| Joshua Brindle | 13cd4c8 | 2008-08-19 15:30:36 -0400 | [diff] [blame] | 1 | /* |
| 2 | * This file describes the class and permission mappings used to |
| 3 | * hide the kernel numbers from userspace by allowing userspace object |
| 4 | * managers to specify a list of classes and permissions. |
| 5 | */ |
| 6 | #ifndef _SELINUX_MAPPING_H_ |
| 7 | #define _SELINUX_MAPPING_H_ |
| 8 | |
| 9 | #include <selinux/selinux.h> |
| 10 | |
| 11 | /* |
| 12 | * Get real, kernel values from mapped values |
| 13 | */ |
| 14 | |
| 15 | extern security_class_t |
| 16 | unmap_class(security_class_t tclass); |
| 17 | |
| 18 | extern access_vector_t |
| 19 | unmap_perm(security_class_t tclass, access_vector_t tperm); |
| 20 | |
| 21 | /* |
| 22 | * Get mapped values from real, kernel values |
| 23 | */ |
| 24 | |
| 25 | extern security_class_t |
| 26 | map_class(security_class_t kclass); |
| 27 | |
| 28 | extern access_vector_t |
| 29 | map_perm(security_class_t tclass, access_vector_t kperm); |
| 30 | |
| 31 | extern void |
| 32 | map_decision(security_class_t tclass, struct av_decision *avd); |
| 33 | |
| Joshua Brindle | 13cd4c8 | 2008-08-19 15:30:36 -0400 | [diff] [blame] | 34 | #endif /* _SELINUX_MAPPING_H_ */ |