12:54:11 -05:00
netlabel_user.c Audit: collect sessionid in netlink messages 2008-04-28 06:18:03 -04:00
netlabel_user.h Audit: collect sessionid in netlink messages 2008-04-28 06:18:03 -04:00