On Wed, 27 May 2009, Stephen Smalley wrote: > - Need to define a sctp_socket class in the policy and kernel (presently > they get mapped to rawip_socket). > - Need to extend the node_bind/name_bind checking to handle multiple > address binding for SCTP. > - Need to extend the name_connect checking to support SCTP. > - Need to add getpeersec support (also missing for DCCP). > - Need to extend selinux_parse_skb* to handle it. > - Need to update libsepol/libsemanage, checkpolicy, and semanage to > support it. Added to the todo list http://selinuxproject.org/page/Kernel_Development#To_Do_List -- James Morris <jmorris@xxxxxxxxx> -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with the words "unsubscribe selinux" without quotes as the message.
