From 16115b0a7b7cdf08fb38084d857d572d8a9088dc Mon Sep 17 00:00:00 2001
From: Michal Sekletar <msekleta@redhat.com>
Date: Thu, 24 Jul 2014 10:40:28 +0200
Subject: socket: introduce SELinuxContextFromNet option

This makes possible to spawn service instances triggered by socket with
MLS/MCS SELinux labels which are created based on information provided by
connected peer.

Implementation of label_get_child_mls_label derived from xinetd.

Reviewed-by: Paul Moore <pmoore@redhat.com>
---
 src/core/execute.h | 1 +
 1 file changed, 1 insertion(+)

(limited to 'src/core/execute.h')

diff --git a/src/core/execute.h b/src/core/execute.h
index 9c1f249cd4..6f35736eda 100644
--- a/src/core/execute.h
+++ b/src/core/execute.h
@@ -204,6 +204,7 @@ struct ExecParameters {
         bool apply_chroot;
         bool apply_tty_stdin;
         bool confirm_spawn;
+        bool selinux_context_net;
         CGroupControllerMask cgroup_supported;
         const char *cgroup_path;
         const char *runtime_prefix;
-- 
cgit v1.2.3-54-g00ecf