| classmap.h (1136fa0c07de570dc17858745af8be169d1440ba) | classmap.h (ded34574d4d351ab0ca095a45496b393cef611c2) |
|---|---|
| 1/* SPDX-License-Identifier: GPL-2.0 */ 2#include <linux/capability.h> 3#include <linux/socket.h> 4 5#define COMMON_FILE_SOCK_PERMS "ioctl", "read", "write", "create", \ 6 "getattr", "setattr", "lock", "relabelfrom", "relabelto", "append", "map" 7 8#define COMMON_FILE_PERMS COMMON_FILE_SOCK_PERMS, "unlink", "link", \ --- 24 unchanged lines hidden (view full) --- 33#if CAP_LAST_CAP > CAP_CHECKPOINT_RESTORE 34#error New capability defined, please update COMMON_CAP2_PERMS. 35#endif 36 37/* 38 * Note: The name for any socket class should be suffixed by "socket", 39 * and doesn't contain more than one substr of "socket". 40 */ | 1/* SPDX-License-Identifier: GPL-2.0 */ 2#include <linux/capability.h> 3#include <linux/socket.h> 4 5#define COMMON_FILE_SOCK_PERMS "ioctl", "read", "write", "create", \ 6 "getattr", "setattr", "lock", "relabelfrom", "relabelto", "append", "map" 7 8#define COMMON_FILE_PERMS COMMON_FILE_SOCK_PERMS, "unlink", "link", \ --- 24 unchanged lines hidden (view full) --- 33#if CAP_LAST_CAP > CAP_CHECKPOINT_RESTORE 34#error New capability defined, please update COMMON_CAP2_PERMS. 35#endif 36 37/* 38 * Note: The name for any socket class should be suffixed by "socket", 39 * and doesn't contain more than one substr of "socket". 40 */ |
| 41struct security_class_mapping secclass_map[] = { | 41const struct security_class_mapping secclass_map[] = { |
| 42 { "security", 43 { "compute_av", "compute_create", "compute_member", 44 "check_context", "load_policy", "compute_relabel", 45 "compute_user", "setenforce", "setbool", "setsecparam", 46 "setcheckreqprot", "read_policy", "validate_trans", NULL } }, 47 { "process", 48 { "fork", "transition", "sigchld", "sigkill", 49 "sigstop", "signull", "signal", "ptrace", "getsched", "setsched", --- 213 unchanged lines hidden --- | 42 { "security", 43 { "compute_av", "compute_create", "compute_member", 44 "check_context", "load_policy", "compute_relabel", 45 "compute_user", "setenforce", "setbool", "setsecparam", 46 "setcheckreqprot", "read_policy", "validate_trans", NULL } }, 47 { "process", 48 { "fork", "transition", "sigchld", "sigkill", 49 "sigstop", "signull", "signal", "ptrace", "getsched", "setsched", --- 213 unchanged lines hidden --- |