On Friday, November 07, 2014 01:52:09 PM Richard Haines wrote: > This is an RFC patch. Thanks for your patch, I appreciate the time and effort that went into developing it. Unfortunately, I think this patch may be a bit too simplistic. I haven't looked too closely at the SCTP code in recent times, but from my earlier look, SCTP associations stuck out as something that will need special handling and I don't see that in this initial patch. From what I could see, SCTP associations seem close-ish to TCP connections and we may be able to handle them in a similar manner, but I can't say for certain. Someone would need to investigate this further. There is also an issue of multi-homing which might, or might not, present an issue for peer labeling, but once again I can't say for certain. I'm also not entirely sure if we need any special handling for the SCTP handshake (see TCP's connection request sockets). Hopefully not, but something to be aware of if you keep working on this. I *really* don't want to scare you off of working on SCTP support, I just want to caution you that it likely isn't as easy as adding basic support for a new object class. -- paul moore www.paul-moore.com _______________________________________________ Selinux mailing list Selinux@xxxxxxxxxxxxx To unsubscribe, send email to Selinux-leave@xxxxxxxxxxxxx. To get help, send an email containing "help" to Selinux-request@xxxxxxxxxxxxx.
