1 files changed, 26 insertions, 0 deletions
diff --git a/include/linux/netfilter/xt_SECMARK.h b/include/linux/netfilter/xt_SECMARK.h
new file mode 100644
index 000000000000..c53fbffa997d
--- /dev/null
+++ b/include/linux/netfilter/xt_SECMARK.h
@@ -0,0 +1,26 @@
+#ifndef _XT_SECMARK_H_target
+#define _XT_SECMARK_H_target
+/*
+ * This is intended for use by various security subsystems (but not
+ * at the same time).
+ *
+ * 'mode' refers to the specific security subsystem which the
+ * packets are being marked for.
+ */
+#define SECMARK_MODE_SEL        0x01            /* SELinux */
+#define SECMARK_SELCTX_MAX      256
+struct xt_secmark_target_selinux_info {
+        u_int32_t selsid;
+        char selctx[SECMARK_SELCTX_MAX];
+};
+struct xt_secmark_target_info {
+        u_int8_t mode;
+        union {
+                struct xt_secmark_target_selinux_info sel;
+        } u;
+};
+#endif /*_XT_SECMARK_H_target */

diff --git a/include/linux/netfilter/xt_SECMARK.h b/include/linux/netfilter/xt_SECMARK.h new file mode 100644 index 000000000000..c53fbffa997d --- /dev/null +++ b/include/linux/netfilter/xt_SECMARK.h
@@ -0,0 +1,26 @@
	1	#ifndef _XT_SECMARK_H_target
	2	#define _XT_SECMARK_H_target
	3
	4	/*
	5	* This is intended for use by various security subsystems (but not
	6	* at the same time).
	7	*
	8	* 'mode' refers to the specific security subsystem which the
	9	* packets are being marked for.
	10	*/
	11	#define SECMARK_MODE_SEL 0x01 /* SELinux */
	12	#define SECMARK_SELCTX_MAX 256
	13
	14	struct xt_secmark_target_selinux_info {
	15	u_int32_t selsid;
	16	char selctx[SECMARK_SELCTX_MAX];
	17	};
	18
	19	struct xt_secmark_target_info {
	20	u_int8_t mode;
	21	union {
	22	struct xt_secmark_target_selinux_info sel;
	23	} u;
	24	};
	25
	26	#endif /_XT_SECMARK_H_target /