diff options
author | David P. Quigley <dpquigl@tycho.nsa.gov> | 2009-01-16 09:22:03 -0500 |
---|---|---|
committer | James Morris <jmorris@macbook.localdomain> | 2009-01-18 17:47:06 -0500 |
commit | 11689d47f0957121920c9ec646eb5d838755853a (patch) | |
tree | 187b4179c0b7b9430bb9e62f6bba474a2d011235 /security/selinux/include/security.h | |
parent | 0d90a7ec48c704025307b129413bc62451b20ab3 (diff) |
SELinux: Add new security mount option to indicate security label support.
There is no easy way to tell if a file system supports SELinux security labeling.
Because of this a new flag is being added to the super block security structure
to indicate that the particular super block supports labeling. This flag is set
for file systems using the xattr, task, and transition labeling methods unless
that behavior is overridden by context mounts.
Signed-off-by: David P. Quigley <dpquigl@tycho.nsa.gov>
Acked-by: Eric Paris <eparis@redhat.com>
Signed-off-by: James Morris <jmorris@macbook.localdomain>
Diffstat (limited to 'security/selinux/include/security.h')
-rw-r--r-- | security/selinux/include/security.h | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/security/selinux/include/security.h b/security/selinux/include/security.h index ff4e19ccd8f8..e1d9db779983 100644 --- a/security/selinux/include/security.h +++ b/security/selinux/include/security.h | |||
@@ -47,11 +47,13 @@ | |||
47 | /* Non-mount related flags */ | 47 | /* Non-mount related flags */ |
48 | #define SE_SBINITIALIZED 0x10 | 48 | #define SE_SBINITIALIZED 0x10 |
49 | #define SE_SBPROC 0x20 | 49 | #define SE_SBPROC 0x20 |
50 | #define SE_SBLABELSUPP 0x40 | ||
50 | 51 | ||
51 | #define CONTEXT_STR "context=" | 52 | #define CONTEXT_STR "context=" |
52 | #define FSCONTEXT_STR "fscontext=" | 53 | #define FSCONTEXT_STR "fscontext=" |
53 | #define ROOTCONTEXT_STR "rootcontext=" | 54 | #define ROOTCONTEXT_STR "rootcontext=" |
54 | #define DEFCONTEXT_STR "defcontext=" | 55 | #define DEFCONTEXT_STR "defcontext=" |
56 | #define LABELSUPP_STR "seclabel" | ||
55 | 57 | ||
56 | struct netlbl_lsm_secattr; | 58 | struct netlbl_lsm_secattr; |
57 | 59 | ||