[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]
Re: [redhat-lspp] Updated NetLabel patch
- From: Stephen Smalley <sds tycho nsa gov>
- To: Paul Moore <paul moore hp com>
- Cc: Chad Hanson <chanson trustedcs com>, LSPP <redhat-lspp redhat com>, Steve Grubb <sgrubb redhat com>, Venkat Yekkirala <vyekkirala trustedcs com>, James Morris <jmorris namei org>
- Subject: Re: [redhat-lspp] Updated NetLabel patch
- Date: Thu, 15 Jun 2006 15:35:14 -0400
On Thu, 2006-06-15 at 15:16 -0400, Paul Moore wrote:
> Sorry, I typed fork when I mean fork-and-exec, I understand why you
> wouldn't want to do a context transition on a fork.
>
> I guess I need to look at the xinetd sources as well as Trent's xinetd
> patch one more time as I didn't remember xinetd doing an accept(). I
> thought xinetd just setup a socket and waited for a select() to fire for
> the socket and then did the fork-and-exec. If that isn't the case then
> this is really going to require some thought ...
You'd have to accept before you could get the peer context - peer only
makes sense for a connected socket.
Per xinetd.conf, the wait attribute controls whether or not xinetd does
the accept on a per-service basis, and tcp services generally use wait =
no, which means xinetd handles accepting the connections.
--
Stephen Smalley
National Security Agency
[Date Prev][Date Next] [Thread Prev][Thread Next]
[Thread Index]
[Date Index]
[Author Index]