Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 776c163b1b93c8dfa5edba885bc2bfbc2d228a5f / . / include / linux / netfilter / xt_SECMARK.h
blob: 6fcd3448b18631f04e081cde470f85218dd7f9b8 [file] [log] [blame]
James Morris5e6874cd2006-06-09 00:30:57 -0700[diff] [blame]1#ifndef _XT_SECMARK_H_target
2#define _XT_SECMARK_H_target
3
Arnd Bergmann60c195c2009-02-26 00:51:43 +0100[diff] [blame]4#include <linux/types.h>
5
James Morris5e6874cd2006-06-09 00:30:57 -0700[diff] [blame]6/*
7 * This is intended for use by various security subsystems (but not
8 * at the same time).
9 *
10 * 'mode' refers to the specific security subsystem which the
11 * packets are being marked for.
12 */
13#define SECMARK_MODE_SEL 0x01 /* SELinux */
14#define SECMARK_SELCTX_MAX 256
15
16struct xt_secmark_target_selinux_info {
Arnd Bergmann60c195c2009-02-26 00:51:43 +0100[diff] [blame]17 __u32 selsid;
James Morris5e6874cd2006-06-09 00:30:57 -0700[diff] [blame]18 char selctx[SECMARK_SELCTX_MAX];
19};
20
21struct xt_secmark_target_info {
Arnd Bergmann60c195c2009-02-26 00:51:43 +0100[diff] [blame]22 __u8 mode;
James Morris5e6874cd2006-06-09 00:30:57 -0700[diff] [blame]23 union {
24 struct xt_secmark_target_selinux_info sel;
25 } u;
26};
27
28#endif /*_XT_SECMARK_H_target */