From 7b52a628f8b43ba521c302a7f32bccf9d0dc8bfd Mon Sep 17 00:00:00 2001 From: Michael Scherer Date: Thu, 6 Feb 2014 10:05:16 +0100 Subject: exec: Add SELinuxContext configuration item MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This permit to let system administrators decide of the domain of a service. This can be used with templated units to have each service in a différent domain ( for example, a per customer database, using MLS or anything ), or can be used to force a non selinux enabled system (jvm, erlang, etc) to start in a different domain for each service. --- src/core/execute.h | 2 ++ 1 file changed, 2 insertions(+) (limited to 'src/core/execute.h') diff --git a/src/core/execute.h b/src/core/execute.h index 4851152743..be811a97c1 100644 --- a/src/core/execute.h +++ b/src/core/execute.h @@ -133,6 +133,8 @@ struct ExecContext { char *utmp_id; + char *selinux_context; + char **read_write_dirs, **read_only_dirs, **inaccessible_dirs; unsigned long mount_flags; -- cgit v1.2.3-54-g00ecf