Paul Moore 014ab19a69 selinux: Set socket NetLabel based on connection endpoint ... Previous work enabled the use of address based NetLabel selectors, which while highly useful, brought the potential for additional per-packet overhead when used. This patch attempts to solve that by applying NetLabel socket labels when sockets are connect()'d. This should alleviate the per-packet NetLabel labeling for all connected sockets (yes, it even works for connected DGRAM sockets). Signed-off-by: Paul Moore <paul.moore@hp.com> Reviewed-by: James Morris <jmorris@namei.org>		2008-10-10 10:16:33 -04:00
..
include	selinux: Set socket NetLabel based on connection endpoint	2008-10-10 10:16:33 -04:00
ss	selinux: Fix a problem in security_netlbl_sid_to_secattr()	2008-10-10 10:16:30 -04:00
Kconfig	selinux: introduce permissive types	2008-04-18 20:26:11 +10:00
Makefile	SELinux: Add network port SID cache	2008-04-18 20:26:16 +10:00
avc.c	Audit: standardize string audit interfaces	2008-04-28 06:19:22 -04:00
exports.c	SELinux: remove redundant exports	2008-04-19 09:52:36 +10:00
hooks.c	selinux: Set socket NetLabel based on connection endpoint	2008-10-10 10:16:33 -04:00
netif.c	SELinux fixups needed for preemptable RCU from -rt	2008-04-22 15:37:23 +10:00
netlabel.c	selinux: Set socket NetLabel based on connection endpoint	2008-10-10 10:16:33 -04:00
netlink.c	SELinux: netlink.c whitespace, syntax, and static declaraction cleanups	2008-04-21 19:05:05 +10:00
netnode.c	SELinux: keep the code clean formating and syntax	2008-07-14 15:01:36 +10:00
netport.c	SELinux: keep the code clean formating and syntax	2008-07-14 15:01:36 +10:00
nlmsgtab.c	SELinux: nlmsgtab.c whitespace, syntax, and static declaraction cleanups	2008-04-21 19:05:07 +10:00
selinuxfs.c	SELinux: more user friendly unknown handling printk	2008-07-14 15:02:00 +10:00
xfrm.c	Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/selinux-2.6	2008-04-21 16:01:40 -07:00