Paul Moore 07feee8f81 netlabel: Cleanup the Smack/NetLabel code to fix incoming TCP connections ... This patch cleans up a lot of the Smack network access control code. The largest changes are to fix the labeling of incoming TCP connections in a manner similar to the recent SELinux changes which use the security_inet_conn_request() hook to label the request_sock and let the label move to the child socket via the normal network stack mechanisms. In addition to the incoming TCP connection fixes this patch also removes the smk_labled field from the socket_smack struct as the minor optimization advantage was outweighed by the difficulty in maintaining it's proper state. Signed-off-by: Paul Moore <paul.moore@hp.com> Acked-by: Casey Schaufler <casey@schaufler-ca.com> Signed-off-by: James Morris <jmorris@namei.org>		2009-03-28 15:01:37 +11:00
..
integrity/ima	integrity: ima iint radix_tree_lookup locking fix	2009-02-23 09:54:53 +11:00
keys	keys: make procfiles per-user-namespace	2009-02-27 12:35:15 +11:00
selinux	selinux: Remove the "compat_net" compatibility code	2009-03-28 15:01:37 +11:00
smack	netlabel: Cleanup the Smack/NetLabel code to fix incoming TCP connections	2009-03-28 15:01:37 +11:00
tomoyo	TOMOYO: Fix a typo.	2009-03-27 19:03:44 +11:00
capability.c	lsm: Remove the socket_post_accept() hook	2009-03-28 15:01:37 +11:00
commoncap.c	Merge branch 'next' into for-linus	2009-01-07 09:58:22 +11:00
device_cgroup.c	devices cgroup: allow mkfifo	2009-01-08 08:31:03 -08:00
inode.c	Merge branch 'master' into next	2009-02-06 11:01:45 +11:00
Kconfig	Kconfig and Makefile	2009-02-12 15:19:00 +11:00
Makefile	security: change link order of LSMs so security=tomoyo works	2009-02-12 16:29:04 +11:00
root_plug.c	Revert "CRED: Fix regression in cap_capable() as shown up by sys_faccessat() [ver #2]"	2009-01-07 09:21:54 +11:00
security.c	lsm: Remove the socket_post_accept() hook	2009-03-28 15:01:37 +11:00