1 files changed, 13 insertions, 13 deletions
diff --git a/security/selinux/ss/mls.c b/security/selinux/ss/mls.c
index 443ae7370144..372b773f8210 100644
--- a/security/selinux/ss/mls.c
+++ b/security/selinux/ss/mls.c
@@ -39,7 +39,7 @@ int mls_compute_context_len(struct context *context)
        struct ebitmap *e;
        struct ebitmap_node *node;
-        if (!selinux_mls_enabled)
+        if (!policydb.mls_enabled)
                return 0;
        len = 1; /* for the beginning ":" */
@@ -93,7 +93,7 @@ void mls_sid_to_context(struct context *context,
        struct ebitmap *e;
        struct ebitmap_node *node;
-        if (!selinux_mls_enabled)
+        if (!policydb.mls_enabled)
                return;
        scontextp = *scontext;
@@ -200,7 +200,7 @@ int mls_context_isvalid(struct policydb *p, struct context *c)
 {
        struct user_datum *usrdatum;
-        if (!selinux_mls_enabled)
+        if (!p->mls_enabled)
                return 1;
        if (!mls_range_isvalid(p, &c->range))
@@ -253,7 +253,7 @@ int mls_context_to_sid(struct policydb *pol,
        struct cat_datum *catdatum, *rngdatum;
        int l, rc = -EINVAL;
-        if (!selinux_mls_enabled) {
+        if (!pol->mls_enabled) {
                if (def_sid != SECSID_NULL && oldc)
                        *scontext += strlen(*scontext)+1;
                return 0;
@@ -387,7 +387,7 @@ int mls_from_string(char *str, struct context *context, gfp_t gfp_mask)
        char *tmpstr, *freestr;
        int rc;
-        if (!selinux_mls_enabled)
+        if (!policydb.mls_enabled)
                return -EINVAL;
        /* we need freestr because mls_context_to_sid will change
@@ -407,7 +407,7 @@ int mls_from_string(char *str, struct context *context, gfp_t gfp_mask)
 /*
 * Copies the MLS range `range' into `context'.
 */
-static inline int mls_range_set(struct context *context,
+int mls_range_set(struct context *context,
                                struct mls_range *range)
 {
        int l, rc = 0;
@@ -427,7 +427,7 @@ static inline int mls_range_set(struct context *context,
 int mls_setup_user_range(struct context *fromcon, struct user_datum *user,
                         struct context *usercon)
 {
-        if (selinux_mls_enabled) {
+        if (policydb.mls_enabled) {
                struct mls_level *fromcon_sen = &(fromcon->range.level[0]);
                struct mls_level *fromcon_clr = &(fromcon->range.level[1]);
                struct mls_level *user_low = &(user->range.level[0]);
@@ -477,7 +477,7 @@ int mls_convert_context(struct policydb *oldp,
        struct ebitmap_node *node;
        int l, i;
-        if (!selinux_mls_enabled)
+        if (!policydb.mls_enabled)
                return 0;
        for (l = 0; l < 2; l++) {
@@ -516,7 +516,7 @@ int mls_compute_sid(struct context *scontext,
        struct range_trans rtr;
        struct mls_range *r;
-        if (!selinux_mls_enabled)
+        if (!policydb.mls_enabled)
                return 0;
        switch (specified) {
@@ -559,7 +559,7 @@ int mls_compute_sid(struct context *scontext,
 void mls_export_netlbl_lvl(struct context *context,
                           struct netlbl_lsm_secattr *secattr)
 {
-        if (!selinux_mls_enabled)
+        if (!policydb.mls_enabled)
                return;
        secattr->attr.mls.lvl = context->range.level[0].sens - 1;
@@ -579,7 +579,7 @@ void mls_export_netlbl_lvl(struct context *context,
 void mls_import_netlbl_lvl(struct context *context,
                           struct netlbl_lsm_secattr *secattr)
 {
-        if (!selinux_mls_enabled)
+        if (!policydb.mls_enabled)
                return;
        context->range.level[0].sens = secattr->attr.mls.lvl + 1;
@@ -601,7 +601,7 @@ int mls_export_netlbl_cat(struct context *context,
 {
        int rc;
-        if (!selinux_mls_enabled)
+        if (!policydb.mls_enabled)
                return 0;
        rc = ebitmap_netlbl_export(&context->range.level[0].cat,
@@ -629,7 +629,7 @@ int mls_import_netlbl_cat(struct context *context,
 {
        int rc;
-        if (!selinux_mls_enabled)
+        if (!policydb.mls_enabled)
                return 0;
        rc = ebitmap_netlbl_import(&context->range.level[0].cat,

diff --git a/security/selinux/ss/mls.c b/security/selinux/ss/mls.c index 443ae7370144..372b773f8210 100644 --- a/security/selinux/ss/mls.c +++ b/security/selinux/ss/mls.c
@@ -39,7 +39,7 @@ int mls_compute_context_len(struct context *context)
39	struct ebitmap *e;	39	struct ebitmap *e;
40	struct ebitmap_node *node;	40	struct ebitmap_node *node;
41		41
42	if (!selinux_mls_enabled)	42	if (!policydb.mls_enabled)
43	return 0;	43	return 0;
44		44
45	len = 1; /* for the beginning ":" */	45	len = 1; /* for the beginning ":" */
@@ -93,7 +93,7 @@ void mls_sid_to_context(struct context *context,
93	struct ebitmap *e;	93	struct ebitmap *e;
94	struct ebitmap_node *node;	94	struct ebitmap_node *node;
95		95
96	if (!selinux_mls_enabled)	96	if (!policydb.mls_enabled)
97	return;	97	return;
98		98
99	scontextp = *scontext;	99	scontextp = *scontext;
@@ -200,7 +200,7 @@ int mls_context_isvalid(struct policydb p, struct context c)
200	{	200	{
201	struct user_datum *usrdatum;	201	struct user_datum *usrdatum;
202		202
203	if (!selinux_mls_enabled)	203	if (!p->mls_enabled)
204	return 1;	204	return 1;
205		205
206	if (!mls_range_isvalid(p, &c->range))	206	if (!mls_range_isvalid(p, &c->range))
@@ -253,7 +253,7 @@ int mls_context_to_sid(struct policydb *pol,
253	struct cat_datum catdatum, rngdatum;	253	struct cat_datum catdatum, rngdatum;
254	int l, rc = -EINVAL;	254	int l, rc = -EINVAL;
255		255
256	if (!selinux_mls_enabled) {	256	if (!pol->mls_enabled) {
257	if (def_sid != SECSID_NULL && oldc)	257	if (def_sid != SECSID_NULL && oldc)
258	scontext += strlen(scontext)+1;	258	scontext += strlen(scontext)+1;
259	return 0;	259	return 0;
@@ -387,7 +387,7 @@ int mls_from_string(char str, struct context context, gfp_t gfp_mask)
387	char tmpstr, freestr;	387	char tmpstr, freestr;
388	int rc;	388	int rc;
389		389
390	if (!selinux_mls_enabled)	390	if (!policydb.mls_enabled)
391	return -EINVAL;	391	return -EINVAL;
392		392
393	/* we need freestr because mls_context_to_sid will change	393	/* we need freestr because mls_context_to_sid will change
@@ -407,7 +407,7 @@ int mls_from_string(char str, struct context context, gfp_t gfp_mask)
407	/*	407	/*
408	* Copies the MLS range `range' into `context'.	408	* Copies the MLS range `range' into `context'.
409	*/	409	*/
410	static inline int mls_range_set(struct context *context,	410	int mls_range_set(struct context *context,
411	struct mls_range *range)	411	struct mls_range *range)
412	{	412	{
413	int l, rc = 0;	413	int l, rc = 0;
@@ -427,7 +427,7 @@ static inline int mls_range_set(struct context *context,
427	int mls_setup_user_range(struct context fromcon, struct user_datum user,	427	int mls_setup_user_range(struct context fromcon, struct user_datum user,
428	struct context *usercon)	428	struct context *usercon)
429	{	429	{
430	if (selinux_mls_enabled) {	430	if (policydb.mls_enabled) {
431	struct mls_level *fromcon_sen = &(fromcon->range.level[0]);	431	struct mls_level *fromcon_sen = &(fromcon->range.level[0]);
432	struct mls_level *fromcon_clr = &(fromcon->range.level[1]);	432	struct mls_level *fromcon_clr = &(fromcon->range.level[1]);
433	struct mls_level *user_low = &(user->range.level[0]);	433	struct mls_level *user_low = &(user->range.level[0]);
@@ -477,7 +477,7 @@ int mls_convert_context(struct policydb *oldp,
477	struct ebitmap_node *node;	477	struct ebitmap_node *node;
478	int l, i;	478	int l, i;
479		479
480	if (!selinux_mls_enabled)	480	if (!policydb.mls_enabled)
481	return 0;	481	return 0;
482		482
483	for (l = 0; l < 2; l++) {	483	for (l = 0; l < 2; l++) {
@@ -516,7 +516,7 @@ int mls_compute_sid(struct context *scontext,
516	struct range_trans rtr;	516	struct range_trans rtr;
517	struct mls_range *r;	517	struct mls_range *r;
518		518
519	if (!selinux_mls_enabled)	519	if (!policydb.mls_enabled)
520	return 0;	520	return 0;
521		521
522	switch (specified) {	522	switch (specified) {
@@ -559,7 +559,7 @@ int mls_compute_sid(struct context *scontext,
559	void mls_export_netlbl_lvl(struct context *context,	559	void mls_export_netlbl_lvl(struct context *context,
560	struct netlbl_lsm_secattr *secattr)	560	struct netlbl_lsm_secattr *secattr)
561	{	561	{
562	if (!selinux_mls_enabled)	562	if (!policydb.mls_enabled)
563	return;	563	return;
564		564
565	secattr->attr.mls.lvl = context->range.level[0].sens - 1;	565	secattr->attr.mls.lvl = context->range.level[0].sens - 1;
@@ -579,7 +579,7 @@ void mls_export_netlbl_lvl(struct context *context,
579	void mls_import_netlbl_lvl(struct context *context,	579	void mls_import_netlbl_lvl(struct context *context,
580	struct netlbl_lsm_secattr *secattr)	580	struct netlbl_lsm_secattr *secattr)
581	{	581	{
582	if (!selinux_mls_enabled)	582	if (!policydb.mls_enabled)
583	return;	583	return;
584		584
585	context->range.level[0].sens = secattr->attr.mls.lvl + 1;	585	context->range.level[0].sens = secattr->attr.mls.lvl + 1;
@@ -601,7 +601,7 @@ int mls_export_netlbl_cat(struct context *context,
601	{	601	{
602	int rc;	602	int rc;
603		603
604	if (!selinux_mls_enabled)	604	if (!policydb.mls_enabled)
605	return 0;	605	return 0;
606		606
607	rc = ebitmap_netlbl_export(&context->range.level[0].cat,	607	rc = ebitmap_netlbl_export(&context->range.level[0].cat,
@@ -629,7 +629,7 @@ int mls_import_netlbl_cat(struct context *context,
629	{	629	{
630	int rc;	630	int rc;
631		631
632	if (!selinux_mls_enabled)	632	if (!policydb.mls_enabled)
633	return 0;	633	return 0;
634		634
635	rc = ebitmap_netlbl_import(&context->range.level[0].cat,	635	rc = ebitmap_netlbl_import(&context->range.level[0].cat,