1 #ifndef _XT_SECMARK_H_target 2 #define _XT_SECMARK_H_target 3 4 #include <linux/types.h> 5 6 /* 7 * This is intended for use by various security subsystems (but not 8 * at the same time). 9 * 10 * 'mode' refers to the specific security subsystem which the 11 * packets are being marked for. 12 */ 13 #define SECMARK_MODE_SEL 0x01 /* SELinux */ 14 #define SECMARK_SELCTX_MAX 256 15 16 struct xt_secmark_target_selinux_info { 17 __u32 selsid; 18 char selctx[SECMARK_SELCTX_MAX]; 19 }; 20 21 struct xt_secmark_target_info { 22 __u8 mode; 23 union { 24 struct xt_secmark_target_selinux_info sel; 25 } u; 26 }; 27 28 #endif /*_XT_SECMARK_H_target */ 29
