rpms / selinux-policy

Clone
Source Code
GIT

Blame www/api-docs/system_udev.html

c10s-sig-hyperscale c4 c5 c5-plus c6 c6-plus c7 c7-alt c7-atomic c7-beta c8 c8-beta c8s c8s-sig-hyperscale c9 c9-beta c9s-sig-hyperscale
  1.   5777606093d05464cd0571e2de83372f0d807716
  2.   www
  3.   api-docs
  4.   system_udev.html
Blob History Raw
Karl MacMillan 660bf7 
<html>
Karl MacMillan 660bf7 
<head>
Karl MacMillan 660bf7 
<title>
Karl MacMillan 660bf7 
 Security Enhanced Linux Reference Policy
Karl MacMillan 660bf7 
 </title>
Karl MacMillan 660bf7 
<style type="text/css" media="all">@import "style.css";</style>
Karl MacMillan 660bf7 
</head>
Karl MacMillan 660bf7 
<body>
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
		admin
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Chris PeBenito e3a8e3
Chris PeBenito e3a8e3 
		apps
Chris PeBenito e3a8e3
Chris PeBenito e3a8e3
Chris PeBenito e3a8e3
Chris PeBenito e3a8e3
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
		kernel
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
		services
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
		system
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			authlogin
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			clock
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			corecommands
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			domain
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			files
Karl MacMillan 660bf7
Chris PeBenito e3a8e3 
			   - 
Chris PeBenito e3a8e3 
			fstools
Chris PeBenito e3a8e3
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			getty
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			hostname
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			hotplug
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			init
Karl MacMillan 660bf7
Chris PeBenito 8b1125 
			   - 
Chris PeBenito 8b1125 
			ipsec
Chris PeBenito 8b1125
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			iptables
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			libraries
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			locallogin
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			logging
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			lvm
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			miscfiles
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			modutils
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			mount
Karl MacMillan 660bf7
Chris PeBenito 8b1125 
			   - 
Chris PeBenito 8b1125 
			pcmcia
Chris PeBenito 8b1125
Chris PeBenito 8b1125 
			   - 
Chris PeBenito 8b1125 
			raid
Chris PeBenito 8b1125
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			selinuxutil
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			sysnetwork
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			udev
Karl MacMillan 660bf7
Chris PeBenito 767266 
			   - 
Chris PeBenito 767266 
			unconfined
Chris PeBenito 767266
Karl MacMillan 660bf7 
			   - 
Karl MacMillan 660bf7 
			userdomain
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Chris PeBenito 8b1125 
	* Global Booleans 
Chris PeBenito 8b1125
Chris PeBenito 8b1125 
	* Global Tunables 
Chris PeBenito 8b1125

Chris PeBenito 8b1125 
	* Layer Index
Chris PeBenito e3a8e3
Chris PeBenito 8b1125 
	* Interface Index
Chris PeBenito 8b1125
Chris PeBenito 8b1125 
	* Template Index
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Chris PeBenito e3a8e3
Karl MacMillan 660bf7 
Layer: system
Karl MacMillan 660bf7 
Module: udev
Chris PeBenito e3a8e3
Karl MacMillan 660bf7 
Description:
Karl MacMillan 660bf7
Chris PeBenito 767266 
Policy for udev.
Chris PeBenito 767266
Karl MacMillan 660bf7
Chris PeBenito e3a8e3
Chris PeBenito e3a8e3
Karl MacMillan 660bf7 
Interfaces:
Karl MacMillan 660bf7
Chris PeBenito 8b1125
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
udev_domtrans(
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
		domain
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
	)
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Chris PeBenito 45d25f
Chris PeBenito 8b1125 
Summary
Chris PeBenito 8b1125
Chris PeBenito 8b1125 
Execute udev in the udev domain.
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125 
Parameters
Chris PeBenito 8b1125
Chris PeBenito 8b1125 
Parameter:Description:Optional:
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125 
domain
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125 
The type of the process performing this action.
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125 
No
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 44a4c2
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 45d25f
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 44a4c2 
udev_dontaudit_rw_unix_dgram_socket(
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125 
		domain
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125 
	)
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 8b1125 
Summary
Karl MacMillan 660bf7
Chris PeBenito 8b1125 
Do not audit attempts to read or write
Chris PeBenito 8b1125 
to a udev unix datagram socket.
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 45d25f
Chris PeBenito 45d25f 
Parameters
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
Parameter:Description:Optional:
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
domain
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Chris PeBenito 8b1125 
Domain to not audit.
Chris PeBenito 8b1125
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
No
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2 
udev_dontaudit_use_fd(
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2 
		domain
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2 
	)
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2 
Summary
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2 
Do not audit attempts to inherit a
Chris PeBenito 44a4c2 
udev file descriptor.
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2 
Parameters
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2 
Parameter:Description:Optional:
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2 
domain
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2 
Domain to not audit.
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2 
No
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 44a4c2
Chris PeBenito 8b1125
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
udev_read_db(
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
		domain
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
	)
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Chris PeBenito 45d25f
Chris PeBenito 8b1125 
Summary
Karl MacMillan 660bf7
Chris PeBenito 8b1125 
Allow process to read list of devices.
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 45d25f
Chris PeBenito 45d25f 
Parameters
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
Parameter:Description:Optional:
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
domain
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Chris PeBenito 8b1125 
The type of the process performing this action.
Chris PeBenito 8b1125
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
No
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e 
udev_read_state(
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e 
		domain
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e 
	)
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e 
Summary
Chris PeBenito 862a1e
Chris PeBenito 862a1e 
Allow process to read udev process state.
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e 
Parameters
Chris PeBenito 862a1e
Chris PeBenito 862a1e 
Parameter:Description:Optional:
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e 
domain
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e 
Domain allowed access.
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e 
No
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 862a1e
Chris PeBenito 8b1125
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
udev_rw_db(
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
		domain
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
	)
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Chris PeBenito 45d25f
Chris PeBenito 8b1125 
Summary
Karl MacMillan 660bf7
Chris PeBenito 8b1125 
Allow process to modify list of devices.
Chris PeBenito 8b1125
Chris PeBenito 8b1125
Chris PeBenito 45d25f
Chris PeBenito 45d25f 
Parameters
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
Parameter:Description:Optional:
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
domain
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Chris PeBenito 8b1125 
The type of the process performing this action.
Chris PeBenito 8b1125
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
No
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Karl MacMillan 660bf7
Chris PeBenito e3a8e3 
Return
Chris PeBenito e3a8e3
Chris PeBenito e3a8e3
Karl MacMillan 660bf7
Chris PeBenito e376ad
Karl MacMillan 660bf7
Karl MacMillan 660bf7 
</body>
Karl MacMillan 660bf7 
</html>

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation