On Wed, Aug 13, 2014 at 09:42:14PM +0200, Lennart Poettering wrote:
On Tue, 05.08.14 13:46, Michal Sekletar (msekl...@redhat.com) wrote:
This makes possible to spawn service instances triggered by socket with
MLS/MCS SELinux labels which are created based on information provided by
On Wed, 20.08.14 12:01, Michal Sekletar (msekl...@redhat.com) wrote:
+if (context-selinux_labeled_net
use_selinux()) {
+_cleanup_free_ char *label = NULL;
+
+err =
On Wed, Aug 20, 2014 at 03:29:37PM +0200, Lennart Poettering wrote:
On Wed, 20.08.14 12:01, Michal Sekletar (msekl...@redhat.com) wrote:
+if (context-selinux_labeled_net
use_selinux()) {
+_cleanup_free_ char *label = NULL;
On Wed, Aug 13, 2014 at 09:42:14PM +0200, Lennart Poettering wrote:
snip
@@ -1773,6 +1782,9 @@ static void socket_enter_running(Socket *s, int cfd) {
cfd = -1;
s-n_connections ++;
+if (s-selinux_labeled_net)
+
On Wed, 20.08.14 19:08, Michal Sekletar (msekl...@redhat.com) wrote:
On Wed, Aug 13, 2014 at 09:42:14PM +0200, Lennart Poettering wrote:
snip
@@ -1773,6 +1782,9 @@ static void socket_enter_running(Socket *s, int
cfd) {
cfd = -1;
s-n_connections
On Tue, 05.08.14 13:46, Michal Sekletar (msekl...@redhat.com) wrote:
This makes possible to spawn service instances triggered by socket with
MLS/MCS SELinux labels which are created based on information provided by
connected peer.
Implementation of label_get_socket_label derived from
This makes possible to spawn service instances triggered by socket with
MLS/MCS SELinux labels which are created based on information provided by
connected peer.
Implementation of label_get_socket_label derived from xinetd.
---
man/systemd.socket.xml| 11 ++
