apparmor: export set of capabilities supported by the apparmor module

cmd_make-caps = echo "static const char *const capability_names[] = {" > $@ ;\

	sed $< >>$@ -r -n -e '/CAP_FS_MASK/d' \

	-e 's/^\#define[ \t]+CAP_([A-Z0-9_]+)[ \t]+([0-9]+)/[\2] = "\L\1",/p';\

	echo "};" >> $@

	echo "};" >> $@ ;\

	echo -n '\#define AA_FS_CAPS_MASK "' >> $@ ;\

	sed $< -r -n -e '/CAP_FS_MASK/d' \

	    -e 's/^\#define[ \t]+CAP_([A-Z0-9_]+)[ \t]+([0-9]+)/\L\1/p' | \

	     tr '\n' ' ' | sed -e 's/ $$/"\n/' >> $@

# Build a lower case string table of rlimit names.

	AA_FS_DIR("file",			aa_fs_entry_file),

	AA_FS_FILE_U64("capability",		VFS_CAP_FLAGS_MASK),

	AA_FS_DIR("rlimit",			aa_fs_entry_rlimit),

	AA_FS_DIR("caps",			aa_fs_entry_caps),

	{ }

};

 */

#include "capability_names.h"

struct aa_fs_entry aa_fs_entry_caps[] = {

	AA_FS_FILE_STRING("mask", AA_FS_CAPS_MASK),

	{ }

};

struct audit_cache {

	struct aa_profile *profile;

	kernel_cap_t caps;

#include <linux/sched.h>

#include "apparmorfs.h"

struct aa_profile;

/* aa_caps - confinement data for capabilities

	kernel_cap_t extended;

};

extern struct aa_fs_entry aa_fs_entry_caps[];

int aa_capable(struct task_struct *task, struct aa_profile *profile, int cap,

	       int audit);