trunk: fix disable ubac condition for process perms.

policy/constraints

@@ -79,11 +79,13 @@ constrain dir_file_class_set { create relabelto relabelfrom }
 # Process rules
 #
 
-constrain process { sigchld sigkill sigstop signull signal ptrace getsched setsched getsession getpgid setpgid getcap setcap share getattr setrlimit }
-(
-	basic_ubac_conditions
-	or t1 == ubacproc
-);
+ifdef(`enable_ubac',`
+	constrain process { sigchld sigkill sigstop signull signal ptrace getsched setsched getsession getpgid setpgid getcap setcap share getattr setrlimit }
+	(
+		basic_ubac_conditions
+		or t1 == ubacproc
+	);
+')
 
 constrain process { transition noatsecure siginh rlimitinh }
 (