Pandora Sourcecodes - pandora-kernel.git/commit

author	Paul Moore <paul.moore@hp.com>
	Mon, 30 Oct 2006 23:22:15 +0000 (15:22 -0800)
committer	David S. Miller <davem@sunset.davemloft.net>
	Mon, 30 Oct 2006 23:24:49 +0000 (15:24 -0800)
commit	f8687afefcc821fc47c75775eec87731fe3de360
tree	9835a3c95fb94597ede42cfdf732b97cc495c9bf	tree \| snapshot
parent	920b868ae1dfdac77c5e8c97e7067b23680f043e	commit \| diff

[NetLabel]: protect the CIPSOv4 socket option from setsockopt()

This patch makes two changes to protect applications from either removing or
tampering with the CIPSOv4 IP option on a socket. The first is the requirement
that applications have the CAP_NET_RAW capability to set an IPOPT_CIPSO option
on a socket; this prevents untrusted applications from setting their own
CIPSOv4 security attributes on the packets they send. The second change is to
SELinux and it prevents applications from setting any IPv4 options when there
is an IPOPT_CIPSO option already present on the socket; this prevents
applications from removing CIPSOv4 security attributes from the packets they
send.

Signed-off-by: Paul Moore <paul.moore@hp.com>
Signed-off-by: James Morris <jmorris@namei.org>
Signed-off-by: David S. Miller <davem@davemloft.net>

net/ipv4/cipso_ipv4.c		diff \| blob \| history
net/ipv4/ip_options.c		diff \| blob \| history
security/selinux/hooks.c		diff \| blob \| history
security/selinux/include/selinux_netlabel.h		diff \| blob \| history
security/selinux/ss/services.c		diff \| blob \| history