SAFE public projects git trees. - safe/jmp/linux-2.6/commit

SELinux: Fix SA selection semantics

Fix the selection of an SA for an outgoing packet to be at the same
context as the originating socket/flow. This eliminates the SELinux
policy's ability to use/sendto SAs with contexts other than the socket's.

With this patch applied, the SELinux policy will require one or more of the
following for a socket to be able to communicate with/without SAs:

1. To enable a socket to communicate without using labeled-IPSec SAs:

allow socket_t unlabeled_t:association { sendto recvfrom }

2. To enable a socket to communicate with labeled-IPSec SAs:

allow socket_t self:association { sendto };
allow socket_t peer_sa_t:association { recvfrom };

Signed-off-by: Venkat Yekkirala <vyekkirala@TrustedCS.com>
Signed-off-by: James Morris <jmorris@namei.org>

author	Venkat Yekkirala <vyekkirala@trustedcs.com>
	Wed, 8 Nov 2006 23:04:26 +0000 (17:04 -0600)
committer	David S. Miller <davem@sunset.davemloft.net>
	Sun, 3 Dec 2006 05:21:34 +0000 (21:21 -0800)
commit	67f83cbf081a70426ff667e8d14f94e13ed3bdca
tree	776a40733eacb9071478f865e6791daa3f6fd602	tree \| snapshot
parent	6b877699c6f1efede4545bcecc367786a472eedb	commit \| diff

include/linux/security.h		diff \| blob \| history
net/xfrm/xfrm_policy.c		diff \| blob \| history
security/dummy.c		diff \| blob \| history
security/selinux/hooks.c		diff \| blob \| history
security/selinux/include/xfrm.h		diff \| blob \| history
security/selinux/xfrm.c		diff \| blob \| history