aboutsummaryrefslogtreecommitdiffstats
path: root/security/selinux
diff options
context:
space:
mode:
authorStephen Smalley <sds@tycho.nsa.gov>2007-03-26 13:36:26 -0400
committerJames Morris <jmorris@namei.org>2007-04-26 01:35:58 -0400
commita764ae4b0781fac75f9657bc737c37ae59888389 (patch)
treeeaff75fefa79a5db1713bf37d465ecc6dfbb2be4 /security/selinux
parent4f6a993f96a256e83b9be7612f958c7bc4ca9f00 (diff)
selinux: remove userland security class and permission definitions
Remove userland security class and permission definitions from the kernel as the kernel only needs to use and validate its own class and permission definitions and userland definitions may change. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/selinux')
-rw-r--r--security/selinux/avc.c2
-rw-r--r--security/selinux/include/av_perm_to_string.h102
-rw-r--r--security/selinux/include/av_permissions.h179
-rw-r--r--security/selinux/include/class_to_string.h34
-rw-r--r--security/selinux/include/flask.h16
-rw-r--r--security/selinux/ss/services.c2
6 files changed, 21 insertions, 314 deletions
diff --git a/security/selinux/avc.c b/security/selinux/avc.c
index da8caf10ef97..e4396a89edc6 100644
--- a/security/selinux/avc.c
+++ b/security/selinux/avc.c
@@ -217,6 +217,8 @@ static void avc_dump_query(struct audit_buffer *ab, u32 ssid, u32 tsid, u16 tcla
217 audit_log_format(ab, " tcontext=%s", scontext); 217 audit_log_format(ab, " tcontext=%s", scontext);
218 kfree(scontext); 218 kfree(scontext);
219 } 219 }
220
221 BUG_ON(tclass >= ARRAY_SIZE(class_to_string) || !class_to_string[tclass]);
220 audit_log_format(ab, " tclass=%s", class_to_string[tclass]); 222 audit_log_format(ab, " tclass=%s", class_to_string[tclass]);
221} 223}
222 224
diff --git a/security/selinux/include/av_perm_to_string.h b/security/selinux/include/av_perm_to_string.h
index ad9fb2d69b50..b83e74012a97 100644
--- a/security/selinux/include/av_perm_to_string.h
+++ b/security/selinux/include/av_perm_to_string.h
@@ -128,96 +128,6 @@
128 S_(SECCLASS_CAPABILITY, CAPABILITY__LEASE, "lease") 128 S_(SECCLASS_CAPABILITY, CAPABILITY__LEASE, "lease")
129 S_(SECCLASS_CAPABILITY, CAPABILITY__AUDIT_WRITE, "audit_write") 129 S_(SECCLASS_CAPABILITY, CAPABILITY__AUDIT_WRITE, "audit_write")
130 S_(SECCLASS_CAPABILITY, CAPABILITY__AUDIT_CONTROL, "audit_control") 130 S_(SECCLASS_CAPABILITY, CAPABILITY__AUDIT_CONTROL, "audit_control")
131 S_(SECCLASS_PASSWD, PASSWD__PASSWD, "passwd")
132 S_(SECCLASS_PASSWD, PASSWD__CHFN, "chfn")
133 S_(SECCLASS_PASSWD, PASSWD__CHSH, "chsh")
134 S_(SECCLASS_PASSWD, PASSWD__ROOTOK, "rootok")
135 S_(SECCLASS_PASSWD, PASSWD__CRONTAB, "crontab")
136 S_(SECCLASS_DRAWABLE, DRAWABLE__CREATE, "create")
137 S_(SECCLASS_DRAWABLE, DRAWABLE__DESTROY, "destroy")
138 S_(SECCLASS_DRAWABLE, DRAWABLE__DRAW, "draw")
139 S_(SECCLASS_DRAWABLE, DRAWABLE__COPY, "copy")
140 S_(SECCLASS_DRAWABLE, DRAWABLE__GETATTR, "getattr")
141 S_(SECCLASS_GC, GC__CREATE, "create")
142 S_(SECCLASS_GC, GC__FREE, "free")
143 S_(SECCLASS_GC, GC__GETATTR, "getattr")
144 S_(SECCLASS_GC, GC__SETATTR, "setattr")
145 S_(SECCLASS_WINDOW, WINDOW__ADDCHILD, "addchild")
146 S_(SECCLASS_WINDOW, WINDOW__CREATE, "create")
147 S_(SECCLASS_WINDOW, WINDOW__DESTROY, "destroy")
148 S_(SECCLASS_WINDOW, WINDOW__MAP, "map")
149 S_(SECCLASS_WINDOW, WINDOW__UNMAP, "unmap")
150 S_(SECCLASS_WINDOW, WINDOW__CHSTACK, "chstack")
151 S_(SECCLASS_WINDOW, WINDOW__CHPROPLIST, "chproplist")
152 S_(SECCLASS_WINDOW, WINDOW__CHPROP, "chprop")
153 S_(SECCLASS_WINDOW, WINDOW__LISTPROP, "listprop")
154 S_(SECCLASS_WINDOW, WINDOW__GETATTR, "getattr")
155 S_(SECCLASS_WINDOW, WINDOW__SETATTR, "setattr")
156 S_(SECCLASS_WINDOW, WINDOW__SETFOCUS, "setfocus")
157 S_(SECCLASS_WINDOW, WINDOW__MOVE, "move")
158 S_(SECCLASS_WINDOW, WINDOW__CHSELECTION, "chselection")
159 S_(SECCLASS_WINDOW, WINDOW__CHPARENT, "chparent")
160 S_(SECCLASS_WINDOW, WINDOW__CTRLLIFE, "ctrllife")
161 S_(SECCLASS_WINDOW, WINDOW__ENUMERATE, "enumerate")
162 S_(SECCLASS_WINDOW, WINDOW__TRANSPARENT, "transparent")
163 S_(SECCLASS_WINDOW, WINDOW__MOUSEMOTION, "mousemotion")
164 S_(SECCLASS_WINDOW, WINDOW__CLIENTCOMEVENT, "clientcomevent")
165 S_(SECCLASS_WINDOW, WINDOW__INPUTEVENT, "inputevent")
166 S_(SECCLASS_WINDOW, WINDOW__DRAWEVENT, "drawevent")
167 S_(SECCLASS_WINDOW, WINDOW__WINDOWCHANGEEVENT, "windowchangeevent")
168 S_(SECCLASS_WINDOW, WINDOW__WINDOWCHANGEREQUEST, "windowchangerequest")
169 S_(SECCLASS_WINDOW, WINDOW__SERVERCHANGEEVENT, "serverchangeevent")
170 S_(SECCLASS_WINDOW, WINDOW__EXTENSIONEVENT, "extensionevent")
171 S_(SECCLASS_FONT, FONT__LOAD, "load")
172 S_(SECCLASS_FONT, FONT__FREE, "free")
173 S_(SECCLASS_FONT, FONT__GETATTR, "getattr")
174 S_(SECCLASS_FONT, FONT__USE, "use")
175 S_(SECCLASS_COLORMAP, COLORMAP__CREATE, "create")
176 S_(SECCLASS_COLORMAP, COLORMAP__FREE, "free")
177 S_(SECCLASS_COLORMAP, COLORMAP__INSTALL, "install")
178 S_(SECCLASS_COLORMAP, COLORMAP__UNINSTALL, "uninstall")
179 S_(SECCLASS_COLORMAP, COLORMAP__LIST, "list")
180 S_(SECCLASS_COLORMAP, COLORMAP__READ, "read")
181 S_(SECCLASS_COLORMAP, COLORMAP__STORE, "store")
182 S_(SECCLASS_COLORMAP, COLORMAP__GETATTR, "getattr")
183 S_(SECCLASS_COLORMAP, COLORMAP__SETATTR, "setattr")
184 S_(SECCLASS_PROPERTY, PROPERTY__CREATE, "create")
185 S_(SECCLASS_PROPERTY, PROPERTY__FREE, "free")
186 S_(SECCLASS_PROPERTY, PROPERTY__READ, "read")
187 S_(SECCLASS_PROPERTY, PROPERTY__WRITE, "write")
188 S_(SECCLASS_CURSOR, CURSOR__CREATE, "create")
189 S_(SECCLASS_CURSOR, CURSOR__CREATEGLYPH, "createglyph")
190 S_(SECCLASS_CURSOR, CURSOR__FREE, "free")
191 S_(SECCLASS_CURSOR, CURSOR__ASSIGN, "assign")
192 S_(SECCLASS_CURSOR, CURSOR__SETATTR, "setattr")
193 S_(SECCLASS_XCLIENT, XCLIENT__KILL, "kill")
194 S_(SECCLASS_XINPUT, XINPUT__LOOKUP, "lookup")
195 S_(SECCLASS_XINPUT, XINPUT__GETATTR, "getattr")
196 S_(SECCLASS_XINPUT, XINPUT__SETATTR, "setattr")
197 S_(SECCLASS_XINPUT, XINPUT__SETFOCUS, "setfocus")
198 S_(SECCLASS_XINPUT, XINPUT__WARPPOINTER, "warppointer")
199 S_(SECCLASS_XINPUT, XINPUT__ACTIVEGRAB, "activegrab")
200 S_(SECCLASS_XINPUT, XINPUT__PASSIVEGRAB, "passivegrab")
201 S_(SECCLASS_XINPUT, XINPUT__UNGRAB, "ungrab")
202 S_(SECCLASS_XINPUT, XINPUT__BELL, "bell")
203 S_(SECCLASS_XINPUT, XINPUT__MOUSEMOTION, "mousemotion")
204 S_(SECCLASS_XINPUT, XINPUT__RELABELINPUT, "relabelinput")
205 S_(SECCLASS_XSERVER, XSERVER__SCREENSAVER, "screensaver")
206 S_(SECCLASS_XSERVER, XSERVER__GETHOSTLIST, "gethostlist")
207 S_(SECCLASS_XSERVER, XSERVER__SETHOSTLIST, "sethostlist")
208 S_(SECCLASS_XSERVER, XSERVER__GETFONTPATH, "getfontpath")
209 S_(SECCLASS_XSERVER, XSERVER__SETFONTPATH, "setfontpath")
210 S_(SECCLASS_XSERVER, XSERVER__GETATTR, "getattr")
211 S_(SECCLASS_XSERVER, XSERVER__GRAB, "grab")
212 S_(SECCLASS_XSERVER, XSERVER__UNGRAB, "ungrab")
213 S_(SECCLASS_XEXTENSION, XEXTENSION__QUERY, "query")
214 S_(SECCLASS_XEXTENSION, XEXTENSION__USE, "use")
215 S_(SECCLASS_PAX, PAX__PAGEEXEC, "pageexec")
216 S_(SECCLASS_PAX, PAX__EMUTRAMP, "emutramp")
217 S_(SECCLASS_PAX, PAX__MPROTECT, "mprotect")
218 S_(SECCLASS_PAX, PAX__RANDMMAP, "randmmap")
219 S_(SECCLASS_PAX, PAX__RANDEXEC, "randexec")
220 S_(SECCLASS_PAX, PAX__SEGMEXEC, "segmexec")
221 S_(SECCLASS_NETLINK_ROUTE_SOCKET, NETLINK_ROUTE_SOCKET__NLMSG_READ, "nlmsg_read") 131 S_(SECCLASS_NETLINK_ROUTE_SOCKET, NETLINK_ROUTE_SOCKET__NLMSG_READ, "nlmsg_read")
222 S_(SECCLASS_NETLINK_ROUTE_SOCKET, NETLINK_ROUTE_SOCKET__NLMSG_WRITE, "nlmsg_write") 132 S_(SECCLASS_NETLINK_ROUTE_SOCKET, NETLINK_ROUTE_SOCKET__NLMSG_WRITE, "nlmsg_write")
223 S_(SECCLASS_NETLINK_FIREWALL_SOCKET, NETLINK_FIREWALL_SOCKET__NLMSG_READ, "nlmsg_read") 133 S_(SECCLASS_NETLINK_FIREWALL_SOCKET, NETLINK_FIREWALL_SOCKET__NLMSG_READ, "nlmsg_read")
@@ -232,16 +142,6 @@
232 S_(SECCLASS_NETLINK_AUDIT_SOCKET, NETLINK_AUDIT_SOCKET__NLMSG_READPRIV, "nlmsg_readpriv") 142 S_(SECCLASS_NETLINK_AUDIT_SOCKET, NETLINK_AUDIT_SOCKET__NLMSG_READPRIV, "nlmsg_readpriv")
233 S_(SECCLASS_NETLINK_IP6FW_SOCKET, NETLINK_IP6FW_SOCKET__NLMSG_READ, "nlmsg_read") 143 S_(SECCLASS_NETLINK_IP6FW_SOCKET, NETLINK_IP6FW_SOCKET__NLMSG_READ, "nlmsg_read")
234 S_(SECCLASS_NETLINK_IP6FW_SOCKET, NETLINK_IP6FW_SOCKET__NLMSG_WRITE, "nlmsg_write") 144 S_(SECCLASS_NETLINK_IP6FW_SOCKET, NETLINK_IP6FW_SOCKET__NLMSG_WRITE, "nlmsg_write")
235 S_(SECCLASS_DBUS, DBUS__ACQUIRE_SVC, "acquire_svc")
236 S_(SECCLASS_DBUS, DBUS__SEND_MSG, "send_msg")
237 S_(SECCLASS_NSCD, NSCD__GETPWD, "getpwd")
238 S_(SECCLASS_NSCD, NSCD__GETGRP, "getgrp")
239 S_(SECCLASS_NSCD, NSCD__GETHOST, "gethost")
240 S_(SECCLASS_NSCD, NSCD__GETSTAT, "getstat")
241 S_(SECCLASS_NSCD, NSCD__ADMIN, "admin")
242 S_(SECCLASS_NSCD, NSCD__SHMEMPWD, "shmempwd")
243 S_(SECCLASS_NSCD, NSCD__SHMEMGRP, "shmemgrp")
244 S_(SECCLASS_NSCD, NSCD__SHMEMHOST, "shmemhost")
245 S_(SECCLASS_ASSOCIATION, ASSOCIATION__SENDTO, "sendto") 145 S_(SECCLASS_ASSOCIATION, ASSOCIATION__SENDTO, "sendto")
246 S_(SECCLASS_ASSOCIATION, ASSOCIATION__RECVFROM, "recvfrom") 146 S_(SECCLASS_ASSOCIATION, ASSOCIATION__RECVFROM, "recvfrom")
247 S_(SECCLASS_ASSOCIATION, ASSOCIATION__SETCONTEXT, "setcontext") 147 S_(SECCLASS_ASSOCIATION, ASSOCIATION__SETCONTEXT, "setcontext")
@@ -256,7 +156,5 @@
256 S_(SECCLASS_KEY, KEY__LINK, "link") 156 S_(SECCLASS_KEY, KEY__LINK, "link")
257 S_(SECCLASS_KEY, KEY__SETATTR, "setattr") 157 S_(SECCLASS_KEY, KEY__SETATTR, "setattr")
258 S_(SECCLASS_KEY, KEY__CREATE, "create") 158 S_(SECCLASS_KEY, KEY__CREATE, "create")
259 S_(SECCLASS_CONTEXT, CONTEXT__TRANSLATE, "translate")
260 S_(SECCLASS_CONTEXT, CONTEXT__CONTAINS, "contains")
261 S_(SECCLASS_DCCP_SOCKET, DCCP_SOCKET__NODE_BIND, "node_bind") 159 S_(SECCLASS_DCCP_SOCKET, DCCP_SOCKET__NODE_BIND, "node_bind")
262 S_(SECCLASS_DCCP_SOCKET, DCCP_SOCKET__NAME_CONNECT, "name_connect") 160 S_(SECCLASS_DCCP_SOCKET, DCCP_SOCKET__NAME_CONNECT, "name_connect")
diff --git a/security/selinux/include/av_permissions.h b/security/selinux/include/av_permissions.h
index 2de4b5fe3aa1..5fee1735bffe 100644
--- a/security/selinux/include/av_permissions.h
+++ b/security/selinux/include/av_permissions.h
@@ -16,7 +16,6 @@
16#define COMMON_FILE__SWAPON 0x00004000UL 16#define COMMON_FILE__SWAPON 0x00004000UL
17#define COMMON_FILE__QUOTAON 0x00008000UL 17#define COMMON_FILE__QUOTAON 0x00008000UL
18#define COMMON_FILE__MOUNTON 0x00010000UL 18#define COMMON_FILE__MOUNTON 0x00010000UL
19
20#define COMMON_SOCKET__IOCTL 0x00000001UL 19#define COMMON_SOCKET__IOCTL 0x00000001UL
21#define COMMON_SOCKET__READ 0x00000002UL 20#define COMMON_SOCKET__READ 0x00000002UL
22#define COMMON_SOCKET__WRITE 0x00000004UL 21#define COMMON_SOCKET__WRITE 0x00000004UL
@@ -39,7 +38,6 @@
39#define COMMON_SOCKET__RECV_MSG 0x00080000UL 38#define COMMON_SOCKET__RECV_MSG 0x00080000UL
40#define COMMON_SOCKET__SEND_MSG 0x00100000UL 39#define COMMON_SOCKET__SEND_MSG 0x00100000UL
41#define COMMON_SOCKET__NAME_BIND 0x00200000UL 40#define COMMON_SOCKET__NAME_BIND 0x00200000UL
42
43#define COMMON_IPC__CREATE 0x00000001UL 41#define COMMON_IPC__CREATE 0x00000001UL
44#define COMMON_IPC__DESTROY 0x00000002UL 42#define COMMON_IPC__DESTROY 0x00000002UL
45#define COMMON_IPC__GETATTR 0x00000004UL 43#define COMMON_IPC__GETATTR 0x00000004UL
@@ -49,7 +47,6 @@
49#define COMMON_IPC__ASSOCIATE 0x00000040UL 47#define COMMON_IPC__ASSOCIATE 0x00000040UL
50#define COMMON_IPC__UNIX_READ 0x00000080UL 48#define COMMON_IPC__UNIX_READ 0x00000080UL
51#define COMMON_IPC__UNIX_WRITE 0x00000100UL 49#define COMMON_IPC__UNIX_WRITE 0x00000100UL
52
53#define FILESYSTEM__MOUNT 0x00000001UL 50#define FILESYSTEM__MOUNT 0x00000001UL
54#define FILESYSTEM__REMOUNT 0x00000002UL 51#define FILESYSTEM__REMOUNT 0x00000002UL
55#define FILESYSTEM__UNMOUNT 0x00000004UL 52#define FILESYSTEM__UNMOUNT 0x00000004UL
@@ -60,7 +57,6 @@
60#define FILESYSTEM__ASSOCIATE 0x00000080UL 57#define FILESYSTEM__ASSOCIATE 0x00000080UL
61#define FILESYSTEM__QUOTAMOD 0x00000100UL 58#define FILESYSTEM__QUOTAMOD 0x00000100UL
62#define FILESYSTEM__QUOTAGET 0x00000200UL 59#define FILESYSTEM__QUOTAGET 0x00000200UL
63
64#define DIR__IOCTL 0x00000001UL 60#define DIR__IOCTL 0x00000001UL
65#define DIR__READ 0x00000002UL 61#define DIR__READ 0x00000002UL
66#define DIR__WRITE 0x00000004UL 62#define DIR__WRITE 0x00000004UL
@@ -78,13 +74,11 @@
78#define DIR__SWAPON 0x00004000UL 74#define DIR__SWAPON 0x00004000UL
79#define DIR__QUOTAON 0x00008000UL 75#define DIR__QUOTAON 0x00008000UL
80#define DIR__MOUNTON 0x00010000UL 76#define DIR__MOUNTON 0x00010000UL
81
82#define DIR__ADD_NAME 0x00020000UL 77#define DIR__ADD_NAME 0x00020000UL
83#define DIR__REMOVE_NAME 0x00040000UL 78#define DIR__REMOVE_NAME 0x00040000UL
84#define DIR__REPARENT 0x00080000UL 79#define DIR__REPARENT 0x00080000UL
85#define DIR__SEARCH 0x00100000UL 80#define DIR__SEARCH 0x00100000UL
86#define DIR__RMDIR 0x00200000UL 81#define DIR__RMDIR 0x00200000UL
87
88#define FILE__IOCTL 0x00000001UL 82#define FILE__IOCTL 0x00000001UL
89#define FILE__READ 0x00000002UL 83#define FILE__READ 0x00000002UL
90#define FILE__WRITE 0x00000004UL 84#define FILE__WRITE 0x00000004UL
@@ -102,11 +96,9 @@
102#define FILE__SWAPON 0x00004000UL 96#define FILE__SWAPON 0x00004000UL
103#define FILE__QUOTAON 0x00008000UL 97#define FILE__QUOTAON 0x00008000UL
104#define FILE__MOUNTON 0x00010000UL 98#define FILE__MOUNTON 0x00010000UL
105
106#define FILE__EXECUTE_NO_TRANS 0x00020000UL 99#define FILE__EXECUTE_NO_TRANS 0x00020000UL
107#define FILE__ENTRYPOINT 0x00040000UL 100#define FILE__ENTRYPOINT 0x00040000UL
108#define FILE__EXECMOD 0x00080000UL 101#define FILE__EXECMOD 0x00080000UL
109
110#define LNK_FILE__IOCTL 0x00000001UL 102#define LNK_FILE__IOCTL 0x00000001UL
111#define LNK_FILE__READ 0x00000002UL 103#define LNK_FILE__READ 0x00000002UL
112#define LNK_FILE__WRITE 0x00000004UL 104#define LNK_FILE__WRITE 0x00000004UL
@@ -124,7 +116,6 @@
124#define LNK_FILE__SWAPON 0x00004000UL 116#define LNK_FILE__SWAPON 0x00004000UL
125#define LNK_FILE__QUOTAON 0x00008000UL 117#define LNK_FILE__QUOTAON 0x00008000UL
126#define LNK_FILE__MOUNTON 0x00010000UL 118#define LNK_FILE__MOUNTON 0x00010000UL
127
128#define CHR_FILE__IOCTL 0x00000001UL 119#define CHR_FILE__IOCTL 0x00000001UL
129#define CHR_FILE__READ 0x00000002UL 120#define CHR_FILE__READ 0x00000002UL
130#define CHR_FILE__WRITE 0x00000004UL 121#define CHR_FILE__WRITE 0x00000004UL
@@ -142,11 +133,9 @@
142#define CHR_FILE__SWAPON 0x00004000UL 133#define CHR_FILE__SWAPON 0x00004000UL
143#define CHR_FILE__QUOTAON 0x00008000UL 134#define CHR_FILE__QUOTAON 0x00008000UL
144#define CHR_FILE__MOUNTON 0x00010000UL 135#define CHR_FILE__MOUNTON 0x00010000UL
145
146#define CHR_FILE__EXECUTE_NO_TRANS 0x00020000UL 136#define CHR_FILE__EXECUTE_NO_TRANS 0x00020000UL
147#define CHR_FILE__ENTRYPOINT 0x00040000UL 137#define CHR_FILE__ENTRYPOINT 0x00040000UL
148#define CHR_FILE__EXECMOD 0x00080000UL 138#define CHR_FILE__EXECMOD 0x00080000UL
149
150#define BLK_FILE__IOCTL 0x00000001UL 139#define BLK_FILE__IOCTL 0x00000001UL
151#define BLK_FILE__READ 0x00000002UL 140#define BLK_FILE__READ 0x00000002UL
152#define BLK_FILE__WRITE 0x00000004UL 141#define BLK_FILE__WRITE 0x00000004UL
@@ -164,7 +153,6 @@
164#define BLK_FILE__SWAPON 0x00004000UL 153#define BLK_FILE__SWAPON 0x00004000UL
165#define BLK_FILE__QUOTAON 0x00008000UL 154#define BLK_FILE__QUOTAON 0x00008000UL
166#define BLK_FILE__MOUNTON 0x00010000UL 155#define BLK_FILE__MOUNTON 0x00010000UL
167
168#define SOCK_FILE__IOCTL 0x00000001UL 156#define SOCK_FILE__IOCTL 0x00000001UL
169#define SOCK_FILE__READ 0x00000002UL 157#define SOCK_FILE__READ 0x00000002UL
170#define SOCK_FILE__WRITE 0x00000004UL 158#define SOCK_FILE__WRITE 0x00000004UL
@@ -182,7 +170,6 @@
182#define SOCK_FILE__SWAPON 0x00004000UL 170#define SOCK_FILE__SWAPON 0x00004000UL
183#define SOCK_FILE__QUOTAON 0x00008000UL 171#define SOCK_FILE__QUOTAON 0x00008000UL
184#define SOCK_FILE__MOUNTON 0x00010000UL 172#define SOCK_FILE__MOUNTON 0x00010000UL
185
186#define FIFO_FILE__IOCTL 0x00000001UL 173#define FIFO_FILE__IOCTL 0x00000001UL
187#define FIFO_FILE__READ 0x00000002UL 174#define FIFO_FILE__READ 0x00000002UL
188#define FIFO_FILE__WRITE 0x00000004UL 175#define FIFO_FILE__WRITE 0x00000004UL
@@ -200,9 +187,7 @@
200#define FIFO_FILE__SWAPON 0x00004000UL 187#define FIFO_FILE__SWAPON 0x00004000UL
201#define FIFO_FILE__QUOTAON 0x00008000UL 188#define FIFO_FILE__QUOTAON 0x00008000UL
202#define FIFO_FILE__MOUNTON 0x00010000UL 189#define FIFO_FILE__MOUNTON 0x00010000UL
203
204#define FD__USE 0x00000001UL 190#define FD__USE 0x00000001UL
205
206#define SOCKET__IOCTL 0x00000001UL 191#define SOCKET__IOCTL 0x00000001UL
207#define SOCKET__READ 0x00000002UL 192#define SOCKET__READ 0x00000002UL
208#define SOCKET__WRITE 0x00000004UL 193#define SOCKET__WRITE 0x00000004UL
@@ -225,7 +210,6 @@
225#define SOCKET__RECV_MSG 0x00080000UL 210#define SOCKET__RECV_MSG 0x00080000UL
226#define SOCKET__SEND_MSG 0x00100000UL 211#define SOCKET__SEND_MSG 0x00100000UL
227#define SOCKET__NAME_BIND 0x00200000UL 212#define SOCKET__NAME_BIND 0x00200000UL
228
229#define TCP_SOCKET__IOCTL 0x00000001UL 213#define TCP_SOCKET__IOCTL 0x00000001UL
230#define TCP_SOCKET__READ 0x00000002UL 214#define TCP_SOCKET__READ 0x00000002UL
231#define TCP_SOCKET__WRITE 0x00000004UL 215#define TCP_SOCKET__WRITE 0x00000004UL
@@ -248,13 +232,11 @@
248#define TCP_SOCKET__RECV_MSG 0x00080000UL 232#define TCP_SOCKET__RECV_MSG 0x00080000UL
249#define TCP_SOCKET__SEND_MSG 0x00100000UL 233#define TCP_SOCKET__SEND_MSG 0x00100000UL
250#define TCP_SOCKET__NAME_BIND 0x00200000UL 234#define TCP_SOCKET__NAME_BIND 0x00200000UL
251
252#define TCP_SOCKET__CONNECTTO 0x00400000UL 235#define TCP_SOCKET__CONNECTTO 0x00400000UL
253#define TCP_SOCKET__NEWCONN 0x00800000UL 236#define TCP_SOCKET__NEWCONN 0x00800000UL
254#define TCP_SOCKET__ACCEPTFROM 0x01000000UL 237#define TCP_SOCKET__ACCEPTFROM 0x01000000UL
255#define TCP_SOCKET__NODE_BIND 0x02000000UL 238#define TCP_SOCKET__NODE_BIND 0x02000000UL
256#define TCP_SOCKET__NAME_CONNECT 0x04000000UL 239#define TCP_SOCKET__NAME_CONNECT 0x04000000UL
257
258#define UDP_SOCKET__IOCTL 0x00000001UL 240#define UDP_SOCKET__IOCTL 0x00000001UL
259#define UDP_SOCKET__READ 0x00000002UL 241#define UDP_SOCKET__READ 0x00000002UL
260#define UDP_SOCKET__WRITE 0x00000004UL 242#define UDP_SOCKET__WRITE 0x00000004UL
@@ -277,9 +259,7 @@
277#define UDP_SOCKET__RECV_MSG 0x00080000UL 259#define UDP_SOCKET__RECV_MSG 0x00080000UL
278#define UDP_SOCKET__SEND_MSG 0x00100000UL 260#define UDP_SOCKET__SEND_MSG 0x00100000UL
279#define UDP_SOCKET__NAME_BIND 0x00200000UL 261#define UDP_SOCKET__NAME_BIND 0x00200000UL
280
281#define UDP_SOCKET__NODE_BIND 0x00400000UL 262#define UDP_SOCKET__NODE_BIND 0x00400000UL
282
283#define RAWIP_SOCKET__IOCTL 0x00000001UL 263#define RAWIP_SOCKET__IOCTL 0x00000001UL
284#define RAWIP_SOCKET__READ 0x00000002UL 264#define RAWIP_SOCKET__READ 0x00000002UL
285#define RAWIP_SOCKET__WRITE 0x00000004UL 265#define RAWIP_SOCKET__WRITE 0x00000004UL
@@ -302,9 +282,7 @@
302#define RAWIP_SOCKET__RECV_MSG 0x00080000UL 282#define RAWIP_SOCKET__RECV_MSG 0x00080000UL
303#define RAWIP_SOCKET__SEND_MSG 0x00100000UL 283#define RAWIP_SOCKET__SEND_MSG 0x00100000UL
304#define RAWIP_SOCKET__NAME_BIND 0x00200000UL 284#define RAWIP_SOCKET__NAME_BIND 0x00200000UL
305
306#define RAWIP_SOCKET__NODE_BIND 0x00400000UL 285#define RAWIP_SOCKET__NODE_BIND 0x00400000UL
307
308#define NODE__TCP_RECV 0x00000001UL 286#define NODE__TCP_RECV 0x00000001UL
309#define NODE__TCP_SEND 0x00000002UL 287#define NODE__TCP_SEND 0x00000002UL
310#define NODE__UDP_RECV 0x00000004UL 288#define NODE__UDP_RECV 0x00000004UL
@@ -314,7 +292,6 @@
314#define NODE__ENFORCE_DEST 0x00000040UL 292#define NODE__ENFORCE_DEST 0x00000040UL
315#define NODE__DCCP_RECV 0x00000080UL 293#define NODE__DCCP_RECV 0x00000080UL
316#define NODE__DCCP_SEND 0x00000100UL 294#define NODE__DCCP_SEND 0x00000100UL
317
318#define NETIF__TCP_RECV 0x00000001UL 295#define NETIF__TCP_RECV 0x00000001UL
319#define NETIF__TCP_SEND 0x00000002UL 296#define NETIF__TCP_SEND 0x00000002UL
320#define NETIF__UDP_RECV 0x00000004UL 297#define NETIF__UDP_RECV 0x00000004UL
@@ -323,7 +300,6 @@
323#define NETIF__RAWIP_SEND 0x00000020UL 300#define NETIF__RAWIP_SEND 0x00000020UL
324#define NETIF__DCCP_RECV 0x00000040UL 301#define NETIF__DCCP_RECV 0x00000040UL
325#define NETIF__DCCP_SEND 0x00000080UL 302#define NETIF__DCCP_SEND 0x00000080UL
326
327#define NETLINK_SOCKET__IOCTL 0x00000001UL 303#define NETLINK_SOCKET__IOCTL 0x00000001UL
328#define NETLINK_SOCKET__READ 0x00000002UL 304#define NETLINK_SOCKET__READ 0x00000002UL
329#define NETLINK_SOCKET__WRITE 0x00000004UL 305#define NETLINK_SOCKET__WRITE 0x00000004UL
@@ -346,7 +322,6 @@
346#define NETLINK_SOCKET__RECV_MSG 0x00080000UL 322#define NETLINK_SOCKET__RECV_MSG 0x00080000UL
347#define NETLINK_SOCKET__SEND_MSG 0x00100000UL 323#define NETLINK_SOCKET__SEND_MSG 0x00100000UL
348#define NETLINK_SOCKET__NAME_BIND 0x00200000UL 324#define NETLINK_SOCKET__NAME_BIND 0x00200000UL
349
350#define PACKET_SOCKET__IOCTL 0x00000001UL 325#define PACKET_SOCKET__IOCTL 0x00000001UL
351#define PACKET_SOCKET__READ 0x00000002UL 326#define PACKET_SOCKET__READ 0x00000002UL
352#define PACKET_SOCKET__WRITE 0x00000004UL 327#define PACKET_SOCKET__WRITE 0x00000004UL
@@ -369,7 +344,6 @@
369#define PACKET_SOCKET__RECV_MSG 0x00080000UL 344#define PACKET_SOCKET__RECV_MSG 0x00080000UL
370#define PACKET_SOCKET__SEND_MSG 0x00100000UL 345#define PACKET_SOCKET__SEND_MSG 0x00100000UL
371#define PACKET_SOCKET__NAME_BIND 0x00200000UL 346#define PACKET_SOCKET__NAME_BIND 0x00200000UL
372
373#define KEY_SOCKET__IOCTL 0x00000001UL 347#define KEY_SOCKET__IOCTL 0x00000001UL
374#define KEY_SOCKET__READ 0x00000002UL 348#define KEY_SOCKET__READ 0x00000002UL
375#define KEY_SOCKET__WRITE 0x00000004UL 349#define KEY_SOCKET__WRITE 0x00000004UL
@@ -392,7 +366,6 @@
392#define KEY_SOCKET__RECV_MSG 0x00080000UL 366#define KEY_SOCKET__RECV_MSG 0x00080000UL
393#define KEY_SOCKET__SEND_MSG 0x00100000UL 367#define KEY_SOCKET__SEND_MSG 0x00100000UL
394#define KEY_SOCKET__NAME_BIND 0x00200000UL 368#define KEY_SOCKET__NAME_BIND 0x00200000UL
395
396#define UNIX_STREAM_SOCKET__IOCTL 0x00000001UL 369#define UNIX_STREAM_SOCKET__IOCTL 0x00000001UL
397#define UNIX_STREAM_SOCKET__READ 0x00000002UL 370#define UNIX_STREAM_SOCKET__READ 0x00000002UL
398#define UNIX_STREAM_SOCKET__WRITE 0x00000004UL 371#define UNIX_STREAM_SOCKET__WRITE 0x00000004UL
@@ -415,11 +388,9 @@
415#define UNIX_STREAM_SOCKET__RECV_MSG 0x00080000UL 388#define UNIX_STREAM_SOCKET__RECV_MSG 0x00080000UL
416#define UNIX_STREAM_SOCKET__SEND_MSG 0x00100000UL 389#define UNIX_STREAM_SOCKET__SEND_MSG 0x00100000UL
417#define UNIX_STREAM_SOCKET__NAME_BIND 0x00200000UL 390#define UNIX_STREAM_SOCKET__NAME_BIND 0x00200000UL
418
419#define UNIX_STREAM_SOCKET__CONNECTTO 0x00400000UL 391#define UNIX_STREAM_SOCKET__CONNECTTO 0x00400000UL
420#define UNIX_STREAM_SOCKET__NEWCONN 0x00800000UL 392#define UNIX_STREAM_SOCKET__NEWCONN 0x00800000UL
421#define UNIX_STREAM_SOCKET__ACCEPTFROM 0x01000000UL 393#define UNIX_STREAM_SOCKET__ACCEPTFROM 0x01000000UL
422
423#define UNIX_DGRAM_SOCKET__IOCTL 0x00000001UL 394#define UNIX_DGRAM_SOCKET__IOCTL 0x00000001UL
424#define UNIX_DGRAM_SOCKET__READ 0x00000002UL 395#define UNIX_DGRAM_SOCKET__READ 0x00000002UL
425#define UNIX_DGRAM_SOCKET__WRITE 0x00000004UL 396#define UNIX_DGRAM_SOCKET__WRITE 0x00000004UL
@@ -442,7 +413,6 @@
442#define UNIX_DGRAM_SOCKET__RECV_MSG 0x00080000UL 413#define UNIX_DGRAM_SOCKET__RECV_MSG 0x00080000UL
443#define UNIX_DGRAM_SOCKET__SEND_MSG 0x00100000UL 414#define UNIX_DGRAM_SOCKET__SEND_MSG 0x00100000UL
444#define UNIX_DGRAM_SOCKET__NAME_BIND 0x00200000UL 415#define UNIX_DGRAM_SOCKET__NAME_BIND 0x00200000UL
445
446#define PROCESS__FORK 0x00000001UL 416#define PROCESS__FORK 0x00000001UL
447#define PROCESS__TRANSITION 0x00000002UL 417#define PROCESS__TRANSITION 0x00000002UL
448#define PROCESS__SIGCHLD 0x00000004UL 418#define PROCESS__SIGCHLD 0x00000004UL
@@ -473,7 +443,6 @@
473#define PROCESS__EXECHEAP 0x08000000UL 443#define PROCESS__EXECHEAP 0x08000000UL
474#define PROCESS__SETKEYCREATE 0x10000000UL 444#define PROCESS__SETKEYCREATE 0x10000000UL
475#define PROCESS__SETSOCKCREATE 0x20000000UL 445#define PROCESS__SETSOCKCREATE 0x20000000UL
476
477#define IPC__CREATE 0x00000001UL 446#define IPC__CREATE 0x00000001UL
478#define IPC__DESTROY 0x00000002UL 447#define IPC__DESTROY 0x00000002UL
479#define IPC__GETATTR 0x00000004UL 448#define IPC__GETATTR 0x00000004UL
@@ -483,7 +452,6 @@
483#define IPC__ASSOCIATE 0x00000040UL 452#define IPC__ASSOCIATE 0x00000040UL
484#define IPC__UNIX_READ 0x00000080UL 453#define IPC__UNIX_READ 0x00000080UL
485#define IPC__UNIX_WRITE 0x00000100UL 454#define IPC__UNIX_WRITE 0x00000100UL
486
487#define SEM__CREATE 0x00000001UL 455#define SEM__CREATE 0x00000001UL
488#define SEM__DESTROY 0x00000002UL 456#define SEM__DESTROY 0x00000002UL
489#define SEM__GETATTR 0x00000004UL 457#define SEM__GETATTR 0x00000004UL
@@ -493,7 +461,6 @@
493#define SEM__ASSOCIATE 0x00000040UL 461#define SEM__ASSOCIATE 0x00000040UL
494#define SEM__UNIX_READ 0x00000080UL 462#define SEM__UNIX_READ 0x00000080UL
495#define SEM__UNIX_WRITE 0x00000100UL 463#define SEM__UNIX_WRITE 0x00000100UL
496
497#define MSGQ__CREATE 0x00000001UL 464#define MSGQ__CREATE 0x00000001UL
498#define MSGQ__DESTROY 0x00000002UL 465#define MSGQ__DESTROY 0x00000002UL
499#define MSGQ__GETATTR 0x00000004UL 466#define MSGQ__GETATTR 0x00000004UL
@@ -503,12 +470,9 @@
503#define MSGQ__ASSOCIATE 0x00000040UL 470#define MSGQ__ASSOCIATE 0x00000040UL
504#define MSGQ__UNIX_READ 0x00000080UL 471#define MSGQ__UNIX_READ 0x00000080UL
505#define MSGQ__UNIX_WRITE 0x00000100UL 472#define MSGQ__UNIX_WRITE 0x00000100UL
506
507#define MSGQ__ENQUEUE 0x00000200UL 473#define MSGQ__ENQUEUE 0x00000200UL
508
509#define MSG__SEND 0x00000001UL 474#define MSG__SEND 0x00000001UL
510#define MSG__RECEIVE 0x00000002UL 475#define MSG__RECEIVE 0x00000002UL
511
512#define SHM__CREATE 0x00000001UL 476#define SHM__CREATE 0x00000001UL
513#define SHM__DESTROY 0x00000002UL 477#define SHM__DESTROY 0x00000002UL
514#define SHM__GETATTR 0x00000004UL 478#define SHM__GETATTR 0x00000004UL
@@ -518,9 +482,7 @@
518#define SHM__ASSOCIATE 0x00000040UL 482#define SHM__ASSOCIATE 0x00000040UL
519#define SHM__UNIX_READ 0x00000080UL 483#define SHM__UNIX_READ 0x00000080UL
520#define SHM__UNIX_WRITE 0x00000100UL 484#define SHM__UNIX_WRITE 0x00000100UL
521
522#define SHM__LOCK 0x00000200UL 485#define SHM__LOCK 0x00000200UL
523
524#define SECURITY__COMPUTE_AV 0x00000001UL 486#define SECURITY__COMPUTE_AV 0x00000001UL
525#define SECURITY__COMPUTE_CREATE 0x00000002UL 487#define SECURITY__COMPUTE_CREATE 0x00000002UL
526#define SECURITY__COMPUTE_MEMBER 0x00000004UL 488#define SECURITY__COMPUTE_MEMBER 0x00000004UL
@@ -532,12 +494,10 @@
532#define SECURITY__SETBOOL 0x00000100UL 494#define SECURITY__SETBOOL 0x00000100UL
533#define SECURITY__SETSECPARAM 0x00000200UL 495#define SECURITY__SETSECPARAM 0x00000200UL
534#define SECURITY__SETCHECKREQPROT 0x00000400UL 496#define SECURITY__SETCHECKREQPROT 0x00000400UL
535
536#define SYSTEM__IPC_INFO 0x00000001UL 497#define SYSTEM__IPC_INFO 0x00000001UL
537#define SYSTEM__SYSLOG_READ 0x00000002UL 498#define SYSTEM__SYSLOG_READ 0x00000002UL
538#define SYSTEM__SYSLOG_MOD 0x00000004UL 499#define SYSTEM__SYSLOG_MOD 0x00000004UL
539#define SYSTEM__SYSLOG_CONSOLE 0x00000008UL 500#define SYSTEM__SYSLOG_CONSOLE 0x00000008UL
540
541#define CAPABILITY__CHOWN 0x00000001UL 501#define CAPABILITY__CHOWN 0x00000001UL
542#define CAPABILITY__DAC_OVERRIDE 0x00000002UL 502#define CAPABILITY__DAC_OVERRIDE 0x00000002UL
543#define CAPABILITY__DAC_READ_SEARCH 0x00000004UL 503#define CAPABILITY__DAC_READ_SEARCH 0x00000004UL
@@ -569,110 +529,6 @@
569#define CAPABILITY__LEASE 0x10000000UL 529#define CAPABILITY__LEASE 0x10000000UL
570#define CAPABILITY__AUDIT_WRITE 0x20000000UL 530#define CAPABILITY__AUDIT_WRITE 0x20000000UL
571#define CAPABILITY__AUDIT_CONTROL 0x40000000UL 531#define CAPABILITY__AUDIT_CONTROL 0x40000000UL
572
573#define PASSWD__PASSWD 0x00000001UL
574#define PASSWD__CHFN 0x00000002UL
575#define PASSWD__CHSH 0x00000004UL
576#define PASSWD__ROOTOK 0x00000008UL
577#define PASSWD__CRONTAB 0x00000010UL
578
579#define DRAWABLE__CREATE 0x00000001UL
580#define DRAWABLE__DESTROY 0x00000002UL
581#define DRAWABLE__DRAW 0x00000004UL
582#define DRAWABLE__COPY 0x00000008UL
583#define DRAWABLE__GETATTR 0x00000010UL
584
585#define GC__CREATE 0x00000001UL
586#define GC__FREE 0x00000002UL
587#define GC__GETATTR 0x00000004UL
588#define GC__SETATTR 0x00000008UL
589
590#define WINDOW__ADDCHILD 0x00000001UL
591#define WINDOW__CREATE 0x00000002UL
592#define WINDOW__DESTROY 0x00000004UL
593#define WINDOW__MAP 0x00000008UL
594#define WINDOW__UNMAP 0x00000010UL
595#define WINDOW__CHSTACK 0x00000020UL
596#define WINDOW__CHPROPLIST 0x00000040UL
597#define WINDOW__CHPROP 0x00000080UL
598#define WINDOW__LISTPROP 0x00000100UL
599#define WINDOW__GETATTR 0x00000200UL
600#define WINDOW__SETATTR 0x00000400UL
601#define WINDOW__SETFOCUS 0x00000800UL
602#define WINDOW__MOVE 0x00001000UL
603#define WINDOW__CHSELECTION 0x00002000UL
604#define WINDOW__CHPARENT 0x00004000UL
605#define WINDOW__CTRLLIFE 0x00008000UL
606#define WINDOW__ENUMERATE 0x00010000UL
607#define WINDOW__TRANSPARENT 0x00020000UL
608#define WINDOW__MOUSEMOTION 0x00040000UL
609#define WINDOW__CLIENTCOMEVENT 0x00080000UL
610#define WINDOW__INPUTEVENT 0x00100000UL
611#define WINDOW__DRAWEVENT 0x00200000UL
612#define WINDOW__WINDOWCHANGEEVENT 0x00400000UL
613#define WINDOW__WINDOWCHANGEREQUEST 0x00800000UL
614#define WINDOW__SERVERCHANGEEVENT 0x01000000UL
615#define WINDOW__EXTENSIONEVENT 0x02000000UL
616
617#define FONT__LOAD 0x00000001UL
618#define FONT__FREE 0x00000002UL
619#define FONT__GETATTR 0x00000004UL
620#define FONT__USE 0x00000008UL
621
622#define COLORMAP__CREATE 0x00000001UL
623#define COLORMAP__FREE 0x00000002UL
624#define COLORMAP__INSTALL 0x00000004UL
625#define COLORMAP__UNINSTALL 0x00000008UL
626#define COLORMAP__LIST 0x00000010UL
627#define COLORMAP__READ 0x00000020UL
628#define COLORMAP__STORE 0x00000040UL
629#define COLORMAP__GETATTR 0x00000080UL
630#define COLORMAP__SETATTR 0x00000100UL
631
632#define PROPERTY__CREATE 0x00000001UL
633#define PROPERTY__FREE 0x00000002UL
634#define PROPERTY__READ 0x00000004UL
635#define PROPERTY__WRITE 0x00000008UL
636
637#define CURSOR__CREATE 0x00000001UL
638#define CURSOR__CREATEGLYPH 0x00000002UL
639#define CURSOR__FREE 0x00000004UL
640#define CURSOR__ASSIGN 0x00000008UL
641#define CURSOR__SETATTR 0x00000010UL
642
643#define XCLIENT__KILL 0x00000001UL
644
645#define XINPUT__LOOKUP 0x00000001UL
646#define XINPUT__GETATTR 0x00000002UL
647#define XINPUT__SETATTR 0x00000004UL
648#define XINPUT__SETFOCUS 0x00000008UL
649#define XINPUT__WARPPOINTER 0x00000010UL
650#define XINPUT__ACTIVEGRAB 0x00000020UL
651#define XINPUT__PASSIVEGRAB 0x00000040UL
652#define XINPUT__UNGRAB 0x00000080UL
653#define XINPUT__BELL 0x00000100UL
654#define XINPUT__MOUSEMOTION 0x00000200UL
655#define XINPUT__RELABELINPUT 0x00000400UL
656
657#define XSERVER__SCREENSAVER 0x00000001UL
658#define XSERVER__GETHOSTLIST 0x00000002UL
659#define XSERVER__SETHOSTLIST 0x00000004UL
660#define XSERVER__GETFONTPATH 0x00000008UL
661#define XSERVER__SETFONTPATH 0x00000010UL
662#define XSERVER__GETATTR 0x00000020UL
663#define XSERVER__GRAB 0x00000040UL
664#define XSERVER__UNGRAB 0x00000080UL
665
666#define XEXTENSION__QUERY 0x00000001UL
667#define XEXTENSION__USE 0x00000002UL
668
669#define PAX__PAGEEXEC 0x00000001UL
670#define PAX__EMUTRAMP 0x00000002UL
671#define PAX__MPROTECT 0x00000004UL
672#define PAX__RANDMMAP 0x00000008UL
673#define PAX__RANDEXEC 0x00000010UL
674#define PAX__SEGMEXEC 0x00000020UL
675
676#define NETLINK_ROUTE_SOCKET__IOCTL 0x00000001UL 532#define NETLINK_ROUTE_SOCKET__IOCTL 0x00000001UL
677#define NETLINK_ROUTE_SOCKET__READ 0x00000002UL 533#define NETLINK_ROUTE_SOCKET__READ 0x00000002UL
678#define NETLINK_ROUTE_SOCKET__WRITE 0x00000004UL 534#define NETLINK_ROUTE_SOCKET__WRITE 0x00000004UL
@@ -695,10 +551,8 @@
695#define NETLINK_ROUTE_SOCKET__RECV_MSG 0x00080000UL 551#define NETLINK_ROUTE_SOCKET__RECV_MSG 0x00080000UL
696#define NETLINK_ROUTE_SOCKET__SEND_MSG 0x00100000UL 552#define NETLINK_ROUTE_SOCKET__SEND_MSG 0x00100000UL
697#define NETLINK_ROUTE_SOCKET__NAME_BIND 0x00200000UL 553#define NETLINK_ROUTE_SOCKET__NAME_BIND 0x00200000UL
698
699#define NETLINK_ROUTE_SOCKET__NLMSG_READ 0x00400000UL 554#define NETLINK_ROUTE_SOCKET__NLMSG_READ 0x00400000UL
700#define NETLINK_ROUTE_SOCKET__NLMSG_WRITE 0x00800000UL 555#define NETLINK_ROUTE_SOCKET__NLMSG_WRITE 0x00800000UL
701
702#define NETLINK_FIREWALL_SOCKET__IOCTL 0x00000001UL 556#define NETLINK_FIREWALL_SOCKET__IOCTL 0x00000001UL
703#define NETLINK_FIREWALL_SOCKET__READ 0x00000002UL 557#define NETLINK_FIREWALL_SOCKET__READ 0x00000002UL
704#define NETLINK_FIREWALL_SOCKET__WRITE 0x00000004UL 558#define NETLINK_FIREWALL_SOCKET__WRITE 0x00000004UL
@@ -721,10 +575,8 @@
721#define NETLINK_FIREWALL_SOCKET__RECV_MSG 0x00080000UL 575#define NETLINK_FIREWALL_SOCKET__RECV_MSG 0x00080000UL
722#define NETLINK_FIREWALL_SOCKET__SEND_MSG 0x00100000UL 576#define NETLINK_FIREWALL_SOCKET__SEND_MSG 0x00100000UL
723#define NETLINK_FIREWALL_SOCKET__NAME_BIND 0x00200000UL 577#define NETLINK_FIREWALL_SOCKET__NAME_BIND 0x00200000UL
724
725#define NETLINK_FIREWALL_SOCKET__NLMSG_READ 0x00400000UL 578#define NETLINK_FIREWALL_SOCKET__NLMSG_READ 0x00400000UL
726#define NETLINK_FIREWALL_SOCKET__NLMSG_WRITE 0x00800000UL 579#define NETLINK_FIREWALL_SOCKET__NLMSG_WRITE 0x00800000UL
727
728#define NETLINK_TCPDIAG_SOCKET__IOCTL 0x00000001UL 580#define NETLINK_TCPDIAG_SOCKET__IOCTL 0x00000001UL
729#define NETLINK_TCPDIAG_SOCKET__READ 0x00000002UL 581#define NETLINK_TCPDIAG_SOCKET__READ 0x00000002UL
730#define NETLINK_TCPDIAG_SOCKET__WRITE 0x00000004UL 582#define NETLINK_TCPDIAG_SOCKET__WRITE 0x00000004UL
@@ -747,10 +599,8 @@
747#define NETLINK_TCPDIAG_SOCKET__RECV_MSG 0x00080000UL 599#define NETLINK_TCPDIAG_SOCKET__RECV_MSG 0x00080000UL
748#define NETLINK_TCPDIAG_SOCKET__SEND_MSG 0x00100000UL 600#define NETLINK_TCPDIAG_SOCKET__SEND_MSG 0x00100000UL
749#define NETLINK_TCPDIAG_SOCKET__NAME_BIND 0x00200000UL 601#define NETLINK_TCPDIAG_SOCKET__NAME_BIND 0x00200000UL
750
751#define NETLINK_TCPDIAG_SOCKET__NLMSG_READ 0x00400000UL 602#define NETLINK_TCPDIAG_SOCKET__NLMSG_READ 0x00400000UL
752#define NETLINK_TCPDIAG_SOCKET__NLMSG_WRITE 0x00800000UL 603#define NETLINK_TCPDIAG_SOCKET__NLMSG_WRITE 0x00800000UL
753
754#define NETLINK_NFLOG_SOCKET__IOCTL 0x00000001UL 604#define NETLINK_NFLOG_SOCKET__IOCTL 0x00000001UL
755#define NETLINK_NFLOG_SOCKET__READ 0x00000002UL 605#define NETLINK_NFLOG_SOCKET__READ 0x00000002UL
756#define NETLINK_NFLOG_SOCKET__WRITE 0x00000004UL 606#define NETLINK_NFLOG_SOCKET__WRITE 0x00000004UL
@@ -773,7 +623,6 @@
773#define NETLINK_NFLOG_SOCKET__RECV_MSG 0x00080000UL 623#define NETLINK_NFLOG_SOCKET__RECV_MSG 0x00080000UL
774#define NETLINK_NFLOG_SOCKET__SEND_MSG 0x00100000UL 624#define NETLINK_NFLOG_SOCKET__SEND_MSG 0x00100000UL
775#define NETLINK_NFLOG_SOCKET__NAME_BIND 0x00200000UL 625#define NETLINK_NFLOG_SOCKET__NAME_BIND 0x00200000UL
776
777#define NETLINK_XFRM_SOCKET__IOCTL 0x00000001UL 626#define NETLINK_XFRM_SOCKET__IOCTL 0x00000001UL
778#define NETLINK_XFRM_SOCKET__READ 0x00000002UL 627#define NETLINK_XFRM_SOCKET__READ 0x00000002UL
779#define NETLINK_XFRM_SOCKET__WRITE 0x00000004UL 628#define NETLINK_XFRM_SOCKET__WRITE 0x00000004UL
@@ -796,10 +645,8 @@
796#define NETLINK_XFRM_SOCKET__RECV_MSG 0x00080000UL 645#define NETLINK_XFRM_SOCKET__RECV_MSG 0x00080000UL
797#define NETLINK_XFRM_SOCKET__SEND_MSG 0x00100000UL 646#define NETLINK_XFRM_SOCKET__SEND_MSG 0x00100000UL
798#define NETLINK_XFRM_SOCKET__NAME_BIND 0x00200000UL 647#define NETLINK_XFRM_SOCKET__NAME_BIND 0x00200000UL
799
800#define NETLINK_XFRM_SOCKET__NLMSG_READ 0x00400000UL 648#define NETLINK_XFRM_SOCKET__NLMSG_READ 0x00400000UL
801#define NETLINK_XFRM_SOCKET__NLMSG_WRITE 0x00800000UL 649#define NETLINK_XFRM_SOCKET__NLMSG_WRITE 0x00800000UL
802
803#define NETLINK_SELINUX_SOCKET__IOCTL 0x00000001UL 650#define NETLINK_SELINUX_SOCKET__IOCTL 0x00000001UL
804#define NETLINK_SELINUX_SOCKET__READ 0x00000002UL 651#define NETLINK_SELINUX_SOCKET__READ 0x00000002UL
805#define NETLINK_SELINUX_SOCKET__WRITE 0x00000004UL 652#define NETLINK_SELINUX_SOCKET__WRITE 0x00000004UL
@@ -822,7 +669,6 @@
822#define NETLINK_SELINUX_SOCKET__RECV_MSG 0x00080000UL 669#define NETLINK_SELINUX_SOCKET__RECV_MSG 0x00080000UL
823#define NETLINK_SELINUX_SOCKET__SEND_MSG 0x00100000UL 670#define NETLINK_SELINUX_SOCKET__SEND_MSG 0x00100000UL
824#define NETLINK_SELINUX_SOCKET__NAME_BIND 0x00200000UL 671#define NETLINK_SELINUX_SOCKET__NAME_BIND 0x00200000UL
825
826#define NETLINK_AUDIT_SOCKET__IOCTL 0x00000001UL 672#define NETLINK_AUDIT_SOCKET__IOCTL 0x00000001UL
827#define NETLINK_AUDIT_SOCKET__READ 0x00000002UL 673#define NETLINK_AUDIT_SOCKET__READ 0x00000002UL
828#define NETLINK_AUDIT_SOCKET__WRITE 0x00000004UL 674#define NETLINK_AUDIT_SOCKET__WRITE 0x00000004UL
@@ -845,12 +691,10 @@
845#define NETLINK_AUDIT_SOCKET__RECV_MSG 0x00080000UL 691#define NETLINK_AUDIT_SOCKET__RECV_MSG 0x00080000UL
846#define NETLINK_AUDIT_SOCKET__SEND_MSG 0x00100000UL 692#define NETLINK_AUDIT_SOCKET__SEND_MSG 0x00100000UL
847#define NETLINK_AUDIT_SOCKET__NAME_BIND 0x00200000UL 693#define NETLINK_AUDIT_SOCKET__NAME_BIND 0x00200000UL
848
849#define NETLINK_AUDIT_SOCKET__NLMSG_READ 0x00400000UL 694#define NETLINK_AUDIT_SOCKET__NLMSG_READ 0x00400000UL
850#define NETLINK_AUDIT_SOCKET__NLMSG_WRITE 0x00800000UL 695#define NETLINK_AUDIT_SOCKET__NLMSG_WRITE 0x00800000UL
851#define NETLINK_AUDIT_SOCKET__NLMSG_RELAY 0x01000000UL 696#define NETLINK_AUDIT_SOCKET__NLMSG_RELAY 0x01000000UL
852#define NETLINK_AUDIT_SOCKET__NLMSG_READPRIV 0x02000000UL 697#define NETLINK_AUDIT_SOCKET__NLMSG_READPRIV 0x02000000UL
853
854#define NETLINK_IP6FW_SOCKET__IOCTL 0x00000001UL 698#define NETLINK_IP6FW_SOCKET__IOCTL 0x00000001UL
855#define NETLINK_IP6FW_SOCKET__READ 0x00000002UL 699#define NETLINK_IP6FW_SOCKET__READ 0x00000002UL
856#define NETLINK_IP6FW_SOCKET__WRITE 0x00000004UL 700#define NETLINK_IP6FW_SOCKET__WRITE 0x00000004UL
@@ -873,10 +717,8 @@
873#define NETLINK_IP6FW_SOCKET__RECV_MSG 0x00080000UL 717#define NETLINK_IP6FW_SOCKET__RECV_MSG 0x00080000UL
874#define NETLINK_IP6FW_SOCKET__SEND_MSG 0x00100000UL 718#define NETLINK_IP6FW_SOCKET__SEND_MSG 0x00100000UL
875#define NETLINK_IP6FW_SOCKET__NAME_BIND 0x00200000UL 719#define NETLINK_IP6FW_SOCKET__NAME_BIND 0x00200000UL
876
877#define NETLINK_IP6FW_SOCKET__NLMSG_READ 0x00400000UL 720#define NETLINK_IP6FW_SOCKET__NLMSG_READ 0x00400000UL
878#define NETLINK_IP6FW_SOCKET__NLMSG_WRITE 0x00800000UL 721#define NETLINK_IP6FW_SOCKET__NLMSG_WRITE 0x00800000UL
879
880#define NETLINK_DNRT_SOCKET__IOCTL 0x00000001UL 722#define NETLINK_DNRT_SOCKET__IOCTL 0x00000001UL
881#define NETLINK_DNRT_SOCKET__READ 0x00000002UL 723#define NETLINK_DNRT_SOCKET__READ 0x00000002UL
882#define NETLINK_DNRT_SOCKET__WRITE 0x00000004UL 724#define NETLINK_DNRT_SOCKET__WRITE 0x00000004UL
@@ -899,24 +741,10 @@
899#define NETLINK_DNRT_SOCKET__RECV_MSG 0x00080000UL 741#define NETLINK_DNRT_SOCKET__RECV_MSG 0x00080000UL
900#define NETLINK_DNRT_SOCKET__SEND_MSG 0x00100000UL 742#define NETLINK_DNRT_SOCKET__SEND_MSG 0x00100000UL
901#define NETLINK_DNRT_SOCKET__NAME_BIND 0x00200000UL 743#define NETLINK_DNRT_SOCKET__NAME_BIND 0x00200000UL
902
903#define DBUS__ACQUIRE_SVC 0x00000001UL
904#define DBUS__SEND_MSG 0x00000002UL
905
906#define NSCD__GETPWD 0x00000001UL
907#define NSCD__GETGRP 0x00000002UL
908#define NSCD__GETHOST 0x00000004UL
909#define NSCD__GETSTAT 0x00000008UL
910#define NSCD__ADMIN 0x00000010UL
911#define NSCD__SHMEMPWD 0x00000020UL
912#define NSCD__SHMEMGRP 0x00000040UL
913#define NSCD__SHMEMHOST 0x00000080UL
914
915#define ASSOCIATION__SENDTO 0x00000001UL 744#define ASSOCIATION__SENDTO 0x00000001UL
916#define ASSOCIATION__RECVFROM 0x00000002UL 745#define ASSOCIATION__RECVFROM 0x00000002UL
917#define ASSOCIATION__SETCONTEXT 0x00000004UL 746#define ASSOCIATION__SETCONTEXT 0x00000004UL
918#define ASSOCIATION__POLMATCH 0x00000008UL 747#define ASSOCIATION__POLMATCH 0x00000008UL
919
920#define NETLINK_KOBJECT_UEVENT_SOCKET__IOCTL 0x00000001UL 748#define NETLINK_KOBJECT_UEVENT_SOCKET__IOCTL 0x00000001UL
921#define NETLINK_KOBJECT_UEVENT_SOCKET__READ 0x00000002UL 749#define NETLINK_KOBJECT_UEVENT_SOCKET__READ 0x00000002UL
922#define NETLINK_KOBJECT_UEVENT_SOCKET__WRITE 0x00000004UL 750#define NETLINK_KOBJECT_UEVENT_SOCKET__WRITE 0x00000004UL
@@ -939,7 +767,6 @@
939#define NETLINK_KOBJECT_UEVENT_SOCKET__RECV_MSG 0x00080000UL 767#define NETLINK_KOBJECT_UEVENT_SOCKET__RECV_MSG 0x00080000UL
940#define NETLINK_KOBJECT_UEVENT_SOCKET__SEND_MSG 0x00100000UL 768#define NETLINK_KOBJECT_UEVENT_SOCKET__SEND_MSG 0x00100000UL
941#define NETLINK_KOBJECT_UEVENT_SOCKET__NAME_BIND 0x00200000UL 769#define NETLINK_KOBJECT_UEVENT_SOCKET__NAME_BIND 0x00200000UL
942
943#define APPLETALK_SOCKET__IOCTL 0x00000001UL 770#define APPLETALK_SOCKET__IOCTL 0x00000001UL
944#define APPLETALK_SOCKET__READ 0x00000002UL 771#define APPLETALK_SOCKET__READ 0x00000002UL
945#define APPLETALK_SOCKET__WRITE 0x00000004UL 772#define APPLETALK_SOCKET__WRITE 0x00000004UL
@@ -962,11 +789,9 @@
962#define APPLETALK_SOCKET__RECV_MSG 0x00080000UL 789#define APPLETALK_SOCKET__RECV_MSG 0x00080000UL
963#define APPLETALK_SOCKET__SEND_MSG 0x00100000UL 790#define APPLETALK_SOCKET__SEND_MSG 0x00100000UL
964#define APPLETALK_SOCKET__NAME_BIND 0x00200000UL 791#define APPLETALK_SOCKET__NAME_BIND 0x00200000UL
965
966#define PACKET__SEND 0x00000001UL 792#define PACKET__SEND 0x00000001UL
967#define PACKET__RECV 0x00000002UL 793#define PACKET__RECV 0x00000002UL
968#define PACKET__RELABELTO 0x00000004UL 794#define PACKET__RELABELTO 0x00000004UL
969
970#define KEY__VIEW 0x00000001UL 795#define KEY__VIEW 0x00000001UL
971#define KEY__READ 0x00000002UL 796#define KEY__READ 0x00000002UL
972#define KEY__WRITE 0x00000004UL 797#define KEY__WRITE 0x00000004UL
@@ -974,10 +799,6 @@
974#define KEY__LINK 0x00000010UL 799#define KEY__LINK 0x00000010UL
975#define KEY__SETATTR 0x00000020UL 800#define KEY__SETATTR 0x00000020UL
976#define KEY__CREATE 0x00000040UL 801#define KEY__CREATE 0x00000040UL
977
978#define CONTEXT__TRANSLATE 0x00000001UL
979#define CONTEXT__CONTAINS 0x00000002UL
980
981#define DCCP_SOCKET__IOCTL 0x00000001UL 802#define DCCP_SOCKET__IOCTL 0x00000001UL
982#define DCCP_SOCKET__READ 0x00000002UL 803#define DCCP_SOCKET__READ 0x00000002UL
983#define DCCP_SOCKET__WRITE 0x00000004UL 804#define DCCP_SOCKET__WRITE 0x00000004UL
diff --git a/security/selinux/include/class_to_string.h b/security/selinux/include/class_to_string.h
index 9f3ebb1bfae6..378799068441 100644
--- a/security/selinux/include/class_to_string.h
+++ b/security/selinux/include/class_to_string.h
@@ -2,7 +2,7 @@
2/* 2/*
3 * Security object class definitions 3 * Security object class definitions
4 */ 4 */
5 S_("null") 5 S_(NULL)
6 S_("security") 6 S_("security")
7 S_("process") 7 S_("process")
8 S_("system") 8 S_("system")
@@ -32,19 +32,19 @@
32 S_("msgq") 32 S_("msgq")
33 S_("shm") 33 S_("shm")
34 S_("ipc") 34 S_("ipc")
35 S_("passwd") 35 S_(NULL)
36 S_("drawable") 36 S_(NULL)
37 S_("window") 37 S_(NULL)
38 S_("gc") 38 S_(NULL)
39 S_("font") 39 S_(NULL)
40 S_("colormap") 40 S_(NULL)
41 S_("property") 41 S_(NULL)
42 S_("cursor") 42 S_(NULL)
43 S_("xclient") 43 S_(NULL)
44 S_("xinput") 44 S_(NULL)
45 S_("xserver") 45 S_(NULL)
46 S_("xextension") 46 S_(NULL)
47 S_("pax") 47 S_(NULL)
48 S_("netlink_route_socket") 48 S_("netlink_route_socket")
49 S_("netlink_firewall_socket") 49 S_("netlink_firewall_socket")
50 S_("netlink_tcpdiag_socket") 50 S_("netlink_tcpdiag_socket")
@@ -54,12 +54,12 @@
54 S_("netlink_audit_socket") 54 S_("netlink_audit_socket")
55 S_("netlink_ip6fw_socket") 55 S_("netlink_ip6fw_socket")
56 S_("netlink_dnrt_socket") 56 S_("netlink_dnrt_socket")
57 S_("dbus") 57 S_(NULL)
58 S_("nscd") 58 S_(NULL)
59 S_("association") 59 S_("association")
60 S_("netlink_kobject_uevent_socket") 60 S_("netlink_kobject_uevent_socket")
61 S_("appletalk_socket") 61 S_("appletalk_socket")
62 S_("packet") 62 S_("packet")
63 S_("key") 63 S_("key")
64 S_("context") 64 S_(NULL)
65 S_("dccp_socket") 65 S_("dccp_socket")
diff --git a/security/selinux/include/flask.h b/security/selinux/include/flask.h
index 67cef371ee00..35f309f47873 100644
--- a/security/selinux/include/flask.h
+++ b/security/selinux/include/flask.h
@@ -34,19 +34,6 @@
34#define SECCLASS_MSGQ 27 34#define SECCLASS_MSGQ 27
35#define SECCLASS_SHM 28 35#define SECCLASS_SHM 28
36#define SECCLASS_IPC 29 36#define SECCLASS_IPC 29
37#define SECCLASS_PASSWD 30
38#define SECCLASS_DRAWABLE 31
39#define SECCLASS_WINDOW 32
40#define SECCLASS_GC 33
41#define SECCLASS_FONT 34
42#define SECCLASS_COLORMAP 35
43#define SECCLASS_PROPERTY 36
44#define SECCLASS_CURSOR 37
45#define SECCLASS_XCLIENT 38
46#define SECCLASS_XINPUT 39
47#define SECCLASS_XSERVER 40
48#define SECCLASS_XEXTENSION 41
49#define SECCLASS_PAX 42
50#define SECCLASS_NETLINK_ROUTE_SOCKET 43 37#define SECCLASS_NETLINK_ROUTE_SOCKET 43
51#define SECCLASS_NETLINK_FIREWALL_SOCKET 44 38#define SECCLASS_NETLINK_FIREWALL_SOCKET 44
52#define SECCLASS_NETLINK_TCPDIAG_SOCKET 45 39#define SECCLASS_NETLINK_TCPDIAG_SOCKET 45
@@ -56,14 +43,11 @@
56#define SECCLASS_NETLINK_AUDIT_SOCKET 49 43#define SECCLASS_NETLINK_AUDIT_SOCKET 49
57#define SECCLASS_NETLINK_IP6FW_SOCKET 50 44#define SECCLASS_NETLINK_IP6FW_SOCKET 50
58#define SECCLASS_NETLINK_DNRT_SOCKET 51 45#define SECCLASS_NETLINK_DNRT_SOCKET 51
59#define SECCLASS_DBUS 52
60#define SECCLASS_NSCD 53
61#define SECCLASS_ASSOCIATION 54 46#define SECCLASS_ASSOCIATION 54
62#define SECCLASS_NETLINK_KOBJECT_UEVENT_SOCKET 55 47#define SECCLASS_NETLINK_KOBJECT_UEVENT_SOCKET 55
63#define SECCLASS_APPLETALK_SOCKET 56 48#define SECCLASS_APPLETALK_SOCKET 56
64#define SECCLASS_PACKET 57 49#define SECCLASS_PACKET 57
65#define SECCLASS_KEY 58 50#define SECCLASS_KEY 58
66#define SECCLASS_CONTEXT 59
67#define SECCLASS_DCCP_SOCKET 60 51#define SECCLASS_DCCP_SOCKET 60
68 52
69/* 53/*
diff --git a/security/selinux/ss/services.c b/security/selinux/ss/services.c
index 8ee4aaef1094..d3698568a213 100644
--- a/security/selinux/ss/services.c
+++ b/security/selinux/ss/services.c
@@ -1049,6 +1049,8 @@ static int validate_classes(struct policydb *p)
1049 1049
1050 for (i = 1; i < kdefs->cts_len; i++) { 1050 for (i = 1; i < kdefs->cts_len; i++) {
1051 def_class = kdefs->class_to_string[i]; 1051 def_class = kdefs->class_to_string[i];
1052 if (!def_class)
1053 continue;
1052 if (i > p->p_classes.nprim) { 1054 if (i > p->p_classes.nprim) {
1053 printk(KERN_INFO 1055 printk(KERN_INFO
1054 "security: class %s not defined in policy\n", 1056 "security: class %s not defined in policy\n",