diff options
Diffstat (limited to 'security/selinux/ss/policydb.h')
| -rw-r--r-- | security/selinux/ss/policydb.h | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/security/selinux/ss/policydb.h b/security/selinux/ss/policydb.h index 8319d5ff5944..844d310f4f1b 100644 --- a/security/selinux/ss/policydb.h +++ b/security/selinux/ss/policydb.h | |||
| @@ -242,6 +242,10 @@ struct policydb { | |||
| 242 | struct ebitmap *type_attr_map; | 242 | struct ebitmap *type_attr_map; |
| 243 | 243 | ||
| 244 | unsigned int policyvers; | 244 | unsigned int policyvers; |
| 245 | |||
| 246 | unsigned int reject_unknown : 1; | ||
| 247 | unsigned int allow_unknown : 1; | ||
| 248 | u32 *undefined_perms; | ||
| 245 | }; | 249 | }; |
| 246 | 250 | ||
| 247 | extern void policydb_destroy(struct policydb *p); | 251 | extern void policydb_destroy(struct policydb *p); |
| @@ -253,6 +257,10 @@ extern int policydb_read(struct policydb *p, void *fp); | |||
| 253 | 257 | ||
| 254 | #define POLICYDB_CONFIG_MLS 1 | 258 | #define POLICYDB_CONFIG_MLS 1 |
| 255 | 259 | ||
| 260 | /* the config flags related to unknown classes/perms are bits 2 and 3 */ | ||
| 261 | #define REJECT_UNKNOWN 0x00000002 | ||
| 262 | #define ALLOW_UNKNOWN 0x00000004 | ||
| 263 | |||
| 256 | #define OBJECT_R "object_r" | 264 | #define OBJECT_R "object_r" |
| 257 | #define OBJECT_R_VAL 1 | 265 | #define OBJECT_R_VAL 1 |
| 258 | 266 | ||