projects / GitHub / mt8127 / android_kernel_alcatel_ttab.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 774d75e) | patch
selinux: look for IPsec labels on both inbound and outbound packets
authorPaul Moore <pmoore@redhat.com>
Tue, 10 Dec 2013 19:57:54 +0000 (14:57 -0500)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Thu, 9 Jan 2014 20:24:24 +0000 (12:24 -0800)
commit070357081f37bb70ff1a09630c50529188846280
tree2a1f6b0d684588ddebb1f34e061e72f587c60028tree | snapshot (tar.gz zip)
parent774d75ec4ec10aba883bf1732108e3cb9eeadd54commit | diff
selinux: look for IPsec labels on both inbound and outbound packets

commit 817eff718dca4e54d5721211ddde0914428fbb7c upstream.

Previously selinux_skb_peerlbl_sid() would only check for labeled
IPsec security labels on inbound packets, this patch enables it to
check both inbound and outbound traffic for labeled IPsec security
labels.

Reported-by: Janak Desai <Janak.Desai@gtri.gatech.edu>
Signed-off-by: Paul Moore <pmoore@redhat.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
security/selinux/hooks.c diff | blob | blame | history
security/selinux/include/xfrm.h diff | blob | blame | history
security/selinux/xfrm.c diff | blob | blame | history
kernel source for telekom puls (alcatel/mediatek)