Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 2ff6fa8fafd6fa94029fa0558a6b85956930f1f5 / . / include / linux / netfilter / xt_SECMARK.h
blob: 989092bd6274b44585ccc0faf4f005a0d7b909b7 [file] [log] [blame]
James Morris5e6874cd2006-06-09 00:30:57 -0700[diff] [blame]1#ifndef _XT_SECMARK_H_target
2#define _XT_SECMARK_H_target
3
Arnd Bergmann60c195c2009-02-26 00:51:43 +0100[diff] [blame]4#include <linux/types.h>
5
James Morris5e6874cd2006-06-09 00:30:57 -0700[diff] [blame]6/*
7 * This is intended for use by various security subsystems (but not
8 * at the same time).
9 *
10 * 'mode' refers to the specific security subsystem which the
11 * packets are being marked for.
12 */
13#define SECMARK_MODE_SEL 0x01 /* SELinux */
Eric Paris2606fd12010-10-13 16:24:41 -0400[diff] [blame]14#define SECMARK_SECCTX_MAX 256
James Morris5e6874cd2006-06-09 00:30:57 -0700[diff] [blame]15
16struct xt_secmark_target_info {
Arnd Bergmann60c195c2009-02-26 00:51:43 +0100[diff] [blame]17 __u8 mode;
Eric Paris2606fd12010-10-13 16:24:41 -0400[diff] [blame]18 __u32 secid;
19 char secctx[SECMARK_SECCTX_MAX];
James Morris5e6874cd2006-06-09 00:30:57 -0700[diff] [blame]20};
21
22#endif /*_XT_SECMARK_H_target */