summaryrefslogtreecommitdiff
path: root/README
diff options
context:
space:
mode:
authorPaul Moore <paul.moore@hp.com>2008-10-10 14:16:33 (GMT)
committerPaul Moore <paul.moore@hp.com>2008-10-10 14:16:33 (GMT)
commit014ab19a69c325f52d7bae54ceeda73d6307ae0c (patch)
tree8a69c490accb7d5454bdfeb8c078d846729aeb60 /README
parent948bf85c1bc9a84754786a9d5dd99b7ecc46451e (diff)
downloadlinux-014ab19a69c325f52d7bae54ceeda73d6307ae0c.tar.xz
selinux: Set socket NetLabel based on connection endpoint
Previous work enabled the use of address based NetLabel selectors, which while highly useful, brought the potential for additional per-packet overhead when used. This patch attempts to solve that by applying NetLabel socket labels when sockets are connect()'d. This should alleviate the per-packet NetLabel labeling for all connected sockets (yes, it even works for connected DGRAM sockets). Signed-off-by: Paul Moore <paul.moore@hp.com> Reviewed-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'README')
0 files changed, 0 insertions, 0 deletions