From cf8bd44339b00330fdbc91041d6731ba8aba9fec Mon Sep 17 00:00:00 2001
From: Michal Sekletar <msekleta@redhat.com>
Date: Thu, 24 Jul 2014 10:40:28 +0200
Subject: socket: introduce SELinuxLabelViaNet option

This makes possible to spawn service instances triggered by socket with
MLS/MCS SELinux labels which are created based on information provided by
connected peer.

Implementation of label_get_child_label derived from xinetd.

Reviewed-by: Paul Moore <pmoore@redhat.com>
---
 src/core/socket.h | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'src/core/socket.h')

diff --git a/src/core/socket.h b/src/core/socket.h
index eede70564a..ab342c34e8 100644
--- a/src/core/socket.h
+++ b/src/core/socket.h
@@ -165,6 +165,8 @@ struct Socket {
         char *smack_ip_in;
         char *smack_ip_out;
 
+        bool selinux_label_via_net;
+
         char *user, *group;
 };
 
-- 
cgit v1.2.3-54-g00ecf