1# FLASK
2
3#
4# Define the security object classes
5#
6
7# Classes marked as userspace are classes
8# for userspace object managers
9
10class security
11class process
12class system
13class capability
14
15# file-related classes
16class filesystem
17class file
18class dir
19class fd
20class lnk_file
21class chr_file
22class blk_file
23class sock_file
24class fifo_file
25
26# network-related classes
27class socket
28class tcp_socket
29class udp_socket
30class rawip_socket
31class node
32class netif
33class netlink_socket
34class packet_socket
35class key_socket
36class unix_stream_socket
37class unix_dgram_socket
38
39# sysv-ipc-related classes
40class sem
41class msg
42class msgq
43class shm
44class ipc
45
46#
47# userspace object manager classes
48#
49
50# passwd/chfn/chsh
51class passwd			# userspace
52
53# SE-X Windows stuff (more classes below)
54class x_drawable		# userspace
55class x_screen			# userspace
56class x_gc			# userspace
57class x_font			# userspace
58class x_colormap		# userspace
59class x_property		# userspace
60class x_selection		# userspace
61class x_cursor			# userspace
62class x_client			# userspace
63class x_device			# userspace
64class x_server			# userspace
65class x_extension		# userspace
66
67# extended netlink sockets
68class netlink_route_socket
69class netlink_firewall_socket
70class netlink_tcpdiag_socket
71class netlink_nflog_socket
72class netlink_xfrm_socket
73class netlink_selinux_socket
74class netlink_audit_socket
75class netlink_ip6fw_socket
76class netlink_dnrt_socket
77
78class dbus			# userspace
79class nscd			# userspace
80
81# IPSec association
82class association
83
84# Updated Netlink class for KOBJECT_UEVENT family.
85class netlink_kobject_uevent_socket
86
87class appletalk_socket
88
89class packet
90
91# Kernel access key retention
92class key
93
94class context			# userspace
95
96class dccp_socket
97
98class memprotect
99
100class db_database		# userspace
101class db_table			# userspace
102class db_procedure		# userspace
103class db_column			# userspace
104class db_tuple			# userspace
105class db_blob			# userspace
106
107# network peer labels
108class peer
109
110# Capabilities >= 32
111class capability2
112
113# More SE-X Windows stuff
114class x_resource		# userspace
115class x_event			# userspace
116class x_synthetic_event		# userspace
117class x_application_data	# userspace
118
119# kernel services that need to override task security, e.g. cachefiles
120class kernel_service
121
122class tun_socket
123
124# Still More SE-X Windows stuff
125class x_pointer			# userspace
126class x_keyboard		# userspace
127
128# More Database stuff
129class db_schema			# userspace
130class db_view			# userspace
131class db_sequence		# userspace
132class db_language		# userspace
133
134class binder
135
136# Property service
137class property_service          # userspace
138
139# Service manager
140class service_manager           # userspace
141
142# Keystore Key
143class keystore_key              # userspace
144
145# debuggerd service
146class debuggerd                 # userspace
147
148class drmservice                # userspace
149# FLASK
150