selinux-policy/policy/flask/security_classes

# FLASK

#
# Define the security object classes 
#

# Classes marked as userspace are classes
# for userspace object managers

class security
class process
class system
class capability

# file-related classes
class filesystem
class file
class dir
class fd
class lnk_file
class chr_file
class blk_file
class sock_file
class fifo_file

# network-related classes
class socket
class tcp_socket
class udp_socket
class rawip_socket
class node
class netif
class netlink_socket
class packet_socket
class key_socket
class unix_stream_socket
class unix_dgram_socket

# sysv-ipc-related classes
class sem
class msg
class msgq
class shm
class ipc

#
# userspace object manager classes
#

# passwd/chfn/chsh
class passwd			# userspace

# SE-X Windows stuff
class drawable			# userspace
class window			# userspace
class gc			# userspace
class font			# userspace
class colormap			# userspace
class property			# userspace
class cursor			# userspace
class xclient			# userspace
class xinput			# userspace
class xserver			# userspace
class xextension		# userspace

# pax flags; deprecated--can be reclaimed
class pax			# userspace

# extended netlink sockets
class netlink_route_socket
class netlink_firewall_socket
class netlink_tcpdiag_socket
class netlink_nflog_socket
class netlink_xfrm_socket
class netlink_selinux_socket
class netlink_audit_socket
class netlink_ip6fw_socket
class netlink_dnrt_socket

class dbus			# userspace
class nscd			# userspace

# IPSec association
class association

# Updated Netlink class for KOBJECT_UEVENT family.
class netlink_kobject_uevent_socket

class appletalk_socket

class packet

# Kernel access key retention
class key

class context			# userspace

class dccp_socket

class memprotect

class db_database		# userspace
class db_table			# userspace
class db_procedure		# userspace
class db_column			# userspace
class db_tuple			# userspace
class db_blob			# userspace

# FLASK
move flask dir to top level, and update them from nsa cvs. move files in misc to top level. make mls support work. 2005-06-01 15:40:37 +00:00			`# FLASK`

			`#`
			`# Define the security object classes`
			`#`

mark userpace object classes 2005-08-22 14:13:19 +00:00			`# Classes marked as userspace are classes`
			`# for userspace object managers`

move flask dir to top level, and update them from nsa cvs. move files in misc to top level. make mls support work. 2005-06-01 15:40:37 +00:00			`class security`
			`class process`
			`class system`
			`class capability`

			`# file-related classes`
			`class filesystem`
			`class file`
			`class dir`
			`class fd`
			`class lnk_file`
			`class chr_file`
			`class blk_file`
			`class sock_file`
			`class fifo_file`

			`# network-related classes`
			`class socket`
			`class tcp_socket`
			`class udp_socket`
			`class rawip_socket`
			`class node`
			`class netif`
			`class netlink_socket`
			`class packet_socket`
			`class key_socket`
			`class unix_stream_socket`
			`class unix_dgram_socket`

			`# sysv-ipc-related classes`
			`class sem`
			`class msg`
			`class msgq`
			`class shm`
			`class ipc`

			`#`
			`# userspace object manager classes`
			`#`

			`# passwd/chfn/chsh`
mark userpace object classes 2005-08-22 14:13:19 +00:00			`class passwd # userspace`
move flask dir to top level, and update them from nsa cvs. move files in misc to top level. make mls support work. 2005-06-01 15:40:37 +00:00
			`# SE-X Windows stuff`
mark userpace object classes 2005-08-22 14:13:19 +00:00			`class drawable # userspace`
			`class window # userspace`
			`class gc # userspace`
			`class font # userspace`
			`class colormap # userspace`
			`class property # userspace`
			`class cursor # userspace`
			`class xclient # userspace`
			`class xinput # userspace`
			`class xserver # userspace`
			`class xextension # userspace`
move flask dir to top level, and update them from nsa cvs. move files in misc to top level. make mls support work. 2005-06-01 15:40:37 +00:00
deprecated pax class 2007-03-23 20:21:06 +00:00			`# pax flags; deprecated--can be reclaimed`
			`class pax # userspace`
move flask dir to top level, and update them from nsa cvs. move files in misc to top level. make mls support work. 2005-06-01 15:40:37 +00:00
			`# extended netlink sockets`
			`class netlink_route_socket`
			`class netlink_firewall_socket`
			`class netlink_tcpdiag_socket`
			`class netlink_nflog_socket`
			`class netlink_xfrm_socket`
			`class netlink_selinux_socket`
			`class netlink_audit_socket`
			`class netlink_ip6fw_socket`
			`class netlink_dnrt_socket`

mark userpace object classes 2005-08-22 14:13:19 +00:00			`class dbus # userspace`
			`class nscd # userspace`
move flask dir to top level, and update them from nsa cvs. move files in misc to top level. make mls support work. 2005-06-01 15:40:37 +00:00
			`# IPSec association`
			`class association`

			`# Updated Netlink class for KOBJECT_UEVENT family.`
			`class netlink_kobject_uevent_socket`

add appletalk socket for cups 2006-05-04 20:40:49 +00:00			`class appletalk_socket`

add packet security class 2006-05-19 17:45:46 +00:00			`class packet`

add key support 2006-06-21 21:02:49 +00:00			`# Kernel access key retention`
			`class key`

enhanced setransd support from darrel goeddel 2006-10-20 14:44:23 +00:00			`class context # userspace`

add dccp_socket object class 2007-02-26 15:39:59 +00:00			`class dccp_socket`

Memprotect support patch from Stephen Smalley. 2007-06-19 13:02:26 +00:00			`class memprotect`

trunk: Database userspace object manager classes from KaiGai Kohei. 2007-08-09 13:15:07 +00:00			`class db_database # userspace`
			`class db_table # userspace`
			`class db_procedure # userspace`
			`class db_column # userspace`
			`class db_tuple # userspace`
			`class db_blob # userspace`

move flask dir to top level, and update them from nsa cvs. move files in misc to top level. make mls support work. 2005-06-01 15:40:37 +00:00			`# FLASK`