xref: /linux/include/uapi/linux/netfilter/xt_SECMARK.h (revision 8be98d2f2a0a262f8bf8a0bc1fdf522b3c7aab17)
1 /* SPDX-License-Identifier: GPL-2.0 WITH Linux-syscall-note */
2 #ifndef _XT_SECMARK_H_target
3 #define _XT_SECMARK_H_target
4 
5 #include <linux/types.h>
6 
7 /*
8  * This is intended for use by various security subsystems (but not
9  * at the same time).
10  *
11  * 'mode' refers to the specific security subsystem which the
12  * packets are being marked for.
13  */
14 #define SECMARK_MODE_SEL	0x01		/* SELinux */
15 #define SECMARK_SECCTX_MAX	256
16 
17 struct xt_secmark_target_info {
18 	__u8 mode;
19 	__u32 secid;
20 	char secctx[SECMARK_SECCTX_MAX];
21 };
22 
23 struct xt_secmark_target_info_v1 {
24 	__u8 mode;
25 	char secctx[SECMARK_SECCTX_MAX];
26 	__u32 secid;
27 };
28 
29 #endif /*_XT_SECMARK_H_target */
30