From nobody Thu Oct  2 02:16:47 2025
Received: from mail-m49216.qiye.163.com (mail-m49216.qiye.163.com
 [45.254.49.216])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id 8E4EB2D6E52;
	Wed, 24 Sep 2025 09:18:52 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
 arc=none smtp.client-ip=45.254.49.216
ARC-Seal: i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1758705538; cv=none;
 b=o+fwmc/BVW63bJ1m2IdgyeKhQ20zpySTrRwD8BIMxHQYAlLEsWuoDftw8d2jno+dprF/bHP1acZ8yjpKBfmVkcqLZjDekqhLWAXfEDTTguvSA3slcSfKRJjGCSzNpuuXBtm6U64dl8siXJuZPy7Jq7iyV89TvbrU3MgYuI3pTQY=
ARC-Message-Signature: i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1758705538; c=relaxed/simple;
	bh=asByUnYndxGWQSTcN6eJ9nWYjGYh8kqbP7hJ6jPn6EA=;
	h=From:To:Cc:Subject:Date:Message-ID:MIME-Version:Content-Type;
 b=eZIuQL4Drpmkbr6NLAhdW/vhoL7qp3OMb0gRiN94WsapwAtp+QJvSN2IwCU3EfmU87CGQSE2yMLFFBFFmlv5lJOnErCOM8vPddto9US7IOe9IgUdljUX7uzqBTtb2N1HnbNkdCjm83gduO3GK7MkJlud7za/IMtChi8S3rUUfZM=
ARC-Authentication-Results: i=1; smtp.subspace.kernel.org;
 dmarc=pass (p=quarantine dis=none) header.from=cqsoftware.com.cn;
 spf=pass smtp.mailfrom=cqsoftware.com.cn;
 dkim=pass (1024-bit key) header.d=cqsoftware.com.cn
 header.i=@cqsoftware.com.cn header.b=Cr5PzZ0e;
 arc=none smtp.client-ip=45.254.49.216
Authentication-Results: smtp.subspace.kernel.org;
 dmarc=pass (p=quarantine dis=none) header.from=cqsoftware.com.cn
Authentication-Results: smtp.subspace.kernel.org;
 spf=pass smtp.mailfrom=cqsoftware.com.cn
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (1024-bit key) header.d=cqsoftware.com.cn
 header.i=@cqsoftware.com.cn header.b="Cr5PzZ0e"
Received: from fedora.localdomain (unknown [123.53.39.124])
	by smtp.qiye.163.com (Hmail) with ESMTP id 23e5d25cb;
	Wed, 24 Sep 2025 16:43:19 +0800 (GMT+08:00)
From: Shuo Zhao <zhaoshuo@cqsoftware.com.cn>
To: alexs@kernel.org,
	si.yanteng@linux.dev,
	corbet@lwn.net
Cc: dzm91@hust.edu.cn,
	linux-doc@vger.kernel.org,
	linux-kernel@vger.kernel.org,
	Shuo Zhao <zhaoshuo@cqsoftware.com.cn>
Subject: [PATCH v2] docs/zh_CN: Add security SCTP Chinese translation
Date: Wed, 24 Sep 2025 16:43:16 +0800
Message-ID: <20250924084317.49051-1-zhaoshuo@cqsoftware.com.cn>
X-Mailer: git-send-email 2.49.0
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-HM-Tid: 0a997ae430ab09d0kunm3c84dfde5e427d
X-HM-MType: 1
X-HM-Spam-Status: e1kfGhgUHx5ZQUpXWQgPGg8OCBgUHx5ZQUlOS1dZFg8aDwILHllBWSg2Ly
	tZV1koWUFITzdXWS1ZQUlXWQ8JGhUIEh9ZQVkZQh8eVk8ZHhlCH0tOH0lISFYVFAkWGhdVEwETFh
	oSFyQUDg9ZV1kYEgtZQVlKSUhVTkhVSEJVSklPWVdZFhoPEhUdFFlBWU9LSFVKS0lPT09IVUpLS1
	VKQktLWQY+
DKIM-Signature: a=rsa-sha256;
	b=Cr5PzZ0eg5LMrUJOeg7Nl65Wp6Bk+48N7dK82nX0S/llZDdLJfEPA6Q1L0LcKoUzgZkWEi+po4i2qEqn0LK+j/gqndG/1+QhJfPTm/DjECLcZoK5qlsnGn9Y4N2qrKm0ipXp1Wss7G+aJh928cBOKSE5ZEvrdkeMS3NnpJsQo2Y=;
 c=relaxed/relaxed; s=default; d=cqsoftware.com.cn; v=1;
	bh=QE5oBSSJlGhEhN/DAzjtRwRdpPP9y8WFG4x8Hb19bjo=;
	h=date:mime-version:subject:message-id:from;

Translate .../security/SCTP.rst into Chinese.

Update the translation through commit da51bbcdbace
("Docs: typos/spelling")

Signed-off-by: Shuo Zhao <zhaoshuo@cqsoftware.com.cn>
Reviewed-by: Yanteng Si <si.yanteng@linux.dev>
---

v2:

Add reviewer Yanteng Si.

 .../translations/zh_CN/security/SCTP.rst      | 317 ++++++++++++++++++
 .../translations/zh_CN/security/index.rst     |   2 +-
 2 files changed, 318 insertions(+), 1 deletion(-)
 create mode 100644 Documentation/translations/zh_CN/security/SCTP.rst

diff --git a/Documentation/translations/zh_CN/security/SCTP.rst b/Documenta=
tion/translations/zh_CN/security/SCTP.rst
new file mode 100644
index 000000000000..f2774b0d66b5
--- /dev/null
+++ b/Documentation/translations/zh_CN/security/SCTP.rst
@@ -0,0 +1,317 @@
+.. SPDX-License-Identifier: GPL-2.0
+.. include:: ../disclaimer-zh_CN.rst
+
+:Original: Documentation/security/SCTP.rst
+
+:=E7=BF=BB=E8=AF=91:
+ =E8=B5=B5=E7=A1=95 Shuo Zhao <zhaoshuo@cqsoftware.com.cn>
+
+=3D=3D=3D=3D
+SCTP
+=3D=3D=3D=3D
+
+SCTP=E7=9A=84LSM=E6=94=AF=E6=8C=81
+=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
+
+=E5=AE=89=E5=85=A8=E9=92=A9=E5=AD=90
+--------
+
+=E5=AF=B9=E4=BA=8E=E5=AE=89=E5=85=A8=E6=A8=A1=E5=9D=97=E6=94=AF=E6=8C=81=
=EF=BC=8C=E5=B7=B2=E7=BB=8F=E5=AE=9E=E7=8E=B0=E4=BA=86=E4=B8=89=E4=B8=AA=E7=
=89=B9=E5=AE=9A=E4=BA=8ESCTP=E7=9A=84=E9=92=A9=E5=AD=90::
+
+	security_sctp_assoc_request()
+	security_sctp_bind_connect()
+	security_sctp_sk_clone()
+	security_sctp_assoc_established()
+
+=E8=BF=99=E4=BA=9B=E9=92=A9=E5=AD=90=E7=9A=84=E7=94=A8=E6=B3=95=E5=9C=A8=
=E4=B8=8B=E9=9D=A2=E7=9A=84 `SCTP=E7=9A=84SELinux=E6=94=AF=E6=8C=81`_ =E4=
=B8=80=E7=AB=A0=E4=B8=AD=E6=8F=8F=E8=BF=B0SELinux=E7=9A=84=E5=AE=9E=E7=8E=
=B0=E3=80=82
+
+
+security_sctp_assoc_request()
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+=E5=B0=86=E5=85=B3=E8=81=94INIT=E6=95=B0=E6=8D=AE=E5=8C=85=E7=9A=84 ``@aso=
c`` =E5=92=8C ``@chunk->skb`` =E4=BC=A0=E9=80=92=E7=BB=99=E5=AE=89=E5=85=A8=
=E6=A8=A1=E5=9D=97=E3=80=82
+=E6=88=90=E5=8A=9F=E6=97=B6=E8=BF=94=E5=9B=9E 0=EF=BC=8C=E5=A4=B1=E8=B4=A5=
=E6=97=B6=E8=BF=94=E5=9B=9E=E9=94=99=E8=AF=AF=E3=80=82
+::
+
+	@asoc - =E6=8C=87=E5=90=91sctp=E5=85=B3=E8=81=94=E7=BB=93=E6=9E=84=E7=9A=
=84=E6=8C=87=E9=92=88=E3=80=82
+	@skb - =E6=8C=87=E5=90=91=E5=8C=85=E5=90=AB=E5=85=B3=E8=81=94=E6=95=B0=E6=
=8D=AE=E5=8C=85skbuff=E7=9A=84=E6=8C=87=E9=92=88=E3=80=82
+
+
+security_sctp_bind_connect()
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+=E5=B0=86=E4=B8=80=E4=B8=AA=E6=88=96=E5=A4=9A=E4=B8=AAIPv4/IPv6=E5=9C=B0=
=E5=9D=80=E4=BC=A0=E9=80=92=E7=BB=99=E5=AE=89=E5=85=A8=E6=A8=A1=E5=9D=97=E8=
=BF=9B=E8=A1=8C=E5=9F=BA=E4=BA=8E ``@optname`` =E7=9A=84=E9=AA=8C=E8=AF=81=
=EF=BC=8C
+=E8=BF=99=E5=B0=86=E5=AF=BC=E8=87=B4=E6=98=AF=E7=BB=91=E5=AE=9A=E8=BF=98=
=E6=98=AF=E8=BF=9E=E6=8E=A5=E6=9C=8D=E5=8A=A1=EF=BC=8C=E5=A6=82=E4=B8=8B=E9=
=9D=A2=E7=9A=84=E6=9D=83=E9=99=90=E6=A3=80=E6=9F=A5=E8=A1=A8=E6=89=80=E7=A4=
=BA=E3=80=82=E6=88=90=E5=8A=9F=E6=97=B6=E8=BF=94=E5=9B=9E 0=EF=BC=8C=E5=A4=
=B1=E8=B4=A5
+=E6=97=B6=E8=BF=94=E5=9B=9E=E9=94=99=E8=AF=AF=E3=80=82
+::
+
+	@sk      - =E6=8C=87=E5=90=91sock=E7=BB=93=E6=9E=84=E7=9A=84=E6=8C=87=E9=
=92=88=E3=80=82
+	@optname - =E9=9C=80=E8=A6=81=E9=AA=8C=E8=AF=81=E7=9A=84=E9=80=89=E9=A1=
=B9=E5=90=8D=E7=A7=B0=E3=80=82
+	@address - =E4=B8=80=E4=B8=AA=E6=88=96=E5=A4=9A=E4=B8=AAIPv4 / IPv6=E5=9C=
=B0=E5=9D=80=E3=80=82
+	@addrlen - =E5=9C=B0=E5=9D=80=E7=9A=84=E6=80=BB=E9=95=BF=E5=BA=A6=E3=80=
=82=E4=BD=BF=E7=94=A8sizeof(struct sockaddr_in)=E6=88=96
+			   sizeof(struct sockaddr_in6)=E6=9D=A5=E8=AE=A1=E7=AE=97=E6=AF=8F=E4=
=B8=AAipv4=E6=88=96ipv6=E5=9C=B0=E5=9D=80=E3=80=82
+
+  ------------------------------------------------------------------
+  |                     BIND =E7=B1=BB=E5=9E=8B=E6=A3=80=E6=9F=A5         =
                      |
+  |       @optname             |         @address contains         |
+  |----------------------------|-----------------------------------|
+  | SCTP_SOCKOPT_BINDX_ADD     | =E4=B8=80=E4=B8=AA=E6=88=96=E5=A4=9A=E4=
=B8=AA ipv4 / ipv6 =E5=9C=B0=E5=9D=80         |
+  | SCTP_PRIMARY_ADDR          | =E5=8D=95=E4=B8=AA ipv4 or ipv6 =E5=9C=B0=
=E5=9D=80             |
+  | SCTP_SET_PEER_PRIMARY_ADDR | =E5=8D=95=E4=B8=AA ipv4 or ipv6 =E5=9C=B0=
=E5=9D=80             |
+  ------------------------------------------------------------------
+
+  ------------------------------------------------------------------
+  |                   CONNECT =E7=B1=BB=E5=9E=8B=E6=A3=80=E6=9F=A5        =
                      |
+  |       @optname             |         @address contains         |
+  |----------------------------|-----------------------------------|
+  | SCTP_SOCKOPT_CONNECTX      | =E4=B8=80=E4=B8=AA=E6=88=96=E5=A4=9A=E4=
=B8=AA ipv4 / ipv6 =E5=9C=B0=E5=9D=80         |
+  | SCTP_PARAM_ADD_IP          | =E4=B8=80=E4=B8=AA=E6=88=96=E5=A4=9A=E4=
=B8=AA ipv4 / ipv6 =E5=9C=B0=E5=9D=80         |
+  | SCTP_SENDMSG_CONNECT       | =E5=8D=95=E4=B8=AA ipv4 or ipv6 =E5=9C=B0=
=E5=9D=80             |
+  | SCTP_PARAM_SET_PRIMARY     | =E5=8D=95=E4=B8=AA ipv4 or ipv6 =E5=9C=B0=
=E5=9D=80             |
+  ------------------------------------------------------------------
+
+=E6=9D=A1=E7=9B=AE ``@optname`` =E7=9A=84=E6=91=98=E8=A6=81=E5=A6=82=E4=B8=
=8B::
+
+	SCTP_SOCKOPT_BINDX_ADD - =E5=85=81=E8=AE=B8=E5=9C=A8=EF=BC=88=E5=8F=AF=E9=
=80=89=E5=9C=B0=EF=BC=89=E8=B0=83=E7=94=A8 bind(3) =E5=90=8E=EF=BC=8C=E5=85=
=B3=E8=81=94=E9=A2=9D=E5=A4=96
+							 =E7=9A=84=E7=BB=91=E5=AE=9A=E5=9C=B0=E5=9D=80=E3=80=82
+							 sctp_bindx(3) =E7=94=A8=E4=BA=8E=E5=9C=A8=E5=A5=97=E6=8E=A5=E5=AD=
=97=E4=B8=8A=E6=B7=BB=E5=8A=A0=E4=B8=80=E7=BB=84=E7=BB=91=E5=AE=9A=E5=9C=B0=
=E5=9D=80=E3=80=82
+
+	SCTP_SOCKOPT_CONNECTX - =E5=85=81=E8=AE=B8=E5=88=86=E9=85=8D=E5=A4=9A=E4=
=B8=AA=E5=9C=B0=E5=9D=80=E4=BB=A5=E8=BF=9E=E6=8E=A5=E5=88=B0=E5=AF=B9=E7=AB=
=AF=EF=BC=88=E5=A4=9A=E5=AE=BF=E4=B8=BB=EF=BC=89=E3=80=82
+							sctp_connectx(3) =E4=BD=BF=E7=94=A8=E5=A4=9A=E4=B8=AA=E7=9B=AE=E6=
=A0=87=E5=9C=B0=E5=9D=80=E5=9C=A8SCTP
+							=E5=A5=97=E6=8E=A5=E5=AD=97=E4=B8=8A=E5=8F=91=E8=B5=B7=E8=BF=9E=E6=
=8E=A5=E3=80=82
+
+	SCTP_SENDMSG_CONNECT  - =E9=80=9A=E8=BF=87sendmsg(2)=E6=88=96sctp_sendmsg=
(3)=E5=9C=A8=E6=96=B0=E5=85=B3=E8=81=94=E4=B8=8A
+							=E5=8F=91=E8=B5=B7=E8=BF=9E=E6=8E=A5=E3=80=82
+
+	SCTP_PRIMARY_ADDR     - =E8=AE=BE=E7=BD=AE=E6=9C=AC=E5=9C=B0=E4=B8=BB=E5=
=9C=B0=E5=9D=80=E3=80=82
+
+	SCTP_SET_PEER_PRIMARY_ADDR - =E8=AF=B7=E6=B1=82=E8=BF=9C=E7=A8=8B=E5=AF=
=B9=E7=AB=AF=E5=B0=86=E6=9F=90=E4=B8=AA=E5=9C=B0=E5=9D=80=E8=AE=BE=E7=BD=AE=
=E4=B8=BA=E5=85=B6=E4=B8=BB=E5=9C=B0=E5=9D=80=E3=80=82
+
+	SCTP_PARAM_ADD_IP          - =E5=9C=A8=E5=90=AF=E7=94=A8=E5=8A=A8=E6=80=
=81=E5=9C=B0=E5=9D=80=E9=87=8D=E9=85=8D=E7=BD=AE=E6=97=B6=E4=BD=BF=E7=94=A8=
=E3=80=82
+	SCTP_PARAM_SET_PRIMARY     - =E5=A6=82=E4=B8=8B=E6=89=80=E8=BF=B0=EF=BC=
=8C=E5=90=AF=E7=94=A8=E9=87=8D=E6=96=B0=E9=85=8D=E7=BD=AE=E5=8A=9F=E8=83=BD=
=E3=80=82
+
+
+=E4=B8=BA=E4=BA=86=E6=94=AF=E6=8C=81=E5=8A=A8=E6=80=81=E5=9C=B0=E5=9D=80=
=E9=87=8D=E6=96=B0=E9=85=8D=E7=BD=AE=EF=BC=8C=E5=BF=85=E9=A1=BB=E5=9C=A8=E4=
=B8=A4=E4=B8=AA=E7=AB=AF=E7=82=B9=E4=B8=8A=E5=90=AF=E7=94=A8=E4=BB=A5=E4=B8=
=8B
+=E5=8F=82=E6=95=B0=EF=BC=88=E6=88=96=E4=BD=BF=E7=94=A8=E9=80=82=E5=BD=93=
=E7=9A=84 **setsockopt**\(2)=EF=BC=89::
+
+	/proc/sys/net/sctp/addip_enable
+	/proc/sys/net/sctp/addip_noauth_enable
+
+=E5=BD=93=E7=9B=B8=E5=BA=94=E7=9A=84 ``@optname`` =E5=AD=98=E5=9C=A8=E6=97=
=B6=EF=BC=8C=E4=BB=A5=E4=B8=8B=E7=9A=84 *_PARAM_* =E5=8F=82=E6=95=B0=E4=BC=
=9A
+=E9=80=9A=E8=BF=87ASCONF=E5=9D=97=E5=8F=91=E9=80=81=E5=88=B0=E5=AF=B9=E7=
=AB=AF::
+
+		  @optname                      ASCONF Parameter
+		 ----------                    ------------------
+	SCTP_SOCKOPT_BINDX_ADD     ->   SCTP_PARAM_ADD_IP
+	SCTP_SET_PEER_PRIMARY_ADDR ->   SCTP_PARAM_SET_PRIMARY
+
+
+security_sctp_sk_clone()
+~~~~~~~~~~~~~~~~~~~~~~~~
+=E6=AF=8F=E5=BD=93=E9=80=9A=E8=BF=87 **accept**\(2)=E5=88=9B=E5=BB=BA=E4=
=B8=80=E4=B8=AA=E6=96=B0=E7=9A=84=E5=A5=97=E6=8E=A5=E5=AD=97=EF=BC=88=E5=8D=
=B3TCP=E7=B1=BB=E5=9E=8B=E7=9A=84=E5=A5=97=E6=8E=A5=E5=AD=97=EF=BC=89=EF=BC=
=8C=E6=88=96=E8=80=85=E5=BD=93
+=E4=B8=80=E4=B8=AA=E5=A5=97=E6=8E=A5=E5=AD=97=E8=A2=AB=E2=80=98=E5=89=A5=
=E7=A6=BB=E2=80=99=E6=97=B6=E5=A6=82=E7=94=A8=E6=88=B7=E7=A9=BA=E9=97=B4=E8=
=B0=83=E7=94=A8 **sctp_peeloff**\(3)=EF=BC=8C=E4=BC=9A=E8=B0=83=E7=94=A8=E6=
=AD=A4=E5=87=BD=E6=95=B0=E3=80=82
+::
+
+	@asoc -  =E6=8C=87=E5=90=91=E5=BD=93=E5=89=8Dsctp=E5=85=B3=E8=81=94=E7=BB=
=93=E6=9E=84=E7=9A=84=E6=8C=87=E9=92=88=E3=80=82
+	@sk - =E6=8C=87=E5=90=91=E5=BD=93=E5=89=8D=E5=A5=97=E6=8E=A5=E5=AD=97=E7=
=BB=93=E6=9E=84=E7=9A=84=E6=8C=87=E9=92=88=E3=80=82
+	@newsk - =E6=8C=87=E5=90=91=E6=96=B0=E7=9A=84=E5=A5=97=E6=8E=A5=E5=AD=97=
=E7=BB=93=E6=9E=84=E7=9A=84=E6=8C=87=E9=92=88=E3=80=82
+
+
+security_sctp_assoc_established()
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+=E5=BD=93=E6=94=B6=E5=88=B0COOKIE ACK=E6=97=B6=E8=B0=83=E7=94=A8=EF=BC=8C=
=E5=AF=B9=E4=BA=8E=E5=AE=A2=E6=88=B7=E7=AB=AF=EF=BC=8C=E5=AF=B9=E7=AB=AF=E7=
=9A=84secid=E5=B0=86=E8=A2=AB=E4=BF=9D=E5=AD=98
+=E5=88=B0 ``@asoc->peer_secid`` =E4=B8=AD::
+
+	@asoc - =E6=8C=87=E5=90=91sctp=E5=85=B3=E8=81=94=E7=BB=93=E6=9E=84=E7=9A=
=84=E6=8C=87=E9=92=88=E3=80=82
+	@skb - =E6=8C=87=E5=90=91COOKIE ACK=E6=95=B0=E6=8D=AE=E5=8C=85=E7=9A=84sk=
buff=E6=8C=87=E9=92=88=E3=80=82
+
+
+=E7=94=A8=E4=BA=8E=E5=85=B3=E8=81=94=E5=BB=BA=E7=AB=8B=E7=9A=84=E5=AE=89=
=E5=85=A8=E9=92=A9=E5=AD=90
+----------------------
+
+=E4=B8=8B=E5=9B=BE=E5=B1=95=E7=A4=BA=E4=BA=86=E5=9C=A8=E5=BB=BA=E7=AB=8B=
=E5=85=B3=E8=81=94=E6=97=B6 ``security_sctp_bind_connect()``=E3=80=81 ``sec=
urity_sctp_assoc_request()``
+=E5=92=8C ``security_sctp_assoc_established()`` =E7=9A=84=E4=BD=BF=E7=94=
=A8=E3=80=82
+::
+
+      SCTP =E7=AB=AF=E7=82=B9 "A"                                 SCTP =E7=
=AB=AF=E7=82=B9 "Z"
+      =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D                             =
    =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
+    sctp_sf_do_prm_asoc()
+ =E5=85=B3=E8=81=94=E7=9A=84=E8=AE=BE=E7=BD=AE=E5=8F=AF=E4=BB=A5=E9=80=9A=
=E8=BF=87connect(2),
+ sctp_connectx(3),sendmsg(2)
+ or sctp_sendmsg(3)=E6=9D=A5=E5=8F=91=E8=B5=B7=E3=80=82
+ =E8=BF=99=E5=B0=86=E5=AF=BC=E8=87=B4=E8=B0=83=E7=94=A8security_sctp_bind_=
connect()
+ =E5=8F=91=E8=B5=B7=E4=B8=8ESCTP=E5=AF=B9=E7=AB=AF=E7=AB=AF=E7=82=B9"Z"=E7=
=9A=84=E5=85=B3=E8=81=94=E3=80=82
+         INIT --------------------------------------------->
+                                                   sctp_sf_do_5_1B_init()
+                                                 =E5=93=8D=E5=BA=94=E4=B8=
=80=E4=B8=AAINIT=E6=95=B0=E6=8D=AE=E5=9D=97=E3=80=82
+                                             SCTP=E5=AF=B9=E7=AB=AF=E7=AB=
=AF=E7=82=B9"A"=E6=AD=A3=E5=9C=A8=E8=AF=B7=E6=B1=82=E4=B8=80=E4=B8=AA=E4=B8=
=B4=E6=97=B6=E5=85=B3=E8=81=94=E3=80=82
+                                             =E5=A6=82=E6=9E=9C=E6=98=AF=
=E9=A6=96=E6=AC=A1=E5=85=B3=E8=81=94=EF=BC=8C=E8=B0=83=E7=94=A8security_sct=
p_assoc_request()
+                                             =E6=9D=A5=E8=AE=BE=E7=BD=AE=
=E5=AF=B9=E7=AD=89=E6=96=B9=E6=A0=87=E7=AD=BE=E3=80=82
+                                             =E5=A6=82=E6=9E=9C=E4=B8=8D=
=E6=98=AF=E9=A6=96=E6=AC=A1=E5=85=B3=E8=81=94=EF=BC=8C=E6=A3=80=E6=9F=A5=E6=
=98=AF=E5=90=A6=E8=A2=AB=E5=85=81=E8=AE=B8=E3=80=82
+                                             =E5=A6=82=E6=9E=9C=E5=85=81=
=E8=AE=B8=EF=BC=8C=E5=88=99=E5=8F=91=E9=80=81:
+          <----------------------------------------------- INIT ACK
+          |
+          |                                  =E5=90=A6=E5=88=99=EF=BC=8C=
=E7=94=9F=E6=88=90=E5=AE=A1=E8=AE=A1=E4=BA=8B=E4=BB=B6=E5=B9=B6=E9=BB=98=E9=
=BB=98=E4=B8=A2=E5=BC=83=E8=AF=A5=E6=95=B0=E6=8D=AE=E5=8C=85=E3=80=82
+          |
+    COOKIE ECHO ------------------------------------------>
+                                                  sctp_sf_do_5_1D_ce()
+                                             =E5=93=8D=E5=BA=94=E4=B8=80=
=E4=B8=AACOOKIE ECHO=E6=95=B0=E6=8D=AE=E5=9D=97=E3=80=82
+                                             =E7=A1=AE=E8=AE=A4=E8=AF=A5co=
okie=E5=B9=B6=E5=88=9B=E5=BB=BA=E4=B8=80=E4=B8=AA=E6=B0=B8=E4=B9=85=E5=85=
=B3=E8=81=94=E3=80=82
+                                             =E8=B0=83=E7=94=A8security_sc=
tp_assoc_request()
+                                             =E6=89=A7=E8=A1=8C=E4=B8=8EIN=
IT=E6=95=B0=E6=8D=AE=E5=9D=97=E5=93=8D=E5=BA=94=E7=9B=B8=E5=90=8C=E7=9A=84=
=E6=93=8D=E4=BD=9C=E3=80=82
+          <------------------------------------------- COOKIE ACK
+          |                                               |
+    sctp_sf_do_5_1E_ca                                    |
+ =E8=B0=83=E7=94=A8security_sctp_assoc_established()                    |
+ =E6=9D=A5=E8=AE=BE=E7=BD=AE=E5=AF=B9=E6=96=B9=E6=A0=87=E7=AD=BE          =
                                 |
+          |                                               |
+          |                               =E5=A6=82=E6=9E=9C=E6=98=AFSCTP_=
SOCKET_TCP=E6=88=96=E6=98=AF=E5=89=A5=E7=A6=BB=E7=9A=84=E5=A5=97=E6=8E=A5
+          |                               =E5=AD=97=EF=BC=8C=E4=BC=9A=E8=
=B0=83=E7=94=A8 security_sctp_sk_clone()
+          |                               =E6=9D=A5=E5=85=8B=E9=9A=86=E6=
=96=B0=E7=9A=84=E5=A5=97=E6=8E=A5=E5=AD=97=E3=80=82
+          |                                               |
+         =E5=BB=BA=E7=AB=8B                                            =E5=
=BB=BA=E7=AB=8B
+          |                                               |
+    ------------------------------------------------------------------
+    |                            =E5=85=B3=E8=81=94=E5=BB=BA=E7=AB=8B     =
                       |
+    ------------------------------------------------------------------
+
+
+SCTP=E7=9A=84SELinux=E6=94=AF=E6=8C=81
+=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
+
+=E5=AE=89=E5=85=A8=E9=92=A9=E5=AD=90
+--------
+
+=E4=B8=8A=E9=9D=A2=E7=9A=84 `SCTP=E7=9A=84LSM=E6=94=AF=E6=8C=81`_ =E7=AB=
=A0=E8=8A=82=E6=8F=8F=E8=BF=B0=E4=BA=86=E4=BB=A5=E4=B8=8BSCTP=E5=AE=89=E5=
=85=A8=E9=92=A9=E5=AD=90=EF=BC=8CSELinux=E7=9A=84=E7=BB=86=E8=8A=82
+=E8=AF=B4=E6=98=8E=E5=A6=82=E4=B8=8B::
+
+	security_sctp_assoc_request()
+	security_sctp_bind_connect()
+	security_sctp_sk_clone()
+	security_sctp_assoc_established()
+
+
+security_sctp_assoc_request()
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+=E5=B0=86=E5=85=B3=E8=81=94INIT=E6=95=B0=E6=8D=AE=E5=8C=85=E7=9A=84 ``@aso=
c`` =E5=92=8C ``@chunk->skb`` =E4=BC=A0=E9=80=92=E7=BB=99=E5=AE=89=E5=85=A8=
=E6=A8=A1=E5=9D=97=E3=80=82
+=E6=88=90=E5=8A=9F=E6=97=B6=E8=BF=94=E5=9B=9E 0=EF=BC=8C=E5=A4=B1=E8=B4=A5=
=E6=97=B6=E8=BF=94=E5=9B=9E=E9=94=99=E8=AF=AF=E3=80=82
+::
+
+    @asoc - =E6=8C=87=E5=90=91sctp=E5=85=B3=E8=81=94=E7=BB=93=E6=9E=84=E7=
=9A=84=E6=8C=87=E9=92=88=E3=80=82
+    @skb - =E6=8C=87=E5=90=91=E5=85=B3=E8=81=94=E6=95=B0=E6=8D=AE=E5=8C=85=
skbuff=E7=9A=84=E6=8C=87=E9=92=88=E3=80=82
+
+=E5=AE=89=E5=85=A8=E6=A8=A1=E5=9D=97=E6=89=A7=E8=A1=8C=E4=BB=A5=E4=B8=8B=
=E6=93=8D=E4=BD=9C:
+	 =E5=A6=82=E6=9E=9C=E8=BF=99=E6=98=AF ``@asoc->base.sk`` =E4=B8=8A=E7=9A=
=84=E9=A6=96=E6=AC=A1=E5=85=B3=E8=81=94=EF=BC=8C=E5=88=99=E5=B0=86=E5=AF=B9=
=E7=AB=AF=E7=9A=84sid=E8=AE=BE=E7=BD=AE
+	 =E4=B8=BA ``@skb`` =E4=B8=AD=E7=9A=84=E5=80=BC=E3=80=82=E8=BF=99=E5=B0=
=86=E7=A1=AE=E4=BF=9D=E5=8F=AA=E6=9C=89=E4=B8=80=E4=B8=AA=E5=AF=B9=E7=AB=AF=
sid=E5=88=86=E9=85=8D=E7=BB=99=E5=8F=AF=E8=83=BD=E6=94=AF=E6=8C=81=E5=A4=9A=
=E4=B8=AA
+	 =E5=85=B3=E8=81=94=E7=9A=84 ``@asoc->base.sk``=E3=80=82
+
+	 =E5=90=A6=E5=88=99=E9=AA=8C=E8=AF=81 ``@asoc->base.sk peer sid`` =E6=98=
=AF=E5=90=A6=E4=B8=8E ``@skb peer sid``
+	 =E5=8C=B9=E9=85=8D=EF=BC=8C=E4=BB=A5=E7=A1=AE=E5=AE=9A=E8=AF=A5=E5=85=B3=
=E8=81=94=E6=98=AF=E5=90=A6=E5=BA=94=E8=A2=AB=E5=85=81=E8=AE=B8=E6=88=96=E6=
=8B=92=E7=BB=9D=E3=80=82
+
+	 =E5=B0=86sctp=E7=9A=84 ``@asoc sid`` =E8=AE=BE=E7=BD=AE=E4=B8=BA=E5=A5=
=97=E6=8E=A5=E5=AD=97=E7=9A=84sid=EF=BC=88=E6=9D=A5=E8=87=AA ``asoc->base.s=
k``=EF=BC=89
+	 =E5=B9=B6=E4=BB=8E ``@skb peer sid`` =E4=B8=AD=E6=8F=90=E5=8F=96MLS=E9=
=83=A8=E5=88=86=E3=80=82=E8=BF=99=E5=B0=86=E5=9C=A8SCTP=E7=9A=84TCP=E7=B1=
=BB=E5=9E=8B=E5=A5=97=E6=8E=A5=E5=AD=97=E5=8F=8A
+	 =E5=89=A5=E7=A6=BB=E8=BF=9E=E6=8E=A5=E4=B8=AD=E4=BD=BF=E7=94=A8=EF=BC=8C=
=E5=9B=A0=E4=B8=BA=E5=AE=83=E4=BB=AC=E4=BC=9A=E5=AF=BC=E8=87=B4=E7=94=9F=E6=
=88=90=E4=B8=80=E4=B8=AA=E6=96=B0=E7=9A=84=E5=A5=97=E6=8E=A5=E5=AD=97=E3=80=
=82
+
+	 =E5=A6=82=E6=9E=9C=E9=85=8D=E7=BD=AE=E4=BA=86IP=E5=AE=89=E5=85=A8=E9=80=
=89=E9=A1=B9=EF=BC=88CIPSO/CALIPSO=EF=BC=89=EF=BC=8C=E5=88=99=E4=BC=9A=E5=
=9C=A8=E5=A5=97=E6=8E=A5=E5=AD=97=E4=B8=8A=E8=AE=BE=E7=BD=AEIP=E9=80=89=E9=
=A1=B9=E3=80=82
+
+
+security_sctp_bind_connect()
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+=E6=A0=B9=E6=8D=AE ``@optname`` =E6=A3=80=E6=9F=A5ipv4/ipv6=E5=9C=B0=E5=9D=
=80=E6=89=80=E9=9C=80=E7=9A=84=E6=9D=83=E9=99=90=EF=BC=8C=E5=85=B7=E4=BD=93=
=E5=A6=82=E4=B8=8B::
+
+  ------------------------------------------------------------------
+  |                      BIND =E6=9D=83=E9=99=90=E6=A3=80=E6=9F=A5        =
                      |
+  |       @optname             |         @address contains         |
+  |----------------------------|-----------------------------------|
+  | SCTP_SOCKOPT_BINDX_ADD     | =E4=B8=80=E4=B8=AA=E6=88=96=E5=A4=9A=E4=
=B8=AA ipv4 / ipv6 =E5=9C=B0=E5=9D=80        |
+  | SCTP_PRIMARY_ADDR          | =E5=8D=95=E4=B8=AA ipv4 or ipv6 =E5=9C=B0=
=E5=9D=80            |
+  | SCTP_SET_PEER_PRIMARY_ADDR | =E5=8D=95=E4=B8=AA ipv4 or ipv6 =E5=9C=B0=
=E5=9D=80            |
+  ------------------------------------------------------------------
+
+  ------------------------------------------------------------------
+  |                   CONNECT =E6=9D=83=E9=99=90=E6=A3=80=E6=9F=A5        =
                      |
+  |       @optname             |         @address contains         |
+  |----------------------------|-----------------------------------|
+  | SCTP_SOCKOPT_CONNECTX      | =E4=B8=80=E4=B8=AA=E6=88=96=E5=A4=9A=E4=
=B8=AA ipv4 / ipv6 =E5=9C=B0=E5=9D=80        |
+  | SCTP_PARAM_ADD_IP          | =E4=B8=80=E4=B8=AA=E6=88=96=E5=A4=9A=E4=
=B8=AA ipv4 / ipv6 =E5=9C=B0=E5=9D=80        |
+  | SCTP_SENDMSG_CONNECT       | =E5=8D=95=E4=B8=AA ipv4 or ipv6 =E5=9C=B0=
=E5=9D=80            |
+  | SCTP_PARAM_SET_PRIMARY     | =E5=8D=95=E4=B8=AA ipv4 or ipv6 =E5=9C=B0=
=E5=9D=80            |
+  ------------------------------------------------------------------
+
+
+`SCTP=E7=9A=84LSM=E6=94=AF=E6=8C=81`_ =E6=8F=90=E4=BE=9B=E4=BA=86 ``@optna=
me`` =E6=91=98=E8=A6=81=EF=BC=8C=E5=B9=B6=E4=B8=94=E8=BF=98=E6=8F=8F=E8=BF=
=B0=E4=BA=86=E5=BD=93=E5=90=AF=E7=94=A8=E5=8A=A8=E6=80=81=E5=9C=B0=E5=9D=80=
=E9=87=8D=E6=96=B0
+=E9=85=8D=E7=BD=AE=E6=97=B6=EF=BC=8CASCONF=E5=9D=97=E7=9A=84=E5=A4=84=E7=
=90=86=E8=BF=87=E7=A8=8B=E3=80=82
+
+
+security_sctp_sk_clone()
+~~~~~~~~~~~~~~~~~~~~~~~~
+=E6=AF=8F=E5=BD=93=E9=80=9A=E8=BF=87 **accept**\(2)=EF=BC=88=E5=8D=B3TCP=
=E7=B1=BB=E5=9E=8B=E7=9A=84=E5=A5=97=E6=8E=A5=E5=AD=97=EF=BC=89=E5=88=9B=E5=
=BB=BA=E4=B8=80=E4=B8=AA=E6=96=B0=E7=9A=84=E5=A5=97=E6=8E=A5=E5=AD=97=EF=BC=
=8C=E6=88=96=E8=80=85
+=E5=BD=93=E4=B8=80=E4=B8=AA=E5=A5=97=E6=8E=A5=E5=AD=97=E8=A2=AB=E2=80=9C=
=E5=89=A5=E7=A6=BB=E2=80=9D=E5=A6=82=E7=94=A8=E6=88=B7=E7=A9=BA=E9=97=B4=E8=
=B0=83=E7=94=A8 **sctp_peeloff**\(3)=E6=97=B6=EF=BC=8C
+``security_sctp_sk_clone()`` =E5=B0=86=E4=BC=9A=E5=88=86=E5=88=AB=E5=B0=86=
=E6=96=B0=E5=A5=97=E6=8E=A5=E5=AD=97=E7=9A=84sid=E5=92=8C=E5=AF=B9=E7=AB=AF=
sid=E8=AE=BE=E7=BD=AE=E4=B8=BA
+``@asoc sid`` =E5=92=8C ``@asoc peer sid`` =E4=B8=AD=E5=8C=85=E5=90=AB=E7=
=9A=84=E5=80=BC=E3=80=82
+::
+
+	@asoc - =E6=8C=87=E5=90=91=E5=BD=93=E5=89=8Dsctp=E5=85=B3=E8=81=94=E7=BB=
=93=E6=9E=84=E7=9A=84=E6=8C=87=E9=92=88=E3=80=82
+	@sk - =E6=8C=87=E5=90=91=E5=BD=93=E5=89=8Dsock=E7=BB=93=E6=9E=84=E7=9A=84=
=E6=8C=87=E9=92=88=E3=80=82
+	@newsk - =E6=8C=87=E5=90=91=E6=96=B0sock=E7=BB=93=E6=9E=84=E7=9A=84=E6=8C=
=87=E9=92=88=E3=80=82
+
+
+security_sctp_assoc_established()
+~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+=E5=BD=93=E6=8E=A5=E6=94=B6=E5=88=B0COOKIE ACK=E6=97=B6=E8=B0=83=E7=94=A8=
=EF=BC=8C=E5=AE=83=E5=B0=86=E8=BF=9E=E6=8E=A5=E7=9A=84=E5=AF=B9=E7=AB=AFsid=
=E8=AE=BE=E7=BD=AE=E4=B8=BA ``@skb`` =E4=B8=AD=E7=9A=84=E5=80=BC::
+
+	@asoc - =E6=8C=87=E5=90=91sctp=E5=85=B3=E8=81=94=E7=BB=93=E6=9E=84=E7=9A=
=84=E6=8C=87=E9=92=88=E3=80=82
+	@skb - =E6=8C=87=E5=90=91COOKIE ACK=E5=8C=85skbuff=E7=9A=84=E6=8C=87=E9=
=92=88=E3=80=82
+
+
+=E7=AD=96=E7=95=A5=E5=A3=B0=E6=98=8E
+--------
+=E4=BB=A5=E4=B8=8B=E6=94=AF=E6=8C=81SCTP=E7=9A=84=E7=B1=BB=E5=92=8C=E6=9D=
=83=E9=99=90=E5=9C=A8=E5=86=85=E6=A0=B8=E4=B8=AD=E6=98=AF=E5=8F=AF=E7=94=A8=
=E7=9A=84::
+
+	class sctp_socket inherits socket { node_bind }
+
+=E5=BD=93=E5=90=AF=E7=94=A8=E4=BB=A5=E4=B8=8B=E7=AD=96=E7=95=A5=E5=8A=9F=
=E8=83=BD=E6=97=B6::
+
+	policycap extended_socket_class;
+
+SELinux=E5=AF=B9SCTP=E7=9A=84=E6=94=AF=E6=8C=81=E6=B7=BB=E5=8A=A0=E4=BA=86=
=E7=94=A8=E4=BA=8E=E8=BF=9E=E6=8E=A5=E7=89=B9=E5=AE=9A=E7=AB=AF=E5=8F=A3=E7=
=B1=BB=E5=9E=8B ``name_connect`` =E6=9D=83=E9=99=90
+=E4=BB=A5=E5=8F=8A=E5=9C=A8=E4=B8=8B=E9=9D=A2=E7=9A=84=E7=AB=A0=E8=8A=82=
=E4=B8=AD=E8=BF=9B=E8=A1=8C=E8=A7=A3=E9=87=8A=E7=9A=84 ``association`` =E6=
=9D=83=E9=99=90=E3=80=82
+
+=E5=A6=82=E6=9E=9C=E7=94=A8=E6=88=B7=E7=A9=BA=E9=97=B4=E5=B7=A5=E5=85=B7=
=E5=B7=B2=E6=9B=B4=E6=96=B0=EF=BC=8CSCTP=E5=B0=86=E6=94=AF=E6=8C=81=E5=A6=
=82=E4=B8=8B=E6=89=80=E7=A4=BA=E7=9A=84 ``portcon`` =E5=A3=B0=E6=98=8E::
+
+	portcon sctp 1024-1036 system_u:object_r:sctp_ports_t:s0
+
+
+SCTP=E5=AF=B9=E7=AB=AF=E6=A0=87=E7=AD=BE
+------------
+=E6=AF=8F=E4=B8=AASCTP=E5=A5=97=E6=8E=A5=E5=AD=97=E4=BB=85=E5=88=86=E9=85=
=8D=E4=B8=80=E4=B8=AA=E5=AF=B9=E7=AB=AF=E6=A0=87=E7=AD=BE=E3=80=82=E8=BF=99=
=E4=B8=AA=E6=A0=87=E7=AD=BE=E5=B0=86=E5=9C=A8=E5=BB=BA=E7=AB=8B=E7=AC=AC=E4=
=B8=80=E4=B8=AA=E5=85=B3=E8=81=94=E6=97=B6=E5=88=86=E9=85=8D=E3=80=82
+=E4=BB=BB=E4=BD=95=E5=90=8E=E7=BB=AD=E5=9C=A8=E8=AF=A5=E5=A5=97=E6=8E=A5=
=E5=AD=97=E4=B8=8A=E7=9A=84=E5=85=B3=E8=81=94=E9=83=BD=E4=BC=9A=E5=B0=86=E5=
=AE=83=E4=BB=AC=E7=9A=84=E6=95=B0=E6=8D=AE=E5=8C=85=E5=AF=B9=E7=AB=AF=E6=A0=
=87=E7=AD=BE=E4=B8=8E=E5=A5=97=E6=8E=A5=E5=AD=97=E7=9A=84=E5=AF=B9=E7=AB=AF=
=E6=A0=87
+=E7=AD=BE=E8=BF=9B=E8=A1=8C=E6=AF=94=E8=BE=83=EF=BC=8C=E5=8F=AA=E6=9C=89=
=E5=9C=A8=E5=AE=83=E4=BB=AC=E4=B8=8D=E5=90=8C=E7=9A=84=E6=83=85=E5=86=B5=E4=
=B8=8B ``association`` =E6=9D=83=E9=99=90=E6=89=8D=E4=BC=9A=E8=A2=AB=E9=AA=
=8C=E8=AF=81=E3=80=82
+=E8=BF=99=E6=98=AF=E9=80=9A=E8=BF=87=E6=A3=80=E6=9F=A5=E5=A5=97=E6=8E=A5=
=E5=AD=97=E7=9A=84=E5=AF=B9=E7=AB=AFsid=E4=B8=8E=E6=8E=A5=E6=94=B6=E5=88=B0=
=E7=9A=84=E6=95=B0=E6=8D=AE=E5=8C=85=E4=B8=AD=E7=9A=84=E5=AF=B9=E7=AB=AFsid=
=E6=9D=A5=E9=AA=8C=E8=AF=81=E7=9A=84=EF=BC=8C=E4=BB=A5=E5=86=B3
+=E5=AE=9A=E6=98=AF=E5=90=A6=E5=85=81=E8=AE=B8=E6=88=96=E6=8B=92=E7=BB=9D=
=E8=AF=A5=E5=85=B3=E8=81=94=E3=80=82
+
+=E6=B3=A8:
+   1) =E5=A6=82=E6=9E=9C=E5=AF=B9=E7=AB=AF=E6=A0=87=E7=AD=BE=E6=9C=AA=E5=
=90=AF=E7=94=A8=EF=BC=8C=E5=88=99=E5=AF=B9=E7=AB=AF=E4=B8=8A=E4=B8=8B=E6=96=
=87=E5=B0=86=E5=A7=8B=E7=BB=88=E6=98=AF ``SECINITSID_UNLABELED``
+      =EF=BC=88=E5=9C=A8=E7=AD=96=E7=95=A5=E5=A3=B0=E6=98=8E=E4=B8=AD=E4=
=B8=BA ``unlabeled_t`` =EF=BC=89=E3=80=82
+
+   2) =E7=94=B1=E4=BA=8ESCTP=E5=8F=AF=E4=BB=A5=E5=9C=A8=E5=8D=95=E4=B8=AA=
=E5=A5=97=E6=8E=A5=E5=AD=97=E4=B8=8A=E6=94=AF=E6=8C=81=E6=AF=8F=E4=B8=AA=E7=
=AB=AF=E7=82=B9=EF=BC=88=E5=A4=9A=E5=AE=BF=E4=B8=BB=EF=BC=89=E7=9A=84=E5=A4=
=9A=E4=B8=AA=E4=BC=A0=E8=BE=93=E5=9C=B0=E5=9D=80=EF=BC=8C=E5=9B=A0=E6=AD=A4
+      =E5=8F=AF=E4=BB=A5=E9=85=8D=E7=BD=AE=E7=AD=96=E7=95=A5=E5=92=8CNetLa=
bel=E4=B8=BA=E6=AF=8F=E4=B8=AA=E7=AB=AF=E7=82=B9=E6=8F=90=E4=BE=9B=E4=B8=8D=
=E5=90=8C=E7=9A=84=E5=AF=B9=E7=AB=AF=E6=A0=87=E7=AD=BE=E3=80=82=E7=94=B1=E4=
=BA=8E=E5=A5=97=E6=8E=A5=E5=AD=97=E7=9A=84=E5=AF=B9=E7=AB=AF
+      =E6=A0=87=E7=AD=BE=E6=98=AF=E7=94=B1=E7=AC=AC=E4=B8=80=E4=B8=AA=E5=
=85=B3=E8=81=94=E7=9A=84=E4=BC=A0=E8=BE=93=E5=9C=B0=E5=9D=80=E5=86=B3=E5=AE=
=9A=E7=9A=84=EF=BC=8C=E5=9B=A0=E6=AD=A4=E5=BB=BA=E8=AE=AE=E6=89=80=E6=9C=89=
=E7=9A=84=E5=AF=B9=E7=AB=AF=E6=A0=87=E7=AD=BE=E4=BF=9D=E6=8C=81=E4=B8=80=E8=
=87=B4=E3=80=82
+
+   3) =E7=94=A8=E6=88=B7=E7=A9=BA=E9=97=B4=E5=8F=AF=E4=BB=A5=E4=BD=BF=E7=
=94=A8 **getpeercon**\(3) =E6=9D=A5=E6=A3=80=E7=B4=A2=E5=A5=97=E6=8E=A5=E5=
=AD=97=E7=9A=84=E5=AF=B9=E7=AB=AF=E4=B8=8A=E4=B8=8B=E6=96=87=E3=80=82
+
+   4) =E8=99=BD=E7=84=B6=E8=BF=99=E4=B8=8D=E6=98=AFSCTP=E7=89=B9=E6=9C=89=
=E7=9A=84=EF=BC=8C=E4=BD=86=E5=9C=A8=E4=BD=BF=E7=94=A8NetLabel=E6=97=B6=E8=
=A6=81=E6=B3=A8=E6=84=8F=EF=BC=8C=E5=A6=82=E6=9E=9C=E6=A0=87=E7=AD=BE=E5=88=
=86=E9=85=8D=E7=BB=99=E7=89=B9=E5=AE=9A=E7=9A=84=E6=8E=A5
+      =E5=8F=A3=EF=BC=8C=E8=80=8C=E8=AF=A5=E6=8E=A5=E5=8F=A3=E2=80=98goes =
down=E2=80=99=EF=BC=8C=E5=88=99NetLabel=E6=9C=8D=E5=8A=A1=E4=BC=9A=E7=A7=BB=
=E9=99=A4=E8=AF=A5=E6=9D=A1=E7=9B=AE=E3=80=82=E5=9B=A0=E6=AD=A4=EF=BC=8C=E8=
=AF=B7=E7=A1=AE=E4=BF=9D=E7=BD=91=E7=BB=9C=E5=90=AF
+      =E5=8A=A8=E8=84=9A=E6=9C=AC=E8=B0=83=E7=94=A8 **netlabelctl**\(8) =
=E6=9D=A5=E8=AE=BE=E7=BD=AE=E6=89=80=E9=9C=80=E7=9A=84=E6=A0=87=E7=AD=BE=EF=
=BC=88=E8=AF=A6=E7=BB=86=E4=BF=A1=E6=81=AF=EF=BC=8C
+      =E8=AF=B7=E5=8F=82=E9=98=85 **netlabel-config**\(8) =E8=BE=85=E5=8A=
=A9=E8=84=9A=E6=9C=AC=EF=BC=89=E3=80=82
+
+   5) NetLabel SCTP=E5=AF=B9=E7=AB=AF=E6=A0=87=E7=AD=BE=E8=A7=84=E5=88=99=
=E5=BA=94=E7=94=A8=E5=A6=82=E4=B8=8B=E6=89=80=E8=BF=B0=E6=A0=87=E7=AD=BE=E4=
=B8=BA=E2=80=9Cnetlabel=E2=80=9D=E7=9A=84=E4=B8=80=E7=BB=84=E5=B8=96=E5=AD=
=90=EF=BC=9A
+      https://www.paul-moore.com/blog/t.
+
+   6) CIPSO=E4=BB=85=E6=94=AF=E6=8C=81IPv4=E5=9C=B0=E5=9D=80=EF=BC=9A ``so=
cket(AF_INET, ...)``
+      CALIPSO=E4=BB=85=E6=94=AF=E6=8C=81IPv6=E5=9C=B0=E5=9D=80=EF=BC=9A ``=
socket(AF_INET6, ...)``
+
+      =E6=B5=8B=E8=AF=95CIPSO/CALIPSO=E6=97=B6=E8=AF=B7=E6=B3=A8=E6=84=8F=
=E4=BB=A5=E4=B8=8B=E4=BA=8B=E9=A1=B9=EF=BC=9A
+         a) =E5=A6=82=E6=9E=9CSCTP=E6=95=B0=E6=8D=AE=E5=8C=85=E7=94=B1=E4=
=BA=8E=E6=97=A0=E6=95=88=E6=A0=87=E7=AD=BE=E6=97=A0=E6=B3=95=E9=80=81=E8=BE=
=BE=EF=BC=8CCIPSO=E4=BC=9A=E5=8F=91=E9=80=81=E4=B8=80=E4=B8=AAICMP=E5=8C=85=
=E3=80=82
+         b) CALIPSO=E4=B8=8D=E4=BC=9A=E5=8F=91=E9=80=81ICMP=E5=8C=85=EF=BC=
=8C=E5=8F=AA=E4=BC=9A=E9=BB=98=E9=BB=98=E4=B8=A2=E5=BC=83=E6=95=B0=E6=8D=AE=
=E5=8C=85=E3=80=82
+
+   7) RFC 3554=E4=B8=8D=E6=94=AF=E6=8C=81IPSEC =E2=80=94=E2=80=94 SCTP/IPS=
EC=E6=94=AF=E6=8C=81=E5=B0=9A=E6=9C=AA=E5=9C=A8=E7=94=A8=E6=88=B7=E7=A9=BA=
=E9=97=B4=E5=AE=9E=E7=8E=B0(**racoon**\(8)
+      =E6=88=96 **ipsec_pluto**\(8))=EF=BC=8C=E5=B0=BD=E7=AE=A1=E5=86=85=
=E6=A0=B8=E6=94=AF=E6=8C=81 SCTP/IPSEC=E3=80=82
diff --git a/Documentation/translations/zh_CN/security/index.rst b/Document=
ation/translations/zh_CN/security/index.rst
index 05d24e3acc11..d33b107405c7 100644
--- a/Documentation/translations/zh_CN/security/index.rst
+++ b/Documentation/translations/zh_CN/security/index.rst
@@ -20,6 +20,7 @@
    lsm
    lsm-development
    sak
+   SCTP
    self-protection
    siphash
    tpm/index
@@ -29,6 +30,5 @@
 TODOLIST:
 * IMA-templates
 * keys/index
-* SCTP
 * secrets/index
 * ipe
--=20
2.49.0