projects / cascardo / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ceba183) | patch
netlabel: Prevent setsockopt() from changing the hop-by-hop option.
authorHuw Davies <huw@codeweavers.com>
Mon, 27 Jun 2016 19:05:27 +0000 (15:05 -0400)
committerPaul Moore <paul@paul-moore.com>
Mon, 27 Jun 2016 19:05:27 +0000 (15:05 -0400)
commit1f440c99d3207d684a3ac48d6e528af548b5c915
tree9cbeedd54d1e5363d1ae012ce75e5bbb1fe0ffb3tree | snapshot
parentceba1832b1b2da0149c51de62a847c00bca1677acommit | diff
netlabel: Prevent setsockopt() from changing the hop-by-hop option.

If a socket has a netlabel in place then don't let setsockopt() alter
the socket's IPv6 hop-by-hop option.  This is in the same spirit as
the existing check for IPv4.

Signed-off-by: Huw Davies <huw@codeweavers.com>
Signed-off-by: Paul Moore <paul@paul-moore.com>
security/selinux/netlabel.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.