On Tuesday 11 August 2009 04:36:22 pm Eric Paris wrote:

On Mon, Aug 10, 2009 at 1:28 PM, Paul Moore[off-list ref] wrote:

quoted

Add support for the new TUN LSM hooks: security_tun_dev_create(),
security_tun_dev_post_create() and security_tun_dev_attach().  This
includes the addition of a new object class, tun_socket, which represents
the socks associated with TUN devices.  The _tun_dev_create() and
_tun_dev_post_create() hooks are fairly similar to the standard socket
functions but _tun_dev_attach() is a bit special.  The _tun_dev_attach()
is unique because it involves a domain attaching to an existing TUN
device and its associated tun_socket object, an operation which does not
exist with standard sockets and most closely resembles a relabel
operation.

Looks good to me, feel free to add my Ack

Thanks, I added both acks.

-- 
paul moore
linux @ hp