The unconfined domain.
Add an alias type to the unconfined domain.
Add an alias type to the unconfined domain.
This is added to support targeted policy. Its use should be limited. It has no effect on the strict policy.
Parameter: | Description: | Optional: |
---|---|---|
domain |
New alias of the unconfined domain. | No |
Create keys for the unconfined domain.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Send and receive messages from unconfined_t over dbus.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Connect to the the unconfined DBUS for service (acquire_svc).
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Send messages to the unconfined domain over dbus.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Make the specified domain unconfined and audit executable memory and executable heap usage.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain to make unconfined. | No |
Make the specified domain unconfined.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain to make unconfined. | No |
Transition to the unconfined domain.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Allow unconfined to execute the specified program in the specified domain.
Allow unconfined to execute the specified program in the specified domain.
This is a interface to support third party modules and its use is not allowed in upstream reference policy.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain to execute in. | No |
entry_file |
Domain entry point file. | No |
Do not audit attempts to read unconfined domain unnamed pipes.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
dontaudit Read and write unconfined domain unnamed pipes.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Do not audit attempts to read and write unconfined domain stream.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain to not audit. | No |
Do not audit attempts to read or write unconfined domain tcp sockets.
Do not audit attempts to read or write unconfined domain tcp sockets.
This interface was added due to a broken symptom in ldconfig.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain to not audit. | No |
Add an alias type to the unconfined execmem program file type.
Add an alias type to the unconfined execmem program file type.
This is added to support targeted policy. Its use should be limited. It has no effect on the strict policy.
Parameter: | Description: | Optional: |
---|---|---|
domain |
New alias of the unconfined execmem program type. | No |
Send a signal to the unconfined execmem domain.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Send a SIGNULL signal to the unconfined execmem domain.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Read unconfined domain unnamed pipes.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Execute specified programs in the unconfined domain.
Parameter: | Description: | Optional: |
---|---|---|
domain |
The type of the process performing this action. | No |
role |
The role to allow the unconfined domain. | No |
terminal |
The type of the terminal allow the unconfined domain to use. | No |
Read and write unconfined domain unnamed pipes.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Allow apps to set rlimits on userdomain
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Transition to the unconfined domain by executing a shell.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Send a SIGCHLD signal to the unconfined domain.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Send generic signals to the unconfined domain.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Send a SIGNULL signal to the unconfined domain.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Connect to the unconfined domain using a unix domain stream socket.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Inherit file descriptors from the unconfined domain.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |