selinux: initialize sock security class to default value - linux - Linux Kernel (branches are rebased on master from time to time)

diff options

author	Stephen Smalley <sds@tycho.nsa.gov>	2015-07-10 17:19:57 -0400
committer	Paul Moore <pmoore@redhat.com>	2015-07-13 13:31:59 -0400
commit	5dee25d08eac01472904b0ab32ce35edee5c0518 (patch)
tree	41dc3bcb96fa1ceaf73de869ffdf8d2d30e8a3b9 /CREDITS
parent	9629d04ae06812f217846b69728c969afee690b4 (diff)
download	linux-5dee25d08eac01472904b0ab32ce35edee5c0518.tar.bz2

selinux: initialize sock security class to default value

Initialize the security class of sock security structures to the generic socket class. This is similar to what is already done in inode_alloc_security for files. Generally the sclass field will later by set by socket_post_create or sk_clone or sock_graft, but for protocol implementations that fail to call any of these for newly accepted sockets, we want some sane default that will yield a legitimate avc denied message with non-garbage values for class and permission. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: Paul Moore <pmoore@redhat.com>

Diffstat (limited to 'CREDITS')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: