From: James Morris <[EMAIL PROTECTED]> Date: Mon, 13 Nov 2006 16:15:06 -0500 (EST)
> This patch implements SELinux kernel support for DCCP > (http://linux-net.osdl.org/index.php/DCCP), which is similar in operation > to TCP in terms of connected state between peers. > > The SELinux support for DCCP is thus modeled on existing handling of TCP. > > A new DCCP socket class is introduced, to allow protocol differentation. > The permissions for this class inherit all of the socket permissions, as > well as the current TCP permissions (node_bind, name_bind etc). IPv4 and > IPv6 are supported, although labeled networking is not, at this stage. > > Patches for SELinux userspace are at: > http://people.redhat.com/jmorris/selinux/dccp/user/ > > I've performed some basic testing, and it seems to be working as expected. > Adding policy support is similar to TCP, the only real difference being > that it's a different protocol. > > Please apply for 2.6.20. > > Also available via git: > git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/selinux-net-2.6.20.git > > Acked-by: Stephen Smalley <[EMAIL PROTECTED]> > Signed-off-by: James Morris <[EMAIL PROTECTED]> Applied to net-2.6.20, thanks. - To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html
