SELinux Mailing List - NSA/CSS

Skip All Menus Skip Top Menu

Top Navigation Menus

Skip Research Menus

Research Menu

Research Security Enhanced Linux What's New Frequently Asked Questions Background Documents License Download Participating Mail List Archives Remaining Work Contributors Related Work Press Releases Information Assurance Research NIARL In-house Research Areas Mathematical Sciences Program Sabbaticals Computer & Information Sciences Research Technology Transfer Advanced Computing Advanced Mathematics Communications & Networking Information Processing Microelectronics Other Technologies Technology Fact Sheets Publications Related Links	Skip Search Box Searchbox SELinux Mailing List Re: Issue on getting security context of socket and message This message: [ Message body ] [ More options ] Related messages: [ Next message ] [ Previous message ] [ In reply to ] [ Next in thread ] [ Replies ] From: Stephen Smalley <sds_at_epoch.ncsc.mil> Date: Tue, 09 Nov 2004 10:39:21 -0500 On Tue, 2004-11-09 at 05:58, Park Lee wrote: > In flask, as we know, sockets effectively serve as communication > proxies for processes in the Flask control model. Consequently, > sockets are labeled with the label of the creating process by default. > Messages are associated with both the label of their sending socket > and a separate message label. By default, this message label is the > same as the sending socket label. > Then how can we get the security context of socket and message > respectively in linux kernel space and user space respectively (i.e. > what functions and commands could we use to achieve our goal)? > And is messages here refer to packages in network? In the kernel, you can obtain the security context of a socket via the security field of its associated inode. Look at socket_has_perm() and selinux_socket_sock_rcv_skb() in security/selinux/hooks.c for examples. Unix domain sockets can also use the sk_security field in the struct sock for security state (e.g. peer SID), but INET sockets cannot safely do so at present. Remember that most of the LSM networking security fields and hooks were rejected by the mainline kernel, so only limited support exists in the current SELinux and there is no message labeling at all. Since sys_security was rejected by the mainline kernel, the extended socket API of SELinux is not presently supported; we will ultimately have to revisit it in the future when we have better motivating examples of real applications that use it. While fgetfilecon()->fgetxattr() could conceivably export the security context of a local socket, that would require implementing a fake xattr handler for the socket code; alternative would be to implement it via getsockopt(). There is a getpeercon(3) function in libselinux that allows you to get the context of a peer for a Unix domain stream socket; this is internally implemented via getsockopt(). -- Stephen Smalley <sds@epoch.ncsc.mil> National Security Agency -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message. Received on Tue 9 Nov 2004 - 10:43:21 EST This message: [ Message body ] Next message: Erich Schubert: "tty files, console login on debian" Previous message: Park Lee: "Issue on getting security context of socket and message" In reply to: Park Lee: "Issue on getting security context of socket and message" Next in thread: Park Lee: "Re: Issue on getting security context of socket and message" Reply: Park Lee: "Re: Issue on getting security context of socket and message" Reply: Park Lee: "Re: Issue on getting security context of socket and message" Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]
	Date Posted: Jan 15, 2009 \| Last Modified: Jan 15, 2009 \| Last Reviewed: Jan 15, 2009

bottom