OSCL-LXR linux-6.0.1/​Documentation/​networking/​secid.rst	Source navigation Diff markup Identifier search General search
	Version: linux-6.0.1 spark-3.0.0 hadoop-3.2.0-src hadoop-3.3.0-src spark-2.4.7 linux-4.15.13 hadoop-2.7.4-src Revert   Change

 .. SPDX-License-Identifier: GPL-2.0
 
 =================
 LSM/SeLinux secid
 =================
 
 flowi structure:
 
 The secid member in the flow structure is used in LSMs (e.g. SELinux) to indicate
 the label of the flow. This label of the flow is currently used in selecting
 matching labeled xfrm(s).
 
 If this is an outbound flow, the label is derived from the socket, if any, or
 the incoming packet this flow is being generated as a response to (e.g. tcp
 resets, timewait ack, etc.). It is also conceivable that the label could be
 derived from other sources such as process context, device, etc., in special
 cases, as may be appropriate.
 
 If this is an inbound flow, the label is derived from the IPSec security
 associations, if any, used by the packet.

This page was automatically generated by the 2.1.0 LXR engine. The LXR team