selinux: allow MLS->non-MLS and vice versa upon policy reload

Allow runtime switching between different policy types (e.g. from a MLS/MCS policy to a non-MLS/non-MCS policy or viceversa). Signed-off-by: Guido Trentalancia <guido@trentalancia.com> Acked-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: James Morris <jmorris@namei.org>
author: Guido Trentalancia <guido@trentalancia.com> 2010-02-03 15:40:20 (GMT)
committer: James Morris <jmorris@namei.org> 2010-02-03 22:06:36 (GMT)
commit: 0719aaf5ead7555b7b7a4a080ebf2826a871384e (patch)
tree: 19c0b16b1013d84a8b8092737d38e60f3dd7e939 /security/selinux/ss/policydb.h
parent: 42596eafdd75257a640f64701b9b07090bcd84b0 (diff)
download: linux-fsl-qoriq-0719aaf5ead7555b7b7a4a080ebf2826a871384e.tar.xz
1 files changed, 4 insertions, 0 deletions
diff --git a/security/selinux/ss/policydb.h b/security/selinux/ss/policydb.h
index 193736b..26d9adf 100644
--- a/security/selinux/ss/policydb.h
+++ b/security/selinux/ss/policydb.h
@@ -27,6 +27,8 @@
 #include "symtab.h"
 #include "avtab.h"
 #include "sidtab.h"
+#include "ebitmap.h"
+#include "mls_types.h"
 #include "context.h"
 #include "constraint.h"
 
@@ -185,6 +187,8 @@ struct genfs {
 
 /* The policy database */
 struct policydb {
+	int mls_enabled;
+
 	/* symbol tables */
 	struct symtab symtab[SYM_NUM];
 #define p_commons symtab[SYM_COMMONS]
author	Guido Trentalancia <guido@trentalancia.com>	2010-02-03 15:40:20 (GMT)
committer	James Morris <jmorris@namei.org>	2010-02-03 22:06:36 (GMT)
commit	0719aaf5ead7555b7b7a4a080ebf2826a871384e (patch)
tree	19c0b16b1013d84a8b8092737d38e60f3dd7e939 /security/selinux/ss/policydb.h
parent	42596eafdd75257a640f64701b9b07090bcd84b0 (diff)
download	linux-fsl-qoriq-0719aaf5ead7555b7b7a4a080ebf2826a871384e.tar.xz