Received: by 2002:a05:6a10:8395:0:0:0:0 with SMTP id n21csp600299pxh; Tue, 9 Nov 2021 15:59:36 -0800 (PST) X-Google-Smtp-Source: ABdhPJx8aKvPR86WWskuJloFq2akjz3qyhYZOkfmizqGtbe/iYnx7ueqzjdnCfj8loWRGfum6Tsx X-Received: by 2002:a92:d643:: with SMTP id x3mr8341284ilp.107.1636502376784; Tue, 09 Nov 2021 15:59:36 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1636502376; cv=none; d=google.com; s=arc-20160816; b=Uc9N6UY4ICB1U7tGXAuPYMBJz6Fe93/oE0m/AptEpJ6jFfzElenX5JwthW9+MjsdHg GvS4ezkMbVed+pZ9ehzlu/wdlb2biqvv7lYnb5B+WVoLwTMgM8Rn5OBqQhZ78pSayOH/ 9NE41u1C9ouvonqsz8E00MUJguiE60xI5/un7q2kwuKcMFjUO/a1K9irt4g4mXOqLeZC f6ooNPhM/sOZiIgnQwF+wmhMyjE26ZCLyjfPdGtggMR6TsfIpPQhYgk2fgOEvAV8tUFL cIrgULP5DNcBNVPbwKY4WyWt3VAagmppzJ6lUxLW41l2yLB3EiGD4M14nEjCkdBOSsvf NgEQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=I6uJhYgaShmiRXF04cLV4RwDYjwYFS466hjaILAfyiA=; b=KFym+cXD9x5KKqTYjtbgM3A8XoGaE65THKg90bxkcsZvGuI4jn4AsB9TCXRL93yTwj NrLsDTmvbscRwdr40q6ghihhxaxumppxX1paKGLHahvNdpNeZLwlBTgikpGUrGzL9Ri1 B4EH9gYtb5Pve6qUGpkCDhfaJcLhb6N+cmUxuayueRQFWfU8AnVLqwkdEwYiUAY+K+HM UnAZLpZs0OJZ2rc2X1buxlNuptG9TYVLwvQOo+bPe2oDtaJjVGgyyXhQatDBW/6MgyKt Xi/lgFQpVKwpgfD5hJHqJq2xh+LrTZ1S9HynWUDLsavErdjGRS2oHCaMn6kNa2CdNM4U ZzZw== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@paul-moore-com.20210112.gappssmtp.com header.s=20210112 header.b=oh++hDJX; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id 1si27799675ilz.178.2021.11.09.15.59.24; Tue, 09 Nov 2021 15:59:36 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@paul-moore-com.20210112.gappssmtp.com header.s=20210112 header.b=oh++hDJX; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S234887AbhKIPDJ (ORCPT + 97 others); Tue, 9 Nov 2021 10:03:09 -0500 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:35728 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S234902AbhKIPDH (ORCPT ); Tue, 9 Nov 2021 10:03:07 -0500 Received: from mail-ed1-x535.google.com (mail-ed1-x535.google.com [IPv6:2a00:1450:4864:20::535]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id B78BCC0613F5 for ; Tue, 9 Nov 2021 07:00:21 -0800 (PST) Received: by mail-ed1-x535.google.com with SMTP id j21so77612120edt.11 for ; Tue, 09 Nov 2021 07:00:21 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=paul-moore-com.20210112.gappssmtp.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=I6uJhYgaShmiRXF04cLV4RwDYjwYFS466hjaILAfyiA=; b=oh++hDJXIKSIULecGTYkYa8h1fLMICBrU3u7wdye21L2M7oIFkBBTlbNEb9A6pnIxr Ej8NWLSg0ouGH7XU3FEoVfa0+v5EmeL03EXz0+Rrz1z2hpVhgf9rXYnYQHfO1etJPQJj rY8a5oEBslDyPFNnQILPaj89oKk63q+xmT9LmjbTFXTnp7EzPnWJfk/rNWyAtxIzGgDI dc89cXmGMAsZ9WLVr5OpJ4I0O4cBR1AEBvtSdH53ZjwopiCVhoXi52n/Qz9dnonMZz/p Ajp7ILcPZy1K/oehLxm8oRm36X/Kldl5sktl4wqVH4Dna5Bd1D9oAMN1428zxa0YLdRT s6Sw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=I6uJhYgaShmiRXF04cLV4RwDYjwYFS466hjaILAfyiA=; b=lbxtku5ktlFvpsQkbp3BUnexIW+FjjdmTCikANXqLAmrNtRDAu9K4Bpc/so2yDHmhi ELx+B+GKkhTRb3sN6Q2HLlLqQhhNucraDnYqd1LosInNKNcNYSkONGqflWYiBXYps+cx tvfgYkFmaQmupgGOt/kzF4xC0EJ0kJooEHomBO8ahvPN9/rIpdOVLNzlEKVuAbId8FcO 0E1NjW8y2bbGe1/8Ldn2MqUQp1+gtKS+PIFkcfeLMYkFPd5q5iqVzYZjuDBlYFqO8JXP qzCO8hwbGV7a8n6NF83gCbM+Npy65aCOmk1IUk5QBiinMWfyk09MQMamaagNsPEQkiv0 djYQ== X-Gm-Message-State: AOAM533g+1ioY5RUa1ox8vXzEA5Y0L1MHXFQOC4q3KPon73fdLz562Lh BHn0Xt3VW4d5wS/eaR32vcrrS2cajAu/WIk/4fay X-Received: by 2002:a17:906:6592:: with SMTP id x18mr10277115ejn.307.1636470019526; Tue, 09 Nov 2021 07:00:19 -0800 (PST) MIME-Version: 1.0 References: <20211104195949.135374-1-omosnace@redhat.com> <20211109062140.2ed84f96@kicinski-fedora-pc1c0hjn.dhcp.thefacebook.com> In-Reply-To: <20211109062140.2ed84f96@kicinski-fedora-pc1c0hjn.dhcp.thefacebook.com> From: Paul Moore Date: Tue, 9 Nov 2021 10:00:08 -0500 Message-ID: Subject: Re: [PATCH net] selinux: fix SCTP client peeloff socket labeling To: Jakub Kicinski Cc: Ondrej Mosnacek , Xin Long , netdev@vger.kernel.org, davem@davemloft.net, Richard Haines , Vlad Yasevich , Neil Horman , Marcelo Ricardo Leitner , linux-sctp@vger.kernel.org, selinux@vger.kernel.org, linux-kernel@vger.kernel.org Content-Type: text/plain; charset="UTF-8" Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Tue, Nov 9, 2021 at 9:21 AM Jakub Kicinski wrote: > On Thu, 4 Nov 2021 20:59:49 +0100 Ondrej Mosnacek wrote: > > As agreed with Xin Long, I'm posting this fix up instead of him. I am > > now fairly convinced that this is the right way to deal with the > > immediate problem of client peeloff socket labeling. I'll work on > > addressing the side problem regarding selinux_socket_post_create() > > being called on the peeloff sockets separately. > > IIUC Paul would like to see this part to come up in the same series. Just to reaffirm the IIUC part - yes, your understanding is correct. -- paul moore www.paul-moore.com