SELinux: Return correct context for SO_PEERSEC Fix SO_PEERSEC for tcp sockets to return the security context of the peer (as represented by the SA from the peer) as opposed to the SA used by the local/source socket. Signed-off-by: Venkat Yekkirala <vyekkirala@TrustedCS.com> Signed-off-by: James Morris <jmorris@namei.org>

commit: 6b877699c6f1efede4545bcecc367786a472eedb [log] [tgz]
author: Venkat Yekkirala <vyekkirala@trustedcs.com> Wed Nov 08 17:04:09 2006 -0600
committer: David S. Miller <davem@sunset.davemloft.net> Sat Dec 02 21:21:33 2006 -0800
tree: c0a60dc90578fa9f16d4496e2700bc285eab47c0
parent: c1a856c9640c9ff3d70bbd8214b6a0974609eef8 [diff] [blame]
diff --git a/security/dummy.c b/security/dummy.c
index 838d844..0148d15 100644
--- a/security/dummy.c
+++ b/security/dummy.c

@@ -828,6 +828,11 @@
 {
 }
 
+static inline void dummy_inet_conn_established(struct sock *sk,
+			struct sk_buff *skb)
+{
+}
+
 static inline void dummy_req_classify_flow(const struct request_sock *req,
 			struct flowi *fl)
 {
@@ -1108,6 +1113,7 @@
 	set_to_dummy_if_null(ops, sock_graft);
 	set_to_dummy_if_null(ops, inet_conn_request);
 	set_to_dummy_if_null(ops, inet_csk_clone);
+	set_to_dummy_if_null(ops, inet_conn_established);
 	set_to_dummy_if_null(ops, req_classify_flow);
  #endif	/* CONFIG_SECURITY_NETWORK */
 #ifdef  CONFIG_SECURITY_NETWORK_XFRM
commit	6b877699c6f1efede4545bcecc367786a472eedb	[log] [tgz]
author	Venkat Yekkirala <vyekkirala@trustedcs.com>	Wed Nov 08 17:04:09 2006 -0600
committer	David S. Miller <davem@sunset.davemloft.net>	Sat Dec 02 21:21:33 2006 -0800
tree	c0a60dc90578fa9f16d4496e2700bc285eab47c0
parent	c1a856c9640c9ff3d70bbd8214b6a0974609eef8 [diff] [blame]