aboutsummaryrefslogtreecommitdiffstats
path: root/security/selinux
diff options
context:
space:
mode:
authorStephen Smalley <sds@tycho.nsa.gov>2009-09-30 13:41:02 -0400
committerJames Morris <jmorris@namei.org>2009-10-07 06:56:44 -0400
commit8753f6bec352392b52ed9b5e290afb34379f4612 (patch)
treeb5f381be9f56125309bfbfcaa73d68e08c309747 /security/selinux
parentc6d3aaa4e35c71a32a86ececacd4eea7ecfc316c (diff)
selinux: generate flask headers during kernel build
Add a simple utility (scripts/selinux/genheaders) and invoke it to generate the kernel-private class and permission indices in flask.h and av_permissions.h automatically during the kernel build from the security class mapping definitions in classmap.h. Adding new kernel classes and permissions can then be done just by adding them to classmap.h. Signed-off-by: Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by: James Morris <jmorris@namei.org>
Diffstat (limited to 'security/selinux')
-rw-r--r--security/selinux/Makefile10
-rw-r--r--security/selinux/include/av_permissions.h870
-rw-r--r--security/selinux/include/flask.h91
-rw-r--r--security/selinux/ss/Makefile2
4 files changed, 10 insertions, 963 deletions
diff --git a/security/selinux/Makefile b/security/selinux/Makefile
index d47fc5e545e0..f013982df417 100644
--- a/security/selinux/Makefile
+++ b/security/selinux/Makefile
@@ -18,5 +18,13 @@ selinux-$(CONFIG_SECURITY_NETWORK_XFRM) += xfrm.o
18 18
19selinux-$(CONFIG_NETLABEL) += netlabel.o 19selinux-$(CONFIG_NETLABEL) += netlabel.o
20 20
21EXTRA_CFLAGS += -Isecurity/selinux/include 21EXTRA_CFLAGS += -Isecurity/selinux -Isecurity/selinux/include
22 22
23$(obj)/avc.o: $(obj)/flask.h
24
25quiet_cmd_flask = GEN $(obj)/flask.h $(obj)/av_permissions.h
26 cmd_flask = scripts/selinux/genheaders/genheaders $(obj)/flask.h $(obj)/av_permissions.h
27
28targets += flask.h
29$(obj)/flask.h: $(src)/include/classmap.h FORCE
30 $(call if_changed,flask)
diff --git a/security/selinux/include/av_permissions.h b/security/selinux/include/av_permissions.h
deleted file mode 100644
index fef2582b734d..000000000000
--- a/security/selinux/include/av_permissions.h
+++ /dev/null
@@ -1,870 +0,0 @@
1/* This file is automatically generated. Do not edit. */
2#define COMMON_FILE__IOCTL 0x00000001UL
3#define COMMON_FILE__READ 0x00000002UL
4#define COMMON_FILE__WRITE 0x00000004UL
5#define COMMON_FILE__CREATE 0x00000008UL
6#define COMMON_FILE__GETATTR 0x00000010UL
7#define COMMON_FILE__SETATTR 0x00000020UL
8#define COMMON_FILE__LOCK 0x00000040UL
9#define COMMON_FILE__RELABELFROM 0x00000080UL
10#define COMMON_FILE__RELABELTO 0x00000100UL
11#define COMMON_FILE__APPEND 0x00000200UL
12#define COMMON_FILE__UNLINK 0x00000400UL
13#define COMMON_FILE__LINK 0x00000800UL
14#define COMMON_FILE__RENAME 0x00001000UL
15#define COMMON_FILE__EXECUTE 0x00002000UL
16#define COMMON_FILE__SWAPON 0x00004000UL
17#define COMMON_FILE__QUOTAON 0x00008000UL
18#define COMMON_FILE__MOUNTON 0x00010000UL
19#define COMMON_SOCKET__IOCTL 0x00000001UL
20#define COMMON_SOCKET__READ 0x00000002UL
21#define COMMON_SOCKET__WRITE 0x00000004UL
22#define COMMON_SOCKET__CREATE 0x00000008UL
23#define COMMON_SOCKET__GETATTR 0x00000010UL
24#define COMMON_SOCKET__SETATTR 0x00000020UL
25#define COMMON_SOCKET__LOCK 0x00000040UL
26#define COMMON_SOCKET__RELABELFROM 0x00000080UL
27#define COMMON_SOCKET__RELABELTO 0x00000100UL
28#define COMMON_SOCKET__APPEND 0x00000200UL
29#define COMMON_SOCKET__BIND 0x00000400UL
30#define COMMON_SOCKET__CONNECT 0x00000800UL
31#define COMMON_SOCKET__LISTEN 0x00001000UL
32#define COMMON_SOCKET__ACCEPT 0x00002000UL
33#define COMMON_SOCKET__GETOPT 0x00004000UL
34#define COMMON_SOCKET__SETOPT 0x00008000UL
35#define COMMON_SOCKET__SHUTDOWN 0x00010000UL
36#define COMMON_SOCKET__RECVFROM 0x00020000UL
37#define COMMON_SOCKET__SENDTO 0x00040000UL
38#define COMMON_SOCKET__RECV_MSG 0x00080000UL
39#define COMMON_SOCKET__SEND_MSG 0x00100000UL
40#define COMMON_SOCKET__NAME_BIND 0x00200000UL
41#define COMMON_IPC__CREATE 0x00000001UL
42#define COMMON_IPC__DESTROY 0x00000002UL
43#define COMMON_IPC__GETATTR 0x00000004UL
44#define COMMON_IPC__SETATTR 0x00000008UL
45#define COMMON_IPC__READ 0x00000010UL
46#define COMMON_IPC__WRITE 0x00000020UL
47#define COMMON_IPC__ASSOCIATE 0x00000040UL
48#define COMMON_IPC__UNIX_READ 0x00000080UL
49#define COMMON_IPC__UNIX_WRITE 0x00000100UL
50#define FILESYSTEM__MOUNT 0x00000001UL
51#define FILESYSTEM__REMOUNT 0x00000002UL
52#define FILESYSTEM__UNMOUNT 0x00000004UL
53#define FILESYSTEM__GETATTR 0x00000008UL
54#define FILESYSTEM__RELABELFROM 0x00000010UL
55#define FILESYSTEM__RELABELTO 0x00000020UL
56#define FILESYSTEM__TRANSITION 0x00000040UL
57#define FILESYSTEM__ASSOCIATE 0x00000080UL
58#define FILESYSTEM__QUOTAMOD 0x00000100UL
59#define FILESYSTEM__QUOTAGET 0x00000200UL
60#define DIR__IOCTL 0x00000001UL
61#define DIR__READ 0x00000002UL
62#define DIR__WRITE 0x00000004UL
63#define DIR__CREATE 0x00000008UL
64#define DIR__GETATTR 0x00000010UL
65#define DIR__SETATTR 0x00000020UL
66#define DIR__LOCK 0x00000040UL
67#define DIR__RELABELFROM 0x00000080UL
68#define DIR__RELABELTO 0x00000100UL
69#define DIR__APPEND 0x00000200UL
70#define DIR__UNLINK 0x00000400UL
71#define DIR__LINK 0x00000800UL
72#define DIR__RENAME 0x00001000UL
73#define DIR__EXECUTE 0x00002000UL
74#define DIR__SWAPON 0x00004000UL
75#define DIR__QUOTAON 0x00008000UL
76#define DIR__MOUNTON 0x00010000UL
77#define DIR__ADD_NAME 0x00020000UL
78#define DIR__REMOVE_NAME 0x00040000UL
79#define DIR__REPARENT 0x00080000UL
80#define DIR__SEARCH 0x00100000UL
81#define DIR__RMDIR 0x00200000UL
82#define DIR__OPEN 0x00400000UL
83#define FILE__IOCTL 0x00000001UL
84#define FILE__READ 0x00000002UL
85#define FILE__WRITE 0x00000004UL
86#define FILE__CREATE 0x00000008UL
87#define FILE__GETATTR 0x00000010UL
88#define FILE__SETATTR 0x00000020UL
89#define FILE__LOCK 0x00000040UL
90#define FILE__RELABELFROM 0x00000080UL
91#define FILE__RELABELTO 0x00000100UL
92#define FILE__APPEND 0x00000200UL
93#define FILE__UNLINK 0x00000400UL
94#define FILE__LINK 0x00000800UL
95#define FILE__RENAME 0x00001000UL
96#define FILE__EXECUTE 0x00002000UL
97#define FILE__SWAPON 0x00004000UL
98#define FILE__QUOTAON 0x00008000UL
99#define FILE__MOUNTON 0x00010000UL
100#define FILE__EXECUTE_NO_TRANS 0x00020000UL
101#define FILE__ENTRYPOINT 0x00040000UL
102#define FILE__EXECMOD 0x00080000UL
103#define FILE__OPEN 0x00100000UL
104#define LNK_FILE__IOCTL 0x00000001UL
105#define LNK_FILE__READ 0x00000002UL
106#define LNK_FILE__WRITE 0x00000004UL
107#define LNK_FILE__CREATE 0x00000008UL
108#define LNK_FILE__GETATTR 0x00000010UL
109#define LNK_FILE__SETATTR 0x00000020UL
110#define LNK_FILE__LOCK 0x00000040UL
111#define LNK_FILE__RELABELFROM 0x00000080UL
112#define LNK_FILE__RELABELTO 0x00000100UL
113#define LNK_FILE__APPEND 0x00000200UL
114#define LNK_FILE__UNLINK 0x00000400UL
115#define LNK_FILE__LINK 0x00000800UL
116#define LNK_FILE__RENAME 0x00001000UL
117#define LNK_FILE__EXECUTE 0x00002000UL
118#define LNK_FILE__SWAPON 0x00004000UL
119#define LNK_FILE__QUOTAON 0x00008000UL
120#define LNK_FILE__MOUNTON 0x00010000UL
121#define CHR_FILE__IOCTL 0x00000001UL
122#define CHR_FILE__READ 0x00000002UL
123#define CHR_FILE__WRITE 0x00000004UL
124#define CHR_FILE__CREATE 0x00000008UL
125#define CHR_FILE__GETATTR 0x00000010UL
126#define CHR_FILE__SETATTR 0x00000020UL
127#define CHR_FILE__LOCK 0x00000040UL
128#define CHR_FILE__RELABELFROM 0x00000080UL
129#define CHR_FILE__RELABELTO 0x00000100UL
130#define CHR_FILE__APPEND 0x00000200UL
131#define CHR_FILE__UNLINK 0x00000400UL
132#define CHR_FILE__LINK 0x00000800UL
133#define CHR_FILE__RENAME 0x00001000UL
134#define CHR_FILE__EXECUTE 0x00002000UL
135#define CHR_FILE__SWAPON 0x00004000UL
136#define CHR_FILE__QUOTAON 0x00008000UL
137#define CHR_FILE__MOUNTON 0x00010000UL
138#define CHR_FILE__EXECUTE_NO_TRANS 0x00020000UL
139#define CHR_FILE__ENTRYPOINT 0x00040000UL
140#define CHR_FILE__EXECMOD 0x00080000UL
141#define CHR_FILE__OPEN 0x00100000UL
142#define BLK_FILE__IOCTL 0x00000001UL
143#define BLK_FILE__READ 0x00000002UL
144#define BLK_FILE__WRITE 0x00000004UL
145#define BLK_FILE__CREATE 0x00000008UL
146#define BLK_FILE__GETATTR 0x00000010UL
147#define BLK_FILE__SETATTR 0x00000020UL
148#define BLK_FILE__LOCK 0x00000040UL
149#define BLK_FILE__RELABELFROM 0x00000080UL
150#define BLK_FILE__RELABELTO 0x00000100UL
151#define BLK_FILE__APPEND 0x00000200UL
152#define BLK_FILE__UNLINK 0x00000400UL
153#define BLK_FILE__LINK 0x00000800UL
154#define BLK_FILE__RENAME 0x00001000UL
155#define BLK_FILE__EXECUTE 0x00002000UL
156#define BLK_FILE__SWAPON 0x00004000UL
157#define BLK_FILE__QUOTAON 0x00008000UL
158#define BLK_FILE__MOUNTON 0x00010000UL
159#define BLK_FILE__OPEN 0x00020000UL
160#define SOCK_FILE__IOCTL 0x00000001UL
161#define SOCK_FILE__READ 0x00000002UL
162#define SOCK_FILE__WRITE 0x00000004UL
163#define SOCK_FILE__CREATE 0x00000008UL
164#define SOCK_FILE__GETATTR 0x00000010UL
165#define SOCK_FILE__SETATTR 0x00000020UL
166#define SOCK_FILE__LOCK 0x00000040UL
167#define SOCK_FILE__RELABELFROM 0x00000080UL
168#define SOCK_FILE__RELABELTO 0x00000100UL
169#define SOCK_FILE__APPEND 0x00000200UL
170#define SOCK_FILE__UNLINK 0x00000400UL
171#define SOCK_FILE__LINK 0x00000800UL
172#define SOCK_FILE__RENAME 0x00001000UL
173#define SOCK_FILE__EXECUTE 0x00002000UL
174#define SOCK_FILE__SWAPON 0x00004000UL
175#define SOCK_FILE__QUOTAON 0x00008000UL
176#define SOCK_FILE__MOUNTON 0x00010000UL
177#define SOCK_FILE__OPEN 0x00020000UL
178#define FIFO_FILE__IOCTL 0x00000001UL
179#define FIFO_FILE__READ 0x00000002UL
180#define FIFO_FILE__WRITE 0x00000004UL
181#define FIFO_FILE__CREATE 0x00000008UL
182#define FIFO_FILE__GETATTR 0x00000010UL
183#define FIFO_FILE__SETATTR 0x00000020UL
184#define FIFO_FILE__LOCK 0x00000040UL
185#define FIFO_FILE__RELABELFROM 0x00000080UL
186#define FIFO_FILE__RELABELTO 0x00000100UL
187#define FIFO_FILE__APPEND 0x00000200UL
188#define FIFO_FILE__UNLINK 0x00000400UL
189#define FIFO_FILE__LINK 0x00000800UL
190#define FIFO_FILE__RENAME 0x00001000UL
191#define FIFO_FILE__EXECUTE 0x00002000UL
192#define FIFO_FILE__SWAPON 0x00004000UL
193#define FIFO_FILE__QUOTAON 0x00008000UL
194#define FIFO_FILE__MOUNTON 0x00010000UL
195#define FIFO_FILE__OPEN 0x00020000UL
196#define FD__USE 0x00000001UL
197#define SOCKET__IOCTL 0x00000001UL
198#define SOCKET__READ 0x00000002UL
199#define SOCKET__WRITE 0x00000004UL
200#define SOCKET__CREATE 0x00000008UL
201#define SOCKET__GETATTR 0x00000010UL
202#define SOCKET__SETATTR 0x00000020UL
203#define SOCKET__LOCK 0x00000040UL
204#define SOCKET__RELABELFROM 0x00000080UL
205#define SOCKET__RELABELTO 0x00000100UL
206#define SOCKET__APPEND 0x00000200UL
207#define SOCKET__BIND 0x00000400UL
208#define SOCKET__CONNECT 0x00000800UL
209#define SOCKET__LISTEN 0x00001000UL
210#define SOCKET__ACCEPT 0x00002000UL
211#define SOCKET__GETOPT 0x00004000UL
212#define SOCKET__SETOPT 0x00008000UL
213#define SOCKET__SHUTDOWN 0x00010000UL
214#define SOCKET__RECVFROM 0x00020000UL
215#define SOCKET__SENDTO 0x00040000UL
216#define SOCKET__RECV_MSG 0x00080000UL
217#define SOCKET__SEND_MSG 0x00100000UL
218#define SOCKET__NAME_BIND 0x00200000UL
219#define TCP_SOCKET__IOCTL 0x00000001UL
220#define TCP_SOCKET__READ 0x00000002UL
221#define TCP_SOCKET__WRITE 0x00000004UL
222#define TCP_SOCKET__CREATE 0x00000008UL
223#define TCP_SOCKET__GETATTR 0x00000010UL
224#define TCP_SOCKET__SETATTR 0x00000020UL
225#define TCP_SOCKET__LOCK 0x00000040UL
226#define TCP_SOCKET__RELABELFROM 0x00000080UL
227#define TCP_SOCKET__RELABELTO 0x00000100UL
228#define TCP_SOCKET__APPEND 0x00000200UL
229#define TCP_SOCKET__BIND 0x00000400UL
230#define TCP_SOCKET__CONNECT 0x00000800UL
231#define TCP_SOCKET__LISTEN 0x00001000UL
232#define TCP_SOCKET__ACCEPT 0x00002000UL
233#define TCP_SOCKET__GETOPT 0x00004000UL
234#define TCP_SOCKET__SETOPT 0x00008000UL
235#define TCP_SOCKET__SHUTDOWN 0x00010000UL
236#define TCP_SOCKET__RECVFROM 0x00020000UL
237#define TCP_SOCKET__SENDTO 0x00040000UL
238#define TCP_SOCKET__RECV_MSG 0x00080000UL
239#define TCP_SOCKET__SEND_MSG 0x00100000UL
240#define TCP_SOCKET__NAME_BIND 0x00200000UL
241#define TCP_SOCKET__CONNECTTO 0x00400000UL
242#define TCP_SOCKET__NEWCONN 0x00800000UL
243#define TCP_SOCKET__ACCEPTFROM 0x01000000UL
244#define TCP_SOCKET__NODE_BIND 0x02000000UL
245#define TCP_SOCKET__NAME_CONNECT 0x04000000UL
246#define UDP_SOCKET__IOCTL 0x00000001UL
247#define UDP_SOCKET__READ 0x00000002UL
248#define UDP_SOCKET__WRITE 0x00000004UL
249#define UDP_SOCKET__CREATE 0x00000008UL
250#define UDP_SOCKET__GETATTR 0x00000010UL
251#define UDP_SOCKET__SETATTR 0x00000020UL
252#define UDP_SOCKET__LOCK 0x00000040UL
253#define UDP_SOCKET__RELABELFROM 0x00000080UL
254#define UDP_SOCKET__RELABELTO 0x00000100UL
255#define UDP_SOCKET__APPEND 0x00000200UL
256#define UDP_SOCKET__BIND 0x00000400UL
257#define UDP_SOCKET__CONNECT 0x00000800UL
258#define UDP_SOCKET__LISTEN 0x00001000UL
259#define UDP_SOCKET__ACCEPT 0x00002000UL
260#define UDP_SOCKET__GETOPT 0x00004000UL
261#define UDP_SOCKET__SETOPT 0x00008000UL
262#define UDP_SOCKET__SHUTDOWN 0x00010000UL
263#define UDP_SOCKET__RECVFROM 0x00020000UL
264#define UDP_SOCKET__SENDTO 0x00040000UL
265#define UDP_SOCKET__RECV_MSG 0x00080000UL
266#define UDP_SOCKET__SEND_MSG 0x00100000UL
267#define UDP_SOCKET__NAME_BIND 0x00200000UL
268#define UDP_SOCKET__NODE_BIND 0x00400000UL
269#define RAWIP_SOCKET__IOCTL 0x00000001UL
270#define RAWIP_SOCKET__READ 0x00000002UL
271#define RAWIP_SOCKET__WRITE 0x00000004UL
272#define RAWIP_SOCKET__CREATE 0x00000008UL
273#define RAWIP_SOCKET__GETATTR 0x00000010UL
274#define RAWIP_SOCKET__SETATTR 0x00000020UL
275#define RAWIP_SOCKET__LOCK 0x00000040UL
276#define RAWIP_SOCKET__RELABELFROM 0x00000080UL
277#define RAWIP_SOCKET__RELABELTO 0x00000100UL
278#define RAWIP_SOCKET__APPEND 0x00000200UL
279#define RAWIP_SOCKET__BIND 0x00000400UL
280#define RAWIP_SOCKET__CONNECT 0x00000800UL
281#define RAWIP_SOCKET__LISTEN 0x00001000UL
282#define RAWIP_SOCKET__ACCEPT 0x00002000UL
283#define RAWIP_SOCKET__GETOPT 0x00004000UL
284#define RAWIP_SOCKET__SETOPT 0x00008000UL
285#define RAWIP_SOCKET__SHUTDOWN 0x00010000UL
286#define RAWIP_SOCKET__RECVFROM 0x00020000UL
287#define RAWIP_SOCKET__SENDTO 0x00040000UL
288#define RAWIP_SOCKET__RECV_MSG 0x00080000UL
289#define RAWIP_SOCKET__SEND_MSG 0x00100000UL
290#define RAWIP_SOCKET__NAME_BIND 0x00200000UL
291#define RAWIP_SOCKET__NODE_BIND 0x00400000UL
292#define NODE__TCP_RECV 0x00000001UL
293#define NODE__TCP_SEND 0x00000002UL
294#define NODE__UDP_RECV 0x00000004UL
295#define NODE__UDP_SEND 0x00000008UL
296#define NODE__RAWIP_RECV 0x00000010UL
297#define NODE__RAWIP_SEND 0x00000020UL
298#define NODE__ENFORCE_DEST 0x00000040UL
299#define NODE__DCCP_RECV 0x00000080UL
300#define NODE__DCCP_SEND 0x00000100UL
301#define NODE__RECVFROM 0x00000200UL
302#define NODE__SENDTO 0x00000400UL
303#define NETIF__TCP_RECV 0x00000001UL
304#define NETIF__TCP_SEND 0x00000002UL
305#define NETIF__UDP_RECV 0x00000004UL
306#define NETIF__UDP_SEND 0x00000008UL
307#define NETIF__RAWIP_RECV 0x00000010UL
308#define NETIF__RAWIP_SEND 0x00000020UL
309#define NETIF__DCCP_RECV 0x00000040UL
310#define NETIF__DCCP_SEND 0x00000080UL
311#define NETIF__INGRESS 0x00000100UL
312#define NETIF__EGRESS 0x00000200UL
313#define NETLINK_SOCKET__IOCTL 0x00000001UL
314#define NETLINK_SOCKET__READ 0x00000002UL
315#define NETLINK_SOCKET__WRITE 0x00000004UL
316#define NETLINK_SOCKET__CREATE 0x00000008UL
317#define NETLINK_SOCKET__GETATTR 0x00000010UL
318#define NETLINK_SOCKET__SETATTR 0x00000020UL
319#define NETLINK_SOCKET__LOCK 0x00000040UL
320#define NETLINK_SOCKET__RELABELFROM 0x00000080UL
321#define NETLINK_SOCKET__RELABELTO 0x00000100UL
322#define NETLINK_SOCKET__APPEND 0x00000200UL
323#define NETLINK_SOCKET__BIND 0x00000400UL
324#define NETLINK_SOCKET__CONNECT 0x00000800UL
325#define NETLINK_SOCKET__LISTEN 0x00001000UL
326#define NETLINK_SOCKET__ACCEPT 0x00002000UL
327#define NETLINK_SOCKET__GETOPT 0x00004000UL
328#define NETLINK_SOCKET__SETOPT 0x00008000UL
329#define NETLINK_SOCKET__SHUTDOWN 0x00010000UL
330#define NETLINK_SOCKET__RECVFROM 0x00020000UL
331#define NETLINK_SOCKET__SENDTO 0x00040000UL
332#define NETLINK_SOCKET__RECV_MSG 0x00080000UL
333#define NETLINK_SOCKET__SEND_MSG 0x00100000UL
334#define NETLINK_SOCKET__NAME_BIND 0x00200000UL
335#define PACKET_SOCKET__IOCTL 0x00000001UL
336#define PACKET_SOCKET__READ 0x00000002UL
337#define PACKET_SOCKET__WRITE 0x00000004UL
338#define PACKET_SOCKET__CREATE 0x00000008UL
339#define PACKET_SOCKET__GETATTR 0x00000010UL
340#define PACKET_SOCKET__SETATTR 0x00000020UL
341#define PACKET_SOCKET__LOCK 0x00000040UL
342#define PACKET_SOCKET__RELABELFROM 0x00000080UL
343#define PACKET_SOCKET__RELABELTO 0x00000100UL
344#define PACKET_SOCKET__APPEND 0x00000200UL
345#define PACKET_SOCKET__BIND 0x00000400UL
346#define PACKET_SOCKET__CONNECT 0x00000800UL
347#define PACKET_SOCKET__LISTEN 0x00001000UL
348#define PACKET_SOCKET__ACCEPT 0x00002000UL
349#define PACKET_SOCKET__GETOPT 0x00004000UL
350#define PACKET_SOCKET__SETOPT 0x00008000UL
351#define PACKET_SOCKET__SHUTDOWN 0x00010000UL
352#define PACKET_SOCKET__RECVFROM 0x00020000UL
353#define PACKET_SOCKET__SENDTO 0x00040000UL
354#define PACKET_SOCKET__RECV_MSG 0x00080000UL
355#define PACKET_SOCKET__SEND_MSG 0x00100000UL
356#define PACKET_SOCKET__NAME_BIND 0x00200000UL
357#define KEY_SOCKET__IOCTL 0x00000001UL
358#define KEY_SOCKET__READ 0x00000002UL
359#define KEY_SOCKET__WRITE 0x00000004UL
360#define KEY_SOCKET__CREATE 0x00000008UL
361#define KEY_SOCKET__GETATTR 0x00000010UL
362#define KEY_SOCKET__SETATTR 0x00000020UL
363#define KEY_SOCKET__LOCK 0x00000040UL
364#define KEY_SOCKET__RELABELFROM 0x00000080UL
365#define KEY_SOCKET__RELABELTO 0x00000100UL
366#define KEY_SOCKET__APPEND 0x00000200UL
367#define KEY_SOCKET__BIND 0x00000400UL
368#define KEY_SOCKET__CONNECT 0x00000800UL
369#define KEY_SOCKET__LISTEN 0x00001000UL
370#define KEY_SOCKET__ACCEPT 0x00002000UL
371#define KEY_SOCKET__GETOPT 0x00004000UL
372#define KEY_SOCKET__SETOPT 0x00008000UL
373#define KEY_SOCKET__SHUTDOWN 0x00010000UL
374#define KEY_SOCKET__RECVFROM 0x00020000UL
375#define KEY_SOCKET__SENDTO 0x00040000UL
376#define KEY_SOCKET__RECV_MSG 0x00080000UL
377#define KEY_SOCKET__SEND_MSG 0x00100000UL
378#define KEY_SOCKET__NAME_BIND 0x00200000UL
379#define UNIX_STREAM_SOCKET__IOCTL 0x00000001UL
380#define UNIX_STREAM_SOCKET__READ 0x00000002UL
381#define UNIX_STREAM_SOCKET__WRITE 0x00000004UL
382#define UNIX_STREAM_SOCKET__CREATE 0x00000008UL
383#define UNIX_STREAM_SOCKET__GETATTR 0x00000010UL
384#define UNIX_STREAM_SOCKET__SETATTR 0x00000020UL
385#define UNIX_STREAM_SOCKET__LOCK 0x00000040UL
386#define UNIX_STREAM_SOCKET__RELABELFROM 0x00000080UL
387#define UNIX_STREAM_SOCKET__RELABELTO 0x00000100UL
388#define UNIX_STREAM_SOCKET__APPEND 0x00000200UL
389#define UNIX_STREAM_SOCKET__BIND 0x00000400UL
390#define UNIX_STREAM_SOCKET__CONNECT 0x00000800UL
391#define UNIX_STREAM_SOCKET__LISTEN 0x00001000UL
392#define UNIX_STREAM_SOCKET__ACCEPT 0x00002000UL
393#define UNIX_STREAM_SOCKET__GETOPT 0x00004000UL
394#define UNIX_STREAM_SOCKET__SETOPT 0x00008000UL
395#define UNIX_STREAM_SOCKET__SHUTDOWN 0x00010000UL
396#define UNIX_STREAM_SOCKET__RECVFROM 0x00020000UL
397#define UNIX_STREAM_SOCKET__SENDTO 0x00040000UL
398#define UNIX_STREAM_SOCKET__RECV_MSG 0x00080000UL
399#define UNIX_STREAM_SOCKET__SEND_MSG 0x00100000UL
400#define UNIX_STREAM_SOCKET__NAME_BIND 0x00200000UL
401#define UNIX_STREAM_SOCKET__CONNECTTO 0x00400000UL
402#define UNIX_STREAM_SOCKET__NEWCONN 0x00800000UL
403#define UNIX_STREAM_SOCKET__ACCEPTFROM 0x01000000UL
404#define UNIX_DGRAM_SOCKET__IOCTL 0x00000001UL
405#define UNIX_DGRAM_SOCKET__READ 0x00000002UL
406#define UNIX_DGRAM_SOCKET__WRITE 0x00000004UL
407#define UNIX_DGRAM_SOCKET__CREATE 0x00000008UL
408#define UNIX_DGRAM_SOCKET__GETATTR 0x00000010UL
409#define UNIX_DGRAM_SOCKET__SETATTR 0x00000020UL
410#define UNIX_DGRAM_SOCKET__LOCK 0x00000040UL
411#define UNIX_DGRAM_SOCKET__RELABELFROM 0x00000080UL
412#define UNIX_DGRAM_SOCKET__RELABELTO 0x00000100UL
413#define UNIX_DGRAM_SOCKET__APPEND 0x00000200UL
414#define UNIX_DGRAM_SOCKET__BIND 0x00000400UL
415#define UNIX_DGRAM_SOCKET__CONNECT 0x00000800UL
416#define UNIX_DGRAM_SOCKET__LISTEN 0x00001000UL
417#define UNIX_DGRAM_SOCKET__ACCEPT 0x00002000UL
418#define UNIX_DGRAM_SOCKET__GETOPT 0x00004000UL
419#define UNIX_DGRAM_SOCKET__SETOPT 0x00008000UL
420#define UNIX_DGRAM_SOCKET__SHUTDOWN 0x00010000UL
421#define UNIX_DGRAM_SOCKET__RECVFROM 0x00020000UL
422#define UNIX_DGRAM_SOCKET__SENDTO 0x00040000UL
423#define UNIX_DGRAM_SOCKET__RECV_MSG 0x00080000UL
424#define UNIX_DGRAM_SOCKET__SEND_MSG 0x00100000UL
425#define UNIX_DGRAM_SOCKET__NAME_BIND 0x00200000UL
426#define PROCESS__FORK 0x00000001UL
427#define PROCESS__TRANSITION 0x00000002UL
428#define PROCESS__SIGCHLD 0x00000004UL
429#define PROCESS__SIGKILL 0x00000008UL
430#define PROCESS__SIGSTOP 0x00000010UL
431#define PROCESS__SIGNULL 0x00000020UL
432#define PROCESS__SIGNAL 0x00000040UL
433#define PROCESS__PTRACE 0x00000080UL
434#define PROCESS__GETSCHED 0x00000100UL
435#define PROCESS__SETSCHED 0x00000200UL
436#define PROCESS__GETSESSION 0x00000400UL
437#define PROCESS__GETPGID 0x00000800UL
438#define PROCESS__SETPGID 0x00001000UL
439#define PROCESS__GETCAP 0x00002000UL
440#define PROCESS__SETCAP 0x00004000UL
441#define PROCESS__SHARE 0x00008000UL
442#define PROCESS__GETATTR 0x00010000UL
443#define PROCESS__SETEXEC 0x00020000UL
444#define PROCESS__SETFSCREATE 0x00040000UL
445#define PROCESS__NOATSECURE 0x00080000UL
446#define PROCESS__SIGINH 0x00100000UL
447#define PROCESS__SETRLIMIT 0x00200000UL
448#define PROCESS__RLIMITINH 0x00400000UL
449#define PROCESS__DYNTRANSITION 0x00800000UL
450#define PROCESS__SETCURRENT 0x01000000UL
451#define PROCESS__EXECMEM 0x02000000UL
452#define PROCESS__EXECSTACK 0x04000000UL
453#define PROCESS__EXECHEAP 0x08000000UL
454#define PROCESS__SETKEYCREATE 0x10000000UL
455#define PROCESS__SETSOCKCREATE 0x20000000UL
456#define IPC__CREATE 0x00000001UL
457#define IPC__DESTROY 0x00000002UL
458#define IPC__GETATTR 0x00000004UL
459#define IPC__SETATTR 0x00000008UL
460#define IPC__READ 0x00000010UL
461#define IPC__WRITE 0x00000020UL
462#define IPC__ASSOCIATE 0x00000040UL
463#define IPC__UNIX_READ 0x00000080UL
464#define IPC__UNIX_WRITE 0x00000100UL
465#define SEM__CREATE 0x00000001UL
466#define SEM__DESTROY 0x00000002UL
467#define SEM__GETATTR 0x00000004UL
468#define SEM__SETATTR 0x00000008UL
469#define SEM__READ 0x00000010UL
470#define SEM__WRITE 0x00000020UL
471#define SEM__ASSOCIATE 0x00000040UL
472#define SEM__UNIX_READ 0x00000080UL
473#define SEM__UNIX_WRITE 0x00000100UL
474#define MSGQ__CREATE 0x00000001UL
475#define MSGQ__DESTROY 0x00000002UL
476#define MSGQ__GETATTR 0x00000004UL
477#define MSGQ__SETATTR 0x00000008UL
478#define MSGQ__READ 0x00000010UL
479#define MSGQ__WRITE 0x00000020UL
480#define MSGQ__ASSOCIATE 0x00000040UL
481#define MSGQ__UNIX_READ 0x00000080UL
482#define MSGQ__UNIX_WRITE 0x00000100UL
483#define MSGQ__ENQUEUE 0x00000200UL
484#define MSG__SEND 0x00000001UL
485#define MSG__RECEIVE 0x00000002UL
486#define SHM__CREATE 0x00000001UL
487#define SHM__DESTROY 0x00000002UL
488#define SHM__GETATTR 0x00000004UL
489#define SHM__SETATTR 0x00000008UL
490#define SHM__READ 0x00000010UL
491#define SHM__WRITE 0x00000020UL
492#define SHM__ASSOCIATE 0x00000040UL
493#define SHM__UNIX_READ 0x00000080UL
494#define SHM__UNIX_WRITE 0x00000100UL
495#define SHM__LOCK 0x00000200UL
496#define SECURITY__COMPUTE_AV 0x00000001UL
497#define SECURITY__COMPUTE_CREATE 0x00000002UL
498#define SECURITY__COMPUTE_MEMBER 0x00000004UL
499#define SECURITY__CHECK_CONTEXT 0x00000008UL
500#define SECURITY__LOAD_POLICY 0x00000010UL
501#define SECURITY__COMPUTE_RELABEL 0x00000020UL
502#define SECURITY__COMPUTE_USER 0x00000040UL
503#define SECURITY__SETENFORCE 0x00000080UL
504#define SECURITY__SETBOOL 0x00000100UL
505#define SECURITY__SETSECPARAM 0x00000200UL
506#define SECURITY__SETCHECKREQPROT 0x00000400UL
507#define SYSTEM__IPC_INFO 0x00000001UL
508#define SYSTEM__SYSLOG_READ 0x00000002UL
509#define SYSTEM__SYSLOG_MOD 0x00000004UL
510#define SYSTEM__SYSLOG_CONSOLE 0x00000008UL
511#define SYSTEM__MODULE_REQUEST 0x00000010UL
512#define CAPABILITY__CHOWN 0x00000001UL
513#define CAPABILITY__DAC_OVERRIDE 0x00000002UL
514#define CAPABILITY__DAC_READ_SEARCH 0x00000004UL
515#define CAPABILITY__FOWNER 0x00000008UL
516#define CAPABILITY__FSETID 0x00000010UL
517#define CAPABILITY__KILL 0x00000020UL
518#define CAPABILITY__SETGID 0x00000040UL
519#define CAPABILITY__SETUID 0x00000080UL
520#define CAPABILITY__SETPCAP 0x00000100UL
521#define CAPABILITY__LINUX_IMMUTABLE 0x00000200UL
522#define CAPABILITY__NET_BIND_SERVICE 0x00000400UL
523#define CAPABILITY__NET_BROADCAST 0x00000800UL
524#define CAPABILITY__NET_ADMIN 0x00001000UL
525#define CAPABILITY__NET_RAW 0x00002000UL
526#define CAPABILITY__IPC_LOCK 0x00004000UL
527#define CAPABILITY__IPC_OWNER 0x00008000UL
528#define CAPABILITY__SYS_MODULE 0x00010000UL
529#define CAPABILITY__SYS_RAWIO 0x00020000UL
530#define CAPABILITY__SYS_CHROOT 0x00040000UL
531#define CAPABILITY__SYS_PTRACE 0x00080000UL
532#define CAPABILITY__SYS_PACCT 0x00100000UL
533#define CAPABILITY__SYS_ADMIN 0x00200000UL
534#define CAPABILITY__SYS_BOOT 0x00400000UL
535#define CAPABILITY__SYS_NICE 0x00800000UL
536#define CAPABILITY__SYS_RESOURCE 0x01000000UL
537#define CAPABILITY__SYS_TIME 0x02000000UL
538#define CAPABILITY__SYS_TTY_CONFIG 0x04000000UL
539#define CAPABILITY__MKNOD 0x08000000UL
540#define CAPABILITY__LEASE 0x10000000UL
541#define CAPABILITY__AUDIT_WRITE 0x20000000UL
542#define CAPABILITY__AUDIT_CONTROL 0x40000000UL
543#define CAPABILITY__SETFCAP 0x80000000UL
544#define CAPABILITY2__MAC_OVERRIDE 0x00000001UL
545#define CAPABILITY2__MAC_ADMIN 0x00000002UL
546#define NETLINK_ROUTE_SOCKET__IOCTL 0x00000001UL
547#define NETLINK_ROUTE_SOCKET__READ 0x00000002UL
548#define NETLINK_ROUTE_SOCKET__WRITE 0x00000004UL
549#define NETLINK_ROUTE_SOCKET__CREATE 0x00000008UL
550#define NETLINK_ROUTE_SOCKET__GETATTR 0x00000010UL
551#define NETLINK_ROUTE_SOCKET__SETATTR 0x00000020UL
552#define NETLINK_ROUTE_SOCKET__LOCK 0x00000040UL
553#define NETLINK_ROUTE_SOCKET__RELABELFROM 0x00000080UL
554#define NETLINK_ROUTE_SOCKET__RELABELTO 0x00000100UL
555#define NETLINK_ROUTE_SOCKET__APPEND 0x00000200UL
556#define NETLINK_ROUTE_SOCKET__BIND 0x00000400UL
557#define NETLINK_ROUTE_SOCKET__CONNECT 0x00000800UL
558#define NETLINK_ROUTE_SOCKET__LISTEN 0x00001000UL
559#define NETLINK_ROUTE_SOCKET__ACCEPT 0x00002000UL
560#define NETLINK_ROUTE_SOCKET__GETOPT 0x00004000UL
561#define NETLINK_ROUTE_SOCKET__SETOPT 0x00008000UL
562#define NETLINK_ROUTE_SOCKET__SHUTDOWN 0x00010000UL
563#define NETLINK_ROUTE_SOCKET__RECVFROM 0x00020000UL
564#define NETLINK_ROUTE_SOCKET__SENDTO 0x00040000UL
565#define NETLINK_ROUTE_SOCKET__RECV_MSG 0x00080000UL
566#define NETLINK_ROUTE_SOCKET__SEND_MSG 0x00100000UL
567#define NETLINK_ROUTE_SOCKET__NAME_BIND 0x00200000UL
568#define NETLINK_ROUTE_SOCKET__NLMSG_READ 0x00400000UL
569#define NETLINK_ROUTE_SOCKET__NLMSG_WRITE 0x00800000UL
570#define NETLINK_FIREWALL_SOCKET__IOCTL 0x00000001UL
571#define NETLINK_FIREWALL_SOCKET__READ 0x00000002UL
572#define NETLINK_FIREWALL_SOCKET__WRITE 0x00000004UL
573#define NETLINK_FIREWALL_SOCKET__CREATE 0x00000008UL
574#define NETLINK_FIREWALL_SOCKET__GETATTR 0x00000010UL
575#define NETLINK_FIREWALL_SOCKET__SETATTR 0x00000020UL
576#define NETLINK_FIREWALL_SOCKET__LOCK 0x00000040UL
577#define NETLINK_FIREWALL_SOCKET__RELABELFROM 0x00000080UL
578#define NETLINK_FIREWALL_SOCKET__RELABELTO 0x00000100UL
579#define NETLINK_FIREWALL_SOCKET__APPEND 0x00000200UL
580#define NETLINK_FIREWALL_SOCKET__BIND 0x00000400UL
581#define NETLINK_FIREWALL_SOCKET__CONNECT 0x00000800UL
582#define NETLINK_FIREWALL_SOCKET__LISTEN 0x00001000UL
583#define NETLINK_FIREWALL_SOCKET__ACCEPT 0x00002000UL
584#define NETLINK_FIREWALL_SOCKET__GETOPT 0x00004000UL
585#define NETLINK_FIREWALL_SOCKET__SETOPT 0x00008000UL
586#define NETLINK_FIREWALL_SOCKET__SHUTDOWN 0x00010000UL
587#define NETLINK_FIREWALL_SOCKET__RECVFROM 0x00020000UL
588#define NETLINK_FIREWALL_SOCKET__SENDTO 0x00040000UL
589#define NETLINK_FIREWALL_SOCKET__RECV_MSG 0x00080000UL
590#define NETLINK_FIREWALL_SOCKET__SEND_MSG 0x00100000UL
591#define NETLINK_FIREWALL_SOCKET__NAME_BIND 0x00200000UL
592#define NETLINK_FIREWALL_SOCKET__NLMSG_READ 0x00400000UL
593#define NETLINK_FIREWALL_SOCKET__NLMSG_WRITE 0x00800000UL
594#define NETLINK_TCPDIAG_SOCKET__IOCTL 0x00000001UL
595#define NETLINK_TCPDIAG_SOCKET__READ 0x00000002UL
596#define NETLINK_TCPDIAG_SOCKET__WRITE 0x00000004UL
597#define NETLINK_TCPDIAG_SOCKET__CREATE 0x00000008UL
598#define NETLINK_TCPDIAG_SOCKET__GETATTR 0x00000010UL
599#define NETLINK_TCPDIAG_SOCKET__SETATTR 0x00000020UL
600#define NETLINK_TCPDIAG_SOCKET__LOCK 0x00000040UL
601#define NETLINK_TCPDIAG_SOCKET__RELABELFROM 0x00000080UL
602#define NETLINK_TCPDIAG_SOCKET__RELABELTO 0x00000100UL
603#define NETLINK_TCPDIAG_SOCKET__APPEND 0x00000200UL
604#define NETLINK_TCPDIAG_SOCKET__BIND 0x00000400UL
605#define NETLINK_TCPDIAG_SOCKET__CONNECT 0x00000800UL
606#define NETLINK_TCPDIAG_SOCKET__LISTEN 0x00001000UL
607#define NETLINK_TCPDIAG_SOCKET__ACCEPT 0x00002000UL
608#define NETLINK_TCPDIAG_SOCKET__GETOPT 0x00004000UL
609#define NETLINK_TCPDIAG_SOCKET__SETOPT 0x00008000UL
610#define NETLINK_TCPDIAG_SOCKET__SHUTDOWN 0x00010000UL
611#define NETLINK_TCPDIAG_SOCKET__RECVFROM 0x00020000UL
612#define NETLINK_TCPDIAG_SOCKET__SENDTO 0x00040000UL
613#define NETLINK_TCPDIAG_SOCKET__RECV_MSG 0x00080000UL
614#define NETLINK_TCPDIAG_SOCKET__SEND_MSG 0x00100000UL
615#define NETLINK_TCPDIAG_SOCKET__NAME_BIND 0x00200000UL
616#define NETLINK_TCPDIAG_SOCKET__NLMSG_READ 0x00400000UL
617#define NETLINK_TCPDIAG_SOCKET__NLMSG_WRITE 0x00800000UL
618#define NETLINK_NFLOG_SOCKET__IOCTL 0x00000001UL
619#define NETLINK_NFLOG_SOCKET__READ 0x00000002UL
620#define NETLINK_NFLOG_SOCKET__WRITE 0x00000004UL
621#define NETLINK_NFLOG_SOCKET__CREATE 0x00000008UL
622#define NETLINK_NFLOG_SOCKET__GETATTR 0x00000010UL
623#define NETLINK_NFLOG_SOCKET__SETATTR 0x00000020UL
624#define NETLINK_NFLOG_SOCKET__LOCK 0x00000040UL
625#define NETLINK_NFLOG_SOCKET__RELABELFROM 0x00000080UL
626#define NETLINK_NFLOG_SOCKET__RELABELTO 0x00000100UL
627#define NETLINK_NFLOG_SOCKET__APPEND 0x00000200UL
628#define NETLINK_NFLOG_SOCKET__BIND 0x00000400UL
629#define NETLINK_NFLOG_SOCKET__CONNECT 0x00000800UL
630#define NETLINK_NFLOG_SOCKET__LISTEN 0x00001000UL
631#define NETLINK_NFLOG_SOCKET__ACCEPT 0x00002000UL
632#define NETLINK_NFLOG_SOCKET__GETOPT 0x00004000UL
633#define NETLINK_NFLOG_SOCKET__SETOPT 0x00008000UL
634#define NETLINK_NFLOG_SOCKET__SHUTDOWN 0x00010000UL
635#define NETLINK_NFLOG_SOCKET__RECVFROM 0x00020000UL
636#define NETLINK_NFLOG_SOCKET__SENDTO 0x00040000UL
637#define NETLINK_NFLOG_SOCKET__RECV_MSG 0x00080000UL
638#define NETLINK_NFLOG_SOCKET__SEND_MSG 0x00100000UL
639#define NETLINK_NFLOG_SOCKET__NAME_BIND 0x00200000UL
640#define NETLINK_XFRM_SOCKET__IOCTL 0x00000001UL
641#define NETLINK_XFRM_SOCKET__READ 0x00000002UL
642#define NETLINK_XFRM_SOCKET__WRITE 0x00000004UL
643#define NETLINK_XFRM_SOCKET__CREATE 0x00000008UL
644#define NETLINK_XFRM_SOCKET__GETATTR 0x00000010UL
645#define NETLINK_XFRM_SOCKET__SETATTR 0x00000020UL
646#define NETLINK_XFRM_SOCKET__LOCK 0x00000040UL
647#define NETLINK_XFRM_SOCKET__RELABELFROM 0x00000080UL
648#define NETLINK_XFRM_SOCKET__RELABELTO 0x00000100UL
649#define NETLINK_XFRM_SOCKET__APPEND 0x00000200UL
650#define NETLINK_XFRM_SOCKET__BIND 0x00000400UL
651#define NETLINK_XFRM_SOCKET__CONNECT 0x00000800UL
652#define NETLINK_XFRM_SOCKET__LISTEN 0x00001000UL
653#define NETLINK_XFRM_SOCKET__ACCEPT 0x00002000UL
654#define NETLINK_XFRM_SOCKET__GETOPT 0x00004000UL
655#define NETLINK_XFRM_SOCKET__SETOPT 0x00008000UL
656#define NETLINK_XFRM_SOCKET__SHUTDOWN 0x00010000UL
657#define NETLINK_XFRM_SOCKET__RECVFROM 0x00020000UL
658#define NETLINK_XFRM_SOCKET__SENDTO 0x00040000UL
659#define NETLINK_XFRM_SOCKET__RECV_MSG 0x00080000UL
660#define NETLINK_XFRM_SOCKET__SEND_MSG 0x00100000UL
661#define NETLINK_XFRM_SOCKET__NAME_BIND 0x00200000UL
662#define NETLINK_XFRM_SOCKET__NLMSG_READ 0x00400000UL
663#define NETLINK_XFRM_SOCKET__NLMSG_WRITE 0x00800000UL
664#define NETLINK_SELINUX_SOCKET__IOCTL 0x00000001UL
665#define NETLINK_SELINUX_SOCKET__READ 0x00000002UL
666#define NETLINK_SELINUX_SOCKET__WRITE 0x00000004UL
667#define NETLINK_SELINUX_SOCKET__CREATE 0x00000008UL
668#define NETLINK_SELINUX_SOCKET__GETATTR 0x00000010UL
669#define NETLINK_SELINUX_SOCKET__SETATTR 0x00000020UL
670#define NETLINK_SELINUX_SOCKET__LOCK 0x00000040UL
671#define NETLINK_SELINUX_SOCKET__RELABELFROM 0x00000080UL
672#define NETLINK_SELINUX_SOCKET__RELABELTO 0x00000100UL
673#define NETLINK_SELINUX_SOCKET__APPEND 0x00000200UL
674#define NETLINK_SELINUX_SOCKET__BIND 0x00000400UL
675#define NETLINK_SELINUX_SOCKET__CONNECT 0x00000800UL
676#define NETLINK_SELINUX_SOCKET__LISTEN 0x00001000UL
677#define NETLINK_SELINUX_SOCKET__ACCEPT 0x00002000UL
678#define NETLINK_SELINUX_SOCKET__GETOPT 0x00004000UL
679#define NETLINK_SELINUX_SOCKET__SETOPT 0x00008000UL
680#define NETLINK_SELINUX_SOCKET__SHUTDOWN 0x00010000UL
681#define NETLINK_SELINUX_SOCKET__RECVFROM 0x00020000UL
682#define NETLINK_SELINUX_SOCKET__SENDTO 0x00040000UL
683#define NETLINK_SELINUX_SOCKET__RECV_MSG 0x00080000UL
684#define NETLINK_SELINUX_SOCKET__SEND_MSG 0x00100000UL
685#define NETLINK_SELINUX_SOCKET__NAME_BIND 0x00200000UL
686#define NETLINK_AUDIT_SOCKET__IOCTL 0x00000001UL
687#define NETLINK_AUDIT_SOCKET__READ 0x00000002UL
688#define NETLINK_AUDIT_SOCKET__WRITE 0x00000004UL
689#define NETLINK_AUDIT_SOCKET__CREATE 0x00000008UL
690#define NETLINK_AUDIT_SOCKET__GETATTR 0x00000010UL
691#define NETLINK_AUDIT_SOCKET__SETATTR 0x00000020UL
692#define NETLINK_AUDIT_SOCKET__LOCK 0x00000040UL
693#define NETLINK_AUDIT_SOCKET__RELABELFROM 0x00000080UL
694#define NETLINK_AUDIT_SOCKET__RELABELTO 0x00000100UL
695#define NETLINK_AUDIT_SOCKET__APPEND 0x00000200UL
696#define NETLINK_AUDIT_SOCKET__BIND 0x00000400UL
697#define NETLINK_AUDIT_SOCKET__CONNECT 0x00000800UL
698#define NETLINK_AUDIT_SOCKET__LISTEN 0x00001000UL
699#define NETLINK_AUDIT_SOCKET__ACCEPT 0x00002000UL
700#define NETLINK_AUDIT_SOCKET__GETOPT 0x00004000UL
701#define NETLINK_AUDIT_SOCKET__SETOPT 0x00008000UL
702#define NETLINK_AUDIT_SOCKET__SHUTDOWN 0x00010000UL
703#define NETLINK_AUDIT_SOCKET__RECVFROM 0x00020000UL
704#define NETLINK_AUDIT_SOCKET__SENDTO 0x00040000UL
705#define NETLINK_AUDIT_SOCKET__RECV_MSG 0x00080000UL
706#define NETLINK_AUDIT_SOCKET__SEND_MSG 0x00100000UL
707#define NETLINK_AUDIT_SOCKET__NAME_BIND 0x00200000UL
708#define NETLINK_AUDIT_SOCKET__NLMSG_READ 0x00400000UL
709#define NETLINK_AUDIT_SOCKET__NLMSG_WRITE 0x00800000UL
710#define NETLINK_AUDIT_SOCKET__NLMSG_RELAY 0x01000000UL
711#define NETLINK_AUDIT_SOCKET__NLMSG_READPRIV 0x02000000UL
712#define NETLINK_AUDIT_SOCKET__NLMSG_TTY_AUDIT 0x04000000UL
713#define NETLINK_IP6FW_SOCKET__IOCTL 0x00000001UL
714#define NETLINK_IP6FW_SOCKET__READ 0x00000002UL
715#define NETLINK_IP6FW_SOCKET__WRITE 0x00000004UL
716#define NETLINK_IP6FW_SOCKET__CREATE 0x00000008UL
717#define NETLINK_IP6FW_SOCKET__GETATTR 0x00000010UL
718#define NETLINK_IP6FW_SOCKET__SETATTR 0x00000020UL
719#define NETLINK_IP6FW_SOCKET__LOCK 0x00000040UL
720#define NETLINK_IP6FW_SOCKET__RELABELFROM 0x00000080UL
721#define NETLINK_IP6FW_SOCKET__RELABELTO 0x00000100UL
722#define NETLINK_IP6FW_SOCKET__APPEND 0x00000200UL
723#define NETLINK_IP6FW_SOCKET__BIND 0x00000400UL
724#define NETLINK_IP6FW_SOCKET__CONNECT 0x00000800UL
725#define NETLINK_IP6FW_SOCKET__LISTEN 0x00001000UL
726#define NETLINK_IP6FW_SOCKET__ACCEPT 0x00002000UL
727#define NETLINK_IP6FW_SOCKET__GETOPT 0x00004000UL
728#define NETLINK_IP6FW_SOCKET__SETOPT 0x00008000UL
729#define NETLINK_IP6FW_SOCKET__SHUTDOWN 0x00010000UL
730#define NETLINK_IP6FW_SOCKET__RECVFROM 0x00020000UL
731#define NETLINK_IP6FW_SOCKET__SENDTO 0x00040000UL
732#define NETLINK_IP6FW_SOCKET__RECV_MSG 0x00080000UL
733#define NETLINK_IP6FW_SOCKET__SEND_MSG 0x00100000UL
734#define NETLINK_IP6FW_SOCKET__NAME_BIND 0x00200000UL
735#define NETLINK_IP6FW_SOCKET__NLMSG_READ 0x00400000UL
736#define NETLINK_IP6FW_SOCKET__NLMSG_WRITE 0x00800000UL
737#define NETLINK_DNRT_SOCKET__IOCTL 0x00000001UL
738#define NETLINK_DNRT_SOCKET__READ 0x00000002UL
739#define NETLINK_DNRT_SOCKET__WRITE 0x00000004UL
740#define NETLINK_DNRT_SOCKET__CREATE 0x00000008UL
741#define NETLINK_DNRT_SOCKET__GETATTR 0x00000010UL
742#define NETLINK_DNRT_SOCKET__SETATTR 0x00000020UL
743#define NETLINK_DNRT_SOCKET__LOCK 0x00000040UL
744#define NETLINK_DNRT_SOCKET__RELABELFROM 0x00000080UL
745#define NETLINK_DNRT_SOCKET__RELABELTO 0x00000100UL
746#define NETLINK_DNRT_SOCKET__APPEND 0x00000200UL
747#define NETLINK_DNRT_SOCKET__BIND 0x00000400UL
748#define NETLINK_DNRT_SOCKET__CONNECT 0x00000800UL
749#define NETLINK_DNRT_SOCKET__LISTEN 0x00001000UL
750#define NETLINK_DNRT_SOCKET__ACCEPT 0x00002000UL
751#define NETLINK_DNRT_SOCKET__GETOPT 0x00004000UL
752#define NETLINK_DNRT_SOCKET__SETOPT 0x00008000UL
753#define NETLINK_DNRT_SOCKET__SHUTDOWN 0x00010000UL
754#define NETLINK_DNRT_SOCKET__RECVFROM 0x00020000UL
755#define NETLINK_DNRT_SOCKET__SENDTO 0x00040000UL
756#define NETLINK_DNRT_SOCKET__RECV_MSG 0x00080000UL
757#define NETLINK_DNRT_SOCKET__SEND_MSG 0x00100000UL
758#define NETLINK_DNRT_SOCKET__NAME_BIND 0x00200000UL
759#define ASSOCIATION__SENDTO 0x00000001UL
760#define ASSOCIATION__RECVFROM 0x00000002UL
761#define ASSOCIATION__SETCONTEXT 0x00000004UL
762#define ASSOCIATION__POLMATCH 0x00000008UL
763#define NETLINK_KOBJECT_UEVENT_SOCKET__IOCTL 0x00000001UL
764#define NETLINK_KOBJECT_UEVENT_SOCKET__READ 0x00000002UL
765#define NETLINK_KOBJECT_UEVENT_SOCKET__WRITE 0x00000004UL
766#define NETLINK_KOBJECT_UEVENT_SOCKET__CREATE 0x00000008UL
767#define NETLINK_KOBJECT_UEVENT_SOCKET__GETATTR 0x00000010UL
768#define NETLINK_KOBJECT_UEVENT_SOCKET__SETATTR 0x00000020UL
769#define NETLINK_KOBJECT_UEVENT_SOCKET__LOCK 0x00000040UL
770#define NETLINK_KOBJECT_UEVENT_SOCKET__RELABELFROM 0x00000080UL
771#define NETLINK_KOBJECT_UEVENT_SOCKET__RELABELTO 0x00000100UL
772#define NETLINK_KOBJECT_UEVENT_SOCKET__APPEND 0x00000200UL
773#define NETLINK_KOBJECT_UEVENT_SOCKET__BIND 0x00000400UL
774#define NETLINK_KOBJECT_UEVENT_SOCKET__CONNECT 0x00000800UL
775#define NETLINK_KOBJECT_UEVENT_SOCKET__LISTEN 0x00001000UL
776#define NETLINK_KOBJECT_UEVENT_SOCKET__ACCEPT 0x00002000UL
777#define NETLINK_KOBJECT_UEVENT_SOCKET__GETOPT 0x00004000UL
778#define NETLINK_KOBJECT_UEVENT_SOCKET__SETOPT 0x00008000UL
779#define NETLINK_KOBJECT_UEVENT_SOCKET__SHUTDOWN 0x00010000UL
780#define NETLINK_KOBJECT_UEVENT_SOCKET__RECVFROM 0x00020000UL
781#define NETLINK_KOBJECT_UEVENT_SOCKET__SENDTO 0x00040000UL
782#define NETLINK_KOBJECT_UEVENT_SOCKET__RECV_MSG 0x00080000UL
783#define NETLINK_KOBJECT_UEVENT_SOCKET__SEND_MSG 0x00100000UL
784#define NETLINK_KOBJECT_UEVENT_SOCKET__NAME_BIND 0x00200000UL
785#define APPLETALK_SOCKET__IOCTL 0x00000001UL
786#define APPLETALK_SOCKET__READ 0x00000002UL
787#define APPLETALK_SOCKET__WRITE 0x00000004UL
788#define APPLETALK_SOCKET__CREATE 0x00000008UL
789#define APPLETALK_SOCKET__GETATTR 0x00000010UL
790#define APPLETALK_SOCKET__SETATTR 0x00000020UL
791#define APPLETALK_SOCKET__LOCK 0x00000040UL
792#define APPLETALK_SOCKET__RELABELFROM 0x00000080UL
793#define APPLETALK_SOCKET__RELABELTO 0x00000100UL
794#define APPLETALK_SOCKET__APPEND 0x00000200UL
795#define APPLETALK_SOCKET__BIND 0x00000400UL
796#define APPLETALK_SOCKET__CONNECT 0x00000800UL
797#define APPLETALK_SOCKET__LISTEN 0x00001000UL
798#define APPLETALK_SOCKET__ACCEPT 0x00002000UL
799#define APPLETALK_SOCKET__GETOPT 0x00004000UL
800#define APPLETALK_SOCKET__SETOPT 0x00008000UL
801#define APPLETALK_SOCKET__SHUTDOWN 0x00010000UL
802#define APPLETALK_SOCKET__RECVFROM 0x00020000UL
803#define APPLETALK_SOCKET__SENDTO 0x00040000UL
804#define APPLETALK_SOCKET__RECV_MSG 0x00080000UL
805#define APPLETALK_SOCKET__SEND_MSG 0x00100000UL
806#define APPLETALK_SOCKET__NAME_BIND 0x00200000UL
807#define PACKET__SEND 0x00000001UL
808#define PACKET__RECV 0x00000002UL
809#define PACKET__RELABELTO 0x00000004UL
810#define PACKET__FLOW_IN 0x00000008UL
811#define PACKET__FLOW_OUT 0x00000010UL
812#define PACKET__FORWARD_IN 0x00000020UL
813#define PACKET__FORWARD_OUT 0x00000040UL
814#define KEY__VIEW 0x00000001UL
815#define KEY__READ 0x00000002UL
816#define KEY__WRITE 0x00000004UL
817#define KEY__SEARCH 0x00000008UL
818#define KEY__LINK 0x00000010UL
819#define KEY__SETATTR 0x00000020UL
820#define KEY__CREATE 0x00000040UL
821#define DCCP_SOCKET__IOCTL 0x00000001UL
822#define DCCP_SOCKET__READ 0x00000002UL
823#define DCCP_SOCKET__WRITE 0x00000004UL
824#define DCCP_SOCKET__CREATE 0x00000008UL
825#define DCCP_SOCKET__GETATTR 0x00000010UL
826#define DCCP_SOCKET__SETATTR 0x00000020UL
827#define DCCP_SOCKET__LOCK 0x00000040UL
828#define DCCP_SOCKET__RELABELFROM 0x00000080UL
829#define DCCP_SOCKET__RELABELTO 0x00000100UL
830#define DCCP_SOCKET__APPEND 0x00000200UL
831#define DCCP_SOCKET__BIND 0x00000400UL
832#define DCCP_SOCKET__CONNECT 0x00000800UL
833#define DCCP_SOCKET__LISTEN 0x00001000UL
834#define DCCP_SOCKET__ACCEPT 0x00002000UL
835#define DCCP_SOCKET__GETOPT 0x00004000UL
836#define DCCP_SOCKET__SETOPT 0x00008000UL
837#define DCCP_SOCKET__SHUTDOWN 0x00010000UL
838#define DCCP_SOCKET__RECVFROM 0x00020000UL
839#define DCCP_SOCKET__SENDTO 0x00040000UL
840#define DCCP_SOCKET__RECV_MSG 0x00080000UL
841#define DCCP_SOCKET__SEND_MSG 0x00100000UL
842#define DCCP_SOCKET__NAME_BIND 0x00200000UL
843#define DCCP_SOCKET__NODE_BIND 0x00400000UL
844#define DCCP_SOCKET__NAME_CONNECT 0x00800000UL
845#define MEMPROTECT__MMAP_ZERO 0x00000001UL
846#define PEER__RECV 0x00000001UL
847#define KERNEL_SERVICE__USE_AS_OVERRIDE 0x00000001UL
848#define KERNEL_SERVICE__CREATE_FILES_AS 0x00000002UL
849#define TUN_SOCKET__IOCTL 0x00000001UL
850#define TUN_SOCKET__READ 0x00000002UL
851#define TUN_SOCKET__WRITE 0x00000004UL
852#define TUN_SOCKET__CREATE 0x00000008UL
853#define TUN_SOCKET__GETATTR 0x00000010UL
854#define TUN_SOCKET__SETATTR 0x00000020UL
855#define TUN_SOCKET__LOCK 0x00000040UL
856#define TUN_SOCKET__RELABELFROM 0x00000080UL
857#define TUN_SOCKET__RELABELTO 0x00000100UL
858#define TUN_SOCKET__APPEND 0x00000200UL
859#define TUN_SOCKET__BIND 0x00000400UL
860#define TUN_SOCKET__CONNECT 0x00000800UL
861#define TUN_SOCKET__LISTEN 0x00001000UL
862#define TUN_SOCKET__ACCEPT 0x00002000UL
863#define TUN_SOCKET__GETOPT 0x00004000UL
864#define TUN_SOCKET__SETOPT 0x00008000UL
865#define TUN_SOCKET__SHUTDOWN 0x00010000UL
866#define TUN_SOCKET__RECVFROM 0x00020000UL
867#define TUN_SOCKET__SENDTO 0x00040000UL
868#define TUN_SOCKET__RECV_MSG 0x00080000UL
869#define TUN_SOCKET__SEND_MSG 0x00100000UL
870#define TUN_SOCKET__NAME_BIND 0x00200000UL
diff --git a/security/selinux/include/flask.h b/security/selinux/include/flask.h
deleted file mode 100644
index 5359ca2abf21..000000000000
--- a/security/selinux/include/flask.h
+++ /dev/null
@@ -1,91 +0,0 @@
1/* This file is automatically generated. Do not edit. */
2#ifndef _SELINUX_FLASK_H_
3#define _SELINUX_FLASK_H_
4
5/*
6 * Security object class definitions
7 */
8#define SECCLASS_SECURITY 1
9#define SECCLASS_PROCESS 2
10#define SECCLASS_SYSTEM 3
11#define SECCLASS_CAPABILITY 4
12#define SECCLASS_FILESYSTEM 5
13#define SECCLASS_FILE 6
14#define SECCLASS_DIR 7
15#define SECCLASS_FD 8
16#define SECCLASS_LNK_FILE 9
17#define SECCLASS_CHR_FILE 10
18#define SECCLASS_BLK_FILE 11
19#define SECCLASS_SOCK_FILE 12
20#define SECCLASS_FIFO_FILE 13
21#define SECCLASS_SOCKET 14
22#define SECCLASS_TCP_SOCKET 15
23#define SECCLASS_UDP_SOCKET 16
24#define SECCLASS_RAWIP_SOCKET 17
25#define SECCLASS_NODE 18
26#define SECCLASS_NETIF 19
27#define SECCLASS_NETLINK_SOCKET 20
28#define SECCLASS_PACKET_SOCKET 21
29#define SECCLASS_KEY_SOCKET 22
30#define SECCLASS_UNIX_STREAM_SOCKET 23
31#define SECCLASS_UNIX_DGRAM_SOCKET 24
32#define SECCLASS_SEM 25
33#define SECCLASS_MSG 26
34#define SECCLASS_MSGQ 27
35#define SECCLASS_SHM 28
36#define SECCLASS_IPC 29
37#define SECCLASS_NETLINK_ROUTE_SOCKET 30
38#define SECCLASS_NETLINK_FIREWALL_SOCKET 31
39#define SECCLASS_NETLINK_TCPDIAG_SOCKET 32
40#define SECCLASS_NETLINK_NFLOG_SOCKET 33
41#define SECCLASS_NETLINK_XFRM_SOCKET 34
42#define SECCLASS_NETLINK_SELINUX_SOCKET 35
43#define SECCLASS_NETLINK_AUDIT_SOCKET 36
44#define SECCLASS_NETLINK_IP6FW_SOCKET 37
45#define SECCLASS_NETLINK_DNRT_SOCKET 38
46#define SECCLASS_ASSOCIATION 39
47#define SECCLASS_NETLINK_KOBJECT_UEVENT_SOCKET 40
48#define SECCLASS_APPLETALK_SOCKET 41
49#define SECCLASS_PACKET 42
50#define SECCLASS_KEY 43
51#define SECCLASS_DCCP_SOCKET 44
52#define SECCLASS_MEMPROTECT 45
53#define SECCLASS_PEER 46
54#define SECCLASS_CAPABILITY2 47
55#define SECCLASS_KERNEL_SERVICE 48
56#define SECCLASS_TUN_SOCKET 49
57
58/*
59 * Security identifier indices for initial entities
60 */
61#define SECINITSID_KERNEL 1
62#define SECINITSID_SECURITY 2
63#define SECINITSID_UNLABELED 3
64#define SECINITSID_FS 4
65#define SECINITSID_FILE 5
66#define SECINITSID_FILE_LABELS 6
67#define SECINITSID_INIT 7
68#define SECINITSID_ANY_SOCKET 8
69#define SECINITSID_PORT 9
70#define SECINITSID_NETIF 10
71#define SECINITSID_NETMSG 11
72#define SECINITSID_NODE 12
73#define SECINITSID_IGMP_PACKET 13
74#define SECINITSID_ICMP_SOCKET 14
75#define SECINITSID_TCP_SOCKET 15
76#define SECINITSID_SYSCTL_MODPROBE 16
77#define SECINITSID_SYSCTL 17
78#define SECINITSID_SYSCTL_FS 18
79#define SECINITSID_SYSCTL_KERNEL 19
80#define SECINITSID_SYSCTL_NET 20
81#define SECINITSID_SYSCTL_NET_UNIX 21
82#define SECINITSID_SYSCTL_VM 22
83#define SECINITSID_SYSCTL_DEV 23
84#define SECINITSID_KMOD 24
85#define SECINITSID_POLICY 25
86#define SECINITSID_SCMP_PACKET 26
87#define SECINITSID_DEVNULL 27
88
89#define SECINITSID_NUM 27
90
91#endif
diff --git a/security/selinux/ss/Makefile b/security/selinux/ss/Makefile
index bad78779b9b0..15d4e62917de 100644
--- a/security/selinux/ss/Makefile
+++ b/security/selinux/ss/Makefile
@@ -2,7 +2,7 @@
2# Makefile for building the SELinux security server as part of the kernel tree. 2# Makefile for building the SELinux security server as part of the kernel tree.
3# 3#
4 4
5EXTRA_CFLAGS += -Isecurity/selinux/include 5EXTRA_CFLAGS += -Isecurity/selinux -Isecurity/selinux/include
6obj-y := ss.o 6obj-y := ss.o
7 7
8ss-y := ebitmap.o hashtab.o symtab.o sidtab.o avtab.o policydb.o services.o conditional.o mls.o 8ss-y := ebitmap.o hashtab.o symtab.o sidtab.o avtab.o policydb.o services.o conditional.o mls.o
generated by cgit v1.2.2 (git 2.25.0) at 2024-09-20 07:42:48 -0400