[NetLabel]: core NetLabel subsystem Add a new kernel subsystem, NetLabel, to provide explicit packet labeling services (CIPSO, RIPSO, etc.) to LSM developers. NetLabel is designed to work in conjunction with a LSM to intercept and decode security labels on incoming network packets as well as ensure that outgoing network packets are labeled according to the security mechanism employed by the LSM. The NetLabel subsystem is configured through a Generic NETLINK interface described in the header files included in this patch. Signed-off-by: Paul Moore <paul.moore@hp.com> Signed-off-by: David S. Miller <davem@davemloft.net>

commit: d15c345fe3b8dfda0fa5a1d2143a35fffa746a43 [log] [tgz]
author: Paul Moore <paul.moore@hp.com> Thu Aug 03 16:48:37 2006 -0700
committer: David S. Miller <davem@sunset.davemloft.net> Fri Sep 22 14:53:34 2006 -0700
tree: 7de6afd5f4de2fca01eaca879e342ab493dc0bba
parent: 446fda4f26822b2d42ab3396aafcedf38a9ff2b6 [diff] [blame]
diff --git a/net/netlabel/Kconfig b/net/netlabel/Kconfig
new file mode 100644
index 0000000..fe23cb7
--- /dev/null
+++ b/net/netlabel/Kconfig

@@ -0,0 +1,14 @@
+#
+# NetLabel configuration
+#
+
+config NETLABEL
+	bool "NetLabel subsystem support"
+	depends on NET && SECURITY
+	default n
+	---help---
+	  NetLabel provides support for explicit network packet labeling
+	  protocols such as CIPSO and RIPSO.  For more information see
+	  Documentation/netlabel.
+
+	  If you are unsure, say N.
commit	d15c345fe3b8dfda0fa5a1d2143a35fffa746a43	[log] [tgz]
author	Paul Moore <paul.moore@hp.com>	Thu Aug 03 16:48:37 2006 -0700
committer	David S. Miller <davem@sunset.davemloft.net>	Fri Sep 22 14:53:34 2006 -0700
tree	7de6afd5f4de2fca01eaca879e342ab493dc0bba
parent	446fda4f26822b2d42ab3396aafcedf38a9ff2b6 [diff] [blame]