blob: c0c885427b91fe2ba57eebf5fa14f1a986410605 [file] [log] [blame]
Linus Torvalds1da177e2005-04-16 15:20:36 -07001/* This file is automatically generated. Do not edit. */
2 S_(SECCLASS_FILESYSTEM, FILESYSTEM__MOUNT, "mount")
3 S_(SECCLASS_FILESYSTEM, FILESYSTEM__REMOUNT, "remount")
4 S_(SECCLASS_FILESYSTEM, FILESYSTEM__UNMOUNT, "unmount")
5 S_(SECCLASS_FILESYSTEM, FILESYSTEM__GETATTR, "getattr")
6 S_(SECCLASS_FILESYSTEM, FILESYSTEM__RELABELFROM, "relabelfrom")
7 S_(SECCLASS_FILESYSTEM, FILESYSTEM__RELABELTO, "relabelto")
8 S_(SECCLASS_FILESYSTEM, FILESYSTEM__TRANSITION, "transition")
9 S_(SECCLASS_FILESYSTEM, FILESYSTEM__ASSOCIATE, "associate")
10 S_(SECCLASS_FILESYSTEM, FILESYSTEM__QUOTAMOD, "quotamod")
11 S_(SECCLASS_FILESYSTEM, FILESYSTEM__QUOTAGET, "quotaget")
12 S_(SECCLASS_DIR, DIR__ADD_NAME, "add_name")
13 S_(SECCLASS_DIR, DIR__REMOVE_NAME, "remove_name")
14 S_(SECCLASS_DIR, DIR__REPARENT, "reparent")
15 S_(SECCLASS_DIR, DIR__SEARCH, "search")
16 S_(SECCLASS_DIR, DIR__RMDIR, "rmdir")
Eric Parisb0c636b2008-02-28 12:58:40 -050017 S_(SECCLASS_DIR, DIR__OPEN, "open")
Linus Torvalds1da177e2005-04-16 15:20:36 -070018 S_(SECCLASS_FILE, FILE__EXECUTE_NO_TRANS, "execute_no_trans")
19 S_(SECCLASS_FILE, FILE__ENTRYPOINT, "entrypoint")
20 S_(SECCLASS_FILE, FILE__EXECMOD, "execmod")
Eric Parisb0c636b2008-02-28 12:58:40 -050021 S_(SECCLASS_FILE, FILE__OPEN, "open")
Linus Torvalds1da177e2005-04-16 15:20:36 -070022 S_(SECCLASS_CHR_FILE, CHR_FILE__EXECUTE_NO_TRANS, "execute_no_trans")
23 S_(SECCLASS_CHR_FILE, CHR_FILE__ENTRYPOINT, "entrypoint")
24 S_(SECCLASS_CHR_FILE, CHR_FILE__EXECMOD, "execmod")
Eric Parisb0c636b2008-02-28 12:58:40 -050025 S_(SECCLASS_CHR_FILE, CHR_FILE__OPEN, "open")
26 S_(SECCLASS_BLK_FILE, BLK_FILE__OPEN, "open")
27 S_(SECCLASS_FIFO_FILE, FIFO_FILE__OPEN, "open")
Linus Torvalds1da177e2005-04-16 15:20:36 -070028 S_(SECCLASS_FD, FD__USE, "use")
29 S_(SECCLASS_TCP_SOCKET, TCP_SOCKET__CONNECTTO, "connectto")
30 S_(SECCLASS_TCP_SOCKET, TCP_SOCKET__NEWCONN, "newconn")
31 S_(SECCLASS_TCP_SOCKET, TCP_SOCKET__ACCEPTFROM, "acceptfrom")
32 S_(SECCLASS_TCP_SOCKET, TCP_SOCKET__NODE_BIND, "node_bind")
33 S_(SECCLASS_TCP_SOCKET, TCP_SOCKET__NAME_CONNECT, "name_connect")
34 S_(SECCLASS_UDP_SOCKET, UDP_SOCKET__NODE_BIND, "node_bind")
35 S_(SECCLASS_RAWIP_SOCKET, RAWIP_SOCKET__NODE_BIND, "node_bind")
36 S_(SECCLASS_NODE, NODE__TCP_RECV, "tcp_recv")
37 S_(SECCLASS_NODE, NODE__TCP_SEND, "tcp_send")
38 S_(SECCLASS_NODE, NODE__UDP_RECV, "udp_recv")
39 S_(SECCLASS_NODE, NODE__UDP_SEND, "udp_send")
40 S_(SECCLASS_NODE, NODE__RAWIP_RECV, "rawip_recv")
41 S_(SECCLASS_NODE, NODE__RAWIP_SEND, "rawip_send")
42 S_(SECCLASS_NODE, NODE__ENFORCE_DEST, "enforce_dest")
James Morris2ee92d42006-11-13 16:09:01 -080043 S_(SECCLASS_NODE, NODE__DCCP_RECV, "dccp_recv")
44 S_(SECCLASS_NODE, NODE__DCCP_SEND, "dccp_send")
Paul Mooref67f4f32008-01-29 08:38:21 -050045 S_(SECCLASS_NODE, NODE__RECVFROM, "recvfrom")
46 S_(SECCLASS_NODE, NODE__SENDTO, "sendto")
Linus Torvalds1da177e2005-04-16 15:20:36 -070047 S_(SECCLASS_NETIF, NETIF__TCP_RECV, "tcp_recv")
48 S_(SECCLASS_NETIF, NETIF__TCP_SEND, "tcp_send")
49 S_(SECCLASS_NETIF, NETIF__UDP_RECV, "udp_recv")
50 S_(SECCLASS_NETIF, NETIF__UDP_SEND, "udp_send")
51 S_(SECCLASS_NETIF, NETIF__RAWIP_RECV, "rawip_recv")
52 S_(SECCLASS_NETIF, NETIF__RAWIP_SEND, "rawip_send")
James Morris2ee92d42006-11-13 16:09:01 -080053 S_(SECCLASS_NETIF, NETIF__DCCP_RECV, "dccp_recv")
54 S_(SECCLASS_NETIF, NETIF__DCCP_SEND, "dccp_send")
Paul Mooref67f4f32008-01-29 08:38:21 -050055 S_(SECCLASS_NETIF, NETIF__INGRESS, "ingress")
56 S_(SECCLASS_NETIF, NETIF__EGRESS, "egress")
Linus Torvalds1da177e2005-04-16 15:20:36 -070057 S_(SECCLASS_UNIX_STREAM_SOCKET, UNIX_STREAM_SOCKET__CONNECTTO, "connectto")
58 S_(SECCLASS_UNIX_STREAM_SOCKET, UNIX_STREAM_SOCKET__NEWCONN, "newconn")
59 S_(SECCLASS_UNIX_STREAM_SOCKET, UNIX_STREAM_SOCKET__ACCEPTFROM, "acceptfrom")
60 S_(SECCLASS_PROCESS, PROCESS__FORK, "fork")
61 S_(SECCLASS_PROCESS, PROCESS__TRANSITION, "transition")
62 S_(SECCLASS_PROCESS, PROCESS__SIGCHLD, "sigchld")
63 S_(SECCLASS_PROCESS, PROCESS__SIGKILL, "sigkill")
64 S_(SECCLASS_PROCESS, PROCESS__SIGSTOP, "sigstop")
65 S_(SECCLASS_PROCESS, PROCESS__SIGNULL, "signull")
66 S_(SECCLASS_PROCESS, PROCESS__SIGNAL, "signal")
67 S_(SECCLASS_PROCESS, PROCESS__PTRACE, "ptrace")
68 S_(SECCLASS_PROCESS, PROCESS__GETSCHED, "getsched")
69 S_(SECCLASS_PROCESS, PROCESS__SETSCHED, "setsched")
70 S_(SECCLASS_PROCESS, PROCESS__GETSESSION, "getsession")
71 S_(SECCLASS_PROCESS, PROCESS__GETPGID, "getpgid")
72 S_(SECCLASS_PROCESS, PROCESS__SETPGID, "setpgid")
73 S_(SECCLASS_PROCESS, PROCESS__GETCAP, "getcap")
74 S_(SECCLASS_PROCESS, PROCESS__SETCAP, "setcap")
75 S_(SECCLASS_PROCESS, PROCESS__SHARE, "share")
76 S_(SECCLASS_PROCESS, PROCESS__GETATTR, "getattr")
77 S_(SECCLASS_PROCESS, PROCESS__SETEXEC, "setexec")
78 S_(SECCLASS_PROCESS, PROCESS__SETFSCREATE, "setfscreate")
79 S_(SECCLASS_PROCESS, PROCESS__NOATSECURE, "noatsecure")
80 S_(SECCLASS_PROCESS, PROCESS__SIGINH, "siginh")
81 S_(SECCLASS_PROCESS, PROCESS__SETRLIMIT, "setrlimit")
82 S_(SECCLASS_PROCESS, PROCESS__RLIMITINH, "rlimitinh")
83 S_(SECCLASS_PROCESS, PROCESS__DYNTRANSITION, "dyntransition")
84 S_(SECCLASS_PROCESS, PROCESS__SETCURRENT, "setcurrent")
85 S_(SECCLASS_PROCESS, PROCESS__EXECMEM, "execmem")
Lorenzo Hernandez García-Hierro6b992192005-06-25 14:54:34 -070086 S_(SECCLASS_PROCESS, PROCESS__EXECSTACK, "execstack")
Lorenzo Hernández García-Hierro09ffd942005-06-25 14:54:35 -070087 S_(SECCLASS_PROCESS, PROCESS__EXECHEAP, "execheap")
Michael LeMay4eb582c2006-06-26 00:24:57 -070088 S_(SECCLASS_PROCESS, PROCESS__SETKEYCREATE, "setkeycreate")
Eric Paris42c3e032006-06-26 00:26:03 -070089 S_(SECCLASS_PROCESS, PROCESS__SETSOCKCREATE, "setsockcreate")
Linus Torvalds1da177e2005-04-16 15:20:36 -070090 S_(SECCLASS_MSGQ, MSGQ__ENQUEUE, "enqueue")
91 S_(SECCLASS_MSG, MSG__SEND, "send")
92 S_(SECCLASS_MSG, MSG__RECEIVE, "receive")
93 S_(SECCLASS_SHM, SHM__LOCK, "lock")
94 S_(SECCLASS_SECURITY, SECURITY__COMPUTE_AV, "compute_av")
95 S_(SECCLASS_SECURITY, SECURITY__COMPUTE_CREATE, "compute_create")
96 S_(SECCLASS_SECURITY, SECURITY__COMPUTE_MEMBER, "compute_member")
97 S_(SECCLASS_SECURITY, SECURITY__CHECK_CONTEXT, "check_context")
98 S_(SECCLASS_SECURITY, SECURITY__LOAD_POLICY, "load_policy")
99 S_(SECCLASS_SECURITY, SECURITY__COMPUTE_RELABEL, "compute_relabel")
100 S_(SECCLASS_SECURITY, SECURITY__COMPUTE_USER, "compute_user")
101 S_(SECCLASS_SECURITY, SECURITY__SETENFORCE, "setenforce")
102 S_(SECCLASS_SECURITY, SECURITY__SETBOOL, "setbool")
103 S_(SECCLASS_SECURITY, SECURITY__SETSECPARAM, "setsecparam")
104 S_(SECCLASS_SECURITY, SECURITY__SETCHECKREQPROT, "setcheckreqprot")
105 S_(SECCLASS_SYSTEM, SYSTEM__IPC_INFO, "ipc_info")
106 S_(SECCLASS_SYSTEM, SYSTEM__SYSLOG_READ, "syslog_read")
107 S_(SECCLASS_SYSTEM, SYSTEM__SYSLOG_MOD, "syslog_mod")
108 S_(SECCLASS_SYSTEM, SYSTEM__SYSLOG_CONSOLE, "syslog_console")
109 S_(SECCLASS_CAPABILITY, CAPABILITY__CHOWN, "chown")
110 S_(SECCLASS_CAPABILITY, CAPABILITY__DAC_OVERRIDE, "dac_override")
111 S_(SECCLASS_CAPABILITY, CAPABILITY__DAC_READ_SEARCH, "dac_read_search")
112 S_(SECCLASS_CAPABILITY, CAPABILITY__FOWNER, "fowner")
113 S_(SECCLASS_CAPABILITY, CAPABILITY__FSETID, "fsetid")
114 S_(SECCLASS_CAPABILITY, CAPABILITY__KILL, "kill")
115 S_(SECCLASS_CAPABILITY, CAPABILITY__SETGID, "setgid")
116 S_(SECCLASS_CAPABILITY, CAPABILITY__SETUID, "setuid")
117 S_(SECCLASS_CAPABILITY, CAPABILITY__SETPCAP, "setpcap")
118 S_(SECCLASS_CAPABILITY, CAPABILITY__LINUX_IMMUTABLE, "linux_immutable")
119 S_(SECCLASS_CAPABILITY, CAPABILITY__NET_BIND_SERVICE, "net_bind_service")
120 S_(SECCLASS_CAPABILITY, CAPABILITY__NET_BROADCAST, "net_broadcast")
121 S_(SECCLASS_CAPABILITY, CAPABILITY__NET_ADMIN, "net_admin")
122 S_(SECCLASS_CAPABILITY, CAPABILITY__NET_RAW, "net_raw")
123 S_(SECCLASS_CAPABILITY, CAPABILITY__IPC_LOCK, "ipc_lock")
124 S_(SECCLASS_CAPABILITY, CAPABILITY__IPC_OWNER, "ipc_owner")
125 S_(SECCLASS_CAPABILITY, CAPABILITY__SYS_MODULE, "sys_module")
126 S_(SECCLASS_CAPABILITY, CAPABILITY__SYS_RAWIO, "sys_rawio")
127 S_(SECCLASS_CAPABILITY, CAPABILITY__SYS_CHROOT, "sys_chroot")
128 S_(SECCLASS_CAPABILITY, CAPABILITY__SYS_PTRACE, "sys_ptrace")
129 S_(SECCLASS_CAPABILITY, CAPABILITY__SYS_PACCT, "sys_pacct")
130 S_(SECCLASS_CAPABILITY, CAPABILITY__SYS_ADMIN, "sys_admin")
131 S_(SECCLASS_CAPABILITY, CAPABILITY__SYS_BOOT, "sys_boot")
132 S_(SECCLASS_CAPABILITY, CAPABILITY__SYS_NICE, "sys_nice")
133 S_(SECCLASS_CAPABILITY, CAPABILITY__SYS_RESOURCE, "sys_resource")
134 S_(SECCLASS_CAPABILITY, CAPABILITY__SYS_TIME, "sys_time")
135 S_(SECCLASS_CAPABILITY, CAPABILITY__SYS_TTY_CONFIG, "sys_tty_config")
136 S_(SECCLASS_CAPABILITY, CAPABILITY__MKNOD, "mknod")
137 S_(SECCLASS_CAPABILITY, CAPABILITY__LEASE, "lease")
James Morris0c9b7942005-04-16 15:24:13 -0700138 S_(SECCLASS_CAPABILITY, CAPABILITY__AUDIT_WRITE, "audit_write")
139 S_(SECCLASS_CAPABILITY, CAPABILITY__AUDIT_CONTROL, "audit_control")
Stephen Smalleyb68e4182008-02-07 11:21:04 -0500140 S_(SECCLASS_CAPABILITY, CAPABILITY__SETFCAP, "setfcap")
141 S_(SECCLASS_CAPABILITY2, CAPABILITY2__MAC_OVERRIDE, "mac_override")
142 S_(SECCLASS_CAPABILITY2, CAPABILITY2__MAC_ADMIN, "mac_admin")
Linus Torvalds1da177e2005-04-16 15:20:36 -0700143 S_(SECCLASS_NETLINK_ROUTE_SOCKET, NETLINK_ROUTE_SOCKET__NLMSG_READ, "nlmsg_read")
144 S_(SECCLASS_NETLINK_ROUTE_SOCKET, NETLINK_ROUTE_SOCKET__NLMSG_WRITE, "nlmsg_write")
145 S_(SECCLASS_NETLINK_FIREWALL_SOCKET, NETLINK_FIREWALL_SOCKET__NLMSG_READ, "nlmsg_read")
146 S_(SECCLASS_NETLINK_FIREWALL_SOCKET, NETLINK_FIREWALL_SOCKET__NLMSG_WRITE, "nlmsg_write")
147 S_(SECCLASS_NETLINK_TCPDIAG_SOCKET, NETLINK_TCPDIAG_SOCKET__NLMSG_READ, "nlmsg_read")
148 S_(SECCLASS_NETLINK_TCPDIAG_SOCKET, NETLINK_TCPDIAG_SOCKET__NLMSG_WRITE, "nlmsg_write")
149 S_(SECCLASS_NETLINK_XFRM_SOCKET, NETLINK_XFRM_SOCKET__NLMSG_READ, "nlmsg_read")
150 S_(SECCLASS_NETLINK_XFRM_SOCKET, NETLINK_XFRM_SOCKET__NLMSG_WRITE, "nlmsg_write")
151 S_(SECCLASS_NETLINK_AUDIT_SOCKET, NETLINK_AUDIT_SOCKET__NLMSG_READ, "nlmsg_read")
152 S_(SECCLASS_NETLINK_AUDIT_SOCKET, NETLINK_AUDIT_SOCKET__NLMSG_WRITE, "nlmsg_write")
James Morrisb207a292005-05-01 08:58:40 -0700153 S_(SECCLASS_NETLINK_AUDIT_SOCKET, NETLINK_AUDIT_SOCKET__NLMSG_RELAY, "nlmsg_relay")
154 S_(SECCLASS_NETLINK_AUDIT_SOCKET, NETLINK_AUDIT_SOCKET__NLMSG_READPRIV, "nlmsg_readpriv")
Linus Torvalds1da177e2005-04-16 15:20:36 -0700155 S_(SECCLASS_NETLINK_IP6FW_SOCKET, NETLINK_IP6FW_SOCKET__NLMSG_READ, "nlmsg_read")
156 S_(SECCLASS_NETLINK_IP6FW_SOCKET, NETLINK_IP6FW_SOCKET__NLMSG_WRITE, "nlmsg_write")
James Morris0c9b7942005-04-16 15:24:13 -0700157 S_(SECCLASS_ASSOCIATION, ASSOCIATION__SENDTO, "sendto")
158 S_(SECCLASS_ASSOCIATION, ASSOCIATION__RECVFROM, "recvfrom")
Trent Jaeger5f8ac642006-01-06 13:22:39 -0800159 S_(SECCLASS_ASSOCIATION, ASSOCIATION__SETCONTEXT, "setcontext")
Venkat Yekkirala51bd3982006-07-24 23:26:30 -0700160 S_(SECCLASS_ASSOCIATION, ASSOCIATION__POLMATCH, "polmatch")
James Morris29a395e2006-06-09 00:27:28 -0700161 S_(SECCLASS_PACKET, PACKET__SEND, "send")
162 S_(SECCLASS_PACKET, PACKET__RECV, "recv")
163 S_(SECCLASS_PACKET, PACKET__RELABELTO, "relabelto")
Paul Mooref67f4f32008-01-29 08:38:21 -0500164 S_(SECCLASS_PACKET, PACKET__FLOW_IN, "flow_in")
165 S_(SECCLASS_PACKET, PACKET__FLOW_OUT, "flow_out")
166 S_(SECCLASS_PACKET, PACKET__FORWARD_IN, "forward_in")
167 S_(SECCLASS_PACKET, PACKET__FORWARD_OUT, "forward_out")
Michael LeMayd7200242006-06-22 14:47:17 -0700168 S_(SECCLASS_KEY, KEY__VIEW, "view")
169 S_(SECCLASS_KEY, KEY__READ, "read")
170 S_(SECCLASS_KEY, KEY__WRITE, "write")
171 S_(SECCLASS_KEY, KEY__SEARCH, "search")
172 S_(SECCLASS_KEY, KEY__LINK, "link")
173 S_(SECCLASS_KEY, KEY__SETATTR, "setattr")
Michael LeMay4eb582c2006-06-26 00:24:57 -0700174 S_(SECCLASS_KEY, KEY__CREATE, "create")
James Morris2ee92d42006-11-13 16:09:01 -0800175 S_(SECCLASS_DCCP_SOCKET, DCCP_SOCKET__NODE_BIND, "node_bind")
176 S_(SECCLASS_DCCP_SOCKET, DCCP_SOCKET__NAME_CONNECT, "name_connect")
Eric Parised032182007-06-28 15:55:21 -0400177 S_(SECCLASS_MEMPROTECT, MEMPROTECT__MMAP_ZERO, "mmap_zero")
Paul Mooref67f4f32008-01-29 08:38:21 -0500178 S_(SECCLASS_PEER, PEER__RECV, "recv")
David Howells1bfdc752008-11-14 10:39:27 +1100179 S_(SECCLASS_KERNEL_SERVICE, KERNEL_SERVICE__USE_AS_OVERRIDE, "use_as_override")
180 S_(SECCLASS_KERNEL_SERVICE, KERNEL_SERVICE__CREATE_FILES_AS, "create_files_as")