diff --git a/www/api-docs/admin.html b/www/api-docs/admin.html
index 6c9412c..aa379ca 100644
--- a/www/api-docs/admin.html
+++ b/www/api-docs/admin.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -160,6 +172,16 @@
<td><p>Policy for the Anaconda installer.</p></td>
<tr><td>
+ <a href='admin_bootloader.html'>
+ bootloader</a></td>
+ <td><p>Policy for the kernel modules, kernel image, and bootloader.</p></td>
+
+ <tr><td>
+ <a href='admin_certwatch.html'>
+ certwatch</a></td>
+ <td><p>Digital Certificate Tracking</p></td>
+
+ <tr><td>
<a href='admin_consoletype.html'>
consoletype</a></td>
<td><p>
@@ -205,11 +227,24 @@ after installation of Red Hat/Fedora systems.
<td><p>System log analyzer and reporter</p></td>
<tr><td>
+ <a href='admin_mrtg.html'>
+ mrtg</a></td>
+ <td><p>Network traffic graphing</p></td>
+
+ <tr><td>
<a href='admin_netutils.html'>
netutils</a></td>
<td><p>Network analysis utilities</p></td>
<tr><td>
+ <a href='admin_portage.html'>
+ portage</a></td>
+ <td><p>
+Portage Package Management System. The primary package management and
+distribution system for Gentoo.
+</p></td>
+
+ <tr><td>
<a href='admin_prelink.html'>
prelink</a></td>
<td><p>Prelink ELF shared library mappings.</p></td>
diff --git a/www/api-docs/admin_acct.html b/www/api-docs/admin_acct.html
index f24e86d..fb672e8 100644
--- a/www/api-docs/admin_acct.html
+++ b/www/api-docs/admin_acct.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Transition to the accounting management domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -213,9 +225,9 @@ Execute accounting management tools in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -255,9 +267,9 @@ Execute accounting management data in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -297,9 +309,9 @@ Create, read, write, and delete process accounting data.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_alsa.html b/www/api-docs/admin_alsa.html
index adc1e6f..5186dd9 100644
--- a/www/api-docs/admin_alsa.html
+++ b/www/api-docs/admin_alsa.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Domain transition to alsa
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -213,9 +225,9 @@ Allow read and write access to alsa semaphores.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -255,9 +267,9 @@ Allow read and write access to alsa shared memory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_amanda.html b/www/api-docs/admin_amanda.html
index a5add6d..f34c1ac 100644
--- a/www/api-docs/admin_amanda.html
+++ b/www/api-docs/admin_amanda.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -140,6 +152,48 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
+<a name="link_amanda_append_log_files"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>amanda_append_log_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Allow read/writing amanda logs
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to allow
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
<a name="link_amanda_domtrans_recover"></a>
<div id="interface">
@@ -171,9 +225,9 @@ Execute amrecover in the amanda_recover domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -213,9 +267,9 @@ Do not audit attempts to read /etc/dumpdates.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -272,9 +326,9 @@ allow the specified role the amanda_recover domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -282,9 +336,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the amanda_recover domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -292,9 +346,51 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the amanda_recover domain to use.
+</p>
+</td><td>
+No
+</td></tr>
+</table>
+</div>
+</div>
+
+<a name="link_amanda_rw_dumpdates_files"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>amanda_rw_dumpdates_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Allow read/writing /etc/dumpdates.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to allow
+</p>
</td><td>
No
</td></tr>
@@ -334,9 +430,9 @@ Search amanda library directories.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_anaconda.html b/www/api-docs/admin_anaconda.html
index 202a711..b4b09ac 100644
--- a/www/api-docs/admin_anaconda.html
+++ b/www/api-docs/admin_anaconda.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
diff --git a/www/api-docs/admin_bootloader.html b/www/api-docs/admin_bootloader.html
new file mode 100644
index 0000000..71e6d53
--- /dev/null
+++ b/www/api-docs/admin_bootloader.html
@@ -0,0 +1,455 @@
+<html>
+<head>
+<title>
+ Security Enhanced Linux Reference Policy
+ </title>
+<style type="text/css" media="all">@import "style.css";</style>
+</head>
+<body>
+<div id="Header">Security Enhanced Linux Reference Policy</div>
+<div id='Menu'>
+
+ <a href="admin.html">+
+ admin</a></br/>
+ <div id='subitem'>
+
+ - <a href='admin_acct.html'>
+ acct</a><br/>
+
+ - <a href='admin_alsa.html'>
+ alsa</a><br/>
+
+ - <a href='admin_amanda.html'>
+ amanda</a><br/>
+
+ - <a href='admin_anaconda.html'>
+ anaconda</a><br/>
+
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
+ - <a href='admin_consoletype.html'>
+ consoletype</a><br/>
+
+ - <a href='admin_ddcprobe.html'>
+ ddcprobe</a><br/>
+
+ - <a href='admin_dmesg.html'>
+ dmesg</a><br/>
+
+ - <a href='admin_dmidecode.html'>
+ dmidecode</a><br/>
+
+ - <a href='admin_firstboot.html'>
+ firstboot</a><br/>
+
+ - <a href='admin_kudzu.html'>
+ kudzu</a><br/>
+
+ - <a href='admin_logrotate.html'>
+ logrotate</a><br/>
+
+ - <a href='admin_logwatch.html'>
+ logwatch</a><br/>
+
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
+ - <a href='admin_netutils.html'>
+ netutils</a><br/>
+
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
+ - <a href='admin_prelink.html'>
+ prelink</a><br/>
+
+ - <a href='admin_quota.html'>
+ quota</a><br/>
+
+ - <a href='admin_readahead.html'>
+ readahead</a><br/>
+
+ - <a href='admin_rpm.html'>
+ rpm</a><br/>
+
+ - <a href='admin_su.html'>
+ su</a><br/>
+
+ - <a href='admin_sudo.html'>
+ sudo</a><br/>
+
+ - <a href='admin_tmpreaper.html'>
+ tmpreaper</a><br/>
+
+ - <a href='admin_updfstab.html'>
+ updfstab</a><br/>
+
+ - <a href='admin_usbmodules.html'>
+ usbmodules</a><br/>
+
+ - <a href='admin_usermanage.html'>
+ usermanage</a><br/>
+
+ - <a href='admin_vbetool.html'>
+ vbetool</a><br/>
+
+ - <a href='admin_vpn.html'>
+ vpn</a><br/>
+
+ </div>
+
+ <a href="apps.html">+
+ apps</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="kernel.html">+
+ kernel</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="services.html">+
+ services</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="system.html">+
+ system</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <br/><p/>
+ <a href="global_booleans.html">* Global Booleans </a>
+ <br/><p/>
+ <a href="global_tunables.html">* Global Tunables </a>
+ <p/><br/><p/>
+ <a href="index.html">* Layer Index</a>
+ <br/><p/>
+ <a href="interfaces.html">* Interface Index</a>
+ <br/><p/>
+ <a href="templates.html">* Template Index</a>
+</div>
+
+<div id="Content">
+<a name="top":></a>
+<h1>Layer: admin</h1><p/>
+<h2>Module: bootloader</h2><p/>
+
+<h3>Description:</h3>
+
+<p><p>Policy for the kernel modules, kernel image, and bootloader.</p></p>
+
+
+
+<a name="interfaces"></a>
+<h3>Interfaces: </h3>
+
+<a name="link_bootloader_create_runtime_file"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>bootloader_create_runtime_file</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write the bootloader
+temporary data in /tmp.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_bootloader_domtrans"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>bootloader_domtrans</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute bootloader in the bootloader domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_bootloader_read_config"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>bootloader_read_config</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read the bootloader configuration file.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_bootloader_run"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>bootloader_run</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ role
+
+
+
+ ,
+
+
+
+ terminal
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute bootloader interactively and do
+a domain transition to the bootloader domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+role
+</td><td>
+<p>
+The role to be allowed the bootloader domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+terminal
+</td><td>
+<p>
+The type of the terminal allow the bootloader domain to use.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_bootloader_rw_config"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>bootloader_rw_config</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write the bootloader
+configuration file.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_bootloader_rw_tmp_files"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>bootloader_rw_tmp_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write the bootloader
+temporary data in /tmp.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+
+
+</div>
+</body>
+</html>
diff --git a/www/api-docs/admin_certwatch.html b/www/api-docs/admin_certwatch.html
new file mode 100644
index 0000000..40a926a
--- /dev/null
+++ b/www/api-docs/admin_certwatch.html
@@ -0,0 +1,286 @@
+<html>
+<head>
+<title>
+ Security Enhanced Linux Reference Policy
+ </title>
+<style type="text/css" media="all">@import "style.css";</style>
+</head>
+<body>
+<div id="Header">Security Enhanced Linux Reference Policy</div>
+<div id='Menu'>
+
+ <a href="admin.html">+
+ admin</a></br/>
+ <div id='subitem'>
+
+ - <a href='admin_acct.html'>
+ acct</a><br/>
+
+ - <a href='admin_alsa.html'>
+ alsa</a><br/>
+
+ - <a href='admin_amanda.html'>
+ amanda</a><br/>
+
+ - <a href='admin_anaconda.html'>
+ anaconda</a><br/>
+
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
+ - <a href='admin_consoletype.html'>
+ consoletype</a><br/>
+
+ - <a href='admin_ddcprobe.html'>
+ ddcprobe</a><br/>
+
+ - <a href='admin_dmesg.html'>
+ dmesg</a><br/>
+
+ - <a href='admin_dmidecode.html'>
+ dmidecode</a><br/>
+
+ - <a href='admin_firstboot.html'>
+ firstboot</a><br/>
+
+ - <a href='admin_kudzu.html'>
+ kudzu</a><br/>
+
+ - <a href='admin_logrotate.html'>
+ logrotate</a><br/>
+
+ - <a href='admin_logwatch.html'>
+ logwatch</a><br/>
+
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
+ - <a href='admin_netutils.html'>
+ netutils</a><br/>
+
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
+ - <a href='admin_prelink.html'>
+ prelink</a><br/>
+
+ - <a href='admin_quota.html'>
+ quota</a><br/>
+
+ - <a href='admin_readahead.html'>
+ readahead</a><br/>
+
+ - <a href='admin_rpm.html'>
+ rpm</a><br/>
+
+ - <a href='admin_su.html'>
+ su</a><br/>
+
+ - <a href='admin_sudo.html'>
+ sudo</a><br/>
+
+ - <a href='admin_tmpreaper.html'>
+ tmpreaper</a><br/>
+
+ - <a href='admin_updfstab.html'>
+ updfstab</a><br/>
+
+ - <a href='admin_usbmodules.html'>
+ usbmodules</a><br/>
+
+ - <a href='admin_usermanage.html'>
+ usermanage</a><br/>
+
+ - <a href='admin_vbetool.html'>
+ vbetool</a><br/>
+
+ - <a href='admin_vpn.html'>
+ vpn</a><br/>
+
+ </div>
+
+ <a href="apps.html">+
+ apps</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="kernel.html">+
+ kernel</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="services.html">+
+ services</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="system.html">+
+ system</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <br/><p/>
+ <a href="global_booleans.html">* Global Booleans </a>
+ <br/><p/>
+ <a href="global_tunables.html">* Global Tunables </a>
+ <p/><br/><p/>
+ <a href="index.html">* Layer Index</a>
+ <br/><p/>
+ <a href="interfaces.html">* Interface Index</a>
+ <br/><p/>
+ <a href="templates.html">* Template Index</a>
+</div>
+
+<div id="Content">
+<a name="top":></a>
+<h1>Layer: admin</h1><p/>
+<h2>Module: certwatch</h2><p/>
+
+<h3>Description:</h3>
+
+<p><p>Digital Certificate Tracking</p></p>
+
+
+
+<a name="interfaces"></a>
+<h3>Interfaces: </h3>
+
+<a name="link_certwatach_run"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>certwatach_run</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ role
+
+
+
+ ,
+
+
+
+ terminal
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute certwatch in the certwatch domain, and
+allow the specified role the certwatch domain,
+and use the caller's terminal. Has a sigchld
+backchannel.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+role
+</td><td>
+<p>
+The role to be allowed the certwatch domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+terminal
+</td><td>
+<p>
+The type of the terminal allow the certwatch domain to use.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_certwatch_domtrans"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>certwatch_domtrans</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Domain transition to certwatch.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+
+
+</div>
+</body>
+</html>
diff --git a/www/api-docs/admin_consoletype.html b/www/api-docs/admin_consoletype.html
index 748c4d9..80f8336 100644
--- a/www/api-docs/admin_consoletype.html
+++ b/www/api-docs/admin_consoletype.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -173,9 +185,9 @@ Execute consoletype in the consoletype domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -215,9 +227,88 @@ Execute consoletype in the caller domain.
<tr><td>
domain
</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_consoletype_run"></a>
+<div id="interface">
+
+<div id="codeblock">
+
+<b>consoletype_run</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ role
+
+
+
+ ,
+
+
+
+ terminal
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute consoletype in the consoletype domain, and
+allow the specified role the consoletype domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+role
+</td><td>
+<p>
+The role to be allowed the consoletype domain.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+terminal
+</td><td>
+<p>
+The type of the terminal allow the consoletype domain to use.
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_ddcprobe.html b/www/api-docs/admin_ddcprobe.html
index 4ba8ed2..e840957 100644
--- a/www/api-docs/admin_ddcprobe.html
+++ b/www/api-docs/admin_ddcprobe.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Execute ddcprobe in the ddcprobe domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -230,9 +242,9 @@ allow the specified role the ddcprobe domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -240,9 +252,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
Role to be authenticated for ddcprobe domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -250,9 +262,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the clock domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_dmesg.html b/www/api-docs/admin_dmesg.html
index 2c4daf2..0a75d29 100644
--- a/www/api-docs/admin_dmesg.html
+++ b/www/api-docs/admin_dmesg.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Execute dmesg in the dmesg domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -213,9 +225,9 @@ Execute dmesg in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_dmidecode.html b/www/api-docs/admin_dmidecode.html
index c4f0eb2..3fde90e 100644
--- a/www/api-docs/admin_dmidecode.html
+++ b/www/api-docs/admin_dmidecode.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Execute dmidecode in the dmidecode domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -230,9 +242,9 @@ allow the specified role the dmidecode domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -240,9 +252,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the dmidecode domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -250,9 +262,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the dmidecode domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_firstboot.html b/www/api-docs/admin_firstboot.html
index 1d82ab9..4325fc0 100644
--- a/www/api-docs/admin_firstboot.html
+++ b/www/api-docs/admin_firstboot.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -174,9 +186,9 @@ Execute firstboot in the firstboot domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -185,13 +197,13 @@ No
</div>
</div>
-<a name="link_firstboot_dontaudit_use_fd"></a>
+<a name="link_firstboot_dontaudit_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>firstboot_dontaudit_use_fd</b>(
+<b>firstboot_dontaudit_use_fds</b>(
@@ -217,9 +229,9 @@ file descriptor from firstboot.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -276,9 +288,9 @@ allow the specified role the firstboot domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -286,9 +298,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the firstboot domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -296,9 +308,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the firstboot domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -307,13 +319,13 @@ No
</div>
</div>
-<a name="link_firstboot_use_fd"></a>
+<a name="link_firstboot_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>firstboot_use_fd</b>(
+<b>firstboot_use_fds</b>(
@@ -338,9 +350,9 @@ Inherit and use a file descriptor from firstboot.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -349,13 +361,13 @@ No
</div>
</div>
-<a name="link_firstboot_write_pipe"></a>
+<a name="link_firstboot_write_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>firstboot_write_pipe</b>(
+<b>firstboot_write_pipes</b>(
@@ -380,9 +392,9 @@ Write to a firstboot unnamed pipe.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_kudzu.html b/www/api-docs/admin_kudzu.html
index c0196a0..87e965f 100644
--- a/www/api-docs/admin_kudzu.html
+++ b/www/api-docs/admin_kudzu.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Execute kudzu in the kudzu domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -182,13 +194,13 @@ No
</div>
</div>
-<a name="link_kudzu_getattr_exec_file"></a>
+<a name="link_kudzu_getattr_exec_files"></a>
<div id="interface">
<div id="codeblock">
-<b>kudzu_getattr_exec_file</b>(
+<b>kudzu_getattr_exec_files</b>(
@@ -213,9 +225,9 @@ Get attributes of kudzu executable.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -272,9 +284,9 @@ allow the specified role the kudzu domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -282,9 +294,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the kudzu domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -292,9 +304,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the kudzu domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_logrotate.html b/www/api-docs/admin_logrotate.html
index 15e7fb4..594e028 100644
--- a/www/api-docs/admin_logrotate.html
+++ b/www/api-docs/admin_logrotate.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Execute logrotate in the logrotate domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -182,13 +194,13 @@ No
</div>
</div>
-<a name="link_logrotate_dontaudit_use_fd"></a>
+<a name="link_logrotate_dontaudit_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>logrotate_dontaudit_use_fd</b>(
+<b>logrotate_dontaudit_use_fds</b>(
@@ -213,9 +225,9 @@ Do not audit attempts to inherit logrotate file descriptors.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -255,9 +267,9 @@ Execute logrotate in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -297,9 +309,9 @@ Read a logrotate temporary files.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -356,9 +368,9 @@ allow the specified role the logrotate domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -366,9 +378,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the logrotate domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -376,9 +388,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the logrotate domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -387,13 +399,13 @@ No
</div>
</div>
-<a name="link_logrotate_use_fd"></a>
+<a name="link_logrotate_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>logrotate_use_fd</b>(
+<b>logrotate_use_fds</b>(
@@ -418,9 +430,9 @@ Inherit and use logrotate file descriptors.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_logwatch.html b/www/api-docs/admin_logwatch.html
index 5ea9a2a..6653d84 100644
--- a/www/api-docs/admin_logwatch.html
+++ b/www/api-docs/admin_logwatch.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Read logwatch temporary files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_mrtg.html b/www/api-docs/admin_mrtg.html
new file mode 100644
index 0000000..5b6e4df
--- /dev/null
+++ b/www/api-docs/admin_mrtg.html
@@ -0,0 +1,205 @@
+<html>
+<head>
+<title>
+ Security Enhanced Linux Reference Policy
+ </title>
+<style type="text/css" media="all">@import "style.css";</style>
+</head>
+<body>
+<div id="Header">Security Enhanced Linux Reference Policy</div>
+<div id='Menu'>
+
+ <a href="admin.html">+
+ admin</a></br/>
+ <div id='subitem'>
+
+ - <a href='admin_acct.html'>
+ acct</a><br/>
+
+ - <a href='admin_alsa.html'>
+ alsa</a><br/>
+
+ - <a href='admin_amanda.html'>
+ amanda</a><br/>
+
+ - <a href='admin_anaconda.html'>
+ anaconda</a><br/>
+
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
+ - <a href='admin_consoletype.html'>
+ consoletype</a><br/>
+
+ - <a href='admin_ddcprobe.html'>
+ ddcprobe</a><br/>
+
+ - <a href='admin_dmesg.html'>
+ dmesg</a><br/>
+
+ - <a href='admin_dmidecode.html'>
+ dmidecode</a><br/>
+
+ - <a href='admin_firstboot.html'>
+ firstboot</a><br/>
+
+ - <a href='admin_kudzu.html'>
+ kudzu</a><br/>
+
+ - <a href='admin_logrotate.html'>
+ logrotate</a><br/>
+
+ - <a href='admin_logwatch.html'>
+ logwatch</a><br/>
+
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
+ - <a href='admin_netutils.html'>
+ netutils</a><br/>
+
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
+ - <a href='admin_prelink.html'>
+ prelink</a><br/>
+
+ - <a href='admin_quota.html'>
+ quota</a><br/>
+
+ - <a href='admin_readahead.html'>
+ readahead</a><br/>
+
+ - <a href='admin_rpm.html'>
+ rpm</a><br/>
+
+ - <a href='admin_su.html'>
+ su</a><br/>
+
+ - <a href='admin_sudo.html'>
+ sudo</a><br/>
+
+ - <a href='admin_tmpreaper.html'>
+ tmpreaper</a><br/>
+
+ - <a href='admin_updfstab.html'>
+ updfstab</a><br/>
+
+ - <a href='admin_usbmodules.html'>
+ usbmodules</a><br/>
+
+ - <a href='admin_usermanage.html'>
+ usermanage</a><br/>
+
+ - <a href='admin_vbetool.html'>
+ vbetool</a><br/>
+
+ - <a href='admin_vpn.html'>
+ vpn</a><br/>
+
+ </div>
+
+ <a href="apps.html">+
+ apps</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="kernel.html">+
+ kernel</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="services.html">+
+ services</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="system.html">+
+ system</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <br/><p/>
+ <a href="global_booleans.html">* Global Booleans </a>
+ <br/><p/>
+ <a href="global_tunables.html">* Global Tunables </a>
+ <p/><br/><p/>
+ <a href="index.html">* Layer Index</a>
+ <br/><p/>
+ <a href="interfaces.html">* Interface Index</a>
+ <br/><p/>
+ <a href="templates.html">* Template Index</a>
+</div>
+
+<div id="Content">
+<a name="top":></a>
+<h1>Layer: admin</h1><p/>
+<h2>Module: mrtg</h2><p/>
+
+<h3>Description:</h3>
+
+<p><p>Network traffic graphing</p></p>
+
+
+
+<a name="interfaces"></a>
+<h3>Interfaces: </h3>
+
+<a name="link_mrtg_append_create_logs"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>mrtg_append_create_logs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Create and append mrtg logs.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+
+
+</div>
+</body>
+</html>
diff --git a/www/api-docs/admin_netutils.html b/www/api-docs/admin_netutils.html
index 23f7ef1..6aaf727 100644
--- a/www/api-docs/admin_netutils.html
+++ b/www/api-docs/admin_netutils.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Execute network utilities in the netutils domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -213,9 +225,9 @@ Execute ping in the ping domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -255,9 +267,9 @@ Execute traceroute in the traceroute domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -297,9 +309,9 @@ Execute network utilities in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -339,9 +351,9 @@ Execute ping in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -381,9 +393,9 @@ Execute traceroute in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -440,9 +452,9 @@ allow the specified role the netutils domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -450,9 +462,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the netutils domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -460,9 +472,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the netutils domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -519,9 +531,9 @@ allow the specified role the ping domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -529,9 +541,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the ping domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -539,9 +551,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the ping domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -598,9 +610,9 @@ allow the specified role the ping domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -608,9 +620,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the ping domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -618,9 +630,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the ping domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -677,9 +689,9 @@ allow the specified role the traceroute domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -687,9 +699,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the traceroute domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -697,9 +709,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the traceroute domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -756,9 +768,9 @@ allow the specified role the traceroute domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -766,9 +778,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the traceroute domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -776,9 +788,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the traceroute domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_portage.html b/www/api-docs/admin_portage.html
new file mode 100644
index 0000000..f2be3fc
--- /dev/null
+++ b/www/api-docs/admin_portage.html
@@ -0,0 +1,346 @@
+<html>
+<head>
+<title>
+ Security Enhanced Linux Reference Policy
+ </title>
+<style type="text/css" media="all">@import "style.css";</style>
+</head>
+<body>
+<div id="Header">Security Enhanced Linux Reference Policy</div>
+<div id='Menu'>
+
+ <a href="admin.html">+
+ admin</a></br/>
+ <div id='subitem'>
+
+ - <a href='admin_acct.html'>
+ acct</a><br/>
+
+ - <a href='admin_alsa.html'>
+ alsa</a><br/>
+
+ - <a href='admin_amanda.html'>
+ amanda</a><br/>
+
+ - <a href='admin_anaconda.html'>
+ anaconda</a><br/>
+
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
+ - <a href='admin_consoletype.html'>
+ consoletype</a><br/>
+
+ - <a href='admin_ddcprobe.html'>
+ ddcprobe</a><br/>
+
+ - <a href='admin_dmesg.html'>
+ dmesg</a><br/>
+
+ - <a href='admin_dmidecode.html'>
+ dmidecode</a><br/>
+
+ - <a href='admin_firstboot.html'>
+ firstboot</a><br/>
+
+ - <a href='admin_kudzu.html'>
+ kudzu</a><br/>
+
+ - <a href='admin_logrotate.html'>
+ logrotate</a><br/>
+
+ - <a href='admin_logwatch.html'>
+ logwatch</a><br/>
+
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
+ - <a href='admin_netutils.html'>
+ netutils</a><br/>
+
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
+ - <a href='admin_prelink.html'>
+ prelink</a><br/>
+
+ - <a href='admin_quota.html'>
+ quota</a><br/>
+
+ - <a href='admin_readahead.html'>
+ readahead</a><br/>
+
+ - <a href='admin_rpm.html'>
+ rpm</a><br/>
+
+ - <a href='admin_su.html'>
+ su</a><br/>
+
+ - <a href='admin_sudo.html'>
+ sudo</a><br/>
+
+ - <a href='admin_tmpreaper.html'>
+ tmpreaper</a><br/>
+
+ - <a href='admin_updfstab.html'>
+ updfstab</a><br/>
+
+ - <a href='admin_usbmodules.html'>
+ usbmodules</a><br/>
+
+ - <a href='admin_usermanage.html'>
+ usermanage</a><br/>
+
+ - <a href='admin_vbetool.html'>
+ vbetool</a><br/>
+
+ - <a href='admin_vpn.html'>
+ vpn</a><br/>
+
+ </div>
+
+ <a href="apps.html">+
+ apps</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="kernel.html">+
+ kernel</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="services.html">+
+ services</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="system.html">+
+ system</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <br/><p/>
+ <a href="global_booleans.html">* Global Booleans </a>
+ <br/><p/>
+ <a href="global_tunables.html">* Global Tunables </a>
+ <p/><br/><p/>
+ <a href="index.html">* Layer Index</a>
+ <br/><p/>
+ <a href="interfaces.html">* Interface Index</a>
+ <br/><p/>
+ <a href="templates.html">* Template Index</a>
+</div>
+
+<div id="Content">
+<a name="top":></a>
+<h1>Layer: admin</h1><p/>
+<h2>Module: portage</h2><p/>
+
+<a href=#interfaces>Interfaces</a>
+<a href=#templates>Templates</a>
+
+<h3>Description:</h3>
+
+<p><p>
+Portage Package Management System. The primary package management and
+distribution system for Gentoo.
+</p></p>
+
+
+
+<a name="interfaces"></a>
+<h3>Interfaces: </h3>
+
+<a name="link_portage_domtrans"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>portage_domtrans</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute emerge in the portage domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_portage_run"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>portage_run</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ role
+
+
+
+ ,
+
+
+
+ terminal
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute emerge in the portage domain, and
+allow the specified role the portage domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+role
+</td><td>
+<p>
+The role to allow the portage domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+terminal
+</td><td>
+<p>
+The type of the terminal allow for portage to use.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+<a name="templates"></a>
+<h3>Templates: </h3>
+
+<a name="link_portage_compile_domain_template"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>portage_compile_domain_template</b>(
+
+
+
+
+ prefix
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Template for portage sandbox.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Template for portage sandbox. Portage
+does all compiling in the sandbox.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+prefix
+</td><td>
+<p>
+Name to be used to derive types.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+
+</div>
+</body>
+</html>
diff --git a/www/api-docs/admin_prelink.html b/www/api-docs/admin_prelink.html
index 9369b7b..049b94b 100644
--- a/www/api-docs/admin_prelink.html
+++ b/www/api-docs/admin_prelink.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Delete the prelink cache.
<tr><td>
file_type
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -213,9 +225,9 @@ Execute the prelink program in the prelink domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -256,9 +268,9 @@ prelink log files.
<tr><td>
file_type
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -298,9 +310,9 @@ Make the specified file type prelinkable.
<tr><td>
file_type
</td><td>
-
+<p>
File type to be prelinked.
-
+</p>
</td><td>
No
</td></tr>
@@ -340,9 +352,9 @@ Read the prelink cache.
<tr><td>
file_type
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_quota.html b/www/api-docs/admin_quota.html
index 9f24f67..bca2147 100644
--- a/www/api-docs/admin_quota.html
+++ b/www/api-docs/admin_quota.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Execute quota management tools in the quota domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -214,9 +226,9 @@ of filesystem quota data files.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -256,9 +268,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -315,9 +327,9 @@ allow the specified role the quota domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -325,9 +337,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the quota domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -335,9 +347,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the quota domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_readahead.html b/www/api-docs/admin_readahead.html
index e0e751f..1a64d7e 100644
--- a/www/api-docs/admin_readahead.html
+++ b/www/api-docs/admin_readahead.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
diff --git a/www/api-docs/admin_rpm.html b/www/api-docs/admin_rpm.html
index 0901580..dc6aef0 100644
--- a/www/api-docs/admin_rpm.html
+++ b/www/api-docs/admin_rpm.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,51 @@ Execute rpm programs in the rpm domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_rpm_domtrans_script"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>rpm_domtrans_script</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute rpm_script programs in the rpm_script domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -214,9 +268,9 @@ write, and delete the RPM package database.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -256,9 +310,9 @@ Create, read, write, and delete the RPM package database.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -298,9 +352,9 @@ Create, read, write, and delete the RPM log.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -340,9 +394,9 @@ Read the RPM package database.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -351,13 +405,13 @@ No
</div>
</div>
-<a name="link_rpm_read_pipe"></a>
+<a name="link_rpm_read_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>rpm_read_pipe</b>(
+<b>rpm_read_pipes</b>(
@@ -382,9 +436,9 @@ Read from an unnamed RPM pipe.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -440,9 +494,9 @@ Execute RPM programs in the RPM domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -450,9 +504,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to allow the RPM domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -460,9 +514,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the RPM domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -471,13 +525,13 @@ No
</div>
</div>
-<a name="link_rpm_rw_pipe"></a>
+<a name="link_rpm_rw_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>rpm_rw_pipe</b>(
+<b>rpm_rw_pipes</b>(
@@ -502,51 +556,9 @@ Read and write an unnamed RPM pipe.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_rpm_script_domtrans"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>rpm_script_domtrans</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
<p>
-Execute rpm_script programs in the rpm_script domain.
+The type of the process performing this action.
</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-Domain allowed access.
-
</td><td>
No
</td></tr>
@@ -555,13 +567,13 @@ No
</div>
</div>
-<a name="link_rpm_use_fd"></a>
+<a name="link_rpm_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>rpm_use_fd</b>(
+<b>rpm_use_fds</b>(
@@ -586,9 +598,9 @@ Inherit and use file descriptors from RPM.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -597,13 +609,13 @@ No
</div>
</div>
-<a name="link_rpm_use_script_fd"></a>
+<a name="link_rpm_use_script_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>rpm_use_script_fd</b>(
+<b>rpm_use_script_fds</b>(
@@ -628,9 +640,9 @@ Inherit and use file descriptors from RPM scripts.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_su.html b/www/api-docs/admin_su.html
index 93c3a61..df68f53 100644
--- a/www/api-docs/admin_su.html
+++ b/www/api-docs/admin_su.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -174,9 +186,9 @@ Execute su in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -253,10 +265,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -264,9 +276,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -274,9 +286,9 @@ No
<tr><td>
user_role
</td><td>
-
+<p>
The role associated with the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -316,9 +328,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_sudo.html b/www/api-docs/admin_sudo.html
index 1aebe36..83cc6a0 100644
--- a/www/api-docs/admin_sudo.html
+++ b/www/api-docs/admin_sudo.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -202,10 +214,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -213,9 +225,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -223,9 +235,9 @@ No
<tr><td>
user_role
</td><td>
-
+<p>
The role associated with the user domain.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_tmpreaper.html b/www/api-docs/admin_tmpreaper.html
index f54460a..7e1e14a 100644
--- a/www/api-docs/admin_tmpreaper.html
+++ b/www/api-docs/admin_tmpreaper.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Execute tmpreaper in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_updfstab.html b/www/api-docs/admin_updfstab.html
index 51c67f4..f145cae 100644
--- a/www/api-docs/admin_updfstab.html
+++ b/www/api-docs/admin_updfstab.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Execute updfstab in the updfstab domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_usbmodules.html b/www/api-docs/admin_usbmodules.html
index bc12979..aa50e58 100644
--- a/www/api-docs/admin_usbmodules.html
+++ b/www/api-docs/admin_usbmodules.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Execute usbmodules in the usbmodules domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -231,9 +243,9 @@ and use the caller's terminal.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -241,9 +253,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the usbmodules domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -251,9 +263,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the usbmodules domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_usermanage.html b/www/api-docs/admin_usermanage.html
index 35249de..3a51f04 100644
--- a/www/api-docs/admin_usermanage.html
+++ b/www/api-docs/admin_usermanage.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -172,9 +184,9 @@ the admin passwd domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -214,9 +226,9 @@ Execute chfn in the chfn domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -256,9 +268,9 @@ Execute groupadd in the groupadd domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -298,9 +310,9 @@ Execute passwd in the passwd domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -340,9 +352,9 @@ Execute useradd in the useradd domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -382,9 +394,9 @@ Read the crack database.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -442,9 +454,9 @@ the admin passwd domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -452,9 +464,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the admin passwd domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -462,9 +474,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the admin passwd domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -521,9 +533,9 @@ allow the specified role the chfn domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -531,9 +543,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the chfn domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -541,9 +553,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the chfn domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -600,9 +612,9 @@ allow the specified role the groupadd domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -610,9 +622,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the groupadd domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -620,9 +632,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the groupadd domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -679,9 +691,9 @@ allow the specified role the passwd domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -689,9 +701,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the passwd domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -699,9 +711,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the passwd domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -758,9 +770,9 @@ allow the specified role the useradd domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -768,9 +780,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the useradd domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -778,9 +790,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the useradd domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/admin_vbetool.html b/www/api-docs/admin_vbetool.html
index a17a807..9b2d2a0 100644
--- a/www/api-docs/admin_vbetool.html
+++ b/www/api-docs/admin_vbetool.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -151,12 +163,8 @@
- [
-
domain
- ]
-
)<br>
</div>
@@ -175,11 +183,11 @@ Execute vbetool application in the vbetool domain.
<tr><td>
domain
</td><td>
-
+<p>
N/A
-
+</p>
</td><td>
-yes
+Yes
</td></tr>
</table>
diff --git a/www/api-docs/admin_vpn.html b/www/api-docs/admin_vpn.html
index 0083db7..2f36b57 100644
--- a/www/api-docs/admin_vpn.html
+++ b/www/api-docs/admin_vpn.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -171,9 +183,9 @@ Execute VPN clients in the vpnc domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -230,9 +242,9 @@ allow the specified role the vpnc domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -240,9 +252,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the vpnc domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -250,9 +262,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the vpnc domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -292,9 +304,9 @@ Send generic signals to VPN clients.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/apps.html b/www/api-docs/apps.html
index 161195b..c32f33b 100644
--- a/www/api-docs/apps.html
+++ b/www/api-docs/apps.html
@@ -37,15 +37,33 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
@@ -123,6 +141,11 @@
<td><p>device locking policy for lockdev</p></td>
<tr><td>
+ <a href='apps_mono.html'>
+ mono</a></td>
+ <td><p>Run .NET server and client applications on Linux.</p></td>
+
+ <tr><td>
<a href='apps_screen.html'>
screen</a></td>
<td><p>GNU terminal multiplexer</p></td>
@@ -133,10 +156,35 @@
<td><p>Update database for mlocate</p></td>
<tr><td>
+ <a href='apps_tvtime.html'>
+ tvtime</a></td>
+ <td><p> tvtime - a high quality television application </p></td>
+
+ <tr><td>
+ <a href='apps_uml.html'>
+ uml</a></td>
+ <td><p>Policy for UML</p></td>
+
+ <tr><td>
+ <a href='apps_userhelper.html'>
+ userhelper</a></td>
+ <td><p>SELinux utility to run a shell with a new role</p></td>
+
+ <tr><td>
+ <a href='apps_usernetctl.html'>
+ usernetctl</a></td>
+ <td><p>User network interface configuration helper</p></td>
+
+ <tr><td>
<a href='apps_webalizer.html'>
webalizer</a></td>
<td><p>Web server log analysis</p></td>
+ <tr><td>
+ <a href='apps_wine.html'>
+ wine</a></td>
+ <td><p>Wine Is Not an Emulator. Run Windows programs in Linux.</p></td>
+
</td></tr>
diff --git a/www/api-docs/apps_cdrecord.html b/www/api-docs/apps_cdrecord.html
index de446cb..47dc647 100644
--- a/www/api-docs/apps_cdrecord.html
+++ b/www/api-docs/apps_cdrecord.html
@@ -37,15 +37,33 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
@@ -153,10 +171,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -164,9 +182,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -174,9 +192,9 @@ No
<tr><td>
user_role
</td><td>
-
+<p>
The role associated with the user domain.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/apps_gpg.html b/www/api-docs/apps_gpg.html
index 2f17bce..41451b3 100644
--- a/www/api-docs/apps_gpg.html
+++ b/www/api-docs/apps_gpg.html
@@ -37,15 +37,33 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
@@ -112,7 +130,7 @@
- userdomain_prefix
+ userdomain
@@ -120,7 +138,7 @@
- domain
+ role
)<br>
@@ -155,31 +173,30 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
<tr><td>
-userdomain_prefix
+userdomain
</td><td>
-
-The prefix of the user domain (e.g., user
-is the prefix for user_t).
-
+<p>
+The user domain.
+</p>
</td><td>
No
</td></tr>
<tr><td>
-domain
+role
</td><td>
-
-The type of the process performing this action.
-
+<p>
+The role associated with the user.
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/apps_irc.html b/www/api-docs/apps_irc.html
index a3f5cbf..ef61848 100644
--- a/www/api-docs/apps_irc.html
+++ b/www/api-docs/apps_irc.html
@@ -37,15 +37,33 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
@@ -153,10 +171,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -164,9 +182,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -174,9 +192,9 @@ No
<tr><td>
user_role
</td><td>
-
+<p>
The role associated with the user domain.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/apps_java.html b/www/api-docs/apps_java.html
index b9a8e77..812977d 100644
--- a/www/api-docs/apps_java.html
+++ b/www/api-docs/apps_java.html
@@ -37,15 +37,33 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
@@ -83,12 +101,63 @@
<h1>Layer: apps</h1><p/>
<h2>Module: java</h2><p/>
+<a href=#interfaces>Interfaces</a>
+<a href=#templates>Templates</a>
+
<h3>Description:</h3>
<p><p>Java virtual machine</p></p>
+<a name="interfaces"></a>
+<h3>Interfaces: </h3>
+
+<a name="link_java_domtrans"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>java_domtrans</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute the java program in the java domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
<a name="templates"></a>
<h3>Templates: </h3>
@@ -153,10 +222,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -164,9 +233,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -174,9 +243,9 @@ No
<tr><td>
user_role
</td><td>
-
+<p>
The role associated with the user domain.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/apps_loadkeys.html b/www/api-docs/apps_loadkeys.html
index 5dbab61..bceba0a 100644
--- a/www/api-docs/apps_loadkeys.html
+++ b/www/api-docs/apps_loadkeys.html
@@ -37,15 +37,33 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
@@ -123,9 +141,9 @@ Execute the loadkeys program in the loadkeys domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -165,9 +183,9 @@ Execute the loadkeys program in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -223,9 +241,9 @@ Execute the loadkeys program in the loadkeys domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -233,9 +251,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to allow the loadkeys domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -243,9 +261,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the loadkeys domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/apps_lockdev.html b/www/api-docs/apps_lockdev.html
index 4b9dd81..f478a02 100644
--- a/www/api-docs/apps_lockdev.html
+++ b/www/api-docs/apps_lockdev.html
@@ -37,15 +37,33 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
@@ -154,10 +172,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -165,9 +183,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -175,9 +193,9 @@ No
<tr><td>
user_role
</td><td>
-
+<p>
The role associated with the user domain.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/apps_mono.html b/www/api-docs/apps_mono.html
new file mode 100644
index 0000000..76c3f14
--- /dev/null
+++ b/www/api-docs/apps_mono.html
@@ -0,0 +1,163 @@
+<html>
+<head>
+<title>
+ Security Enhanced Linux Reference Policy
+ </title>
+<style type="text/css" media="all">@import "style.css";</style>
+</head>
+<body>
+<div id="Header">Security Enhanced Linux Reference Policy</div>
+<div id='Menu'>
+
+ <a href="admin.html">+
+ admin</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="apps.html">+
+ apps</a></br/>
+ <div id='subitem'>
+
+ - <a href='apps_cdrecord.html'>
+ cdrecord</a><br/>
+
+ - <a href='apps_gpg.html'>
+ gpg</a><br/>
+
+ - <a href='apps_irc.html'>
+ irc</a><br/>
+
+ - <a href='apps_java.html'>
+ java</a><br/>
+
+ - <a href='apps_loadkeys.html'>
+ loadkeys</a><br/>
+
+ - <a href='apps_lockdev.html'>
+ lockdev</a><br/>
+
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
+ - <a href='apps_screen.html'>
+ screen</a><br/>
+
+ - <a href='apps_slocate.html'>
+ slocate</a><br/>
+
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
+ - <a href='apps_webalizer.html'>
+ webalizer</a><br/>
+
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
+ </div>
+
+ <a href="kernel.html">+
+ kernel</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="services.html">+
+ services</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="system.html">+
+ system</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <br/><p/>
+ <a href="global_booleans.html">* Global Booleans </a>
+ <br/><p/>
+ <a href="global_tunables.html">* Global Tunables </a>
+ <p/><br/><p/>
+ <a href="index.html">* Layer Index</a>
+ <br/><p/>
+ <a href="interfaces.html">* Interface Index</a>
+ <br/><p/>
+ <a href="templates.html">* Template Index</a>
+</div>
+
+<div id="Content">
+<a name="top":></a>
+<h1>Layer: apps</h1><p/>
+<h2>Module: mono</h2><p/>
+
+<h3>Description:</h3>
+
+<p><p>Run .NET server and client applications on Linux.</p></p>
+
+
+
+<a name="interfaces"></a>
+<h3>Interfaces: </h3>
+
+<a name="link_mono_domtrans"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>mono_domtrans</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute the mono program in the mono domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+
+
+</div>
+</body>
+</html>
diff --git a/www/api-docs/apps_screen.html b/www/api-docs/apps_screen.html
index c7ab2d6..45011af 100644
--- a/www/api-docs/apps_screen.html
+++ b/www/api-docs/apps_screen.html
@@ -37,15 +37,33 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
@@ -153,10 +171,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -164,9 +182,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -174,9 +192,9 @@ No
<tr><td>
user_role
</td><td>
-
+<p>
The role associated with the user domain.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/apps_slocate.html b/www/api-docs/apps_slocate.html
index 0dcf640..af3a5c5 100644
--- a/www/api-docs/apps_slocate.html
+++ b/www/api-docs/apps_slocate.html
@@ -37,15 +37,33 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
@@ -123,9 +141,9 @@ Create the locate log with append mode.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/apps_tvtime.html b/www/api-docs/apps_tvtime.html
new file mode 100644
index 0000000..73d6f70
--- /dev/null
+++ b/www/api-docs/apps_tvtime.html
@@ -0,0 +1,213 @@
+<html>
+<head>
+<title>
+ Security Enhanced Linux Reference Policy
+ </title>
+<style type="text/css" media="all">@import "style.css";</style>
+</head>
+<body>
+<div id="Header">Security Enhanced Linux Reference Policy</div>
+<div id='Menu'>
+
+ <a href="admin.html">+
+ admin</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="apps.html">+
+ apps</a></br/>
+ <div id='subitem'>
+
+ - <a href='apps_cdrecord.html'>
+ cdrecord</a><br/>
+
+ - <a href='apps_gpg.html'>
+ gpg</a><br/>
+
+ - <a href='apps_irc.html'>
+ irc</a><br/>
+
+ - <a href='apps_java.html'>
+ java</a><br/>
+
+ - <a href='apps_loadkeys.html'>
+ loadkeys</a><br/>
+
+ - <a href='apps_lockdev.html'>
+ lockdev</a><br/>
+
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
+ - <a href='apps_screen.html'>
+ screen</a><br/>
+
+ - <a href='apps_slocate.html'>
+ slocate</a><br/>
+
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
+ - <a href='apps_webalizer.html'>
+ webalizer</a><br/>
+
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
+ </div>
+
+ <a href="kernel.html">+
+ kernel</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="services.html">+
+ services</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="system.html">+
+ system</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <br/><p/>
+ <a href="global_booleans.html">* Global Booleans </a>
+ <br/><p/>
+ <a href="global_tunables.html">* Global Tunables </a>
+ <p/><br/><p/>
+ <a href="index.html">* Layer Index</a>
+ <br/><p/>
+ <a href="interfaces.html">* Interface Index</a>
+ <br/><p/>
+ <a href="templates.html">* Template Index</a>
+</div>
+
+<div id="Content">
+<a name="top":></a>
+<h1>Layer: apps</h1><p/>
+<h2>Module: tvtime</h2><p/>
+
+<h3>Description:</h3>
+
+<p><p> tvtime - a high quality television application </p></p>
+
+
+
+
+<a name="templates"></a>
+<h3>Templates: </h3>
+
+<a name="link_tvtime_per_userdomain_template"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>tvtime_per_userdomain_template</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ user_domain
+
+
+
+ ,
+
+
+
+ user_role
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+The per user domain template for the tvtime module.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+This template creates a derived domains which are used
+for tvtime.
+</p><p>
+</p><p>
+This template is invoked automatically for each user, and
+generally does not need to be invoked directly
+by policy writers.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+user_domain
+</td><td>
+<p>
+The type of the user domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+user_role
+</td><td>
+<p>
+The role associated with the user domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+
+</div>
+</body>
+</html>
diff --git a/www/api-docs/apps_uml.html b/www/api-docs/apps_uml.html
new file mode 100644
index 0000000..580f4f5
--- /dev/null
+++ b/www/api-docs/apps_uml.html
@@ -0,0 +1,306 @@
+<html>
+<head>
+<title>
+ Security Enhanced Linux Reference Policy
+ </title>
+<style type="text/css" media="all">@import "style.css";</style>
+</head>
+<body>
+<div id="Header">Security Enhanced Linux Reference Policy</div>
+<div id='Menu'>
+
+ <a href="admin.html">+
+ admin</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="apps.html">+
+ apps</a></br/>
+ <div id='subitem'>
+
+ - <a href='apps_cdrecord.html'>
+ cdrecord</a><br/>
+
+ - <a href='apps_gpg.html'>
+ gpg</a><br/>
+
+ - <a href='apps_irc.html'>
+ irc</a><br/>
+
+ - <a href='apps_java.html'>
+ java</a><br/>
+
+ - <a href='apps_loadkeys.html'>
+ loadkeys</a><br/>
+
+ - <a href='apps_lockdev.html'>
+ lockdev</a><br/>
+
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
+ - <a href='apps_screen.html'>
+ screen</a><br/>
+
+ - <a href='apps_slocate.html'>
+ slocate</a><br/>
+
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
+ - <a href='apps_webalizer.html'>
+ webalizer</a><br/>
+
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
+ </div>
+
+ <a href="kernel.html">+
+ kernel</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="services.html">+
+ services</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="system.html">+
+ system</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <br/><p/>
+ <a href="global_booleans.html">* Global Booleans </a>
+ <br/><p/>
+ <a href="global_tunables.html">* Global Tunables </a>
+ <p/><br/><p/>
+ <a href="index.html">* Layer Index</a>
+ <br/><p/>
+ <a href="interfaces.html">* Interface Index</a>
+ <br/><p/>
+ <a href="templates.html">* Template Index</a>
+</div>
+
+<div id="Content">
+<a name="top":></a>
+<h1>Layer: apps</h1><p/>
+<h2>Module: uml</h2><p/>
+
+<a href=#interfaces>Interfaces</a>
+<a href=#templates>Templates</a>
+
+<h3>Description:</h3>
+
+<p><p>Policy for UML</p></p>
+
+
+
+<a name="interfaces"></a>
+<h3>Interfaces: </h3>
+
+<a name="link_uml_manage_util_files"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>uml_manage_util_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Manage uml utility files.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_uml_setattr_util_sockets"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>uml_setattr_util_sockets</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Set attributes on uml utility socket files.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+<a name="templates"></a>
+<h3>Templates: </h3>
+
+<a name="link_uml_per_userdomain_template"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>uml_per_userdomain_template</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ user_domain
+
+
+
+ ,
+
+
+
+ user_role
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+The per user domain template for the uml module.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+This template creates a derived domains which are used
+for uml program.
+</p><p>
+</p><p>
+This template is invoked automatically for each user, and
+generally does not need to be invoked directly
+by policy writers.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+user_domain
+</td><td>
+<p>
+The type of the user domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+user_role
+</td><td>
+<p>
+The role associated with the user domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+
+</div>
+</body>
+</html>
diff --git a/www/api-docs/apps_userhelper.html b/www/api-docs/apps_userhelper.html
new file mode 100644
index 0000000..b7ba201
--- /dev/null
+++ b/www/api-docs/apps_userhelper.html
@@ -0,0 +1,307 @@
+<html>
+<head>
+<title>
+ Security Enhanced Linux Reference Policy
+ </title>
+<style type="text/css" media="all">@import "style.css";</style>
+</head>
+<body>
+<div id="Header">Security Enhanced Linux Reference Policy</div>
+<div id='Menu'>
+
+ <a href="admin.html">+
+ admin</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="apps.html">+
+ apps</a></br/>
+ <div id='subitem'>
+
+ - <a href='apps_cdrecord.html'>
+ cdrecord</a><br/>
+
+ - <a href='apps_gpg.html'>
+ gpg</a><br/>
+
+ - <a href='apps_irc.html'>
+ irc</a><br/>
+
+ - <a href='apps_java.html'>
+ java</a><br/>
+
+ - <a href='apps_loadkeys.html'>
+ loadkeys</a><br/>
+
+ - <a href='apps_lockdev.html'>
+ lockdev</a><br/>
+
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
+ - <a href='apps_screen.html'>
+ screen</a><br/>
+
+ - <a href='apps_slocate.html'>
+ slocate</a><br/>
+
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
+ - <a href='apps_webalizer.html'>
+ webalizer</a><br/>
+
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
+ </div>
+
+ <a href="kernel.html">+
+ kernel</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="services.html">+
+ services</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="system.html">+
+ system</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <br/><p/>
+ <a href="global_booleans.html">* Global Booleans </a>
+ <br/><p/>
+ <a href="global_tunables.html">* Global Tunables </a>
+ <p/><br/><p/>
+ <a href="index.html">* Layer Index</a>
+ <br/><p/>
+ <a href="interfaces.html">* Interface Index</a>
+ <br/><p/>
+ <a href="templates.html">* Template Index</a>
+</div>
+
+<div id="Content">
+<a name="top":></a>
+<h1>Layer: apps</h1><p/>
+<h2>Module: userhelper</h2><p/>
+
+<a href=#interfaces>Interfaces</a>
+<a href=#templates>Templates</a>
+
+<h3>Description:</h3>
+
+<p><p>SELinux utility to run a shell with a new role</p></p>
+
+
+
+<a name="interfaces"></a>
+<h3>Interfaces: </h3>
+
+<a name="link_userhelper_dontaudit_search_config"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>userhelper_dontaudit_search_config</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to search
+the userhelper configuration directory.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to not audit.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userhelper_search_config"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>userhelper_search_config</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Search the userhelper configuration directory.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+<a name="templates"></a>
+<h3>Templates: </h3>
+
+<a name="link_userhelper_per_userdomain_template"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>userhelper_per_userdomain_template</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ user_domain
+
+
+
+ ,
+
+
+
+ user_role
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+The per user domain template for the userhelper module.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+This template creates a derived domains which are used
+for userhelper.
+</p><p>
+</p><p>
+This template is invoked automatically for each user, and
+generally does not need to be invoked directly
+by policy writers.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+user_domain
+</td><td>
+<p>
+The type of the user domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+user_role
+</td><td>
+<p>
+The role associated with the user domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+
+</div>
+</body>
+</html>
diff --git a/www/api-docs/apps_usernetctl.html b/www/api-docs/apps_usernetctl.html
new file mode 100644
index 0000000..9f5fd8a
--- /dev/null
+++ b/www/api-docs/apps_usernetctl.html
@@ -0,0 +1,242 @@
+<html>
+<head>
+<title>
+ Security Enhanced Linux Reference Policy
+ </title>
+<style type="text/css" media="all">@import "style.css";</style>
+</head>
+<body>
+<div id="Header">Security Enhanced Linux Reference Policy</div>
+<div id='Menu'>
+
+ <a href="admin.html">+
+ admin</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="apps.html">+
+ apps</a></br/>
+ <div id='subitem'>
+
+ - <a href='apps_cdrecord.html'>
+ cdrecord</a><br/>
+
+ - <a href='apps_gpg.html'>
+ gpg</a><br/>
+
+ - <a href='apps_irc.html'>
+ irc</a><br/>
+
+ - <a href='apps_java.html'>
+ java</a><br/>
+
+ - <a href='apps_loadkeys.html'>
+ loadkeys</a><br/>
+
+ - <a href='apps_lockdev.html'>
+ lockdev</a><br/>
+
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
+ - <a href='apps_screen.html'>
+ screen</a><br/>
+
+ - <a href='apps_slocate.html'>
+ slocate</a><br/>
+
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
+ - <a href='apps_webalizer.html'>
+ webalizer</a><br/>
+
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
+ </div>
+
+ <a href="kernel.html">+
+ kernel</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="services.html">+
+ services</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="system.html">+
+ system</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <br/><p/>
+ <a href="global_booleans.html">* Global Booleans </a>
+ <br/><p/>
+ <a href="global_tunables.html">* Global Tunables </a>
+ <p/><br/><p/>
+ <a href="index.html">* Layer Index</a>
+ <br/><p/>
+ <a href="interfaces.html">* Interface Index</a>
+ <br/><p/>
+ <a href="templates.html">* Template Index</a>
+</div>
+
+<div id="Content">
+<a name="top":></a>
+<h1>Layer: apps</h1><p/>
+<h2>Module: usernetctl</h2><p/>
+
+<h3>Description:</h3>
+
+<p><p>User network interface configuration helper</p></p>
+
+
+
+<a name="interfaces"></a>
+<h3>Interfaces: </h3>
+
+<a name="link_usernetctl_domtrans"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>usernetctl_domtrans</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute usernetctl in the usernetctl domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_usernetctl_run"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>usernetctl_run</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ role
+
+
+
+ ,
+
+
+
+ terminal
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute usernetctl in the usernetctl domain, and
+allow the specified role the usernetctl domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+role
+</td><td>
+<p>
+The role to be allowed the usernetctl domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+terminal
+</td><td>
+<p>
+The type of the terminal allow the usernetctl domain to use.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+
+
+</div>
+</body>
+</html>
diff --git a/www/api-docs/apps_webalizer.html b/www/api-docs/apps_webalizer.html
index af33a67..b0ccde3 100644
--- a/www/api-docs/apps_webalizer.html
+++ b/www/api-docs/apps_webalizer.html
@@ -37,15 +37,33 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
@@ -123,9 +141,9 @@ Execute webalizer in the webalizer domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -182,9 +200,9 @@ allow the specified role the webalizer domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -192,9 +210,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the webalizer domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -202,9 +220,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the webalizer domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/apps_wine.html b/www/api-docs/apps_wine.html
new file mode 100644
index 0000000..0157947
--- /dev/null
+++ b/www/api-docs/apps_wine.html
@@ -0,0 +1,163 @@
+<html>
+<head>
+<title>
+ Security Enhanced Linux Reference Policy
+ </title>
+<style type="text/css" media="all">@import "style.css";</style>
+</head>
+<body>
+<div id="Header">Security Enhanced Linux Reference Policy</div>
+<div id='Menu'>
+
+ <a href="admin.html">+
+ admin</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="apps.html">+
+ apps</a></br/>
+ <div id='subitem'>
+
+ - <a href='apps_cdrecord.html'>
+ cdrecord</a><br/>
+
+ - <a href='apps_gpg.html'>
+ gpg</a><br/>
+
+ - <a href='apps_irc.html'>
+ irc</a><br/>
+
+ - <a href='apps_java.html'>
+ java</a><br/>
+
+ - <a href='apps_loadkeys.html'>
+ loadkeys</a><br/>
+
+ - <a href='apps_lockdev.html'>
+ lockdev</a><br/>
+
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
+ - <a href='apps_screen.html'>
+ screen</a><br/>
+
+ - <a href='apps_slocate.html'>
+ slocate</a><br/>
+
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
+ - <a href='apps_webalizer.html'>
+ webalizer</a><br/>
+
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
+ </div>
+
+ <a href="kernel.html">+
+ kernel</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="services.html">+
+ services</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="system.html">+
+ system</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <br/><p/>
+ <a href="global_booleans.html">* Global Booleans </a>
+ <br/><p/>
+ <a href="global_tunables.html">* Global Tunables </a>
+ <p/><br/><p/>
+ <a href="index.html">* Layer Index</a>
+ <br/><p/>
+ <a href="interfaces.html">* Interface Index</a>
+ <br/><p/>
+ <a href="templates.html">* Template Index</a>
+</div>
+
+<div id="Content">
+<a name="top":></a>
+<h1>Layer: apps</h1><p/>
+<h2>Module: wine</h2><p/>
+
+<h3>Description:</h3>
+
+<p><p>Wine Is Not an Emulator. Run Windows programs in Linux.</p></p>
+
+
+
+<a name="interfaces"></a>
+<h3>Interfaces: </h3>
+
+<a name="link_wine_domtrans"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>wine_domtrans</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute the wine program in the wine domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+
+
+</div>
+</body>
+</html>
diff --git a/www/api-docs/global_booleans.html b/www/api-docs/global_booleans.html
index 8aa51d2..b0e670a 100644
--- a/www/api-docs/global_booleans.html
+++ b/www/api-docs/global_booleans.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -112,24 +124,39 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -151,6 +178,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -400,12 +430,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -512,8 +542,13 @@
<p>false</p>
<h5>Description</h5>
-<p><p>
-Enabling secure mode disallows programs, such asnewrole, from transitioning to administrativeuser domains.</p></p>
+<p>
+</p><p>
+Enabling secure mode disallows programs, such as
+newrole, from transitioning to administrative
+user domains.
+</p><p>
+</p>
</div></div>
@@ -524,8 +559,11 @@ Enabling secure mode disallows programs, such asnewrole, from transitioning to a
<p>false</p>
<h5>Description</h5>
-<p><p>
-Disable transitions to insmod.</p></p>
+<p>
+</p><p>
+Disable transitions to insmod.
+</p><p>
+</p>
</div></div>
@@ -536,8 +574,13 @@ Disable transitions to insmod.</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-boolean to determine whether the system permits loading policy, settingenforcing mode, and changing boolean values. Set this to true and youhave to reboot to set it back</p></p>
+<p>
+</p><p>
+boolean to determine whether the system permits loading policy, setting
+enforcing mode, and changing boolean values. Set this to true and you
+have to reboot to set it back
+</p><p>
+</p>
</div></div>
diff --git a/www/api-docs/global_tunables.html b/www/api-docs/global_tunables.html
index c22677c..1bde781 100644
--- a/www/api-docs/global_tunables.html
+++ b/www/api-docs/global_tunables.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -112,24 +124,39 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -151,6 +178,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -400,12 +430,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -512,8 +542,26 @@
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow cvs daemon to read shadow</p></p>
+<p>
+</p><p>
+Allow cvs daemon to read shadow
+</p><p>
+</p>
+
+</div></div>
+
+<div id="interface">
+<div id="codeblock">allow_execheap</div>
+<div id="description">
+<h5>Default value</h5>
+<p>false</p>
+
+<h5>Description</h5>
+<p>
+</p><p>
+Allow making the heap executable.
+</p><p>
+</p>
</div></div>
@@ -524,8 +572,12 @@ Allow cvs daemon to read shadow</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow making anonymous memory executable, e.g.for runtime-code generation or executable stack.</p></p>
+<p>
+</p><p>
+Allow making anonymous memory executable, e.g.
+for runtime-code generation or executable stack.
+</p><p>
+</p>
</div></div>
@@ -536,8 +588,12 @@ Allow making anonymous memory executable, e.g.for runtime-code generation or exe
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow making a modified private filemapping executable (text relocation).</p></p>
+<p>
+</p><p>
+Allow making a modified private file
+mapping executable (text relocation).
+</p><p>
+</p>
</div></div>
@@ -548,8 +604,12 @@ Allow making a modified private filemapping executable (text relocation).</p></p
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow making the stack executable via mprotect.Also requires allow_execmem.</p></p>
+<p>
+</p><p>
+Allow making the stack executable via mprotect.
+Also requires allow_execmem.
+</p><p>
+</p>
</div></div>
@@ -560,8 +620,12 @@ Allow making the stack executable via mprotect.Also requires allow_execmem.</p><
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow ftp servers to modify public filesused for public file transfer services.</p></p>
+<p>
+</p><p>
+Allow ftp servers to modify public files
+used for public file transfer services.
+</p><p>
+</p>
</div></div>
@@ -572,8 +636,11 @@ Allow ftp servers to modify public filesused for public file transfer services.<
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow gpg executable stack</p></p>
+<p>
+</p><p>
+Allow gpg executable stack
+</p><p>
+</p>
</div></div>
@@ -584,8 +651,11 @@ Allow gpg executable stack</p></p>
<p>true</p>
<h5>Description</h5>
-<p><p>
-Allow gssd to read temp directory.</p></p>
+<p>
+</p><p>
+Allow gssd to read temp directory.
+</p><p>
+</p>
</div></div>
@@ -596,8 +666,12 @@ Allow gssd to read temp directory.</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow Apache to modify public filesused for public file transfer services.</p></p>
+<p>
+</p><p>
+Allow Apache to modify public files
+used for public file transfer services.
+</p><p>
+</p>
</div></div>
@@ -608,8 +682,11 @@ Allow Apache to modify public filesused for public file transfer services.</p></
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow java executable stack</p></p>
+<p>
+</p><p>
+Allow java executable stack
+</p><p>
+</p>
</div></div>
@@ -620,8 +697,11 @@ Allow java executable stack</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow system to run with kerberos</p></p>
+<p>
+</p><p>
+Allow system to run with kerberos
+</p><p>
+</p>
</div></div>
@@ -632,8 +712,11 @@ Allow system to run with kerberos</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow sysadm to ptrace all processes</p></p>
+<p>
+</p><p>
+Allow sysadm to ptrace all processes
+</p><p>
+</p>
</div></div>
@@ -644,8 +727,12 @@ Allow sysadm to ptrace all processes</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow rsync to modify public filesused for public file transfer services.</p></p>
+<p>
+</p><p>
+Allow rsync to modify public files
+used for public file transfer services.
+</p><p>
+</p>
</div></div>
@@ -656,8 +743,11 @@ Allow rsync to modify public filesused for public file transfer services.</p></p
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow sasl to read shadow</p></p>
+<p>
+</p><p>
+Allow sasl to read shadow
+</p><p>
+</p>
</div></div>
@@ -668,8 +758,12 @@ Allow sasl to read shadow</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow samba to modify public filesused for public file transfer services.</p></p>
+<p>
+</p><p>
+Allow samba to modify public files
+used for public file transfer services.
+</p><p>
+</p>
</div></div>
@@ -680,8 +774,11 @@ Allow samba to modify public filesused for public file transfer services.</p></p
<p>false</p>
<h5>Description</h5>
-<p><p>
-allow host key based authentication</p></p>
+<p>
+</p><p>
+allow host key based authentication
+</p><p>
+</p>
</div></div>
@@ -692,8 +789,27 @@ allow host key based authentication</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow users to connect to mysql</p></p>
+<p>
+</p><p>
+Allow users to connect to mysql
+</p><p>
+</p>
+
+</div></div>
+
+<div id="interface">
+<div id="codeblock">allow_write_xshm</div>
+<div id="description">
+<h5>Default value</h5>
+<p>false</p>
+
+<h5>Description</h5>
+<p>
+</p><p>
+Allows clients to write to the X server shared
+memory segments.
+</p><p>
+</p>
</div></div>
@@ -704,8 +820,11 @@ Allow users to connect to mysql</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow system to run with NIS</p></p>
+<p>
+</p><p>
+Allow system to run with NIS
+</p><p>
+</p>
</div></div>
@@ -716,8 +835,13 @@ Allow system to run with NIS</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow cdrecord to read various content.nfs, samba, removable devices, user tempand untrusted content files</p></p>
+<p>
+</p><p>
+Allow cdrecord to read various content.
+nfs, samba, removable devices, user temp
+and untrusted content files
+</p><p>
+</p>
</div></div>
@@ -728,8 +852,12 @@ Allow cdrecord to read various content.nfs, samba, removable devices, user tempa
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow system cron jobs to relabel filesystemfor restoring file contexts.</p></p>
+<p>
+</p><p>
+Allow system cron jobs to relabel filesystem
+for restoring file contexts.
+</p><p>
+</p>
</div></div>
@@ -740,8 +868,12 @@ Allow system cron jobs to relabel filesystemfor restoring file contexts.</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Enable extra rules in the cron domainto support fcron.</p></p>
+<p>
+</p><p>
+Enable extra rules in the cron domain
+to support fcron.
+</p><p>
+</p>
</div></div>
@@ -752,8 +884,11 @@ Enable extra rules in the cron domainto support fcron.</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow ftp to read and write files in the user home directories</p></p>
+<p>
+</p><p>
+Allow ftp to read and write files in the user home directories
+</p><p>
+</p>
</div></div>
@@ -764,8 +899,11 @@ Allow ftp to read and write files in the user home directories</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow ftpd to run directly without inetd</p></p>
+<p>
+</p><p>
+Allow ftpd to run directly without inetd
+</p><p>
+</p>
</div></div>
@@ -776,8 +914,11 @@ Allow ftpd to run directly without inetd</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow httpd to use built in scripting (usually php)</p></p>
+<p>
+</p><p>
+Allow httpd to use built in scripting (usually php)
+</p><p>
+</p>
</div></div>
@@ -788,8 +929,11 @@ Allow httpd to use built in scripting (usually php)</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow http daemon to tcp connect</p></p>
+<p>
+</p><p>
+Allow http daemon to tcp connect
+</p><p>
+</p>
</div></div>
@@ -800,8 +944,11 @@ Allow http daemon to tcp connect</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-allow httpd to connect to mysql/posgresql</p></p>
+<p>
+</p><p>
+Allow httpd to connect to mysql/posgresql
+</p><p>
+</p>
</div></div>
@@ -812,8 +959,11 @@ allow httpd to connect to mysql/posgresql</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-allow httpd to act as a relay</p></p>
+<p>
+</p><p>
+Allow httpd to act as a relay
+</p><p>
+</p>
</div></div>
@@ -824,8 +974,11 @@ allow httpd to act as a relay</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow httpd cgi support</p></p>
+<p>
+</p><p>
+Allow httpd cgi support
+</p><p>
+</p>
</div></div>
@@ -836,8 +989,12 @@ Allow httpd cgi support</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow httpd to act as a FTP server bylistening on the ftp port.</p></p>
+<p>
+</p><p>
+Allow httpd to act as a FTP server by
+listening on the ftp port.
+</p><p>
+</p>
</div></div>
@@ -848,8 +1005,11 @@ Allow httpd to act as a FTP server bylistening on the ftp port.</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow httpd to read home directories</p></p>
+<p>
+</p><p>
+Allow httpd to read home directories
+</p><p>
+</p>
</div></div>
@@ -860,8 +1020,11 @@ Allow httpd to read home directories</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Run SSI execs in system CGI script domain.</p></p>
+<p>
+</p><p>
+Run SSI execs in system CGI script domain.
+</p><p>
+</p>
</div></div>
@@ -872,8 +1035,11 @@ Run SSI execs in system CGI script domain.</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow http daemon to communicate with the TTY</p></p>
+<p>
+</p><p>
+Allow http daemon to communicate with the TTY
+</p><p>
+</p>
</div></div>
@@ -884,8 +1050,11 @@ Allow http daemon to communicate with the TTY</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Run CGI in the main httpd domain</p></p>
+<p>
+</p><p>
+Run CGI in the main httpd domain
+</p><p>
+</p>
</div></div>
@@ -896,8 +1065,12 @@ Run CGI in the main httpd domain</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow BIND to write the master zone files.Generally this is used for dynamic DNS.</p></p>
+<p>
+</p><p>
+Allow BIND to write the master zone files.
+Generally this is used for dynamic DNS.
+</p><p>
+</p>
</div></div>
@@ -908,8 +1081,11 @@ Allow BIND to write the master zone files.Generally this is used for dynamic DNS
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow nfs to be exported read only</p></p>
+<p>
+</p><p>
+Allow nfs to be exported read only
+</p><p>
+</p>
</div></div>
@@ -920,8 +1096,11 @@ Allow nfs to be exported read only</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow nfs to be exported read/write.</p></p>
+<p>
+</p><p>
+Allow nfs to be exported read/write.
+</p><p>
+</p>
</div></div>
@@ -932,8 +1111,11 @@ Allow nfs to be exported read/write.</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow pppd to load kernel modules for certain modems</p></p>
+<p>
+</p><p>
+Allow pppd to load kernel modules for certain modems
+</p><p>
+</p>
</div></div>
@@ -944,8 +1126,11 @@ Allow pppd to load kernel modules for certain modems</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow pppd to be run for a regular user</p></p>
+<p>
+</p><p>
+Allow pppd to be run for a regular user
+</p><p>
+</p>
</div></div>
@@ -956,8 +1141,11 @@ Allow pppd to be run for a regular user</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow reading of default_t files.</p></p>
+<p>
+</p><p>
+Allow reading of default_t files.
+</p><p>
+</p>
</div></div>
@@ -968,8 +1156,13 @@ Allow reading of default_t files.</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow applications to read untrusted contentIf this is disallowed, Internet content hasto be manually relabeled for read access to be granted</p></p>
+<p>
+</p><p>
+Allow applications to read untrusted content
+If this is disallowed, Internet content has
+to be manually relabeled for read access to be granted
+</p><p>
+</p>
</div></div>
@@ -980,8 +1173,11 @@ Allow applications to read untrusted contentIf this is disallowed, Internet cont
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow ssh to run from inetd instead of as a daemon.</p></p>
+<p>
+</p><p>
+Allow ssh to run from inetd instead of as a daemon.
+</p><p>
+</p>
</div></div>
@@ -992,8 +1188,11 @@ Allow ssh to run from inetd instead of as a daemon.</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow samba to export user home directories.</p></p>
+<p>
+</p><p>
+Allow samba to export user home directories.
+</p><p>
+</p>
</div></div>
@@ -1004,8 +1203,11 @@ Allow samba to export user home directories.</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow spamassassin to do DNS lookups</p></p>
+<p>
+</p><p>
+Allow spamassassin to do DNS lookups
+</p><p>
+</p>
</div></div>
@@ -1016,8 +1218,26 @@ Allow spamassassin to do DNS lookups</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow user spamassassin clients to use the network.</p></p>
+<p>
+</p><p>
+Allow user spamassassin clients to use the network.
+</p><p>
+</p>
+
+</div></div>
+
+<div id="interface">
+<div id="codeblock">spamd_enable_home_dirs</div>
+<div id="description">
+<h5>Default value</h5>
+<p>true</p>
+
+<h5>Description</h5>
+<p>
+</p><p>
+Allow spammd to read/write user home directories.
+</p><p>
+</p>
</div></div>
@@ -1028,8 +1248,12 @@ Allow user spamassassin clients to use the network.</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow squid to connect to all ports, not justHTTP, FTP, and Gopher ports.</p></p>
+<p>
+</p><p>
+Allow squid to connect to all ports, not just
+HTTP, FTP, and Gopher ports.
+</p><p>
+</p>
</div></div>
@@ -1040,8 +1264,11 @@ Allow squid to connect to all ports, not justHTTP, FTP, and Gopher ports.</p></p
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow ssh logins as sysadm_r:sysadm_t</p></p>
+<p>
+</p><p>
+Allow ssh logins as sysadm_r:sysadm_t
+</p><p>
+</p>
</div></div>
@@ -1052,8 +1279,12 @@ Allow ssh logins as sysadm_r:sysadm_t</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow staff_r users to search the sysadm homedir and read files (such as ~/.bashrc)</p></p>
+<p>
+</p><p>
+Allow staff_r users to search the sysadm home
+dir and read files (such as ~/.bashrc)
+</p><p>
+</p>
</div></div>
@@ -1064,8 +1295,12 @@ Allow staff_r users to search the sysadm homedir and read files (such as ~/.bash
<p>false</p>
<h5>Description</h5>
-<p><p>
-Configure stunnel to be a standalone daemon orinetd service.</p></p>
+<p>
+</p><p>
+Configure stunnel to be a standalone daemon or
+inetd service.
+</p><p>
+</p>
</div></div>
@@ -1076,8 +1311,11 @@ Configure stunnel to be a standalone daemon orinetd service.</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Support NFS home directories</p></p>
+<p>
+</p><p>
+Support NFS home directories
+</p><p>
+</p>
</div></div>
@@ -1088,8 +1326,11 @@ Support NFS home directories</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Support SAMBA home directories</p></p>
+<p>
+</p><p>
+Support SAMBA home directories
+</p><p>
+</p>
</div></div>
@@ -1100,8 +1341,11 @@ Support SAMBA home directories</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow regular users direct mouse access</p></p>
+<p>
+</p><p>
+Allow regular users direct mouse access
+</p><p>
+</p>
</div></div>
@@ -1112,8 +1356,11 @@ Allow regular users direct mouse access</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow users to read system messages.</p></p>
+<p>
+</p><p>
+Allow users to read system messages.
+</p><p>
+</p>
</div></div>
@@ -1124,8 +1371,12 @@ Allow users to read system messages.</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow users to control network interfaces(also needs USERCTL=true)</p></p>
+<p>
+</p><p>
+Allow users to control network interfaces
+(also needs USERCTL=true)
+</p><p>
+</p>
</div></div>
@@ -1136,8 +1387,11 @@ Allow users to control network interfaces(also needs USERCTL=true)</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Control users use of ping and traceroute</p></p>
+<p>
+</p><p>
+Control users use of ping and traceroute
+</p><p>
+</p>
</div></div>
@@ -1148,8 +1402,12 @@ Control users use of ping and traceroute</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow user to r/w files on filesystemsthat do not have extended attributes (FAT, CDROM, FLOPPY)</p></p>
+<p>
+</p><p>
+Allow user to r/w files on filesystems
+that do not have extended attributes (FAT, CDROM, FLOPPY)
+</p><p>
+</p>
</div></div>
@@ -1160,8 +1418,11 @@ Allow user to r/w files on filesystemsthat do not have extended attributes (FAT,
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow users to rw usb devices</p></p>
+<p>
+</p><p>
+Allow users to rw usb devices
+</p><p>
+</p>
</div></div>
@@ -1172,8 +1433,13 @@ Allow users to rw usb devices</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow users to run TCP servers (bind to ports and accept connection fromthe same domain and outside users) disabling this forces FTP passive modeand may change other protocols.</p></p>
+<p>
+</p><p>
+Allow users to run TCP servers (bind to ports and accept connection from
+the same domain and outside users) disabling this forces FTP passive mode
+and may change other protocols.
+</p><p>
+</p>
</div></div>
@@ -1184,8 +1450,11 @@ Allow users to run TCP servers (bind to ports and accept connection fromthe same
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow w to display everyone</p></p>
+<p>
+</p><p>
+Allow w to display everyone
+</p><p>
+</p>
</div></div>
@@ -1196,8 +1465,28 @@ Allow w to display everyone</p></p>
<p>false</p>
<h5>Description</h5>
-<p><p>
-Allow applications to write untrusted contentIf this is disallowed, no Internet contentwill be stored.</p></p>
+<p>
+</p><p>
+Allow applications to write untrusted content
+If this is disallowed, no Internet content
+will be stored.
+</p><p>
+</p>
+
+</div></div>
+
+<div id="interface">
+<div id="codeblock">xdm_sysadm_login</div>
+<div id="description">
+<h5>Default value</h5>
+<p>false</p>
+
+<h5>Description</h5>
+<p>
+</p><p>
+Allow xdm logins as sysadm
+</p><p>
+</p>
</div></div>
diff --git a/www/api-docs/index.html b/www/api-docs/index.html
index bb55645..8732390 100644
--- a/www/api-docs/index.html
+++ b/www/api-docs/index.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -112,24 +124,39 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -151,6 +178,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -400,12 +430,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -535,6 +565,16 @@
<td><p>Policy for the Anaconda installer.</p></td>
<tr><td>
+ <a href='admin_bootloader.html'>
+ bootloader</a></td>
+ <td><p>Policy for the kernel modules, kernel image, and bootloader.</p></td>
+
+ <tr><td>
+ <a href='admin_certwatch.html'>
+ certwatch</a></td>
+ <td><p>Digital Certificate Tracking</p></td>
+
+ <tr><td>
<a href='admin_consoletype.html'>
consoletype</a></td>
<td><p>
@@ -580,11 +620,24 @@ after installation of Red Hat/Fedora systems.
<td><p>System log analyzer and reporter</p></td>
<tr><td>
+ <a href='admin_mrtg.html'>
+ mrtg</a></td>
+ <td><p>Network traffic graphing</p></td>
+
+ <tr><td>
<a href='admin_netutils.html'>
netutils</a></td>
<td><p>Network analysis utilities</p></td>
<tr><td>
+ <a href='admin_portage.html'>
+ portage</a></td>
+ <td><p>
+Portage Package Management System. The primary package management and
+distribution system for Gentoo.
+</p></td>
+
+ <tr><td>
<a href='admin_prelink.html'>
prelink</a></td>
<td><p>Prelink ELF shared library mappings.</p></td>
@@ -680,11 +733,6 @@ and unlabeled processes and objects.
<tr><td>
- <a href='kernel_bootloader.html'>
- bootloader</a></td>
- <td><p>Policy for the kernel modules, kernel image, and bootloader.</p></td>
-
- <tr><td>
<a href='kernel_corecommands.html'>
corecommands</a></td>
<td><p>
@@ -730,6 +778,11 @@ and unlabeled processes and objects.
</p></td>
<tr><td>
+ <a href='kernel_mcs.html'>
+ mcs</a></td>
+ <td><p>Multicategory security policy</p></td>
+
+ <tr><td>
<a href='kernel_mls.html'>
mls</a></td>
<td><p>Multilevel security policy</p></td>
@@ -805,6 +858,11 @@ Policy for kernel security interface, in particular, selinuxfs.
<td><p>device locking policy for lockdev</p></td>
<tr><td>
+ <a href='apps_mono.html'>
+ mono</a></td>
+ <td><p>Run .NET server and client applications on Linux.</p></td>
+
+ <tr><td>
<a href='apps_screen.html'>
screen</a></td>
<td><p>GNU terminal multiplexer</p></td>
@@ -815,10 +873,35 @@ Policy for kernel security interface, in particular, selinuxfs.
<td><p>Update database for mlocate</p></td>
<tr><td>
+ <a href='apps_tvtime.html'>
+ tvtime</a></td>
+ <td><p> tvtime - a high quality television application </p></td>
+
+ <tr><td>
+ <a href='apps_uml.html'>
+ uml</a></td>
+ <td><p>Policy for UML</p></td>
+
+ <tr><td>
+ <a href='apps_userhelper.html'>
+ userhelper</a></td>
+ <td><p>SELinux utility to run a shell with a new role</p></td>
+
+ <tr><td>
+ <a href='apps_usernetctl.html'>
+ usernetctl</a></td>
+ <td><p>User network interface configuration helper</p></td>
+
+ <tr><td>
<a href='apps_webalizer.html'>
webalizer</a></td>
<td><p>Web server log analysis</p></td>
+ <tr><td>
+ <a href='apps_wine.html'>
+ wine</a></td>
+ <td><p>Wine Is Not an Emulator. Run Windows programs in Linux.</p></td>
+
</td></tr>
@@ -1395,16 +1478,16 @@ from Windows NT servers.
<td><p>Unix to Unix Copy</p></td>
<tr><td>
- <a href='services_xdm.html'>
- xdm</a></td>
- <td><p>X windows login display manager</p></td>
-
- <tr><td>
<a href='services_xfs.html'>
xfs</a></td>
<td><p>X Windows Font Server </p></td>
<tr><td>
+ <a href='services_xserver.html'>
+ xserver</a></td>
+ <td><p>X Windows Server</p></td>
+
+ <tr><td>
<a href='services_zebra.html'>
zebra</a></td>
<td><p>Zebra border gateway protocol network routing service</p></td>
diff --git a/www/api-docs/interfaces.html b/www/api-docs/interfaces.html
index adfe364..46df10f 100644
--- a/www/api-docs/interfaces.html
+++ b/www/api-docs/interfaces.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -112,24 +124,39 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -151,6 +178,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -400,12 +430,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -688,6 +718,32 @@ Allow read and write access to alsa shared memory.
</div>
<div id="interfacesmall">
+Module: <a href='admin_amanda.html#link_amanda_append_log_files'>
+amanda</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
+<div id="codeblock">
+
+<b>amanda_append_log_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Allow read/writing amanda logs
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='admin_amanda.html#link_amanda_domtrans_recover'>
amanda</a><p/>
Layer: <a href='admin.html'>
@@ -783,6 +839,32 @@ allow the specified role the amanda_recover domain.
</div>
<div id="interfacesmall">
+Module: <a href='admin_amanda.html#link_amanda_rw_dumpdates_files'>
+amanda</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
+<div id="codeblock">
+
+<b>amanda_rw_dumpdates_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Allow read/writing /etc/dumpdates.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='admin_amanda.html#link_amanda_search_lib'>
amanda</a><p/>
Layer: <a href='admin.html'>
@@ -970,13 +1052,13 @@ Apache logs.
</div>
<div id="interfacesmall">
-Module: <a href='services_apache.html#link_apache_dontaudit_rw_stream_socket'>
+Module: <a href='services_apache.html#link_apache_dontaudit_rw_stream_sockets'>
apache</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>apache_dontaudit_rw_stream_socket</b>(
+<b>apache_dontaudit_rw_stream_sockets</b>(
@@ -997,13 +1079,13 @@ unix domain stream sockets.
</div>
<div id="interfacesmall">
-Module: <a href='services_apache.html#link_apache_dontaudit_rw_sys_script_stream_socket'>
+Module: <a href='services_apache.html#link_apache_dontaudit_rw_sys_script_stream_sockets'>
apache</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>apache_dontaudit_rw_sys_script_stream_socket</b>(
+<b>apache_dontaudit_rw_sys_script_stream_sockets</b>(
@@ -1024,13 +1106,13 @@ system script unix domain stream sockets.
</div>
<div id="interfacesmall">
-Module: <a href='services_apache.html#link_apache_dontaudit_rw_tcp_socket'>
+Module: <a href='services_apache.html#link_apache_dontaudit_rw_tcp_sockets'>
apache</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>apache_dontaudit_rw_tcp_socket</b>(
+<b>apache_dontaudit_rw_tcp_sockets</b>(
@@ -1078,6 +1160,33 @@ module directories.
</div>
<div id="interfacesmall">
+Module: <a href='services_apache.html#link_apache_exec_modules'>
+apache</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>apache_exec_modules</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Allow the specified domain to execute
+apache modules.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='services_apache.html#link_apache_list_modules'>
apache</a><p/>
Layer: <a href='services.html'>
@@ -1214,6 +1323,32 @@ apache squirrelmail data.
</div>
<div id="interfacesmall">
+Module: <a href='services_apache.html#link_apache_read_sys_content'>
+apache</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>apache_read_sys_content</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read apache system content
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='services_apache.html#link_apache_run_all_scripts'>
apache</a><p/>
Layer: <a href='services.html'>
@@ -1372,13 +1507,13 @@ Send a null signal to apache.
</div>
<div id="interfacesmall">
-Module: <a href='services_apache.html#link_apache_use_fd'>
+Module: <a href='services_apache.html#link_apache_use_fds'>
apache</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>apache_use_fd</b>(
+<b>apache_use_fds</b>(
@@ -1450,13 +1585,13 @@ Execute APM in the apm domain.
</div>
<div id="interfacesmall">
-Module: <a href='services_apm.html#link_apm_rw_stream_socket'>
+Module: <a href='services_apm.html#link_apm_rw_stream_sockets'>
apm</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>apm_rw_stream_socket</b>(
+<b>apm_rw_stream_sockets</b>(
@@ -1502,13 +1637,13 @@ Connect to apmd over an unix stream socket.
</div>
<div id="interfacesmall">
-Module: <a href='services_apm.html#link_apm_use_fd'>
+Module: <a href='services_apm.html#link_apm_use_fds'>
apm</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>apm_use_fd</b>(
+<b>apm_use_fds</b>(
@@ -1528,13 +1663,13 @@ Use file descriptors for apmd.
</div>
<div id="interfacesmall">
-Module: <a href='services_apm.html#link_apm_write_pipe'>
+Module: <a href='services_apm.html#link_apm_write_pipes'>
apm</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>apm_write_pipe</b>(
+<b>apm_write_pipes</b>(
@@ -1554,13 +1689,13 @@ Write to apmd unnamed pipes.
</div>
<div id="interfacesmall">
-Module: <a href='services_arpwatch.html#link_arpwatch_dontaudit_rw_packet_socket'>
+Module: <a href='services_arpwatch.html#link_arpwatch_dontaudit_rw_packet_sockets'>
arpwatch</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>arpwatch_dontaudit_rw_packet_socket</b>(
+<b>arpwatch_dontaudit_rw_packet_sockets</b>(
@@ -2137,18 +2272,18 @@ Execute the pam program.
</div>
<div id="interfacesmall">
-Module: <a href='system_authlogin.html#link_auth_filetrans_login_records'>
+Module: <a href='system_authlogin.html#link_auth_getattr_shadow'>
authlogin</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>auth_filetrans_login_records</b>(
+<b>auth_getattr_shadow</b>(
- ?
+ domain
)<br>
@@ -2156,25 +2291,25 @@ system</a><p/>
<div id="description">
<p>
-Summary is missing!
+Get the attributes of the shadow passwords file.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_authlogin.html#link_auth_getattr_shadow'>
+Module: <a href='system_authlogin.html#link_auth_list_pam_console_data'>
authlogin</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>auth_getattr_shadow</b>(
+<b>auth_list_pam_console_data</b>(
- domain
+ ?
)<br>
@@ -2182,20 +2317,20 @@ system</a><p/>
<div id="description">
<p>
-Get the attributes of the shadow passwords file.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_authlogin.html#link_auth_list_pam_console_data'>
+Module: <a href='system_authlogin.html#link_auth_log_filetrans_login_records'>
authlogin</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>auth_list_pam_console_data</b>(
+<b>auth_log_filetrans_login_records</b>(
@@ -2260,12 +2395,8 @@ system</a><p/>
- [
-
exception_types
- ]
-
)<br>
</div>
@@ -2332,6 +2463,32 @@ Summary is missing!
</div>
<div id="interfacesmall">
+Module: <a href='system_authlogin.html#link_auth_manage_pam_pid'>
+authlogin</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>auth_manage_pam_pid</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Manage pam PID files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='system_authlogin.html#link_auth_manage_shadow'>
authlogin</a><p/>
Layer: <a href='system.html'>
@@ -2358,6 +2515,33 @@ Summary is missing!
</div>
<div id="interfacesmall">
+Module: <a href='system_authlogin.html#link_auth_manage_var_auth'>
+authlogin</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>auth_manage_var_auth</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Manage var auth files. Used by various other applications
+and pam applets etc.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='system_authlogin.html#link_auth_read_all_dirs_except_shadow'>
authlogin</a><p/>
Layer: <a href='system.html'>
@@ -2377,12 +2561,8 @@ system</a><p/>
- [
-
exception_types
- ]
-
)<br>
</div>
@@ -2416,12 +2596,8 @@ system</a><p/>
- [
-
exception_types
- ]
-
)<br>
</div>
@@ -2455,12 +2631,8 @@ system</a><p/>
- [
-
exception_types
- ]
-
)<br>
</div>
@@ -2624,12 +2796,8 @@ system</a><p/>
- [
-
exception_types
- ]
-
)<br>
</div>
@@ -3069,6 +3237,33 @@ Execute automount in the automount domain.
</div>
<div id="interfacesmall">
+Module: <a href='services_automount.html#link_automount_dontaudit_getattr_tmp_dirs'>
+automount</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>automount_dontaudit_getattr_tmp_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to get the attributes
+of automount temporary directories.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='services_automount.html#link_automount_exec_config'>
automount</a><p/>
Layer: <a href='services.html'>
@@ -3201,13 +3396,13 @@ BIND cache files.
</div>
<div id="interfacesmall">
-Module: <a href='services_bind.html#link_bind_manage_config_dir'>
+Module: <a href='services_bind.html#link_bind_manage_config_dirs'>
bind</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>bind_manage_config_dir</b>(
+<b>bind_manage_config_dirs</b>(
@@ -3375,13 +3570,13 @@ Search the BIND cache directory.
</div>
<div id="interfacesmall">
-Module: <a href='services_bind.html#link_bind_setattr_pid_dir'>
+Module: <a href='services_bind.html#link_bind_setattr_pid_dirs'>
bind</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>bind_setattr_pid_dir</b>(
+<b>bind_setattr_pid_dirs</b>(
@@ -3602,62 +3797,10 @@ allow the specified role the bluetooth_helper domain.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_create_kernel_img'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>bootloader_create_kernel_img</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Install a kernel into the /boot directory.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_create_kernel_symbol_table'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>bootloader_create_kernel_symbol_table</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Install a system.map into the /boot directory.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_create_runtime_file'>
+Module: <a href='admin_bootloader.html#link_bootloader_create_runtime_file'>
bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
<div id="codeblock">
<b>bootloader_create_runtime_file</b>(
@@ -3681,13 +3824,13 @@ temporary data in /tmp.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_delete_kernel'>
+Module: <a href='admin_bootloader.html#link_bootloader_domtrans'>
bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
<div id="codeblock">
-<b>bootloader_delete_kernel</b>(
+<b>bootloader_domtrans</b>(
@@ -3700,20 +3843,20 @@ kernel</a><p/>
<div id="description">
<p>
-Delete a kernel from /boot.
+Execute bootloader in the bootloader domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_delete_kernel_symbol_table'>
+Module: <a href='admin_bootloader.html#link_bootloader_read_config'>
bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
<div id="codeblock">
-<b>bootloader_delete_kernel_symbol_table</b>(
+<b>bootloader_read_config</b>(
@@ -3726,20 +3869,20 @@ kernel</a><p/>
<div id="description">
<p>
-Delete a system.map in the /boot directory.
+Read the bootloader configuration file.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_domtrans'>
+Module: <a href='admin_bootloader.html#link_bootloader_run'>
bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
<div id="codeblock">
-<b>bootloader_domtrans</b>(
+<b>bootloader_run</b>(
@@ -3747,57 +3890,20 @@ kernel</a><p/>
domain
- )<br>
-</div>
-
-<div id="description">
-<p>
-Execute bootloader in the bootloader domain.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_dontaudit_getattr_boot_dir'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>bootloader_dontaudit_getattr_boot_dir</b>(
-
+ ,
- domain
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Do not audit attempts to get attributes
-of the /boot directory.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_dontaudit_search_boot'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>bootloader_dontaudit_search_boot</b>(
+ role
+
+ ,
- domain
+
+ terminal
)<br>
@@ -3805,25 +3911,26 @@ kernel</a><p/>
<div id="description">
<p>
-Do not audit attempts to search the /boot directory.
+Execute bootloader interactively and do
+a domain transition to the bootloader domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_filetrans_modules'>
+Module: <a href='admin_bootloader.html#link_bootloader_rw_config'>
bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
<div id="codeblock">
-<b>bootloader_filetrans_modules</b>(
+<b>bootloader_rw_config</b>(
- ?
+ domain
)<br>
@@ -3831,20 +3938,21 @@ kernel</a><p/>
<div id="description">
<p>
-Summary is missing!
+Read and write the bootloader
+configuration file.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_getattr_boot_dir'>
+Module: <a href='admin_bootloader.html#link_bootloader_rw_tmp_files'>
bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
<div id="codeblock">
-<b>bootloader_getattr_boot_dir</b>(
+<b>bootloader_rw_tmp_files</b>(
@@ -3857,20 +3965,21 @@ kernel</a><p/>
<div id="description">
<p>
-Get attributes of the /boot directory.
+Read and write the bootloader
+temporary data in /tmp.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_getattr_kernel_modules'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Module: <a href='services_canna.html#link_canna_stream_connect'>
+canna</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
<div id="codeblock">
-<b>bootloader_getattr_kernel_modules</b>(
+<b>canna_stream_connect</b>(
@@ -3883,20 +3992,20 @@ kernel</a><p/>
<div id="description">
<p>
-Get the attributes of kernel module files.
+Connect to Canna using a unix domain stream socket.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_list_kernel_modules'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Module: <a href='admin_certwatch.html#link_certwatach_run'>
+certwatch</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
<div id="codeblock">
-<b>bootloader_list_kernel_modules</b>(
+<b>certwatach_run</b>(
@@ -3904,30 +4013,20 @@ kernel</a><p/>
domain
- )<br>
-</div>
-
-<div id="description">
-<p>
-List the contents of the kernel module directories.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_manage_kernel_modules'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>bootloader_manage_kernel_modules</b>(
+
+ ,
+
+
+
+ role
+
+ ,
- domain
+
+ terminal
)<br>
@@ -3935,21 +4034,23 @@ kernel</a><p/>
<div id="description">
<p>
-Create, read, write, and delete
-kernel module files.
+Execute certwatch in the certwatch domain, and
+allow the specified role the certwatch domain,
+and use the caller's terminal. Has a sigchld
+backchannel.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_read_config'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Module: <a href='admin_certwatch.html#link_certwatch_domtrans'>
+certwatch</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
<div id="codeblock">
-<b>bootloader_read_config</b>(
+<b>certwatch_domtrans</b>(
@@ -3962,20 +4063,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read the bootloader configuration file.
+Domain transition to certwatch.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_read_kernel_modules'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Module: <a href='system_clock.html#link_clock_domtrans'>
+clock</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
<div id="codeblock">
-<b>bootloader_read_kernel_modules</b>(
+<b>clock_domtrans</b>(
@@ -3988,20 +4089,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read kernel module files.
+Execute hwclock in the clock domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_read_kernel_symbol_table'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Module: <a href='system_clock.html#link_clock_exec'>
+clock</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
<div id="codeblock">
-<b>bootloader_read_kernel_symbol_table</b>(
+<b>clock_exec</b>(
@@ -4014,20 +4115,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read system.map in the /boot directory.
+Execute hwclock in the caller domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_run'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Module: <a href='system_clock.html#link_clock_run'>
+clock</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
<div id="codeblock">
-<b>bootloader_run</b>(
+<b>clock_run</b>(
@@ -4056,21 +4157,21 @@ kernel</a><p/>
<div id="description">
<p>
-Execute bootloader interactively and do
-a domain transition to the bootloader domain.
+Execute hwclock in the clock domain, and
+allow the specified role the hwclock domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_rw_boot_symlinks'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Module: <a href='system_clock.html#link_clock_rw_adjtime'>
+clock</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
<div id="codeblock">
-<b>bootloader_rw_boot_symlinks</b>(
+<b>clock_rw_adjtime</b>(
@@ -4083,21 +4184,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write symbolic links
-in the /boot directory.
+Allow executing domain to modify clock drift
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_rw_config'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Module: <a href='admin_consoletype.html#link_consoletype_domtrans'>
+consoletype</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
<div id="codeblock">
-<b>bootloader_rw_config</b>(
+<b>consoletype_domtrans</b>(
@@ -4110,21 +4210,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write the bootloader
-configuration file.
+Execute consoletype in the consoletype domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_rw_tmp_file'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Module: <a href='admin_consoletype.html#link_consoletype_exec'>
+consoletype</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
<div id="codeblock">
-<b>bootloader_rw_tmp_file</b>(
+<b>consoletype_exec</b>(
@@ -4137,21 +4236,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write the bootloader
-temporary data in /tmp.
+Execute consoletype in the caller domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_search_boot'>
-bootloader</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Module: <a href='admin_consoletype.html#link_consoletype_run'>
+consoletype</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
<div id="codeblock">
-<b>bootloader_search_boot</b>(
+<b>consoletype_run</b>(
@@ -4159,25 +4257,42 @@ kernel</a><p/>
domain
+
+ ,
+
+
+
+ role
+
+
+
+ ,
+
+
+
+ terminal
+
+
)<br>
</div>
<div id="description">
<p>
-Search the /boot directory.
+Execute consoletype in the consoletype domain, and
+allow the specified role the consoletype domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_search_kernel_modules'>
-bootloader</a><p/>
+Module: <a href='kernel_corecommands.html#link_corecmd_bin_alias'>
+corecommands</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>bootloader_search_kernel_modules</b>(
+<b>corecmd_bin_alias</b>(
@@ -4190,20 +4305,20 @@ kernel</a><p/>
<div id="description">
<p>
-Search the contents of the kernel module directories.
+Create a aliased type to generic bin files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_bootloader.html#link_bootloader_write_kernel_modules'>
-bootloader</a><p/>
+Module: <a href='kernel_corecommands.html#link_corecmd_bin_domtrans'>
+corecommands</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>bootloader_write_kernel_modules</b>(
+<b>corecmd_bin_domtrans</b>(
@@ -4211,25 +4326,34 @@ kernel</a><p/>
domain
+
+ ,
+
+
+
+ target_domain
+
+
)<br>
</div>
<div id="description">
<p>
-Write kernel module files.
+Execute a file in a bin directory
+in the specified domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_canna.html#link_canna_stream_connect'>
-canna</a><p/>
-Layer: <a href='services.html'>
-services</a><p/>
+Module: <a href='kernel_corecommands.html#link_corecmd_bin_spec_domtrans'>
+corecommands</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
<div id="codeblock">
-<b>canna_stream_connect</b>(
+<b>corecmd_bin_spec_domtrans</b>(
@@ -4237,25 +4361,36 @@ services</a><p/>
domain
+
+ ,
+
+
+
+ target_domain
+
+
)<br>
</div>
<div id="description">
<p>
-Connect to Canna using a unix domain stream socket.
+Execute a file in a bin directory
+in the specified domain but do not
+do it automatically. This is an explicit
+transition, requiring the caller to use setexeccon().
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_clock.html#link_clock_domtrans'>
-clock</a><p/>
-Layer: <a href='system.html'>
-system</a><p/>
+Module: <a href='kernel_corecommands.html#link_corecmd_check_exec_shell'>
+corecommands</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
<div id="codeblock">
-<b>clock_domtrans</b>(
+<b>corecmd_check_exec_shell</b>(
@@ -4268,25 +4403,25 @@ system</a><p/>
<div id="description">
<p>
-Execute hwclock in the clock domain.
+Check if a shell is executable (DAC-wise).
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_clock.html#link_clock_exec'>
-clock</a><p/>
-Layer: <a href='system.html'>
-system</a><p/>
+Module: <a href='kernel_corecommands.html#link_corecmd_dontaudit_getattr_sbin_files'>
+corecommands</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
<div id="codeblock">
-<b>clock_exec</b>(
+<b>corecmd_dontaudit_getattr_sbin_files</b>(
- domain
+ ?
)<br>
@@ -4294,20 +4429,20 @@ system</a><p/>
<div id="description">
<p>
-Execute hwclock in the caller domain.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_clock.html#link_clock_run'>
-clock</a><p/>
-Layer: <a href='system.html'>
-system</a><p/>
+Module: <a href='kernel_corecommands.html#link_corecmd_dontaudit_search_sbin'>
+corecommands</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
<div id="codeblock">
-<b>clock_run</b>(
+<b>corecmd_dontaudit_search_sbin</b>(
@@ -4315,47 +4450,31 @@ system</a><p/>
domain
-
- ,
-
-
-
- role
-
-
-
- ,
-
-
-
- terminal
-
-
)<br>
</div>
<div id="description">
<p>
-Execute hwclock in the clock domain, and
-allow the specified role the hwclock domain.
+Do not audit attempts to search
+sbin directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_clock.html#link_clock_rw_adjtime'>
-clock</a><p/>
-Layer: <a href='system.html'>
-system</a><p/>
+Module: <a href='kernel_corecommands.html#link_corecmd_exec_bin'>
+corecommands</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
<div id="codeblock">
-<b>clock_rw_adjtime</b>(
+<b>corecmd_exec_bin</b>(
- domain
+ ?
)<br>
@@ -4363,25 +4482,25 @@ system</a><p/>
<div id="description">
<p>
-Allow executing domain to modify clock drift
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='admin_consoletype.html#link_consoletype_domtrans'>
-consoletype</a><p/>
-Layer: <a href='admin.html'>
-admin</a><p/>
+Module: <a href='kernel_corecommands.html#link_corecmd_exec_chroot'>
+corecommands</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
<div id="codeblock">
-<b>consoletype_domtrans</b>(
+<b>corecmd_exec_chroot</b>(
- domain
+ ?
)<br>
@@ -4389,25 +4508,25 @@ admin</a><p/>
<div id="description">
<p>
-Execute consoletype in the consoletype domain.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='admin_consoletype.html#link_consoletype_exec'>
-consoletype</a><p/>
-Layer: <a href='admin.html'>
-admin</a><p/>
+Module: <a href='kernel_corecommands.html#link_corecmd_exec_ls'>
+corecommands</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
<div id="codeblock">
-<b>consoletype_exec</b>(
+<b>corecmd_exec_ls</b>(
- domain
+ ?
)<br>
@@ -4415,25 +4534,25 @@ admin</a><p/>
<div id="description">
<p>
-Execute consoletype in the caller domain.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_bin_alias'>
+Module: <a href='kernel_corecommands.html#link_corecmd_exec_sbin'>
corecommands</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>corecmd_bin_alias</b>(
+<b>corecmd_exec_sbin</b>(
- domain
+ ?
)<br>
@@ -4441,33 +4560,25 @@ kernel</a><p/>
<div id="description">
<p>
-Create a aliased type to generic bin files.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_bin_domtrans'>
+Module: <a href='kernel_corecommands.html#link_corecmd_exec_shell'>
corecommands</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>corecmd_bin_domtrans</b>(
-
-
-
-
- domain
-
+<b>corecmd_exec_shell</b>(
- ,
-
- target_domain
+ ?
)<br>
@@ -4475,21 +4586,20 @@ kernel</a><p/>
<div id="description">
<p>
-Execute a file in a bin directory
-in the specified domain.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_check_exec_shell'>
+Module: <a href='kernel_corecommands.html#link_corecmd_getattr_bin_files'>
corecommands</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>corecmd_check_exec_shell</b>(
+<b>corecmd_getattr_bin_files</b>(
@@ -4502,229 +4612,20 @@ kernel</a><p/>
<div id="description">
<p>
-Check if a shell is executable (DAC-wise).
+Get the attributes of files in bin directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_dontaudit_getattr_sbin_file'>
+Module: <a href='kernel_corecommands.html#link_corecmd_getattr_sbin_files'>
corecommands</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>corecmd_dontaudit_getattr_sbin_file</b>(
-
-
-
-
- ?
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Summary is missing!
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_dontaudit_search_sbin'>
-corecommands</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>corecmd_dontaudit_search_sbin</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Do not audit attempts to search
-sbin directories.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_exec_bin'>
-corecommands</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>corecmd_exec_bin</b>(
-
-
-
-
- ?
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Summary is missing!
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_exec_chroot'>
-corecommands</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>corecmd_exec_chroot</b>(
-
-
-
-
- ?
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Summary is missing!
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_exec_ls'>
-corecommands</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>corecmd_exec_ls</b>(
-
-
-
-
- ?
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Summary is missing!
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_exec_sbin'>
-corecommands</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>corecmd_exec_sbin</b>(
-
-
-
-
- ?
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Summary is missing!
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_exec_shell'>
-corecommands</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>corecmd_exec_shell</b>(
-
-
-
-
- ?
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Summary is missing!
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_getattr_bin_file'>
-corecommands</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>corecmd_getattr_bin_file</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Get the attributes of files in bin directories.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_getattr_sbin_file'>
-corecommands</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>corecmd_getattr_sbin_file</b>(
+<b>corecmd_getattr_sbin_files</b>(
@@ -4900,13 +4801,13 @@ Mmap a sbin file as executable.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_read_bin_file'>
+Module: <a href='kernel_corecommands.html#link_corecmd_read_bin_files'>
corecommands</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>corecmd_read_bin_file</b>(
+<b>corecmd_read_bin_files</b>(
@@ -4926,13 +4827,13 @@ Read files in bin directories.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_read_bin_pipe'>
+Module: <a href='kernel_corecommands.html#link_corecmd_read_bin_pipes'>
corecommands</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>corecmd_read_bin_pipe</b>(
+<b>corecmd_read_bin_pipes</b>(
@@ -4952,13 +4853,13 @@ Read pipes in bin directories.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_read_bin_socket'>
+Module: <a href='kernel_corecommands.html#link_corecmd_read_bin_sockets'>
corecommands</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>corecmd_read_bin_socket</b>(
+<b>corecmd_read_bin_sockets</b>(
@@ -4978,13 +4879,13 @@ Read named sockets in bin directories.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_read_bin_symlink'>
+Module: <a href='kernel_corecommands.html#link_corecmd_read_bin_symlinks'>
corecommands</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>corecmd_read_bin_symlink</b>(
+<b>corecmd_read_bin_symlinks</b>(
@@ -5004,13 +4905,13 @@ Read symbolic links in bin directories.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_read_sbin_file'>
+Module: <a href='kernel_corecommands.html#link_corecmd_read_sbin_files'>
corecommands</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>corecmd_read_sbin_file</b>(
+<b>corecmd_read_sbin_files</b>(
@@ -5030,13 +4931,13 @@ Read files in sbin directories.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_read_sbin_pipe'>
+Module: <a href='kernel_corecommands.html#link_corecmd_read_sbin_pipes'>
corecommands</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>corecmd_read_sbin_pipe</b>(
+<b>corecmd_read_sbin_pipes</b>(
@@ -5056,13 +4957,13 @@ Read named pipes in sbin directories.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_read_sbin_socket'>
+Module: <a href='kernel_corecommands.html#link_corecmd_read_sbin_sockets'>
corecommands</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>corecmd_read_sbin_socket</b>(
+<b>corecmd_read_sbin_sockets</b>(
@@ -5082,13 +4983,13 @@ Read named sockets in sbin directories.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_corecommands.html#link_corecmd_read_sbin_symlink'>
+Module: <a href='kernel_corecommands.html#link_corecmd_read_sbin_symlinks'>
corecommands</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>corecmd_read_sbin_symlink</b>(
+<b>corecmd_read_sbin_symlinks</b>(
@@ -5195,6 +5096,43 @@ in the specified domain.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corecommands.html#link_corecmd_sbin_spec_domtrans'>
+corecommands</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corecmd_sbin_spec_domtrans</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ target_domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute a file in a sbin directory
+in the specified domain but do not
+do it automatically. This is an explicit
+transition, requiring the caller to use setexeccon().
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corecommands.html#link_corecmd_search_bin'>
corecommands</a><p/>
Layer: <a href='kernel.html'>
@@ -5343,6 +5281,32 @@ caller to use setexeccon().
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_dontaudit_tcp_bind_all_ports'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_dontaudit_tcp_bind_all_ports</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attepts to bind TCP sockets to any ports.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_dontaudit_tcp_bind_all_reserved_ports'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -6490,6 +6454,58 @@ Send and receive raw IP packets on the unspec node.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_rw_ppp_dev'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_rw_ppp_dev</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read and write the point-to-point device.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_rw_tun_tap_dev'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_rw_tun_tap_dev</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read and write the TUN/TAP virtual network device.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_tcp_bind_afs_bos_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -6828,6 +6844,32 @@ Bind TCP sockets to the auth port.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_tcp_bind_bgp_port'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_tcp_bind_bgp_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Bind TCP sockets to the bgp port.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_tcp_bind_clamd_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -8544,6 +8586,32 @@ Bind TCP sockets to the rndc port.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_tcp_bind_router_port'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_tcp_bind_router_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Bind TCP sockets to the router port.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_tcp_bind_rsh_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -9376,6 +9444,32 @@ Make a TCP connection to the auth port.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_tcp_connect_bgp_port'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_tcp_connect_bgp_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Make a TCP connection to the bgp port.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_tcp_connect_clamd_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -10910,6 +11004,32 @@ Make a TCP connection to the rndc port.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_tcp_connect_router_port'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_tcp_connect_router_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Make a TCP connection to the router port.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_tcp_connect_rsh_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -11742,6 +11862,32 @@ Send and receive TCP traffic on the auth port.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_tcp_sendrecv_bgp_port'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_tcp_sendrecv_bgp_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Send and receive TCP traffic on the bgp port.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_tcp_sendrecv_clamd_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -13510,6 +13656,32 @@ Send and receive TCP traffic on the rndc port.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_tcp_sendrecv_router_port'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_tcp_sendrecv_router_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Send and receive TCP traffic on the router port.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_tcp_sendrecv_rsh_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -14368,6 +14540,32 @@ Bind UDP sockets to the auth port.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_udp_bind_bgp_port'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_udp_bind_bgp_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Bind UDP sockets to the bgp port.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_udp_bind_clamd_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -16084,6 +16282,32 @@ Bind UDP sockets to the rndc port.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_udp_bind_router_port'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_udp_bind_router_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Bind UDP sockets to the router port.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_udp_bind_rsh_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -16968,6 +17192,32 @@ Receive UDP traffic on the auth port.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_udp_receive_bgp_port'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_udp_receive_bgp_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Receive UDP traffic on the bgp port.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_udp_receive_clamd_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -18736,6 +18986,32 @@ Receive UDP traffic on the rndc port.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_udp_receive_router_port'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_udp_receive_router_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Receive UDP traffic on the router port.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_udp_receive_rsh_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -19620,6 +19896,32 @@ Send UDP traffic on the auth port.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_udp_send_bgp_port'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_udp_send_bgp_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Send UDP traffic on the bgp port.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_udp_send_clamd_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -21388,6 +21690,32 @@ Send UDP traffic on the rndc port.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_udp_send_router_port'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_udp_send_router_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Send UDP traffic on the router port.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_udp_send_rsh_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -22272,6 +22600,32 @@ Send and receive UDP traffic on the auth port.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_udp_sendrecv_bgp_port'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_udp_sendrecv_bgp_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Send and receive UDP traffic on the bgp port.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_udp_sendrecv_clamd_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -24040,6 +24394,32 @@ Send and receive UDP traffic on the rndc port.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_corenetwork.html#link_corenet_udp_sendrecv_router_port'>
+corenetwork</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>corenet_udp_sendrecv_router_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Send and receive UDP traffic on the router port.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_corenetwork.html#link_corenet_udp_sendrecv_rsh_port'>
corenetwork</a><p/>
Layer: <a href='kernel.html'>
@@ -24586,58 +24966,6 @@ Unconfined access to network objects.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_corenetwork.html#link_corenet_use_ppp_device'>
-corenetwork</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>corenet_use_ppp_device</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Read and write the point-to-point device.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_corenetwork.html#link_corenet_use_tun_tap_device'>
-corenetwork</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>corenet_use_tun_tap_device</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Read and write the TUN/TAP virtual network device.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
Module: <a href='services_cpucontrol.html#link_cpucontrol_stub'>
cpucontrol</a><p/>
Layer: <a href='services.html'>
@@ -24649,12 +24977,8 @@ services</a><p/>
- [
-
domain
- ]
-
)<br>
</div>
@@ -24668,13 +24992,13 @@ CPUcontrol stub interface. No access allowed.
</div>
<div id="interfacesmall">
-Module: <a href='services_cron.html#link_cron_crw_tcp_socket'>
+Module: <a href='services_cron.html#link_cron_anacron_domtrans_system_job'>
cron</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>cron_crw_tcp_socket</b>(
+<b>cron_anacron_domtrans_system_job</b>(
@@ -24687,20 +25011,20 @@ services</a><p/>
<div id="description">
<p>
-Create, read, and write a cron daemon TCP socket.
+Execute APM in the apm domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_cron.html#link_cron_domtrans_anacron_system_job'>
+Module: <a href='services_cron.html#link_cron_dontaudit_append_system_job_tmp_files'>
cron</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>cron_domtrans_anacron_system_job</b>(
+<b>cron_dontaudit_append_system_job_tmp_files</b>(
@@ -24713,20 +25037,21 @@ services</a><p/>
<div id="description">
<p>
-Execute APM in the apm domain.
+Do not audit attempts to append temporary
+files from the system cron jobs.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_cron.html#link_cron_dontaudit_append_system_job_tmp_files'>
+Module: <a href='services_cron.html#link_cron_dontaudit_write_pipes'>
cron</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>cron_dontaudit_append_system_job_tmp_files</b>(
+<b>cron_dontaudit_write_pipes</b>(
@@ -24739,21 +25064,20 @@ services</a><p/>
<div id="description">
<p>
-Do not audit attempts to append temporary
-files from the system cron jobs.
+Do not audit attempts to write cron daemon unnamed pipes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_cron.html#link_cron_dontaudit_write_pipe'>
+Module: <a href='services_cron.html#link_cron_read_pipes'>
cron</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>cron_dontaudit_write_pipe</b>(
+<b>cron_read_pipes</b>(
@@ -24766,20 +25090,20 @@ services</a><p/>
<div id="description">
<p>
-Do not audit attempts to write cron daemon unnamed pipes.
+Read a cron daemon unnamed pipe.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_cron.html#link_cron_read_pipe'>
+Module: <a href='services_cron.html#link_cron_read_system_job_tmp_files'>
cron</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>cron_read_pipe</b>(
+<b>cron_read_system_job_tmp_files</b>(
@@ -24792,20 +25116,20 @@ services</a><p/>
<div id="description">
<p>
-Read a cron daemon unnamed pipe.
+Read temporary files from the system cron jobs.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_cron.html#link_cron_read_system_job_tmp_files'>
+Module: <a href='services_cron.html#link_cron_rw_pipes'>
cron</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>cron_read_system_job_tmp_files</b>(
+<b>cron_rw_pipes</b>(
@@ -24818,20 +25142,20 @@ services</a><p/>
<div id="description">
<p>
-Read temporary files from the system cron jobs.
+Read and write a cron daemon unnamed pipe.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_cron.html#link_cron_rw_pipe'>
+Module: <a href='services_cron.html#link_cron_rw_system_job_pipes'>
cron</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>cron_rw_pipe</b>(
+<b>cron_rw_system_job_pipes</b>(
@@ -24844,20 +25168,20 @@ services</a><p/>
<div id="description">
<p>
-Read and write a cron daemon unnamed pipe.
+Read and write a system cron job unnamed pipe.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_cron.html#link_cron_rw_system_job_pipe'>
+Module: <a href='services_cron.html#link_cron_rw_tcp_sockets'>
cron</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>cron_rw_system_job_pipe</b>(
+<b>cron_rw_tcp_sockets</b>(
@@ -24870,7 +25194,7 @@ services</a><p/>
<div id="description">
<p>
-Read and write a system cron job unnamed pipe.
+Read, and write cron daemon TCP sockets.
</p>
</div>
@@ -24964,13 +25288,13 @@ from the system cron jobs.
</div>
<div id="interfacesmall">
-Module: <a href='services_cron.html#link_cron_use_fd'>
+Module: <a href='services_cron.html#link_cron_use_fds'>
cron</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>cron_use_fd</b>(
+<b>cron_use_fds</b>(
@@ -24991,13 +25315,13 @@ from the cron daemon.
</div>
<div id="interfacesmall">
-Module: <a href='services_cron.html#link_cron_use_system_job_fd'>
+Module: <a href='services_cron.html#link_cron_use_system_job_fds'>
cron</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>cron_use_system_job_fd</b>(
+<b>cron_use_system_job_fds</b>(
@@ -25018,13 +25342,13 @@ from system cron jobs.
</div>
<div id="interfacesmall">
-Module: <a href='services_cron.html#link_cron_write_system_job_pipe'>
+Module: <a href='services_cron.html#link_cron_write_system_job_pipes'>
cron</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>cron_write_system_job_pipe</b>(
+<b>cron_write_system_job_pipes</b>(
@@ -25150,6 +25474,32 @@ Execute cups_config in the cups_config domain.
</div>
<div id="interfacesmall">
+Module: <a href='services_cups.html#link_cups_read_config'>
+cups</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>cups_read_config</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read cups configuration files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='services_cups.html#link_cups_read_log'>
cups</a><p/>
Layer: <a href='services.html'>
@@ -25255,6 +25605,58 @@ Connect to ptal over an unix domain stream socket.
</div>
<div id="interfacesmall">
+Module: <a href='services_cups.html#link_cups_tcp_connect'>
+cups</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>cups_tcp_connect</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Connect to cups over TCP.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_cups.html#link_cups_write_log'>
+cups</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>cups_write_log</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Write cups log files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='services_cvs.html#link_cvs_read_data'>
cvs</a><p/>
Layer: <a href='services.html'>
@@ -25551,13 +25953,13 @@ Read dbus configuration.
</div>
<div id="interfacesmall">
-Module: <a href='services_dbus.html#link_dbus_send_system_bus_msg'>
+Module: <a href='services_dbus.html#link_dbus_send_system_bus'>
dbus</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>dbus_send_system_bus_msg</b>(
+<b>dbus_send_system_bus</b>(
@@ -25588,12 +25990,8 @@ services</a><p/>
- [
-
domain
- ]
-
)<br>
</div>
@@ -25739,7 +26137,7 @@ kernel</a><p/>
- domain
+ file_type
)<br>
@@ -25747,20 +26145,20 @@ kernel</a><p/>
<div id="description">
<p>
-Mount a usbfs filesystem.
+Associate a file to a usbfs filesystem.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_create_cardmgr'>
+Module: <a href='kernel_devices.html#link_dev_create_cardmgr_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_create_cardmgr</b>(
+<b>dev_create_cardmgr_dev</b>(
@@ -25782,39 +26180,13 @@ with the correct type.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_create_dir'>
-devices</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>dev_create_dir</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Create a directory in the device directory.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_create_generic_chr_file'>
+Module: <a href='kernel_devices.html#link_dev_create_generic_chr_files'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_create_generic_chr_file</b>(
+<b>dev_create_generic_chr_files</b>(
@@ -25834,13 +26206,13 @@ Allow read, write, and create for generic character device files.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_del_generic_symlinks'>
+Module: <a href='kernel_devices.html#link_dev_create_generic_dirs'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_del_generic_symlinks</b>(
+<b>dev_create_generic_dirs</b>(
@@ -25853,20 +26225,20 @@ kernel</a><p/>
<div id="description">
<p>
-Delete symbolic links in device directories.
+Create a directory in the device directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_delete_generic_file'>
+Module: <a href='kernel_devices.html#link_dev_delete_generic_files'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_delete_generic_file</b>(
+<b>dev_delete_generic_files</b>(
@@ -25886,13 +26258,39 @@ Delete generic files in /dev.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_delete_lvm_control'>
+Module: <a href='kernel_devices.html#link_dev_delete_generic_symlinks'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_delete_lvm_control</b>(
+<b>dev_delete_generic_symlinks</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Delete symbolic links in device directories.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_devices.html#link_dev_delete_lvm_control_dev'>
+devices</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>dev_delete_lvm_control_dev</b>(
@@ -25964,13 +26362,13 @@ Dontaudit getattr on all character file device nodes.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_getattr_apm_bios'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_getattr_apm_bios_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_getattr_apm_bios</b>(
+<b>dev_dontaudit_getattr_apm_bios_dev</b>(
@@ -25991,13 +26389,13 @@ the apm bios device node.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_getattr_generic_blk_file'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_getattr_generic_blk_files'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_getattr_generic_blk_file</b>(
+<b>dev_dontaudit_getattr_generic_blk_files</b>(
@@ -26017,13 +26415,13 @@ Dontaudit getattr on generic block devices.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_getattr_generic_chr_file'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_getattr_generic_chr_files'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_getattr_generic_chr_file</b>(
+<b>dev_dontaudit_getattr_generic_chr_files</b>(
@@ -26043,13 +26441,13 @@ Dontaudit getattr for generic character device files.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_getattr_generic_pipe'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_getattr_generic_pipes'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_getattr_generic_pipe</b>(
+<b>dev_dontaudit_getattr_generic_pipes</b>(
@@ -26095,13 +26493,13 @@ dontaudit getattr raw memory devices (e.g. /dev/mem).
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_getattr_misc'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_getattr_misc_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_getattr_misc</b>(
+<b>dev_dontaudit_getattr_misc_dev</b>(
@@ -26122,13 +26520,13 @@ of miscellaneous devices.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_getattr_scanner'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_getattr_scanner_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_getattr_scanner</b>(
+<b>dev_dontaudit_getattr_scanner_dev</b>(
@@ -26149,13 +26547,13 @@ the scanner device.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_getattr_usbfs_dir'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_getattr_usbfs_dirs'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_getattr_usbfs_dir</b>(
+<b>dev_dontaudit_getattr_usbfs_dirs</b>(
@@ -26307,6 +26705,33 @@ Do not audit attempts to read the framebuffer.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_devices.html#link_dev_dontaudit_read_rand'>
+devices</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>dev_dontaudit_read_rand</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to read from random
+number generator devices (e.g., /dev/random)
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_devices.html#link_dev_dontaudit_rw_cardmgr'>
devices</a><p/>
Layer: <a href='kernel.html'>
@@ -26334,13 +26759,13 @@ write the PCMCIA card manager device.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_rw_dri_dev'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_rw_dri'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_rw_dri_dev</b>(
+<b>dev_dontaudit_rw_dri</b>(
@@ -26386,6 +26811,32 @@ Dontaudit getattr for generic device files.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_devices.html#link_dev_dontaudit_rw_misc'>
+devices</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>dev_dontaudit_rw_misc</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to read and write miscellaneous devices.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_devices.html#link_dev_dontaudit_search_sysfs'>
devices</a><p/>
Layer: <a href='kernel.html'>
@@ -26412,13 +26863,13 @@ Do not audit attempts to search sysfs.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_setattr_apm_bios'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_setattr_apm_bios_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_setattr_apm_bios</b>(
+<b>dev_dontaudit_setattr_apm_bios_dev</b>(
@@ -26439,13 +26890,13 @@ the apm bios device node.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_setattr_framebuffer'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_setattr_framebuffer_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_setattr_framebuffer</b>(
+<b>dev_dontaudit_setattr_framebuffer_dev</b>(
@@ -26466,13 +26917,13 @@ of the framebuffer device node.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_setattr_generic_blk_file'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_setattr_generic_blk_files'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_setattr_generic_blk_file</b>(
+<b>dev_dontaudit_setattr_generic_blk_files</b>(
@@ -26492,13 +26943,13 @@ Dontaudit setattr on generic block devices.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_setattr_generic_chr_file'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_setattr_generic_chr_files'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_setattr_generic_chr_file</b>(
+<b>dev_dontaudit_setattr_generic_chr_files</b>(
@@ -26518,13 +26969,13 @@ Dontaudit setattr for generic character device files.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_setattr_generic_symlink'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_setattr_generic_symlinks'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_setattr_generic_symlink</b>(
+<b>dev_dontaudit_setattr_generic_symlinks</b>(
@@ -26545,13 +26996,13 @@ of symbolic links in device directories (/dev).
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_setattr_misc'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_setattr_misc_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_setattr_misc</b>(
+<b>dev_dontaudit_setattr_misc_dev</b>(
@@ -26572,13 +27023,13 @@ of miscellaneous devices.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_dontaudit_setattr_scanner'>
+Module: <a href='kernel_devices.html#link_dev_dontaudit_setattr_scanner_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_dontaudit_setattr_scanner</b>(
+<b>dev_dontaudit_setattr_scanner_dev</b>(
@@ -26626,13 +27077,13 @@ of video4linux device nodes.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_filetrans_dev_node'>
+Module: <a href='kernel_devices.html#link_dev_filetrans'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_filetrans_dev_node</b>(
+<b>dev_filetrans</b>(
@@ -26747,13 +27198,13 @@ Getattr on all character file device nodes.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_getattr_apm_bios'>
+Module: <a href='kernel_devices.html#link_dev_getattr_apm_bios_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_getattr_apm_bios</b>(
+<b>dev_getattr_apm_bios_dev</b>(
@@ -26773,13 +27224,13 @@ Get the attributes of the apm bios device node.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_getattr_cpu'>
+Module: <a href='kernel_devices.html#link_dev_getattr_cpu_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_getattr_cpu</b>(
+<b>dev_getattr_cpu_dev</b>(
@@ -26800,13 +27251,39 @@ microcode and id interfaces.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_getattr_framebuffer'>
+Module: <a href='kernel_devices.html#link_dev_getattr_dri_dev'>
+devices</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>dev_getattr_dri_dev</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+getattr the dri devices.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_devices.html#link_dev_getattr_framebuffer_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_getattr_framebuffer</b>(
+<b>dev_getattr_framebuffer_dev</b>(
@@ -26826,13 +27303,13 @@ Get the attributes of the framebuffer device node.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_getattr_generic_blk_file'>
+Module: <a href='kernel_devices.html#link_dev_getattr_generic_blk_files'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_getattr_generic_blk_file</b>(
+<b>dev_getattr_generic_blk_files</b>(
@@ -26852,13 +27329,13 @@ Allow getattr on generic block devices.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_getattr_generic_chr_file'>
+Module: <a href='kernel_devices.html#link_dev_getattr_generic_chr_files'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_getattr_generic_chr_file</b>(
+<b>dev_getattr_generic_chr_files</b>(
@@ -26878,13 +27355,13 @@ Allow getattr for generic character device files.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_getattr_misc'>
+Module: <a href='kernel_devices.html#link_dev_getattr_misc_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_getattr_misc</b>(
+<b>dev_getattr_misc_dev</b>(
@@ -26904,13 +27381,13 @@ Get the attributes of miscellaneous devices.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_getattr_mouse'>
+Module: <a href='kernel_devices.html#link_dev_getattr_mouse_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_getattr_mouse</b>(
+<b>dev_getattr_mouse_dev</b>(
@@ -26930,13 +27407,13 @@ Get the attributes of the mouse devices.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_getattr_mtrr'>
+Module: <a href='kernel_devices.html#link_dev_getattr_mtrr_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_getattr_mtrr</b>(
+<b>dev_getattr_mtrr_dev</b>(
@@ -26956,13 +27433,13 @@ Get the attributes of the mtrr device.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_getattr_power_management'>
+Module: <a href='kernel_devices.html#link_dev_getattr_power_mgmt_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_getattr_power_management</b>(
+<b>dev_getattr_power_mgmt_dev</b>(
@@ -26982,13 +27459,13 @@ Get the attributes of the the power management device.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_getattr_scanner'>
+Module: <a href='kernel_devices.html#link_dev_getattr_scanner_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_getattr_scanner</b>(
+<b>dev_getattr_scanner_dev</b>(
@@ -27008,13 +27485,13 @@ Get the attributes of the scanner device.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_getattr_snd_dev'>
+Module: <a href='kernel_devices.html#link_dev_getattr_sound_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_getattr_snd_dev</b>(
+<b>dev_getattr_sound_dev</b>(
@@ -27034,13 +27511,13 @@ Get the attributes of the sound devices.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_getattr_sysfs_dir'>
+Module: <a href='kernel_devices.html#link_dev_getattr_sysfs_dirs'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_getattr_sysfs_dir</b>(
+<b>dev_getattr_sysfs_dirs</b>(
@@ -27060,13 +27537,13 @@ Get the attributes of sysfs directories.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_getattr_usbfs_dir'>
+Module: <a href='kernel_devices.html#link_dev_getattr_usbfs_dirs'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_getattr_usbfs_dir</b>(
+<b>dev_getattr_usbfs_dirs</b>(
@@ -27268,13 +27745,39 @@ Read, write, create, and delete all character device files.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_manage_cardmgr'>
+Module: <a href='kernel_devices.html#link_dev_manage_all_dev_nodes'>
+devices</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>dev_manage_all_dev_nodes</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create, delete, read, and write device nodes in device directories.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_devices.html#link_dev_manage_cardmgr_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_manage_cardmgr</b>(
+<b>dev_manage_cardmgr_dev</b>(
@@ -27295,13 +27798,13 @@ the PCMCIA card manager device.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_manage_dev_nodes'>
+Module: <a href='kernel_devices.html#link_dev_manage_dri_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_manage_dev_nodes</b>(
+<b>dev_manage_dri_dev</b>(
@@ -27314,20 +27817,20 @@ kernel</a><p/>
<div id="description">
<p>
-Create, delete, read, and write device nodes in device directories.
+Create, read, write, and delete the dri devices.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_manage_generic_blk_file'>
+Module: <a href='kernel_devices.html#link_dev_manage_generic_blk_files'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_manage_generic_blk_file</b>(
+<b>dev_manage_generic_blk_files</b>(
@@ -27347,13 +27850,13 @@ Create, delete, read, and write block device files.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_manage_generic_chr_file'>
+Module: <a href='kernel_devices.html#link_dev_manage_generic_chr_files'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_manage_generic_chr_file</b>(
+<b>dev_manage_generic_chr_files</b>(
@@ -27373,6 +27876,32 @@ Create, delete, read, and write character device files.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_devices.html#link_dev_manage_generic_files'>
+devices</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>dev_manage_generic_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create a file in the device directory.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_devices.html#link_dev_manage_generic_symlinks'>
devices</a><p/>
Layer: <a href='kernel.html'>
@@ -27653,7 +28182,8 @@ kernel</a><p/>
<div id="description">
<p>
-Read from random devices (e.g., /dev/random)
+Read from random number generator
+devices (e.g., /dev/random)
</p>
</div>
@@ -27712,13 +28242,13 @@ Read the realtime clock (/dev/rtc).
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_read_snd_dev'>
+Module: <a href='kernel_devices.html#link_dev_read_sound'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_read_snd_dev</b>(
+<b>dev_read_sound</b>(
@@ -27738,13 +28268,13 @@ Read the sound devices.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_read_snd_mixer_dev'>
+Module: <a href='kernel_devices.html#link_dev_read_sound_mixer'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_read_snd_mixer_dev</b>(
+<b>dev_read_sound_mixer</b>(
@@ -27869,13 +28399,13 @@ Allow full relabeling (to and from) of all device nodes.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_relabel_dev_dirs'>
+Module: <a href='kernel_devices.html#link_dev_relabel_generic_dev_dirs'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_relabel_dev_dirs</b>(
+<b>dev_relabel_generic_dev_dirs</b>(
@@ -27921,13 +28451,13 @@ Relabel symbolic links in device directories.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rw_agp_dev'>
+Module: <a href='kernel_devices.html#link_dev_rw_agp'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rw_agp_dev</b>(
+<b>dev_rw_agp</b>(
@@ -28052,13 +28582,13 @@ Read and write the the hardware SSL accelerator.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rw_dri_dev'>
+Module: <a href='kernel_devices.html#link_dev_rw_dri'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rw_dri_dev</b>(
+<b>dev_rw_dri</b>(
@@ -28078,13 +28608,39 @@ Read and write the dri devices.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rw_generic_file'>
+Module: <a href='kernel_devices.html#link_dev_rw_framebuffer'>
+devices</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>dev_rw_framebuffer</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read and write the framebuffer.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_devices.html#link_dev_rw_generic_files'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rw_generic_file</b>(
+<b>dev_rw_generic_files</b>(
@@ -28104,13 +28660,13 @@ Read and write generic files in /dev.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rw_lvm_control'>
+Module: <a href='kernel_devices.html#link_dev_rw_generic_usb_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rw_lvm_control</b>(
+<b>dev_rw_generic_usb_dev</b>(
@@ -28123,20 +28679,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write the lvm control device.
+Read and write generic the USB devices.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rw_mouse'>
+Module: <a href='kernel_devices.html#link_dev_rw_input_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rw_mouse</b>(
+<b>dev_rw_input_dev</b>(
@@ -28149,20 +28705,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write to mouse devices.
+Read input event devices (/dev/input).
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rw_null_dev'>
+Module: <a href='kernel_devices.html#link_dev_rw_lvm_control'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rw_null_dev</b>(
+<b>dev_rw_lvm_control</b>(
@@ -28175,20 +28731,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write to the null device (/dev/null).
+Read and write the lvm control device.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rw_power_management'>
+Module: <a href='kernel_devices.html#link_dev_rw_mouse'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rw_power_management</b>(
+<b>dev_rw_mouse</b>(
@@ -28201,20 +28757,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write the the power management device.
+Read and write to mouse devices.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rw_printer'>
+Module: <a href='kernel_devices.html#link_dev_rw_mtrr'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rw_printer</b>(
+<b>dev_rw_mtrr</b>(
@@ -28227,20 +28783,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write the printer device.
+Read and write the mtrr device.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rw_realtime_clock'>
+Module: <a href='kernel_devices.html#link_dev_rw_null'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rw_realtime_clock</b>(
+<b>dev_rw_null</b>(
@@ -28253,20 +28809,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and set the realtime clock (/dev/rtc).
+Read and write to the null device (/dev/null).
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rw_scanner'>
+Module: <a href='kernel_devices.html#link_dev_rw_power_management'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rw_scanner</b>(
+<b>dev_rw_power_management</b>(
@@ -28279,20 +28835,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write the scanner device.
+Read and write the the power management device.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rw_sysfs'>
+Module: <a href='kernel_devices.html#link_dev_rw_printer'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rw_sysfs</b>(
+<b>dev_rw_printer</b>(
@@ -28305,20 +28861,20 @@ kernel</a><p/>
<div id="description">
<p>
-Allow caller to modify hardware state information.
+Read and write the printer device.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rw_usbfs'>
+Module: <a href='kernel_devices.html#link_dev_rw_realtime_clock'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rw_usbfs</b>(
+<b>dev_rw_realtime_clock</b>(
@@ -28331,20 +28887,20 @@ kernel</a><p/>
<div id="description">
<p>
-Allow caller to modify usb hardware configuration files.
+Read and set the realtime clock (/dev/rtc).
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rw_zero_dev'>
+Module: <a href='kernel_devices.html#link_dev_rw_scanner'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rw_zero_dev</b>(
+<b>dev_rw_scanner</b>(
@@ -28357,20 +28913,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write to the zero device (/dev/zero).
+Read and write the scanner device.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rwx_zero_dev'>
+Module: <a href='kernel_devices.html#link_dev_rw_sysfs'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rwx_zero_dev</b>(
+<b>dev_rw_sysfs</b>(
@@ -28383,20 +28939,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read, write, and execute the zero device (/dev/zero).
+Allow caller to modify hardware state information.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_rx_raw_memory'>
+Module: <a href='kernel_devices.html#link_dev_rw_usbfs'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_rx_raw_memory</b>(
+<b>dev_rw_usbfs</b>(
@@ -28409,20 +28965,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and execute raw memory devices (e.g. /dev/mem).
+Allow caller to modify usb hardware configuration files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_search_sysfs'>
+Module: <a href='kernel_devices.html#link_dev_rw_xserver_misc'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_search_sysfs</b>(
+<b>dev_rw_xserver_misc</b>(
@@ -28435,20 +28991,20 @@ kernel</a><p/>
<div id="description">
<p>
-Search the sysfs directories.
+Read and write X server miscellaneous devices.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_search_usbfs'>
+Module: <a href='kernel_devices.html#link_dev_rw_zero'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_search_usbfs</b>(
+<b>dev_rw_zero</b>(
@@ -28461,20 +29017,20 @@ kernel</a><p/>
<div id="description">
<p>
-Search the directory containing USB hardware information.
+Read and write to the zero device (/dev/zero).
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_setattr_all_blk_files'>
+Module: <a href='kernel_devices.html#link_dev_rwx_zero'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_setattr_all_blk_files</b>(
+<b>dev_rwx_zero</b>(
@@ -28487,20 +29043,20 @@ kernel</a><p/>
<div id="description">
<p>
-Setattr on all block file device nodes.
+Read, write, and execute the zero device (/dev/zero).
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_setattr_all_chr_files'>
+Module: <a href='kernel_devices.html#link_dev_rx_raw_memory'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_setattr_all_chr_files</b>(
+<b>dev_rx_raw_memory</b>(
@@ -28513,20 +29069,20 @@ kernel</a><p/>
<div id="description">
<p>
-Setattr on all character file device nodes.
+Read and execute raw memory devices (e.g. /dev/mem).
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_setattr_apm_bios'>
+Module: <a href='kernel_devices.html#link_dev_search_sysfs'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_setattr_apm_bios</b>(
+<b>dev_search_sysfs</b>(
@@ -28539,20 +29095,20 @@ kernel</a><p/>
<div id="description">
<p>
-Set the attributes of the apm bios device node.
+Search the sysfs directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_setattr_dev_dir'>
+Module: <a href='kernel_devices.html#link_dev_search_usbfs'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_setattr_dev_dir</b>(
+<b>dev_search_usbfs</b>(
@@ -28565,20 +29121,20 @@ kernel</a><p/>
<div id="description">
<p>
-Set the attributes of /dev directories.
+Search the directory containing USB hardware information.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_setattr_framebuffer'>
+Module: <a href='kernel_devices.html#link_dev_setattr_all_blk_files'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_setattr_framebuffer</b>(
+<b>dev_setattr_all_blk_files</b>(
@@ -28591,20 +29147,20 @@ kernel</a><p/>
<div id="description">
<p>
-Set the attributes of the framebuffer device node.
+Setattr on all block file device nodes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_setattr_misc'>
+Module: <a href='kernel_devices.html#link_dev_setattr_all_chr_files'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_setattr_misc</b>(
+<b>dev_setattr_all_chr_files</b>(
@@ -28617,20 +29173,20 @@ kernel</a><p/>
<div id="description">
<p>
-Set the attributes of miscellaneous devices.
+Setattr on all character file device nodes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_setattr_mouse'>
+Module: <a href='kernel_devices.html#link_dev_setattr_apm_bios_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_setattr_mouse</b>(
+<b>dev_setattr_apm_bios_dev</b>(
@@ -28643,20 +29199,150 @@ kernel</a><p/>
<div id="description">
<p>
-Set the attributes of the mouse devices.
+Set the attributes of the apm bios device node.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_setattr_power_management'>
+Module: <a href='kernel_devices.html#link_dev_setattr_dri_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_setattr_power_management</b>(
+<b>dev_setattr_dri_dev</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Setattr the dri devices.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_devices.html#link_dev_setattr_framebuffer_dev'>
+devices</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>dev_setattr_framebuffer_dev</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Set the attributes of the framebuffer device node.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_devices.html#link_dev_setattr_generic_dirs'>
+devices</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>dev_setattr_generic_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Set the attributes of /dev directories.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_devices.html#link_dev_setattr_misc_dev'>
+devices</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>dev_setattr_misc_dev</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Set the attributes of miscellaneous devices.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_devices.html#link_dev_setattr_mouse_dev'>
+devices</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>dev_setattr_mouse_dev</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Set the attributes of the mouse devices.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_devices.html#link_dev_setattr_power_mgmt_dev'>
+devices</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>dev_setattr_power_mgmt_dev</b>(
@@ -28676,13 +29362,13 @@ Set the attributes of the the power management device.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_setattr_printer'>
+Module: <a href='kernel_devices.html#link_dev_setattr_printer_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_setattr_printer</b>(
+<b>dev_setattr_printer_dev</b>(
@@ -28702,13 +29388,13 @@ Set the attributes of the printer device nodes.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_setattr_scanner'>
+Module: <a href='kernel_devices.html#link_dev_setattr_scanner_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_setattr_scanner</b>(
+<b>dev_setattr_scanner_dev</b>(
@@ -28728,13 +29414,13 @@ Set the attributes of the scanner device.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_setattr_snd_dev'>
+Module: <a href='kernel_devices.html#link_dev_setattr_sound_dev'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_setattr_snd_dev</b>(
+<b>dev_setattr_sound_dev</b>(
@@ -28990,13 +29676,13 @@ Set the realtime clock (/dev/rtc).
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_write_snd_dev'>
+Module: <a href='kernel_devices.html#link_dev_write_sound'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_write_snd_dev</b>(
+<b>dev_write_sound</b>(
@@ -29016,13 +29702,13 @@ Write the sound devices.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_devices.html#link_dev_write_snd_mixer_dev'>
+Module: <a href='kernel_devices.html#link_dev_write_sound_mixer'>
devices</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>dev_write_snd_mixer_dev</b>(
+<b>dev_write_sound_mixer</b>(
@@ -29122,13 +29808,13 @@ server state files.
</div>
<div id="interfacesmall">
-Module: <a href='services_dictd.html#link_dictd_use'>
+Module: <a href='services_dictd.html#link_dictd_tcp_connect'>
dictd</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>dictd_use</b>(
+<b>dictd_tcp_connect</b>(
@@ -29650,13 +30336,13 @@ session ID of all domains.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_domain.html#link_domain_dontaudit_list_all_domains_proc'>
+Module: <a href='kernel_domain.html#link_domain_dontaudit_list_all_domains_state'>
domain</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>domain_dontaudit_list_all_domains_proc</b>(
+<b>domain_dontaudit_list_all_domains_state</b>(
@@ -29837,13 +30523,13 @@ state directory (/proc/pid) of all domains.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_domain.html#link_domain_dontaudit_use_wide_inherit_fd'>
+Module: <a href='kernel_domain.html#link_domain_dontaudit_use_interactive_fds'>
domain</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>domain_dontaudit_use_wide_inherit_fd</b>(
+<b>domain_dontaudit_use_interactive_fds</b>(
@@ -29924,6 +30610,32 @@ an entry point for the domain.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_domain.html#link_domain_entry_file_spec_domtrans'>
+domain</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>domain_entry_file_spec_domtrans</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute an entry_type in the specified domain.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_domain.html#link_domain_exec_all_entry_files'>
domain</a><p/>
Layer: <a href='kernel.html'>
@@ -30082,6 +30794,32 @@ Get the session ID of all domains.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_domain.html#link_domain_interactive_fd'>
+domain</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>domain_interactive_fd</b>(
+
+
+
+
+ ?
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Summary is missing!
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_domain.html#link_domain_kill_all_domains'>
domain</a><p/>
Layer: <a href='kernel.html'>
@@ -30161,13 +30899,13 @@ Mmap all entry point files as executable.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_domain.html#link_domain_obj_id_change_exempt'>
+Module: <a href='kernel_domain.html#link_domain_obj_id_change_exemption'>
domain</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>domain_obj_id_change_exempt</b>(
+<b>domain_obj_id_change_exemption</b>(
@@ -30319,13 +31057,13 @@ file types.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_domain.html#link_domain_role_change_exempt'>
+Module: <a href='kernel_domain.html#link_domain_role_change_exemption'>
domain</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>domain_role_change_exempt</b>(
+<b>domain_role_change_exemption</b>(
@@ -30424,13 +31162,13 @@ Send a child terminated signal to all domains.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_domain.html#link_domain_sigchld_wide_inherit_fd'>
+Module: <a href='kernel_domain.html#link_domain_sigchld_interactive_fds'>
domain</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>domain_sigchld_wide_inherit_fd</b>(
+<b>domain_sigchld_interactive_fds</b>(
@@ -30529,13 +31267,13 @@ Send a stop signal to all domains.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_domain.html#link_domain_subj_id_change_exempt'>
+Module: <a href='kernel_domain.html#link_domain_subj_id_change_exemption'>
domain</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>domain_subj_id_change_exempt</b>(
+<b>domain_subj_id_change_exemption</b>(
@@ -30556,13 +31294,13 @@ changing of user identity.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_domain.html#link_domain_system_change_exempt'>
+Module: <a href='kernel_domain.html#link_domain_system_change_exemption'>
domain</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>domain_system_change_exempt</b>(
+<b>domain_system_change_exemption</b>(
@@ -30636,13 +31374,13 @@ Unconfined access to domains.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_domain.html#link_domain_use_wide_inherit_fd'>
+Module: <a href='kernel_domain.html#link_domain_use_interactive_fds'>
domain</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>domain_use_wide_inherit_fd</b>(
+<b>domain_use_interactive_fds</b>(
@@ -30691,32 +31429,6 @@ constraints.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_domain.html#link_domain_wide_inherit_fd'>
-domain</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>domain_wide_inherit_fd</b>(
-
-
-
-
- ?
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Summary is missing!
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
Module: <a href='services_dovecot.html#link_dovecot_manage_spool'>
dovecot</a><p/>
Layer: <a href='services.html'>
@@ -30771,18 +31483,34 @@ temporary directory (/tmp).
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_config_file'>
+Module: <a href='kernel_files.html#link_files_boot_filetrans'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_config_file</b>(
+<b>files_boot_filetrans</b>(
- file_type
+ domain
+
+
+
+ ,
+
+
+
+ private_type
+
+
+
+ ,
+
+
+
+ object_class
)<br>
@@ -30790,26 +31518,26 @@ kernel</a><p/>
<div id="description">
<p>
-Make the specified type a
-configuration file.
+Create a private type object in boot
+with an automatic type transition
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_create_boot_flag'>
+Module: <a href='kernel_files.html#link_files_config_file'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_create_boot_flag</b>(
+<b>files_config_file</b>(
- ?
+ file_type
)<br>
@@ -30817,25 +31545,26 @@ kernel</a><p/>
<div id="description">
<p>
-Summary is missing!
+Make the specified type a
+configuration file.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_delete_all_locks'>
+Module: <a href='kernel_files.html#link_files_create_boot_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_delete_all_locks</b>(
+<b>files_create_boot_dirs</b>(
- ?
+ domain
)<br>
@@ -30843,20 +31572,20 @@ kernel</a><p/>
<div id="description">
<p>
-Summary is missing!
+Create directories in /boot
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_delete_all_pid_dirs'>
+Module: <a href='kernel_files.html#link_files_create_boot_flag'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_delete_all_pid_dirs</b>(
+<b>files_create_boot_flag</b>(
@@ -30876,18 +31605,18 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_delete_all_pids'>
+Module: <a href='kernel_files.html#link_files_create_kernel_img'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_delete_all_pids</b>(
+<b>files_create_kernel_img</b>(
- ?
+ domain
)<br>
@@ -30895,20 +31624,20 @@ kernel</a><p/>
<div id="description">
<p>
-Summary is missing!
+Install a kernel into the /boot directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_delete_etc_files'>
+Module: <a href='kernel_files.html#link_files_create_kernel_symbol_table'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_delete_etc_files</b>(
+<b>files_create_kernel_symbol_table</b>(
@@ -30921,20 +31650,20 @@ kernel</a><p/>
<div id="description">
<p>
-Delete system configuration files in /etc.
+Install a system.map into the /boot directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_delete_root_dir_entry'>
+Module: <a href='kernel_files.html#link_files_delete_all_locks'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_delete_root_dir_entry</b>(
+<b>files_delete_all_locks</b>(
@@ -30954,18 +31683,18 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_getattr_all_dirs'>
+Module: <a href='kernel_files.html#link_files_delete_all_pid_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_getattr_all_dirs</b>(
+<b>files_delete_all_pid_dirs</b>(
- domain
+ ?
)<br>
@@ -30973,26 +31702,25 @@ kernel</a><p/>
<div id="description">
<p>
-Do not audit attempts to get the attributes
-of all directories.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_getattr_all_files'>
+Module: <a href='kernel_files.html#link_files_delete_all_pids'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_getattr_all_files</b>(
+<b>files_delete_all_pids</b>(
- domain
+ ?
)<br>
@@ -31000,21 +31728,20 @@ kernel</a><p/>
<div id="description">
<p>
-Do not audit attempts to get the attributes
-of all files.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_getattr_all_pipes'>
+Module: <a href='kernel_files.html#link_files_delete_etc_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_getattr_all_pipes</b>(
+<b>files_delete_etc_files</b>(
@@ -31027,21 +31754,20 @@ kernel</a><p/>
<div id="description">
<p>
-Do not audit attempts to get the attributes
-of all named pipes.
+Delete system configuration files in /etc.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_getattr_all_sockets'>
+Module: <a href='kernel_files.html#link_files_delete_kernel'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_getattr_all_sockets</b>(
+<b>files_delete_kernel</b>(
@@ -31054,21 +31780,20 @@ kernel</a><p/>
<div id="description">
<p>
-Do not audit attempts to get the attributes
-of all named sockets.
+Delete a kernel from /boot.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_getattr_all_symlinks'>
+Module: <a href='kernel_files.html#link_files_delete_kernel_modules'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_getattr_all_symlinks</b>(
+<b>files_delete_kernel_modules</b>(
@@ -31081,21 +31806,234 @@ kernel</a><p/>
<div id="description">
<p>
-Do not audit attempts to get the attributes
-of all symbolic links.
+Delete kernel module files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_getattr_default_dir'>
+Module: <a href='kernel_files.html#link_files_delete_kernel_symbol_table'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_getattr_default_dir</b>(
+<b>files_delete_kernel_symbol_table</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Delete a system.map in the /boot directory.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_delete_root_dir_entry'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_delete_root_dir_entry</b>(
+
+
+
+
+ ?
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Summary is missing!
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_dontaudit_getattr_all_dirs'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_dontaudit_getattr_all_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to get the attributes
+of all directories.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_dontaudit_getattr_all_files'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_dontaudit_getattr_all_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to get the attributes
+of all files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_dontaudit_getattr_all_pipes'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_dontaudit_getattr_all_pipes</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to get the attributes
+of all named pipes.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_dontaudit_getattr_all_sockets'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_dontaudit_getattr_all_sockets</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to get the attributes
+of all named sockets.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_dontaudit_getattr_all_symlinks'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_dontaudit_getattr_all_symlinks</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to get the attributes
+of all symbolic links.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_dontaudit_getattr_boot_dirs'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_dontaudit_getattr_boot_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to get attributes
+of the /boot directory.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_dontaudit_getattr_default_dirs'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_dontaudit_getattr_default_dirs</b>(
@@ -31171,13 +32109,13 @@ attributes of the home directories root
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_getattr_non_security_blk_dev'>
+Module: <a href='kernel_files.html#link_files_dontaudit_getattr_non_security_blk_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_getattr_non_security_blk_dev</b>(
+<b>files_dontaudit_getattr_non_security_blk_files</b>(
@@ -31198,13 +32136,13 @@ of non security block devices.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_getattr_non_security_chr_dev'>
+Module: <a href='kernel_files.html#link_files_dontaudit_getattr_non_security_chr_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_getattr_non_security_chr_dev</b>(
+<b>files_dontaudit_getattr_non_security_chr_files</b>(
@@ -31333,13 +32271,13 @@ of non security symbolic links.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_getattr_pid_dir'>
+Module: <a href='kernel_files.html#link_files_dontaudit_getattr_pid_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_getattr_pid_dir</b>(
+<b>files_dontaudit_getattr_pid_dirs</b>(
@@ -31360,13 +32298,13 @@ of the /var/run directory.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_getattr_tmp_dir'>
+Module: <a href='kernel_files.html#link_files_dontaudit_getattr_tmp_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_getattr_tmp_dir</b>(
+<b>files_dontaudit_getattr_tmp_dirs</b>(
@@ -31575,13 +32513,13 @@ created on boot, such as mtab.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_read_root_file'>
+Module: <a href='kernel_files.html#link_files_dontaudit_read_root_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_read_root_file</b>(
+<b>files_dontaudit_read_root_files</b>(
@@ -31601,13 +32539,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_rw_root_chr_dev'>
+Module: <a href='kernel_files.html#link_files_dontaudit_rw_root_chr_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_rw_root_chr_dev</b>(
+<b>files_dontaudit_rw_root_chr_files</b>(
@@ -31627,13 +32565,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_rw_root_file'>
+Module: <a href='kernel_files.html#link_files_dontaudit_rw_root_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_rw_root_file</b>(
+<b>files_dontaudit_rw_root_files</b>(
@@ -31679,6 +32617,32 @@ Summary is missing!
</div>
<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_dontaudit_search_boot'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_dontaudit_search_boot</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to search the /boot directory.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_files.html#link_files_dontaudit_search_home'>
files</a><p/>
Layer: <a href='kernel.html'>
@@ -31706,13 +32670,13 @@ home directories root (/home).
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_search_isid_type_dir'>
+Module: <a href='kernel_files.html#link_files_dontaudit_search_isid_type_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_search_isid_type_dir</b>(
+<b>files_dontaudit_search_isid_type_dirs</b>(
@@ -31787,6 +32751,33 @@ the /var/run directory.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_dontaudit_search_spool'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_dontaudit_search_spool</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to search generic
+spool directories.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_files.html#link_files_dontaudit_search_src'>
files</a><p/>
Layer: <a href='kernel.html'>
@@ -31866,13 +32857,13 @@ Do not audit attempts to write to daemon runtime data files.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_dontaudit_write_var'>
+Module: <a href='kernel_files.html#link_files_dontaudit_write_var_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_dontaudit_write_var</b>(
+<b>files_dontaudit_write_var_dirs</b>(
@@ -31892,6 +32883,32 @@ Do not audit attempts to write to /var.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_etc_filetrans'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_etc_filetrans</b>(
+
+
+
+
+ ?
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Summary is missing!
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_files.html#link_files_exec_etc_files'>
files</a><p/>
Layer: <a href='kernel.html'>
@@ -31970,18 +32987,18 @@ Execute programs in /usr/src in the caller domain.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_filetrans_etc'>
+Module: <a href='kernel_files.html#link_files_getattr_all_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_filetrans_etc</b>(
+<b>files_getattr_all_dirs</b>(
- ?
+ domain
)<br>
@@ -31989,20 +33006,20 @@ kernel</a><p/>
<div id="description">
<p>
-Summary is missing!
+Get the attributes of all directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_filetrans_home'>
+Module: <a href='kernel_files.html#link_files_getattr_all_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_filetrans_home</b>(
+<b>files_getattr_all_files</b>(
@@ -32010,24 +33027,30 @@ kernel</a><p/>
domain
-
- ,
-
-
-
- home_type
-
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Get the attributes of all files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_getattr_all_pipes'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_getattr_all_pipes</b>(
- ,
-
-
- [
-
- object
- ]
+ domain
)<br>
@@ -32035,25 +33058,25 @@ kernel</a><p/>
<div id="description">
<p>
-Create objects in /home.
+Get the attributes of all named pipes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_filetrans_lock'>
+Module: <a href='kernel_files.html#link_files_getattr_all_sockets'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_filetrans_lock</b>(
+<b>files_getattr_all_sockets</b>(
- ?
+ domain
)<br>
@@ -32061,25 +33084,25 @@ kernel</a><p/>
<div id="description">
<p>
-Summary is missing!
+Get the attributes of all named sockets.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_filetrans_pid'>
+Module: <a href='kernel_files.html#link_files_getattr_all_symlinks'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_filetrans_pid</b>(
+<b>files_getattr_all_symlinks</b>(
- ?
+ domain
)<br>
@@ -32087,20 +33110,20 @@ kernel</a><p/>
<div id="description">
<p>
-Summary is missing!
+Get the attributes of all symbolic links.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_filetrans_root'>
+Module: <a href='kernel_files.html#link_files_getattr_boot_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_filetrans_root</b>(
+<b>files_getattr_boot_dirs</b>(
@@ -32108,24 +33131,30 @@ kernel</a><p/>
domain
-
- ,
-
-
-
- private type
-
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Get attributes of the /boot directory.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_getattr_default_dirs'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_getattr_default_dirs</b>(
- ,
-
- [
-
- object
-
- ]
+ domain
)<br>
@@ -32133,21 +33162,20 @@ kernel</a><p/>
<div id="description">
<p>
-Create an object in the root directory, with a private
-type.
+Getattr of directories with the default file type.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_filetrans_tmp'>
+Module: <a href='kernel_files.html#link_files_getattr_generic_locks'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_filetrans_tmp</b>(
+<b>files_getattr_generic_locks</b>(
@@ -32167,13 +33195,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_filetrans_usr'>
+Module: <a href='kernel_files.html#link_files_getattr_home_dir'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_filetrans_usr</b>(
+<b>files_getattr_home_dir</b>(
@@ -32181,45 +33209,26 @@ kernel</a><p/>
domain
-
- ,
-
-
-
- file_type
-
-
-
- ,
-
-
-
- [
-
- object_class
-
- ]
-
-
)<br>
</div>
<div id="description">
<p>
-Create objects in the /usr directory
+Get the attributes of the home directories root
+(/home).
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_filetrans_var'>
+Module: <a href='kernel_files.html#link_files_getattr_isid_type_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_filetrans_var</b>(
+<b>files_getattr_isid_type_dirs</b>(
@@ -32227,45 +33236,26 @@ kernel</a><p/>
domain
-
- ,
-
-
-
- file_type
-
-
-
- ,
-
-
-
- [
-
- object_class
-
- ]
-
-
)<br>
</div>
<div id="description">
<p>
-Create objects in the /var directory
+Getattr of directories on new filesystems
+that have not yet been labeled.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_filetrans_var_lib'>
+Module: <a href='kernel_files.html#link_files_getattr_kernel_modules'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_filetrans_var_lib</b>(
+<b>files_getattr_kernel_modules</b>(
@@ -32273,24 +33263,30 @@ kernel</a><p/>
domain
-
- ,
-
-
-
- file_type
-
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Get the attributes of kernel module files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_getattr_tmp_dirs'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_getattr_tmp_dirs</b>(
- ,
-
- [
-
- object_class
-
- ]
+ domain
)<br>
@@ -32298,20 +33294,20 @@ kernel</a><p/>
<div id="description">
<p>
-Create objects in the /var/lib directory
+Get the attributes of the tmp directory (/tmp).
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_getattr_all_dirs'>
+Module: <a href='kernel_files.html#link_files_getattr_usr_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_getattr_all_dirs</b>(
+<b>files_getattr_usr_files</b>(
@@ -32324,20 +33320,20 @@ kernel</a><p/>
<div id="description">
<p>
-Get the attributes of all directories.
+Get the attributes of files in /usr.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_getattr_all_file_type_sockets'>
+Module: <a href='kernel_files.html#link_files_getattr_var_lib_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_getattr_all_file_type_sockets</b>(
+<b>files_getattr_var_lib_dirs</b>(
@@ -32350,21 +33346,20 @@ kernel</a><p/>
<div id="description">
<p>
-Get the attributes of all sockets
-with the type of a file.
+Get the attributes of the /var/lib directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_getattr_all_files'>
+Module: <a href='kernel_files.html#link_files_home_filetrans'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_getattr_all_files</b>(
+<b>files_home_filetrans</b>(
@@ -32372,25 +33367,41 @@ kernel</a><p/>
domain
+
+ ,
+
+
+
+ home_type
+
+
+
+ ,
+
+
+
+ object
+
+
)<br>
</div>
<div id="description">
<p>
-Get the attributes of all files.
+Create objects in /home.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_getattr_all_pipes'>
+Module: <a href='kernel_files.html#link_files_kernel_modules_filetrans'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_getattr_all_pipes</b>(
+<b>files_kernel_modules_filetrans</b>(
@@ -32398,30 +33409,47 @@ kernel</a><p/>
domain
+
+ ,
+
+
+
+ private_type
+
+
+
+ ,
+
+
+
+ object_class
+
+
)<br>
</div>
<div id="description">
<p>
-Get the attributes of all named pipes.
+Create objects in the kernel module directories
+with a private type via an automatic type transition.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_getattr_all_sockets'>
+Module: <a href='kernel_files.html#link_files_list_all'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_getattr_all_sockets</b>(
+<b>files_list_all</b>(
- domain
+ ?
)<br>
@@ -32429,20 +33457,20 @@ kernel</a><p/>
<div id="description">
<p>
-Get the attributes of all named sockets.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_getattr_all_symlinks'>
+Module: <a href='kernel_files.html#link_files_list_default'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_getattr_all_symlinks</b>(
+<b>files_list_default</b>(
@@ -32455,25 +33483,25 @@ kernel</a><p/>
<div id="description">
<p>
-Get the attributes of all symbolic links.
+List contents of directories with the default file type.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_getattr_default_dir'>
+Module: <a href='kernel_files.html#link_files_list_etc'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_getattr_default_dir</b>(
+<b>files_list_etc</b>(
- domain
+ ?
)<br>
@@ -32481,25 +33509,25 @@ kernel</a><p/>
<div id="description">
<p>
-Getattr of directories with the default file type.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_getattr_generic_locks'>
+Module: <a href='kernel_files.html#link_files_list_home'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_getattr_generic_locks</b>(
+<b>files_list_home</b>(
- ?
+ domain
)<br>
@@ -32507,20 +33535,20 @@ kernel</a><p/>
<div id="description">
<p>
-Summary is missing!
+Get listing of home directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_getattr_home_dir'>
+Module: <a href='kernel_files.html#link_files_list_isid_type_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_getattr_home_dir</b>(
+<b>files_list_isid_type_dirs</b>(
@@ -32533,21 +33561,21 @@ kernel</a><p/>
<div id="description">
<p>
-Get the attributes of the home directories root
-(/home).
+List the contents of directories on new filesystems
+that have not yet been labeled.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_getattr_isid_type_dir'>
+Module: <a href='kernel_files.html#link_files_list_kernel_modules'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_getattr_isid_type_dir</b>(
+<b>files_list_kernel_modules</b>(
@@ -32560,78 +33588,25 @@ kernel</a><p/>
<div id="description">
<p>
-Getattr of directories on new filesystems
-that have not yet been labeled.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_getattr_tmp_dir'>
-files</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>files_getattr_tmp_dir</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Get the attributes of the tmp directory (/tmp).
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_getattr_usr_files'>
-files</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>files_getattr_usr_files</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Get the attributes of files in /usr.
+List the contents of the kernel module directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_getattr_var_lib_dir'>
+Module: <a href='kernel_files.html#link_files_list_mnt'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_getattr_var_lib_dir</b>(
+<b>files_list_mnt</b>(
- domain
+ ?
)<br>
@@ -32639,20 +33614,20 @@ kernel</a><p/>
<div id="description">
<p>
-Get the attributes of the /var/lib directory.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_all'>
+Module: <a href='kernel_files.html#link_files_list_non_security'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_list_all</b>(
+<b>files_list_non_security</b>(
@@ -32665,20 +33640,20 @@ kernel</a><p/>
<div id="description">
<p>
-List the contents of all directories.
+List all non-security directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_all_dirs'>
+Module: <a href='kernel_files.html#link_files_list_pids'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_list_all_dirs</b>(
+<b>files_list_pids</b>(
@@ -32698,18 +33673,18 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_default'>
+Module: <a href='kernel_files.html#link_files_list_root'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_list_default</b>(
+<b>files_list_root</b>(
- domain
+ ?
)<br>
@@ -32717,20 +33692,20 @@ kernel</a><p/>
<div id="description">
<p>
-List contents of directories with the default file type.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_etc'>
+Module: <a href='kernel_files.html#link_files_list_spool'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_list_etc</b>(
+<b>files_list_spool</b>(
@@ -32750,13 +33725,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_home'>
+Module: <a href='kernel_files.html#link_files_list_tmp'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_list_home</b>(
+<b>files_list_tmp</b>(
@@ -32769,20 +33744,20 @@ kernel</a><p/>
<div id="description">
<p>
-Get listing of home directories.
+Read the tmp directory (/tmp).
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_isid_type_dir'>
+Module: <a href='kernel_files.html#link_files_list_usr'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_list_isid_type_dir</b>(
+<b>files_list_usr</b>(
@@ -32795,26 +33770,26 @@ kernel</a><p/>
<div id="description">
<p>
-List the contents of directories on new filesystems
-that have not yet been labeled.
+List the contents of generic
+directories in /usr.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_mnt'>
+Module: <a href='kernel_files.html#link_files_list_var'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_list_mnt</b>(
+<b>files_list_var</b>(
- ?
+ domain
)<br>
@@ -32822,20 +33797,20 @@ kernel</a><p/>
<div id="description">
<p>
-Summary is missing!
+List the contents of /var.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_non_security'>
+Module: <a href='kernel_files.html#link_files_list_var_lib'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_list_non_security</b>(
+<b>files_list_var_lib</b>(
@@ -32848,25 +33823,25 @@ kernel</a><p/>
<div id="description">
<p>
-List all non-security directories.
+List the contents of the /var/lib directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_pids'>
+Module: <a href='kernel_files.html#link_files_list_world_readable'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_list_pids</b>(
+<b>files_list_world_readable</b>(
- ?
+ domain
)<br>
@@ -32874,20 +33849,20 @@ kernel</a><p/>
<div id="description">
<p>
-Summary is missing!
+List world-readable directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_root'>
+Module: <a href='kernel_files.html#link_files_lock_file'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_list_root</b>(
+<b>files_lock_file</b>(
@@ -32907,13 +33882,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_spool'>
+Module: <a href='kernel_files.html#link_files_lock_filetrans'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_list_spool</b>(
+<b>files_lock_filetrans</b>(
@@ -32933,13 +33908,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_tmp'>
+Module: <a href='kernel_files.html#link_files_manage_all_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_list_tmp</b>(
+<b>files_manage_all_files</b>(
@@ -32947,57 +33922,12 @@ kernel</a><p/>
domain
- )<br>
-</div>
-
-<div id="description">
-<p>
-Read the tmp directory (/tmp).
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_usr'>
-files</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>files_list_usr</b>(
-
-
-
-
- domain
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-List the contents of generic
-directories in /usr.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_var'>
-files</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>files_list_var</b>(
-
+ ,
- domain
+ exception_types
)<br>
@@ -33005,20 +33935,21 @@ kernel</a><p/>
<div id="description">
<p>
-List the contents of /var.
+Manage all files on the filesystem, except
+the listed exceptions.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_var_lib'>
+Module: <a href='kernel_files.html#link_files_manage_boot_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_list_var_lib</b>(
+<b>files_manage_boot_files</b>(
@@ -33031,20 +33962,21 @@ kernel</a><p/>
<div id="description">
<p>
-List the contents of the /var/lib directory.
+Create, read, write, and delete files
+in the /boot directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_list_world_readable'>
+Module: <a href='kernel_files.html#link_files_manage_boot_symlinks'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_list_world_readable</b>(
+<b>files_manage_boot_symlinks</b>(
@@ -33057,20 +33989,21 @@ kernel</a><p/>
<div id="description">
<p>
-List world-readable directories.
+Create, read, write, and delete symbolic links
+in the /boot directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_lock_file'>
+Module: <a href='kernel_files.html#link_files_manage_etc_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_lock_file</b>(
+<b>files_manage_etc_files</b>(
@@ -33090,13 +34023,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_manage_all_files'>
+Module: <a href='kernel_files.html#link_files_manage_etc_runtime_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_manage_all_files</b>(
+<b>files_manage_etc_runtime_files</b>(
@@ -33104,38 +34037,27 @@ kernel</a><p/>
domain
-
- ,
-
-
-
- [
-
- exception_types
-
- ]
-
-
)<br>
</div>
<div id="description">
<p>
-Manage all files on the filesystem, except
-the listed exceptions.
+Create, read, write, and delete files in
+/etc that are dynamically created on boot,
+such as mtab.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_manage_etc_files'>
+Module: <a href='kernel_files.html#link_files_manage_generic_locks'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_manage_etc_files</b>(
+<b>files_manage_generic_locks</b>(
@@ -33155,41 +34077,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_manage_etc_runtime_files'>
-files</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>files_manage_etc_runtime_files</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Create, read, write, and delete files in
-/etc that are dynamically created on boot,
-such as mtab.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_manage_generic_locks'>
+Module: <a href='kernel_files.html#link_files_manage_generic_spool'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_manage_generic_locks</b>(
+<b>files_manage_generic_spool</b>(
@@ -33235,18 +34129,18 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_manage_generic_spools'>
+Module: <a href='kernel_files.html#link_files_manage_isid_type_blk_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_manage_generic_spools</b>(
+<b>files_manage_isid_type_blk_files</b>(
- ?
+ domain
)<br>
@@ -33254,20 +34148,21 @@ kernel</a><p/>
<div id="description">
<p>
-Summary is missing!
+Create, read, write, and delete block device nodes
+on new filesystems that have not yet been labeled.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_manage_isid_type_blk_node'>
+Module: <a href='kernel_files.html#link_files_manage_isid_type_chr_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_manage_isid_type_blk_node</b>(
+<b>files_manage_isid_type_chr_files</b>(
@@ -33280,7 +34175,7 @@ kernel</a><p/>
<div id="description">
<p>
-Create, read, write, and delete block device nodes
+Create, read, write, and delete character device nodes
on new filesystems that have not yet been labeled.
</p>
</div>
@@ -33288,13 +34183,13 @@ on new filesystems that have not yet been labeled.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_manage_isid_type_chr_node'>
+Module: <a href='kernel_files.html#link_files_manage_isid_type_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_manage_isid_type_chr_node</b>(
+<b>files_manage_isid_type_dirs</b>(
@@ -33307,7 +34202,7 @@ kernel</a><p/>
<div id="description">
<p>
-Create, read, write, and delete character device nodes
+Create, read, write, and delete directories
on new filesystems that have not yet been labeled.
</p>
</div>
@@ -33315,13 +34210,13 @@ on new filesystems that have not yet been labeled.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_manage_isid_type_dir'>
+Module: <a href='kernel_files.html#link_files_manage_isid_type_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_manage_isid_type_dir</b>(
+<b>files_manage_isid_type_files</b>(
@@ -33334,7 +34229,7 @@ kernel</a><p/>
<div id="description">
<p>
-Create, read, write, and delete directories
+Create, read, write, and delete files
on new filesystems that have not yet been labeled.
</p>
</div>
@@ -33342,13 +34237,13 @@ on new filesystems that have not yet been labeled.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_manage_isid_type_file'>
+Module: <a href='kernel_files.html#link_files_manage_isid_type_symlinks'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_manage_isid_type_file</b>(
+<b>files_manage_isid_type_symlinks</b>(
@@ -33361,7 +34256,7 @@ kernel</a><p/>
<div id="description">
<p>
-Create, read, write, and delete files
+Create, read, write, and delete symbolic links
on new filesystems that have not yet been labeled.
</p>
</div>
@@ -33369,13 +34264,13 @@ on new filesystems that have not yet been labeled.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_manage_isid_type_symlink'>
+Module: <a href='kernel_files.html#link_files_manage_kernel_modules'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_manage_isid_type_symlink</b>(
+<b>files_manage_kernel_modules</b>(
@@ -33388,8 +34283,8 @@ kernel</a><p/>
<div id="description">
<p>
-Create, read, write, and delete symbolic links
-on new filesystems that have not yet been labeled.
+Create, read, write, and delete
+kernel module files.
</p>
</div>
@@ -33739,13 +34634,13 @@ Mount a filesystem on a directory with the default file type.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_mounton_isid_type_dir'>
+Module: <a href='kernel_files.html#link_files_mounton_isid_type_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_mounton_isid_type_dir</b>(
+<b>files_mounton_isid_type_dirs</b>(
@@ -33844,6 +34739,32 @@ Summary is missing!
</div>
<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_pid_filetrans'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_pid_filetrans</b>(
+
+
+
+
+ ?
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Summary is missing!
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_files.html#link_files_poly'>
files</a><p/>
Layer: <a href='kernel.html'>
@@ -34013,13 +34934,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_read_all_blk_nodes'>
+Module: <a href='kernel_files.html#link_files_read_all_blk_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_read_all_blk_nodes</b>(
+<b>files_read_all_blk_files</b>(
@@ -34039,13 +34960,13 @@ Read all block nodes with file types.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_read_all_chr_nodes'>
+Module: <a href='kernel_files.html#link_files_read_all_chr_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_read_all_chr_nodes</b>(
+<b>files_read_all_chr_files</b>(
@@ -34084,12 +35005,8 @@ kernel</a><p/>
- [
-
exception_types
- ]
-
)<br>
</div>
@@ -34149,12 +35066,8 @@ kernel</a><p/>
- [
-
exception_types
- ]
-
)<br>
</div>
@@ -34266,12 +35179,8 @@ kernel</a><p/>
- [
-
exception_types
- ]
-
)<br>
</div>
@@ -34443,13 +35352,13 @@ created on boot, such as mtab.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_read_generic_spools'>
+Module: <a href='kernel_files.html#link_files_read_generic_spool'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_read_generic_spools</b>(
+<b>files_read_generic_spool</b>(
@@ -34521,13 +35430,13 @@ Read symbolic links in the tmp directory (/tmp).
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_read_isid_type_file'>
+Module: <a href='kernel_files.html#link_files_read_isid_type_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_read_isid_type_file</b>(
+<b>files_read_isid_type_files</b>(
@@ -34548,6 +35457,58 @@ that have not yet been labeled.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_read_kernel_modules'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_read_kernel_modules</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read kernel module files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_read_kernel_symbol_table'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_read_kernel_symbol_table</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read system.map in the /boot directory.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_files.html#link_files_read_non_security_files'>
files</a><p/>
Layer: <a href='kernel.html'>
@@ -34730,13 +35691,13 @@ Read generic symbolic links in /var/lib
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_read_var_symlink'>
+Module: <a href='kernel_files.html#link_files_read_var_symlinks'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_read_var_symlink</b>(
+<b>files_read_var_symlinks</b>(
@@ -34879,12 +35840,8 @@ kernel</a><p/>
- [
-
exception_types
- ]
-
)<br>
</div>
@@ -34925,6 +35882,58 @@ Relabel from and to generic files in /etc.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_relabel_kernel_modules'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_relabel_kernel_modules</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Relabel from and to kernel module files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_relabelfrom_boot_files'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_relabelfrom_boot_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Relabel from files in the /boot directory.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_files.html#link_files_relabelto_all_file_type_fs'>
files</a><p/>
Layer: <a href='kernel.html'>
@@ -34977,6 +35986,76 @@ Relabel a file to the type used in /usr.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_root_filetrans'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_root_filetrans</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ private type
+
+
+
+ ,
+
+
+
+ object
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create an object in the root directory, with a private
+type.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_rw_boot_symlinks'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_rw_boot_symlinks</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read and write symbolic links
+in the /boot directory.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_files.html#link_files_rw_etc_files'>
files</a><p/>
Layer: <a href='kernel.html'>
@@ -35082,13 +36161,13 @@ Read and write generic named sockets in the tmp directory (/tmp).
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_rw_isid_type_blk_node'>
+Module: <a href='kernel_files.html#link_files_rw_isid_type_blk_files'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_rw_isid_type_blk_node</b>(
+<b>files_rw_isid_type_blk_files</b>(
@@ -35109,13 +36188,13 @@ that have not yet been labeled.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_rw_isid_type_dir'>
+Module: <a href='kernel_files.html#link_files_rw_isid_type_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_rw_isid_type_dir</b>(
+<b>files_rw_isid_type_dirs</b>(
@@ -35136,13 +36215,13 @@ that have not yet been labeled.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_rw_locks_dir'>
+Module: <a href='kernel_files.html#link_files_rw_lock_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_rw_locks_dir</b>(
+<b>files_rw_lock_dirs</b>(
@@ -35174,7 +36253,7 @@ kernel</a><p/>
- domain
+ ?
)<br>
@@ -35182,25 +36261,25 @@ kernel</a><p/>
<div id="description">
<p>
-Search all directories.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_search_all_dirs'>
+Module: <a href='kernel_files.html#link_files_search_boot'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_search_all_dirs</b>(
+<b>files_search_boot</b>(
- ?
+ domain
)<br>
@@ -35208,7 +36287,7 @@ kernel</a><p/>
<div id="description">
<p>
-Summary is missing!
+Search the /boot directory.
</p>
</div>
@@ -35293,6 +36372,32 @@ Search home directories root (/home).
</div>
<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_search_kernel_modules'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_search_kernel_modules</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Search the contents of the kernel module directories.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_files.html#link_files_search_locks'>
files</a><p/>
Layer: <a href='kernel.html'>
@@ -35304,7 +36409,7 @@ kernel</a><p/>
- ?
+ domain
)<br>
@@ -35312,7 +36417,7 @@ kernel</a><p/>
<div id="description">
<p>
-Summary is missing!
+Search the locks directory (/var/lock).
</p>
</div>
@@ -35501,18 +36606,18 @@ Search the /var/lib directory.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_search_var_lib_dir'>
+Module: <a href='kernel_files.html#link_files_security_file'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_search_var_lib_dir</b>(
+<b>files_security_file</b>(
- domain
+ file_type
)<br>
@@ -35520,25 +36625,27 @@ kernel</a><p/>
<div id="description">
<p>
-Search directories in /var/lib.
+Make the specified type a file that
+should not be dontaudited from
+browsing from user domains.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_security_file'>
+Module: <a href='kernel_files.html#link_files_setattr_all_tmp_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_security_file</b>(
+<b>files_setattr_all_tmp_dirs</b>(
- file_type
+ domain
)<br>
@@ -35546,22 +36653,20 @@ kernel</a><p/>
<div id="description">
<p>
-Make the specified type a file that
-should not be dontaudited from
-browsing from user domains.
+Set the attributes of all tmp directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_setattr_all_tmp_dirs'>
+Module: <a href='kernel_files.html#link_files_setattr_etc_dirs'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_setattr_all_tmp_dirs</b>(
+<b>files_setattr_etc_dirs</b>(
@@ -35574,25 +36679,25 @@ kernel</a><p/>
<div id="description">
<p>
-Set the attributes of all tmp directories.
+Set the attributes of the /etc directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_setattr_etc_dir'>
+Module: <a href='kernel_files.html#link_files_tmp_file'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_setattr_etc_dir</b>(
+<b>files_tmp_file</b>(
- domain
+ file_type
)<br>
@@ -35600,25 +36705,26 @@ kernel</a><p/>
<div id="description">
<p>
-Set the attributes of the /etc directories.
+Make the specified type a file
+used for temporary files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_tmp_file'>
+Module: <a href='kernel_files.html#link_files_tmp_filetrans'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_tmp_file</b>(
+<b>files_tmp_filetrans</b>(
- file_type
+ ?
)<br>
@@ -35626,8 +36732,7 @@ kernel</a><p/>
<div id="description">
<p>
-Make the specified type a file
-used for temporary files.
+Summary is missing!
</p>
</div>
@@ -35766,13 +36871,165 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='kernel_files.html#link_files_write_non_security_dir'>
+Module: <a href='kernel_files.html#link_files_usr_filetrans'>
files</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>files_write_non_security_dir</b>(
+<b>files_usr_filetrans</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ file_type
+
+
+
+ ,
+
+
+
+ object_class
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create objects in the /usr directory
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_var_filetrans'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_var_filetrans</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ file_type
+
+
+
+ ,
+
+
+
+ object_class
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create objects in the /var directory
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_var_lib_filetrans'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_var_lib_filetrans</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ file_type
+
+
+
+ ,
+
+
+
+ object_class
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create objects in the /var/lib directory
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_write_kernel_modules'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_write_kernel_modules</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Write kernel module files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_files.html#link_files_write_non_security_dirs'>
+files</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>files_write_non_security_dirs</b>(
@@ -35870,13 +37127,13 @@ Execute firstboot in the firstboot domain.
</div>
<div id="interfacesmall">
-Module: <a href='admin_firstboot.html#link_firstboot_dontaudit_use_fd'>
+Module: <a href='admin_firstboot.html#link_firstboot_dontaudit_use_fds'>
firstboot</a><p/>
Layer: <a href='admin.html'>
admin</a><p/>
<div id="codeblock">
-<b>firstboot_dontaudit_use_fd</b>(
+<b>firstboot_dontaudit_use_fds</b>(
@@ -35940,13 +37197,13 @@ allow the specified role the firstboot domain.
</div>
<div id="interfacesmall">
-Module: <a href='admin_firstboot.html#link_firstboot_use_fd'>
+Module: <a href='admin_firstboot.html#link_firstboot_use_fds'>
firstboot</a><p/>
Layer: <a href='admin.html'>
admin</a><p/>
<div id="codeblock">
-<b>firstboot_use_fd</b>(
+<b>firstboot_use_fds</b>(
@@ -35966,13 +37223,13 @@ Inherit and use a file descriptor from firstboot.
</div>
<div id="interfacesmall">
-Module: <a href='admin_firstboot.html#link_firstboot_write_pipe'>
+Module: <a href='admin_firstboot.html#link_firstboot_write_pipes'>
firstboot</a><p/>
Layer: <a href='admin.html'>
admin</a><p/>
<div id="codeblock">
-<b>firstboot_write_pipe</b>(
+<b>firstboot_write_pipes</b>(
@@ -36383,13 +37640,13 @@ of directories on a NFS filesystem.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_dontaudit_list_removable_dirs'>
+Module: <a href='kernel_filesystem.html#link_fs_dontaudit_list_removable'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_dontaudit_list_removable_dirs</b>(
+<b>fs_dontaudit_list_removable</b>(
@@ -36602,13 +37859,13 @@ files on a NFS filesystem.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_dontaudit_rw_cifs_files'>
+Module: <a href='kernel_filesystem.html#link_fs_dontaudit_read_ramfs_files'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_dontaudit_rw_cifs_files</b>(
+<b>fs_dontaudit_read_ramfs_files</b>(
@@ -36621,21 +37878,46 @@ kernel</a><p/>
<div id="description">
<p>
-Do not audit attempts to read or
-write files on a CIFS or SMB filesystem.
+Dontaudit read on a ramfs files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_dontaudit_rw_nfs_files'>
+Module: <a href='kernel_filesystem.html#link_fs_dontaudit_read_ramfs_pipes'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_dontaudit_rw_nfs_files</b>(
+<b>fs_dontaudit_read_ramfs_pipes</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Dontaudit read on a ramfs fifo_files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_filesystem.html#link_fs_dontaudit_rw_cifs_files'>
+filesystem</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>fs_dontaudit_rw_cifs_files</b>(
@@ -36649,20 +37931,20 @@ kernel</a><p/>
<div id="description">
<p>
Do not audit attempts to read or
-write files on a NFS filesystem.
+write files on a CIFS or SMB filesystem.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_dontaudit_rw_tmpfs_files'>
+Module: <a href='kernel_filesystem.html#link_fs_dontaudit_rw_nfs_files'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_dontaudit_rw_tmpfs_files</b>(
+<b>fs_dontaudit_rw_nfs_files</b>(
@@ -36675,21 +37957,21 @@ kernel</a><p/>
<div id="description">
<p>
-Do not audit attempts to read or write
-generic tmpfs files.
+Do not audit attempts to read or
+write files on a NFS filesystem.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_dontaudit_use_tmpfs_chr_dev'>
+Module: <a href='kernel_filesystem.html#link_fs_dontaudit_rw_tmpfs_files'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_dontaudit_use_tmpfs_chr_dev</b>(
+<b>fs_dontaudit_rw_tmpfs_files</b>(
@@ -36702,20 +37984,21 @@ kernel</a><p/>
<div id="description">
<p>
-dontaudit Read and write character nodes on tmpfs filesystems.
+Do not audit attempts to read or write
+generic tmpfs files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_exec_noxattr'>
+Module: <a href='kernel_filesystem.html#link_fs_dontaudit_search_ramfs'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_exec_noxattr</b>(
+<b>fs_dontaudit_search_ramfs</b>(
@@ -36728,21 +38011,20 @@ kernel</a><p/>
<div id="description">
<p>
-Execute files on a filesystem that does
-not support extended attributes.
+Dontaudit Search directories on a ramfs
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_execute_cifs_files'>
+Module: <a href='kernel_filesystem.html#link_fs_dontaudit_use_tmpfs_chr_dev'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_execute_cifs_files</b>(
+<b>fs_dontaudit_use_tmpfs_chr_dev</b>(
@@ -36755,22 +38037,20 @@ kernel</a><p/>
<div id="description">
<p>
-Execute files on a CIFS or SMB
-network filesystem, in the caller
-domain.
+dontaudit Read and write character nodes on tmpfs filesystems.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_execute_nfs_files'>
+Module: <a href='kernel_filesystem.html#link_fs_exec_cifs_files'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_execute_nfs_files</b>(
+<b>fs_exec_cifs_files</b>(
@@ -36783,25 +38063,27 @@ kernel</a><p/>
<div id="description">
<p>
-Execute files on a NFS filesystem.
+Execute files on a CIFS or SMB
+network filesystem, in the caller
+domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_filetrans_tmpfs'>
+Module: <a href='kernel_filesystem.html#link_fs_exec_nfs_files'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_filetrans_tmpfs</b>(
+<b>fs_exec_nfs_files</b>(
- ?
+ domain
)<br>
@@ -36809,20 +38091,20 @@ kernel</a><p/>
<div id="description">
<p>
-Summary is missing!
+Execute files on a NFS filesystem.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_get_all_fs_quotas'>
+Module: <a href='kernel_filesystem.html#link_fs_exec_noxattr'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_get_all_fs_quotas</b>(
+<b>fs_exec_noxattr</b>(
@@ -36835,20 +38117,21 @@ kernel</a><p/>
<div id="description">
<p>
-Get the quotas of all filesystems.
+Execute files on a filesystem that does
+not support extended attributes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_get_xattr_fs_quota'>
+Module: <a href='kernel_filesystem.html#link_fs_get_all_fs_quotas'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_get_xattr_fs_quota</b>(
+<b>fs_get_all_fs_quotas</b>(
@@ -36861,8 +38144,7 @@ kernel</a><p/>
<div id="description">
<p>
-Get the filesystem quotas of a filesystem
-with extended attributes.
+Get the quotas of all filesystems.
</p>
</div>
@@ -36888,9 +38170,8 @@ kernel</a><p/>
<div id="description">
<p>
-Get the quotas of a persistent
-filesystem which has extended
-attributes, such as ext3, JFS, or XFS.
+Get the filesystem quotas of a filesystem
+with extended attributes.
</p>
</div>
@@ -37353,13 +38634,13 @@ filesystem.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_getattr_tmpfs_dir'>
+Module: <a href='kernel_filesystem.html#link_fs_getattr_tmpfs_dirs'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_getattr_tmpfs_dir</b>(
+<b>fs_getattr_tmpfs_dirs</b>(
@@ -37487,6 +38768,32 @@ CIFS or SMB filesystem.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_filesystem.html#link_fs_list_inotifyfs'>
+filesystem</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>fs_list_inotifyfs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+List inotifyfs filesystem.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_filesystem.html#link_fs_list_nfs'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
@@ -37539,13 +38846,13 @@ Read all noxattrfs directories.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_list_tmpfs'>
+Module: <a href='kernel_filesystem.html#link_fs_list_rpc'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_list_tmpfs</b>(
+<b>fs_list_rpc</b>(
@@ -37558,20 +38865,20 @@ kernel</a><p/>
<div id="description">
<p>
-List the contents of generic tmpfs directories.
+Read directories of RPC file system pipes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_make_noxattr_fs'>
+Module: <a href='kernel_filesystem.html#link_fs_list_tmpfs'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_make_noxattr_fs</b>(
+<b>fs_list_tmpfs</b>(
@@ -37584,9 +38891,7 @@ kernel</a><p/>
<div id="description">
<p>
-Transform specified type into a filesystem
-type which does not have extended attribute
-support.
+List the contents of generic tmpfs directories.
</p>
</div>
@@ -37890,13 +39195,13 @@ on a CIFS or SMB network filesystem.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_manage_tmpfs_blk_dev'>
+Module: <a href='kernel_filesystem.html#link_fs_manage_tmpfs_blk_files'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_manage_tmpfs_blk_dev</b>(
+<b>fs_manage_tmpfs_blk_files</b>(
@@ -37917,13 +39222,13 @@ on tmpfs filesystems.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_manage_tmpfs_chr_dev'>
+Module: <a href='kernel_filesystem.html#link_fs_manage_tmpfs_chr_files'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_manage_tmpfs_chr_dev</b>(
+<b>fs_manage_tmpfs_chr_files</b>(
@@ -38403,6 +39708,34 @@ in the specified domain.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_filesystem.html#link_fs_noxattr_type'>
+filesystem</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>fs_noxattr_type</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Transform specified type into a filesystem
+type which does not have extended attribute
+support.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_filesystem.html#link_fs_read_cifs_files'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
@@ -38637,13 +39970,13 @@ Read removable storage symbolic links.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_read_rpc_dirs'>
+Module: <a href='kernel_filesystem.html#link_fs_read_rpc_files'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_read_rpc_dirs</b>(
+<b>fs_read_rpc_files</b>(
@@ -38656,20 +39989,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read directories of RPC file system pipes.
+Read files of RPC file system pipes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_read_rpc_files'>
+Module: <a href='kernel_filesystem.html#link_fs_read_rpc_sockets'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_read_rpc_files</b>(
+<b>fs_read_rpc_sockets</b>(
@@ -38682,20 +40015,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read files of RPC file system pipes.
+Read sockets of RPC file system pipes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_read_rpc_sockets'>
+Module: <a href='kernel_filesystem.html#link_fs_read_rpc_symlinks'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_read_rpc_sockets</b>(
+<b>fs_read_rpc_symlinks</b>(
@@ -38708,20 +40041,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read sockets of RPC file system pipes.
+Read symbolic links of RPC file system pipes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_read_rpc_symlinks'>
+Module: <a href='kernel_filesystem.html#link_fs_read_tmpfs_symlinks'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_read_rpc_symlinks</b>(
+<b>fs_read_tmpfs_symlinks</b>(
@@ -38734,7 +40067,7 @@ kernel</a><p/>
<div id="description">
<p>
-Read symbolic links of RPC file system pipes.
+Read tmpfs link files.
</p>
</div>
@@ -38773,13 +40106,13 @@ without specifying the interpreter.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_relabel_tmpfs_blk_dev'>
+Module: <a href='kernel_filesystem.html#link_fs_relabel_tmpfs_blk_file'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_relabel_tmpfs_blk_dev</b>(
+<b>fs_relabel_tmpfs_blk_file</b>(
@@ -38799,13 +40132,13 @@ Relabel block nodes on tmpfs filesystems.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_relabel_tmpfs_chr_dev'>
+Module: <a href='kernel_filesystem.html#link_fs_relabel_tmpfs_chr_file'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_relabel_tmpfs_chr_dev</b>(
+<b>fs_relabel_tmpfs_chr_file</b>(
@@ -39259,13 +40592,13 @@ Read and write NFS server files.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_rw_ramfs_pipe'>
+Module: <a href='kernel_filesystem.html#link_fs_rw_ramfs_pipes'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_rw_ramfs_pipe</b>(
+<b>fs_rw_ramfs_pipes</b>(
@@ -39285,13 +40618,65 @@ Read and write a named pipe on a ramfs filesystem.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_rw_tmpfs_file'>
+Module: <a href='kernel_filesystem.html#link_fs_rw_tmpfs_blk_files'>
+filesystem</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>fs_rw_tmpfs_blk_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read and write block nodes on tmpfs filesystems.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_filesystem.html#link_fs_rw_tmpfs_chr_files'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_rw_tmpfs_file</b>(
+<b>fs_rw_tmpfs_chr_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read and write character nodes on tmpfs filesystems.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_filesystem.html#link_fs_rw_tmpfs_files'>
+filesystem</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>fs_rw_tmpfs_files</b>(
@@ -39390,6 +40775,32 @@ Search directories on a CIFS or SMB filesystem.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_filesystem.html#link_fs_search_inotifyfs'>
+filesystem</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>fs_search_inotifyfs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Search inotifyfs filesystem.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_filesystem.html#link_fs_search_nfs'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
@@ -39468,13 +40879,13 @@ Search directories on a ramfs
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_search_removable_dirs'>
+Module: <a href='kernel_filesystem.html#link_fs_search_removable'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_search_removable_dirs</b>(
+<b>fs_search_removable</b>(
@@ -39494,13 +40905,13 @@ Search removable storage directories.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_search_rpc_dirs'>
+Module: <a href='kernel_filesystem.html#link_fs_search_rpc'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_search_rpc_dirs</b>(
+<b>fs_search_rpc</b>(
@@ -39572,13 +40983,13 @@ Set the quotas of all filesystems.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_set_xattr_fs_quota'>
+Module: <a href='kernel_filesystem.html#link_fs_set_xattr_fs_quotas'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_set_xattr_fs_quota</b>(
+<b>fs_set_xattr_fs_quotas</b>(
@@ -39599,13 +41010,13 @@ with extended attributes.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_setattr_tmpfs_dir'>
+Module: <a href='kernel_filesystem.html#link_fs_setattr_tmpfs_dirs'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_setattr_tmpfs_dir</b>(
+<b>fs_setattr_tmpfs_dirs</b>(
@@ -39625,6 +41036,32 @@ Set the attributes of tmpfs directories.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_filesystem.html#link_fs_tmpfs_filetrans'>
+filesystem</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>fs_tmpfs_filetrans</b>(
+
+
+
+
+ ?
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Summary is missing!
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_filesystem.html#link_fs_type'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
@@ -39993,58 +41430,6 @@ ext3, JFS, or XFS.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_use_tmpfs_blk_dev'>
-filesystem</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>fs_use_tmpfs_blk_dev</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Read and write block nodes on tmpfs filesystems.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_use_tmpfs_chr_dev'>
-filesystem</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>fs_use_tmpfs_chr_dev</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Read and write character nodes on tmpfs filesystems.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
Module: <a href='kernel_filesystem.html#link_fs_write_nfs_files'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
@@ -40071,13 +41456,13 @@ Read files on a NFS filesystem.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_write_ramfs_pipe'>
+Module: <a href='kernel_filesystem.html#link_fs_write_ramfs_pipes'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_write_ramfs_pipe</b>(
+<b>fs_write_ramfs_pipes</b>(
@@ -40097,13 +41482,13 @@ Write to named pipe on a ramfs filesystem.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_filesystem.html#link_fs_write_ramfs_socket'>
+Module: <a href='kernel_filesystem.html#link_fs_write_ramfs_sockets'>
filesystem</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>fs_write_ramfs_socket</b>(
+<b>fs_write_ramfs_sockets</b>(
@@ -40402,13 +41787,13 @@ Execute gettys in the getty domain.
</div>
<div id="interfacesmall">
-Module: <a href='system_getty.html#link_getty_modify_config'>
+Module: <a href='system_getty.html#link_getty_read_config'>
getty</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>getty_modify_config</b>(
+<b>getty_read_config</b>(
@@ -40421,20 +41806,20 @@ system</a><p/>
<div id="description">
<p>
-Allow process to edit getty config file.
+Allow process to read getty config file.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_getty.html#link_getty_read_config'>
+Module: <a href='system_getty.html#link_getty_read_log'>
getty</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>getty_read_config</b>(
+<b>getty_read_log</b>(
@@ -40447,20 +41832,20 @@ system</a><p/>
<div id="description">
<p>
-Allow process to read getty config file.
+Allow process to read getty log file.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_getty.html#link_getty_read_log'>
+Module: <a href='system_getty.html#link_getty_rw_config'>
getty</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>getty_read_log</b>(
+<b>getty_rw_config</b>(
@@ -40473,7 +41858,33 @@ system</a><p/>
<div id="description">
<p>
-Allow process to read getty log file.
+Allow process to edit getty config file.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_getty.html#link_getty_use_fds'>
+getty</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>getty_use_fds</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Inherit and use getty file descriptors.
</p>
</div>
@@ -40562,6 +41973,33 @@ control channel named socket.
</div>
<div id="interfacesmall">
+Module: <a href='services_gpm.html#link_gpm_stream_connect'>
+gpm</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>gpm_stream_connect</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Connect to GPM over a unix domain
+stream socket.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='services_hal.html#link_hal_dbus_chat'>
hal</a><p/>
Layer: <a href='services.html'>
@@ -40615,13 +42053,13 @@ Send a dbus message to hal.
</div>
<div id="interfacesmall">
-Module: <a href='services_hal.html#link_hal_dgram_sendto'>
+Module: <a href='services_hal.html#link_hal_dgram_send'>
hal</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>hal_dgram_sendto</b>(
+<b>hal_dgram_send</b>(
@@ -40842,13 +42280,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_hotplug.html#link_hotplug_dontaudit_use_fd'>
+Module: <a href='system_hotplug.html#link_hotplug_dontaudit_use_fds'>
hotplug</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>hotplug_dontaudit_use_fd</b>(
+<b>hotplug_dontaudit_use_fds</b>(
@@ -40894,13 +42332,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_hotplug.html#link_hotplug_getattr_config_dir'>
+Module: <a href='system_hotplug.html#link_hotplug_getattr_config_dirs'>
hotplug</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>hotplug_getattr_config_dir</b>(
+<b>hotplug_getattr_config_dirs</b>(
@@ -40972,13 +42410,13 @@ Search the hotplug configuration directory.
</div>
<div id="interfacesmall">
-Module: <a href='system_hotplug.html#link_hotplug_use_fd'>
+Module: <a href='system_hotplug.html#link_hotplug_use_fds'>
hotplug</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>hotplug_use_fd</b>(
+<b>hotplug_use_fds</b>(
@@ -41110,13 +42548,13 @@ Run inetd child process in the inet child domain
</div>
<div id="interfacesmall">
-Module: <a href='services_inetd.html#link_inetd_rw_tcp_socket'>
+Module: <a href='services_inetd.html#link_inetd_rw_tcp_sockets'>
inetd</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>inetd_rw_tcp_socket</b>(
+<b>inetd_rw_tcp_sockets</b>(
@@ -41230,13 +42668,13 @@ Define the specified domain as a TCP inetd service.
</div>
<div id="interfacesmall">
-Module: <a href='services_inetd.html#link_inetd_udp_sendto'>
+Module: <a href='services_inetd.html#link_inetd_udp_send'>
inetd</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>inetd_udp_sendto</b>(
+<b>inetd_udp_send</b>(
@@ -41290,13 +42728,13 @@ Define the specified domain as a UDP inetd service.
</div>
<div id="interfacesmall">
-Module: <a href='services_inetd.html#link_inetd_use_fd'>
+Module: <a href='services_inetd.html#link_inetd_use_fds'>
inetd</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>inetd_use_fd</b>(
+<b>inetd_use_fds</b>(
@@ -41490,13 +42928,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_dontaudit_lock_pid'>
+Module: <a href='system_init.html#link_init_dontaudit_lock_utmp'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_dontaudit_lock_pid</b>(
+<b>init_dontaudit_lock_utmp</b>(
@@ -41517,13 +42955,13 @@ init script pid files.
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_dontaudit_rw_script_pid'>
+Module: <a href='system_init.html#link_init_dontaudit_rw_initctl'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_dontaudit_rw_script_pid</b>(
+<b>init_dontaudit_rw_initctl</b>(
@@ -41543,18 +42981,18 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_dontaudit_unix_connect_script'>
+Module: <a href='system_init.html#link_init_dontaudit_rw_utmp'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_dontaudit_unix_connect_script</b>(
+<b>init_dontaudit_rw_utmp</b>(
- domain
+ ?
)<br>
@@ -41562,26 +43000,25 @@ system</a><p/>
<div id="description">
<p>
-Dont audit the specified domain connecting to
-init scripts with a unix domain stream socket.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_dontaudit_use_fd'>
+Module: <a href='system_init.html#link_init_dontaudit_stream_connect_script'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_dontaudit_use_fd</b>(
+<b>init_dontaudit_stream_connect_script</b>(
- ?
+ domain
)<br>
@@ -41589,20 +43026,21 @@ system</a><p/>
<div id="description">
<p>
-Summary is missing!
+Dont audit the specified domain connecting to
+init scripts with a unix domain stream socket.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_dontaudit_use_initctl'>
+Module: <a href='system_init.html#link_init_dontaudit_use_fds'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_dontaudit_use_initctl</b>(
+<b>init_dontaudit_use_fds</b>(
@@ -41622,13 +43060,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_dontaudit_use_script_fd'>
+Module: <a href='system_init.html#link_init_dontaudit_use_script_fds'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_dontaudit_use_script_fd</b>(
+<b>init_dontaudit_use_script_fds</b>(
@@ -41648,13 +43086,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_dontaudit_use_script_pty'>
+Module: <a href='system_init.html#link_init_dontaudit_use_script_ptys'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_dontaudit_use_script_pty</b>(
+<b>init_dontaudit_use_script_ptys</b>(
@@ -41675,13 +43113,13 @@ write the init script pty.
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_dontaudit_write_script_pid'>
+Module: <a href='system_init.html#link_init_dontaudit_write_utmp'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_dontaudit_write_script_pid</b>(
+<b>init_dontaudit_write_utmp</b>(
@@ -41727,13 +43165,13 @@ Execute the init program in the caller domain.
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_exec_script'>
+Module: <a href='system_init.html#link_init_exec_script_files'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_exec_script</b>(
+<b>init_exec_script_files</b>(
@@ -41753,38 +43191,44 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_filetrans_script_tmp'>
+Module: <a href='system_init.html#link_init_getattr_initctl'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_filetrans_script_tmp</b>(
+<b>init_getattr_initctl</b>(
- domain
+ ?
-
- ,
-
-
-
- file_type
-
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Summary is missing!
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_init.html#link_init_getattr_script_files'>
+init</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>init_getattr_script_files</b>(
- ,
-
-
- [
-
- object_class
- ]
+ domain
)<br>
@@ -41792,26 +43236,25 @@ system</a><p/>
<div id="description">
<p>
-Create files in a init script
-temporary data directory.
+Get the attribute of init script entrypoint files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_get_process_group'>
+Module: <a href='system_init.html#link_init_getattr_utmp'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_get_process_group</b>(
+<b>init_getattr_utmp</b>(
- ?
+ domain
)<br>
@@ -41819,20 +43262,20 @@ system</a><p/>
<div id="description">
<p>
-Summary is missing!
+Get the attributes of init script process id files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_get_script_process_group'>
+Module: <a href='system_init.html#link_init_getpgid'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_get_script_process_group</b>(
+<b>init_getpgid</b>(
@@ -41852,13 +43295,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_getattr_initctl'>
+Module: <a href='system_init.html#link_init_getpgid_script'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_getattr_initctl</b>(
+<b>init_getpgid_script</b>(
@@ -41878,13 +43321,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_getattr_script_entry_file'>
+Module: <a href='system_init.html#link_init_manage_utmp'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_getattr_script_entry_file</b>(
+<b>init_manage_utmp</b>(
@@ -41897,20 +43340,20 @@ system</a><p/>
<div id="description">
<p>
-Get the attribute of init script entrypoint files.
+Create, read, write, and delete utmp.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_getattr_script_pids'>
+Module: <a href='system_init.html#link_init_read_script_files'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_getattr_script_pids</b>(
+<b>init_read_script_files</b>(
@@ -41923,20 +43366,20 @@ system</a><p/>
<div id="description">
<p>
-Get the attributes of init script process id files.
+Read init scripts.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_list_script_pids'>
+Module: <a href='system_init.html#link_init_read_script_state'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_list_script_pids</b>(
+<b>init_read_script_state</b>(
@@ -41949,26 +43392,25 @@ system</a><p/>
<div id="description">
<p>
-List the contents of an init script
-process id directory.
+Read the process state (/proc/pid) of the init scripts.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_read_script'>
+Module: <a href='system_init.html#link_init_read_utmp'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_read_script</b>(
+<b>init_read_utmp</b>(
- domain
+ ?
)<br>
@@ -41976,20 +43418,20 @@ system</a><p/>
<div id="description">
<p>
-Read init scripts.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_read_script_file'>
+Module: <a href='system_init.html#link_init_run_daemon'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_read_script_file</b>(
+<b>init_run_daemon</b>(
@@ -41997,25 +43439,41 @@ system</a><p/>
domain
+
+ ,
+
+
+
+ role
+
+
+
+ ,
+
+
+
+ terminal
+
+
)<br>
</div>
<div id="description">
<p>
-Read init scripts.
+Start and stop daemon programs directly.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_read_script_pid'>
+Module: <a href='system_init.html#link_init_rw_initctl'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_read_script_pid</b>(
+<b>init_rw_initctl</b>(
@@ -42035,13 +43493,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_read_script_process_state'>
+Module: <a href='system_init.html#link_init_rw_script_pipes'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_read_script_process_state</b>(
+<b>init_rw_script_pipes</b>(
@@ -42054,20 +43512,20 @@ system</a><p/>
<div id="description">
<p>
-Read the process state (/proc/pid) of the init scripts.
+Read and write init script unnamed pipes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_run_daemon'>
+Module: <a href='system_init.html#link_init_rw_script_tmp_files'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_run_daemon</b>(
+<b>init_rw_script_tmp_files</b>(
@@ -42075,20 +43533,30 @@ system</a><p/>
domain
-
- ,
-
-
-
- role
-
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read and write init script temporary data.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_init.html#link_init_rw_utmp'>
+init</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>init_rw_utmp</b>(
- ,
-
- terminal
+ ?
)<br>
@@ -42096,25 +43564,33 @@ system</a><p/>
<div id="description">
<p>
-Start and stop daemon programs directly.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_rw_script_pid'>
+Module: <a href='system_init.html#link_init_script_file_domtrans'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_rw_script_pid</b>(
+<b>init_script_file_domtrans</b>(
- ?
+ source_domain
+
+
+
+ ,
+
+
+
+ target_domain
)<br>
@@ -42122,20 +43598,20 @@ system</a><p/>
<div id="description">
<p>
-Summary is missing!
+Execute a init script in a specified domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_rw_script_pipe'>
+Module: <a href='system_init.html#link_init_script_file_entry_type'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_rw_script_pipe</b>(
+<b>init_script_file_entry_type</b>(
@@ -42148,20 +43624,21 @@ system</a><p/>
<div id="description">
<p>
-Read and write init script unnamed pipes.
+Make init scripts an entry point for
+the specified domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_rw_script_tmp_files'>
+Module: <a href='system_init.html#link_init_script_tmp_filetrans'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_rw_script_tmp_files</b>(
+<b>init_script_tmp_filetrans</b>(
@@ -42169,12 +43646,29 @@ system</a><p/>
domain
+
+ ,
+
+
+
+ file_type
+
+
+
+ ,
+
+
+
+ object_class
+
+
)<br>
</div>
<div id="description">
<p>
-Read and write init script temporary data.
+Create files in a init script
+temporary data directory.
</p>
</div>
@@ -42311,13 +43805,13 @@ Send null signals to init scripts.
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_system_domain'>
+Module: <a href='system_init.html#link_init_stream_connect_script'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_system_domain</b>(
+<b>init_stream_connect_script</b>(
@@ -42325,34 +43819,26 @@ system</a><p/>
domain
-
- ,
-
-
-
- entry_point
-
-
)<br>
</div>
<div id="description">
<p>
-Create a domain for short running processes
-which can be started by init scripts.
+Allow the specified domain to connect to
+init scripts with a unix socket.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_udp_sendto'>
+Module: <a href='system_init.html#link_init_system_domain'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_udp_sendto</b>(
+<b>init_system_domain</b>(
@@ -42360,25 +43846,34 @@ system</a><p/>
domain
+
+ ,
+
+
+
+ entry_point
+
+
)<br>
</div>
<div id="description">
<p>
-Send UDP network traffic to init.
+Create a domain for short running processes
+which can be started by init scripts.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_udp_sendto_script'>
+Module: <a href='system_init.html#link_init_udp_send'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_udp_sendto_script</b>(
+<b>init_udp_send</b>(
@@ -42391,20 +43886,20 @@ system</a><p/>
<div id="description">
<p>
-Send UDP network traffic to init scripts.
+Send UDP network traffic to init.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_unix_connect_script'>
+Module: <a href='system_init.html#link_init_udp_send_script'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_unix_connect_script</b>(
+<b>init_udp_send_script</b>(
@@ -42417,21 +43912,20 @@ system</a><p/>
<div id="description">
<p>
-Allow the specified domain to connect to
-init scripts with a unix socket.
+Send UDP network traffic to init scripts.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_use_fd'>
+Module: <a href='system_init.html#link_init_use_fds'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_use_fd</b>(
+<b>init_use_fds</b>(
@@ -42451,13 +43945,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_use_initctl'>
+Module: <a href='system_init.html#link_init_use_script_fds'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_use_initctl</b>(
+<b>init_use_script_fds</b>(
@@ -42477,18 +43971,18 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_use_script_fd'>
+Module: <a href='system_init.html#link_init_use_script_ptys'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_use_script_fd</b>(
+<b>init_use_script_ptys</b>(
- ?
+ domain
)<br>
@@ -42496,25 +43990,25 @@ system</a><p/>
<div id="description">
<p>
-Summary is missing!
+Read and write the init script pty.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_use_script_pty'>
+Module: <a href='system_init.html#link_init_write_initctl'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_use_script_pty</b>(
+<b>init_write_initctl</b>(
- domain
+ ?
)<br>
@@ -42522,25 +44016,25 @@ system</a><p/>
<div id="description">
<p>
-Read and write the init script pty.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_write_initctl'>
+Module: <a href='system_init.html#link_init_write_script_pipes'>
init</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>init_write_initctl</b>(
+<b>init_write_script_pipes</b>(
- ?
+ domain
)<br>
@@ -42548,20 +44042,20 @@ system</a><p/>
<div id="description">
<p>
-Summary is missing!
+Write an init script unnamed pipe.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_init.html#link_init_write_script_pipe'>
-init</a><p/>
-Layer: <a href='system.html'>
-system</a><p/>
+Module: <a href='services_inn.html#link_inn_dgram_send'>
+inn</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
<div id="codeblock">
-<b>init_write_script_pipe</b>(
+<b>inn_dgram_send</b>(
@@ -42574,7 +44068,7 @@ system</a><p/>
<div id="description">
<p>
-Write an init script unnamed pipe.
+Send to a innd unix dgram socket.
</p>
</div>
@@ -42765,32 +44259,6 @@ Read innd news library files.
</div>
<div id="interfacesmall">
-Module: <a href='services_inn.html#link_inn_sendto_unix_dgram_socket'>
-inn</a><p/>
-Layer: <a href='services.html'>
-services</a><p/>
-<div id="codeblock">
-
-<b>inn_sendto_unix_dgram_socket</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Send to a innd unix dgram socket.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
Module: <a href='system_ipsec.html#link_ipsec_domtrans'>
ipsec</a><p/>
Layer: <a href='system.html'>
@@ -42843,13 +44311,13 @@ Execute the IPSEC management program in the caller domain.
</div>
<div id="interfacesmall">
-Module: <a href='system_ipsec.html#link_ipsec_getattr_key_socket'>
+Module: <a href='system_ipsec.html#link_ipsec_getattr_key_sockets'>
ipsec</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>ipsec_getattr_key_socket</b>(
+<b>ipsec_getattr_key_sockets</b>(
@@ -43042,6 +44510,32 @@ allow the specified role the iptables domain.
</div>
<div id="interfacesmall">
+Module: <a href='apps_java.html#link_java_domtrans'>
+java</a><p/>
+Layer: <a href='apps.html'>
+apps</a><p/>
+<div id="codeblock">
+
+<b>java_domtrans</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute the java program in the java domain.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='services_kerberos.html#link_kerberos_dontaudit_write_config'>
kerberos</a><p/>
Layer: <a href='services.html'>
@@ -43225,13 +44719,13 @@ Allows the caller to clear the ring buffer.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_dontaudit_getattr_core'>
+Module: <a href='kernel_kernel.html#link_kernel_dgram_send'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_dontaudit_getattr_core</b>(
+<b>kernel_dgram_send</b>(
@@ -43244,21 +44738,20 @@ kernel</a><p/>
<div id="description">
<p>
-Do not audit attempts to get the attributes of
-core kernel interfaces.
+Send messages to kernel unix datagram sockets.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_dontaudit_getattr_message_if'>
+Module: <a href='kernel_kernel.html#link_kernel_domtrans_to'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_dontaudit_getattr_message_if</b>(
+<b>kernel_domtrans_to</b>(
@@ -43266,26 +44759,88 @@ kernel</a><p/>
domain
+
+ ,
+
+
+
+ entrypoint
+
+
)<br>
</div>
<div id="description">
<p>
-Do not audit attempts by caller to get the attributes of kernel
-message interfaces.
+Allows to start userland processes
+by transitioning to the specified domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_dontaudit_getattr_unlabeled_blk_dev'>
+Module: <a href='kernel_kernel.html#link_kernel_dontaudit_getattr_core_if'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_dontaudit_getattr_unlabeled_blk_dev</b>(
+<b>kernel_dontaudit_getattr_core_if</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to get the attributes of
+core kernel interfaces.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_kernel.html#link_kernel_dontaudit_getattr_message_if'>
+kernel</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>kernel_dontaudit_getattr_message_if</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts by caller to get the attributes of kernel
+message interfaces.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_kernel.html#link_kernel_dontaudit_getattr_unlabeled_blk_files'>
+kernel</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>kernel_dontaudit_getattr_unlabeled_blk_files</b>(
@@ -43306,13 +44861,13 @@ unlabeled block devices.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_dontaudit_getattr_unlabeled_chr_dev'>
+Module: <a href='kernel_kernel.html#link_kernel_dontaudit_getattr_unlabeled_chr_files'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_dontaudit_getattr_unlabeled_chr_dev</b>(
+<b>kernel_dontaudit_getattr_unlabeled_chr_files</b>(
@@ -43333,13 +44888,13 @@ unlabeled character devices.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_dontaudit_getattr_unlabeled_file'>
+Module: <a href='kernel_kernel.html#link_kernel_dontaudit_getattr_unlabeled_files'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_dontaudit_getattr_unlabeled_file</b>(
+<b>kernel_dontaudit_getattr_unlabeled_files</b>(
@@ -43494,13 +45049,13 @@ Do not audit attempts to list unlabeled directories.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_dontaudit_read_proc_symlink'>
+Module: <a href='kernel_kernel.html#link_kernel_dontaudit_read_proc_symlinks'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_dontaudit_read_proc_symlink</b>(
+<b>kernel_dontaudit_read_proc_symlinks</b>(
@@ -43574,13 +45129,13 @@ read system state information in proc.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_dontaudit_read_unlabeled_file'>
+Module: <a href='kernel_kernel.html#link_kernel_dontaudit_read_unlabeled_files'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_dontaudit_read_unlabeled_file</b>(
+<b>kernel_dontaudit_read_unlabeled_files</b>(
@@ -43707,13 +45262,13 @@ the base directory of sysctls.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_dontaudit_use_fd'>
+Module: <a href='kernel_kernel.html#link_kernel_dontaudit_use_fds'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_dontaudit_use_fd</b>(
+<b>kernel_dontaudit_use_fds</b>(
@@ -43786,13 +45341,13 @@ Get information on all System V IPC objects.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_getattr_core'>
+Module: <a href='kernel_kernel.html#link_kernel_getattr_core_if'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_getattr_core</b>(
+<b>kernel_getattr_core_if</b>(
@@ -43943,33 +45498,6 @@ Send a kill signal to unlabeled processes.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_list_from'>
-kernel</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>kernel_list_from</b>(
-
-
-
-
- dir_type
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Allow the kernel to read the contents
-of the specified directory.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
Module: <a href='kernel_kernel.html#link_kernel_list_proc'>
kernel</a><p/>
Layer: <a href='kernel.html'>
@@ -44074,13 +45602,13 @@ Mount a kernel debugging filesystem.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_read_all_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_read_all_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_read_all_sysctl</b>(
+<b>kernel_read_all_sysctls</b>(
@@ -44126,13 +45654,13 @@ Read information from the debugging filesystem.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_read_device_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_read_device_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_read_device_sysctl</b>(
+<b>kernel_read_device_sysctls</b>(
@@ -44152,40 +45680,13 @@ Allow caller to read the device sysctls.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_read_file_from'>
-kernel</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>kernel_read_file_from</b>(
-
-
-
-
- dir_type
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Allow the kernel to read the
-specified file.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_read_fs_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_read_fs_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_read_fs_sysctl</b>(
+<b>kernel_read_fs_sysctls</b>(
@@ -44205,13 +45706,13 @@ Read filesystem sysctls.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_read_hotplug_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_read_hotplug_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_read_hotplug_sysctl</b>(
+<b>kernel_read_hotplug_sysctls</b>(
@@ -44231,13 +45732,13 @@ Read the hotplug sysctl.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_read_irq_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_read_irq_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_read_irq_sysctl</b>(
+<b>kernel_read_irq_sysctls</b>(
@@ -44257,13 +45758,13 @@ Read IRQ sysctls.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_read_kernel_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_read_kernel_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_read_kernel_sysctl</b>(
+<b>kernel_read_kernel_sysctls</b>(
@@ -44310,13 +45811,13 @@ using the /proc/kmsg interface.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_read_modprobe_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_read_modprobe_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_read_modprobe_sysctl</b>(
+<b>kernel_read_modprobe_sysctls</b>(
@@ -44336,13 +45837,13 @@ Read the modprobe sysctl.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_read_net_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_read_net_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_read_net_sysctl</b>(
+<b>kernel_read_net_sysctls</b>(
@@ -44466,13 +45967,13 @@ Allows caller to read the ring buffer.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_read_rpc_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_read_rpc_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_read_rpc_sysctl</b>(
+<b>kernel_read_rpc_sysctls</b>(
@@ -44570,13 +46071,13 @@ Allows caller to read system state information in proc.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_read_unix_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_read_unix_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_read_unix_sysctl</b>(
+<b>kernel_read_unix_sysctls</b>(
@@ -44597,13 +46098,13 @@ socket sysctls.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_read_vm_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_read_vm_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_read_vm_sysctl</b>(
+<b>kernel_read_vm_sysctls</b>(
@@ -44623,13 +46124,13 @@ Allow caller to read virtual memory sysctls.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_relabel_unlabeled'>
+Module: <a href='kernel_kernel.html#link_kernel_relabelfrom_unlabeled_dirs'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_relabel_unlabeled</b>(
+<b>kernel_relabelfrom_unlabeled_dirs</b>(
@@ -44642,73 +46143,20 @@ kernel</a><p/>
<div id="description">
<p>
-Allow caller to relabel unlabeled objects.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_remount_debugfs'>
-kernel</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>kernel_remount_debugfs</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Remount a kernel debugging filesystem.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rootfs_mountpoint'>
-kernel</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>kernel_rootfs_mountpoint</b>(
-
-
-
-
- directory_type
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Allows the kernel to mount filesystems on
-the specified directory type.
+Allow caller to relabel unlabeled directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_all_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_relabelfrom_unlabeled_files'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_rw_all_sysctl</b>(
+<b>kernel_relabelfrom_unlabeled_files</b>(
@@ -44721,20 +46169,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write all sysctls.
+Allow caller to relabel unlabeled files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_device_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_relabelfrom_unlabeled_pipes'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_rw_device_sysctl</b>(
+<b>kernel_relabelfrom_unlabeled_pipes</b>(
@@ -44747,20 +46195,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write device sysctls.
+Allow caller to relabel unlabeled named pipes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_fs_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_relabelfrom_unlabeled_sockets'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_rw_fs_sysctl</b>(
+<b>kernel_relabelfrom_unlabeled_sockets</b>(
@@ -44773,20 +46221,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write fileystem sysctls.
+Allow caller to relabel unlabeled named sockets.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_hotplug_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_relabelfrom_unlabeled_symlinks'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_rw_hotplug_sysctl</b>(
+<b>kernel_relabelfrom_unlabeled_symlinks</b>(
@@ -44799,20 +46247,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write the hotplug sysctl.
+Allow caller to relabel unlabeled symbolic links.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_irq_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_remount_debugfs'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_rw_irq_sysctl</b>(
+<b>kernel_remount_debugfs</b>(
@@ -44825,25 +46273,25 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write IRQ sysctls.
+Remount a kernel debugging filesystem.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_kernel_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_rootfs_mountpoint'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_rw_kernel_sysctl</b>(
+<b>kernel_rootfs_mountpoint</b>(
- domain
+ directory_type
)<br>
@@ -44851,20 +46299,21 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write generic kernel sysctls.
+Allows the kernel to mount filesystems on
+the specified directory type.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_modprobe_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_all_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_rw_modprobe_sysctl</b>(
+<b>kernel_rw_all_sysctls</b>(
@@ -44877,20 +46326,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write the modprobe sysctl.
+Read and write all sysctls.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_net_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_device_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_rw_net_sysctl</b>(
+<b>kernel_rw_device_sysctls</b>(
@@ -44903,20 +46352,20 @@ kernel</a><p/>
<div id="description">
<p>
-Allow caller to modiry contents of sysctl network files.
+Read and write device sysctls.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_pipe'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_fs_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_rw_pipe</b>(
+<b>kernel_rw_fs_sysctls</b>(
@@ -44929,46 +46378,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write kernel unnamed pipes.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_rpc_sysctl'>
-kernel</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>kernel_rw_rpc_sysctl</b>(
-
-
-
-
- ?
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Summary is missing!
+Read and write fileystem sysctls.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_software_raid_state'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_hotplug_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_rw_software_raid_state</b>(
+<b>kernel_rw_hotplug_sysctls</b>(
@@ -44981,20 +46404,20 @@ kernel</a><p/>
<div id="description">
<p>
-Allow caller to read and set the state information for software raid.
+Read and write the hotplug sysctl.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_unix_dgram_socket'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_irq_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_rw_unix_dgram_socket</b>(
+<b>kernel_rw_irq_sysctls</b>(
@@ -45007,20 +46430,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write kernel unix datagram sockets.
+Read and write IRQ sysctls.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_unix_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_kernel_sysctl'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_rw_unix_sysctl</b>(
+<b>kernel_rw_kernel_sysctl</b>(
@@ -45033,21 +46456,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write unix domain
-socket sysctls.
+Read and write generic kernel sysctls.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_unlabeled_dir'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_modprobe_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_rw_unlabeled_dir</b>(
+<b>kernel_rw_modprobe_sysctls</b>(
@@ -45060,20 +46482,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write unlabeled directories.
+Read and write the modprobe sysctl.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_rw_vm_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_net_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_rw_vm_sysctl</b>(
+<b>kernel_rw_net_sysctls</b>(
@@ -45086,20 +46508,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write virtual memory sysctls.
+Allow caller to modiry contents of sysctl network files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_search_debugfs'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_pipes'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_search_debugfs</b>(
+<b>kernel_rw_pipes</b>(
@@ -45112,25 +46534,25 @@ kernel</a><p/>
<div id="description">
<p>
-Search the contents of a kernel debugging filesystem.
+Read and write kernel unnamed pipes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_search_from'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_rpc_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_search_from</b>(
+<b>kernel_rw_rpc_sysctls</b>(
- dir_type
+ ?
)<br>
@@ -45138,21 +46560,20 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the kernel to search the
-specified directory.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_search_network_state'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_software_raid_state'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_search_network_state</b>(
+<b>kernel_rw_software_raid_state</b>(
@@ -45165,20 +46586,20 @@ kernel</a><p/>
<div id="description">
<p>
-Allow searching of network state directory.
+Allow caller to read and set the state information for software raid.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_search_network_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_unix_dgram_sockets'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_search_network_sysctl</b>(
+<b>kernel_rw_unix_dgram_sockets</b>(
@@ -45191,20 +46612,20 @@ kernel</a><p/>
<div id="description">
<p>
-Search network sysctl directories.
+Read and write kernel unix datagram sockets.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_search_proc'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_unix_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_search_proc</b>(
+<b>kernel_rw_unix_sysctls</b>(
@@ -45217,20 +46638,21 @@ kernel</a><p/>
<div id="description">
<p>
-Search directories in /proc.
+Read and write unix domain
+socket sysctls.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_search_vm_sysctl'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_unlabeled_blk_files'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_search_vm_sysctl</b>(
+<b>kernel_rw_unlabeled_blk_files</b>(
@@ -45243,57 +46665,20 @@ kernel</a><p/>
<div id="description">
<p>
-Allow caller to search virtual memory sysctls.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_send_syslog_msg_from'>
-kernel</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
-<div id="codeblock">
-
-<b>kernel_send_syslog_msg_from</b>(
-
-
-
-
- socket
-
-
-
- ,
-
-
-
- syslog_type
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Allow the kernel to send a syslog
-message to the specified domain,
-connecting over the specified named
-socket.
+Read and write unlabeled block device nodes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_sendrecv_unlabeled_association'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_unlabeled_dirs'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_sendrecv_unlabeled_association</b>(
+<b>kernel_rw_unlabeled_dirs</b>(
@@ -45306,21 +46691,20 @@ kernel</a><p/>
<div id="description">
<p>
-Send and receive messages from an
-unlabeled IPSEC association.
+Read and write unlabeled directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_sendto_unix_dgram_socket'>
+Module: <a href='kernel_kernel.html#link_kernel_rw_vm_sysctls'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_sendto_unix_dgram_socket</b>(
+<b>kernel_rw_vm_sysctls</b>(
@@ -45333,20 +46717,20 @@ kernel</a><p/>
<div id="description">
<p>
-Send messages to kernel unix datagram sockets.
+Read and write virtual memory sysctls.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_setpgid'>
+Module: <a href='kernel_kernel.html#link_kernel_search_debugfs'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_setpgid</b>(
+<b>kernel_search_debugfs</b>(
@@ -45359,20 +46743,20 @@ kernel</a><p/>
<div id="description">
<p>
-Set the process group of kernel threads.
+Search the contents of a kernel debugging filesystem.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_share_state'>
+Module: <a href='kernel_kernel.html#link_kernel_search_network_state'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_share_state</b>(
+<b>kernel_search_network_state</b>(
@@ -45385,21 +46769,20 @@ kernel</a><p/>
<div id="description">
<p>
-Allows the kernel to share state information with
-the caller.
+Allow searching of network state directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_sigchld'>
+Module: <a href='kernel_kernel.html#link_kernel_search_network_sysctl'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_sigchld</b>(
+<b>kernel_search_network_sysctl</b>(
@@ -45412,20 +46795,20 @@ kernel</a><p/>
<div id="description">
<p>
-Send a SIGCHLD signal to kernel threads.
+Search network sysctl directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_sigchld_from'>
+Module: <a href='kernel_kernel.html#link_kernel_search_proc'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_sigchld_from</b>(
+<b>kernel_search_proc</b>(
@@ -45438,21 +46821,20 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the kernel to send a SIGCHLD
-signal to the specified domain.
+Search directories in /proc.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_sigchld_from_unlabeled'>
+Module: <a href='kernel_kernel.html#link_kernel_search_vm_sysctl'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_sigchld_from_unlabeled</b>(
+<b>kernel_search_vm_sysctl</b>(
@@ -45465,21 +46847,20 @@ kernel</a><p/>
<div id="description">
<p>
-Allow unlabeled processes to send a SIGCHLD
-signal to the specified domain.
+Allow caller to search virtual memory sysctls.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_sigchld_unlabeled'>
+Module: <a href='kernel_kernel.html#link_kernel_sendrecv_unlabeled_association'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_sigchld_unlabeled</b>(
+<b>kernel_sendrecv_unlabeled_association</b>(
@@ -45492,20 +46873,21 @@ kernel</a><p/>
<div id="description">
<p>
-Send a child terminated signal to unlabeled processes.
+Send and receive messages from an
+unlabeled IPSEC association.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_signal'>
+Module: <a href='kernel_kernel.html#link_kernel_setpgid'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_signal</b>(
+<b>kernel_setpgid</b>(
@@ -45518,20 +46900,20 @@ kernel</a><p/>
<div id="description">
<p>
-Send a generic signal to kernel threads.
+Set the process group of kernel threads.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_signal_unlabeled'>
+Module: <a href='kernel_kernel.html#link_kernel_share_state'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_signal_unlabeled</b>(
+<b>kernel_share_state</b>(
@@ -45544,20 +46926,21 @@ kernel</a><p/>
<div id="description">
<p>
-Send general signals to unlabeled processes.
+Allows the kernel to share state information with
+the caller.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_signull_unlabeled'>
+Module: <a href='kernel_kernel.html#link_kernel_sigchld'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_signull_unlabeled</b>(
+<b>kernel_sigchld</b>(
@@ -45570,20 +46953,20 @@ kernel</a><p/>
<div id="description">
<p>
-Send a null signal to unlabeled processes.
+Send a SIGCHLD signal to kernel threads.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_sigstop_unlabeled'>
+Module: <a href='kernel_kernel.html#link_kernel_sigchld_unlabeled'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_sigstop_unlabeled</b>(
+<b>kernel_sigchld_unlabeled</b>(
@@ -45596,20 +46979,20 @@ kernel</a><p/>
<div id="description">
<p>
-Send a stop signal to unlabeled processes.
+Send a child terminated signal to unlabeled processes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_tcp_recvfrom'>
+Module: <a href='kernel_kernel.html#link_kernel_signal'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_tcp_recvfrom</b>(
+<b>kernel_signal</b>(
@@ -45622,20 +47005,20 @@ kernel</a><p/>
<div id="description">
<p>
-Receive messages from kernel TCP sockets.
+Send a generic signal to kernel threads.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_udp_recvfrom'>
+Module: <a href='kernel_kernel.html#link_kernel_signal_unlabeled'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_udp_recvfrom</b>(
+<b>kernel_signal_unlabeled</b>(
@@ -45648,20 +47031,20 @@ kernel</a><p/>
<div id="description">
<p>
-Receive messages from kernel UDP sockets.
+Send general signals to unlabeled processes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_udp_sendfrom'>
+Module: <a href='kernel_kernel.html#link_kernel_signull_unlabeled'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_udp_sendfrom</b>(
+<b>kernel_signull_unlabeled</b>(
@@ -45674,21 +47057,20 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the kernel to send UDP network traffic
-the specified domain.
+Send a null signal to unlabeled processes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_unconfined'>
+Module: <a href='kernel_kernel.html#link_kernel_sigstop_unlabeled'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_unconfined</b>(
+<b>kernel_sigstop_unlabeled</b>(
@@ -45701,20 +47083,20 @@ kernel</a><p/>
<div id="description">
<p>
-Unconfined access to kernel module resources.
+Send a stop signal to unlabeled processes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_unmount_debugfs'>
+Module: <a href='kernel_kernel.html#link_kernel_tcp_recvfrom'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_unmount_debugfs</b>(
+<b>kernel_tcp_recvfrom</b>(
@@ -45727,20 +47109,20 @@ kernel</a><p/>
<div id="description">
<p>
-Unmount a kernel debugging filesystem.
+Receive messages from kernel TCP sockets.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_use_fd'>
+Module: <a href='kernel_kernel.html#link_kernel_udp_recvfrom'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_use_fd</b>(
+<b>kernel_udp_recvfrom</b>(
@@ -45753,41 +47135,25 @@ kernel</a><p/>
<div id="description">
<p>
-Permits caller to use kernel file descriptors.
+Receive messages from kernel UDP sockets.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_use_ld_so_from'>
+Module: <a href='kernel_kernel.html#link_kernel_udp_send'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_use_ld_so_from</b>(
-
-
-
-
- lib_type
-
-
-
- ,
-
-
-
- ld_type
-
+<b>kernel_udp_send</b>(
- ,
-
- cache_type
+ domain
)<br>
@@ -45795,36 +47161,25 @@ kernel</a><p/>
<div id="description">
<p>
-Use the specified types for /lib directory
-and use the dynamic link/loader for automatic loading
-of shared libraries, and the link/loader
-cache.
+Send UDP network traffic to the kernel.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_use_shared_libs_from'>
+Module: <a href='kernel_kernel.html#link_kernel_unconfined'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_use_shared_libs_from</b>(
-
-
-
-
- lib_dir_type
-
+<b>kernel_unconfined</b>(
- ,
-
- shlib_type
+ domain
)<br>
@@ -45832,21 +47187,20 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the kernel to load and execute
-functions from the specified shared libraries.
+Unconfined access to kernel module resources.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_use_unlabeled_blk_dev'>
+Module: <a href='kernel_kernel.html#link_kernel_unmount_debugfs'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_use_unlabeled_blk_dev</b>(
+<b>kernel_unmount_debugfs</b>(
@@ -45859,20 +47213,20 @@ kernel</a><p/>
<div id="description">
<p>
-Read and write unlabeled block device nodes.
+Unmount a kernel debugging filesystem.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_userland_entry'>
+Module: <a href='kernel_kernel.html#link_kernel_use_fds'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_userland_entry</b>(
+<b>kernel_use_fds</b>(
@@ -45880,34 +47234,25 @@ kernel</a><p/>
domain
-
- ,
-
-
-
- entrypoint
-
-
)<br>
</div>
<div id="description">
<p>
-Allows to start userland processes
-by transitioning to the specified domain.
+Permits caller to use kernel file descriptors.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_kernel.html#link_kernel_write_proc_file'>
+Module: <a href='kernel_kernel.html#link_kernel_write_proc_files'>
kernel</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>kernel_write_proc_file</b>(
+<b>kernel_write_proc_files</b>(
@@ -45953,13 +47298,13 @@ Execute kudzu in the kudzu domain.
</div>
<div id="interfacesmall">
-Module: <a href='admin_kudzu.html#link_kudzu_getattr_exec_file'>
+Module: <a href='admin_kudzu.html#link_kudzu_getattr_exec_files'>
kudzu</a><p/>
Layer: <a href='admin.html'>
admin</a><p/>
<div id="codeblock">
-<b>kudzu_getattr_exec_file</b>(
+<b>kudzu_getattr_exec_files</b>(
@@ -46022,13 +47367,13 @@ allow the specified role the kudzu domain.
</div>
<div id="interfacesmall">
-Module: <a href='services_ldap.html#link_ldap_list_db_dir'>
+Module: <a href='services_ldap.html#link_ldap_list_db'>
ldap</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>ldap_list_db_dir</b>(
+<b>ldap_list_db</b>(
@@ -46101,6 +47446,32 @@ Use LDAP over TCP connection.
</div>
<div id="interfacesmall">
+Module: <a href='system_libraries.html#link_libs_delete_lib_symlinks'>
+libraries</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>libs_delete_lib_symlinks</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Delete generic symlinks in library directories.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='system_libraries.html#link_libs_domtrans_ldconfig'>
libraries</a><p/>
Layer: <a href='system.html'>
@@ -46313,13 +47684,13 @@ Create, read, write, and delete shared libraries.
</div>
<div id="interfacesmall">
-Module: <a href='system_libraries.html#link_libs_read_lib'>
+Module: <a href='system_libraries.html#link_libs_read_lib_files'>
libraries</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>libs_read_lib</b>(
+<b>libs_read_lib_files</b>(
@@ -46569,13 +47940,13 @@ of shared libraries.
</div>
<div id="interfacesmall">
-Module: <a href='system_libraries.html#link_libs_use_lib'>
+Module: <a href='system_libraries.html#link_libs_use_lib_files'>
libraries</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>libs_use_lib</b>(
+<b>libs_use_lib_files</b>(
@@ -46742,13 +48113,13 @@ Execute local logins in the local login domain.
</div>
<div id="interfacesmall">
-Module: <a href='system_locallogin.html#link_locallogin_dontaudit_use_fd'>
+Module: <a href='system_locallogin.html#link_locallogin_dontaudit_use_fds'>
locallogin</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>locallogin_dontaudit_use_fd</b>(
+<b>locallogin_dontaudit_use_fds</b>(
@@ -46794,13 +48165,13 @@ Send a null signal to local login processes.
</div>
<div id="interfacesmall">
-Module: <a href='system_locallogin.html#link_locallogin_use_fd'>
+Module: <a href='system_locallogin.html#link_locallogin_use_fds'>
locallogin</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>locallogin_use_fd</b>(
+<b>locallogin_use_fds</b>(
@@ -46950,18 +48321,18 @@ Execute all log files in the caller domain.
</div>
<div id="interfacesmall">
-Module: <a href='system_logging.html#link_logging_filetrans_log'>
+Module: <a href='system_logging.html#link_logging_list_logs'>
logging</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>logging_filetrans_log</b>(
+<b>logging_list_logs</b>(
- ?
+ domain
)<br>
@@ -46969,25 +48340,25 @@ system</a><p/>
<div id="description">
<p>
-Summary is missing!
+List the contents of the generic log directory (/var/log).
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_logging.html#link_logging_list_logs'>
+Module: <a href='system_logging.html#link_logging_log_file'>
logging</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>logging_list_logs</b>(
+<b>logging_log_file</b>(
- domain
+ file_type
)<br>
@@ -46995,25 +48366,26 @@ system</a><p/>
<div id="description">
<p>
-List the contents of the generic log directory (/var/log).
+Make the specified type a file
+used for logs.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_logging.html#link_logging_log_file'>
+Module: <a href='system_logging.html#link_logging_log_filetrans'>
logging</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>logging_log_file</b>(
+<b>logging_log_filetrans</b>(
- file_type
+ ?
)<br>
@@ -47021,8 +48393,7 @@ system</a><p/>
<div id="description">
<p>
-Make the specified type a file
-used for logs.
+Summary is missing!
</p>
</div>
@@ -47108,13 +48479,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_logging.html#link_logging_read_audit_log'>
+Module: <a href='system_logging.html#link_logging_read_audit_config'>
logging</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>logging_read_audit_log</b>(
+<b>logging_read_audit_config</b>(
@@ -47127,20 +48498,20 @@ system</a><p/>
<div id="description">
<p>
-Read the audit log.
+Read the auditd configuration files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_logging.html#link_logging_read_auditd_config'>
+Module: <a href='system_logging.html#link_logging_read_audit_log'>
logging</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>logging_read_auditd_config</b>(
+<b>logging_read_audit_log</b>(
@@ -47153,7 +48524,7 @@ system</a><p/>
<div id="description">
<p>
-Read the auditd configuration files.
+Read the audit log.
</p>
</div>
@@ -47186,13 +48557,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_logging.html#link_logging_rw_generic_logs'>
+Module: <a href='system_logging.html#link_logging_rw_generic_log_dirs'>
logging</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>logging_rw_generic_logs</b>(
+<b>logging_rw_generic_log_dirs</b>(
@@ -47205,20 +48576,20 @@ system</a><p/>
<div id="description">
<p>
-Read and write generic log files.
+Read and write the generic log directory (/var/log).
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_logging.html#link_logging_rw_log_dir'>
+Module: <a href='system_logging.html#link_logging_rw_generic_logs'>
logging</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>logging_rw_log_dir</b>(
+<b>logging_rw_generic_logs</b>(
@@ -47231,7 +48602,7 @@ system</a><p/>
<div id="description">
<p>
-Read and write the generic log directory (/var/log).
+Read and write generic log files.
</p>
</div>
@@ -47344,13 +48715,13 @@ Execute logrotate in the logrotate domain.
</div>
<div id="interfacesmall">
-Module: <a href='admin_logrotate.html#link_logrotate_dontaudit_use_fd'>
+Module: <a href='admin_logrotate.html#link_logrotate_dontaudit_use_fds'>
logrotate</a><p/>
Layer: <a href='admin.html'>
admin</a><p/>
<div id="codeblock">
-<b>logrotate_dontaudit_use_fd</b>(
+<b>logrotate_dontaudit_use_fds</b>(
@@ -47465,13 +48836,13 @@ allow the specified role the logrotate domain.
</div>
<div id="interfacesmall">
-Module: <a href='admin_logrotate.html#link_logrotate_use_fd'>
+Module: <a href='admin_logrotate.html#link_logrotate_use_fds'>
logrotate</a><p/>
Layer: <a href='admin.html'>
admin</a><p/>
<div id="codeblock">
-<b>logrotate_use_fd</b>(
+<b>logrotate_use_fds</b>(
@@ -47994,6 +49365,33 @@ Send generic signals to the mailman cgi domain.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_mcs.html#link_mcs_killall'>
+mcs</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>mcs_killall</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+This domain is allowed to sigkill and sigstop
+all domains regardless of their MCS level.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='system_miscfiles.html#link_miscfiles_delete_man_pages'>
miscfiles</a><p/>
Layer: <a href='system.html'>
@@ -48814,13 +50212,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_modutils.html#link_modutils_read_mods_deps'>
+Module: <a href='system_modutils.html#link_modutils_read_module_config'>
modutils</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>modutils_read_mods_deps</b>(
+<b>modutils_read_module_config</b>(
@@ -48833,20 +50231,21 @@ system</a><p/>
<div id="description">
<p>
-Read the dependencies of kernel modules.
+Read the configuration options used when
+loading modules.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_modutils.html#link_modutils_read_module_conf'>
+Module: <a href='system_modutils.html#link_modutils_read_module_deps'>
modutils</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>modutils_read_module_conf</b>(
+<b>modutils_read_module_deps</b>(
@@ -48859,21 +50258,20 @@ system</a><p/>
<div id="description">
<p>
-Read the configuration options used when
-loading modules.
+Read the dependencies of kernel modules.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_modutils.html#link_modutils_rename_module_conf'>
+Module: <a href='system_modutils.html#link_modutils_rename_module_config'>
modutils</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>modutils_rename_module_conf</b>(
+<b>modutils_rename_module_config</b>(
@@ -49023,6 +50421,32 @@ Execute update_modules in the update_modules domain.
</div>
<div id="interfacesmall">
+Module: <a href='apps_mono.html#link_mono_domtrans'>
+mono</a><p/>
+Layer: <a href='apps.html'>
+apps</a><p/>
+<div id="codeblock">
+
+<b>mono_domtrans</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute the mono program in the mono domain.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='system_mount.html#link_mount_domtrans'>
mount</a><p/>
Layer: <a href='system.html'>
@@ -49146,13 +50570,13 @@ network drives
</div>
<div id="interfacesmall">
-Module: <a href='system_mount.html#link_mount_use_fd'>
+Module: <a href='system_mount.html#link_mount_use_fds'>
mount</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>mount_use_fd</b>(
+<b>mount_use_fds</b>(
@@ -49172,6 +50596,32 @@ Use file descriptors for mount.
</div>
<div id="interfacesmall">
+Module: <a href='admin_mrtg.html#link_mrtg_append_create_logs'>
+mrtg</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
+<div id="codeblock">
+
+<b>mrtg_append_create_logs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create and append mrtg logs.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='services_mta.html#link_mta_append_spool'>
mta</a><p/>
Layer: <a href='services.html'>
@@ -49224,18 +50674,18 @@ Delete from the mail spool.
</div>
<div id="interfacesmall">
-Module: <a href='services_mta.html#link_mta_dontaudit_read_spool_symlink'>
+Module: <a href='services_mta.html#link_mta_dontaudit_getattr_spool_files'>
mta</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>mta_dontaudit_read_spool_symlink</b>(
+<b>mta_dontaudit_getattr_spool_files</b>(
- domain
+ ?
)<br>
@@ -49243,21 +50693,20 @@ services</a><p/>
<div id="description">
<p>
-Do not audit attempts to read a symlink
-in the mail spool.
+Summary is missing!
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_mta.html#link_mta_dontaudit_rw_delivery_tcp_socket'>
+Module: <a href='services_mta.html#link_mta_dontaudit_read_spool_symlinks'>
mta</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>mta_dontaudit_rw_delivery_tcp_socket</b>(
+<b>mta_dontaudit_read_spool_symlinks</b>(
@@ -49270,21 +50719,21 @@ services</a><p/>
<div id="description">
<p>
-Do not audit attempts to read and write TCP
-sockets of mail delivery domains.
+Do not audit attempts to read a symlink
+in the mail spool.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_mta.html#link_mta_dontaudit_rw_queue'>
+Module: <a href='services_mta.html#link_mta_dontaudit_rw_delivery_tcp_sockets'>
mta</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>mta_dontaudit_rw_queue</b>(
+<b>mta_dontaudit_rw_delivery_tcp_sockets</b>(
@@ -49297,26 +50746,26 @@ services</a><p/>
<div id="description">
<p>
-Do not audit attempts to read and
-write the mail queue.
+Do not audit attempts to read and write TCP
+sockets of mail delivery domains.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_mta.html#link_mta_exec'>
+Module: <a href='services_mta.html#link_mta_dontaudit_rw_queue'>
mta</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>mta_exec</b>(
+<b>mta_dontaudit_rw_queue</b>(
- ?
+ domain
)<br>
@@ -49324,20 +50773,21 @@ services</a><p/>
<div id="description">
<p>
-Summary is missing!
+Do not audit attempts to read and
+write the mail queue.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_mta.html#link_mta_filetrans_etc_aliases'>
+Module: <a href='services_mta.html#link_mta_etc_filetrans_aliases'>
mta</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>mta_filetrans_etc_aliases</b>(
+<b>mta_etc_filetrans_aliases</b>(
@@ -49358,38 +50808,18 @@ to the mail address aliases type.
</div>
<div id="interfacesmall">
-Module: <a href='services_mta.html#link_mta_filetrans_spool'>
+Module: <a href='services_mta.html#link_mta_exec'>
mta</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>mta_filetrans_spool</b>(
-
-
-
-
- domain
-
-
-
- ,
-
-
-
- private type
-
+<b>mta_exec</b>(
- ,
-
-
- [
-
- object
- ]
+ ?
)<br>
@@ -49397,8 +50827,7 @@ services</a><p/>
<div id="description">
<p>
-Create private objects in the
-mail spool directory.
+Summary is missing!
</p>
</div>
@@ -49721,13 +51150,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='services_mta.html#link_mta_rw_user_mail_stream_socket'>
+Module: <a href='services_mta.html#link_mta_rw_user_mail_stream_sockets'>
mta</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>mta_rw_user_mail_stream_socket</b>(
+<b>mta_rw_user_mail_stream_sockets</b>(
@@ -49809,6 +51238,49 @@ sendmail daemon use.
</div>
<div id="interfacesmall">
+Module: <a href='services_mta.html#link_mta_spool_filetrans'>
+mta</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>mta_spool_filetrans</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ private type
+
+
+
+ ,
+
+
+
+ object
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create private objects in the
+mail spool directory.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='services_mta.html#link_mta_stub'>
mta</a><p/>
Layer: <a href='services.html'>
@@ -49820,12 +51292,8 @@ services</a><p/>
- [
-
domain
- ]
-
)<br>
</div>
@@ -49865,13 +51333,13 @@ Connect to all mail servers over TCP.
</div>
<div id="interfacesmall">
-Module: <a href='services_mysql.html#link_mysql_manage_db_dir'>
+Module: <a href='services_mysql.html#link_mysql_manage_db_dirs'>
mysql</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>mysql_manage_db_dir</b>(
+<b>mysql_manage_db_dirs</b>(
@@ -49917,13 +51385,13 @@ Read MySQL configuration files.
</div>
<div id="interfacesmall">
-Module: <a href='services_mysql.html#link_mysql_rw_db_dir'>
+Module: <a href='services_mysql.html#link_mysql_rw_db_dirs'>
mysql</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>mysql_rw_db_dir</b>(
+<b>mysql_rw_db_dirs</b>(
@@ -49943,13 +51411,13 @@ Read and write to the MySQL database directory.
</div>
<div id="interfacesmall">
-Module: <a href='services_mysql.html#link_mysql_rw_db_socket'>
+Module: <a href='services_mysql.html#link_mysql_rw_db_sockets'>
mysql</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>mysql_rw_db_socket</b>(
+<b>mysql_rw_db_sockets</b>(
@@ -49970,13 +51438,13 @@ named socket.
</div>
<div id="interfacesmall">
-Module: <a href='services_mysql.html#link_mysql_search_db_dir'>
+Module: <a href='services_mysql.html#link_mysql_search_db'>
mysql</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>mysql_search_db_dir</b>(
+<b>mysql_search_db</b>(
@@ -50473,13 +51941,13 @@ NetworkManager over dbus.
</div>
<div id="interfacesmall">
-Module: <a href='services_networkmanager.html#link_networkmanager_rw_packet_socket'>
+Module: <a href='services_networkmanager.html#link_networkmanager_rw_packet_sockets'>
networkmanager</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>networkmanager_rw_packet_socket</b>(
+<b>networkmanager_rw_packet_sockets</b>(
@@ -50499,13 +51967,13 @@ Read and write NetworkManager packet sockets.
</div>
<div id="interfacesmall">
-Module: <a href='services_networkmanager.html#link_networkmanager_rw_routing_socket'>
+Module: <a href='services_networkmanager.html#link_networkmanager_rw_routing_sockets'>
networkmanager</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>networkmanager_rw_routing_socket</b>(
+<b>networkmanager_rw_routing_sockets</b>(
@@ -50526,13 +51994,13 @@ routing sockets.
</div>
<div id="interfacesmall">
-Module: <a href='services_networkmanager.html#link_networkmanager_rw_udp_socket'>
+Module: <a href='services_networkmanager.html#link_networkmanager_rw_udp_sockets'>
networkmanager</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>networkmanager_rw_udp_socket</b>(
+<b>networkmanager_rw_udp_sockets</b>(
@@ -50734,13 +52202,13 @@ Connect to ypbind over TCP.
</div>
<div id="interfacesmall">
-Module: <a href='services_nis.html#link_nis_udp_sendto_ypbind'>
+Module: <a href='services_nis.html#link_nis_udp_send_ypbind'>
nis</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>nis_udp_sendto_ypbind</b>(
+<b>nis_udp_send_ypbind</b>(
@@ -50865,13 +52333,13 @@ Read NSCD pid file.
</div>
<div id="interfacesmall">
-Module: <a href='services_nscd.html#link_nscd_unconfined'>
+Module: <a href='services_nscd.html#link_nscd_shm_use'>
nscd</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>nscd_unconfined</b>(
+<b>nscd_shm_use</b>(
@@ -50884,20 +52352,21 @@ services</a><p/>
<div id="description">
<p>
-Unconfined access to NSCD services.
+Use NSCD services by mapping the database from
+an inherited NSCD file descriptor.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_nscd.html#link_nscd_use_shared_mem'>
+Module: <a href='services_nscd.html#link_nscd_socket_use'>
nscd</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>nscd_use_shared_mem</b>(
+<b>nscd_socket_use</b>(
@@ -50910,21 +52379,21 @@ services</a><p/>
<div id="description">
<p>
-Use NSCD services by mapping the database from
-an inherited NSCD file descriptor.
+Use NSCD services by connecting using
+a unix stream socket.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_nscd.html#link_nscd_use_socket'>
+Module: <a href='services_nscd.html#link_nscd_unconfined'>
nscd</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>nscd_use_socket</b>(
+<b>nscd_unconfined</b>(
@@ -50937,8 +52406,7 @@ services</a><p/>
<div id="description">
<p>
-Use NSCD services by connecting using
-a unix stream socket.
+Unconfined access to NSCD services.
</p>
</div>
@@ -51008,12 +52476,8 @@ services</a><p/>
- [
-
domain
- ]
-
)<br>
</div>
@@ -51106,13 +52570,13 @@ cardmgr pid files.
</div>
<div id="interfacesmall">
-Module: <a href='system_pcmcia.html#link_pcmcia_manage_runtime_chr'>
+Module: <a href='system_pcmcia.html#link_pcmcia_manage_pid_chr_files'>
pcmcia</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>pcmcia_manage_runtime_chr</b>(
+<b>pcmcia_manage_pid_chr_files</b>(
@@ -51213,12 +52677,8 @@ system</a><p/>
- [
-
domain
- ]
-
)<br>
</div>
@@ -51232,13 +52692,13 @@ PCMCIA stub interface. No access allowed.
</div>
<div id="interfacesmall">
-Module: <a href='system_pcmcia.html#link_pcmcia_use_cardmgr_fd'>
+Module: <a href='system_pcmcia.html#link_pcmcia_use_cardmgr_fds'>
pcmcia</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>pcmcia_use_cardmgr_fd</b>(
+<b>pcmcia_use_cardmgr_fds</b>(
@@ -51258,13 +52718,13 @@ Inherit and use file descriptors from cardmgr.
</div>
<div id="interfacesmall">
-Module: <a href='services_portmap.html#link_portmap_domtrans_helper'>
-portmap</a><p/>
-Layer: <a href='services.html'>
-services</a><p/>
+Module: <a href='admin_portage.html#link_portage_domtrans'>
+portage</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
<div id="codeblock">
-<b>portmap_domtrans_helper</b>(
+<b>portage_domtrans</b>(
@@ -51277,20 +52737,20 @@ services</a><p/>
<div id="description">
<p>
-Execute portmap_helper in the helper domain.
+Execute emerge in the portage domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_portmap.html#link_portmap_run_helper'>
-portmap</a><p/>
-Layer: <a href='services.html'>
-services</a><p/>
+Module: <a href='admin_portage.html#link_portage_run'>
+portage</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
<div id="codeblock">
-<b>portmap_run_helper</b>(
+<b>portage_run</b>(
@@ -51319,22 +52779,21 @@ services</a><p/>
<div id="description">
<p>
-Execute portmap helper in the helper domain, and
-allow the specified role the helper domain.
-Communicate with portmap.
+Execute emerge in the portage domain, and
+allow the specified role the portage domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_portmap.html#link_portmap_tcp_connect'>
+Module: <a href='services_portmap.html#link_portmap_domtrans_helper'>
portmap</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>portmap_tcp_connect</b>(
+<b>portmap_domtrans_helper</b>(
@@ -51347,20 +52806,20 @@ services</a><p/>
<div id="description">
<p>
-Connect to portmap over a TCP socket
+Execute portmap_helper in the helper domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_portmap.html#link_portmap_udp_sendrecv'>
+Module: <a href='services_portmap.html#link_portmap_run_helper'>
portmap</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>portmap_udp_sendrecv</b>(
+<b>portmap_run_helper</b>(
@@ -51368,109 +52827,20 @@ services</a><p/>
domain
- )<br>
-</div>
-
-<div id="description">
-<p>
-Send and receive UDP network traffic from portmap.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='services_portmap.html#link_portmap_udp_sendto'>
-portmap</a><p/>
-Layer: <a href='services.html'>
-services</a><p/>
-<div id="codeblock">
-
-<b>portmap_udp_sendto</b>(
-
-
-
-
- domain
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Send UDP network traffic to portmap.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='services_postfix.html#link_postfix_domtrans_map'>
-postfix</a><p/>
-Layer: <a href='services.html'>
-services</a><p/>
-<div id="codeblock">
-
-<b>postfix_domtrans_map</b>(
-
+ ,
- domain
+ role
- )<br>
-</div>
-
-<div id="description">
-<p>
-Execute postfix_map in the postfix_map domain.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='services_postfix.html#link_postfix_domtrans_master'>
-postfix</a><p/>
-Layer: <a href='services.html'>
-services</a><p/>
-<div id="codeblock">
-
-<b>postfix_domtrans_master</b>(
-
-
-
-
- domain
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Execute the master postfix program in the
-postfix_master domain.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='services_postfix.html#link_postfix_domtrans_user_mail_handler'>
-postfix</a><p/>
-Layer: <a href='services.html'>
-services</a><p/>
-<div id="codeblock">
-
-<b>postfix_domtrans_user_mail_handler</b>(
-
+ ,
- domain
+ terminal
)<br>
@@ -51478,21 +52848,22 @@ services</a><p/>
<div id="description">
<p>
-Execute postfix user mail programs
-in their respective domains.
+Execute portmap helper in the helper domain, and
+allow the specified role the helper domain.
+Communicate with portmap.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_postfix.html#link_postfix_dontaudit_rw_local_tcp_socket'>
-postfix</a><p/>
+Module: <a href='services_portmap.html#link_portmap_tcp_connect'>
+portmap</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>postfix_dontaudit_rw_local_tcp_socket</b>(
+<b>portmap_tcp_connect</b>(
@@ -51505,22 +52876,20 @@ services</a><p/>
<div id="description">
<p>
-Do not audit attempts to read and
-write postfix local delivery
-TCP sockets.
+Connect to portmap over a TCP socket
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_postfix.html#link_postfix_dontaudit_use_fd'>
-postfix</a><p/>
+Module: <a href='services_portmap.html#link_portmap_udp_chat'>
+portmap</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>postfix_dontaudit_use_fd</b>(
+<b>portmap_udp_chat</b>(
@@ -51533,22 +52902,20 @@ services</a><p/>
<div id="description">
<p>
-Do not audit attempts to use
-postfix master process file
-file descriptors.
+Send and receive UDP network traffic from portmap.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_postfix.html#link_postfix_exec_master'>
-postfix</a><p/>
+Module: <a href='services_portmap.html#link_portmap_udp_send'>
+portmap</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>postfix_exec_master</b>(
+<b>portmap_udp_send</b>(
@@ -51561,21 +52928,20 @@ services</a><p/>
<div id="description">
<p>
-Execute the master postfix program in the
-caller domain.
+Send UDP network traffic to portmap.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_postfix.html#link_postfix_filetrans_config'>
+Module: <a href='services_postfix.html#link_postfix_config_filetrans'>
postfix</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>postfix_filetrans_config</b>(
+<b>postfix_config_filetrans</b>(
@@ -51596,12 +52962,8 @@ services</a><p/>
- [
-
object
- ]
-
)<br>
</div>
@@ -51616,6 +52978,169 @@ the postfix configuration directories.
</div>
<div id="interfacesmall">
+Module: <a href='services_postfix.html#link_postfix_domtrans_map'>
+postfix</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>postfix_domtrans_map</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute postfix_map in the postfix_map domain.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_postfix.html#link_postfix_domtrans_master'>
+postfix</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>postfix_domtrans_master</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute the master postfix program in the
+postfix_master domain.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_postfix.html#link_postfix_domtrans_user_mail_handler'>
+postfix</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>postfix_domtrans_user_mail_handler</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute postfix user mail programs
+in their respective domains.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_postfix.html#link_postfix_dontaudit_rw_local_tcp_sockets'>
+postfix</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>postfix_dontaudit_rw_local_tcp_sockets</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to read and
+write postfix local delivery
+TCP sockets.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_postfix.html#link_postfix_dontaudit_use_fds'>
+postfix</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>postfix_dontaudit_use_fds</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to use
+postfix master process file
+file descriptors.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_postfix.html#link_postfix_exec_master'>
+postfix</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>postfix_exec_master</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute the master postfix program in the
+caller domain.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='services_postfix.html#link_postfix_list_spool'>
postfix</a><p/>
Layer: <a href='services.html'>
@@ -51748,12 +53273,8 @@ services</a><p/>
- [
-
domain
- ]
-
)<br>
</div>
@@ -51845,13 +53366,13 @@ Allow the specified domain to read postgresql's etc.
</div>
<div id="interfacesmall">
-Module: <a href='services_postgresql.html#link_postgresql_search_db_dir'>
+Module: <a href='services_postgresql.html#link_postgresql_search_db'>
postgresql</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>postgresql_search_db_dir</b>(
+<b>postgresql_search_db</b>(
@@ -51871,13 +53392,13 @@ Allow the specified domain to search postgresql's database directory.
</div>
<div id="interfacesmall">
-Module: <a href='services_postgresql.html#link_postgresql_tcp_connect'>
+Module: <a href='services_postgresql.html#link_postgresql_stream_connect'>
postgresql</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>postgresql_tcp_connect</b>(
+<b>postgresql_stream_connect</b>(
@@ -51890,20 +53411,20 @@ services</a><p/>
<div id="description">
<p>
-Allow the specified domain to connect to postgresql with a tcp socket.
+Allow the specified domain to connect to postgresql with a unix socket.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='services_postgresql.html#link_postgresql_unix_connect'>
+Module: <a href='services_postgresql.html#link_postgresql_tcp_connect'>
postgresql</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>postgresql_unix_connect</b>(
+<b>postgresql_tcp_connect</b>(
@@ -51916,7 +53437,7 @@ services</a><p/>
<div id="description">
<p>
-Allow the specified domain to connect to postgresql with a unix socket.
+Allow the specified domain to connect to postgresql with a tcp socket.
</p>
</div>
@@ -51949,13 +53470,13 @@ Execute domain in the ppp domain.
</div>
<div id="interfacesmall">
-Module: <a href='services_ppp.html#link_ppp_dontaudit_use_fd'>
+Module: <a href='services_ppp.html#link_ppp_dontaudit_use_fds'>
ppp</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>ppp_dontaudit_use_fd</b>(
+<b>ppp_dontaudit_use_fds</b>(
@@ -52080,13 +53601,13 @@ Send a generic signal to PPP.
</div>
<div id="interfacesmall">
-Module: <a href='services_ppp.html#link_ppp_use_fd'>
+Module: <a href='services_ppp.html#link_ppp_use_fds'>
ppp</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>ppp_use_fd</b>(
+<b>ppp_use_fds</b>(
@@ -52724,13 +54245,13 @@ Allow domain to read and write to an NFS UDP socket.
</div>
<div id="interfacesmall">
-Module: <a href='services_rpc.html#link_rpc_udp_sendto'>
+Module: <a href='services_rpc.html#link_rpc_udp_send'>
rpc</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>rpc_udp_sendto</b>(
+<b>rpc_udp_send</b>(
@@ -52750,13 +54271,13 @@ Send UDP network traffic to rpc and recieve UDP traffic from rpc.
</div>
<div id="interfacesmall">
-Module: <a href='services_rpc.html#link_rpc_udp_sendto_nfs'>
+Module: <a href='services_rpc.html#link_rpc_udp_send_nfs'>
rpc</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>rpc_udp_sendto_nfs</b>(
+<b>rpc_udp_send_nfs</b>(
@@ -52769,8 +54290,7 @@ services</a><p/>
<div id="description">
<p>
-Allow NFS to send UDP network traffic
-the specified domain and recieve from it.
+Send UDP traffic to NFSd.
</p>
</div>
@@ -52829,6 +54349,32 @@ Execute rpm programs in the rpm domain.
</div>
<div id="interfacesmall">
+Module: <a href='admin_rpm.html#link_rpm_domtrans_script'>
+rpm</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
+<div id="codeblock">
+
+<b>rpm_domtrans_script</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute rpm_script programs in the rpm_script domain.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='admin_rpm.html#link_rpm_dontaudit_manage_db'>
rpm</a><p/>
Layer: <a href='admin.html'>
@@ -52934,13 +54480,13 @@ Read the RPM package database.
</div>
<div id="interfacesmall">
-Module: <a href='admin_rpm.html#link_rpm_read_pipe'>
+Module: <a href='admin_rpm.html#link_rpm_read_pipes'>
rpm</a><p/>
Layer: <a href='admin.html'>
admin</a><p/>
<div id="codeblock">
-<b>rpm_read_pipe</b>(
+<b>rpm_read_pipes</b>(
@@ -53002,13 +54548,13 @@ Execute RPM programs in the RPM domain.
</div>
<div id="interfacesmall">
-Module: <a href='admin_rpm.html#link_rpm_rw_pipe'>
+Module: <a href='admin_rpm.html#link_rpm_rw_pipes'>
rpm</a><p/>
Layer: <a href='admin.html'>
admin</a><p/>
<div id="codeblock">
-<b>rpm_rw_pipe</b>(
+<b>rpm_rw_pipes</b>(
@@ -53028,39 +54574,13 @@ Read and write an unnamed RPM pipe.
</div>
<div id="interfacesmall">
-Module: <a href='admin_rpm.html#link_rpm_script_domtrans'>
+Module: <a href='admin_rpm.html#link_rpm_use_fds'>
rpm</a><p/>
Layer: <a href='admin.html'>
admin</a><p/>
<div id="codeblock">
-<b>rpm_script_domtrans</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Execute rpm_script programs in the rpm_script domain.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='admin_rpm.html#link_rpm_use_fd'>
-rpm</a><p/>
-Layer: <a href='admin.html'>
-admin</a><p/>
-<div id="codeblock">
-
-<b>rpm_use_fd</b>(
+<b>rpm_use_fds</b>(
@@ -53080,13 +54600,13 @@ Inherit and use file descriptors from RPM.
</div>
<div id="interfacesmall">
-Module: <a href='admin_rpm.html#link_rpm_use_script_fd'>
+Module: <a href='admin_rpm.html#link_rpm_use_script_fds'>
rpm</a><p/>
Layer: <a href='admin.html'>
admin</a><p/>
<div id="codeblock">
-<b>rpm_use_script_fd</b>(
+<b>rpm_use_script_fds</b>(
@@ -53132,32 +54652,6 @@ Domain transition to rshd.
</div>
<div id="interfacesmall">
-Module: <a href='services_samba.html#link_samba_connect_winbind'>
-samba</a><p/>
-Layer: <a href='services.html'>
-services</a><p/>
-<div id="codeblock">
-
-<b>samba_connect_winbind</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Connect to winbind.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
Module: <a href='services_samba.html#link_samba_domtrans_net'>
samba</a><p/>
Layer: <a href='services.html'>
@@ -53480,13 +54974,13 @@ and write samba configuration files.
</div>
<div id="interfacesmall">
-Module: <a href='services_samba.html#link_samba_rw_smbmount_tcp_socket'>
+Module: <a href='services_samba.html#link_samba_rw_smbmount_tcp_sockets'>
samba</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>samba_rw_smbmount_tcp_socket</b>(
+<b>samba_rw_smbmount_tcp_sockets</b>(
@@ -53560,13 +55054,39 @@ samba /var directories.
</div>
<div id="interfacesmall">
-Module: <a href='services_samba.html#link_samba_write_smbmount_tcp_socket'>
+Module: <a href='services_samba.html#link_samba_stream_connect_winbind'>
+samba</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>samba_stream_connect_winbind</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Connect to winbind.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_samba.html#link_samba_write_smbmount_tcp_sockets'>
samba</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>samba_write_smbmount_tcp_socket</b>(
+<b>samba_write_smbmount_tcp_sockets</b>(
@@ -54138,13 +55658,13 @@ Create, read, write, and delete sendmail logs.
</div>
<div id="interfacesmall">
-Module: <a href='services_sendmail.html#link_sendmail_rw_tcp_socket'>
+Module: <a href='services_sendmail.html#link_sendmail_rw_tcp_sockets'>
sendmail</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>sendmail_rw_tcp_socket</b>(
+<b>sendmail_rw_tcp_sockets</b>(
@@ -54164,6 +55684,32 @@ Read and write sendmail TCP sockets.
</div>
<div id="interfacesmall">
+Module: <a href='services_sendmail.html#link_sendmail_rw_unix_stream_sockets'>
+sendmail</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>sendmail_rw_unix_stream_sockets</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read and write sendmail unix_stream_sockets.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='services_sendmail.html#link_sendmail_stub'>
sendmail</a><p/>
Layer: <a href='services.html'>
@@ -54175,12 +55721,8 @@ services</a><p/>
- [
-
domain
- ]
-
)<br>
</div>
@@ -54194,13 +55736,13 @@ Sendmail stub interface. No access allowed.
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_create_binary_pol'>
+Module: <a href='system_selinuxutil.html#link_seutil_create_bin_policy'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_create_binary_pol</b>(
+<b>seutil_create_bin_policy</b>(
@@ -54220,13 +55762,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_domtrans_checkpol'>
+Module: <a href='system_selinuxutil.html#link_seutil_domtrans_checkpolicy'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_domtrans_checkpol</b>(
+<b>seutil_domtrans_checkpolicy</b>(
@@ -54246,13 +55788,13 @@ Execute checkpolicy in the checkpolicy domain.
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_domtrans_loadpol'>
+Module: <a href='system_selinuxutil.html#link_seutil_domtrans_loadpolicy'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_domtrans_loadpol</b>(
+<b>seutil_domtrans_loadpolicy</b>(
@@ -54350,6 +55892,32 @@ Execute run_init in the run_init domain.
</div>
<div id="interfacesmall">
+Module: <a href='system_selinuxutil.html#link_seutil_domtrans_semanage'>
+selinuxutil</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>seutil_domtrans_semanage</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute a domain transition to run semanage.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='system_selinuxutil.html#link_seutil_domtrans_setfiles'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
@@ -54457,13 +56025,13 @@ a signal to newrole.
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_exec_checkpol'>
+Module: <a href='system_selinuxutil.html#link_seutil_exec_checkpolicy'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_exec_checkpol</b>(
+<b>seutil_exec_checkpolicy</b>(
@@ -54483,13 +56051,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_exec_loadpol'>
+Module: <a href='system_selinuxutil.html#link_seutil_exec_loadpolicy'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_exec_loadpol</b>(
+<b>seutil_exec_loadpolicy</b>(
@@ -54587,13 +56155,135 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_manage_binary_pol'>
+Module: <a href='system_selinuxutil.html#link_seutil_get_semanage_read_lock'>
+selinuxutil</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>seutil_get_semanage_read_lock</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Get read lock on module store
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_selinuxutil.html#link_seutil_get_semanage_trans_lock'>
+selinuxutil</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>seutil_get_semanage_trans_lock</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Get trans lock on module store
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_selinuxutil.html#link_seutil_init_script_domtrans_runinit'>
+selinuxutil</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>seutil_init_script_domtrans_runinit</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute init scripts in the run_init domain.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_selinuxutil.html#link_seutil_init_script_run_runinit'>
+selinuxutil</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>seutil_init_script_run_runinit</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ role
+
+
+
+ ,
+
+
+
+ terminal
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute init scripts in the run_init domain, and
+allow the specified role the run_init domain,
+and use the caller's terminal.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_selinuxutil.html#link_seutil_manage_bin_policy'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_manage_binary_pol</b>(
+<b>seutil_manage_bin_policy</b>(
@@ -54613,13 +56303,40 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_manage_src_pol'>
+Module: <a href='system_selinuxutil.html#link_seutil_manage_module_store'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_manage_src_pol</b>(
+<b>seutil_manage_module_store</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Full management of the semanage
+module store.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_selinuxutil.html#link_seutil_manage_src_policy'>
+selinuxutil</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>seutil_manage_src_policy</b>(
@@ -54639,13 +56356,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_read_binary_pol'>
+Module: <a href='system_selinuxutil.html#link_seutil_read_bin_policy'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_read_binary_pol</b>(
+<b>seutil_read_bin_policy</b>(
@@ -54743,13 +56460,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_read_loadpol'>
+Module: <a href='system_selinuxutil.html#link_seutil_read_loadpolicy'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_read_loadpol</b>(
+<b>seutil_read_loadpolicy</b>(
@@ -54769,13 +56486,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_read_src_pol'>
+Module: <a href='system_selinuxutil.html#link_seutil_read_src_policy'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_read_src_pol</b>(
+<b>seutil_read_src_policy</b>(
@@ -54795,13 +56512,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_relabelto_binary_pol'>
+Module: <a href='system_selinuxutil.html#link_seutil_relabelto_bin_policy'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_relabelto_binary_pol</b>(
+<b>seutil_relabelto_bin_policy</b>(
@@ -54821,13 +56538,13 @@ Allow the caller to relabel a file to the binary policy type.
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_run_checkpol'>
+Module: <a href='system_selinuxutil.html#link_seutil_run_checkpolicy'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_run_checkpol</b>(
+<b>seutil_run_checkpolicy</b>(
@@ -54865,13 +56582,13 @@ and use the caller's terminal.
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_run_loadpol'>
+Module: <a href='system_selinuxutil.html#link_seutil_run_loadpolicy'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_run_loadpol</b>(
+<b>seutil_run_loadpolicy</b>(
@@ -55042,6 +56759,50 @@ and use the caller's terminal.
</div>
<div id="interfacesmall">
+Module: <a href='system_selinuxutil.html#link_seutil_run_semanage'>
+selinuxutil</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>seutil_run_semanage</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ role
+
+
+
+ ,
+
+
+
+ terminal
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute semanage in the semanage domain, and
+allow the specified role the semanage domain,
+and use the caller's terminal.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='system_selinuxutil.html#link_seutil_run_setfiles'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
@@ -55086,6 +56847,32 @@ and use the caller's terminal.
</div>
<div id="interfacesmall">
+Module: <a href='system_selinuxutil.html#link_seutil_rw_file_contexts'>
+selinuxutil</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>seutil_rw_file_contexts</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read and write the file_contexts files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='system_selinuxutil.html#link_seutil_search_default_contexts'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
@@ -55138,13 +56925,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_use_newrole_fd'>
+Module: <a href='system_selinuxutil.html#link_seutil_use_newrole_fds'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_use_newrole_fd</b>(
+<b>seutil_use_newrole_fds</b>(
@@ -55164,13 +56951,13 @@ Summary is missing!
</div>
<div id="interfacesmall">
-Module: <a href='system_selinuxutil.html#link_seutil_use_runinit_fd'>
+Module: <a href='system_selinuxutil.html#link_seutil_use_runinit_fds'>
selinuxutil</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>seutil_use_runinit_fd</b>(
+<b>seutil_use_runinit_fds</b>(
@@ -55269,13 +57056,13 @@ Allow the domain to search slrnpull spools.
</div>
<div id="interfacesmall">
-Module: <a href='services_smartmon.html#link_smartmon_read_tmp'>
+Module: <a href='services_smartmon.html#link_smartmon_read_tmp_files'>
smartmon</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>smartmon_read_tmp</b>(
+<b>smartmon_read_tmp_files</b>(
@@ -55295,13 +57082,39 @@ Allow caller to read smartmon temporary files.
</div>
<div id="interfacesmall">
-Module: <a href='services_snmp.html#link_snmp_use'>
+Module: <a href='services_snmp.html#link_snmp_read_snmp_var_lib_files'>
+snmp</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>snmp_read_snmp_var_lib_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read snmpd libraries.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_snmp.html#link_snmp_tcp_connect'>
snmp</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>snmp_use</b>(
+<b>snmp_tcp_connect</b>(
@@ -55321,6 +57134,32 @@ Use snmp over a TCP connection.
</div>
<div id="interfacesmall">
+Module: <a href='services_snmp.html#link_snmp_udp_chat'>
+snmp</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>snmp_udp_chat</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Send and receive UDP traffic to SNMP
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='services_spamassassin.html#link_spamassassin_exec'>
spamassassin</a><p/>
Layer: <a href='services.html'>
@@ -55550,19 +57389,100 @@ services</a><p/>
</div>
<div id="description">
-<p>Read ssh server keys</p>
+<p>
+Read ssh server keys
+</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_create_fixed_disk'>
-storage</a><p/>
-Layer: <a href='kernel.html'>
-kernel</a><p/>
+Module: <a href='services_ssh.html#link_ssh_dontaudit_rw_tcp_sockets'>
+ssh</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>ssh_dontaudit_rw_tcp_sockets</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to read and write
+ssh server TCP sockets.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_ssh.html#link_ssh_read_pipes'>
+ssh</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>ssh_read_pipes</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read a ssh server unnamed pipe.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_ssh.html#link_ssh_sigchld'>
+ssh</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>ssh_sigchld</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Send a SIGCHLD signal to the ssh server.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_ssh.html#link_ssh_tcp_connect'>
+ssh</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
<div id="codeblock">
-<b>storage_create_fixed_disk</b>(
+<b>ssh_tcp_connect</b>(
@@ -55575,20 +57495,20 @@ kernel</a><p/>
<div id="description">
<p>
-Create block devices in /dev with the fixed disk type.
+Connect to SSH daemons over TCP sockets.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_create_fixed_disk_tmpfs'>
+Module: <a href='kernel_storage.html#link_storage_dev_filetrans_fixed_disk'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_create_fixed_disk_tmpfs</b>(
+<b>storage_dev_filetrans_fixed_disk</b>(
@@ -55601,20 +57521,21 @@ kernel</a><p/>
<div id="description">
<p>
-Create fixed disk device nodes on a tmpfs filesystem.
+Create block devices in /dev with the fixed disk type
+via an automatic type transition.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_dontaudit_getattr_fixed_disk'>
+Module: <a href='kernel_storage.html#link_storage_dontaudit_getattr_fixed_disk_dev'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_dontaudit_getattr_fixed_disk</b>(
+<b>storage_dontaudit_getattr_fixed_disk_dev</b>(
@@ -55635,13 +57556,13 @@ the attributes of fixed disk device nodes.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_dontaudit_getattr_removable_device'>
+Module: <a href='kernel_storage.html#link_storage_dontaudit_getattr_removable_dev'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_dontaudit_getattr_removable_device</b>(
+<b>storage_dontaudit_getattr_removable_dev</b>(
@@ -55662,6 +57583,58 @@ the attributes of removable devices device nodes.
</div>
<div id="interfacesmall">
+Module: <a href='kernel_storage.html#link_storage_dontaudit_raw_read_removable_device'>
+storage</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>storage_dontaudit_raw_read_removable_device</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to directly read removable devices.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='kernel_storage.html#link_storage_dontaudit_raw_write_removable_device'>
+storage</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>storage_dontaudit_raw_write_removable_device</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to directly write removable devices.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_storage.html#link_storage_dontaudit_read_fixed_disk'>
storage</a><p/>
Layer: <a href='kernel.html'>
@@ -55716,13 +57689,13 @@ removable devices device nodes.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_dontaudit_setattr_fixed_disk'>
+Module: <a href='kernel_storage.html#link_storage_dontaudit_rw_scsi_generic'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_dontaudit_setattr_fixed_disk</b>(
+<b>storage_dontaudit_rw_scsi_generic</b>(
@@ -55735,21 +57708,21 @@ kernel</a><p/>
<div id="description">
<p>
-Do not audit attempts made by the caller to set
-the attributes of fixed disk device nodes.
+Do not audit attempts to read or write
+SCSI generic device interfaces.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_dontaudit_setattr_removable_device'>
+Module: <a href='kernel_storage.html#link_storage_dontaudit_setattr_fixed_disk_dev'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_dontaudit_setattr_removable_device</b>(
+<b>storage_dontaudit_setattr_fixed_disk_dev</b>(
@@ -55763,20 +57736,20 @@ kernel</a><p/>
<div id="description">
<p>
Do not audit attempts made by the caller to set
-the attributes of removable devices device nodes.
+the attributes of fixed disk device nodes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_getattr_fixed_disk'>
+Module: <a href='kernel_storage.html#link_storage_dontaudit_setattr_removable_dev'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_getattr_fixed_disk</b>(
+<b>storage_dontaudit_setattr_removable_dev</b>(
@@ -55789,21 +57762,21 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the caller to get the attributes of fixed disk
-device nodes.
+Do not audit attempts made by the caller to set
+the attributes of removable devices device nodes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_getattr_removable_device'>
+Module: <a href='kernel_storage.html#link_storage_dontaudit_write_fixed_disk'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_getattr_removable_device</b>(
+<b>storage_dontaudit_write_fixed_disk</b>(
@@ -55816,21 +57789,21 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the caller to get the attributes of removable
-devices device nodes.
+Do not audit attempts made by the caller to write
+fixed disk device nodes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_getattr_scsi_generic'>
+Module: <a href='kernel_storage.html#link_storage_getattr_fixed_disk_dev'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_getattr_scsi_generic</b>(
+<b>storage_getattr_fixed_disk_dev</b>(
@@ -55843,21 +57816,21 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the caller to get the attributes of
-the generic SCSI interface device nodes.
+Allow the caller to get the attributes of fixed disk
+device nodes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_getattr_tape_device'>
+Module: <a href='kernel_storage.html#link_storage_getattr_removable_dev'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_getattr_tape_device</b>(
+<b>storage_getattr_removable_dev</b>(
@@ -55870,21 +57843,21 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the caller to get the attributes
-of device nodes of tape devices.
+Allow the caller to get the attributes of removable
+devices device nodes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_manage_fixed_disk'>
+Module: <a href='kernel_storage.html#link_storage_getattr_scsi_generic_dev'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_manage_fixed_disk</b>(
+<b>storage_getattr_scsi_generic_dev</b>(
@@ -55897,20 +57870,21 @@ kernel</a><p/>
<div id="description">
<p>
-Create, read, write, and delete fixed disk device nodes.
+Allow the caller to get the attributes of
+the generic SCSI interface device nodes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_raw_read_fixed_disk'>
+Module: <a href='kernel_storage.html#link_storage_getattr_tape_dev'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_raw_read_fixed_disk</b>(
+<b>storage_getattr_tape_dev</b>(
@@ -55923,23 +57897,21 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the caller to directly read from a fixed disk.
-This is extremly dangerous as it can bypass the
-SELinux protections for filesystem objects, and
-should only be used by trusted domains.
+Allow the caller to get the attributes
+of device nodes of tape devices.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_raw_read_lvm_volume'>
+Module: <a href='kernel_storage.html#link_storage_manage_fixed_disk'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_raw_read_lvm_volume</b>(
+<b>storage_manage_fixed_disk</b>(
@@ -55952,23 +57924,20 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the caller to directly read from a logical volume.
-This is extremly dangerous as it can bypass the
-SELinux protections for filesystem objects, and
-should only be used by trusted domains.
+Create, read, write, and delete fixed disk device nodes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_raw_read_removable_device'>
+Module: <a href='kernel_storage.html#link_storage_raw_read_fixed_disk'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_raw_read_removable_device</b>(
+<b>storage_raw_read_fixed_disk</b>(
@@ -55981,8 +57950,7 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the caller to directly read from
-a removable device.
+Allow the caller to directly read from a fixed disk.
This is extremly dangerous as it can bypass the
SELinux protections for filesystem objects, and
should only be used by trusted domains.
@@ -55992,13 +57960,13 @@ should only be used by trusted domains.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_raw_write_fixed_disk'>
+Module: <a href='kernel_storage.html#link_storage_raw_read_removable_device'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_raw_write_fixed_disk</b>(
+<b>storage_raw_read_removable_device</b>(
@@ -56011,7 +57979,8 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the caller to directly write to a fixed disk.
+Allow the caller to directly read from
+a removable device.
This is extremly dangerous as it can bypass the
SELinux protections for filesystem objects, and
should only be used by trusted domains.
@@ -56021,13 +57990,13 @@ should only be used by trusted domains.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_raw_write_lvm_volume'>
+Module: <a href='kernel_storage.html#link_storage_raw_write_fixed_disk'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_raw_write_lvm_volume</b>(
+<b>storage_raw_write_fixed_disk</b>(
@@ -56040,7 +58009,7 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the caller to directly read from a logical volume.
+Allow the caller to directly write to a fixed disk.
This is extremly dangerous as it can bypass the
SELinux protections for filesystem objects, and
should only be used by trusted domains.
@@ -56110,13 +58079,13 @@ should only be used by trusted domains.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_read_tape_device'>
+Module: <a href='kernel_storage.html#link_storage_read_tape'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_read_tape_device</b>(
+<b>storage_read_tape</b>(
@@ -56163,13 +58132,13 @@ Relabel fixed disk device nodes.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_set_scsi_generic_attributes'>
+Module: <a href='kernel_storage.html#link_storage_setattr_fixed_disk_dev'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_set_scsi_generic_attributes</b>(
+<b>storage_setattr_fixed_disk_dev</b>(
@@ -56182,21 +58151,21 @@ kernel</a><p/>
<div id="description">
<p>
-Set attributes of the device nodes
-for the SCSI generic inerface.
+Allow the caller to set the attributes of fixed disk
+device nodes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_setattr_fixed_disk'>
+Module: <a href='kernel_storage.html#link_storage_setattr_removable_dev'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_setattr_fixed_disk</b>(
+<b>storage_setattr_removable_dev</b>(
@@ -56209,21 +58178,21 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the caller to set the attributes of fixed disk
-device nodes.
+Allow the caller to set the attributes of removable
+devices device nodes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_setattr_removable_device'>
+Module: <a href='kernel_storage.html#link_storage_setattr_scsi_generic_dev'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_setattr_removable_device</b>(
+<b>storage_setattr_scsi_generic_dev</b>(
@@ -56236,21 +58205,21 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the caller to set the attributes of removable
-devices device nodes.
+Allow the caller to set the attributes of
+the generic SCSI interface device nodes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_setattr_scsi_generic'>
+Module: <a href='kernel_storage.html#link_storage_setattr_scsi_generic_dev_dev'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_setattr_scsi_generic</b>(
+<b>storage_setattr_scsi_generic_dev_dev</b>(
@@ -56263,21 +58232,21 @@ kernel</a><p/>
<div id="description">
<p>
-Allow the caller to set the attributes of
-the generic SCSI interface device nodes.
+Set attributes of the device nodes
+for the SCSI generic inerface.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_setattr_tape_device'>
+Module: <a href='kernel_storage.html#link_storage_setattr_tape_dev'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_setattr_tape_device</b>(
+<b>storage_setattr_tape_dev</b>(
@@ -56324,6 +58293,33 @@ Enable a fixed disk device as swap space
</div>
<div id="interfacesmall">
+Module: <a href='kernel_storage.html#link_storage_tmpfs_filetrans_fixed_disk'>
+storage</a><p/>
+Layer: <a href='kernel.html'>
+kernel</a><p/>
+<div id="codeblock">
+
+<b>storage_tmpfs_filetrans_fixed_disk</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create block devices in on a tmpfs filesystem with the
+fixed disk type via an automatic type transition.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='kernel_storage.html#link_storage_unconfined'>
storage</a><p/>
Layer: <a href='kernel.html'>
@@ -56380,13 +58376,13 @@ should only be used by trusted domains.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_storage.html#link_storage_write_tape_device'>
+Module: <a href='kernel_storage.html#link_storage_write_tape'>
storage</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>storage_write_tape_device</b>(
+<b>storage_write_tape</b>(
@@ -56486,6 +58482,48 @@ Delete the dhcp client pid file.
</div>
<div id="interfacesmall">
+Module: <a href='system_sysnetwork.html#link_sysnet_dhcp_state_filetrans'>
+sysnetwork</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>sysnet_dhcp_state_filetrans</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ file_type
+
+
+
+ ,
+
+
+
+ object_class
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create DHCP state data.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='system_sysnetwork.html#link_sysnet_dns_name_resolve'>
sysnetwork</a><p/>
Layer: <a href='system.html'>
@@ -56590,39 +58628,13 @@ Do not audit attempts to read network config files.
</div>
<div id="interfacesmall">
-Module: <a href='system_sysnetwork.html#link_sysnet_exec_ifconfig'>
+Module: <a href='system_sysnetwork.html#link_sysnet_etc_filetrans_config'>
sysnetwork</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>sysnet_exec_ifconfig</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-
-<div id="description">
-<p>
-Execute ifconfig in the caller domain.
-</p>
-</div>
-
-</div>
-
-<div id="interfacesmall">
-Module: <a href='system_sysnetwork.html#link_sysnet_filetrans_config'>
-sysnetwork</a><p/>
-Layer: <a href='system.html'>
-system</a><p/>
-<div id="codeblock">
-
-<b>sysnet_filetrans_config</b>(
+<b>sysnet_etc_filetrans_config</b>(
@@ -56643,13 +58655,13 @@ the network config files.
</div>
<div id="interfacesmall">
-Module: <a href='system_sysnetwork.html#link_sysnet_filetrans_dhcp_state'>
+Module: <a href='system_sysnetwork.html#link_sysnet_exec_ifconfig'>
sysnetwork</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>sysnet_filetrans_dhcp_state</b>(
+<b>sysnet_exec_ifconfig</b>(
@@ -56657,32 +58669,12 @@ system</a><p/>
domain
-
- ,
-
-
-
- file_type
-
-
-
- ,
-
-
-
- [
-
- object_class
-
- ]
-
-
)<br>
</div>
<div id="description">
<p>
-Create DHCP state data.
+Execute ifconfig in the caller domain.
</p>
</div>
@@ -57282,13 +59274,13 @@ device nodes.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_terminal.html#link_term_dontaudit_getattr_pty_dir'>
+Module: <a href='kernel_terminal.html#link_term_dontaudit_getattr_pty_dirs'>
terminal</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>term_dontaudit_getattr_pty_dir</b>(
+<b>term_dontaudit_getattr_pty_dirs</b>(
@@ -57390,13 +59382,13 @@ Do not audit attempts to read the
</div>
<div id="interfacesmall">
-Module: <a href='kernel_terminal.html#link_term_dontaudit_manage_pty_dir'>
+Module: <a href='kernel_terminal.html#link_term_dontaudit_manage_pty_dirs'>
terminal</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>term_dontaudit_manage_pty_dir</b>(
+<b>term_dontaudit_manage_pty_dirs</b>(
@@ -57525,13 +59517,13 @@ or write to the console.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_terminal.html#link_term_dontaudit_use_generic_pty'>
+Module: <a href='kernel_terminal.html#link_term_dontaudit_use_generic_ptys'>
terminal</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>term_dontaudit_use_generic_pty</b>(
+<b>term_dontaudit_use_generic_ptys</b>(
@@ -57580,13 +59572,13 @@ write the pty multiplexor (/dev/ptmx).
</div>
<div id="interfacesmall">
-Module: <a href='kernel_terminal.html#link_term_dontaudit_use_unallocated_tty'>
+Module: <a href='kernel_terminal.html#link_term_dontaudit_use_unallocated_ttys'>
terminal</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>term_dontaudit_use_unallocated_tty</b>(
+<b>term_dontaudit_use_unallocated_ttys</b>(
@@ -57688,13 +59680,13 @@ tty device nodes.
</div>
<div id="interfacesmall">
-Module: <a href='kernel_terminal.html#link_term_ioctl_generic_pty'>
+Module: <a href='kernel_terminal.html#link_term_ioctl_generic_ptys'>
terminal</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>term_ioctl_generic_pty</b>(
+<b>term_ioctl_generic_ptys</b>(
@@ -58246,13 +60238,13 @@ terminal (/dev/tty).
</div>
<div id="interfacesmall">
-Module: <a href='kernel_terminal.html#link_term_use_generic_pty'>
+Module: <a href='kernel_terminal.html#link_term_use_generic_ptys'>
terminal</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>term_use_generic_pty</b>(
+<b>term_use_generic_ptys</b>(
@@ -58300,13 +60292,13 @@ Read and write the pty multiplexor (/dev/ptmx).
</div>
<div id="interfacesmall">
-Module: <a href='kernel_terminal.html#link_term_use_unallocated_tty'>
+Module: <a href='kernel_terminal.html#link_term_use_unallocated_ttys'>
terminal</a><p/>
Layer: <a href='kernel.html'>
kernel</a><p/>
<div id="codeblock">
-<b>term_use_unallocated_tty</b>(
+<b>term_use_unallocated_ttys</b>(
@@ -58526,13 +60518,13 @@ Execute udev in the udev domain.
</div>
<div id="interfacesmall">
-Module: <a href='system_udev.html#link_udev_dontaudit_rw_unix_dgram_socket'>
+Module: <a href='system_udev.html#link_udev_dontaudit_rw_dgram_sockets'>
udev</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>udev_dontaudit_rw_unix_dgram_socket</b>(
+<b>udev_dontaudit_rw_dgram_sockets</b>(
@@ -58553,13 +60545,13 @@ to a udev unix datagram socket.
</div>
<div id="interfacesmall">
-Module: <a href='system_udev.html#link_udev_dontaudit_use_fd'>
+Module: <a href='system_udev.html#link_udev_dontaudit_use_fds'>
udev</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>udev_dontaudit_use_fd</b>(
+<b>udev_dontaudit_use_fds</b>(
@@ -58684,6 +60676,58 @@ Allow process to modify list of devices.
</div>
<div id="interfacesmall">
+Module: <a href='apps_uml.html#link_uml_manage_util_files'>
+uml</a><p/>
+Layer: <a href='apps.html'>
+apps</a><p/>
+<div id="codeblock">
+
+<b>uml_manage_util_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Manage uml utility files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='apps_uml.html#link_uml_setattr_util_sockets'>
+uml</a><p/>
+Layer: <a href='apps.html'>
+apps</a><p/>
+<div id="codeblock">
+
+<b>uml_setattr_util_sockets</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Set attributes on uml utility socket files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='system_unconfined.html#link_unconfined_alias_domain'>
unconfined</a><p/>
Layer: <a href='system.html'>
@@ -58736,6 +60780,60 @@ Send messages to the unconfined domain over dbus.
</div>
<div id="interfacesmall">
+Module: <a href='system_unconfined.html#link_unconfined_domain'>
+unconfined</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>unconfined_domain</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Make the specified domain unconfined and
+audit executable memory and executable heap
+usage.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_unconfined.html#link_unconfined_domain_noaudit'>
+unconfined</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>unconfined_domain_noaudit</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Make the specified domain unconfined.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='system_unconfined.html#link_unconfined_domtrans'>
unconfined</a><p/>
Layer: <a href='system.html'>
@@ -58762,13 +60860,13 @@ Transition to the unconfined domain.
</div>
<div id="interfacesmall">
-Module: <a href='system_unconfined.html#link_unconfined_dontaudit_read_pipe'>
+Module: <a href='system_unconfined.html#link_unconfined_dontaudit_read_pipes'>
unconfined</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>unconfined_dontaudit_read_pipe</b>(
+<b>unconfined_dontaudit_read_pipes</b>(
@@ -58788,13 +60886,13 @@ Do not audit attempts to read unconfined domain unnamed pipes.
</div>
<div id="interfacesmall">
-Module: <a href='system_unconfined.html#link_unconfined_dontaudit_rw_tcp_socket'>
+Module: <a href='system_unconfined.html#link_unconfined_dontaudit_rw_tcp_sockets'>
unconfined</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>unconfined_dontaudit_rw_tcp_socket</b>(
+<b>unconfined_dontaudit_rw_tcp_sockets</b>(
@@ -58815,13 +60913,13 @@ unconfined domain tcp sockets.
</div>
<div id="interfacesmall">
-Module: <a href='system_unconfined.html#link_unconfined_read_pipe'>
+Module: <a href='system_unconfined.html#link_unconfined_read_pipes'>
unconfined</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>unconfined_read_pipe</b>(
+<b>unconfined_read_pipes</b>(
@@ -58883,13 +60981,13 @@ Execute specified programs in the unconfined domain.
</div>
<div id="interfacesmall">
-Module: <a href='system_unconfined.html#link_unconfined_rw_pipe'>
+Module: <a href='system_unconfined.html#link_unconfined_rw_pipes'>
unconfined</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>unconfined_rw_pipe</b>(
+<b>unconfined_rw_pipes</b>(
@@ -58987,13 +61085,13 @@ Send generic signals to the unconfined domain.
</div>
<div id="interfacesmall">
-Module: <a href='system_unconfined.html#link_unconfined_use_fd'>
+Module: <a href='system_unconfined.html#link_unconfined_use_fds'>
unconfined</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>unconfined_use_fd</b>(
+<b>unconfined_use_fds</b>(
@@ -59109,13 +61207,13 @@ and use the caller's terminal.
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_create_sysadm_home'>
+Module: <a href='system_userdomain.html#link_userdom_bin_spec_domtrans_sysadm'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_create_sysadm_home</b>(
+<b>userdom_bin_spec_domtrans_sysadm</b>(
@@ -59123,16 +61221,30 @@ system</a><p/>
domain
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute a generic bin program in the sysadm domain.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_bin_spec_domtrans_unpriv_users'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_bin_spec_domtrans_unpriv_users</b>(
+
- ,
-
-
-
- [
- object_class
- ]
+ domain
)<br>
@@ -59140,8 +61252,9 @@ system</a><p/>
<div id="description">
<p>
-Create objects in sysadm home directories
-with automatic file type transition.
+Execute bin_t in the unprivileged user domains. This
+is an explicit transition, requiring the
+caller to use setexeccon().
</p>
</div>
@@ -59174,13 +61287,40 @@ Send a dbus message to all user domains.
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_getattr_sysadm_home_dir'>
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_append_staff_home_content_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_getattr_sysadm_home_dir</b>(
+<b>userdom_dontaudit_append_staff_home_content_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to append to the staff
+users home directory.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_getattr_sysadm_home_dirs'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_dontaudit_getattr_sysadm_home_dirs</b>(
@@ -59202,13 +61342,13 @@ home directory.
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_getattr_sysadm_tty'>
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_getattr_sysadm_ttys'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_getattr_sysadm_tty</b>(
+<b>userdom_dontaudit_getattr_sysadm_ttys</b>(
@@ -59229,13 +61369,13 @@ of sysadm ttys.
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_list_sysadm_home_dir'>
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_list_sysadm_home_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_list_sysadm_home_dir</b>(
+<b>userdom_dontaudit_list_sysadm_home_dirs</b>(
@@ -59256,13 +61396,67 @@ users home directory.
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_search_all_users_home'>
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_read_sysadm_home_content_files'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_dontaudit_read_sysadm_home_content_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to search the sysadm
+users home directory.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_relabelfrom_unpriv_users_ptys'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_dontaudit_relabelfrom_unpriv_users_ptys</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to relabel files from
+unprivileged user pty types.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_search_all_users_home_content'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_search_all_users_home</b>(
+<b>userdom_dontaudit_search_all_users_home_content</b>(
@@ -59282,13 +61476,39 @@ Do not audit attempts to search all users home directories.
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_search_staff_home_dir'>
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_search_generic_user_home_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_search_staff_home_dir</b>(
+<b>userdom_dontaudit_search_generic_user_home_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Don't audit search on the user home subdirectory.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_search_staff_home_dirs'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_dontaudit_search_staff_home_dirs</b>(
@@ -59309,13 +61529,254 @@ users home directory.
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_search_sysadm_home_dir'>
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_search_sysadm_home_dirs'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_dontaudit_search_sysadm_home_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to search the sysadm
+users home directory.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_use_all_users_fds'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_dontaudit_use_all_users_fds</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to inherit the file
+descriptors from any user domains.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_use_sysadm_ptys'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_dontaudit_use_sysadm_ptys</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Dont audit attempts to read and write sysadm ptys.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_use_sysadm_terms'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_dontaudit_use_sysadm_terms</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to use sysadm ttys and ptys.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_use_sysadm_ttys'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_dontaudit_use_sysadm_ttys</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to use sysadm ttys.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_use_unpriv_user_fds'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_dontaudit_use_unpriv_user_fds</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to inherit the
+file descriptors from all user domains.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_use_unpriv_users_ptys'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_dontaudit_use_unpriv_users_ptys</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to use unprivileged
+user ptys.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_use_unpriv_users_ttys'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_dontaudit_use_unpriv_users_ttys</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to use unprivileged
+user ttys.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_entry_spec_domtrans_sysadm'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_entry_spec_domtrans_sysadm</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute all entrypoint files in the sysadm domain. This
+is an explicit transition, requiring the
+caller to use setexeccon().
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_entry_spec_domtrans_unpriv_users'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_search_sysadm_home_dir</b>(
+<b>userdom_entry_spec_domtrans_unpriv_users</b>(
@@ -59328,21 +61789,22 @@ system</a><p/>
<div id="description">
<p>
-Do not audit attempts to search the sysadm
-users home directory.
+Execute all entrypoint files in unprivileged user
+domains. This is an explicit transition, requiring the
+caller to use setexeccon().
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_search_user_home_dirs'>
+Module: <a href='system_userdomain.html#link_userdom_generic_user_home_dir_filetrans_generic_user_home_content'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_search_user_home_dirs</b>(
+<b>userdom_generic_user_home_dir_filetrans_generic_user_home_content</b>(
@@ -59350,25 +61812,34 @@ system</a><p/>
domain
+
+ ,
+
+
+
+ object_class
+
+
)<br>
</div>
<div id="description">
<p>
-Don't audit search on the user home subdirectory.
+Create objects in generic user home directories
+with automatic file type transition.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_use_all_user_fd'>
+Module: <a href='system_userdomain.html#link_userdom_getattr_all_users'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_use_all_user_fd</b>(
+<b>userdom_getattr_all_users</b>(
@@ -59381,21 +61852,20 @@ system</a><p/>
<div id="description">
<p>
-Do not audit attempts to inherit the file
-descriptors from any user domains.
+Get the attributes of all user domains.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_use_sysadm_pty'>
+Module: <a href='system_userdomain.html#link_userdom_getattr_sysadm_home_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_use_sysadm_pty</b>(
+<b>userdom_getattr_sysadm_home_dirs</b>(
@@ -59408,20 +61878,21 @@ system</a><p/>
<div id="description">
<p>
-Dont audit attempts to read and write sysadm ptys.
+Get the attributes of the sysadm users
+home directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_use_sysadm_terms'>
+Module: <a href='system_userdomain.html#link_userdom_home_filetrans_generic_user_home_dir'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_use_sysadm_terms</b>(
+<b>userdom_home_filetrans_generic_user_home_dir</b>(
@@ -59434,20 +61905,21 @@ system</a><p/>
<div id="description">
<p>
-Do not audit attempts to use sysadm ttys and ptys.
+Create generic user home directories
+with automatic file type transition.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_use_sysadm_tty'>
+Module: <a href='system_userdomain.html#link_userdom_list_all_users_home_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_use_sysadm_tty</b>(
+<b>userdom_list_all_users_home_dirs</b>(
@@ -59460,20 +61932,20 @@ system</a><p/>
<div id="description">
<p>
-Do not audit attempts to use sysadm ttys.
+List all users home directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_use_unpriv_user_fd'>
+Module: <a href='system_userdomain.html#link_userdom_list_sysadm_home_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_use_unpriv_user_fd</b>(
+<b>userdom_list_sysadm_home_dirs</b>(
@@ -59486,21 +61958,20 @@ system</a><p/>
<div id="description">
<p>
-Do not audit attempts to inherit the
-file descriptors from all user domains.
+List the sysadm users home directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_use_unpriv_user_pty'>
+Module: <a href='system_userdomain.html#link_userdom_list_unpriv_users_tmp'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_use_unpriv_user_pty</b>(
+<b>userdom_list_unpriv_users_tmp</b>(
@@ -59513,21 +61984,20 @@ system</a><p/>
<div id="description">
<p>
-Do not audit attempts to use unprivileged
-user ptys.
+Read all unprivileged users temporary directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_use_unpriv_user_tty'>
+Module: <a href='system_userdomain.html#link_userdom_manage_all_users_home_content_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_use_unpriv_user_tty</b>(
+<b>userdom_manage_all_users_home_content_dirs</b>(
@@ -59540,21 +62010,21 @@ system</a><p/>
<div id="description">
<p>
-Do not audit attempts to use unprivileged
-user ttys.
+Create, read, write, and delete all directories
+in all users home directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_filetrans_generic_user_home'>
+Module: <a href='system_userdomain.html#link_userdom_manage_all_users_home_content_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_filetrans_generic_user_home</b>(
+<b>userdom_manage_all_users_home_content_files</b>(
@@ -59562,16 +62032,58 @@ system</a><p/>
domain
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create, read, write, and delete all files
+in all users home directories.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_manage_all_users_home_content_symlinks'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_manage_all_users_home_content_symlinks</b>(
+
- ,
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create, read, write, and delete all symlinks
+in all users home directories.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='system_userdomain.html#link_userdom_manage_generic_user_home_content_dirs'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_manage_generic_user_home_content_dirs</b>(
+
- [
- object_class
- ]
+ domain
)<br>
@@ -59579,21 +62091,22 @@ system</a><p/>
<div id="description">
<p>
-Create objects in generic user home directories
-with automatic file type transition.
+Create, read, write, and delete
+subdirectories of generic user
+home directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_filetrans_generic_user_home_dir'>
+Module: <a href='system_userdomain.html#link_userdom_manage_generic_user_home_content_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_filetrans_generic_user_home_dir</b>(
+<b>userdom_manage_generic_user_home_content_files</b>(
@@ -59606,21 +62119,21 @@ system</a><p/>
<div id="description">
<p>
-Create generic user home directories
-with automatic file type transition.
+Create, read, write, and delete files
+in generic user home directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_getattr_all_userdomains'>
+Module: <a href='system_userdomain.html#link_userdom_manage_generic_user_home_content_pipes'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_getattr_all_userdomains</b>(
+<b>userdom_manage_generic_user_home_content_pipes</b>(
@@ -59633,20 +62146,21 @@ system</a><p/>
<div id="description">
<p>
-Get the attributes of all user domains.
+Create, read, write, and delete named
+pipes in generic user home directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_getattr_sysadm_home_dir'>
+Module: <a href='system_userdomain.html#link_userdom_manage_generic_user_home_content_sockets'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_getattr_sysadm_home_dir</b>(
+<b>userdom_manage_generic_user_home_content_sockets</b>(
@@ -59659,21 +62173,21 @@ system</a><p/>
<div id="description">
<p>
-Get the attributes of the sysadm users
-home directory.
+Create, read, write, and delete named
+sockets in generic user home directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_list_sysadm_home_dir'>
+Module: <a href='system_userdomain.html#link_userdom_manage_generic_user_home_content_symlinks'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_list_sysadm_home_dir</b>(
+<b>userdom_manage_generic_user_home_content_symlinks</b>(
@@ -59686,20 +62200,21 @@ system</a><p/>
<div id="description">
<p>
-List the sysadm users home directory.
+Create, read, write, and delete symbolic
+links in generic user home directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_list_unpriv_user_tmp'>
+Module: <a href='system_userdomain.html#link_userdom_manage_unpriv_user_semaphores'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_list_unpriv_user_tmp</b>(
+<b>userdom_manage_unpriv_user_semaphores</b>(
@@ -59712,20 +62227,20 @@ system</a><p/>
<div id="description">
<p>
-Read all unprivileged users temporary directories.
+Manage unpriviledged user SysV sempaphores.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_all_user_dirs'>
+Module: <a href='system_userdomain.html#link_userdom_manage_unpriv_user_shared_mem'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_all_user_dirs</b>(
+<b>userdom_manage_unpriv_user_shared_mem</b>(
@@ -59738,21 +62253,21 @@ system</a><p/>
<div id="description">
<p>
-Create, read, write, and delete all directories
-in all users home directories.
+Manage unpriviledged user SysV shared
+memory segments.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_all_user_files'>
+Module: <a href='system_userdomain.html#link_userdom_priveleged_home_dir_manager'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_all_user_files</b>(
+<b>userdom_priveleged_home_dir_manager</b>(
@@ -59765,21 +62280,21 @@ system</a><p/>
<div id="description">
<p>
-Create, read, write, and delete all files
-in all users home directories.
+Make the specified domain a privileged
+home directory manager.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_all_user_symlinks'>
+Module: <a href='system_userdomain.html#link_userdom_read_all_tmp_untrusted_content'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_all_user_symlinks</b>(
+<b>userdom_read_all_tmp_untrusted_content</b>(
@@ -59792,21 +62307,20 @@ system</a><p/>
<div id="description">
<p>
-Create, read, write, and delete all symlinks
-in all users home directories.
+Read all user temporary untrusted content files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_generic_user_home_dir'>
+Module: <a href='system_userdomain.html#link_userdom_read_all_untrusted_content'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_generic_user_home_dir</b>(
+<b>userdom_read_all_untrusted_content</b>(
@@ -59819,21 +62333,20 @@ system</a><p/>
<div id="description">
<p>
-Create, read, write, and delete
-generic user home directories.
+Read all user untrusted content files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_generic_user_home_dirs'>
+Module: <a href='system_userdomain.html#link_userdom_read_all_users_home_content_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_generic_user_home_dirs</b>(
+<b>userdom_read_all_users_home_content_files</b>(
@@ -59846,22 +62359,20 @@ system</a><p/>
<div id="description">
<p>
-Create, read, write, and delete
-subdirectories of generic user
-home directories.
+Read all files in all users home directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_generic_user_home_files'>
+Module: <a href='system_userdomain.html#link_userdom_read_all_users_state'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_generic_user_home_files</b>(
+<b>userdom_read_all_users_state</b>(
@@ -59874,21 +62385,20 @@ system</a><p/>
<div id="description">
<p>
-Create, read, write, and delete files
-in generic user home directories.
+Read the process state of all user domains.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_generic_user_home_pipes'>
+Module: <a href='system_userdomain.html#link_userdom_read_staff_home_content_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_generic_user_home_pipes</b>(
+<b>userdom_read_staff_home_content_files</b>(
@@ -59901,21 +62411,20 @@ system</a><p/>
<div id="description">
<p>
-Create, read, write, and delete named
-pipes in generic user home directories.
+Read files in the staff users home directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_generic_user_home_sockets'>
+Module: <a href='system_userdomain.html#link_userdom_read_sysadm_home_content_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_generic_user_home_sockets</b>(
+<b>userdom_read_sysadm_home_content_files</b>(
@@ -59928,21 +62437,20 @@ system</a><p/>
<div id="description">
<p>
-Create, read, write, and delete named
-sockets in generic user home directories.
+Read files in the sysadm users home directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_generic_user_home_symlinks'>
+Module: <a href='system_userdomain.html#link_userdom_read_unpriv_users_home_content_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_generic_user_home_symlinks</b>(
+<b>userdom_read_unpriv_users_home_content_files</b>(
@@ -59955,21 +62463,21 @@ system</a><p/>
<div id="description">
<p>
-Create, read, write, and delete symbolic
-links in generic user home directories.
+Read all unprivileged users home directory
+files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_unpriv_user_semaphores'>
+Module: <a href='system_userdomain.html#link_userdom_read_unpriv_users_tmp_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_unpriv_user_semaphores</b>(
+<b>userdom_read_unpriv_users_tmp_files</b>(
@@ -59982,20 +62490,20 @@ system</a><p/>
<div id="description">
<p>
-Manage unpriviledged user SysV sempaphores.
+Read all unprivileged users temporary files.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_unpriv_user_shared_mem'>
+Module: <a href='system_userdomain.html#link_userdom_read_unpriv_users_tmp_symlinks'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_unpriv_user_shared_mem</b>(
+<b>userdom_read_unpriv_users_tmp_symlinks</b>(
@@ -60008,21 +62516,20 @@ system</a><p/>
<div id="description">
<p>
-Manage unpriviledged user SysV shared
-memory segments.
+Read all unprivileged users temporary symbolic links.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_priveleged_home_dir_manager'>
+Module: <a href='system_userdomain.html#link_userdom_relabelto_unpriv_users_ptys'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_priveleged_home_dir_manager</b>(
+<b>userdom_relabelto_unpriv_users_ptys</b>(
@@ -60035,21 +62542,20 @@ system</a><p/>
<div id="description">
<p>
-Make the specified domain a privileged
-home directory manager.
+Relabel files to unprivileged user pty types.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_read_all_user_files'>
+Module: <a href='system_userdomain.html#link_userdom_rw_sysadm_pipes'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_read_all_user_files</b>(
+<b>userdom_rw_sysadm_pipes</b>(
@@ -60062,20 +62568,20 @@ system</a><p/>
<div id="description">
<p>
-Read all files in all users home directories.
+Read and write sysadm user unnamed pipes.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_read_all_userdomains_state'>
+Module: <a href='system_userdomain.html#link_userdom_sbin_spec_domtrans_sysadm'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_read_all_userdomains_state</b>(
+<b>userdom_sbin_spec_domtrans_sysadm</b>(
@@ -60088,20 +62594,20 @@ system</a><p/>
<div id="description">
<p>
-Read the process state of all user domains.
+Execute a generic sbin program in the sysadm domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_read_staff_home_files'>
+Module: <a href='system_userdomain.html#link_userdom_sbin_spec_domtrans_unpriv_users'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_read_staff_home_files</b>(
+<b>userdom_sbin_spec_domtrans_unpriv_users</b>(
@@ -60114,20 +62620,22 @@ system</a><p/>
<div id="description">
<p>
-Read files in the staff users home directory.
+Execute generic sbin programs in all unprivileged user
+domains. This is an explicit transition, requiring the
+caller to use setexeccon().
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_read_sysadm_home_files'>
+Module: <a href='system_userdomain.html#link_userdom_search_all_users_home_content'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_read_sysadm_home_files</b>(
+<b>userdom_search_all_users_home_content</b>(
@@ -60140,20 +62648,20 @@ system</a><p/>
<div id="description">
<p>
-Read files in the sysadm users home directory.
+Search all users home directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_read_unpriv_user_home_files'>
+Module: <a href='system_userdomain.html#link_userdom_search_generic_user_home_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_read_unpriv_user_home_files</b>(
+<b>userdom_search_generic_user_home_dirs</b>(
@@ -60166,21 +62674,20 @@ system</a><p/>
<div id="description">
<p>
-Read all unprivileged users home directory
-files.
+Search generic user home directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_read_unpriv_user_tmp_files'>
+Module: <a href='system_userdomain.html#link_userdom_search_staff_home_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_read_unpriv_user_tmp_files</b>(
+<b>userdom_search_staff_home_dirs</b>(
@@ -60193,20 +62700,20 @@ system</a><p/>
<div id="description">
<p>
-Read all unprivileged users temporary files.
+Search the staff users home directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_read_unpriv_user_tmp_symlinks'>
+Module: <a href='system_userdomain.html#link_userdom_search_sysadm_home_content_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_read_unpriv_user_tmp_symlinks</b>(
+<b>userdom_search_sysadm_home_content_dirs</b>(
@@ -60219,20 +62726,20 @@ system</a><p/>
<div id="description">
<p>
-Read all unprivileged users temporary symbolic links.
+Search the sysadm users home sub directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_rw_sysadm_pipe'>
+Module: <a href='system_userdomain.html#link_userdom_search_sysadm_home_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_rw_sysadm_pipe</b>(
+<b>userdom_search_sysadm_home_dirs</b>(
@@ -60245,20 +62752,20 @@ system</a><p/>
<div id="description">
<p>
-Read and write sysadm user unnamed pipes.
+Search the sysadm users home directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_search_all_users_home'>
+Module: <a href='system_userdomain.html#link_userdom_search_unpriv_users_home_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_search_all_users_home</b>(
+<b>userdom_search_unpriv_users_home_dirs</b>(
@@ -60271,20 +62778,20 @@ system</a><p/>
<div id="description">
<p>
-Search all users home directories.
+Search all unprivileged users home directories.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_search_generic_user_home_dir'>
+Module: <a href='system_userdomain.html#link_userdom_setattr_unpriv_users_ptys'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_search_generic_user_home_dir</b>(
+<b>userdom_setattr_unpriv_users_ptys</b>(
@@ -60297,20 +62804,20 @@ system</a><p/>
<div id="description">
<p>
-Search generic user home directories.
+Set the attributes of user ptys.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_search_staff_home_dir'>
+Module: <a href='system_userdomain.html#link_userdom_shell_domtrans_sysadm'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_search_staff_home_dir</b>(
+<b>userdom_shell_domtrans_sysadm</b>(
@@ -60323,20 +62830,20 @@ system</a><p/>
<div id="description">
<p>
-Search the staff users home directory.
+Execute a shell in the sysadm domain.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_search_sysadm_home_dir'>
+Module: <a href='system_userdomain.html#link_userdom_sigchld_all_users'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_search_sysadm_home_dir</b>(
+<b>userdom_sigchld_all_users</b>(
@@ -60349,20 +62856,20 @@ system</a><p/>
<div id="description">
<p>
-Search the sysadm users home directory.
+Send a SIGCHLD signal to all user domains.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_search_sysadm_home_subdirs'>
+Module: <a href='system_userdomain.html#link_userdom_sigchld_sysadm'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_search_sysadm_home_subdirs</b>(
+<b>userdom_sigchld_sysadm</b>(
@@ -60375,20 +62882,20 @@ system</a><p/>
<div id="description">
<p>
-Search the sysadm users home sub directories.
+Send a SIGCHLD signal to sysadm users.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_search_unpriv_user_home_dirs'>
+Module: <a href='system_userdomain.html#link_userdom_signal_all_users'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_search_unpriv_user_home_dirs</b>(
+<b>userdom_signal_all_users</b>(
@@ -60401,20 +62908,20 @@ system</a><p/>
<div id="description">
<p>
-Search all unprivileged users home directories.
+Send general signals to all user domains.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_setattr_unpriv_user_pty'>
+Module: <a href='system_userdomain.html#link_userdom_signal_unpriv_users'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_setattr_unpriv_user_pty</b>(
+<b>userdom_signal_unpriv_users</b>(
@@ -60427,20 +62934,20 @@ system</a><p/>
<div id="description">
<p>
-Set the attributes of user ptys.
+Send general signals to unprivileged user domains.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_shell_domtrans_sysadm'>
+Module: <a href='system_userdomain.html#link_userdom_spec_domtrans_all_users'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_shell_domtrans_sysadm</b>(
+<b>userdom_spec_domtrans_all_users</b>(
@@ -60453,20 +62960,22 @@ system</a><p/>
<div id="description">
<p>
-Execute a shell in the sysadm domain.
+Execute a shell in all user domains. This
+is an explicit transition, requiring the
+caller to use setexeccon().
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_sigchld_all_users'>
+Module: <a href='system_userdomain.html#link_userdom_spec_domtrans_unpriv_users'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_sigchld_all_users</b>(
+<b>userdom_spec_domtrans_unpriv_users</b>(
@@ -60479,20 +62988,22 @@ system</a><p/>
<div id="description">
<p>
-Send a SIGCHLD signal to all user domains.
+Execute a shell in all unprivileged user domains. This
+is an explicit transition, requiring the
+caller to use setexeccon().
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_sigchld_sysadm'>
+Module: <a href='system_userdomain.html#link_userdom_sysadm_home_dir_filetrans'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_sigchld_sysadm</b>(
+<b>userdom_sysadm_home_dir_filetrans</b>(
@@ -60500,25 +63011,42 @@ system</a><p/>
domain
+
+ ,
+
+
+
+ private type
+
+
+
+ ,
+
+
+
+ object_class
+
+
)<br>
</div>
<div id="description">
<p>
-Send a SIGCHLD signal to sysadm users.
+Create objects in sysadm home directories
+with automatic file type transition.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_signal_all_users'>
+Module: <a href='system_userdomain.html#link_userdom_unconfined'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_signal_all_users</b>(
+<b>userdom_unconfined</b>(
@@ -60531,20 +63059,20 @@ system</a><p/>
<div id="description">
<p>
-Send general signals to all user domains.
+Unconfined access to user domains.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_signal_unpriv_users'>
+Module: <a href='system_userdomain.html#link_userdom_use_all_users_fds'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_signal_unpriv_users</b>(
+<b>userdom_use_all_users_fds</b>(
@@ -60557,20 +63085,20 @@ system</a><p/>
<div id="description">
<p>
-Send general signals to unprivileged user domains.
+Inherit the file descriptors from all user domains
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_spec_domtrans_all_users'>
+Module: <a href='system_userdomain.html#link_userdom_use_sysadm_fds'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_spec_domtrans_all_users</b>(
+<b>userdom_use_sysadm_fds</b>(
@@ -60583,22 +63111,20 @@ system</a><p/>
<div id="description">
<p>
-Execute a shell in all user domains. This
-is an explicit transition, requiring the
-caller to use setexeccon().
+Inherit and use sysadm file descriptors
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_spec_domtrans_unpriv_users'>
+Module: <a href='system_userdomain.html#link_userdom_use_sysadm_ptys'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_spec_domtrans_unpriv_users</b>(
+<b>userdom_use_sysadm_ptys</b>(
@@ -60611,22 +63137,20 @@ system</a><p/>
<div id="description">
<p>
-Execute a shell in all unprivileged user domains. This
-is an explicit transition, requiring the
-caller to use setexeccon().
+Read and write sysadm ptys.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_unconfined'>
+Module: <a href='system_userdomain.html#link_userdom_use_sysadm_terms'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_unconfined</b>(
+<b>userdom_use_sysadm_terms</b>(
@@ -60639,20 +63163,20 @@ system</a><p/>
<div id="description">
<p>
-Unconfined access to user domains.
+Read and write sysadm ttys and ptys.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_use_all_user_fd'>
+Module: <a href='system_userdomain.html#link_userdom_use_sysadm_ttys'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_use_all_user_fd</b>(
+<b>userdom_use_sysadm_ttys</b>(
@@ -60665,20 +63189,20 @@ system</a><p/>
<div id="description">
<p>
-Inherit the file descriptors from all user domains
+Read and write sysadm ttys.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_use_sysadm_fd'>
+Module: <a href='system_userdomain.html#link_userdom_use_unpriv_users_fds'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_use_sysadm_fd</b>(
+<b>userdom_use_unpriv_users_fds</b>(
@@ -60691,20 +63215,20 @@ system</a><p/>
<div id="description">
<p>
-Inherit and use sysadm file descriptors
+Inherit the file descriptors from unprivileged user domains.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_use_sysadm_pty'>
+Module: <a href='system_userdomain.html#link_userdom_use_unpriv_users_ptys'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_use_sysadm_pty</b>(
+<b>userdom_use_unpriv_users_ptys</b>(
@@ -60717,20 +63241,20 @@ system</a><p/>
<div id="description">
<p>
-Read and write sysadm ptys.
+Read and write unprivileged user ptys.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_use_sysadm_terms'>
+Module: <a href='system_userdomain.html#link_userdom_write_unpriv_users_tmp_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_use_sysadm_terms</b>(
+<b>userdom_write_unpriv_users_tmp_files</b>(
@@ -60743,20 +63267,20 @@ system</a><p/>
<div id="description">
<p>
-Read and write sysadm ttys and ptys.
+Write all unprivileged users files in /tmp
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_use_sysadm_tty'>
+Module: <a href='system_userdomain.html#link_userdom_xsession_spec_domtrans_all_users'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_use_sysadm_tty</b>(
+<b>userdom_xsession_spec_domtrans_all_users</b>(
@@ -60769,20 +63293,22 @@ system</a><p/>
<div id="description">
<p>
-Read and write sysadm ttys.
+Execute an Xserver session in all unprivileged user domains. This
+is an explicit transition, requiring the
+caller to use setexeccon().
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_use_unpriv_user_pty'>
+Module: <a href='system_userdomain.html#link_userdom_xsession_spec_domtrans_unpriv_users'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_use_unpriv_user_pty</b>(
+<b>userdom_xsession_spec_domtrans_unpriv_users</b>(
@@ -60795,20 +63321,22 @@ system</a><p/>
<div id="description">
<p>
-Read and write unprivileged user ptys.
+Execute an Xserver session in all unprivileged user domains. This
+is an explicit transition, requiring the
+caller to use setexeccon().
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_use_unpriv_users_fd'>
-userdomain</a><p/>
-Layer: <a href='system.html'>
-system</a><p/>
+Module: <a href='apps_userhelper.html#link_userhelper_dontaudit_search_config'>
+userhelper</a><p/>
+Layer: <a href='apps.html'>
+apps</a><p/>
<div id="codeblock">
-<b>userdom_use_unpriv_users_fd</b>(
+<b>userhelper_dontaudit_search_config</b>(
@@ -60821,20 +63349,21 @@ system</a><p/>
<div id="description">
<p>
-Inherit the file descriptors from unprivileged user domains.
+Do not audit attempts to search
+the userhelper configuration directory.
</p>
</div>
</div>
<div id="interfacesmall">
-Module: <a href='system_userdomain.html#link_userdom_write_unpriv_user_tmp'>
-userdomain</a><p/>
-Layer: <a href='system.html'>
-system</a><p/>
+Module: <a href='apps_userhelper.html#link_userhelper_search_config'>
+userhelper</a><p/>
+Layer: <a href='apps.html'>
+apps</a><p/>
<div id="codeblock">
-<b>userdom_write_unpriv_user_tmp</b>(
+<b>userhelper_search_config</b>(
@@ -60847,7 +63376,7 @@ system</a><p/>
<div id="description">
<p>
-Write all unprivileged users files in /tmp
+Search the userhelper configuration directory.
</p>
</div>
@@ -61227,6 +63756,75 @@ allow the specified role the useradd domain.
</div>
<div id="interfacesmall">
+Module: <a href='apps_usernetctl.html#link_usernetctl_domtrans'>
+usernetctl</a><p/>
+Layer: <a href='apps.html'>
+apps</a><p/>
+<div id="codeblock">
+
+<b>usernetctl_domtrans</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute usernetctl in the usernetctl domain.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='apps_usernetctl.html#link_usernetctl_run'>
+usernetctl</a><p/>
+Layer: <a href='apps.html'>
+apps</a><p/>
+<div id="codeblock">
+
+<b>usernetctl_run</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ role
+
+
+
+ ,
+
+
+
+ terminal
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute usernetctl in the usernetctl domain, and
+allow the specified role the usernetctl domain.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='admin_vbetool.html#link_vbetool_domtrans'>
vbetool</a><p/>
Layer: <a href='admin.html'>
@@ -61238,12 +63836,8 @@ admin</a><p/>
- [
-
domain
- ]
-
)<br>
</div>
@@ -61421,13 +64015,39 @@ allow the specified role the webalizer domain.
</div>
<div id="interfacesmall">
-Module: <a href='services_xfs.html#link_xfs_read_socket'>
+Module: <a href='apps_wine.html#link_wine_domtrans'>
+wine</a><p/>
+Layer: <a href='apps.html'>
+apps</a><p/>
+<div id="codeblock">
+
+<b>wine_domtrans</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute the wine program in the wine domain.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_xfs.html#link_xfs_read_sockets'>
xfs</a><p/>
Layer: <a href='services.html'>
services</a><p/>
<div id="codeblock">
-<b>xfs_read_socket</b>(
+<b>xfs_read_sockets</b>(
@@ -61447,6 +64067,307 @@ Read a X font server named socket.
</div>
<div id="interfacesmall">
+Module: <a href='services_xfs.html#link_xfs_stream_connect'>
+xfs</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xfs_stream_connect</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Connect to a X font server over
+a unix domain stream socket.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_xserver.html#link_xserver_create_xdm_tmp_sockets'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_create_xdm_tmp_sockets</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create a named socket in a XDM
+temporary directory.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_xserver.html#link_xserver_delete_log'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_delete_log</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to write the X server
+log files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_xserver.html#link_xserver_domtrans_xdm_xserver'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_domtrans_xdm_xserver</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute the X server in the XDM X server domain.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_xserver.html#link_xserver_dontaudit_write_log'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_dontaudit_write_log</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to write the X server
+log files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_xserver.html#link_xserver_read_xdm_pid'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_read_xdm_pid</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read XDM pid files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_xserver.html#link_xserver_read_xdm_rw_config'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_read_xdm_rw_config</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read xdm-writable configuration files.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_xserver.html#link_xserver_setattr_xdm_tmp_dirs'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_setattr_xdm_tmp_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Set the attributes of XDM temporary directories.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_xserver.html#link_xserver_stream_connect_xdm'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_stream_connect_xdm</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Connect to XDM over a unix domain
+stream socket.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_xserver.html#link_xserver_xsession_entry_type'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_xsession_entry_type</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Make an X session script an entrypoint for the specified domain.
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
+Module: <a href='services_xserver.html#link_xserver_xsession_spec_domtrans'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_xsession_spec_domtrans</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ target_domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Execute an X session in the target domain. This
+is an explicit transition, requiring the
+caller to use setexeccon().
+</p>
+</div>
+
+</div>
+
+<div id="interfacesmall">
Module: <a href='services_zebra.html#link_zebra_read_config'>
zebra</a><p/>
Layer: <a href='services.html'>
diff --git a/www/api-docs/kernel.html b/www/api-docs/kernel.html
index ac3a835..7b9a351 100644
--- a/www/api-docs/kernel.html
+++ b/www/api-docs/kernel.html
@@ -25,9 +25,6 @@
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -49,6 +46,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -108,11 +108,6 @@ and unlabeled processes and objects.
<tr><td>
- <a href='kernel_bootloader.html'>
- bootloader</a></td>
- <td><p>Policy for the kernel modules, kernel image, and bootloader.</p></td>
-
- <tr><td>
<a href='kernel_corecommands.html'>
corecommands</a></td>
<td><p>
@@ -158,6 +153,11 @@ and unlabeled processes and objects.
</p></td>
<tr><td>
+ <a href='kernel_mcs.html'>
+ mcs</a></td>
+ <td><p>Multicategory security policy</p></td>
+
+ <tr><td>
<a href='kernel_mls.html'>
mls</a></td>
<td><p>Multilevel security policy</p></td>
diff --git a/www/api-docs/kernel_bootloader.html b/www/api-docs/kernel_bootloader.html
deleted file mode 100644
index a5dd10e..0000000
--- a/www/api-docs/kernel_bootloader.html
+++ /dev/null
@@ -1,1121 +0,0 @@
-<html>
-<head>
-<title>
- Security Enhanced Linux Reference Policy
- </title>
-<style type="text/css" media="all">@import "style.css";</style>
-</head>
-<body>
-<div id="Header">Security Enhanced Linux Reference Policy</div>
-<div id='Menu'>
-
- <a href="admin.html">+
- admin</a></br/>
- <div id='subitem'>
-
- </div>
-
- <a href="apps.html">+
- apps</a></br/>
- <div id='subitem'>
-
- </div>
-
- <a href="kernel.html">+
- kernel</a></br/>
- <div id='subitem'>
-
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- - <a href='kernel_corecommands.html'>
- corecommands</a><br/>
-
- - <a href='kernel_corenetwork.html'>
- corenetwork</a><br/>
-
- - <a href='kernel_devices.html'>
- devices</a><br/>
-
- - <a href='kernel_domain.html'>
- domain</a><br/>
-
- - <a href='kernel_files.html'>
- files</a><br/>
-
- - <a href='kernel_filesystem.html'>
- filesystem</a><br/>
-
- - <a href='kernel_kernel.html'>
- kernel</a><br/>
-
- - <a href='kernel_mls.html'>
- mls</a><br/>
-
- - <a href='kernel_selinux.html'>
- selinux</a><br/>
-
- - <a href='kernel_storage.html'>
- storage</a><br/>
-
- - <a href='kernel_terminal.html'>
- terminal</a><br/>
-
- </div>
-
- <a href="services.html">+
- services</a></br/>
- <div id='subitem'>
-
- </div>
-
- <a href="system.html">+
- system</a></br/>
- <div id='subitem'>
-
- </div>
-
- <br/><p/>
- <a href="global_booleans.html">* Global Booleans </a>
- <br/><p/>
- <a href="global_tunables.html">* Global Tunables </a>
- <p/><br/><p/>
- <a href="index.html">* Layer Index</a>
- <br/><p/>
- <a href="interfaces.html">* Interface Index</a>
- <br/><p/>
- <a href="templates.html">* Template Index</a>
-</div>
-
-<div id="Content">
-<a name="top":></a>
-<h1>Layer: kernel</h1><p/>
-<h2>Module: bootloader</h2><p/>
-
-<h3>Description:</h3>
-
-<p><p>Policy for the kernel modules, kernel image, and bootloader.</p></p>
-
-
-
-<a name="interfaces"></a>
-<h3>Interfaces: </h3>
-
-<a name="link_bootloader_create_kernel_img"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_create_kernel_img</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Install a kernel into the /boot directory.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_create_kernel_symbol_table"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_create_kernel_symbol_table</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Install a system.map into the /boot directory.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_create_runtime_file"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_create_runtime_file</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Read and write the bootloader
-temporary data in /tmp.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_delete_kernel"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_delete_kernel</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Delete a kernel from /boot.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_delete_kernel_symbol_table"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_delete_kernel_symbol_table</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Delete a system.map in the /boot directory.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_domtrans"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_domtrans</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Execute bootloader in the bootloader domain.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_dontaudit_getattr_boot_dir"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_dontaudit_getattr_boot_dir</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Do not audit attempts to get attributes
-of the /boot directory.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-Domain to not audit.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_dontaudit_search_boot"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_dontaudit_search_boot</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Do not audit attempts to search the /boot directory.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_filetrans_modules"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_filetrans_modules</b>(
-
-
-
-
- ?
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Summary is missing!
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-?
-</td><td>
-
-Parameter descriptions are missing!
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_getattr_boot_dir"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_getattr_boot_dir</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Get attributes of the /boot directory.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-Domain to not audit.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_getattr_kernel_modules"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_getattr_kernel_modules</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Get the attributes of kernel module files.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_list_kernel_modules"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_list_kernel_modules</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-List the contents of the kernel module directories.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_manage_kernel_modules"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_manage_kernel_modules</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Create, read, write, and delete
-kernel module files.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_read_config"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_read_config</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Read the bootloader configuration file.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_read_kernel_modules"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_read_kernel_modules</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Read kernel module files.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_read_kernel_symbol_table"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_read_kernel_symbol_table</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Read system.map in the /boot directory.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_run"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_run</b>(
-
-
-
-
- domain
-
-
-
- ,
-
-
-
- role
-
-
-
- ,
-
-
-
- terminal
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Execute bootloader interactively and do
-a domain transition to the bootloader domain.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-role
-</td><td>
-
-The role to be allowed the bootloader domain.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-terminal
-</td><td>
-
-The type of the terminal allow the bootloader domain to use.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_rw_boot_symlinks"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_rw_boot_symlinks</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Read and write symbolic links
-in the /boot directory.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_rw_config"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_rw_config</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Read and write the bootloader
-configuration file.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_rw_tmp_file"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_rw_tmp_file</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Read and write the bootloader
-temporary data in /tmp.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_search_boot"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_search_boot</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Search the /boot directory.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_search_kernel_modules"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_search_kernel_modules</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Search the contents of the kernel module directories.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_bootloader_write_kernel_modules"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>bootloader_write_kernel_modules</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Write kernel module files.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-
-<a href=#top>Return</a>
-
-
-
-
-</div>
-</body>
-</html>
diff --git a/www/api-docs/kernel_corecommands.html b/www/api-docs/kernel_corecommands.html
index c44acb3..2d8ecfd 100644
--- a/www/api-docs/kernel_corecommands.html
+++ b/www/api-docs/kernel_corecommands.html
@@ -25,9 +25,6 @@
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -49,6 +46,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -149,9 +149,9 @@ on the strict policy.
<tr><td>
domain
</td><td>
-
+<p>
Alias type for bin_t.
-
+</p>
</td><td>
No
</td></tr>
@@ -220,9 +220,9 @@ the ssh-agent policy.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -230,9 +230,92 @@ No
<tr><td>
target_domain
</td><td>
-
+<p>
The type of the new process.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corecmd_bin_spec_domtrans"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corecmd_bin_spec_domtrans</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ target_domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute a file in a bin directory
+in the specified domain but do not
+do it automatically. This is an explicit
+transition, requiring the caller to use setexeccon().
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Execute a file in a bin directory
+in the specified domain. This allows
+the specified domain to execute any file
+on these filesystems in the specified
+domain. This is not suggested.
+</p><p>
+</p><p>
+No interprocess communication (signals, pipes,
+etc.) is provided by this interface since
+the domains are not owned by this module.
+</p><p>
+</p><p>
+This interface was added to handle
+the userhelper policy.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+target_domain
+</td><td>
+<p>
+The type of the new process.
+</p>
</td><td>
No
</td></tr>
@@ -272,9 +355,9 @@ Check if a shell is executable (DAC-wise).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -283,13 +366,13 @@ No
</div>
</div>
-<a name="link_corecmd_dontaudit_getattr_sbin_file"></a>
+<a name="link_corecmd_dontaudit_getattr_sbin_files"></a>
<div id="interface">
<div id="codeblock">
-<b>corecmd_dontaudit_getattr_sbin_file</b>(
+<b>corecmd_dontaudit_getattr_sbin_files</b>(
@@ -314,9 +397,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -357,9 +440,9 @@ sbin directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -399,9 +482,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -441,9 +524,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -483,9 +566,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -525,9 +608,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -567,9 +650,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -578,13 +661,13 @@ No
</div>
</div>
-<a name="link_corecmd_getattr_bin_file"></a>
+<a name="link_corecmd_getattr_bin_files"></a>
<div id="interface">
<div id="codeblock">
-<b>corecmd_getattr_bin_file</b>(
+<b>corecmd_getattr_bin_files</b>(
@@ -609,9 +692,9 @@ Get the attributes of files in bin directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -620,13 +703,13 @@ No
</div>
</div>
-<a name="link_corecmd_getattr_sbin_file"></a>
+<a name="link_corecmd_getattr_sbin_files"></a>
<div id="interface">
<div id="codeblock">
-<b>corecmd_getattr_sbin_file</b>(
+<b>corecmd_getattr_sbin_files</b>(
@@ -651,9 +734,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -693,9 +776,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -735,9 +818,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -777,9 +860,9 @@ Create, read, write, and delete bin files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -819,9 +902,9 @@ Create, read, write, and delete sbin files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -861,9 +944,9 @@ Mmap a bin file as executable.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -903,9 +986,9 @@ Mmap a sbin file as executable.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -914,13 +997,13 @@ No
</div>
</div>
-<a name="link_corecmd_read_bin_file"></a>
+<a name="link_corecmd_read_bin_files"></a>
<div id="interface">
<div id="codeblock">
-<b>corecmd_read_bin_file</b>(
+<b>corecmd_read_bin_files</b>(
@@ -945,9 +1028,9 @@ Read files in bin directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -956,13 +1039,13 @@ No
</div>
</div>
-<a name="link_corecmd_read_bin_pipe"></a>
+<a name="link_corecmd_read_bin_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>corecmd_read_bin_pipe</b>(
+<b>corecmd_read_bin_pipes</b>(
@@ -987,9 +1070,9 @@ Read pipes in bin directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -998,13 +1081,13 @@ No
</div>
</div>
-<a name="link_corecmd_read_bin_socket"></a>
+<a name="link_corecmd_read_bin_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>corecmd_read_bin_socket</b>(
+<b>corecmd_read_bin_sockets</b>(
@@ -1029,9 +1112,9 @@ Read named sockets in bin directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1040,13 +1123,13 @@ No
</div>
</div>
-<a name="link_corecmd_read_bin_symlink"></a>
+<a name="link_corecmd_read_bin_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>corecmd_read_bin_symlink</b>(
+<b>corecmd_read_bin_symlinks</b>(
@@ -1071,9 +1154,9 @@ Read symbolic links in bin directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1082,13 +1165,13 @@ No
</div>
</div>
-<a name="link_corecmd_read_sbin_file"></a>
+<a name="link_corecmd_read_sbin_files"></a>
<div id="interface">
<div id="codeblock">
-<b>corecmd_read_sbin_file</b>(
+<b>corecmd_read_sbin_files</b>(
@@ -1113,9 +1196,9 @@ Read files in sbin directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1124,13 +1207,13 @@ No
</div>
</div>
-<a name="link_corecmd_read_sbin_pipe"></a>
+<a name="link_corecmd_read_sbin_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>corecmd_read_sbin_pipe</b>(
+<b>corecmd_read_sbin_pipes</b>(
@@ -1155,9 +1238,9 @@ Read named pipes in sbin directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1166,13 +1249,13 @@ No
</div>
</div>
-<a name="link_corecmd_read_sbin_socket"></a>
+<a name="link_corecmd_read_sbin_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>corecmd_read_sbin_socket</b>(
+<b>corecmd_read_sbin_sockets</b>(
@@ -1197,9 +1280,9 @@ Read named sockets in sbin directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1208,13 +1291,13 @@ No
</div>
</div>
-<a name="link_corecmd_read_sbin_symlink"></a>
+<a name="link_corecmd_read_sbin_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>corecmd_read_sbin_symlink</b>(
+<b>corecmd_read_sbin_symlinks</b>(
@@ -1239,9 +1322,9 @@ Read symbolic links in sbin directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1281,9 +1364,9 @@ Relabel to and from the bin type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1323,9 +1406,9 @@ Relabel to and from the sbin type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1394,9 +1477,9 @@ the ssh-agent policy.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1404,9 +1487,92 @@ No
<tr><td>
target_domain
</td><td>
-
+<p>
The type of the new process.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corecmd_sbin_spec_domtrans"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corecmd_sbin_spec_domtrans</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ target_domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute a file in a sbin directory
+in the specified domain but do not
+do it automatically. This is an explicit
+transition, requiring the caller to use setexeccon().
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Execute a file in a sbin directory
+in the specified domain. This allows
+the specified domain to execute any file
+on these filesystems in the specified
+domain. This is not suggested.
+</p><p>
+</p><p>
+No interprocess communication (signals, pipes,
+etc.) is provided by this interface since
+the domains are not owned by this module.
+</p><p>
+</p><p>
+This interface was added to handle
+the userhelper policy.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+target_domain
+</td><td>
+<p>
+The type of the new process.
+</p>
</td><td>
No
</td></tr>
@@ -1446,9 +1612,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1488,9 +1654,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1550,9 +1716,9 @@ the domains are not owned by this module.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1560,9 +1726,9 @@ No
<tr><td>
target_domain
</td><td>
-
+<p>
The type of the shell process.
-
+</p>
</td><td>
No
</td></tr>
@@ -1602,9 +1768,9 @@ Make the shell an entrypoint for the specified domain.
<tr><td>
domain
</td><td>
-
+<p>
The domain for which the shell is an entrypoint.
-
+</p>
</td><td>
No
</td></tr>
@@ -1668,9 +1834,9 @@ the domains are not owned by this module.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1678,9 +1844,9 @@ No
<tr><td>
target_domain
</td><td>
-
+<p>
The type of the shell process.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/kernel_corenetwork.html b/www/api-docs/kernel_corenetwork.html
index 6697c54..6684ccf 100644
--- a/www/api-docs/kernel_corenetwork.html
+++ b/www/api-docs/kernel_corenetwork.html
@@ -25,9 +25,6 @@
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -49,6 +46,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -103,6 +103,48 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
+<a name="link_corenet_dontaudit_tcp_bind_all_ports"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_dontaudit_tcp_bind_all_ports</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attepts to bind TCP sockets to any ports.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to not audit.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
<a name="link_corenet_dontaudit_tcp_bind_all_reserved_ports"></a>
<div id="interface">
@@ -134,9 +176,9 @@ Do not audit attempts to bind TCP sockets to all reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -177,9 +219,9 @@ all reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -219,9 +261,9 @@ Do not audit attempts to bind UDP sockets to all reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -263,9 +305,9 @@ session.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -305,9 +347,9 @@ Bind raw sockets to all nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -347,9 +389,9 @@ Receive raw IP packets on all interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -389,9 +431,9 @@ Receive raw IP packets on all nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -431,9 +473,9 @@ Receive raw IP packets on the compat_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -473,9 +515,9 @@ Receive raw IP packets on generic interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -515,9 +557,9 @@ Receive raw IP packets on generic nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -557,9 +599,9 @@ Receive raw IP packets on the inaddr_any node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -599,9 +641,9 @@ Receive raw IP packets on the link_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -641,9 +683,9 @@ Receive raw IP packets on the lo interface.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -683,9 +725,9 @@ Receive raw IP packets on the lo node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -725,9 +767,9 @@ Receive raw IP packets on the mapped_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -767,9 +809,9 @@ Receive raw IP packets on the multicast node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -809,9 +851,9 @@ Receive raw IP packets on the site_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -851,9 +893,9 @@ Receive raw IP packets on the unspec node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -893,9 +935,9 @@ Send raw IP packets on all interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -935,9 +977,9 @@ Send raw IP packets on all nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -977,9 +1019,9 @@ Send raw IP packets on the compat_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1019,9 +1061,9 @@ Send raw IP packets on generic interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1061,9 +1103,9 @@ Send raw IP packets on generic nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1103,9 +1145,9 @@ Send raw IP packets on the inaddr_any node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1145,9 +1187,9 @@ Send raw IP packets on the link_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1187,9 +1229,9 @@ Send raw IP packets on the lo interface.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1229,9 +1271,9 @@ Send raw IP packets on the lo node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1271,9 +1313,9 @@ Send raw IP packets on the mapped_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1313,9 +1355,9 @@ Send raw IP packets on the multicast node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1355,9 +1397,9 @@ Send raw IP packets on the site_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1397,9 +1439,9 @@ Send raw IP packets on the unspec node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1439,9 +1481,9 @@ Send and receive raw IP packets on all interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1481,9 +1523,9 @@ Send and receive raw IP packets on all nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1523,9 +1565,9 @@ Send and receive raw IP packets on the compat_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1565,9 +1607,9 @@ Send and receive raw IP packets on generic interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1607,9 +1649,9 @@ Send and receive raw IP packets on generic nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1649,9 +1691,9 @@ Send and receive raw IP packets on the inaddr_any node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1691,9 +1733,9 @@ Send and receive raw IP packets on the link_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1733,9 +1775,9 @@ Send and receive raw IP packets on the lo interface.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1775,9 +1817,9 @@ Send and receive raw IP packets on the lo node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1817,9 +1859,9 @@ Send and receive raw IP packets on the mapped_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1859,9 +1901,9 @@ Send and receive raw IP packets on the multicast node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1901,9 +1943,9 @@ Send and receive raw IP packets on the site_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1943,9 +1985,9 @@ Send and receive raw IP packets on the unspec node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1954,13 +1996,13 @@ No
</div>
</div>
-<a name="link_corenet_tcp_bind_afs_bos_port"></a>
+<a name="link_corenet_rw_ppp_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_tcp_bind_afs_bos_port</b>(
+<b>corenet_rw_ppp_dev</b>(
@@ -1974,7 +2016,7 @@ No
<h5>Summary</h5>
<p>
-Bind TCP sockets to the afs_bos port.
+Read and write the point-to-point device.
</p>
@@ -1985,9 +2027,9 @@ Bind TCP sockets to the afs_bos port.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+The domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1996,13 +2038,13 @@ No
</div>
</div>
-<a name="link_corenet_tcp_bind_afs_fs_port"></a>
+<a name="link_corenet_rw_tun_tap_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_tcp_bind_afs_fs_port</b>(
+<b>corenet_rw_tun_tap_dev</b>(
@@ -2016,7 +2058,7 @@ No
<h5>Summary</h5>
<p>
-Bind TCP sockets to the afs_fs port.
+Read and write the TUN/TAP virtual network device.
</p>
@@ -2027,9 +2069,9 @@ Bind TCP sockets to the afs_fs port.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+The domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -2038,13 +2080,13 @@ No
</div>
</div>
-<a name="link_corenet_tcp_bind_afs_ka_port"></a>
+<a name="link_corenet_tcp_bind_afs_bos_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_tcp_bind_afs_ka_port</b>(
+<b>corenet_tcp_bind_afs_bos_port</b>(
@@ -2058,7 +2100,7 @@ No
<h5>Summary</h5>
<p>
-Bind TCP sockets to the afs_ka port.
+Bind TCP sockets to the afs_bos port.
</p>
@@ -2069,9 +2111,9 @@ Bind TCP sockets to the afs_ka port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2080,13 +2122,13 @@ No
</div>
</div>
-<a name="link_corenet_tcp_bind_afs_pt_port"></a>
+<a name="link_corenet_tcp_bind_afs_fs_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_tcp_bind_afs_pt_port</b>(
+<b>corenet_tcp_bind_afs_fs_port</b>(
@@ -2100,7 +2142,7 @@ No
<h5>Summary</h5>
<p>
-Bind TCP sockets to the afs_pt port.
+Bind TCP sockets to the afs_fs port.
</p>
@@ -2111,9 +2153,93 @@ Bind TCP sockets to the afs_pt port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_tcp_bind_afs_ka_port"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_tcp_bind_afs_ka_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Bind TCP sockets to the afs_ka port.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_tcp_bind_afs_pt_port"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_tcp_bind_afs_pt_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Bind TCP sockets to the afs_pt port.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -2153,9 +2279,9 @@ Bind TCP sockets to the afs_vl port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2195,9 +2321,9 @@ Bind TCP sockets to all nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2237,9 +2363,9 @@ Bind TCP sockets to all ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2279,9 +2405,9 @@ Bind TCP sockets to all reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2321,9 +2447,9 @@ Bind TCP sockets to the amanda port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2363,9 +2489,9 @@ Bind TCP sockets to the amavisd_recv port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2405,9 +2531,9 @@ Bind TCP sockets to the amavisd_send port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2447,9 +2573,9 @@ Bind TCP sockets to the asterisk port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2489,9 +2615,51 @@ Bind TCP sockets to the auth port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_tcp_bind_bgp_port"></a>
+<div id="interface">
+
+<div id="codeblock">
+
+<b>corenet_tcp_bind_bgp_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Bind TCP sockets to the bgp port.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -2531,9 +2699,9 @@ Bind TCP sockets to the clamd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2573,9 +2741,9 @@ Bind TCP sockets to the clockspeed port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2615,9 +2783,9 @@ Bind TCP sockets to node compat_ipv4.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2657,9 +2825,9 @@ Bind TCP sockets to the comsat port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2699,9 +2867,9 @@ Bind TCP sockets to the cvs port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2741,9 +2909,9 @@ Bind TCP sockets to the dbskkd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2783,9 +2951,9 @@ Bind TCP sockets to the dcc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2825,9 +2993,9 @@ Bind TCP sockets to the dhcpc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2867,9 +3035,9 @@ Bind TCP sockets to the dhcpd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2909,9 +3077,9 @@ Bind TCP sockets to the dict port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2951,9 +3119,9 @@ Bind TCP sockets to the distccd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2993,9 +3161,9 @@ Bind TCP sockets to the dns port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3035,9 +3203,9 @@ Bind TCP sockets to the fingerd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3077,9 +3245,9 @@ Bind TCP sockets to the ftp_data port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3119,9 +3287,9 @@ Bind TCP sockets to the ftp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3161,9 +3329,9 @@ Bind TCP sockets to the gatekeeper port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3203,9 +3371,9 @@ Bind TCP sockets to generic nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3245,9 +3413,9 @@ Bind TCP sockets to generic ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3287,9 +3455,9 @@ Bind TCP sockets to the giftd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3329,9 +3497,9 @@ Bind TCP sockets to the gopher port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3371,9 +3539,9 @@ Bind TCP sockets to the howl port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3413,9 +3581,9 @@ Bind TCP sockets to the hplip port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3455,9 +3623,9 @@ Bind TCP sockets to the http_cache port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3497,9 +3665,9 @@ Bind TCP sockets to the http port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3539,9 +3707,9 @@ Bind TCP sockets to the i18n_input port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3581,9 +3749,9 @@ Bind TCP sockets to the imaze port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3623,9 +3791,9 @@ Bind TCP sockets to node inaddr_any.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3665,9 +3833,9 @@ Bind TCP sockets to the inetd_child port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3707,9 +3875,9 @@ Bind TCP sockets to the innd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3749,9 +3917,9 @@ Bind TCP sockets to the ipp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3791,9 +3959,9 @@ Bind TCP sockets to the ircd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3833,9 +4001,9 @@ Bind TCP sockets to the isakmp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3875,9 +4043,9 @@ Bind TCP sockets to the jabber_client port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3917,9 +4085,9 @@ Bind TCP sockets to the jabber_interserver port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3959,9 +4127,9 @@ Bind TCP sockets to the kerberos_admin port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4001,9 +4169,9 @@ Bind TCP sockets to the kerberos_master port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4043,9 +4211,9 @@ Bind TCP sockets to the kerberos port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4085,9 +4253,9 @@ Bind TCP sockets to the ktalkd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4127,9 +4295,9 @@ Bind TCP sockets to the ldap port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4169,9 +4337,9 @@ Bind TCP sockets to node link_local.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4211,9 +4379,9 @@ Bind TCP sockets to node lo.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4253,9 +4421,9 @@ Bind TCP sockets to the mail port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4295,9 +4463,9 @@ Bind TCP sockets to node mapped_ipv4.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4337,9 +4505,9 @@ Bind TCP sockets to the monopd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4379,9 +4547,9 @@ Bind TCP sockets to node multicast.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4421,9 +4589,9 @@ Bind TCP sockets to the mysqld port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4463,9 +4631,9 @@ Bind TCP sockets to the nessus port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4505,9 +4673,9 @@ Bind TCP sockets to the nmbd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4547,9 +4715,9 @@ Bind TCP sockets to the ntp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4589,9 +4757,9 @@ Bind TCP sockets to the openvpn port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4631,9 +4799,9 @@ Bind TCP sockets to the pegasus_http port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4673,9 +4841,9 @@ Bind TCP sockets to the pegasus_https port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4715,9 +4883,9 @@ Bind TCP sockets to the pop port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4757,9 +4925,9 @@ Bind TCP sockets to the portmap port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4799,9 +4967,9 @@ Bind TCP sockets to the postgresql port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4841,9 +5009,9 @@ Bind TCP sockets to the postgrey port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4883,9 +5051,9 @@ Bind TCP sockets to the printer port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4925,9 +5093,9 @@ Bind TCP sockets to the ptal port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4967,9 +5135,9 @@ Bind TCP sockets to the pxe port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5009,9 +5177,9 @@ Bind TCP sockets to the pyzor port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5051,9 +5219,9 @@ Bind TCP sockets to the radacct port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5093,9 +5261,9 @@ Bind TCP sockets to the radius port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5135,9 +5303,9 @@ Bind TCP sockets to the razor port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5177,9 +5345,9 @@ Bind TCP sockets to generic reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5219,9 +5387,9 @@ Bind TCP sockets to the rlogind port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5261,9 +5429,51 @@ Bind TCP sockets to the rndc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_tcp_bind_router_port"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_tcp_bind_router_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Bind TCP sockets to the router port.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -5303,9 +5513,9 @@ Bind TCP sockets to the rsh port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5345,9 +5555,9 @@ Bind TCP sockets to the rsync port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5387,9 +5597,9 @@ Bind TCP sockets to node site_local.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5429,9 +5639,9 @@ Bind TCP sockets to the smbd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5471,9 +5681,9 @@ Bind TCP sockets to the smtp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5513,9 +5723,9 @@ Bind TCP sockets to the snmp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5555,9 +5765,9 @@ Bind TCP sockets to the soundd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5597,9 +5807,9 @@ Bind TCP sockets to the spamd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5639,9 +5849,9 @@ Bind TCP sockets to the ssh port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5681,9 +5891,9 @@ Bind TCP sockets to the swat port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5723,9 +5933,9 @@ Bind TCP sockets to the syslogd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5765,9 +5975,9 @@ Bind TCP sockets to the telnetd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5807,9 +6017,9 @@ Bind TCP sockets to the tftp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5849,9 +6059,9 @@ Bind TCP sockets to the transproxy port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5891,9 +6101,9 @@ Bind TCP sockets to node unspec.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5933,9 +6143,9 @@ Bind TCP sockets to the uucpd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5975,9 +6185,9 @@ Bind TCP sockets to the vnc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6017,9 +6227,9 @@ Bind TCP sockets to the xserver port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6059,9 +6269,9 @@ Bind TCP sockets to the zebra port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6101,9 +6311,9 @@ Bind TCP sockets to the zope port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6143,9 +6353,9 @@ Make a TCP connection to the afs_bos port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6185,9 +6395,9 @@ Make a TCP connection to the afs_fs port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6227,9 +6437,9 @@ Make a TCP connection to the afs_ka port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6269,9 +6479,9 @@ Make a TCP connection to the afs_pt port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6311,9 +6521,9 @@ Make a TCP connection to the afs_vl port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6353,9 +6563,9 @@ Connect TCP sockets to all ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6395,9 +6605,9 @@ Connect TCP sockets to reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6437,9 +6647,9 @@ Make a TCP connection to the amanda port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6479,9 +6689,9 @@ Make a TCP connection to the amavisd_recv port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6521,9 +6731,9 @@ Make a TCP connection to the amavisd_send port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6563,9 +6773,9 @@ Make a TCP connection to the asterisk port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6605,9 +6815,51 @@ Make a TCP connection to the auth port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_tcp_connect_bgp_port"></a>
+<div id="interface">
+
+<div id="codeblock">
+
+<b>corenet_tcp_connect_bgp_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Make a TCP connection to the bgp port.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -6647,9 +6899,9 @@ Make a TCP connection to the clamd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6689,9 +6941,9 @@ Make a TCP connection to the clockspeed port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6731,9 +6983,9 @@ Make a TCP connection to the comsat port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6773,9 +7025,9 @@ Make a TCP connection to the cvs port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6815,9 +7067,9 @@ Make a TCP connection to the dbskkd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6857,9 +7109,9 @@ Make a TCP connection to the dcc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6899,9 +7151,9 @@ Make a TCP connection to the dhcpc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6941,9 +7193,9 @@ Make a TCP connection to the dhcpd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6983,9 +7235,9 @@ Make a TCP connection to the dict port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7025,9 +7277,9 @@ Make a TCP connection to the distccd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7067,9 +7319,9 @@ Make a TCP connection to the dns port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7109,9 +7361,9 @@ Make a TCP connection to the fingerd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7151,9 +7403,9 @@ Make a TCP connection to the ftp_data port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7193,9 +7445,9 @@ Make a TCP connection to the ftp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7235,9 +7487,9 @@ Make a TCP connection to the gatekeeper port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7277,9 +7529,9 @@ Connect TCP sockets to generic ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7319,9 +7571,9 @@ Make a TCP connection to the giftd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7361,9 +7613,9 @@ Make a TCP connection to the gopher port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7403,9 +7655,9 @@ Make a TCP connection to the howl port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7445,9 +7697,9 @@ Make a TCP connection to the hplip port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7487,9 +7739,9 @@ Make a TCP connection to the http_cache port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7529,9 +7781,9 @@ Make a TCP connection to the http port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7571,9 +7823,9 @@ Make a TCP connection to the i18n_input port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7613,9 +7865,9 @@ Make a TCP connection to the imaze port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7655,9 +7907,9 @@ Make a TCP connection to the inetd_child port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7697,9 +7949,9 @@ Make a TCP connection to the innd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7739,9 +7991,9 @@ Make a TCP connection to the ipp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7781,9 +8033,9 @@ Make a TCP connection to the ircd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7823,9 +8075,9 @@ Make a TCP connection to the isakmp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7865,9 +8117,9 @@ Make a TCP connection to the jabber_client port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7907,9 +8159,9 @@ Make a TCP connection to the jabber_interserver port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7949,9 +8201,9 @@ Make a TCP connection to the kerberos_admin port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -7991,9 +8243,9 @@ Make a TCP connection to the kerberos_master port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8033,9 +8285,9 @@ Make a TCP connection to the kerberos port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8075,9 +8327,9 @@ Make a TCP connection to the ktalkd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8117,9 +8369,9 @@ Make a TCP connection to the ldap port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8159,9 +8411,9 @@ Make a TCP connection to the mail port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8201,9 +8453,9 @@ Make a TCP connection to the monopd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8243,9 +8495,9 @@ Make a TCP connection to the mysqld port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8285,9 +8537,9 @@ Make a TCP connection to the nessus port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8327,9 +8579,9 @@ Make a TCP connection to the nmbd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8369,9 +8621,9 @@ Make a TCP connection to the ntp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8411,9 +8663,9 @@ Make a TCP connection to the openvpn port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8453,9 +8705,9 @@ Make a TCP connection to the pegasus_http port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8495,9 +8747,9 @@ Make a TCP connection to the pegasus_https port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8537,9 +8789,9 @@ Make a TCP connection to the pop port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8579,9 +8831,9 @@ Make a TCP connection to the portmap port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8621,9 +8873,9 @@ Make a TCP connection to the postgresql port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8663,9 +8915,9 @@ Make a TCP connection to the postgrey port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8705,9 +8957,9 @@ Make a TCP connection to the printer port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8747,9 +8999,9 @@ Make a TCP connection to the ptal port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8789,9 +9041,9 @@ Make a TCP connection to the pxe port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8831,9 +9083,9 @@ Make a TCP connection to the pyzor port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8873,9 +9125,9 @@ Make a TCP connection to the radacct port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8915,9 +9167,9 @@ Make a TCP connection to the radius port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8957,9 +9209,9 @@ Make a TCP connection to the razor port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -8999,9 +9251,9 @@ Connect TCP sockets to generic reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9041,9 +9293,9 @@ Make a TCP connection to the rlogind port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9083,9 +9335,51 @@ Make a TCP connection to the rndc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_tcp_connect_router_port"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_tcp_connect_router_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Make a TCP connection to the router port.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -9125,9 +9419,9 @@ Make a TCP connection to the rsh port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9167,9 +9461,9 @@ Make a TCP connection to the rsync port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9209,9 +9503,9 @@ Make a TCP connection to the smbd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9251,9 +9545,9 @@ Make a TCP connection to the smtp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9293,9 +9587,9 @@ Make a TCP connection to the snmp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9335,9 +9629,9 @@ Make a TCP connection to the soundd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9377,9 +9671,9 @@ Make a TCP connection to the spamd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9419,9 +9713,9 @@ Make a TCP connection to the ssh port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9461,9 +9755,9 @@ Make a TCP connection to the swat port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9503,9 +9797,9 @@ Make a TCP connection to the syslogd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9545,9 +9839,9 @@ Make a TCP connection to the telnetd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9587,9 +9881,9 @@ Make a TCP connection to the tftp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9629,9 +9923,9 @@ Make a TCP connection to the transproxy port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9671,9 +9965,9 @@ Make a TCP connection to the uucpd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9713,9 +10007,9 @@ Make a TCP connection to the vnc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9755,9 +10049,9 @@ Make a TCP connection to the xserver port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9797,9 +10091,9 @@ Make a TCP connection to the zebra port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9839,9 +10133,9 @@ Make a TCP connection to the zope port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9881,9 +10175,9 @@ Send and receive TCP traffic on the afs_bos port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9923,9 +10217,9 @@ Send and receive TCP traffic on the afs_fs port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -9965,9 +10259,9 @@ Send and receive TCP traffic on the afs_ka port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10007,9 +10301,9 @@ Send and receive TCP traffic on the afs_pt port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10049,9 +10343,9 @@ Send and receive TCP traffic on the afs_vl port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10091,9 +10385,9 @@ Send and receive TCP network traffic on all interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10133,9 +10427,9 @@ Send and receive TCP network traffic on all nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10175,9 +10469,9 @@ Send and receive TCP network traffic on all ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10206,7 +10500,49 @@ No
<h5>Summary</h5>
<p>
-Send and receive TCP network traffic on all reserved ports.
+Send and receive TCP network traffic on all reserved ports.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_tcp_sendrecv_amanda_port"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_tcp_sendrecv_amanda_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Send and receive TCP traffic on the amanda port.
</p>
@@ -10217,9 +10553,9 @@ Send and receive TCP network traffic on all reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10228,13 +10564,13 @@ No
</div>
</div>
-<a name="link_corenet_tcp_sendrecv_amanda_port"></a>
+<a name="link_corenet_tcp_sendrecv_amavisd_recv_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_tcp_sendrecv_amanda_port</b>(
+<b>corenet_tcp_sendrecv_amavisd_recv_port</b>(
@@ -10248,7 +10584,7 @@ No
<h5>Summary</h5>
<p>
-Send and receive TCP traffic on the amanda port.
+Send and receive TCP traffic on the amavisd_recv port.
</p>
@@ -10259,9 +10595,9 @@ Send and receive TCP traffic on the amanda port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10270,13 +10606,13 @@ No
</div>
</div>
-<a name="link_corenet_tcp_sendrecv_amavisd_recv_port"></a>
+<a name="link_corenet_tcp_sendrecv_amavisd_send_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_tcp_sendrecv_amavisd_recv_port</b>(
+<b>corenet_tcp_sendrecv_amavisd_send_port</b>(
@@ -10290,7 +10626,7 @@ No
<h5>Summary</h5>
<p>
-Send and receive TCP traffic on the amavisd_recv port.
+Send and receive TCP traffic on the amavisd_send port.
</p>
@@ -10301,9 +10637,9 @@ Send and receive TCP traffic on the amavisd_recv port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10312,13 +10648,13 @@ No
</div>
</div>
-<a name="link_corenet_tcp_sendrecv_amavisd_send_port"></a>
+<a name="link_corenet_tcp_sendrecv_asterisk_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_tcp_sendrecv_amavisd_send_port</b>(
+<b>corenet_tcp_sendrecv_asterisk_port</b>(
@@ -10332,7 +10668,7 @@ No
<h5>Summary</h5>
<p>
-Send and receive TCP traffic on the amavisd_send port.
+Send and receive TCP traffic on the asterisk port.
</p>
@@ -10343,9 +10679,9 @@ Send and receive TCP traffic on the amavisd_send port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10354,13 +10690,13 @@ No
</div>
</div>
-<a name="link_corenet_tcp_sendrecv_asterisk_port"></a>
+<a name="link_corenet_tcp_sendrecv_auth_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_tcp_sendrecv_asterisk_port</b>(
+<b>corenet_tcp_sendrecv_auth_port</b>(
@@ -10374,7 +10710,7 @@ No
<h5>Summary</h5>
<p>
-Send and receive TCP traffic on the asterisk port.
+Send and receive TCP traffic on the auth port.
</p>
@@ -10385,9 +10721,9 @@ Send and receive TCP traffic on the asterisk port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10396,13 +10732,13 @@ No
</div>
</div>
-<a name="link_corenet_tcp_sendrecv_auth_port"></a>
+<a name="link_corenet_tcp_sendrecv_bgp_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_tcp_sendrecv_auth_port</b>(
+<b>corenet_tcp_sendrecv_bgp_port</b>(
@@ -10416,7 +10752,7 @@ No
<h5>Summary</h5>
<p>
-Send and receive TCP traffic on the auth port.
+Send and receive TCP traffic on the bgp port.
</p>
@@ -10427,9 +10763,9 @@ Send and receive TCP traffic on the auth port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10469,9 +10805,9 @@ Send and receive TCP traffic on the clamd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10511,9 +10847,9 @@ Send and receive TCP traffic on the clockspeed port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10553,9 +10889,9 @@ Send and receive TCP traffic on the compat_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10595,9 +10931,9 @@ Send and receive TCP traffic on the comsat port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10637,9 +10973,9 @@ Send and receive TCP traffic on the cvs port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10679,9 +11015,9 @@ Send and receive TCP traffic on the dbskkd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10721,9 +11057,9 @@ Send and receive TCP traffic on the dcc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10763,9 +11099,9 @@ Send and receive TCP traffic on the dhcpc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10805,9 +11141,9 @@ Send and receive TCP traffic on the dhcpd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10847,9 +11183,9 @@ Send and receive TCP traffic on the dict port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10889,9 +11225,9 @@ Send and receive TCP traffic on the distccd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10931,9 +11267,9 @@ Send and receive TCP traffic on the dns port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -10973,9 +11309,9 @@ Send and receive TCP traffic on the fingerd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11015,9 +11351,9 @@ Send and receive TCP traffic on the ftp_data port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11057,9 +11393,9 @@ Send and receive TCP traffic on the ftp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11099,9 +11435,9 @@ Send and receive TCP traffic on the gatekeeper port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11141,9 +11477,9 @@ Send and receive TCP network traffic on the generic interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11183,9 +11519,9 @@ Send and receive TCP network traffic on generic nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11225,9 +11561,9 @@ Send and receive TCP network traffic on generic ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11267,9 +11603,9 @@ Send and receive TCP traffic on the giftd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11309,9 +11645,9 @@ Send and receive TCP traffic on the gopher port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11351,9 +11687,9 @@ Send and receive TCP traffic on the howl port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11393,9 +11729,9 @@ Send and receive TCP traffic on the hplip port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11435,9 +11771,9 @@ Send and receive TCP traffic on the http_cache port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11477,9 +11813,9 @@ Send and receive TCP traffic on the http port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11519,9 +11855,9 @@ Send and receive TCP traffic on the i18n_input port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11561,9 +11897,9 @@ Send and receive TCP traffic on the imaze port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11603,9 +11939,9 @@ Send and receive TCP traffic on the inaddr_any node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11645,9 +11981,9 @@ Send and receive TCP traffic on the inetd_child port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11687,9 +12023,9 @@ Send and receive TCP traffic on the innd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11729,9 +12065,9 @@ Send and receive TCP traffic on the ipp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11771,9 +12107,9 @@ Send and receive TCP traffic on the ircd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11813,9 +12149,9 @@ Send and receive TCP traffic on the isakmp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11855,9 +12191,9 @@ Send and receive TCP traffic on the jabber_client port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11897,9 +12233,9 @@ Send and receive TCP traffic on the jabber_interserver port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11939,9 +12275,9 @@ Send and receive TCP traffic on the kerberos_admin port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -11981,9 +12317,9 @@ Send and receive TCP traffic on the kerberos_master port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12023,9 +12359,9 @@ Send and receive TCP traffic on the kerberos port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12065,9 +12401,9 @@ Send and receive TCP traffic on the ktalkd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12107,9 +12443,9 @@ Send and receive TCP traffic on the ldap port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12149,9 +12485,9 @@ Send and receive TCP traffic on the link_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12191,9 +12527,9 @@ Send and receive TCP network traffic on the lo interface.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12233,9 +12569,9 @@ Send and receive TCP traffic on the lo node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12275,9 +12611,9 @@ Send and receive TCP traffic on the mail port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12317,9 +12653,9 @@ Send and receive TCP traffic on the mapped_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12359,9 +12695,9 @@ Send and receive TCP traffic on the monopd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12401,9 +12737,9 @@ Send and receive TCP traffic on the multicast node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12443,9 +12779,9 @@ Send and receive TCP traffic on the mysqld port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12485,9 +12821,9 @@ Send and receive TCP traffic on the nessus port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12527,9 +12863,9 @@ Send and receive TCP traffic on the nmbd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12569,9 +12905,9 @@ Send and receive TCP traffic on the ntp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12611,9 +12947,9 @@ Send and receive TCP traffic on the openvpn port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12653,9 +12989,9 @@ Send and receive TCP traffic on the pegasus_http port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12695,9 +13031,9 @@ Send and receive TCP traffic on the pegasus_https port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12737,9 +13073,9 @@ Send and receive TCP traffic on the pop port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12779,9 +13115,9 @@ Send and receive TCP traffic on the portmap port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12821,9 +13157,9 @@ Send and receive TCP traffic on the postgresql port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12863,9 +13199,9 @@ Send and receive TCP traffic on the postgrey port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12905,9 +13241,9 @@ Send and receive TCP traffic on the printer port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12947,9 +13283,9 @@ Send and receive TCP traffic on the ptal port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -12989,9 +13325,9 @@ Send and receive TCP traffic on the pxe port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13031,9 +13367,9 @@ Send and receive TCP traffic on the pyzor port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13073,9 +13409,9 @@ Send and receive TCP traffic on the radacct port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13115,9 +13451,9 @@ Send and receive TCP traffic on the radius port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13157,9 +13493,9 @@ Send and receive TCP traffic on the razor port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13199,9 +13535,9 @@ Send and receive TCP network traffic on generic reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13241,9 +13577,9 @@ Send and receive TCP traffic on the rlogind port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13283,9 +13619,51 @@ Send and receive TCP traffic on the rndc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_tcp_sendrecv_router_port"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_tcp_sendrecv_router_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Send and receive TCP traffic on the router port.
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -13325,9 +13703,9 @@ Send and receive TCP traffic on the rsh port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13367,9 +13745,9 @@ Send and receive TCP traffic on the rsync port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13409,9 +13787,9 @@ Send and receive TCP traffic on the site_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13451,9 +13829,9 @@ Send and receive TCP traffic on the smbd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13493,9 +13871,9 @@ Send and receive TCP traffic on the smtp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13535,9 +13913,9 @@ Send and receive TCP traffic on the snmp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13577,9 +13955,9 @@ Send and receive TCP traffic on the soundd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13619,9 +13997,9 @@ Send and receive TCP traffic on the spamd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13661,9 +14039,9 @@ Send and receive TCP traffic on the ssh port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13703,9 +14081,9 @@ Send and receive TCP traffic on the swat port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13745,9 +14123,9 @@ Send and receive TCP traffic on the syslogd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13787,9 +14165,9 @@ Send and receive TCP traffic on the telnetd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13829,9 +14207,9 @@ Send and receive TCP traffic on the tftp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13871,9 +14249,9 @@ Send and receive TCP traffic on the transproxy port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13913,9 +14291,9 @@ Send and receive TCP traffic on the unspec node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13955,9 +14333,9 @@ Send and receive TCP traffic on the uucpd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -13997,9 +14375,9 @@ Send and receive TCP traffic on the vnc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14039,9 +14417,9 @@ Send and receive TCP traffic on the xserver port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14081,9 +14459,9 @@ Send and receive TCP traffic on the zebra port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14123,9 +14501,9 @@ Send and receive TCP traffic on the zope port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14165,9 +14543,9 @@ Bind UDP sockets to the afs_bos port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14207,9 +14585,9 @@ Bind UDP sockets to the afs_fs port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14249,9 +14627,9 @@ Bind UDP sockets to the afs_ka port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14291,9 +14669,9 @@ Bind UDP sockets to the afs_pt port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14333,9 +14711,9 @@ Bind UDP sockets to the afs_vl port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14375,9 +14753,9 @@ Bind UDP sockets to all nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14417,9 +14795,9 @@ Bind UDP sockets to all ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14448,7 +14826,49 @@ No
<h5>Summary</h5>
<p>
-Bind UDP sockets to all reserved ports.
+Bind UDP sockets to all reserved ports.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_udp_bind_amanda_port"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_udp_bind_amanda_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Bind UDP sockets to the amanda port.
</p>
@@ -14459,9 +14879,9 @@ Bind UDP sockets to all reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14470,13 +14890,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_bind_amanda_port"></a>
+<a name="link_corenet_udp_bind_amavisd_recv_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_bind_amanda_port</b>(
+<b>corenet_udp_bind_amavisd_recv_port</b>(
@@ -14490,7 +14910,7 @@ No
<h5>Summary</h5>
<p>
-Bind UDP sockets to the amanda port.
+Bind UDP sockets to the amavisd_recv port.
</p>
@@ -14501,9 +14921,9 @@ Bind UDP sockets to the amanda port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14512,13 +14932,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_bind_amavisd_recv_port"></a>
+<a name="link_corenet_udp_bind_amavisd_send_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_bind_amavisd_recv_port</b>(
+<b>corenet_udp_bind_amavisd_send_port</b>(
@@ -14532,7 +14952,7 @@ No
<h5>Summary</h5>
<p>
-Bind UDP sockets to the amavisd_recv port.
+Bind UDP sockets to the amavisd_send port.
</p>
@@ -14543,9 +14963,9 @@ Bind UDP sockets to the amavisd_recv port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14554,13 +14974,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_bind_amavisd_send_port"></a>
+<a name="link_corenet_udp_bind_asterisk_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_bind_amavisd_send_port</b>(
+<b>corenet_udp_bind_asterisk_port</b>(
@@ -14574,7 +14994,7 @@ No
<h5>Summary</h5>
<p>
-Bind UDP sockets to the amavisd_send port.
+Bind UDP sockets to the asterisk port.
</p>
@@ -14585,9 +15005,9 @@ Bind UDP sockets to the amavisd_send port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14596,13 +15016,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_bind_asterisk_port"></a>
+<a name="link_corenet_udp_bind_auth_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_bind_asterisk_port</b>(
+<b>corenet_udp_bind_auth_port</b>(
@@ -14616,7 +15036,7 @@ No
<h5>Summary</h5>
<p>
-Bind UDP sockets to the asterisk port.
+Bind UDP sockets to the auth port.
</p>
@@ -14627,9 +15047,9 @@ Bind UDP sockets to the asterisk port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14638,13 +15058,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_bind_auth_port"></a>
+<a name="link_corenet_udp_bind_bgp_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_bind_auth_port</b>(
+<b>corenet_udp_bind_bgp_port</b>(
@@ -14658,7 +15078,7 @@ No
<h5>Summary</h5>
<p>
-Bind UDP sockets to the auth port.
+Bind UDP sockets to the bgp port.
</p>
@@ -14669,9 +15089,9 @@ Bind UDP sockets to the auth port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14711,9 +15131,9 @@ Bind UDP sockets to the clamd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14753,9 +15173,9 @@ Bind UDP sockets to the clockspeed port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14795,9 +15215,9 @@ Bind UDP sockets to the compat_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14837,9 +15257,9 @@ Bind UDP sockets to the comsat port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14879,9 +15299,9 @@ Bind UDP sockets to the cvs port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14921,9 +15341,9 @@ Bind UDP sockets to the dbskkd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -14963,9 +15383,9 @@ Bind UDP sockets to the dcc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15005,9 +15425,9 @@ Bind UDP sockets to the dhcpc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15047,9 +15467,9 @@ Bind UDP sockets to the dhcpd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15089,9 +15509,9 @@ Bind UDP sockets to the dict port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15131,9 +15551,9 @@ Bind UDP sockets to the distccd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15173,9 +15593,9 @@ Bind UDP sockets to the dns port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15215,9 +15635,9 @@ Bind UDP sockets to the fingerd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15257,9 +15677,9 @@ Bind UDP sockets to the ftp_data port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15299,9 +15719,9 @@ Bind UDP sockets to the ftp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15341,9 +15761,9 @@ Bind UDP sockets to the gatekeeper port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15383,9 +15803,9 @@ Bind UDP sockets to generic nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15425,9 +15845,9 @@ Bind UDP sockets to generic ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15467,9 +15887,9 @@ Bind UDP sockets to the giftd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15509,9 +15929,9 @@ Bind UDP sockets to the gopher port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15551,9 +15971,9 @@ Bind UDP sockets to the howl port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15593,9 +16013,9 @@ Bind UDP sockets to the hplip port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15635,9 +16055,9 @@ Bind UDP sockets to the http_cache port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15677,9 +16097,9 @@ Bind UDP sockets to the http port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15719,9 +16139,9 @@ Bind UDP sockets to the i18n_input port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15761,9 +16181,9 @@ Bind UDP sockets to the imaze port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15803,9 +16223,9 @@ Bind UDP sockets to the inaddr_any node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15845,9 +16265,9 @@ Bind UDP sockets to the inetd_child port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15887,9 +16307,9 @@ Bind UDP sockets to the innd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15929,9 +16349,9 @@ Bind UDP sockets to the ipp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -15971,9 +16391,9 @@ Bind UDP sockets to the ircd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16013,9 +16433,9 @@ Bind UDP sockets to the isakmp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16055,9 +16475,9 @@ Bind UDP sockets to the jabber_client port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16097,9 +16517,9 @@ Bind UDP sockets to the jabber_interserver port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16139,9 +16559,9 @@ Bind UDP sockets to the kerberos_admin port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16181,9 +16601,9 @@ Bind UDP sockets to the kerberos_master port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16223,9 +16643,9 @@ Bind UDP sockets to the kerberos port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16265,9 +16685,9 @@ Bind UDP sockets to the ktalkd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16307,9 +16727,9 @@ Bind UDP sockets to the ldap port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16349,9 +16769,9 @@ Bind UDP sockets to the link_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16391,9 +16811,9 @@ Bind UDP sockets to the lo node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16433,9 +16853,9 @@ Bind UDP sockets to the mail port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16475,9 +16895,9 @@ Bind UDP sockets to the mapped_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16517,9 +16937,9 @@ Bind UDP sockets to the monopd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16559,9 +16979,9 @@ Bind UDP sockets to the multicast node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16601,9 +17021,9 @@ Bind UDP sockets to the mysqld port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16643,9 +17063,9 @@ Bind UDP sockets to the nessus port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16685,9 +17105,9 @@ Bind UDP sockets to the nmbd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16727,9 +17147,9 @@ Bind UDP sockets to the ntp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16769,9 +17189,9 @@ Bind UDP sockets to the openvpn port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16811,9 +17231,9 @@ Bind UDP sockets to the pegasus_http port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16853,9 +17273,9 @@ Bind UDP sockets to the pegasus_https port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16895,9 +17315,9 @@ Bind UDP sockets to the pop port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16937,9 +17357,9 @@ Bind UDP sockets to the portmap port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -16979,9 +17399,9 @@ Bind UDP sockets to the postgresql port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17021,9 +17441,9 @@ Bind UDP sockets to the postgrey port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17063,9 +17483,9 @@ Bind UDP sockets to the printer port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17105,9 +17525,9 @@ Bind UDP sockets to the ptal port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17147,9 +17567,9 @@ Bind UDP sockets to the pxe port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17189,9 +17609,9 @@ Bind UDP sockets to the pyzor port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17231,9 +17651,9 @@ Bind UDP sockets to the radacct port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17273,9 +17693,9 @@ Bind UDP sockets to the radius port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17315,9 +17735,9 @@ Bind UDP sockets to the razor port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17357,9 +17777,9 @@ Bind UDP sockets to generic reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17399,9 +17819,9 @@ Bind UDP sockets to the rlogind port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17441,9 +17861,51 @@ Bind UDP sockets to the rndc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_udp_bind_router_port"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_udp_bind_router_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Bind UDP sockets to the router port.
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -17483,9 +17945,9 @@ Bind UDP sockets to the rsh port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17525,9 +17987,9 @@ Bind UDP sockets to the rsync port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17567,9 +18029,9 @@ Bind UDP sockets to the site_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17609,9 +18071,9 @@ Bind UDP sockets to the smbd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17651,9 +18113,9 @@ Bind UDP sockets to the smtp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17693,9 +18155,9 @@ Bind UDP sockets to the snmp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17735,9 +18197,9 @@ Bind UDP sockets to the soundd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17777,9 +18239,9 @@ Bind UDP sockets to the spamd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17819,9 +18281,9 @@ Bind UDP sockets to the ssh port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17861,9 +18323,9 @@ Bind UDP sockets to the swat port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17903,9 +18365,9 @@ Bind UDP sockets to the syslogd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17945,9 +18407,9 @@ Bind UDP sockets to the telnetd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -17987,9 +18449,9 @@ Bind UDP sockets to the tftp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18029,9 +18491,9 @@ Bind UDP sockets to the transproxy port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18071,9 +18533,9 @@ Bind UDP sockets to the unspec node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18113,9 +18575,9 @@ Bind UDP sockets to the uucpd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18155,9 +18617,9 @@ Bind UDP sockets to the vnc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18197,9 +18659,9 @@ Bind UDP sockets to the xserver port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18239,9 +18701,9 @@ Bind UDP sockets to the zebra port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18281,9 +18743,9 @@ Bind UDP sockets to the zope port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18323,9 +18785,9 @@ Receive UDP traffic on the afs_bos port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18365,9 +18827,9 @@ Receive UDP traffic on the afs_fs port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18407,9 +18869,9 @@ Receive UDP traffic on the afs_ka port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18449,9 +18911,9 @@ Receive UDP traffic on the afs_pt port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18491,9 +18953,9 @@ Receive UDP traffic on the afs_vl port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18533,9 +18995,9 @@ Receive UDP network traffic on all interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18575,9 +19037,9 @@ Receive UDP network traffic on all nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18617,9 +19079,9 @@ Receive UDP network traffic on all ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18659,9 +19121,9 @@ Receive UDP network traffic on all reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18676,7 +19138,49 @@ No
<div id="codeblock">
-<b>corenet_udp_receive_amanda_port</b>(
+<b>corenet_udp_receive_amanda_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Receive UDP traffic on the amanda port.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_udp_receive_amavisd_recv_port"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_udp_receive_amavisd_recv_port</b>(
@@ -18690,7 +19194,7 @@ No
<h5>Summary</h5>
<p>
-Receive UDP traffic on the amanda port.
+Receive UDP traffic on the amavisd_recv port.
</p>
@@ -18701,9 +19205,9 @@ Receive UDP traffic on the amanda port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18712,13 +19216,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_receive_amavisd_recv_port"></a>
+<a name="link_corenet_udp_receive_amavisd_send_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_receive_amavisd_recv_port</b>(
+<b>corenet_udp_receive_amavisd_send_port</b>(
@@ -18732,7 +19236,7 @@ No
<h5>Summary</h5>
<p>
-Receive UDP traffic on the amavisd_recv port.
+Receive UDP traffic on the amavisd_send port.
</p>
@@ -18743,9 +19247,9 @@ Receive UDP traffic on the amavisd_recv port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18754,13 +19258,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_receive_amavisd_send_port"></a>
+<a name="link_corenet_udp_receive_asterisk_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_receive_amavisd_send_port</b>(
+<b>corenet_udp_receive_asterisk_port</b>(
@@ -18774,7 +19278,7 @@ No
<h5>Summary</h5>
<p>
-Receive UDP traffic on the amavisd_send port.
+Receive UDP traffic on the asterisk port.
</p>
@@ -18785,9 +19289,9 @@ Receive UDP traffic on the amavisd_send port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18796,13 +19300,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_receive_asterisk_port"></a>
+<a name="link_corenet_udp_receive_auth_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_receive_asterisk_port</b>(
+<b>corenet_udp_receive_auth_port</b>(
@@ -18816,7 +19320,7 @@ No
<h5>Summary</h5>
<p>
-Receive UDP traffic on the asterisk port.
+Receive UDP traffic on the auth port.
</p>
@@ -18827,9 +19331,9 @@ Receive UDP traffic on the asterisk port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18838,13 +19342,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_receive_auth_port"></a>
+<a name="link_corenet_udp_receive_bgp_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_receive_auth_port</b>(
+<b>corenet_udp_receive_bgp_port</b>(
@@ -18858,7 +19362,7 @@ No
<h5>Summary</h5>
<p>
-Receive UDP traffic on the auth port.
+Receive UDP traffic on the bgp port.
</p>
@@ -18869,9 +19373,9 @@ Receive UDP traffic on the auth port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18911,9 +19415,9 @@ Receive UDP traffic on the clamd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18953,9 +19457,9 @@ Receive UDP traffic on the clockspeed port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -18995,9 +19499,9 @@ Receive UDP traffic on the compat_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19037,9 +19541,9 @@ Receive UDP traffic on the comsat port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19079,9 +19583,9 @@ Receive UDP traffic on the cvs port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19121,9 +19625,9 @@ Receive UDP traffic on the dbskkd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19163,9 +19667,9 @@ Receive UDP traffic on the dcc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19205,9 +19709,9 @@ Receive UDP traffic on the dhcpc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19247,9 +19751,9 @@ Receive UDP traffic on the dhcpd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19289,9 +19793,9 @@ Receive UDP traffic on the dict port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19331,9 +19835,9 @@ Receive UDP traffic on the distccd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19373,9 +19877,9 @@ Receive UDP traffic on the dns port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19415,9 +19919,9 @@ Receive UDP traffic on the fingerd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19457,9 +19961,9 @@ Receive UDP traffic on the ftp_data port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19499,9 +20003,9 @@ Receive UDP traffic on the ftp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19541,9 +20045,9 @@ Receive UDP traffic on the gatekeeper port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19583,9 +20087,9 @@ Receive UDP network traffic on generic interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19625,9 +20129,9 @@ Receive UDP network traffic on generic nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19667,9 +20171,9 @@ Receive UDP network traffic on generic ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19709,9 +20213,9 @@ Receive UDP traffic on the giftd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19751,9 +20255,9 @@ Receive UDP traffic on the gopher port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19793,9 +20297,9 @@ Receive UDP traffic on the howl port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19835,9 +20339,9 @@ Receive UDP traffic on the hplip port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19877,9 +20381,9 @@ Receive UDP traffic on the http_cache port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19919,9 +20423,9 @@ Receive UDP traffic on the http port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -19961,9 +20465,9 @@ Receive UDP traffic on the i18n_input port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20003,9 +20507,9 @@ Receive UDP traffic on the imaze port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20045,9 +20549,9 @@ Receive UDP traffic on the inaddr_any node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20087,9 +20591,9 @@ Receive UDP traffic on the inetd_child port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20129,9 +20633,9 @@ Receive UDP traffic on the innd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20171,9 +20675,9 @@ Receive UDP traffic on the ipp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20213,9 +20717,9 @@ Receive UDP traffic on the ircd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20255,9 +20759,9 @@ Receive UDP traffic on the isakmp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20297,9 +20801,9 @@ Receive UDP traffic on the jabber_client port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20339,9 +20843,9 @@ Receive UDP traffic on the jabber_interserver port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20381,9 +20885,9 @@ Receive UDP traffic on the kerberos_admin port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20423,9 +20927,9 @@ Receive UDP traffic on the kerberos_master port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20465,9 +20969,9 @@ Receive UDP traffic on the kerberos port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20507,9 +21011,9 @@ Receive UDP traffic on the ktalkd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20549,9 +21053,9 @@ Receive UDP traffic on the ldap port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20591,9 +21095,9 @@ Receive UDP traffic on the link_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20633,9 +21137,9 @@ Receive UDP network traffic on the lo interface.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20675,9 +21179,9 @@ Receive UDP traffic on the lo node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20717,9 +21221,9 @@ Receive UDP traffic on the mail port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20759,9 +21263,9 @@ Receive UDP traffic on the mapped_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20801,9 +21305,9 @@ Receive UDP traffic on the monopd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20843,9 +21347,9 @@ Receive UDP traffic on the multicast node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20885,9 +21389,9 @@ Receive UDP traffic on the mysqld port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20927,9 +21431,9 @@ Receive UDP traffic on the nessus port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -20969,9 +21473,9 @@ Receive UDP traffic on the nmbd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21011,9 +21515,9 @@ Receive UDP traffic on the ntp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21053,9 +21557,9 @@ Receive UDP traffic on the openvpn port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21095,9 +21599,9 @@ Receive UDP traffic on the pegasus_http port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21137,9 +21641,9 @@ Receive UDP traffic on the pegasus_https port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21179,9 +21683,9 @@ Receive UDP traffic on the pop port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21221,9 +21725,9 @@ Receive UDP traffic on the portmap port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21263,9 +21767,9 @@ Receive UDP traffic on the postgresql port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21305,9 +21809,9 @@ Receive UDP traffic on the postgrey port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21347,9 +21851,9 @@ Receive UDP traffic on the printer port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21389,9 +21893,9 @@ Receive UDP traffic on the ptal port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21431,9 +21935,9 @@ Receive UDP traffic on the pxe port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21473,9 +21977,9 @@ Receive UDP traffic on the pyzor port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21515,9 +22019,9 @@ Receive UDP traffic on the radacct port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21557,9 +22061,9 @@ Receive UDP traffic on the radius port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21599,9 +22103,9 @@ Receive UDP traffic on the razor port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21641,9 +22145,9 @@ Receive UDP network traffic on generic reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21683,9 +22187,9 @@ Receive UDP traffic on the rlogind port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21725,9 +22229,51 @@ Receive UDP traffic on the rndc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_udp_receive_router_port"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_udp_receive_router_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Receive UDP traffic on the router port.
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -21767,9 +22313,9 @@ Receive UDP traffic on the rsh port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21809,9 +22355,9 @@ Receive UDP traffic on the rsync port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21851,9 +22397,9 @@ Receive UDP traffic on the site_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21893,9 +22439,9 @@ Receive UDP traffic on the smbd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21935,9 +22481,9 @@ Receive UDP traffic on the smtp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -21977,9 +22523,9 @@ Receive UDP traffic on the snmp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22019,9 +22565,9 @@ Receive UDP traffic on the soundd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22061,9 +22607,9 @@ Receive UDP traffic on the spamd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22103,9 +22649,9 @@ Receive UDP traffic on the ssh port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22145,9 +22691,9 @@ Receive UDP traffic on the swat port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22187,9 +22733,9 @@ Receive UDP traffic on the syslogd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22229,9 +22775,9 @@ Receive UDP traffic on the telnetd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22271,9 +22817,9 @@ Receive UDP traffic on the tftp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22313,9 +22859,9 @@ Receive UDP traffic on the transproxy port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22355,9 +22901,9 @@ Receive UDP traffic on the unspec node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22397,9 +22943,9 @@ Receive UDP traffic on the uucpd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22439,9 +22985,9 @@ Receive UDP traffic on the vnc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22481,9 +23027,9 @@ Receive UDP traffic on the xserver port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22523,9 +23069,9 @@ Receive UDP traffic on the zebra port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22565,9 +23111,9 @@ Receive UDP traffic on the zope port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22607,9 +23153,9 @@ Send UDP traffic on the afs_bos port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22649,9 +23195,9 @@ Send UDP traffic on the afs_fs port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22691,9 +23237,9 @@ Send UDP traffic on the afs_ka port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22733,9 +23279,9 @@ Send UDP traffic on the afs_pt port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22775,9 +23321,9 @@ Send UDP traffic on the afs_vl port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22817,9 +23363,9 @@ Send UDP network traffic on all interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22859,9 +23405,9 @@ Send UDP network traffic on all nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22901,9 +23447,9 @@ Send UDP network traffic on all ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22943,9 +23489,9 @@ Send UDP network traffic on all reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22960,7 +23506,49 @@ No
<div id="codeblock">
-<b>corenet_udp_send_amanda_port</b>(
+<b>corenet_udp_send_amanda_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Send UDP traffic on the amanda port.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_udp_send_amavisd_recv_port"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_udp_send_amavisd_recv_port</b>(
@@ -22974,7 +23562,7 @@ No
<h5>Summary</h5>
<p>
-Send UDP traffic on the amanda port.
+Send UDP traffic on the amavisd_recv port.
</p>
@@ -22985,9 +23573,9 @@ Send UDP traffic on the amanda port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -22996,13 +23584,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_send_amavisd_recv_port"></a>
+<a name="link_corenet_udp_send_amavisd_send_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_send_amavisd_recv_port</b>(
+<b>corenet_udp_send_amavisd_send_port</b>(
@@ -23016,7 +23604,7 @@ No
<h5>Summary</h5>
<p>
-Send UDP traffic on the amavisd_recv port.
+Send UDP traffic on the amavisd_send port.
</p>
@@ -23027,9 +23615,9 @@ Send UDP traffic on the amavisd_recv port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23038,13 +23626,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_send_amavisd_send_port"></a>
+<a name="link_corenet_udp_send_asterisk_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_send_amavisd_send_port</b>(
+<b>corenet_udp_send_asterisk_port</b>(
@@ -23058,7 +23646,7 @@ No
<h5>Summary</h5>
<p>
-Send UDP traffic on the amavisd_send port.
+Send UDP traffic on the asterisk port.
</p>
@@ -23069,9 +23657,9 @@ Send UDP traffic on the amavisd_send port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23080,13 +23668,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_send_asterisk_port"></a>
+<a name="link_corenet_udp_send_auth_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_send_asterisk_port</b>(
+<b>corenet_udp_send_auth_port</b>(
@@ -23100,7 +23688,7 @@ No
<h5>Summary</h5>
<p>
-Send UDP traffic on the asterisk port.
+Send UDP traffic on the auth port.
</p>
@@ -23111,9 +23699,9 @@ Send UDP traffic on the asterisk port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23122,13 +23710,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_send_auth_port"></a>
+<a name="link_corenet_udp_send_bgp_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_send_auth_port</b>(
+<b>corenet_udp_send_bgp_port</b>(
@@ -23142,7 +23730,7 @@ No
<h5>Summary</h5>
<p>
-Send UDP traffic on the auth port.
+Send UDP traffic on the bgp port.
</p>
@@ -23153,9 +23741,9 @@ Send UDP traffic on the auth port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23195,9 +23783,9 @@ Send UDP traffic on the clamd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23237,9 +23825,9 @@ Send UDP traffic on the clockspeed port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23279,9 +23867,9 @@ Send UDP traffic on the compat_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23321,9 +23909,9 @@ Send UDP traffic on the comsat port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23363,9 +23951,9 @@ Send UDP traffic on the cvs port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23405,9 +23993,9 @@ Send UDP traffic on the dbskkd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23447,9 +24035,9 @@ Send UDP traffic on the dcc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23489,9 +24077,9 @@ Send UDP traffic on the dhcpc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23531,9 +24119,9 @@ Send UDP traffic on the dhcpd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23573,9 +24161,9 @@ Send UDP traffic on the dict port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23615,9 +24203,9 @@ Send UDP traffic on the distccd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23657,9 +24245,9 @@ Send UDP traffic on the dns port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23699,9 +24287,9 @@ Send UDP traffic on the fingerd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23741,9 +24329,9 @@ Send UDP traffic on the ftp_data port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23783,9 +24371,9 @@ Send UDP traffic on the ftp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23825,9 +24413,9 @@ Send UDP traffic on the gatekeeper port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23867,9 +24455,9 @@ Send UDP network traffic on generic interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23909,9 +24497,9 @@ Send UDP network traffic on generic nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23951,9 +24539,9 @@ Send UDP network traffic on generic ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -23993,9 +24581,9 @@ Send UDP traffic on the giftd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24035,9 +24623,9 @@ Send UDP traffic on the gopher port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24077,9 +24665,9 @@ Send UDP traffic on the howl port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24119,9 +24707,9 @@ Send UDP traffic on the hplip port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24161,9 +24749,9 @@ Send UDP traffic on the http_cache port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24203,9 +24791,9 @@ Send UDP traffic on the http port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24245,9 +24833,9 @@ Send UDP traffic on the i18n_input port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24287,9 +24875,9 @@ Send UDP traffic on the imaze port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24329,9 +24917,9 @@ Send UDP traffic on the inaddr_any node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24371,9 +24959,9 @@ Send UDP traffic on the inetd_child port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24413,9 +25001,9 @@ Send UDP traffic on the innd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24455,9 +25043,9 @@ Send UDP traffic on the ipp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24497,9 +25085,9 @@ Send UDP traffic on the ircd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24539,9 +25127,9 @@ Send UDP traffic on the isakmp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24581,9 +25169,9 @@ Send UDP traffic on the jabber_client port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24623,9 +25211,9 @@ Send UDP traffic on the jabber_interserver port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24665,9 +25253,9 @@ Send UDP traffic on the kerberos_admin port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24707,9 +25295,9 @@ Send UDP traffic on the kerberos_master port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24749,9 +25337,9 @@ Send UDP traffic on the kerberos port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24791,9 +25379,9 @@ Send UDP traffic on the ktalkd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24833,9 +25421,9 @@ Send UDP traffic on the ldap port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24875,9 +25463,9 @@ Send UDP traffic on the link_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24917,9 +25505,9 @@ Send UDP network traffic on the lo interface.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -24959,9 +25547,9 @@ Send UDP traffic on the lo node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25001,9 +25589,9 @@ Send UDP traffic on the mail port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25043,9 +25631,9 @@ Send UDP traffic on the mapped_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25085,9 +25673,9 @@ Send UDP traffic on the monopd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25127,9 +25715,9 @@ Send UDP traffic on the multicast node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25169,9 +25757,9 @@ Send UDP traffic on the mysqld port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25211,9 +25799,9 @@ Send UDP traffic on the nessus port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25253,9 +25841,9 @@ Send UDP traffic on the nmbd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25295,9 +25883,9 @@ Send UDP traffic on the ntp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25337,9 +25925,9 @@ Send UDP traffic on the openvpn port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25379,9 +25967,9 @@ Send UDP traffic on the pegasus_http port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25421,9 +26009,9 @@ Send UDP traffic on the pegasus_https port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25463,9 +26051,9 @@ Send UDP traffic on the pop port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25505,9 +26093,9 @@ Send UDP traffic on the portmap port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25547,9 +26135,9 @@ Send UDP traffic on the postgresql port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25589,9 +26177,9 @@ Send UDP traffic on the postgrey port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25631,9 +26219,9 @@ Send UDP traffic on the printer port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25673,9 +26261,9 @@ Send UDP traffic on the ptal port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25715,9 +26303,9 @@ Send UDP traffic on the pxe port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25757,9 +26345,9 @@ Send UDP traffic on the pyzor port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25799,9 +26387,9 @@ Send UDP traffic on the radacct port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25841,9 +26429,9 @@ Send UDP traffic on the radius port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25883,9 +26471,9 @@ Send UDP traffic on the razor port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25925,9 +26513,9 @@ Send UDP network traffic on generic reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -25967,9 +26555,9 @@ Send UDP traffic on the rlogind port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26009,9 +26597,51 @@ Send UDP traffic on the rndc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_udp_send_router_port"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_udp_send_router_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Send UDP traffic on the router port.
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -26051,9 +26681,9 @@ Send UDP traffic on the rsh port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26093,9 +26723,9 @@ Send UDP traffic on the rsync port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26135,9 +26765,9 @@ Send UDP traffic on the site_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26177,9 +26807,9 @@ Send UDP traffic on the smbd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26219,9 +26849,9 @@ Send UDP traffic on the smtp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26261,9 +26891,9 @@ Send UDP traffic on the snmp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26303,9 +26933,9 @@ Send UDP traffic on the soundd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26345,9 +26975,9 @@ Send UDP traffic on the spamd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26387,9 +27017,9 @@ Send UDP traffic on the ssh port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26429,9 +27059,9 @@ Send UDP traffic on the swat port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26471,9 +27101,9 @@ Send UDP traffic on the syslogd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26513,9 +27143,9 @@ Send UDP traffic on the telnetd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26555,9 +27185,9 @@ Send UDP traffic on the tftp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26597,9 +27227,9 @@ Send UDP traffic on the transproxy port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26639,9 +27269,9 @@ Send UDP traffic on the unspec node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26681,9 +27311,9 @@ Send UDP traffic on the uucpd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26723,9 +27353,9 @@ Send UDP traffic on the vnc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26765,9 +27395,9 @@ Send UDP traffic on the xserver port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26807,9 +27437,9 @@ Send UDP traffic on the zebra port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26849,9 +27479,9 @@ Send UDP traffic on the zope port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26891,9 +27521,9 @@ Send and receive UDP traffic on the afs_bos port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26933,9 +27563,9 @@ Send and receive UDP traffic on the afs_fs port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -26975,9 +27605,9 @@ Send and receive UDP traffic on the afs_ka port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27017,9 +27647,9 @@ Send and receive UDP traffic on the afs_pt port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27059,9 +27689,9 @@ Send and receive UDP traffic on the afs_vl port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27101,9 +27731,9 @@ Send and receive UDP network traffic on all interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27143,9 +27773,9 @@ Send and receive UDP network traffic on all nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27185,9 +27815,9 @@ Send and receive UDP network traffic on all ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27227,9 +27857,9 @@ Send and receive UDP network traffic on all reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27258,7 +27888,49 @@ No
<h5>Summary</h5>
<p>
-Send and receive UDP traffic on the amanda port.
+Send and receive UDP traffic on the amanda port.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_udp_sendrecv_amavisd_recv_port"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_udp_sendrecv_amavisd_recv_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Send and receive UDP traffic on the amavisd_recv port.
</p>
@@ -27269,9 +27941,9 @@ Send and receive UDP traffic on the amanda port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27280,13 +27952,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_sendrecv_amavisd_recv_port"></a>
+<a name="link_corenet_udp_sendrecv_amavisd_send_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_sendrecv_amavisd_recv_port</b>(
+<b>corenet_udp_sendrecv_amavisd_send_port</b>(
@@ -27300,7 +27972,7 @@ No
<h5>Summary</h5>
<p>
-Send and receive UDP traffic on the amavisd_recv port.
+Send and receive UDP traffic on the amavisd_send port.
</p>
@@ -27311,9 +27983,9 @@ Send and receive UDP traffic on the amavisd_recv port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27322,13 +27994,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_sendrecv_amavisd_send_port"></a>
+<a name="link_corenet_udp_sendrecv_asterisk_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_sendrecv_amavisd_send_port</b>(
+<b>corenet_udp_sendrecv_asterisk_port</b>(
@@ -27342,7 +28014,7 @@ No
<h5>Summary</h5>
<p>
-Send and receive UDP traffic on the amavisd_send port.
+Send and receive UDP traffic on the asterisk port.
</p>
@@ -27353,9 +28025,9 @@ Send and receive UDP traffic on the amavisd_send port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27364,13 +28036,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_sendrecv_asterisk_port"></a>
+<a name="link_corenet_udp_sendrecv_auth_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_sendrecv_asterisk_port</b>(
+<b>corenet_udp_sendrecv_auth_port</b>(
@@ -27384,7 +28056,7 @@ No
<h5>Summary</h5>
<p>
-Send and receive UDP traffic on the asterisk port.
+Send and receive UDP traffic on the auth port.
</p>
@@ -27395,9 +28067,9 @@ Send and receive UDP traffic on the asterisk port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27406,13 +28078,13 @@ No
</div>
</div>
-<a name="link_corenet_udp_sendrecv_auth_port"></a>
+<a name="link_corenet_udp_sendrecv_bgp_port"></a>
<div id="interface">
<div id="codeblock">
-<b>corenet_udp_sendrecv_auth_port</b>(
+<b>corenet_udp_sendrecv_bgp_port</b>(
@@ -27426,7 +28098,7 @@ No
<h5>Summary</h5>
<p>
-Send and receive UDP traffic on the auth port.
+Send and receive UDP traffic on the bgp port.
</p>
@@ -27437,9 +28109,9 @@ Send and receive UDP traffic on the auth port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27479,9 +28151,9 @@ Send and receive UDP traffic on the clamd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27521,9 +28193,9 @@ Send and receive UDP traffic on the clockspeed port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27563,9 +28235,9 @@ Send and receive UDP traffic on the compat_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27605,9 +28277,9 @@ Send and receive UDP traffic on the comsat port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27647,9 +28319,9 @@ Send and receive UDP traffic on the cvs port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27689,9 +28361,9 @@ Send and receive UDP traffic on the dbskkd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27731,9 +28403,9 @@ Send and receive UDP traffic on the dcc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27773,9 +28445,9 @@ Send and receive UDP traffic on the dhcpc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27815,9 +28487,9 @@ Send and receive UDP traffic on the dhcpd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27857,9 +28529,9 @@ Send and receive UDP traffic on the dict port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27899,9 +28571,9 @@ Send and receive UDP traffic on the distccd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27941,9 +28613,9 @@ Send and receive UDP traffic on the dns port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -27983,9 +28655,9 @@ Send and receive UDP traffic on the fingerd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28025,9 +28697,9 @@ Send and receive UDP traffic on the ftp_data port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28067,9 +28739,9 @@ Send and receive UDP traffic on the ftp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28109,9 +28781,9 @@ Send and receive UDP traffic on the gatekeeper port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28151,9 +28823,9 @@ Send and Receive UDP network traffic on generic interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28193,9 +28865,9 @@ Send and receive UDP network traffic on generic nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28235,9 +28907,9 @@ Send and receive UDP network traffic on generic ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28277,9 +28949,9 @@ Send and receive UDP traffic on the giftd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28319,9 +28991,9 @@ Send and receive UDP traffic on the gopher port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28361,9 +29033,9 @@ Send and receive UDP traffic on the howl port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28403,9 +29075,9 @@ Send and receive UDP traffic on the hplip port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28445,9 +29117,9 @@ Send and receive UDP traffic on the http_cache port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28487,9 +29159,9 @@ Send and receive UDP traffic on the http port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28529,9 +29201,9 @@ Send and receive UDP traffic on the i18n_input port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28571,9 +29243,9 @@ Send and receive UDP traffic on the imaze port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28613,9 +29285,9 @@ Send and receive UDP traffic on the inaddr_any node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28655,9 +29327,9 @@ Send and receive UDP traffic on the inetd_child port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28697,9 +29369,9 @@ Send and receive UDP traffic on the innd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28739,9 +29411,9 @@ Send and receive UDP traffic on the ipp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28781,9 +29453,9 @@ Send and receive UDP traffic on the ircd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28823,9 +29495,9 @@ Send and receive UDP traffic on the isakmp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28865,9 +29537,9 @@ Send and receive UDP traffic on the jabber_client port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28907,9 +29579,9 @@ Send and receive UDP traffic on the jabber_interserver port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28949,9 +29621,9 @@ Send and receive UDP traffic on the kerberos_admin port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -28991,9 +29663,9 @@ Send and receive UDP traffic on the kerberos_master port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29033,9 +29705,9 @@ Send and receive UDP traffic on the kerberos port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29075,9 +29747,9 @@ Send and receive UDP traffic on the ktalkd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29117,9 +29789,9 @@ Send and receive UDP traffic on the ldap port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29159,9 +29831,9 @@ Send and receive UDP traffic on the link_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29201,9 +29873,9 @@ Send and receive UDP network traffic on the lo interface.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29243,9 +29915,9 @@ Send and receive UDP traffic on the lo node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29285,9 +29957,9 @@ Send and receive UDP traffic on the mail port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29327,9 +29999,9 @@ Send and receive UDP traffic on the mapped_ipv4 node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29369,9 +30041,9 @@ Send and receive UDP traffic on the monopd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29411,9 +30083,9 @@ Send and receive UDP traffic on the multicast node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29453,9 +30125,9 @@ Send and receive UDP traffic on the mysqld port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29495,9 +30167,9 @@ Send and receive UDP traffic on the nessus port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29537,9 +30209,9 @@ Send and receive UDP traffic on the nmbd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29579,9 +30251,9 @@ Send and receive UDP traffic on the ntp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29621,9 +30293,9 @@ Send and receive UDP traffic on the openvpn port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29663,9 +30335,9 @@ Send and receive UDP traffic on the pegasus_http port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29705,9 +30377,9 @@ Send and receive UDP traffic on the pegasus_https port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29747,9 +30419,9 @@ Send and receive UDP traffic on the pop port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29789,9 +30461,9 @@ Send and receive UDP traffic on the portmap port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29831,9 +30503,9 @@ Send and receive UDP traffic on the postgresql port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29873,9 +30545,9 @@ Send and receive UDP traffic on the postgrey port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29915,9 +30587,9 @@ Send and receive UDP traffic on the printer port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29957,9 +30629,9 @@ Send and receive UDP traffic on the ptal port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -29999,9 +30671,9 @@ Send and receive UDP traffic on the pxe port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30041,9 +30713,9 @@ Send and receive UDP traffic on the pyzor port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30083,9 +30755,9 @@ Send and receive UDP traffic on the radacct port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30125,9 +30797,9 @@ Send and receive UDP traffic on the radius port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30167,9 +30839,9 @@ Send and receive UDP traffic on the razor port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30209,9 +30881,9 @@ Send and receive UDP network traffic on generic reserved ports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30251,9 +30923,9 @@ Send and receive UDP traffic on the rlogind port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30293,9 +30965,51 @@ Send and receive UDP traffic on the rndc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_corenet_udp_sendrecv_router_port"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>corenet_udp_sendrecv_router_port</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Send and receive UDP traffic on the router port.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -30335,9 +31049,9 @@ Send and receive UDP traffic on the rsh port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30377,9 +31091,9 @@ Send and receive UDP traffic on the rsync port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30419,9 +31133,9 @@ Send and receive UDP traffic on the site_local node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30461,9 +31175,9 @@ Send and receive UDP traffic on the smbd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30503,9 +31217,9 @@ Send and receive UDP traffic on the smtp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30545,9 +31259,9 @@ Send and receive UDP traffic on the snmp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30587,9 +31301,9 @@ Send and receive UDP traffic on the soundd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30629,9 +31343,9 @@ Send and receive UDP traffic on the spamd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30671,9 +31385,9 @@ Send and receive UDP traffic on the ssh port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30713,9 +31427,9 @@ Send and receive UDP traffic on the swat port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30755,9 +31469,9 @@ Send and receive UDP traffic on the syslogd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30797,9 +31511,9 @@ Send and receive UDP traffic on the telnetd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30839,9 +31553,9 @@ Send and receive UDP traffic on the tftp port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30881,9 +31595,9 @@ Send and receive UDP traffic on the transproxy port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30923,9 +31637,9 @@ Send and receive UDP traffic on the unspec node.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -30965,9 +31679,9 @@ Send and receive UDP traffic on the uucpd port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -31007,9 +31721,9 @@ Send and receive UDP traffic on the vnc port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -31049,9 +31763,9 @@ Send and receive UDP traffic on the xserver port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -31091,9 +31805,9 @@ Send and receive UDP traffic on the zebra port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -31133,9 +31847,9 @@ Send and receive UDP traffic on the zope port.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -31175,93 +31889,9 @@ Unconfined access to network objects.
<tr><td>
domain
</td><td>
-
-The domain allowed access.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_corenet_use_ppp_device"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>corenet_use_ppp_device</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
<p>
-Read and write the point-to-point device.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
The domain allowed access.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_corenet_use_tun_tap_device"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>corenet_use_tun_tap_device</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Read and write the TUN/TAP virtual network device.
</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The domain allowed access.
-
</td><td>
No
</td></tr>
diff --git a/www/api-docs/kernel_devices.html b/www/api-docs/kernel_devices.html
index 28977b7..e1820d8 100644
--- a/www/api-docs/kernel_devices.html
+++ b/www/api-docs/kernel_devices.html
@@ -25,9 +25,6 @@
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -49,6 +46,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -155,9 +155,9 @@ Append the printer device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -177,7 +177,7 @@ No
- domain
+ file_type
)<br>
@@ -186,7 +186,7 @@ No
<h5>Summary</h5>
<p>
-Mount a usbfs filesystem.
+Associate a file to a usbfs filesystem.
</p>
@@ -195,11 +195,11 @@ Mount a usbfs filesystem.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+file_type
</td><td>
-
-The type of the process performing this action.
-
+<p>
+The type of the file to be associated to usbfs.
+</p>
</td><td>
No
</td></tr>
@@ -208,13 +208,13 @@ No
</div>
</div>
-<a name="link_dev_create_cardmgr"></a>
+<a name="link_dev_create_cardmgr_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_create_cardmgr</b>(
+<b>dev_create_cardmgr_dev</b>(
@@ -241,9 +241,9 @@ with the correct type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -252,13 +252,13 @@ No
</div>
</div>
-<a name="link_dev_create_dir"></a>
+<a name="link_dev_create_generic_chr_files"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_create_dir</b>(
+<b>dev_create_generic_chr_files</b>(
@@ -272,7 +272,7 @@ No
<h5>Summary</h5>
<p>
-Create a directory in the device directory.
+Allow read, write, and create for generic character device files.
</p>
@@ -283,9 +283,9 @@ Create a directory in the device directory.
<tr><td>
domain
</td><td>
-
-Domain allowed to create the directory.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -294,13 +294,13 @@ No
</div>
</div>
-<a name="link_dev_create_generic_chr_file"></a>
+<a name="link_dev_create_generic_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_create_generic_chr_file</b>(
+<b>dev_create_generic_dirs</b>(
@@ -314,7 +314,7 @@ No
<h5>Summary</h5>
<p>
-Allow read, write, and create for generic character device files.
+Create a directory in the device directory.
</p>
@@ -325,9 +325,9 @@ Allow read, write, and create for generic character device files.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain allowed to create the directory.
+</p>
</td><td>
No
</td></tr>
@@ -336,13 +336,13 @@ No
</div>
</div>
-<a name="link_dev_del_generic_symlinks"></a>
+<a name="link_dev_delete_generic_files"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_del_generic_symlinks</b>(
+<b>dev_delete_generic_files</b>(
@@ -356,7 +356,7 @@ No
<h5>Summary</h5>
<p>
-Delete symbolic links in device directories.
+Delete generic files in /dev.
</p>
@@ -367,9 +367,9 @@ Delete symbolic links in device directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,13 +378,13 @@ No
</div>
</div>
-<a name="link_dev_delete_generic_file"></a>
+<a name="link_dev_delete_generic_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_delete_generic_file</b>(
+<b>dev_delete_generic_symlinks</b>(
@@ -398,7 +398,7 @@ No
<h5>Summary</h5>
<p>
-Delete generic files in /dev.
+Delete symbolic links in device directories.
</p>
@@ -409,9 +409,9 @@ Delete generic files in /dev.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -420,13 +420,13 @@ No
</div>
</div>
-<a name="link_dev_delete_lvm_control"></a>
+<a name="link_dev_delete_lvm_control_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_delete_lvm_control</b>(
+<b>dev_delete_lvm_control_dev</b>(
@@ -451,9 +451,9 @@ Delete the lvm control device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -493,9 +493,9 @@ Dontaudit getattr on all block file device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain to dontaudit access.
-
+</p>
</td><td>
No
</td></tr>
@@ -535,9 +535,9 @@ Dontaudit getattr on all character file device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain to dontaudit access.
-
+</p>
</td><td>
No
</td></tr>
@@ -546,13 +546,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_getattr_apm_bios"></a>
+<a name="link_dev_dontaudit_getattr_apm_bios_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_getattr_apm_bios</b>(
+<b>dev_dontaudit_getattr_apm_bios_dev</b>(
@@ -578,9 +578,9 @@ the apm bios device node.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -589,13 +589,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_getattr_generic_blk_file"></a>
+<a name="link_dev_dontaudit_getattr_generic_blk_files"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_getattr_generic_blk_file</b>(
+<b>dev_dontaudit_getattr_generic_blk_files</b>(
@@ -620,9 +620,9 @@ Dontaudit getattr on generic block devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain to dontaudit access.
-
+</p>
</td><td>
No
</td></tr>
@@ -631,13 +631,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_getattr_generic_chr_file"></a>
+<a name="link_dev_dontaudit_getattr_generic_chr_files"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_getattr_generic_chr_file</b>(
+<b>dev_dontaudit_getattr_generic_chr_files</b>(
@@ -662,9 +662,9 @@ Dontaudit getattr for generic character device files.
<tr><td>
domain
</td><td>
-
+<p>
Domain to dontaudit access.
-
+</p>
</td><td>
No
</td></tr>
@@ -673,13 +673,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_getattr_generic_pipe"></a>
+<a name="link_dev_dontaudit_getattr_generic_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_getattr_generic_pipe</b>(
+<b>dev_dontaudit_getattr_generic_pipes</b>(
@@ -704,9 +704,9 @@ Dontaudit getattr on generic pipes.
<tr><td>
domain
</td><td>
-
+<p>
Domain to dontaudit.
-
+</p>
</td><td>
No
</td></tr>
@@ -746,9 +746,9 @@ dontaudit getattr raw memory devices (e.g. /dev/mem).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -757,13 +757,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_getattr_misc"></a>
+<a name="link_dev_dontaudit_getattr_misc_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_getattr_misc</b>(
+<b>dev_dontaudit_getattr_misc_dev</b>(
@@ -789,9 +789,9 @@ of miscellaneous devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -800,13 +800,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_getattr_scanner"></a>
+<a name="link_dev_dontaudit_getattr_scanner_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_getattr_scanner</b>(
+<b>dev_dontaudit_getattr_scanner_dev</b>(
@@ -832,9 +832,9 @@ the scanner device.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -843,13 +843,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_getattr_usbfs_dir"></a>
+<a name="link_dev_dontaudit_getattr_usbfs_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_getattr_usbfs_dir</b>(
+<b>dev_dontaudit_getattr_usbfs_dirs</b>(
@@ -875,9 +875,9 @@ of a directory in the usb filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -918,9 +918,9 @@ of video4linux device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -960,9 +960,9 @@ Dontaudit attempts to list all device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain to dontaudit listing of device nodes.
-
+</p>
</td><td>
No
</td></tr>
@@ -1002,9 +1002,9 @@ Dontaudit read on all block file device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1044,9 +1044,9 @@ Dontaudit read on all character file device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1086,9 +1086,52 @@ Do not audit attempts to read the framebuffer.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_dev_dontaudit_read_rand"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>dev_dontaudit_read_rand</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to read from random
+number generator devices (e.g., /dev/random)
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1129,9 +1172,9 @@ write the PCMCIA card manager device.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1140,13 +1183,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_rw_dri_dev"></a>
+<a name="link_dev_dontaudit_rw_dri"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_rw_dri_dev</b>(
+<b>dev_dontaudit_rw_dri</b>(
@@ -1171,9 +1214,9 @@ Dontaudit read and write on the dri devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain to dontaudit access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1213,9 +1256,51 @@ Dontaudit getattr for generic device files.
<tr><td>
domain
</td><td>
-
+<p>
Domain to dontaudit access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_dev_dontaudit_rw_misc"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>dev_dontaudit_rw_misc</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to read and write miscellaneous devices.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1255,9 +1340,9 @@ Do not audit attempts to search sysfs.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1266,13 +1351,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_setattr_apm_bios"></a>
+<a name="link_dev_dontaudit_setattr_apm_bios_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_setattr_apm_bios</b>(
+<b>dev_dontaudit_setattr_apm_bios_dev</b>(
@@ -1298,9 +1383,9 @@ the apm bios device node.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1309,13 +1394,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_setattr_framebuffer"></a>
+<a name="link_dev_dontaudit_setattr_framebuffer_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_setattr_framebuffer</b>(
+<b>dev_dontaudit_setattr_framebuffer_dev</b>(
@@ -1341,9 +1426,9 @@ of the framebuffer device node.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1352,13 +1437,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_setattr_generic_blk_file"></a>
+<a name="link_dev_dontaudit_setattr_generic_blk_files"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_setattr_generic_blk_file</b>(
+<b>dev_dontaudit_setattr_generic_blk_files</b>(
@@ -1383,9 +1468,9 @@ Dontaudit setattr on generic block devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain to dontaudit access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1394,13 +1479,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_setattr_generic_chr_file"></a>
+<a name="link_dev_dontaudit_setattr_generic_chr_files"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_setattr_generic_chr_file</b>(
+<b>dev_dontaudit_setattr_generic_chr_files</b>(
@@ -1425,9 +1510,9 @@ Dontaudit setattr for generic character device files.
<tr><td>
domain
</td><td>
-
+<p>
Domain to dontaudit access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1436,13 +1521,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_setattr_generic_symlink"></a>
+<a name="link_dev_dontaudit_setattr_generic_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_setattr_generic_symlink</b>(
+<b>dev_dontaudit_setattr_generic_symlinks</b>(
@@ -1468,9 +1553,9 @@ of symbolic links in device directories (/dev).
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1479,13 +1564,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_setattr_misc"></a>
+<a name="link_dev_dontaudit_setattr_misc_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_setattr_misc</b>(
+<b>dev_dontaudit_setattr_misc_dev</b>(
@@ -1511,9 +1596,9 @@ of miscellaneous devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1522,13 +1607,13 @@ No
</div>
</div>
-<a name="link_dev_dontaudit_setattr_scanner"></a>
+<a name="link_dev_dontaudit_setattr_scanner_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_dontaudit_setattr_scanner</b>(
+<b>dev_dontaudit_setattr_scanner_dev</b>(
@@ -1554,9 +1639,9 @@ the scanner device.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1597,9 +1682,9 @@ of video4linux device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1608,13 +1693,13 @@ No
</div>
</div>
-<a name="link_dev_filetrans_dev_node"></a>
+<a name="link_dev_filetrans"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_filetrans_dev_node</b>(
+<b>dev_filetrans</b>(
@@ -1656,9 +1741,9 @@ will be transitioned to the type provided.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1666,9 +1751,9 @@ No
<tr><td>
file
</td><td>
-
+<p>
Type to which the created node will be transitioned.
-
+</p>
</td><td>
No
</td></tr>
@@ -1676,10 +1761,10 @@ No
<tr><td>
objectclass(es)
</td><td>
-
+<p>
Object class(es) (single or set including {}) for which this
the transition will occur.
-
+</p>
</td><td>
No
</td></tr>
@@ -1719,9 +1804,9 @@ Getattr the agp devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1761,9 +1846,9 @@ Getattr on all block file device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1803,9 +1888,9 @@ Getattr on all character file device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1814,13 +1899,13 @@ No
</div>
</div>
-<a name="link_dev_getattr_apm_bios"></a>
+<a name="link_dev_getattr_apm_bios_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_getattr_apm_bios</b>(
+<b>dev_getattr_apm_bios_dev</b>(
@@ -1845,9 +1930,9 @@ Get the attributes of the apm bios device node.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1856,13 +1941,13 @@ No
</div>
</div>
-<a name="link_dev_getattr_cpu"></a>
+<a name="link_dev_getattr_cpu_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_getattr_cpu</b>(
+<b>dev_getattr_cpu_dev</b>(
@@ -1888,9 +1973,51 @@ microcode and id interfaces.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_dev_getattr_dri_dev"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>dev_getattr_dri_dev</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+<h5>Summary</h5>
+<p>
+getattr the dri devices.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1899,13 +2026,13 @@ No
</div>
</div>
-<a name="link_dev_getattr_framebuffer"></a>
+<a name="link_dev_getattr_framebuffer_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_getattr_framebuffer</b>(
+<b>dev_getattr_framebuffer_dev</b>(
@@ -1930,9 +2057,9 @@ Get the attributes of the framebuffer device node.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1941,13 +2068,13 @@ No
</div>
</div>
-<a name="link_dev_getattr_generic_blk_file"></a>
+<a name="link_dev_getattr_generic_blk_files"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_getattr_generic_blk_file</b>(
+<b>dev_getattr_generic_blk_files</b>(
@@ -1972,9 +2099,9 @@ Allow getattr on generic block devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1983,13 +2110,13 @@ No
</div>
</div>
-<a name="link_dev_getattr_generic_chr_file"></a>
+<a name="link_dev_getattr_generic_chr_files"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_getattr_generic_chr_file</b>(
+<b>dev_getattr_generic_chr_files</b>(
@@ -2014,9 +2141,9 @@ Allow getattr for generic character device files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2025,13 +2152,13 @@ No
</div>
</div>
-<a name="link_dev_getattr_misc"></a>
+<a name="link_dev_getattr_misc_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_getattr_misc</b>(
+<b>dev_getattr_misc_dev</b>(
@@ -2056,9 +2183,9 @@ Get the attributes of miscellaneous devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2067,13 +2194,13 @@ No
</div>
</div>
-<a name="link_dev_getattr_mouse"></a>
+<a name="link_dev_getattr_mouse_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_getattr_mouse</b>(
+<b>dev_getattr_mouse_dev</b>(
@@ -2098,9 +2225,9 @@ Get the attributes of the mouse devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2109,13 +2236,13 @@ No
</div>
</div>
-<a name="link_dev_getattr_mtrr"></a>
+<a name="link_dev_getattr_mtrr_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_getattr_mtrr</b>(
+<b>dev_getattr_mtrr_dev</b>(
@@ -2140,9 +2267,9 @@ Get the attributes of the mtrr device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2151,13 +2278,13 @@ No
</div>
</div>
-<a name="link_dev_getattr_power_management"></a>
+<a name="link_dev_getattr_power_mgmt_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_getattr_power_management</b>(
+<b>dev_getattr_power_mgmt_dev</b>(
@@ -2182,9 +2309,9 @@ Get the attributes of the the power management device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2193,13 +2320,13 @@ No
</div>
</div>
-<a name="link_dev_getattr_scanner"></a>
+<a name="link_dev_getattr_scanner_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_getattr_scanner</b>(
+<b>dev_getattr_scanner_dev</b>(
@@ -2224,9 +2351,9 @@ Get the attributes of the scanner device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2235,13 +2362,13 @@ No
</div>
</div>
-<a name="link_dev_getattr_snd_dev"></a>
+<a name="link_dev_getattr_sound_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_getattr_snd_dev</b>(
+<b>dev_getattr_sound_dev</b>(
@@ -2266,9 +2393,9 @@ Get the attributes of the sound devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2277,13 +2404,13 @@ No
</div>
</div>
-<a name="link_dev_getattr_sysfs_dir"></a>
+<a name="link_dev_getattr_sysfs_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_getattr_sysfs_dir</b>(
+<b>dev_getattr_sysfs_dirs</b>(
@@ -2308,9 +2435,9 @@ Get the attributes of sysfs directories.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2319,13 +2446,13 @@ No
</div>
</div>
-<a name="link_dev_getattr_usbfs_dir"></a>
+<a name="link_dev_getattr_usbfs_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_getattr_usbfs_dir</b>(
+<b>dev_getattr_usbfs_dirs</b>(
@@ -2350,9 +2477,9 @@ Get the attributes of a directory in the usb filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2392,9 +2519,9 @@ Get the attributes of video4linux devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2434,9 +2561,9 @@ Get the attributes of X server miscellaneous devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2476,9 +2603,9 @@ List all of the device nodes in a device directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed to list device nodes.
-
+</p>
</td><td>
No
</td></tr>
@@ -2518,9 +2645,9 @@ List the contents of the sysfs directories.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2560,9 +2687,9 @@ Allow caller to get a list of usb hardware.
<tr><td>
domain
</td><td>
-
+<p>
The process type getting the list.
-
+</p>
</td><td>
No
</td></tr>
@@ -2602,9 +2729,9 @@ Read, write, create, and delete all block device files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2644,9 +2771,51 @@ Read, write, create, and delete all character device files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_dev_manage_all_dev_nodes"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>dev_manage_all_dev_nodes</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+<h5>Summary</h5>
+<p>
+Create, delete, read, and write device nodes in device directories.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -2655,13 +2824,13 @@ No
</div>
</div>
-<a name="link_dev_manage_cardmgr"></a>
+<a name="link_dev_manage_cardmgr_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_manage_cardmgr</b>(
+<b>dev_manage_cardmgr_dev</b>(
@@ -2687,9 +2856,9 @@ the PCMCIA card manager device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2698,13 +2867,13 @@ No
</div>
</div>
-<a name="link_dev_manage_dev_nodes"></a>
+<a name="link_dev_manage_dri_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_manage_dev_nodes</b>(
+<b>dev_manage_dri_dev</b>(
@@ -2718,7 +2887,7 @@ No
<h5>Summary</h5>
<p>
-Create, delete, read, and write device nodes in device directories.
+Create, read, write, and delete the dri devices.
</p>
@@ -2729,9 +2898,9 @@ Create, delete, read, and write device nodes in device directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2740,13 +2909,13 @@ No
</div>
</div>
-<a name="link_dev_manage_generic_blk_file"></a>
+<a name="link_dev_manage_generic_blk_files"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_manage_generic_blk_file</b>(
+<b>dev_manage_generic_blk_files</b>(
@@ -2771,9 +2940,9 @@ Create, delete, read, and write block device files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2782,13 +2951,13 @@ No
</div>
</div>
-<a name="link_dev_manage_generic_chr_file"></a>
+<a name="link_dev_manage_generic_chr_files"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_manage_generic_chr_file</b>(
+<b>dev_manage_generic_chr_files</b>(
@@ -2813,9 +2982,51 @@ Create, delete, read, and write character device files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+</table>
+</div>
+</div>
+
+<a name="link_dev_manage_generic_files"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>dev_manage_generic_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Create a file in the device directory.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed to create the files.
+</p>
</td><td>
No
</td></tr>
@@ -2855,9 +3066,9 @@ Create, delete, read, and write symbolic links in device directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2897,9 +3108,9 @@ Mount a usbfs filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2940,9 +3151,9 @@ use on device nodes (usually files in /dev).
<tr><td>
object_type
</td><td>
-
+<p>
The object type that will be used on device nodes.
-
+</p>
</td><td>
No
</td></tr>
@@ -2982,9 +3193,9 @@ Read the CPU identity.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3024,9 +3235,9 @@ Read the framebuffer.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3066,9 +3277,9 @@ Read input event devices (/dev/input).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3108,9 +3319,9 @@ Read the lvm comtrol device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3150,9 +3361,9 @@ Read miscellaneous devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3192,9 +3403,9 @@ Read the mouse devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3234,9 +3445,9 @@ Read the mtrr device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3265,7 +3476,8 @@ No
<h5>Summary</h5>
<p>
-Read from random devices (e.g., /dev/random)
+Read from random number generator
+devices (e.g., /dev/random)
</p>
@@ -3276,9 +3488,9 @@ Read from random devices (e.g., /dev/random)
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3318,9 +3530,9 @@ Read raw memory devices (e.g. /dev/mem).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3360,9 +3572,9 @@ Read the realtime clock (/dev/rtc).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3371,13 +3583,13 @@ No
</div>
</div>
-<a name="link_dev_read_snd_dev"></a>
+<a name="link_dev_read_sound"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_read_snd_dev</b>(
+<b>dev_read_sound</b>(
@@ -3402,9 +3614,9 @@ Read the sound devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3413,13 +3625,13 @@ No
</div>
</div>
-<a name="link_dev_read_snd_mixer_dev"></a>
+<a name="link_dev_read_sound_mixer"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_read_snd_mixer_dev</b>(
+<b>dev_read_sound_mixer</b>(
@@ -3444,9 +3656,9 @@ Read the sound mixer devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3486,9 +3698,9 @@ Allow caller to read hardware state information.
<tr><td>
domain
</td><td>
-
+<p>
The process type reading hardware state information.
-
+</p>
</td><td>
No
</td></tr>
@@ -3528,9 +3740,9 @@ Read from pseudo random devices (e.g., /dev/urandom)
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3571,9 +3783,9 @@ the usbfs filesystem interface.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3613,9 +3825,9 @@ Allow full relabeling (to and from) of all device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed to relabel.
-
+</p>
</td><td>
No
</td></tr>
@@ -3624,13 +3836,13 @@ No
</div>
</div>
-<a name="link_dev_relabel_dev_dirs"></a>
+<a name="link_dev_relabel_generic_dev_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_relabel_dev_dirs</b>(
+<b>dev_relabel_generic_dev_dirs</b>(
@@ -3655,9 +3867,9 @@ Allow full relabeling (to and from) of directories in /dev.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed to relabel.
-
+</p>
</td><td>
No
</td></tr>
@@ -3697,9 +3909,9 @@ Relabel symbolic links in device directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3708,13 +3920,13 @@ No
</div>
</div>
-<a name="link_dev_rw_agp_dev"></a>
+<a name="link_dev_rw_agp"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_rw_agp_dev</b>(
+<b>dev_rw_agp</b>(
@@ -3739,9 +3951,9 @@ Read and write the agp devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3781,9 +3993,9 @@ Read and write the apm bios.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3823,9 +4035,9 @@ Read and write the PCMCIA card manager device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3866,9 +4078,9 @@ is required to load CPU microcode.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3897,7 +4109,175 @@ No
<h5>Summary</h5>
<p>
-Read and write the the hardware SSL accelerator.
+Read and write the the hardware SSL accelerator.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_dev_rw_dri"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>dev_rw_dri</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write the dri devices.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_dev_rw_framebuffer"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>dev_rw_framebuffer</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write the framebuffer.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_dev_rw_generic_files"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>dev_rw_generic_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write generic files in /dev.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_dev_rw_generic_usb_dev"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>dev_rw_generic_usb_dev</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write generic the USB devices.
</p>
@@ -3908,9 +4288,9 @@ Read and write the the hardware SSL accelerator.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3919,13 +4299,13 @@ No
</div>
</div>
-<a name="link_dev_rw_dri_dev"></a>
+<a name="link_dev_rw_input_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_rw_dri_dev</b>(
+<b>dev_rw_input_dev</b>(
@@ -3939,7 +4319,7 @@ No
<h5>Summary</h5>
<p>
-Read and write the dri devices.
+Read input event devices (/dev/input).
</p>
@@ -3950,9 +4330,9 @@ Read and write the dri devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3961,13 +4341,13 @@ No
</div>
</div>
-<a name="link_dev_rw_generic_file"></a>
+<a name="link_dev_rw_lvm_control"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_rw_generic_file</b>(
+<b>dev_rw_lvm_control</b>(
@@ -3981,7 +4361,7 @@ No
<h5>Summary</h5>
<p>
-Read and write generic files in /dev.
+Read and write the lvm control device.
</p>
@@ -3992,9 +4372,9 @@ Read and write generic files in /dev.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4003,13 +4383,13 @@ No
</div>
</div>
-<a name="link_dev_rw_lvm_control"></a>
+<a name="link_dev_rw_mouse"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_rw_lvm_control</b>(
+<b>dev_rw_mouse</b>(
@@ -4023,7 +4403,7 @@ No
<h5>Summary</h5>
<p>
-Read and write the lvm control device.
+Read and write to mouse devices.
</p>
@@ -4034,9 +4414,9 @@ Read and write the lvm control device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4045,13 +4425,13 @@ No
</div>
</div>
-<a name="link_dev_rw_mouse"></a>
+<a name="link_dev_rw_mtrr"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_rw_mouse</b>(
+<b>dev_rw_mtrr</b>(
@@ -4065,7 +4445,7 @@ No
<h5>Summary</h5>
<p>
-Read and write to mouse devices.
+Read and write the mtrr device.
</p>
@@ -4076,9 +4456,9 @@ Read and write to mouse devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4087,13 +4467,13 @@ No
</div>
</div>
-<a name="link_dev_rw_null_dev"></a>
+<a name="link_dev_rw_null"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_rw_null_dev</b>(
+<b>dev_rw_null</b>(
@@ -4118,9 +4498,9 @@ Read and write to the null device (/dev/null).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4160,9 +4540,9 @@ Read and write the the power management device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4202,9 +4582,9 @@ Read and write the printer device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4244,9 +4624,9 @@ Read and set the realtime clock (/dev/rtc).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4286,9 +4666,9 @@ Read and write the scanner device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4328,9 +4708,9 @@ Allow caller to modify hardware state information.
<tr><td>
domain
</td><td>
-
+<p>
The process type modifying hardware state information.
-
+</p>
</td><td>
No
</td></tr>
@@ -4370,9 +4750,51 @@ Allow caller to modify usb hardware configuration files.
<tr><td>
domain
</td><td>
-
+<p>
The process type modifying the options.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_dev_rw_xserver_misc"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>dev_rw_xserver_misc</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write X server miscellaneous devices.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -4381,13 +4803,13 @@ No
</div>
</div>
-<a name="link_dev_rw_zero_dev"></a>
+<a name="link_dev_rw_zero"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_rw_zero_dev</b>(
+<b>dev_rw_zero</b>(
@@ -4412,9 +4834,9 @@ Read and write to the zero device (/dev/zero).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4423,13 +4845,13 @@ No
</div>
</div>
-<a name="link_dev_rwx_zero_dev"></a>
+<a name="link_dev_rwx_zero"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_rwx_zero_dev</b>(
+<b>dev_rwx_zero</b>(
@@ -4454,9 +4876,9 @@ Read, write, and execute the zero device (/dev/zero).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4496,9 +4918,9 @@ Read and execute raw memory devices (e.g. /dev/mem).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4538,9 +4960,9 @@ Search the sysfs directories.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4580,9 +5002,9 @@ Search the directory containing USB hardware information.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4622,9 +5044,9 @@ Setattr on all block file device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4664,9 +5086,9 @@ Setattr on all character file device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4675,13 +5097,13 @@ No
</div>
</div>
-<a name="link_dev_setattr_apm_bios"></a>
+<a name="link_dev_setattr_apm_bios_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_setattr_apm_bios</b>(
+<b>dev_setattr_apm_bios_dev</b>(
@@ -4706,9 +5128,9 @@ Set the attributes of the apm bios device node.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4717,13 +5139,13 @@ No
</div>
</div>
-<a name="link_dev_setattr_dev_dir"></a>
+<a name="link_dev_setattr_dri_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_setattr_dev_dir</b>(
+<b>dev_setattr_dri_dev</b>(
@@ -4737,7 +5159,7 @@ No
<h5>Summary</h5>
<p>
-Set the attributes of /dev directories.
+Setattr the dri devices.
</p>
@@ -4748,9 +5170,9 @@ Set the attributes of /dev directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4759,13 +5181,13 @@ No
</div>
</div>
-<a name="link_dev_setattr_framebuffer"></a>
+<a name="link_dev_setattr_framebuffer_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_setattr_framebuffer</b>(
+<b>dev_setattr_framebuffer_dev</b>(
@@ -4790,9 +5212,51 @@ Set the attributes of the framebuffer device node.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_dev_setattr_generic_dirs"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>dev_setattr_generic_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Set the attributes of /dev directories.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -4801,13 +5265,13 @@ No
</div>
</div>
-<a name="link_dev_setattr_misc"></a>
+<a name="link_dev_setattr_misc_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_setattr_misc</b>(
+<b>dev_setattr_misc_dev</b>(
@@ -4832,9 +5296,9 @@ Set the attributes of miscellaneous devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4843,13 +5307,13 @@ No
</div>
</div>
-<a name="link_dev_setattr_mouse"></a>
+<a name="link_dev_setattr_mouse_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_setattr_mouse</b>(
+<b>dev_setattr_mouse_dev</b>(
@@ -4874,9 +5338,9 @@ Set the attributes of the mouse devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4885,13 +5349,13 @@ No
</div>
</div>
-<a name="link_dev_setattr_power_management"></a>
+<a name="link_dev_setattr_power_mgmt_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_setattr_power_management</b>(
+<b>dev_setattr_power_mgmt_dev</b>(
@@ -4916,9 +5380,9 @@ Set the attributes of the the power management device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4927,13 +5391,13 @@ No
</div>
</div>
-<a name="link_dev_setattr_printer"></a>
+<a name="link_dev_setattr_printer_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_setattr_printer</b>(
+<b>dev_setattr_printer_dev</b>(
@@ -4958,9 +5422,9 @@ Set the attributes of the printer device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4969,13 +5433,13 @@ No
</div>
</div>
-<a name="link_dev_setattr_scanner"></a>
+<a name="link_dev_setattr_scanner_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_setattr_scanner</b>(
+<b>dev_setattr_scanner_dev</b>(
@@ -5000,9 +5464,9 @@ Set the attributes of the scanner device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5011,13 +5475,13 @@ No
</div>
</div>
-<a name="link_dev_setattr_snd_dev"></a>
+<a name="link_dev_setattr_sound_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_setattr_snd_dev</b>(
+<b>dev_setattr_sound_dev</b>(
@@ -5042,9 +5506,9 @@ Set the attributes of the sound devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5084,9 +5548,9 @@ Set the attributes of video4linux device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5126,9 +5590,9 @@ Set the attributes of X server miscellaneous devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5168,9 +5632,9 @@ Unconfined access to devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5210,9 +5674,9 @@ Write the framebuffer.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5252,9 +5716,9 @@ Write miscellaneous devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5294,9 +5758,9 @@ Write the mtrr device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5338,9 +5802,9 @@ random device.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5380,9 +5844,9 @@ Write raw memory devices (e.g. /dev/mem).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5422,9 +5886,9 @@ Set the realtime clock (/dev/rtc).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5433,13 +5897,13 @@ No
</div>
</div>
-<a name="link_dev_write_snd_dev"></a>
+<a name="link_dev_write_sound"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_write_snd_dev</b>(
+<b>dev_write_sound</b>(
@@ -5464,9 +5928,9 @@ Write the sound devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5475,13 +5939,13 @@ No
</div>
</div>
-<a name="link_dev_write_snd_mixer_dev"></a>
+<a name="link_dev_write_sound_mixer"></a>
<div id="interface">
<div id="codeblock">
-<b>dev_write_snd_mixer_dev</b>(
+<b>dev_write_sound_mixer</b>(
@@ -5506,9 +5970,9 @@ Write the sound mixer devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5549,9 +6013,9 @@ sets the random number generator seed.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5591,9 +6055,9 @@ Write and execute raw memory devices (e.g. /dev/mem).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/kernel_domain.html b/www/api-docs/kernel_domain.html
index 81fe238..be075a3 100644
--- a/www/api-docs/kernel_domain.html
+++ b/www/api-docs/kernel_domain.html
@@ -25,9 +25,6 @@
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -49,6 +46,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -149,9 +149,9 @@ more appropriate for userland processes.
<tr><td>
type
</td><td>
-
+<p>
Type to be used as a basic domain type.
-
+</p>
</td><td>
No
</td></tr>
@@ -210,9 +210,9 @@ cron domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain target for user exemption.
-
+</p>
</td><td>
No
</td></tr>
@@ -271,9 +271,9 @@ user cron jobs.
<tr><td>
domain
</td><td>
-
+<p>
Domain target for user exemption.
-
+</p>
</td><td>
No
</td></tr>
@@ -314,9 +314,9 @@ of all domains unix datagram sockets.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -356,9 +356,9 @@ Get the attributes of all domains of all domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -399,9 +399,9 @@ all domains IPSEC key management sockets.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -442,9 +442,9 @@ all domains packet sockets.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -485,9 +485,9 @@ of all domains unnamed pipes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -528,9 +528,9 @@ all domains raw sockets.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -583,9 +583,9 @@ and is probably excessive.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -626,9 +626,9 @@ of all domains unix datagram sockets.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -669,9 +669,9 @@ of all domains TCP sockets.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -712,9 +712,9 @@ of all domains UDP sockets.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -755,9 +755,9 @@ session ID of all domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -766,13 +766,13 @@ No
</div>
</div>
-<a name="link_domain_dontaudit_list_all_domains_proc"></a>
+<a name="link_domain_dontaudit_list_all_domains_state"></a>
<div id="interface">
<div id="codeblock">
-<b>domain_dontaudit_list_all_domains_proc</b>(
+<b>domain_dontaudit_list_all_domains_state</b>(
@@ -798,9 +798,9 @@ directories of all domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -852,9 +852,9 @@ Generally this needs to be suppressed because procps tries to access
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -906,9 +906,9 @@ Generally this needs to be suppressed because procps tries to access
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -949,9 +949,9 @@ state (/proc/pid) of all domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -992,9 +992,9 @@ all domains key sockets.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1035,9 +1035,9 @@ all domains UDP sockets.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1078,9 +1078,9 @@ state directory (/proc/pid) of all domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1089,13 +1089,13 @@ No
</div>
</div>
-<a name="link_domain_dontaudit_use_wide_inherit_fd"></a>
+<a name="link_domain_dontaudit_use_interactive_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>domain_dontaudit_use_wide_inherit_fd</b>(
+<b>domain_dontaudit_use_interactive_fds</b>(
@@ -1120,9 +1120,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1162,9 +1162,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1213,9 +1213,9 @@ an entry point for the domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain to be entered.
-
+</p>
</td><td>
No
</td></tr>
@@ -1223,10 +1223,52 @@ No
<tr><td>
type
</td><td>
-
+<p>
Type of program used for entering
the domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_domain_entry_file_spec_domtrans"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>domain_entry_file_spec_domtrans</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute an entry_type in the specified domain.
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -1266,9 +1308,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1308,9 +1350,9 @@ Get the attributes of all domains of all domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1351,9 +1393,9 @@ files for all domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1406,9 +1448,9 @@ that can use lsof on all domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1448,9 +1490,9 @@ Get the attributes of all confined domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1490,9 +1532,51 @@ Get the session ID of all domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+</table>
+</div>
+</div>
+
+<a name="link_domain_interactive_fd"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>domain_interactive_fd</b>(
+
+
+
+
+ ?
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Summary is missing!
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+?
+</td><td>
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -1532,9 +1616,9 @@ Send a kill signal to all domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1575,9 +1659,9 @@ entrypoint files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1617,9 +1701,9 @@ Mmap all entry point files as executable.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1628,13 +1712,13 @@ No
</div>
</div>
-<a name="link_domain_obj_id_change_exempt"></a>
+<a name="link_domain_obj_id_change_exemption"></a>
<div id="interface">
<div id="codeblock">
-<b>domain_obj_id_change_exempt</b>(
+<b>domain_obj_id_change_exemption</b>(
@@ -1660,9 +1744,9 @@ changing the user identity in object contexts.
<tr><td>
domain
</td><td>
-
+<p>
The process type to make an exception to the constraint.
-
+</p>
</td><td>
No
</td></tr>
@@ -1702,9 +1786,9 @@ Ptrace all domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1744,9 +1828,9 @@ Read the process state (/proc/pid) of all domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1786,9 +1870,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1828,9 +1912,9 @@ Read the process state (/proc/pid) of all confined domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1871,9 +1955,9 @@ file types.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1882,13 +1966,13 @@ No
</div>
</div>
-<a name="link_domain_role_change_exempt"></a>
+<a name="link_domain_role_change_exemption"></a>
<div id="interface">
<div id="codeblock">
-<b>domain_role_change_exempt</b>(
+<b>domain_role_change_exemption</b>(
@@ -1914,9 +1998,9 @@ changing of role.
<tr><td>
domain
</td><td>
-
+<p>
The process type to make an exception to the constraint.
-
+</p>
</td><td>
No
</td></tr>
@@ -1956,9 +2040,9 @@ Search the process state directory (/proc/pid) of all domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1998,9 +2082,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -2040,9 +2124,9 @@ Send a child terminated signal to all domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2051,13 +2135,13 @@ No
</div>
</div>
-<a name="link_domain_sigchld_wide_inherit_fd"></a>
+<a name="link_domain_sigchld_interactive_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>domain_sigchld_wide_inherit_fd</b>(
+<b>domain_sigchld_interactive_fds</b>(
@@ -2083,9 +2167,9 @@ discriptors are widely inheritable.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2125,9 +2209,9 @@ Send general signals to all domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2167,9 +2251,9 @@ Send a null signal to all domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2209,9 +2293,9 @@ Send a stop signal to all domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2220,13 +2304,13 @@ No
</div>
</div>
-<a name="link_domain_subj_id_change_exempt"></a>
+<a name="link_domain_subj_id_change_exemption"></a>
<div id="interface">
<div id="codeblock">
-<b>domain_subj_id_change_exempt</b>(
+<b>domain_subj_id_change_exemption</b>(
@@ -2252,9 +2336,9 @@ changing of user identity.
<tr><td>
domain
</td><td>
-
+<p>
The process type to make an exception to the constraint.
-
+</p>
</td><td>
No
</td></tr>
@@ -2263,13 +2347,13 @@ No
</div>
</div>
-<a name="link_domain_system_change_exempt"></a>
+<a name="link_domain_system_change_exemption"></a>
<div id="interface">
<div id="codeblock">
-<b>domain_system_change_exempt</b>(
+<b>domain_system_change_exemption</b>(
@@ -2296,9 +2380,9 @@ identity and system role.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2338,9 +2422,9 @@ Make the specified type usable as a domain.
<tr><td>
type
</td><td>
-
+<p>
Type to be used as a domain type.
-
+</p>
</td><td>
No
</td></tr>
@@ -2380,9 +2464,9 @@ Unconfined access to domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2391,13 +2475,13 @@ No
</div>
</div>
-<a name="link_domain_use_wide_inherit_fd"></a>
+<a name="link_domain_use_interactive_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>domain_use_wide_inherit_fd</b>(
+<b>domain_use_interactive_fds</b>(
@@ -2422,9 +2506,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -2483,51 +2567,9 @@ user domains.
<tr><td>
domain
</td><td>
-
-Domain target for user exemption.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_domain_wide_inherit_fd"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>domain_wide_inherit_fd</b>(
-
-
-
-
- ?
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
<p>
-Summary is missing!
+Domain target for user exemption.
</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-?
-</td><td>
-
-Parameter descriptions are missing!
-
</td><td>
No
</td></tr>
@@ -2574,9 +2616,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -2616,9 +2658,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/kernel_files.html b/www/api-docs/kernel_files.html
index b7ed449..f10180e 100644
--- a/www/api-docs/kernel_files.html
+++ b/www/api-docs/kernel_files.html
@@ -25,9 +25,6 @@
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -49,6 +46,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -148,9 +148,9 @@ temporary directory (/tmp).
<tr><td>
file_type
</td><td>
-
+<p>
Type of the file to associate.
-
+</p>
</td><td>
No
</td></tr>
@@ -159,18 +159,34 @@ No
</div>
</div>
-<a name="link_files_config_file"></a>
+<a name="link_files_boot_filetrans"></a>
<div id="interface">
<div id="codeblock">
-<b>files_config_file</b>(
+<b>files_boot_filetrans</b>(
- file_type
+ domain
+
+
+
+ ,
+
+
+
+ private_type
+
+
+
+ ,
+
+
+
+ object_class
)<br>
@@ -179,8 +195,8 @@ No
<h5>Summary</h5>
<p>
-Make the specified type a
-configuration file.
+Create a private type object in boot
+with an automatic type transition
</p>
@@ -189,11 +205,31 @@ configuration file.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-file_type
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
+No
+</td></tr>
-Type to be used as a configuration file.
+<tr><td>
+private_type
+</td><td>
+<p>
+The type of the object to be created.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+object_class
+</td><td>
+<p>
+The object class of the object being created.
+</p>
</td><td>
No
</td></tr>
@@ -202,18 +238,18 @@ No
</div>
</div>
-<a name="link_files_create_boot_flag"></a>
+<a name="link_files_config_file"></a>
<div id="interface">
<div id="codeblock">
-<b>files_create_boot_flag</b>(
+<b>files_config_file</b>(
- ?
+ file_type
)<br>
@@ -222,7 +258,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Make the specified type a
+configuration file.
</p>
@@ -231,11 +268,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+file_type
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Type to be used as a configuration file.
+</p>
</td><td>
No
</td></tr>
@@ -244,18 +281,18 @@ No
</div>
</div>
-<a name="link_files_delete_all_locks"></a>
+<a name="link_files_create_boot_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_delete_all_locks</b>(
+<b>files_create_boot_dirs</b>(
- ?
+ domain
)<br>
@@ -264,7 +301,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Create directories in /boot
</p>
@@ -273,11 +310,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -286,13 +323,13 @@ No
</div>
</div>
-<a name="link_files_delete_all_pid_dirs"></a>
+<a name="link_files_create_boot_flag"></a>
<div id="interface">
<div id="codeblock">
-<b>files_delete_all_pid_dirs</b>(
+<b>files_create_boot_flag</b>(
@@ -317,9 +354,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -328,18 +365,18 @@ No
</div>
</div>
-<a name="link_files_delete_all_pids"></a>
+<a name="link_files_create_kernel_img"></a>
<div id="interface">
<div id="codeblock">
-<b>files_delete_all_pids</b>(
+<b>files_create_kernel_img</b>(
- ?
+ domain
)<br>
@@ -348,7 +385,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Install a kernel into the /boot directory.
</p>
@@ -357,11 +394,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -370,13 +407,13 @@ No
</div>
</div>
-<a name="link_files_delete_etc_files"></a>
+<a name="link_files_create_kernel_symbol_table"></a>
<div id="interface">
<div id="codeblock">
-<b>files_delete_etc_files</b>(
+<b>files_create_kernel_symbol_table</b>(
@@ -390,7 +427,7 @@ No
<h5>Summary</h5>
<p>
-Delete system configuration files in /etc.
+Install a system.map into the /boot directory.
</p>
@@ -401,9 +438,9 @@ Delete system configuration files in /etc.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -412,13 +449,13 @@ No
</div>
</div>
-<a name="link_files_delete_root_dir_entry"></a>
+<a name="link_files_delete_all_locks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_delete_root_dir_entry</b>(
+<b>files_delete_all_locks</b>(
@@ -443,9 +480,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -454,18 +491,18 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_all_dirs"></a>
+<a name="link_files_delete_all_pid_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_all_dirs</b>(
+<b>files_delete_all_pid_dirs</b>(
- domain
+ ?
)<br>
@@ -474,8 +511,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to get the attributes
-of all directories.
+Summary is missing!
</p>
@@ -484,11 +520,11 @@ of all directories.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain to not audit.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -497,18 +533,18 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_all_files"></a>
+<a name="link_files_delete_all_pids"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_all_files</b>(
+<b>files_delete_all_pids</b>(
- domain
+ ?
)<br>
@@ -517,8 +553,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to get the attributes
-of all files.
+Summary is missing!
</p>
@@ -527,11 +562,11 @@ of all files.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain to not audit.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -540,13 +575,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_all_pipes"></a>
+<a name="link_files_delete_etc_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_all_pipes</b>(
+<b>files_delete_etc_files</b>(
@@ -560,8 +595,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to get the attributes
-of all named pipes.
+Delete system configuration files in /etc.
</p>
@@ -572,9 +606,9 @@ of all named pipes.
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -583,13 +617,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_all_sockets"></a>
+<a name="link_files_delete_kernel"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_all_sockets</b>(
+<b>files_delete_kernel</b>(
@@ -603,8 +637,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to get the attributes
-of all named sockets.
+Delete a kernel from /boot.
</p>
@@ -615,9 +648,9 @@ of all named sockets.
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -626,13 +659,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_all_symlinks"></a>
+<a name="link_files_delete_kernel_modules"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_all_symlinks</b>(
+<b>files_delete_kernel_modules</b>(
@@ -646,8 +679,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to get the attributes
-of all symbolic links.
+Delete kernel module files.
</p>
@@ -658,9 +690,9 @@ of all symbolic links.
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -669,13 +701,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_default_dir"></a>
+<a name="link_files_delete_kernel_symbol_table"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_default_dir</b>(
+<b>files_delete_kernel_symbol_table</b>(
@@ -689,8 +721,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to get the attributes of
-directories with the default file type.
+Delete a system.map in the /boot directory.
</p>
@@ -701,9 +732,9 @@ directories with the default file type.
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -712,18 +743,18 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_default_files"></a>
+<a name="link_files_delete_root_dir_entry"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_default_files</b>(
+<b>files_delete_root_dir_entry</b>(
- domain
+ ?
)<br>
@@ -732,8 +763,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to get the attributes of
-files with the default file type.
+Summary is missing!
</p>
@@ -742,11 +772,11 @@ files with the default file type.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain to not audit.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -755,13 +785,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_home_dir"></a>
+<a name="link_files_dontaudit_getattr_all_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_home_dir</b>(
+<b>files_dontaudit_getattr_all_dirs</b>(
@@ -775,9 +805,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to get the
-attributes of the home directories root
-(/home).
+Do not audit attempts to get the attributes
+of all directories.
</p>
@@ -788,9 +817,9 @@ attributes of the home directories root
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -799,13 +828,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_non_security_blk_dev"></a>
+<a name="link_files_dontaudit_getattr_all_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_non_security_blk_dev</b>(
+<b>files_dontaudit_getattr_all_files</b>(
@@ -820,7 +849,7 @@ No
<h5>Summary</h5>
<p>
Do not audit attempts to get the attributes
-of non security block devices.
+of all files.
</p>
@@ -831,9 +860,9 @@ of non security block devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -842,13 +871,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_non_security_chr_dev"></a>
+<a name="link_files_dontaudit_getattr_all_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_non_security_chr_dev</b>(
+<b>files_dontaudit_getattr_all_pipes</b>(
@@ -863,7 +892,7 @@ No
<h5>Summary</h5>
<p>
Do not audit attempts to get the attributes
-of non security character devices.
+of all named pipes.
</p>
@@ -874,9 +903,9 @@ of non security character devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -885,13 +914,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_non_security_files"></a>
+<a name="link_files_dontaudit_getattr_all_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_non_security_files</b>(
+<b>files_dontaudit_getattr_all_sockets</b>(
@@ -906,7 +935,7 @@ No
<h5>Summary</h5>
<p>
Do not audit attempts to get the attributes
-of non security files.
+of all named sockets.
</p>
@@ -917,9 +946,9 @@ of non security files.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -928,13 +957,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_non_security_pipes"></a>
+<a name="link_files_dontaudit_getattr_all_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_non_security_pipes</b>(
+<b>files_dontaudit_getattr_all_symlinks</b>(
@@ -949,7 +978,7 @@ No
<h5>Summary</h5>
<p>
Do not audit attempts to get the attributes
-of non security named pipes.
+of all symbolic links.
</p>
@@ -960,9 +989,9 @@ of non security named pipes.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -971,13 +1000,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_non_security_sockets"></a>
+<a name="link_files_dontaudit_getattr_boot_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_non_security_sockets</b>(
+<b>files_dontaudit_getattr_boot_dirs</b>(
@@ -991,8 +1020,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to get the attributes
-of non security named sockets.
+Do not audit attempts to get attributes
+of the /boot directory.
</p>
@@ -1003,9 +1032,9 @@ of non security named sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1014,13 +1043,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_non_security_symlinks"></a>
+<a name="link_files_dontaudit_getattr_default_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_non_security_symlinks</b>(
+<b>files_dontaudit_getattr_default_dirs</b>(
@@ -1034,8 +1063,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to get the attributes
-of non security symbolic links.
+Do not audit attempts to get the attributes of
+directories with the default file type.
</p>
@@ -1046,9 +1075,9 @@ of non security symbolic links.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1057,13 +1086,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_pid_dir"></a>
+<a name="link_files_dontaudit_getattr_default_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_pid_dir</b>(
+<b>files_dontaudit_getattr_default_files</b>(
@@ -1077,8 +1106,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to get the attributes
-of the /var/run directory.
+Do not audit attempts to get the attributes of
+files with the default file type.
</p>
@@ -1089,9 +1118,9 @@ of the /var/run directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1100,13 +1129,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_getattr_tmp_dir"></a>
+<a name="link_files_dontaudit_getattr_home_dir"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_getattr_tmp_dir</b>(
+<b>files_dontaudit_getattr_home_dir</b>(
@@ -1121,7 +1150,8 @@ No
<h5>Summary</h5>
<p>
Do not audit attempts to get the
-attributes of the tmp directory (/tmp).
+attributes of the home directories root
+(/home).
</p>
@@ -1132,9 +1162,9 @@ attributes of the tmp directory (/tmp).
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -1143,13 +1173,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_ioctl_all_pids"></a>
+<a name="link_files_dontaudit_getattr_non_security_blk_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_ioctl_all_pids</b>(
+<b>files_dontaudit_getattr_non_security_blk_files</b>(
@@ -1163,7 +1193,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to ioctl daemon runtime data files.
+Do not audit attempts to get the attributes
+of non security block devices.
</p>
@@ -1174,9 +1205,9 @@ Do not audit attempts to ioctl daemon runtime data files.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -1185,13 +1216,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_list_default"></a>
+<a name="link_files_dontaudit_getattr_non_security_chr_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_list_default</b>(
+<b>files_dontaudit_getattr_non_security_chr_files</b>(
@@ -1205,8 +1236,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to list contents of
-directories with the default file type.
+Do not audit attempts to get the attributes
+of non security character devices.
</p>
@@ -1217,9 +1248,9 @@ directories with the default file type.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1228,13 +1259,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_list_home"></a>
+<a name="link_files_dontaudit_getattr_non_security_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_list_home</b>(
+<b>files_dontaudit_getattr_non_security_files</b>(
@@ -1248,8 +1279,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to list
-home directories root (/home).
+Do not audit attempts to get the attributes
+of non security files.
</p>
@@ -1260,9 +1291,9 @@ home directories root (/home).
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1271,13 +1302,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_list_non_security"></a>
+<a name="link_files_dontaudit_getattr_non_security_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_list_non_security</b>(
+<b>files_dontaudit_getattr_non_security_pipes</b>(
@@ -1291,8 +1322,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to list all
-non-security directories.
+Do not audit attempts to get the attributes
+of non security named pipes.
</p>
@@ -1303,9 +1334,9 @@ non-security directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1314,13 +1345,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_list_tmp"></a>
+<a name="link_files_dontaudit_getattr_non_security_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_list_tmp</b>(
+<b>files_dontaudit_getattr_non_security_sockets</b>(
@@ -1334,7 +1365,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit listing of the tmp directory (/tmp).
+Do not audit attempts to get the attributes
+of non security named sockets.
</p>
@@ -1345,9 +1377,9 @@ Do not audit listing of the tmp directory (/tmp).
<tr><td>
domain
</td><td>
-
-Domain not to audit.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -1356,13 +1388,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_read_default_files"></a>
+<a name="link_files_dontaudit_getattr_non_security_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_read_default_files</b>(
+<b>files_dontaudit_getattr_non_security_symlinks</b>(
@@ -1376,8 +1408,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read files
-with the default file type.
+Do not audit attempts to get the attributes
+of non security symbolic links.
</p>
@@ -1388,9 +1420,9 @@ with the default file type.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1399,13 +1431,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_read_etc_runtime_files"></a>
+<a name="link_files_dontaudit_getattr_pid_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_read_etc_runtime_files</b>(
+<b>files_dontaudit_getattr_pid_dirs</b>(
@@ -1419,9 +1451,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read files
-in /etc that are dynamically
-created on boot, such as mtab.
+Do not audit attempts to get the attributes
+of the /var/run directory.
</p>
@@ -1432,9 +1463,9 @@ created on boot, such as mtab.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1443,18 +1474,18 @@ No
</div>
</div>
-<a name="link_files_dontaudit_read_root_file"></a>
+<a name="link_files_dontaudit_getattr_tmp_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_read_root_file</b>(
+<b>files_dontaudit_getattr_tmp_dirs</b>(
- ?
+ domain
)<br>
@@ -1463,7 +1494,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Do not audit attempts to get the
+attributes of the tmp directory (/tmp).
</p>
@@ -1472,11 +1504,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1485,18 +1517,18 @@ No
</div>
</div>
-<a name="link_files_dontaudit_rw_root_chr_dev"></a>
+<a name="link_files_dontaudit_ioctl_all_pids"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_rw_root_chr_dev</b>(
+<b>files_dontaudit_ioctl_all_pids</b>(
- ?
+ domain
)<br>
@@ -1505,7 +1537,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Do not audit attempts to ioctl daemon runtime data files.
</p>
@@ -1514,11 +1546,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1527,18 +1559,18 @@ No
</div>
</div>
-<a name="link_files_dontaudit_rw_root_file"></a>
+<a name="link_files_dontaudit_list_default"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_rw_root_file</b>(
+<b>files_dontaudit_list_default</b>(
- ?
+ domain
)<br>
@@ -1547,7 +1579,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Do not audit attempts to list contents of
+directories with the default file type.
</p>
@@ -1556,11 +1589,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -1569,18 +1602,18 @@ No
</div>
</div>
-<a name="link_files_dontaudit_search_all_dirs"></a>
+<a name="link_files_dontaudit_list_home"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_search_all_dirs</b>(
+<b>files_dontaudit_list_home</b>(
- ?
+ domain
)<br>
@@ -1589,7 +1622,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Do not audit attempts to list
+home directories root (/home).
</p>
@@ -1598,11 +1632,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -1611,13 +1645,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_search_home"></a>
+<a name="link_files_dontaudit_list_non_security"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_search_home</b>(
+<b>files_dontaudit_list_non_security</b>(
@@ -1631,8 +1665,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to search
-home directories root (/home).
+Do not audit attempts to list all
+non-security directories.
</p>
@@ -1643,9 +1677,9 @@ home directories root (/home).
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1654,13 +1688,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_search_isid_type_dir"></a>
+<a name="link_files_dontaudit_list_tmp"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_search_isid_type_dir</b>(
+<b>files_dontaudit_list_tmp</b>(
@@ -1674,8 +1708,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to search directories on new filesystems
-that have not yet been labeled.
+Do not audit listing of the tmp directory (/tmp).
</p>
@@ -1686,9 +1719,9 @@ that have not yet been labeled.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain not to audit.
+</p>
</td><td>
No
</td></tr>
@@ -1697,13 +1730,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_search_locks"></a>
+<a name="link_files_dontaudit_read_default_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_search_locks</b>(
+<b>files_dontaudit_read_default_files</b>(
@@ -1717,8 +1750,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to search the
-locks directory (/var/lock).
+Do not audit attempts to read files
+with the default file type.
</p>
@@ -1729,9 +1762,9 @@ locks directory (/var/lock).
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1740,13 +1773,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_search_pids"></a>
+<a name="link_files_dontaudit_read_etc_runtime_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_search_pids</b>(
+<b>files_dontaudit_read_etc_runtime_files</b>(
@@ -1760,8 +1793,9 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to search
-the /var/run directory.
+Do not audit attempts to read files
+in /etc that are dynamically
+created on boot, such as mtab.
</p>
@@ -1772,9 +1806,9 @@ the /var/run directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1783,13 +1817,13 @@ No
</div>
</div>
-<a name="link_files_dontaudit_search_src"></a>
+<a name="link_files_dontaudit_read_root_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_search_src</b>(
+<b>files_dontaudit_read_root_files</b>(
@@ -1814,9 +1848,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1825,18 +1859,18 @@ No
</div>
</div>
-<a name="link_files_dontaudit_search_var"></a>
+<a name="link_files_dontaudit_rw_root_chr_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_search_var</b>(
+<b>files_dontaudit_rw_root_chr_files</b>(
- domain
+ ?
)<br>
@@ -1845,8 +1879,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to search
-the contents of /var.
+Summary is missing!
</p>
@@ -1855,11 +1888,11 @@ the contents of /var.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain to not audit.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -1868,18 +1901,18 @@ No
</div>
</div>
-<a name="link_files_dontaudit_write_all_pids"></a>
+<a name="link_files_dontaudit_rw_root_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_write_all_pids</b>(
+<b>files_dontaudit_rw_root_files</b>(
- domain
+ ?
)<br>
@@ -1888,7 +1921,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to write to daemon runtime data files.
+Summary is missing!
</p>
@@ -1897,11 +1930,11 @@ Do not audit attempts to write to daemon runtime data files.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -1910,18 +1943,18 @@ No
</div>
</div>
-<a name="link_files_dontaudit_write_var"></a>
+<a name="link_files_dontaudit_search_all_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_dontaudit_write_var</b>(
+<b>files_dontaudit_search_all_dirs</b>(
- domain
+ ?
)<br>
@@ -1930,7 +1963,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to write to /var.
+Summary is missing!
</p>
@@ -1939,11 +1972,11 @@ Do not audit attempts to write to /var.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain to not audit.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -1952,18 +1985,18 @@ No
</div>
</div>
-<a name="link_files_exec_etc_files"></a>
+<a name="link_files_dontaudit_search_boot"></a>
<div id="interface">
<div id="codeblock">
-<b>files_exec_etc_files</b>(
+<b>files_dontaudit_search_boot</b>(
- ?
+ domain
)<br>
@@ -1972,7 +2005,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Do not audit attempts to search the /boot directory.
</p>
@@ -1981,11 +2014,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1994,13 +2027,13 @@ No
</div>
</div>
-<a name="link_files_exec_usr_files"></a>
+<a name="link_files_dontaudit_search_home"></a>
<div id="interface">
<div id="codeblock">
-<b>files_exec_usr_files</b>(
+<b>files_dontaudit_search_home</b>(
@@ -2014,7 +2047,8 @@ No
<h5>Summary</h5>
<p>
-Execute generic programs in /usr in the caller domain.
+Do not audit attempts to search
+home directories root (/home).
</p>
@@ -2025,9 +2059,9 @@ Execute generic programs in /usr in the caller domain.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -2036,13 +2070,13 @@ No
</div>
</div>
-<a name="link_files_exec_usr_src_files"></a>
+<a name="link_files_dontaudit_search_isid_type_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_exec_usr_src_files</b>(
+<b>files_dontaudit_search_isid_type_dirs</b>(
@@ -2056,7 +2090,8 @@ No
<h5>Summary</h5>
<p>
-Execute programs in /usr/src in the caller domain.
+Do not audit attempts to search directories on new filesystems
+that have not yet been labeled.
</p>
@@ -2067,9 +2102,9 @@ Execute programs in /usr/src in the caller domain.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -2078,18 +2113,18 @@ No
</div>
</div>
-<a name="link_files_filetrans_etc"></a>
+<a name="link_files_dontaudit_search_locks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_filetrans_etc</b>(
+<b>files_dontaudit_search_locks</b>(
- ?
+ domain
)<br>
@@ -2098,7 +2133,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Do not audit attempts to search the
+locks directory (/var/lock).
</p>
@@ -2107,11 +2143,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -2120,13 +2156,13 @@ No
</div>
</div>
-<a name="link_files_filetrans_home"></a>
+<a name="link_files_dontaudit_search_pids"></a>
<div id="interface">
<div id="codeblock">
-<b>files_filetrans_home</b>(
+<b>files_dontaudit_search_pids</b>(
@@ -2134,33 +2170,14 @@ No
domain
-
- ,
-
-
-
- home_type
-
-
-
- ,
-
-
-
- [
-
- object
-
- ]
-
-
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Create objects in /home.
+Do not audit attempts to search
+the /var/run directory.
</p>
@@ -2171,50 +2188,29 @@ Create objects in /home.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-home_type
-</td><td>
-
-The private type.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-object
-</td><td>
-
-The object class of the object being created. If
-no class is specified, dir will be used.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
-<a name="link_files_filetrans_lock"></a>
+<a name="link_files_dontaudit_search_spool"></a>
<div id="interface">
<div id="codeblock">
-<b>files_filetrans_lock</b>(
+<b>files_dontaudit_search_spool</b>(
- ?
+ domain
)<br>
@@ -2223,7 +2219,8 @@ yes
<h5>Summary</h5>
<p>
-Summary is missing!
+Do not audit attempts to search generic
+spool directories.
</p>
@@ -2232,11 +2229,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -2245,13 +2242,13 @@ No
</div>
</div>
-<a name="link_files_filetrans_pid"></a>
+<a name="link_files_dontaudit_search_src"></a>
<div id="interface">
<div id="codeblock">
-<b>files_filetrans_pid</b>(
+<b>files_dontaudit_search_src</b>(
@@ -2276,9 +2273,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -2287,13 +2284,13 @@ No
</div>
</div>
-<a name="link_files_filetrans_root"></a>
+<a name="link_files_dontaudit_search_var"></a>
<div id="interface">
<div id="codeblock">
-<b>files_filetrans_root</b>(
+<b>files_dontaudit_search_var</b>(
@@ -2301,34 +2298,14 @@ No
domain
-
- ,
-
-
-
- private type
-
-
-
- ,
-
-
-
- [
-
- object
-
- ]
-
-
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Create an object in the root directory, with a private
-type.
+Do not audit attempts to search
+the contents of /var.
</p>
@@ -2339,50 +2316,29 @@ type.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-private type
-</td><td>
-
-The type of the object to be created.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-object
-</td><td>
-
-The object class of the object being created. If
-no class is specified, file will be used.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
-<a name="link_files_filetrans_tmp"></a>
+<a name="link_files_dontaudit_write_all_pids"></a>
<div id="interface">
<div id="codeblock">
-<b>files_filetrans_tmp</b>(
+<b>files_dontaudit_write_all_pids</b>(
- ?
+ domain
)<br>
@@ -2391,7 +2347,7 @@ yes
<h5>Summary</h5>
<p>
-Summary is missing!
+Do not audit attempts to write to daemon runtime data files.
</p>
@@ -2400,11 +2356,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -2413,13 +2369,13 @@ No
</div>
</div>
-<a name="link_files_filetrans_usr"></a>
+<a name="link_files_dontaudit_write_var_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_filetrans_usr</b>(
+<b>files_dontaudit_write_var_dirs</b>(
@@ -2427,33 +2383,13 @@ No
domain
-
- ,
-
-
-
- file_type
-
-
-
- ,
-
-
-
- [
-
- object_class
-
- ]
-
-
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Create objects in the /usr directory
+Do not audit attempts to write to /var.
</p>
@@ -2464,69 +2400,29 @@ Create objects in the /usr directory
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-file_type
-</td><td>
-
-The type of the object to be created
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-object_class
-</td><td>
-
-The object class. If not specified, file is used.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
-<a name="link_files_filetrans_var"></a>
+<a name="link_files_etc_filetrans"></a>
<div id="interface">
<div id="codeblock">
-<b>files_filetrans_var</b>(
-
-
-
-
- domain
-
-
-
- ,
-
-
-
- file_type
-
+<b>files_etc_filetrans</b>(
- ,
-
-
- [
- object_class
-
- ]
+ ?
)<br>
@@ -2535,7 +2431,723 @@ yes
<h5>Summary</h5>
<p>
-Create objects in the /var directory
+Summary is missing!
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+?
+</td><td>
+<p>
+Parameter descriptions are missing!
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_exec_etc_files"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_exec_etc_files</b>(
+
+
+
+
+ ?
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Summary is missing!
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+?
+</td><td>
+<p>
+Parameter descriptions are missing!
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_exec_usr_files"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_exec_usr_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute generic programs in /usr in the caller domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_exec_usr_src_files"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_exec_usr_src_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute programs in /usr/src in the caller domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_getattr_all_dirs"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_getattr_all_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Get the attributes of all directories.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_getattr_all_files"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_getattr_all_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Get the attributes of all files.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_getattr_all_pipes"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_getattr_all_pipes</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Get the attributes of all named pipes.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_getattr_all_sockets"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_getattr_all_sockets</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Get the attributes of all named sockets.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_getattr_all_symlinks"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_getattr_all_symlinks</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Get the attributes of all symbolic links.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_getattr_boot_dirs"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_getattr_boot_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Get attributes of the /boot directory.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_getattr_default_dirs"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_getattr_default_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Getattr of directories with the default file type.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_getattr_generic_locks"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_getattr_generic_locks</b>(
+
+
+
+
+ ?
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Summary is missing!
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+?
+</td><td>
+<p>
+Parameter descriptions are missing!
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_getattr_home_dir"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_getattr_home_dir</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Get the attributes of the home directories root
+(/home).
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_getattr_isid_type_dirs"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_getattr_isid_type_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Getattr of directories on new filesystems
+that have not yet been labeled.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_getattr_kernel_modules"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_getattr_kernel_modules</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Get the attributes of kernel module files.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_getattr_tmp_dirs"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_getattr_tmp_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Get the attributes of the tmp directory (/tmp).
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_getattr_usr_files"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_getattr_usr_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Get the attributes of files in /usr.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_getattr_var_lib_dirs"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_getattr_var_lib_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Get the attributes of the /var/lib directory.
</p>
@@ -2546,44 +3158,307 @@ Create objects in the /var directory
<tr><td>
domain
</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_home_filetrans"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_home_filetrans</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ home_type
+
+
+
+ ,
+
+
+
+ object
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Create objects in /home.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+home_type
+</td><td>
+<p>
+The private type.
+</p>
</td><td>
No
</td></tr>
<tr><td>
-file_type
+object
+</td><td>
+<p>
+The class of the object being created.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_kernel_modules_filetrans"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_kernel_modules_filetrans</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ private_type
+
+
+
+ ,
+
+
+
+ object_class
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Create objects in the kernel module directories
+with a private type via an automatic type transition.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+private_type
+</td><td>
+<p>
+The type of the object to be created.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+object_class
+</td><td>
+<p>
+The object class of the object being created.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_list_all"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_list_all</b>(
+
+
+
+
+ ?
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Summary is missing!
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+?
+</td><td>
+<p>
+Parameter descriptions are missing!
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_list_default"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_list_default</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+List contents of directories with the default file type.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_files_list_etc"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>files_list_etc</b>(
+
+
+
+
+ ?
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Summary is missing!
+</p>
-The type of the object to be created
-</td><td>
-No
-</td></tr>
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-object_class
+?
</td><td>
-
-The object class. If not specified, file is used.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
-yes
+No
</td></tr>
</table>
</div>
</div>
-<a name="link_files_filetrans_var_lib"></a>
+<a name="link_files_list_home"></a>
<div id="interface">
<div id="codeblock">
-<b>files_filetrans_var_lib</b>(
+<b>files_list_home</b>(
@@ -2591,33 +3466,13 @@ yes
domain
-
- ,
-
-
-
- file_type
-
-
-
- ,
-
-
-
- [
-
- object_class
-
- ]
-
-
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Create objects in the /var/lib directory
+Get listing of home directories.
</p>
@@ -2628,44 +3483,24 @@ Create objects in the /var/lib directory
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-file_type
-</td><td>
-
-The type of the object to be created
-
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-object_class
-</td><td>
-
-The object class. If not specified, file is used.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
-<a name="link_files_getattr_all_dirs"></a>
+<a name="link_files_list_isid_type_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_getattr_all_dirs</b>(
+<b>files_list_isid_type_dirs</b>(
@@ -2679,7 +3514,8 @@ yes
<h5>Summary</h5>
<p>
-Get the attributes of all directories.
+List the contents of directories on new filesystems
+that have not yet been labeled.
</p>
@@ -2690,9 +3526,9 @@ Get the attributes of all directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2701,13 +3537,13 @@ No
</div>
</div>
-<a name="link_files_getattr_all_file_type_sockets"></a>
+<a name="link_files_list_kernel_modules"></a>
<div id="interface">
<div id="codeblock">
-<b>files_getattr_all_file_type_sockets</b>(
+<b>files_list_kernel_modules</b>(
@@ -2721,8 +3557,7 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of all sockets
-with the type of a file.
+List the contents of the kernel module directories.
</p>
@@ -2733,9 +3568,9 @@ with the type of a file.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2744,18 +3579,18 @@ No
</div>
</div>
-<a name="link_files_getattr_all_files"></a>
+<a name="link_files_list_mnt"></a>
<div id="interface">
<div id="codeblock">
-<b>files_getattr_all_files</b>(
+<b>files_list_mnt</b>(
- domain
+ ?
)<br>
@@ -2764,7 +3599,7 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of all files.
+Summary is missing!
</p>
@@ -2773,11 +3608,11 @@ Get the attributes of all files.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -2786,13 +3621,13 @@ No
</div>
</div>
-<a name="link_files_getattr_all_pipes"></a>
+<a name="link_files_list_non_security"></a>
<div id="interface">
<div id="codeblock">
-<b>files_getattr_all_pipes</b>(
+<b>files_list_non_security</b>(
@@ -2806,7 +3641,7 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of all named pipes.
+List all non-security directories.
</p>
@@ -2817,9 +3652,9 @@ Get the attributes of all named pipes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2828,18 +3663,18 @@ No
</div>
</div>
-<a name="link_files_getattr_all_sockets"></a>
+<a name="link_files_list_pids"></a>
<div id="interface">
<div id="codeblock">
-<b>files_getattr_all_sockets</b>(
+<b>files_list_pids</b>(
- domain
+ ?
)<br>
@@ -2848,7 +3683,7 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of all named sockets.
+Summary is missing!
</p>
@@ -2857,11 +3692,11 @@ Get the attributes of all named sockets.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -2870,18 +3705,18 @@ No
</div>
</div>
-<a name="link_files_getattr_all_symlinks"></a>
+<a name="link_files_list_root"></a>
<div id="interface">
<div id="codeblock">
-<b>files_getattr_all_symlinks</b>(
+<b>files_list_root</b>(
- domain
+ ?
)<br>
@@ -2890,7 +3725,7 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of all symbolic links.
+Summary is missing!
</p>
@@ -2899,11 +3734,11 @@ Get the attributes of all symbolic links.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -2912,18 +3747,18 @@ No
</div>
</div>
-<a name="link_files_getattr_default_dir"></a>
+<a name="link_files_list_spool"></a>
<div id="interface">
<div id="codeblock">
-<b>files_getattr_default_dir</b>(
+<b>files_list_spool</b>(
- domain
+ ?
)<br>
@@ -2932,7 +3767,7 @@ No
<h5>Summary</h5>
<p>
-Getattr of directories with the default file type.
+Summary is missing!
</p>
@@ -2941,11 +3776,11 @@ Getattr of directories with the default file type.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -2954,18 +3789,18 @@ No
</div>
</div>
-<a name="link_files_getattr_generic_locks"></a>
+<a name="link_files_list_tmp"></a>
<div id="interface">
<div id="codeblock">
-<b>files_getattr_generic_locks</b>(
+<b>files_list_tmp</b>(
- ?
+ domain
)<br>
@@ -2974,7 +3809,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Read the tmp directory (/tmp).
</p>
@@ -2983,11 +3818,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -2996,13 +3831,13 @@ No
</div>
</div>
-<a name="link_files_getattr_home_dir"></a>
+<a name="link_files_list_usr"></a>
<div id="interface">
<div id="codeblock">
-<b>files_getattr_home_dir</b>(
+<b>files_list_usr</b>(
@@ -3016,8 +3851,8 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of the home directories root
-(/home).
+List the contents of generic
+directories in /usr.
</p>
@@ -3028,9 +3863,9 @@ Get the attributes of the home directories root
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3039,13 +3874,13 @@ No
</div>
</div>
-<a name="link_files_getattr_isid_type_dir"></a>
+<a name="link_files_list_var"></a>
<div id="interface">
<div id="codeblock">
-<b>files_getattr_isid_type_dir</b>(
+<b>files_list_var</b>(
@@ -3059,8 +3894,7 @@ No
<h5>Summary</h5>
<p>
-Getattr of directories on new filesystems
-that have not yet been labeled.
+List the contents of /var.
</p>
@@ -3071,9 +3905,9 @@ that have not yet been labeled.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3082,13 +3916,13 @@ No
</div>
</div>
-<a name="link_files_getattr_tmp_dir"></a>
+<a name="link_files_list_var_lib"></a>
<div id="interface">
<div id="codeblock">
-<b>files_getattr_tmp_dir</b>(
+<b>files_list_var_lib</b>(
@@ -3102,7 +3936,7 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of the tmp directory (/tmp).
+List the contents of the /var/lib directory.
</p>
@@ -3113,9 +3947,9 @@ Get the attributes of the tmp directory (/tmp).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3124,13 +3958,13 @@ No
</div>
</div>
-<a name="link_files_getattr_usr_files"></a>
+<a name="link_files_list_world_readable"></a>
<div id="interface">
<div id="codeblock">
-<b>files_getattr_usr_files</b>(
+<b>files_list_world_readable</b>(
@@ -3144,7 +3978,7 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of files in /usr.
+List world-readable directories.
</p>
@@ -3155,9 +3989,9 @@ Get the attributes of files in /usr.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3166,18 +4000,18 @@ No
</div>
</div>
-<a name="link_files_getattr_var_lib_dir"></a>
+<a name="link_files_lock_file"></a>
<div id="interface">
<div id="codeblock">
-<b>files_getattr_var_lib_dir</b>(
+<b>files_lock_file</b>(
- domain
+ ?
)<br>
@@ -3186,7 +4020,7 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of the /var/lib directory.
+Summary is missing!
</p>
@@ -3195,11 +4029,11 @@ Get the attributes of the /var/lib directory.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -3208,18 +4042,18 @@ No
</div>
</div>
-<a name="link_files_list_all"></a>
+<a name="link_files_lock_filetrans"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_all</b>(
+<b>files_lock_filetrans</b>(
- domain
+ ?
)<br>
@@ -3228,7 +4062,7 @@ No
<h5>Summary</h5>
<p>
-List the contents of all directories.
+Summary is missing!
</p>
@@ -3237,11 +4071,11 @@ List the contents of all directories.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -3250,18 +4084,26 @@ No
</div>
</div>
-<a name="link_files_list_all_dirs"></a>
+<a name="link_files_manage_all_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_all_dirs</b>(
+<b>files_manage_all_files</b>(
- ?
+ domain
+
+
+
+ ,
+
+
+
+ exception_types
)<br>
@@ -3270,7 +4112,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Manage all files on the filesystem, except
+the listed exceptions.
</p>
@@ -3279,26 +4122,37 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
+</td><td>
+<p>
+The type of the domain perfoming this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+exception_types
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+The types to be excluded. Each type or attribute
+must be negated by the caller.
+</p>
</td><td>
-No
+Yes
</td></tr>
</table>
</div>
</div>
-<a name="link_files_list_default"></a>
+<a name="link_files_manage_boot_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_default</b>(
+<b>files_manage_boot_files</b>(
@@ -3312,7 +4166,8 @@ No
<h5>Summary</h5>
<p>
-List contents of directories with the default file type.
+Create, read, write, and delete files
+in the /boot directory.
</p>
@@ -3323,9 +4178,9 @@ List contents of directories with the default file type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3334,18 +4189,18 @@ No
</div>
</div>
-<a name="link_files_list_etc"></a>
+<a name="link_files_manage_boot_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_etc</b>(
+<b>files_manage_boot_symlinks</b>(
- ?
+ domain
)<br>
@@ -3354,7 +4209,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Create, read, write, and delete symbolic links
+in the /boot directory.
</p>
@@ -3363,11 +4219,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3376,18 +4232,18 @@ No
</div>
</div>
-<a name="link_files_list_home"></a>
+<a name="link_files_manage_etc_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_home</b>(
+<b>files_manage_etc_files</b>(
- domain
+ ?
)<br>
@@ -3396,7 +4252,7 @@ No
<h5>Summary</h5>
<p>
-Get listing of home directories.
+Summary is missing!
</p>
@@ -3405,11 +4261,11 @@ Get listing of home directories.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -3418,13 +4274,13 @@ No
</div>
</div>
-<a name="link_files_list_isid_type_dir"></a>
+<a name="link_files_manage_etc_runtime_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_isid_type_dir</b>(
+<b>files_manage_etc_runtime_files</b>(
@@ -3438,8 +4294,9 @@ No
<h5>Summary</h5>
<p>
-List the contents of directories on new filesystems
-that have not yet been labeled.
+Create, read, write, and delete files in
+/etc that are dynamically created on boot,
+such as mtab.
</p>
@@ -3450,9 +4307,9 @@ that have not yet been labeled.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3461,13 +4318,13 @@ No
</div>
</div>
-<a name="link_files_list_mnt"></a>
+<a name="link_files_manage_generic_locks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_mnt</b>(
+<b>files_manage_generic_locks</b>(
@@ -3492,9 +4349,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -3503,18 +4360,18 @@ No
</div>
</div>
-<a name="link_files_list_non_security"></a>
+<a name="link_files_manage_generic_spool"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_non_security</b>(
+<b>files_manage_generic_spool</b>(
- domain
+ ?
)<br>
@@ -3523,7 +4380,7 @@ No
<h5>Summary</h5>
<p>
-List all non-security directories.
+Summary is missing!
</p>
@@ -3532,11 +4389,11 @@ List all non-security directories.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -3545,13 +4402,13 @@ No
</div>
</div>
-<a name="link_files_list_pids"></a>
+<a name="link_files_manage_generic_spool_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_pids</b>(
+<b>files_manage_generic_spool_dirs</b>(
@@ -3576,9 +4433,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -3587,18 +4444,18 @@ No
</div>
</div>
-<a name="link_files_list_root"></a>
+<a name="link_files_manage_isid_type_blk_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_root</b>(
+<b>files_manage_isid_type_blk_files</b>(
- ?
+ domain
)<br>
@@ -3607,7 +4464,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Create, read, write, and delete block device nodes
+on new filesystems that have not yet been labeled.
</p>
@@ -3616,11 +4474,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3629,18 +4487,18 @@ No
</div>
</div>
-<a name="link_files_list_spool"></a>
+<a name="link_files_manage_isid_type_chr_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_spool</b>(
+<b>files_manage_isid_type_chr_files</b>(
- ?
+ domain
)<br>
@@ -3649,7 +4507,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Create, read, write, and delete character device nodes
+on new filesystems that have not yet been labeled.
</p>
@@ -3658,11 +4517,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3671,13 +4530,13 @@ No
</div>
</div>
-<a name="link_files_list_tmp"></a>
+<a name="link_files_manage_isid_type_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_tmp</b>(
+<b>files_manage_isid_type_dirs</b>(
@@ -3691,7 +4550,8 @@ No
<h5>Summary</h5>
<p>
-Read the tmp directory (/tmp).
+Create, read, write, and delete directories
+on new filesystems that have not yet been labeled.
</p>
@@ -3702,9 +4562,9 @@ Read the tmp directory (/tmp).
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3713,13 +4573,13 @@ No
</div>
</div>
-<a name="link_files_list_usr"></a>
+<a name="link_files_manage_isid_type_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_usr</b>(
+<b>files_manage_isid_type_files</b>(
@@ -3733,8 +4593,8 @@ No
<h5>Summary</h5>
<p>
-List the contents of generic
-directories in /usr.
+Create, read, write, and delete files
+on new filesystems that have not yet been labeled.
</p>
@@ -3745,9 +4605,9 @@ directories in /usr.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3756,13 +4616,13 @@ No
</div>
</div>
-<a name="link_files_list_var"></a>
+<a name="link_files_manage_isid_type_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_var</b>(
+<b>files_manage_isid_type_symlinks</b>(
@@ -3776,7 +4636,8 @@ No
<h5>Summary</h5>
<p>
-List the contents of /var.
+Create, read, write, and delete symbolic links
+on new filesystems that have not yet been labeled.
</p>
@@ -3787,9 +4648,9 @@ List the contents of /var.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3798,13 +4659,13 @@ No
</div>
</div>
-<a name="link_files_list_var_lib"></a>
+<a name="link_files_manage_kernel_modules"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_var_lib</b>(
+<b>files_manage_kernel_modules</b>(
@@ -3818,7 +4679,8 @@ No
<h5>Summary</h5>
<p>
-List the contents of the /var/lib directory.
+Create, read, write, and delete
+kernel module files.
</p>
@@ -3829,9 +4691,9 @@ List the contents of the /var/lib directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3840,13 +4702,13 @@ No
</div>
</div>
-<a name="link_files_list_world_readable"></a>
+<a name="link_files_manage_lost_found"></a>
<div id="interface">
<div id="codeblock">
-<b>files_list_world_readable</b>(
+<b>files_manage_lost_found</b>(
@@ -3860,7 +4722,8 @@ No
<h5>Summary</h5>
<p>
-List world-readable directories.
+Create, read, write, and delete objects in
+lost+found directories.
</p>
@@ -3871,9 +4734,9 @@ List world-readable directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3882,18 +4745,18 @@ No
</div>
</div>
-<a name="link_files_lock_file"></a>
+<a name="link_files_manage_mnt_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_lock_file</b>(
+<b>files_manage_mnt_dirs</b>(
- ?
+ domain
)<br>
@@ -3902,7 +4765,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Create, read, write, and delete directories in /mnt.
</p>
@@ -3911,11 +4774,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3924,13 +4787,13 @@ No
</div>
</div>
-<a name="link_files_manage_all_files"></a>
+<a name="link_files_manage_mnt_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_all_files</b>(
+<b>files_manage_mnt_files</b>(
@@ -3938,26 +4801,13 @@ No
domain
-
- ,
-
-
-
- [
-
- exception_types
-
- ]
-
-
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Manage all files on the filesystem, except
-the listed exceptions.
+Create, read, write, and delete files in /mnt.
</p>
@@ -3968,40 +4818,29 @@ the listed exceptions.
<tr><td>
domain
</td><td>
-
-The type of the domain perfoming this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-exception_types
-</td><td>
-
-The types to be excluded. Each type or attribute
-must be negated by the caller.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
-<a name="link_files_manage_etc_files"></a>
+<a name="link_files_manage_mnt_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_etc_files</b>(
+<b>files_manage_mnt_symlinks</b>(
- ?
+ domain
)<br>
@@ -4010,7 +4849,7 @@ yes
<h5>Summary</h5>
<p>
-Summary is missing!
+Create, read, write, and delete symbolic links in /mnt.
</p>
@@ -4019,11 +4858,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -4032,13 +4871,13 @@ No
</div>
</div>
-<a name="link_files_manage_etc_runtime_files"></a>
+<a name="link_files_manage_mounttab"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_etc_runtime_files</b>(
+<b>files_manage_mounttab</b>(
@@ -4052,9 +4891,8 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete files in
-/etc that are dynamically created on boot,
-such as mtab.
+Allow domain to manage mount tables
+necessary for rpcd, nfsd, etc.
</p>
@@ -4065,9 +4903,9 @@ such as mtab.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4076,13 +4914,13 @@ No
</div>
</div>
-<a name="link_files_manage_generic_locks"></a>
+<a name="link_files_manage_urandom_seed"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_generic_locks</b>(
+<b>files_manage_urandom_seed</b>(
@@ -4107,9 +4945,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -4118,18 +4956,18 @@ No
</div>
</div>
-<a name="link_files_manage_generic_spool_dirs"></a>
+<a name="link_files_manage_var_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_generic_spool_dirs</b>(
+<b>files_manage_var_dirs</b>(
- ?
+ domain
)<br>
@@ -4138,7 +4976,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Create, read, write, and delete directories
+in the /var directory.
</p>
@@ -4147,11 +4986,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -4160,18 +4999,18 @@ No
</div>
</div>
-<a name="link_files_manage_generic_spools"></a>
+<a name="link_files_manage_var_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_generic_spools</b>(
+<b>files_manage_var_files</b>(
- ?
+ domain
)<br>
@@ -4180,7 +5019,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Create, read, write, and delete files in the /var directory.
</p>
@@ -4189,11 +5028,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -4202,13 +5041,13 @@ No
</div>
</div>
-<a name="link_files_manage_isid_type_blk_node"></a>
+<a name="link_files_manage_var_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_isid_type_blk_node</b>(
+<b>files_manage_var_symlinks</b>(
@@ -4222,8 +5061,8 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete block device nodes
-on new filesystems that have not yet been labeled.
+Create, read, write, and delete symbolic
+links in the /var directory.
</p>
@@ -4234,9 +5073,9 @@ on new filesystems that have not yet been labeled.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -4245,18 +5084,18 @@ No
</div>
</div>
-<a name="link_files_manage_isid_type_chr_node"></a>
+<a name="link_files_mount_all_file_type_fs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_isid_type_chr_node</b>(
+<b>files_mount_all_file_type_fs</b>(
- domain
+ ?
)<br>
@@ -4265,8 +5104,7 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete character device nodes
-on new filesystems that have not yet been labeled.
+Summary is missing!
</p>
@@ -4275,11 +5113,11 @@ on new filesystems that have not yet been labeled.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -4288,18 +5126,18 @@ No
</div>
</div>
-<a name="link_files_manage_isid_type_dir"></a>
+<a name="link_files_mounton_all_mountpoints"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_isid_type_dir</b>(
+<b>files_mounton_all_mountpoints</b>(
- domain
+ ?
)<br>
@@ -4308,8 +5146,7 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete directories
-on new filesystems that have not yet been labeled.
+Summary is missing!
</p>
@@ -4318,11 +5155,11 @@ on new filesystems that have not yet been labeled.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -4331,13 +5168,13 @@ No
</div>
</div>
-<a name="link_files_manage_isid_type_file"></a>
+<a name="link_files_mounton_all_poly_members"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_isid_type_file</b>(
+<b>files_mounton_all_poly_members</b>(
@@ -4351,8 +5188,8 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete files
-on new filesystems that have not yet been labeled.
+Mount filesystems on all polyinstantiation
+member directories.
</p>
@@ -4363,9 +5200,9 @@ on new filesystems that have not yet been labeled.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -4374,13 +5211,13 @@ No
</div>
</div>
-<a name="link_files_manage_isid_type_symlink"></a>
+<a name="link_files_mounton_default"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_isid_type_symlink</b>(
+<b>files_mounton_default</b>(
@@ -4394,8 +5231,7 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete symbolic links
-on new filesystems that have not yet been labeled.
+Mount a filesystem on a directory with the default file type.
</p>
@@ -4406,9 +5242,9 @@ on new filesystems that have not yet been labeled.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -4417,13 +5253,13 @@ No
</div>
</div>
-<a name="link_files_manage_lost_found"></a>
+<a name="link_files_mounton_isid_type_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_lost_found</b>(
+<b>files_mounton_isid_type_dirs</b>(
@@ -4437,8 +5273,8 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete objects in
-lost+found directories.
+Mount a filesystem on a directory on new filesystems
+that has not yet been labeled.
</p>
@@ -4449,9 +5285,9 @@ lost+found directories.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -4460,13 +5296,13 @@ No
</div>
</div>
-<a name="link_files_manage_mnt_dirs"></a>
+<a name="link_files_mounton_mnt"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_mnt_dirs</b>(
+<b>files_mounton_mnt</b>(
@@ -4480,7 +5316,7 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete directories in /mnt.
+Mount a filesystem on /mnt.
</p>
@@ -4491,9 +5327,9 @@ Create, read, write, and delete directories in /mnt.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4502,18 +5338,18 @@ No
</div>
</div>
-<a name="link_files_manage_mnt_files"></a>
+<a name="link_files_mountpoint"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_mnt_files</b>(
+<b>files_mountpoint</b>(
- domain
+ ?
)<br>
@@ -4522,7 +5358,7 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete files in /mnt.
+Summary is missing!
</p>
@@ -4531,11 +5367,11 @@ Create, read, write, and delete files in /mnt.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -4544,18 +5380,18 @@ No
</div>
</div>
-<a name="link_files_manage_mnt_symlinks"></a>
+<a name="link_files_pid_file"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_mnt_symlinks</b>(
+<b>files_pid_file</b>(
- domain
+ ?
)<br>
@@ -4564,7 +5400,7 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete symbolic links in /mnt.
+Summary is missing!
</p>
@@ -4573,11 +5409,11 @@ Create, read, write, and delete symbolic links in /mnt.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -4586,18 +5422,18 @@ No
</div>
</div>
-<a name="link_files_manage_mounttab"></a>
+<a name="link_files_pid_filetrans"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_mounttab</b>(
+<b>files_pid_filetrans</b>(
- domain
+ ?
)<br>
@@ -4606,8 +5442,7 @@ No
<h5>Summary</h5>
<p>
-Allow domain to manage mount tables
-necessary for rpcd, nfsd, etc.
+Summary is missing!
</p>
@@ -4616,11 +5451,11 @@ necessary for rpcd, nfsd, etc.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -4629,18 +5464,18 @@ No
</div>
</div>
-<a name="link_files_manage_urandom_seed"></a>
+<a name="link_files_poly"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_urandom_seed</b>(
+<b>files_poly</b>(
- ?
+ file_type
)<br>
@@ -4649,7 +5484,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Make the specified type a
+polyinstantiated directory.
</p>
@@ -4658,11 +5494,12 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+file_type
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Type of the file to be used as a
+polyinstantiated directory.
+</p>
</td><td>
No
</td></tr>
@@ -4671,18 +5508,18 @@ No
</div>
</div>
-<a name="link_files_manage_var_dirs"></a>
+<a name="link_files_poly_member"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_var_dirs</b>(
+<b>files_poly_member</b>(
- domain
+ file_type
)<br>
@@ -4691,8 +5528,8 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete directories
-in the /var directory.
+Make the specified type a
+polyinstantiation member directory.
</p>
@@ -4701,11 +5538,12 @@ in the /var directory.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+file_type
</td><td>
-
-Domain allowed access.
-
+<p>
+Type of the file to be used as a
+member directory.
+</p>
</td><td>
No
</td></tr>
@@ -4714,13 +5552,13 @@ No
</div>
</div>
-<a name="link_files_manage_var_files"></a>
+<a name="link_files_poly_member_tmp"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_var_files</b>(
+<b>files_poly_member_tmp</b>(
@@ -4728,13 +5566,22 @@ No
domain
+
+ ,
+
+
+
+ file_type
+
+
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Create, read, write, and delete files in the /var directory.
+Make the domain use the specified
+type of polyinstantiated directory.
</p>
@@ -4745,9 +5592,21 @@ Create, read, write, and delete files in the /var directory.
<tr><td>
domain
</td><td>
+<p>
+Domain using the polyinstantiated
+directory.
+</p>
+</td><td>
+No
+</td></tr>
-Domain allowed access.
-
+<tr><td>
+file_type
+</td><td>
+<p>
+Type of the file to be used as a
+member directory.
+</p>
</td><td>
No
</td></tr>
@@ -4756,18 +5615,18 @@ No
</div>
</div>
-<a name="link_files_manage_var_symlinks"></a>
+<a name="link_files_poly_parent"></a>
<div id="interface">
<div id="codeblock">
-<b>files_manage_var_symlinks</b>(
+<b>files_poly_parent</b>(
- domain
+ file_type
)<br>
@@ -4776,8 +5635,8 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete symbolic
-links in the /var directory.
+Make the specified type a parent
+of a polyinstantiated directory.
</p>
@@ -4786,11 +5645,12 @@ links in the /var directory.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+file_type
</td><td>
-
-Domain allowed access.
-
+<p>
+Type of the file to be used as a
+parent directory.
+</p>
</td><td>
No
</td></tr>
@@ -4799,18 +5659,18 @@ No
</div>
</div>
-<a name="link_files_mount_all_file_type_fs"></a>
+<a name="link_files_polyinstantiate_all"></a>
<div id="interface">
<div id="codeblock">
-<b>files_mount_all_file_type_fs</b>(
+<b>files_polyinstantiate_all</b>(
- ?
+ domain
)<br>
@@ -4819,7 +5679,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Allow access to manage all polyinstantiated
+directories on the system.
</p>
@@ -4828,11 +5689,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -4841,13 +5702,13 @@ No
</div>
</div>
-<a name="link_files_mounton_all_mountpoints"></a>
+<a name="link_files_purge_tmp"></a>
<div id="interface">
<div id="codeblock">
-<b>files_mounton_all_mountpoints</b>(
+<b>files_purge_tmp</b>(
@@ -4872,9 +5733,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -4883,13 +5744,13 @@ No
</div>
</div>
-<a name="link_files_mounton_all_poly_members"></a>
+<a name="link_files_read_all_blk_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_mounton_all_poly_members</b>(
+<b>files_read_all_blk_files</b>(
@@ -4903,8 +5764,7 @@ No
<h5>Summary</h5>
<p>
-Mount filesystems on all polyinstantiation
-member directories.
+Read all block nodes with file types.
</p>
@@ -4915,9 +5775,9 @@ member directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4926,13 +5786,13 @@ No
</div>
</div>
-<a name="link_files_mounton_default"></a>
+<a name="link_files_read_all_chr_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_mounton_default</b>(
+<b>files_read_all_chr_files</b>(
@@ -4946,7 +5806,7 @@ No
<h5>Summary</h5>
<p>
-Mount a filesystem on a directory with the default file type.
+Read all character nodes with file types.
</p>
@@ -4957,9 +5817,9 @@ Mount a filesystem on a directory with the default file type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4968,13 +5828,13 @@ No
</div>
</div>
-<a name="link_files_mounton_isid_type_dir"></a>
+<a name="link_files_read_all_dirs_except"></a>
<div id="interface">
<div id="codeblock">
-<b>files_mounton_isid_type_dir</b>(
+<b>files_read_all_dirs_except</b>(
@@ -4982,14 +5842,22 @@ No
domain
+
+ ,
+
+
+
+ exception_types
+
+
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Mount a filesystem on a directory on new filesystems
-that has not yet been labeled.
+Read all directories on the filesystem, except
+the listed exceptions.
</p>
@@ -5000,24 +5868,35 @@ that has not yet been labeled.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+The type of the domain perfoming this action.
+</p>
</td><td>
No
</td></tr>
+<tr><td>
+exception_types
+</td><td>
+<p>
+The types to be excluded. Each type or attribute
+must be negated by the caller.
+</p>
+</td><td>
+Yes
+</td></tr>
+
</table>
</div>
</div>
-<a name="link_files_mounton_mnt"></a>
+<a name="link_files_read_all_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_mounton_mnt</b>(
+<b>files_read_all_files</b>(
@@ -5031,7 +5910,7 @@ No
<h5>Summary</h5>
<p>
-Mount a filesystem on /mnt.
+Read all files.
</p>
@@ -5042,9 +5921,9 @@ Mount a filesystem on /mnt.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5053,18 +5932,26 @@ No
</div>
</div>
-<a name="link_files_mountpoint"></a>
+<a name="link_files_read_all_files_except"></a>
<div id="interface">
<div id="codeblock">
-<b>files_mountpoint</b>(
+<b>files_read_all_files_except</b>(
- ?
+ domain
+
+
+
+ ,
+
+
+
+ exception_types
)<br>
@@ -5073,7 +5960,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Read all files on the filesystem, except
+the listed exceptions.
</p>
@@ -5082,31 +5970,42 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+The type of the domain perfoming this action.
+</p>
</td><td>
No
</td></tr>
+<tr><td>
+exception_types
+</td><td>
+<p>
+The types to be excluded. Each type or attribute
+must be negated by the caller.
+</p>
+</td><td>
+Yes
+</td></tr>
+
</table>
</div>
</div>
-<a name="link_files_pid_file"></a>
+<a name="link_files_read_all_locks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_pid_file</b>(
+<b>files_read_all_locks</b>(
- ?
+ domain
)<br>
@@ -5115,7 +6014,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Read all lock files.
</p>
@@ -5124,11 +6023,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -5137,18 +6036,18 @@ No
</div>
</div>
-<a name="link_files_poly"></a>
+<a name="link_files_read_all_pids"></a>
<div id="interface">
<div id="codeblock">
-<b>files_poly</b>(
+<b>files_read_all_pids</b>(
- file_type
+ ?
)<br>
@@ -5157,8 +6056,7 @@ No
<h5>Summary</h5>
<p>
-Make the specified type a
-polyinstantiated directory.
+Summary is missing!
</p>
@@ -5167,12 +6065,11 @@ polyinstantiated directory.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-file_type
+?
</td><td>
-
-Type of the file to be used as a
-polyinstantiated directory.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -5181,18 +6078,18 @@ No
</div>
</div>
-<a name="link_files_poly_member"></a>
+<a name="link_files_read_all_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_poly_member</b>(
+<b>files_read_all_symlinks</b>(
- file_type
+ domain
)<br>
@@ -5201,8 +6098,7 @@ No
<h5>Summary</h5>
<p>
-Make the specified type a
-polyinstantiation member directory.
+Read all symbolic links.
</p>
@@ -5211,12 +6107,11 @@ polyinstantiation member directory.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-file_type
+domain
</td><td>
-
-Type of the file to be used as a
-member directory.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -5225,13 +6120,13 @@ No
</div>
</div>
-<a name="link_files_poly_member_tmp"></a>
+<a name="link_files_read_all_symlinks_except"></a>
<div id="interface">
<div id="codeblock">
-<b>files_poly_member_tmp</b>(
+<b>files_read_all_symlinks_except</b>(
@@ -5244,7 +6139,7 @@ No
- file_type
+ exception_types
)<br>
@@ -5253,8 +6148,8 @@ No
<h5>Summary</h5>
<p>
-Make the domain use the specified
-type of polyinstantiated directory.
+Read all symbolic links on the filesystem, except
+the listed exceptions.
</p>
@@ -5265,80 +6160,35 @@ type of polyinstantiated directory.
<tr><td>
domain
</td><td>
-
-Domain using the polyinstantiated
-directory.
-
+<p>
+The type of the domain perfoming this action.
+</p>
</td><td>
No
</td></tr>
<tr><td>
-file_type
-</td><td>
-
-Type of the file to be used as a
-member directory.
-
+exception_types
</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_files_poly_parent"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>files_poly_parent</b>(
-
-
-
-
- file_type
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
<p>
-Make the specified type a parent
-of a polyinstantiated directory.
+The types to be excluded. Each type or attribute
+must be negated by the caller.
</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-file_type
</td><td>
-
-Type of the file to be used as a
-parent directory.
-
-</td><td>
-No
+Yes
</td></tr>
</table>
</div>
</div>
-<a name="link_files_polyinstantiate_all"></a>
+<a name="link_files_read_default_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_polyinstantiate_all</b>(
+<b>files_read_default_files</b>(
@@ -5352,8 +6202,7 @@ No
<h5>Summary</h5>
<p>
-Allow access to manage all polyinstantiated
-directories on the system.
+Read files with the default file type.
</p>
@@ -5364,9 +6213,9 @@ directories on the system.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5375,18 +6224,18 @@ No
</div>
</div>
-<a name="link_files_purge_tmp"></a>
+<a name="link_files_read_default_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>files_purge_tmp</b>(
+<b>files_read_default_pipes</b>(
- ?
+ domain
)<br>
@@ -5395,7 +6244,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Read named pipes with the default file type.
</p>
@@ -5404,11 +6253,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -5417,13 +6266,13 @@ No
</div>
</div>
-<a name="link_files_read_all_blk_nodes"></a>
+<a name="link_files_read_default_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_all_blk_nodes</b>(
+<b>files_read_default_sockets</b>(
@@ -5437,7 +6286,7 @@ No
<h5>Summary</h5>
<p>
-Read all block nodes with file types.
+Read sockets with the default file type.
</p>
@@ -5448,9 +6297,9 @@ Read all block nodes with file types.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5459,13 +6308,13 @@ No
</div>
</div>
-<a name="link_files_read_all_chr_nodes"></a>
+<a name="link_files_read_default_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_all_chr_nodes</b>(
+<b>files_read_default_symlinks</b>(
@@ -5479,7 +6328,7 @@ No
<h5>Summary</h5>
<p>
-Read all character nodes with file types.
+Read symbolic links with the default file type.
</p>
@@ -5490,9 +6339,9 @@ Read all character nodes with file types.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5501,30 +6350,18 @@ No
</div>
</div>
-<a name="link_files_read_all_dirs_except"></a>
+<a name="link_files_read_etc_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_all_dirs_except</b>(
-
-
-
-
- domain
-
+<b>files_read_etc_files</b>(
- ,
-
-
- [
-
- exception_types
- ]
+ ?
)<br>
@@ -5533,8 +6370,7 @@ No
<h5>Summary</h5>
<p>
-Read all directories on the filesystem, except
-the listed exceptions.
+Summary is missing!
</p>
@@ -5543,37 +6379,26 @@ the listed exceptions.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-The type of the domain perfoming this action.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-exception_types
-</td><td>
-
-The types to be excluded. Each type or attribute
-must be negated by the caller.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
-<a name="link_files_read_all_files"></a>
+<a name="link_files_read_etc_runtime_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_all_files</b>(
+<b>files_read_etc_runtime_files</b>(
@@ -5587,7 +6412,8 @@ yes
<h5>Summary</h5>
<p>
-Read all files.
+Read files in /etc that are dynamically
+created on boot, such as mtab.
</p>
@@ -5598,9 +6424,9 @@ Read all files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5609,30 +6435,18 @@ No
</div>
</div>
-<a name="link_files_read_all_files_except"></a>
+<a name="link_files_read_generic_spool"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_all_files_except</b>(
-
-
-
-
- domain
-
+<b>files_read_generic_spool</b>(
- ,
-
-
- [
- exception_types
-
- ]
+ ?
)<br>
@@ -5641,8 +6455,7 @@ No
<h5>Summary</h5>
<p>
-Read all files on the filesystem, except
-the listed exceptions.
+Summary is missing!
</p>
@@ -5651,37 +6464,26 @@ the listed exceptions.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-The type of the domain perfoming this action.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-exception_types
-</td><td>
-
-The types to be excluded. Each type or attribute
-must be negated by the caller.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
-<a name="link_files_read_all_locks"></a>
+<a name="link_files_read_generic_tmp_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_all_locks</b>(
+<b>files_read_generic_tmp_files</b>(
@@ -5695,7 +6497,7 @@ yes
<h5>Summary</h5>
<p>
-Read all lock files.
+Read files in the tmp directory (/tmp).
</p>
@@ -5706,9 +6508,9 @@ Read all lock files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5717,18 +6519,18 @@ No
</div>
</div>
-<a name="link_files_read_all_pids"></a>
+<a name="link_files_read_generic_tmp_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_all_pids</b>(
+<b>files_read_generic_tmp_symlinks</b>(
- ?
+ domain
)<br>
@@ -5737,7 +6539,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Read symbolic links in the tmp directory (/tmp).
</p>
@@ -5746,11 +6548,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -5759,13 +6561,13 @@ No
</div>
</div>
-<a name="link_files_read_all_symlinks"></a>
+<a name="link_files_read_isid_type_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_all_symlinks</b>(
+<b>files_read_isid_type_files</b>(
@@ -5779,7 +6581,8 @@ No
<h5>Summary</h5>
<p>
-Read all symbolic links.
+Read files on new filesystems
+that have not yet been labeled.
</p>
@@ -5790,9 +6593,9 @@ Read all symbolic links.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5801,13 +6604,13 @@ No
</div>
</div>
-<a name="link_files_read_all_symlinks_except"></a>
+<a name="link_files_read_kernel_modules"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_all_symlinks_except</b>(
+<b>files_read_kernel_modules</b>(
@@ -5815,26 +6618,13 @@ No
domain
-
- ,
-
-
-
- [
-
- exception_types
-
- ]
-
-
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Read all symbolic links on the filesystem, except
-the listed exceptions.
+Read kernel module files.
</p>
@@ -5845,35 +6635,24 @@ the listed exceptions.
<tr><td>
domain
</td><td>
-
-The type of the domain perfoming this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-exception_types
-</td><td>
-
-The types to be excluded. Each type or attribute
-must be negated by the caller.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
-<a name="link_files_read_default_files"></a>
+<a name="link_files_read_kernel_symbol_table"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_default_files</b>(
+<b>files_read_kernel_symbol_table</b>(
@@ -5887,7 +6666,7 @@ yes
<h5>Summary</h5>
<p>
-Read files with the default file type.
+Read system.map in the /boot directory.
</p>
@@ -5898,9 +6677,9 @@ Read files with the default file type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5909,13 +6688,13 @@ No
</div>
</div>
-<a name="link_files_read_default_pipes"></a>
+<a name="link_files_read_non_security_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_default_pipes</b>(
+<b>files_read_non_security_files</b>(
@@ -5929,7 +6708,7 @@ No
<h5>Summary</h5>
<p>
-Read named pipes with the default file type.
+Read all non-security files.
</p>
@@ -5940,9 +6719,9 @@ Read named pipes with the default file type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5951,18 +6730,18 @@ No
</div>
</div>
-<a name="link_files_read_default_sockets"></a>
+<a name="link_files_read_usr_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_default_sockets</b>(
+<b>files_read_usr_files</b>(
- domain
+ ?
)<br>
@@ -5971,7 +6750,7 @@ No
<h5>Summary</h5>
<p>
-Read sockets with the default file type.
+Summary is missing!
</p>
@@ -5980,11 +6759,11 @@ Read sockets with the default file type.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -5993,18 +6772,18 @@ No
</div>
</div>
-<a name="link_files_read_default_symlinks"></a>
+<a name="link_files_read_usr_src_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_default_symlinks</b>(
+<b>files_read_usr_src_files</b>(
- domain
+ ?
)<br>
@@ -6013,7 +6792,7 @@ No
<h5>Summary</h5>
<p>
-Read symbolic links with the default file type.
+Summary is missing!
</p>
@@ -6022,11 +6801,11 @@ Read symbolic links with the default file type.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -6035,18 +6814,18 @@ No
</div>
</div>
-<a name="link_files_read_etc_files"></a>
+<a name="link_files_read_usr_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_etc_files</b>(
+<b>files_read_usr_symlinks</b>(
- ?
+ domain
)<br>
@@ -6055,7 +6834,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Read symbolic links in /usr.
</p>
@@ -6064,11 +6843,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -6077,13 +6856,13 @@ No
</div>
</div>
-<a name="link_files_read_etc_runtime_files"></a>
+<a name="link_files_read_var_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_etc_runtime_files</b>(
+<b>files_read_var_files</b>(
@@ -6097,8 +6876,7 @@ No
<h5>Summary</h5>
<p>
-Read files in /etc that are dynamically
-created on boot, such as mtab.
+Read files in the /var directory.
</p>
@@ -6109,9 +6887,9 @@ created on boot, such as mtab.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -6120,18 +6898,18 @@ No
</div>
</div>
-<a name="link_files_read_generic_spools"></a>
+<a name="link_files_read_var_lib_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_generic_spools</b>(
+<b>files_read_var_lib_files</b>(
- ?
+ domain
)<br>
@@ -6140,7 +6918,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Read generic files in /var/lib.
</p>
@@ -6149,11 +6927,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -6162,13 +6940,13 @@ No
</div>
</div>
-<a name="link_files_read_generic_tmp_files"></a>
+<a name="link_files_read_var_lib_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_generic_tmp_files</b>(
+<b>files_read_var_lib_symlinks</b>(
@@ -6182,7 +6960,7 @@ No
<h5>Summary</h5>
<p>
-Read files in the tmp directory (/tmp).
+Read generic symbolic links in /var/lib
</p>
@@ -6193,9 +6971,9 @@ Read files in the tmp directory (/tmp).
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -6204,13 +6982,13 @@ No
</div>
</div>
-<a name="link_files_read_generic_tmp_symlinks"></a>
+<a name="link_files_read_var_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_generic_tmp_symlinks</b>(
+<b>files_read_var_symlinks</b>(
@@ -6224,7 +7002,7 @@ No
<h5>Summary</h5>
<p>
-Read symbolic links in the tmp directory (/tmp).
+Read symbolic links in the /var directory.
</p>
@@ -6235,9 +7013,9 @@ Read symbolic links in the tmp directory (/tmp).
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -6246,13 +7024,13 @@ No
</div>
</div>
-<a name="link_files_read_isid_type_file"></a>
+<a name="link_files_read_world_readable_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_isid_type_file</b>(
+<b>files_read_world_readable_files</b>(
@@ -6266,8 +7044,7 @@ No
<h5>Summary</h5>
<p>
-Read files on new filesystems
-that have not yet been labeled.
+Read world-readable files.
</p>
@@ -6278,9 +7055,9 @@ that have not yet been labeled.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -6289,13 +7066,13 @@ No
</div>
</div>
-<a name="link_files_read_non_security_files"></a>
+<a name="link_files_read_world_readable_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_non_security_files</b>(
+<b>files_read_world_readable_pipes</b>(
@@ -6309,7 +7086,7 @@ No
<h5>Summary</h5>
<p>
-Read all non-security files.
+Read world-readable named pipes.
</p>
@@ -6320,9 +7097,9 @@ Read all non-security files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -6331,18 +7108,18 @@ No
</div>
</div>
-<a name="link_files_read_usr_files"></a>
+<a name="link_files_read_world_readable_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_usr_files</b>(
+<b>files_read_world_readable_sockets</b>(
- ?
+ domain
)<br>
@@ -6351,7 +7128,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Read world-readable sockets.
</p>
@@ -6360,11 +7137,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -6373,18 +7150,18 @@ No
</div>
</div>
-<a name="link_files_read_usr_src_files"></a>
+<a name="link_files_read_world_readable_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_usr_src_files</b>(
+<b>files_read_world_readable_symlinks</b>(
- ?
+ domain
)<br>
@@ -6393,7 +7170,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Read world-readable symbolic links.
</p>
@@ -6402,11 +7179,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -6415,13 +7192,13 @@ No
</div>
</div>
-<a name="link_files_read_usr_symlinks"></a>
+<a name="link_files_relabel_all_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_usr_symlinks</b>(
+<b>files_relabel_all_files</b>(
@@ -6429,13 +7206,22 @@ No
domain
+
+ ,
+
+
+
+ exception_types
+
+
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Read symbolic links in /usr.
+Relabel all files on the filesystem, except
+the listed exceptions.
</p>
@@ -6446,24 +7232,35 @@ Read symbolic links in /usr.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+The type of the domain perfoming this action.
+</p>
</td><td>
No
</td></tr>
+<tr><td>
+exception_types
+</td><td>
+<p>
+The types to be excluded. Each type or attribute
+must be negated by the caller.
+</p>
+</td><td>
+Yes
+</td></tr>
+
</table>
</div>
</div>
-<a name="link_files_read_var_files"></a>
+<a name="link_files_relabel_etc_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_var_files</b>(
+<b>files_relabel_etc_files</b>(
@@ -6477,7 +7274,7 @@ No
<h5>Summary</h5>
<p>
-Read files in the /var directory.
+Relabel from and to generic files in /etc.
</p>
@@ -6488,9 +7285,9 @@ Read files in the /var directory.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -6499,13 +7296,13 @@ No
</div>
</div>
-<a name="link_files_read_var_lib_files"></a>
+<a name="link_files_relabel_kernel_modules"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_var_lib_files</b>(
+<b>files_relabel_kernel_modules</b>(
@@ -6519,7 +7316,7 @@ No
<h5>Summary</h5>
<p>
-Read generic files in /var/lib.
+Relabel from and to kernel module files.
</p>
@@ -6530,9 +7327,9 @@ Read generic files in /var/lib.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -6541,13 +7338,13 @@ No
</div>
</div>
-<a name="link_files_read_var_lib_symlinks"></a>
+<a name="link_files_relabelfrom_boot_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_var_lib_symlinks</b>(
+<b>files_relabelfrom_boot_files</b>(
@@ -6561,7 +7358,7 @@ No
<h5>Summary</h5>
<p>
-Read generic symbolic links in /var/lib
+Relabel from files in the /boot directory.
</p>
@@ -6572,9 +7369,9 @@ Read generic symbolic links in /var/lib
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -6583,18 +7380,18 @@ No
</div>
</div>
-<a name="link_files_read_var_symlink"></a>
+<a name="link_files_relabelto_all_file_type_fs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_var_symlink</b>(
+<b>files_relabelto_all_file_type_fs</b>(
- domain
+ ?
)<br>
@@ -6603,7 +7400,7 @@ No
<h5>Summary</h5>
<p>
-Read symbolic links in the /var directory.
+Summary is missing!
</p>
@@ -6612,11 +7409,11 @@ Read symbolic links in the /var directory.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -6625,13 +7422,13 @@ No
</div>
</div>
-<a name="link_files_read_world_readable_files"></a>
+<a name="link_files_relabelto_usr_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_world_readable_files</b>(
+<b>files_relabelto_usr_files</b>(
@@ -6645,7 +7442,7 @@ No
<h5>Summary</h5>
<p>
-Read world-readable files.
+Relabel a file to the type used in /usr.
</p>
@@ -6656,9 +7453,9 @@ Read world-readable files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -6667,13 +7464,13 @@ No
</div>
</div>
-<a name="link_files_read_world_readable_pipes"></a>
+<a name="link_files_root_filetrans"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_world_readable_pipes</b>(
+<b>files_root_filetrans</b>(
@@ -6681,13 +7478,30 @@ No
domain
+
+ ,
+
+
+
+ private type
+
+
+
+ ,
+
+
+
+ object
+
+
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Read world-readable named pipes.
+Create an object in the root directory, with a private
+type.
</p>
@@ -6698,9 +7512,29 @@ Read world-readable named pipes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+private type
+</td><td>
+<p>
+The type of the object to be created.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+object
+</td><td>
+<p>
+The object class of the object being created.
+</p>
</td><td>
No
</td></tr>
@@ -6709,13 +7543,13 @@ No
</div>
</div>
-<a name="link_files_read_world_readable_sockets"></a>
+<a name="link_files_rw_boot_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_world_readable_sockets</b>(
+<b>files_rw_boot_symlinks</b>(
@@ -6729,7 +7563,8 @@ No
<h5>Summary</h5>
<p>
-Read world-readable sockets.
+Read and write symbolic links
+in the /boot directory.
</p>
@@ -6740,9 +7575,9 @@ Read world-readable sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -6751,18 +7586,18 @@ No
</div>
</div>
-<a name="link_files_read_world_readable_symlinks"></a>
+<a name="link_files_rw_etc_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_read_world_readable_symlinks</b>(
+<b>files_rw_etc_files</b>(
- domain
+ ?
)<br>
@@ -6771,7 +7606,7 @@ No
<h5>Summary</h5>
<p>
-Read world-readable symbolic links.
+Summary is missing!
</p>
@@ -6780,11 +7615,11 @@ Read world-readable symbolic links.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -6793,13 +7628,13 @@ No
</div>
</div>
-<a name="link_files_relabel_all_files"></a>
+<a name="link_files_rw_etc_runtime_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_relabel_all_files</b>(
+<b>files_rw_etc_runtime_files</b>(
@@ -6807,26 +7642,14 @@ No
domain
-
- ,
-
-
-
- [
-
- exception_types
-
- ]
-
-
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Relabel all files on the filesystem, except
-the listed exceptions.
+Read and write files in /etc that are dynamically
+created on boot, such as mtab.
</p>
@@ -6837,40 +7660,29 @@ the listed exceptions.
<tr><td>
domain
</td><td>
-
-The type of the domain perfoming this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-exception_types
-</td><td>
-
-The types to be excluded. Each type or attribute
-must be negated by the caller.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
-<a name="link_files_relabel_etc_files"></a>
+<a name="link_files_rw_generic_pids"></a>
<div id="interface">
<div id="codeblock">
-<b>files_relabel_etc_files</b>(
+<b>files_rw_generic_pids</b>(
- domain
+ ?
)<br>
@@ -6879,7 +7691,7 @@ yes
<h5>Summary</h5>
<p>
-Relabel from and to generic files in /etc.
+Summary is missing!
</p>
@@ -6888,11 +7700,11 @@ Relabel from and to generic files in /etc.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -6901,18 +7713,18 @@ No
</div>
</div>
-<a name="link_files_relabelto_all_file_type_fs"></a>
+<a name="link_files_rw_generic_tmp_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>files_relabelto_all_file_type_fs</b>(
+<b>files_rw_generic_tmp_sockets</b>(
- ?
+ domain
)<br>
@@ -6921,7 +7733,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Read and write generic named sockets in the tmp directory (/tmp).
</p>
@@ -6930,11 +7742,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -6943,13 +7755,13 @@ No
</div>
</div>
-<a name="link_files_relabelto_usr_files"></a>
+<a name="link_files_rw_isid_type_blk_files"></a>
<div id="interface">
<div id="codeblock">
-<b>files_relabelto_usr_files</b>(
+<b>files_rw_isid_type_blk_files</b>(
@@ -6963,7 +7775,8 @@ No
<h5>Summary</h5>
<p>
-Relabel a file to the type used in /usr.
+Read and write block device nodes on new filesystems
+that have not yet been labeled.
</p>
@@ -6974,9 +7787,9 @@ Relabel a file to the type used in /usr.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -6985,18 +7798,18 @@ No
</div>
</div>
-<a name="link_files_rw_etc_files"></a>
+<a name="link_files_rw_isid_type_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_rw_etc_files</b>(
+<b>files_rw_isid_type_dirs</b>(
- ?
+ domain
)<br>
@@ -7005,7 +7818,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Read and write directories on new filesystems
+that have not yet been labeled.
</p>
@@ -7014,11 +7828,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -7027,13 +7841,13 @@ No
</div>
</div>
-<a name="link_files_rw_etc_runtime_files"></a>
+<a name="link_files_rw_lock_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_rw_etc_runtime_files</b>(
+<b>files_rw_lock_dirs</b>(
@@ -7047,8 +7861,8 @@ No
<h5>Summary</h5>
<p>
-Read and write files in /etc that are dynamically
-created on boot, such as mtab.
+Add and remove entries in the /var/lock
+directories.
</p>
@@ -7059,9 +7873,9 @@ created on boot, such as mtab.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -7070,13 +7884,13 @@ No
</div>
</div>
-<a name="link_files_rw_generic_pids"></a>
+<a name="link_files_search_all"></a>
<div id="interface">
<div id="codeblock">
-<b>files_rw_generic_pids</b>(
+<b>files_search_all</b>(
@@ -7101,9 +7915,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -7112,13 +7926,13 @@ No
</div>
</div>
-<a name="link_files_rw_generic_tmp_sockets"></a>
+<a name="link_files_search_boot"></a>
<div id="interface">
<div id="codeblock">
-<b>files_rw_generic_tmp_sockets</b>(
+<b>files_search_boot</b>(
@@ -7132,7 +7946,7 @@ No
<h5>Summary</h5>
<p>
-Read and write generic named sockets in the tmp directory (/tmp).
+Search the /boot directory.
</p>
@@ -7143,9 +7957,9 @@ Read and write generic named sockets in the tmp directory (/tmp).
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -7154,13 +7968,13 @@ No
</div>
</div>
-<a name="link_files_rw_isid_type_blk_node"></a>
+<a name="link_files_search_default"></a>
<div id="interface">
<div id="codeblock">
-<b>files_rw_isid_type_blk_node</b>(
+<b>files_search_default</b>(
@@ -7174,8 +7988,7 @@ No
<h5>Summary</h5>
<p>
-Read and write block device nodes on new filesystems
-that have not yet been labeled.
+Search the contents of directories with the default file type.
</p>
@@ -7186,9 +7999,9 @@ that have not yet been labeled.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -7197,18 +8010,18 @@ No
</div>
</div>
-<a name="link_files_rw_isid_type_dir"></a>
+<a name="link_files_search_etc"></a>
<div id="interface">
<div id="codeblock">
-<b>files_rw_isid_type_dir</b>(
+<b>files_search_etc</b>(
- domain
+ ?
)<br>
@@ -7217,8 +8030,7 @@ No
<h5>Summary</h5>
<p>
-Read and write directories on new filesystems
-that have not yet been labeled.
+Summary is missing!
</p>
@@ -7227,11 +8039,11 @@ that have not yet been labeled.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -7240,13 +8052,13 @@ No
</div>
</div>
-<a name="link_files_rw_locks_dir"></a>
+<a name="link_files_search_home"></a>
<div id="interface">
<div id="codeblock">
-<b>files_rw_locks_dir</b>(
+<b>files_search_home</b>(
@@ -7260,8 +8072,7 @@ No
<h5>Summary</h5>
<p>
-Add and remove entries in the /var/lock
-directories.
+Search home directories root (/home).
</p>
@@ -7272,9 +8083,9 @@ directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -7283,13 +8094,13 @@ No
</div>
</div>
-<a name="link_files_search_all"></a>
+<a name="link_files_search_kernel_modules"></a>
<div id="interface">
<div id="codeblock">
-<b>files_search_all</b>(
+<b>files_search_kernel_modules</b>(
@@ -7303,7 +8114,7 @@ No
<h5>Summary</h5>
<p>
-Search all directories.
+Search the contents of the kernel module directories.
</p>
@@ -7314,9 +8125,9 @@ Search all directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -7325,18 +8136,18 @@ No
</div>
</div>
-<a name="link_files_search_all_dirs"></a>
+<a name="link_files_search_locks"></a>
<div id="interface">
<div id="codeblock">
-<b>files_search_all_dirs</b>(
+<b>files_search_locks</b>(
- ?
+ domain
)<br>
@@ -7345,7 +8156,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Search the locks directory (/var/lock).
</p>
@@ -7354,11 +8165,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -7367,18 +8178,18 @@ No
</div>
</div>
-<a name="link_files_search_default"></a>
+<a name="link_files_search_mnt"></a>
<div id="interface">
<div id="codeblock">
-<b>files_search_default</b>(
+<b>files_search_mnt</b>(
- domain
+ ?
)<br>
@@ -7387,7 +8198,7 @@ No
<h5>Summary</h5>
<p>
-Search the contents of directories with the default file type.
+Summary is missing!
</p>
@@ -7396,11 +8207,11 @@ Search the contents of directories with the default file type.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -7409,13 +8220,13 @@ No
</div>
</div>
-<a name="link_files_search_etc"></a>
+<a name="link_files_search_pids"></a>
<div id="interface">
<div id="codeblock">
-<b>files_search_etc</b>(
+<b>files_search_pids</b>(
@@ -7440,9 +8251,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -7451,18 +8262,18 @@ No
</div>
</div>
-<a name="link_files_search_home"></a>
+<a name="link_files_search_spool"></a>
<div id="interface">
<div id="codeblock">
-<b>files_search_home</b>(
+<b>files_search_spool</b>(
- domain
+ ?
)<br>
@@ -7471,7 +8282,7 @@ No
<h5>Summary</h5>
<p>
-Search home directories root (/home).
+Summary is missing!
</p>
@@ -7480,11 +8291,11 @@ Search home directories root (/home).
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -7493,18 +8304,18 @@ No
</div>
</div>
-<a name="link_files_search_locks"></a>
+<a name="link_files_search_tmp"></a>
<div id="interface">
<div id="codeblock">
-<b>files_search_locks</b>(
+<b>files_search_tmp</b>(
- ?
+ domain
)<br>
@@ -7513,7 +8324,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Search the tmp directory (/tmp).
</p>
@@ -7522,11 +8333,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -7535,13 +8346,13 @@ No
</div>
</div>
-<a name="link_files_search_mnt"></a>
+<a name="link_files_search_usr"></a>
<div id="interface">
<div id="codeblock">
-<b>files_search_mnt</b>(
+<b>files_search_usr</b>(
@@ -7566,9 +8377,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -7577,18 +8388,18 @@ No
</div>
</div>
-<a name="link_files_search_pids"></a>
+<a name="link_files_search_var"></a>
<div id="interface">
<div id="codeblock">
-<b>files_search_pids</b>(
+<b>files_search_var</b>(
- ?
+ domain
)<br>
@@ -7597,7 +8408,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Search the contents of /var.
</p>
@@ -7606,11 +8417,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -7619,18 +8430,18 @@ No
</div>
</div>
-<a name="link_files_search_spool"></a>
+<a name="link_files_search_var_lib"></a>
<div id="interface">
<div id="codeblock">
-<b>files_search_spool</b>(
+<b>files_search_var_lib</b>(
- ?
+ domain
)<br>
@@ -7639,7 +8450,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Search the /var/lib directory.
</p>
@@ -7648,11 +8459,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -7661,18 +8472,18 @@ No
</div>
</div>
-<a name="link_files_search_tmp"></a>
+<a name="link_files_security_file"></a>
<div id="interface">
<div id="codeblock">
-<b>files_search_tmp</b>(
+<b>files_security_file</b>(
- domain
+ file_type
)<br>
@@ -7681,7 +8492,9 @@ No
<h5>Summary</h5>
<p>
-Search the tmp directory (/tmp).
+Make the specified type a file that
+should not be dontaudited from
+browsing from user domains.
</p>
@@ -7690,11 +8503,12 @@ Search the tmp directory (/tmp).
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+file_type
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Type of the file to be used as a
+member directory.
+</p>
</td><td>
No
</td></tr>
@@ -7703,18 +8517,18 @@ No
</div>
</div>
-<a name="link_files_search_usr"></a>
+<a name="link_files_setattr_all_tmp_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_search_usr</b>(
+<b>files_setattr_all_tmp_dirs</b>(
- ?
+ domain
)<br>
@@ -7723,7 +8537,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Set the attributes of all tmp directories.
</p>
@@ -7732,11 +8546,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -7745,13 +8559,13 @@ No
</div>
</div>
-<a name="link_files_search_var"></a>
+<a name="link_files_setattr_etc_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_search_var</b>(
+<b>files_setattr_etc_dirs</b>(
@@ -7765,7 +8579,7 @@ No
<h5>Summary</h5>
<p>
-Search the contents of /var.
+Set the attributes of the /etc directories.
</p>
@@ -7776,9 +8590,9 @@ Search the contents of /var.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -7787,18 +8601,18 @@ No
</div>
</div>
-<a name="link_files_search_var_lib"></a>
+<a name="link_files_tmp_file"></a>
<div id="interface">
<div id="codeblock">
-<b>files_search_var_lib</b>(
+<b>files_tmp_file</b>(
- domain
+ file_type
)<br>
@@ -7807,7 +8621,8 @@ No
<h5>Summary</h5>
<p>
-Search the /var/lib directory.
+Make the specified type a file
+used for temporary files.
</p>
@@ -7816,11 +8631,12 @@ Search the /var/lib directory.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+file_type
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Type of the file to be used as a
+temporary file.
+</p>
</td><td>
No
</td></tr>
@@ -7829,18 +8645,18 @@ No
</div>
</div>
-<a name="link_files_search_var_lib_dir"></a>
+<a name="link_files_tmp_filetrans"></a>
<div id="interface">
<div id="codeblock">
-<b>files_search_var_lib_dir</b>(
+<b>files_tmp_filetrans</b>(
- domain
+ ?
)<br>
@@ -7849,7 +8665,7 @@ No
<h5>Summary</h5>
<p>
-Search directories in /var/lib.
+Summary is missing!
</p>
@@ -7858,11 +8674,11 @@ Search directories in /var/lib.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -7871,18 +8687,18 @@ No
</div>
</div>
-<a name="link_files_security_file"></a>
+<a name="link_files_tmpfs_file"></a>
<div id="interface">
<div id="codeblock">
-<b>files_security_file</b>(
+<b>files_tmpfs_file</b>(
- file_type
+ type
)<br>
@@ -7891,9 +8707,8 @@ No
<h5>Summary</h5>
<p>
-Make the specified type a file that
-should not be dontaudited from
-browsing from user domains.
+Transform the type into a file, for use on a
+virtual memory filesystem (tmpfs).
</p>
@@ -7902,12 +8717,11 @@ browsing from user domains.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-file_type
+type
</td><td>
-
-Type of the file to be used as a
-member directory.
-
+<p>
+The type to be transformed.
+</p>
</td><td>
No
</td></tr>
@@ -7916,18 +8730,18 @@ No
</div>
</div>
-<a name="link_files_setattr_all_tmp_dirs"></a>
+<a name="link_files_type"></a>
<div id="interface">
<div id="codeblock">
-<b>files_setattr_all_tmp_dirs</b>(
+<b>files_type</b>(
- domain
+ type
)<br>
@@ -7936,7 +8750,8 @@ No
<h5>Summary</h5>
<p>
-Set the attributes of all tmp directories.
+Make the specified type usable for files
+in a filesystem.
</p>
@@ -7945,11 +8760,11 @@ Set the attributes of all tmp directories.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+type
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Type to be used for files.
+</p>
</td><td>
No
</td></tr>
@@ -7958,13 +8773,13 @@ No
</div>
</div>
-<a name="link_files_setattr_etc_dir"></a>
+<a name="link_files_unconfined"></a>
<div id="interface">
<div id="codeblock">
-<b>files_setattr_etc_dir</b>(
+<b>files_unconfined</b>(
@@ -7978,7 +8793,7 @@ No
<h5>Summary</h5>
<p>
-Set the attributes of the /etc directories.
+Unconfined access to files.
</p>
@@ -7989,9 +8804,9 @@ Set the attributes of the /etc directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -8000,18 +8815,18 @@ No
</div>
</div>
-<a name="link_files_tmp_file"></a>
+<a name="link_files_unmount_all_file_type_fs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_tmp_file</b>(
+<b>files_unmount_all_file_type_fs</b>(
- file_type
+ ?
)<br>
@@ -8020,8 +8835,7 @@ No
<h5>Summary</h5>
<p>
-Make the specified type a file
-used for temporary files.
+Summary is missing!
</p>
@@ -8030,12 +8844,11 @@ used for temporary files.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-file_type
+?
</td><td>
-
-Type of the file to be used as a
-temporary file.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -8044,18 +8857,18 @@ No
</div>
</div>
-<a name="link_files_tmpfs_file"></a>
+<a name="link_files_unmount_rootfs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_tmpfs_file</b>(
+<b>files_unmount_rootfs</b>(
- type
+ ?
)<br>
@@ -8064,8 +8877,7 @@ No
<h5>Summary</h5>
<p>
-Transform the type into a file, for use on a
-virtual memory filesystem (tmpfs).
+Summary is missing!
</p>
@@ -8074,11 +8886,11 @@ virtual memory filesystem (tmpfs).
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-type
+?
</td><td>
-
-The type to be transformed.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -8087,18 +8899,34 @@ No
</div>
</div>
-<a name="link_files_type"></a>
+<a name="link_files_usr_filetrans"></a>
<div id="interface">
<div id="codeblock">
-<b>files_type</b>(
+<b>files_usr_filetrans</b>(
- type
+ domain
+
+
+
+ ,
+
+
+
+ file_type
+
+
+
+ ,
+
+
+
+ object_class
)<br>
@@ -8107,8 +8935,7 @@ No
<h5>Summary</h5>
<p>
-Make the specified type usable for files
-in a filesystem.
+Create objects in the /usr directory
</p>
@@ -8117,11 +8944,31 @@ in a filesystem.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-type
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
+No
+</td></tr>
-Type to be used for files.
+<tr><td>
+file_type
+</td><td>
+<p>
+The type of the object to be created
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+object_class
+</td><td>
+<p>
+The object class.
+</p>
</td><td>
No
</td></tr>
@@ -8130,13 +8977,13 @@ No
</div>
</div>
-<a name="link_files_unconfined"></a>
+<a name="link_files_var_filetrans"></a>
<div id="interface">
<div id="codeblock">
-<b>files_unconfined</b>(
+<b>files_var_filetrans</b>(
@@ -8144,13 +8991,29 @@ No
domain
+
+ ,
+
+
+
+ file_type
+
+
+
+ ,
+
+
+
+ object_class
+
+
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Unconfined access to files.
+Create objects in the /var directory
</p>
@@ -8161,9 +9024,29 @@ Unconfined access to files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+file_type
+</td><td>
+<p>
+The type of the object to be created
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+object_class
+</td><td>
+<p>
+The object class.
+</p>
</td><td>
No
</td></tr>
@@ -8172,18 +9055,34 @@ No
</div>
</div>
-<a name="link_files_unmount_all_file_type_fs"></a>
+<a name="link_files_var_lib_filetrans"></a>
<div id="interface">
<div id="codeblock">
-<b>files_unmount_all_file_type_fs</b>(
+<b>files_var_lib_filetrans</b>(
- ?
+ domain
+
+
+
+ ,
+
+
+
+ file_type
+
+
+
+ ,
+
+
+
+ object_class
)<br>
@@ -8192,7 +9091,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Create objects in the /var/lib directory
</p>
@@ -8201,11 +9100,31 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
+No
+</td></tr>
-Parameter descriptions are missing!
+<tr><td>
+file_type
+</td><td>
+<p>
+The type of the object to be created
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+object_class
+</td><td>
+<p>
+The object class.
+</p>
</td><td>
No
</td></tr>
@@ -8214,18 +9133,18 @@ No
</div>
</div>
-<a name="link_files_unmount_rootfs"></a>
+<a name="link_files_write_kernel_modules"></a>
<div id="interface">
<div id="codeblock">
-<b>files_unmount_rootfs</b>(
+<b>files_write_kernel_modules</b>(
- ?
+ domain
)<br>
@@ -8234,7 +9153,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Write kernel module files.
</p>
@@ -8243,11 +9162,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -8256,13 +9175,13 @@ No
</div>
</div>
-<a name="link_files_write_non_security_dir"></a>
+<a name="link_files_write_non_security_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>files_write_non_security_dir</b>(
+<b>files_write_non_security_dirs</b>(
@@ -8287,9 +9206,9 @@ Allow attempts to modify any directory
<tr><td>
domain
</td><td>
-
+<p>
Domain to allow
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/kernel_filesystem.html b/www/api-docs/kernel_filesystem.html
index 3b6ec3d..140134d 100644
--- a/www/api-docs/kernel_filesystem.html
+++ b/www/api-docs/kernel_filesystem.html
@@ -25,9 +25,6 @@
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -49,6 +46,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -137,9 +137,9 @@ a filesystem such as ext3, JFS, and XFS.
<tr><td>
file_type
</td><td>
-
+<p>
The type of the to be associated.
-
+</p>
</td><td>
No
</td></tr>
@@ -183,9 +183,9 @@ FAT32, and NFS.
<tr><td>
file_type
</td><td>
-
+<p>
The type of the to be associated.
-
+</p>
</td><td>
No
</td></tr>
@@ -225,9 +225,9 @@ Allow the type to associate to tmpfs filesystems.
<tr><td>
type
</td><td>
-
+<p>
The type of the object to be associated.
-
+</p>
</td><td>
No
</td></tr>
@@ -297,9 +297,9 @@ in particular used by the ssh-agent policy.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -307,9 +307,9 @@ No
<tr><td>
target_domain
</td><td>
-
+<p>
The type of the new process.
-
+</p>
</td><td>
No
</td></tr>
@@ -349,9 +349,9 @@ Do not audit attempts to read removable storage files.
<tr><td>
domain
</td><td>
-
+<p>
Domain not to audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -392,9 +392,9 @@ of all files with a filesystem type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -435,9 +435,9 @@ all filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -478,9 +478,9 @@ of all named pipes with a filesystem type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -521,9 +521,9 @@ of all named sockets with a filesystem type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -564,9 +564,9 @@ of all symbolic links with a filesystem type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -609,9 +609,9 @@ attributes, such as ext3, JFS, or XFS.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -652,9 +652,9 @@ mounted filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -695,9 +695,9 @@ of directories on a CIFS or SMB filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -738,9 +738,9 @@ of directories on a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -749,13 +749,13 @@ No
</div>
</div>
-<a name="link_fs_dontaudit_list_removable_dirs"></a>
+<a name="link_fs_dontaudit_list_removable"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_dontaudit_list_removable_dirs</b>(
+<b>fs_dontaudit_list_removable</b>(
@@ -780,9 +780,9 @@ Do not audit attempts to list removable storage directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain not to audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -823,9 +823,9 @@ contents of generic tmpfs directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -867,9 +867,9 @@ on a CIFS or SMB network filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain managing the directories.
-
+</p>
</td><td>
No
</td></tr>
@@ -911,9 +911,9 @@ on a CIFS or SMB network filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -955,9 +955,9 @@ on a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -999,9 +999,9 @@ on a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1042,9 +1042,9 @@ files on a CIFS or SMB filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1085,9 +1085,9 @@ files on a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1096,13 +1096,13 @@ No
</div>
</div>
-<a name="link_fs_dontaudit_rw_cifs_files"></a>
+<a name="link_fs_dontaudit_read_ramfs_files"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_dontaudit_rw_cifs_files</b>(
+<b>fs_dontaudit_read_ramfs_files</b>(
@@ -1116,8 +1116,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read or
-write files on a CIFS or SMB filesystem.
+Dontaudit read on a ramfs files.
</p>
@@ -1128,9 +1127,9 @@ write files on a CIFS or SMB filesystem.
<tr><td>
domain
</td><td>
-
-The type of the domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1139,13 +1138,13 @@ No
</div>
</div>
-<a name="link_fs_dontaudit_rw_nfs_files"></a>
+<a name="link_fs_dontaudit_read_ramfs_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_dontaudit_rw_nfs_files</b>(
+<b>fs_dontaudit_read_ramfs_pipes</b>(
@@ -1159,8 +1158,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read or
-write files on a NFS filesystem.
+Dontaudit read on a ramfs fifo_files.
</p>
@@ -1171,9 +1169,9 @@ write files on a NFS filesystem.
<tr><td>
domain
</td><td>
-
-The type of the domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1182,13 +1180,13 @@ No
</div>
</div>
-<a name="link_fs_dontaudit_rw_tmpfs_files"></a>
+<a name="link_fs_dontaudit_rw_cifs_files"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_dontaudit_rw_tmpfs_files</b>(
+<b>fs_dontaudit_rw_cifs_files</b>(
@@ -1202,8 +1200,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read or write
-generic tmpfs files.
+Do not audit attempts to read or
+write files on a CIFS or SMB filesystem.
</p>
@@ -1214,9 +1212,9 @@ generic tmpfs files.
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+The type of the domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -1225,13 +1223,13 @@ No
</div>
</div>
-<a name="link_fs_dontaudit_use_tmpfs_chr_dev"></a>
+<a name="link_fs_dontaudit_rw_nfs_files"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_dontaudit_use_tmpfs_chr_dev</b>(
+<b>fs_dontaudit_rw_nfs_files</b>(
@@ -1245,7 +1243,8 @@ No
<h5>Summary</h5>
<p>
-dontaudit Read and write character nodes on tmpfs filesystems.
+Do not audit attempts to read or
+write files on a NFS filesystem.
</p>
@@ -1256,9 +1255,9 @@ dontaudit Read and write character nodes on tmpfs filesystems.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+The type of the domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -1267,13 +1266,13 @@ No
</div>
</div>
-<a name="link_fs_exec_noxattr"></a>
+<a name="link_fs_dontaudit_rw_tmpfs_files"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_exec_noxattr</b>(
+<b>fs_dontaudit_rw_tmpfs_files</b>(
@@ -1287,8 +1286,8 @@ No
<h5>Summary</h5>
<p>
-Execute files on a filesystem that does
-not support extended attributes.
+Do not audit attempts to read or write
+generic tmpfs files.
</p>
@@ -1299,9 +1298,9 @@ not support extended attributes.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -1310,13 +1309,13 @@ No
</div>
</div>
-<a name="link_fs_execute_cifs_files"></a>
+<a name="link_fs_dontaudit_search_ramfs"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_execute_cifs_files</b>(
+<b>fs_dontaudit_search_ramfs</b>(
@@ -1330,9 +1329,7 @@ No
<h5>Summary</h5>
<p>
-Execute files on a CIFS or SMB
-network filesystem, in the caller
-domain.
+Dontaudit Search directories on a ramfs
</p>
@@ -1343,9 +1340,9 @@ domain.
<tr><td>
domain
</td><td>
-
-The type of the domain executing the files.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1354,13 +1351,13 @@ No
</div>
</div>
-<a name="link_fs_execute_nfs_files"></a>
+<a name="link_fs_dontaudit_use_tmpfs_chr_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_execute_nfs_files</b>(
+<b>fs_dontaudit_use_tmpfs_chr_dev</b>(
@@ -1374,7 +1371,7 @@ No
<h5>Summary</h5>
<p>
-Execute files on a NFS filesystem.
+dontaudit Read and write character nodes on tmpfs filesystems.
</p>
@@ -1385,9 +1382,9 @@ Execute files on a NFS filesystem.
<tr><td>
domain
</td><td>
-
-The type of the domain executing the files.
-
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -1396,18 +1393,18 @@ No
</div>
</div>
-<a name="link_fs_filetrans_tmpfs"></a>
+<a name="link_fs_exec_cifs_files"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_filetrans_tmpfs</b>(
+<b>fs_exec_cifs_files</b>(
- ?
+ domain
)<br>
@@ -1416,7 +1413,9 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Execute files on a CIFS or SMB
+network filesystem, in the caller
+domain.
</p>
@@ -1425,11 +1424,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+The type of the domain executing the files.
+</p>
</td><td>
No
</td></tr>
@@ -1438,13 +1437,13 @@ No
</div>
</div>
-<a name="link_fs_get_all_fs_quotas"></a>
+<a name="link_fs_exec_nfs_files"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_get_all_fs_quotas</b>(
+<b>fs_exec_nfs_files</b>(
@@ -1458,7 +1457,7 @@ No
<h5>Summary</h5>
<p>
-Get the quotas of all filesystems.
+Execute files on a NFS filesystem.
</p>
@@ -1469,9 +1468,9 @@ Get the quotas of all filesystems.
<tr><td>
domain
</td><td>
-
-The type of the domain getting quotas.
-
+<p>
+The type of the domain executing the files.
+</p>
</td><td>
No
</td></tr>
@@ -1480,13 +1479,13 @@ No
</div>
</div>
-<a name="link_fs_get_xattr_fs_quota"></a>
+<a name="link_fs_exec_noxattr"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_get_xattr_fs_quota</b>(
+<b>fs_exec_noxattr</b>(
@@ -1500,8 +1499,8 @@ No
<h5>Summary</h5>
<p>
-Get the filesystem quotas of a filesystem
-with extended attributes.
+Execute files on a filesystem that does
+not support extended attributes.
</p>
@@ -1512,9 +1511,9 @@ with extended attributes.
<tr><td>
domain
</td><td>
-
-The type of the domain mounting the filesystem.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1523,13 +1522,13 @@ No
</div>
</div>
-<a name="link_fs_get_xattr_fs_quotas"></a>
+<a name="link_fs_get_all_fs_quotas"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_get_xattr_fs_quotas</b>(
+<b>fs_get_all_fs_quotas</b>(
@@ -1543,9 +1542,7 @@ No
<h5>Summary</h5>
<p>
-Get the quotas of a persistent
-filesystem which has extended
-attributes, such as ext3, JFS, or XFS.
+Get the quotas of all filesystems.
</p>
@@ -1556,9 +1553,9 @@ attributes, such as ext3, JFS, or XFS.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain getting quotas.
-
+</p>
</td><td>
No
</td></tr>
@@ -1567,13 +1564,13 @@ No
</div>
</div>
-<a name="link_fs_getattr_all_dirs"></a>
+<a name="link_fs_get_xattr_fs_quotas"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_getattr_all_dirs</b>(
+<b>fs_get_xattr_fs_quotas</b>(
@@ -1587,8 +1584,8 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of all directories
-with a filesystem type.
+Get the filesystem quotas of a filesystem
+with extended attributes.
</p>
@@ -1599,9 +1596,9 @@ with a filesystem type.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+The type of the domain mounting the filesystem.
+</p>
</td><td>
No
</td></tr>
@@ -1610,13 +1607,13 @@ No
</div>
</div>
-<a name="link_fs_getattr_all_files"></a>
+<a name="link_fs_getattr_all_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_getattr_all_files</b>(
+<b>fs_getattr_all_dirs</b>(
@@ -1630,8 +1627,8 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of all files with
-a filesystem type.
+Get the attributes of all directories
+with a filesystem type.
</p>
@@ -1642,9 +1639,9 @@ a filesystem type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1653,13 +1650,13 @@ No
</div>
</div>
-<a name="link_fs_getattr_all_fs"></a>
+<a name="link_fs_getattr_all_files"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_getattr_all_fs</b>(
+<b>fs_getattr_all_files</b>(
@@ -1673,8 +1670,8 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of all persistent
-filesystems.
+Get the attributes of all files with
+a filesystem type.
</p>
@@ -1685,10 +1682,53 @@ filesystems.
<tr><td>
domain
</td><td>
-
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_fs_getattr_all_fs"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>fs_getattr_all_fs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Get the attributes of all persistent
+filesystems.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
The type of the domain doing the
getattr on the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -1729,9 +1769,9 @@ a filesystem type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1772,9 +1812,9 @@ a filesystem type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1815,9 +1855,9 @@ a filesystem type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1858,10 +1898,10 @@ pseudo filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain doing the
getattr on the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -1902,10 +1942,10 @@ SMB network filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain doing the
getattr on the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -1946,10 +1986,10 @@ filesystem, such as FAT32 or NTFS.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain doing the
getattr on the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -1990,10 +2030,10 @@ filesystem, which is usually used on CDs.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain doing the
getattr on the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -2033,10 +2073,10 @@ Get the attributes of a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain doing the
getattr on the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -2077,10 +2117,10 @@ pseudo filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain doing the
getattr on the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -2120,10 +2160,10 @@ Get the attributes of a RAM filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain doing the
getattr on the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -2164,10 +2204,10 @@ filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain doing the
getattr on the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -2207,9 +2247,9 @@ Read directories of RPC file system pipes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain reading the symbolic links.
-
+</p>
</td><td>
No
</td></tr>
@@ -2250,10 +2290,10 @@ filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain doing the
getattr on the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -2294,10 +2334,10 @@ filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain doing the
getattr on the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -2306,13 +2346,13 @@ No
</div>
</div>
-<a name="link_fs_getattr_tmpfs_dir"></a>
+<a name="link_fs_getattr_tmpfs_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_getattr_tmpfs_dir</b>(
+<b>fs_getattr_tmpfs_dirs</b>(
@@ -2337,9 +2377,9 @@ Get the attributes of tmpfs directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2381,10 +2421,10 @@ attributes, such as ext3, JFS, or XFS.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain doing the
getattr on the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -2424,9 +2464,9 @@ List all directories with a filesystem type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2467,9 +2507,9 @@ mounted filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2510,9 +2550,51 @@ CIFS or SMB filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+<a name="link_fs_list_inotifyfs"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>fs_list_inotifyfs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+List inotifyfs filesystem.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -2552,9 +2634,9 @@ List NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2594,9 +2676,9 @@ Read all noxattrfs directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2605,13 +2687,13 @@ No
</div>
</div>
-<a name="link_fs_list_tmpfs"></a>
+<a name="link_fs_list_rpc"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_list_tmpfs</b>(
+<b>fs_list_rpc</b>(
@@ -2625,7 +2707,7 @@ No
<h5>Summary</h5>
<p>
-List the contents of generic tmpfs directories.
+Read directories of RPC file system pipes.
</p>
@@ -2636,9 +2718,9 @@ List the contents of generic tmpfs directories.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+The type of the domain reading the symbolic links.
+</p>
</td><td>
No
</td></tr>
@@ -2647,13 +2729,13 @@ No
</div>
</div>
-<a name="link_fs_make_noxattr_fs"></a>
+<a name="link_fs_list_tmpfs"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_make_noxattr_fs</b>(
+<b>fs_list_tmpfs</b>(
@@ -2667,9 +2749,7 @@ No
<h5>Summary</h5>
<p>
-Transform specified type into a filesystem
-type which does not have extended attribute
-support.
+List the contents of generic tmpfs directories.
</p>
@@ -2680,9 +2760,9 @@ support.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -2723,9 +2803,9 @@ auto moutpoints.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2766,9 +2846,9 @@ on a CIFS or SMB network filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain managing the directories.
-
+</p>
</td><td>
No
</td></tr>
@@ -2809,9 +2889,9 @@ on a CIFS or SMB network filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain managing the files.
-
+</p>
</td><td>
No
</td></tr>
@@ -2852,9 +2932,9 @@ on a CIFS or SMB network filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain managing the pipes.
-
+</p>
</td><td>
No
</td></tr>
@@ -2895,9 +2975,9 @@ on a CIFS or SMB network filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain managing the sockets.
-
+</p>
</td><td>
No
</td></tr>
@@ -2938,9 +3018,9 @@ on a CIFS or SMB network filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain managing the symbolic links.
-
+</p>
</td><td>
No
</td></tr>
@@ -2981,9 +3061,9 @@ on a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain managing the directories.
-
+</p>
</td><td>
No
</td></tr>
@@ -3024,9 +3104,9 @@ on a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain managing the files.
-
+</p>
</td><td>
No
</td></tr>
@@ -3067,9 +3147,9 @@ on a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain managing the pipes.
-
+</p>
</td><td>
No
</td></tr>
@@ -3110,9 +3190,9 @@ on a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain managing the sockets.
-
+</p>
</td><td>
No
</td></tr>
@@ -3153,9 +3233,9 @@ on a CIFS or SMB network filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain managing the symbolic links.
-
+</p>
</td><td>
No
</td></tr>
@@ -3164,13 +3244,13 @@ No
</div>
</div>
-<a name="link_fs_manage_tmpfs_blk_dev"></a>
+<a name="link_fs_manage_tmpfs_blk_files"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_manage_tmpfs_blk_dev</b>(
+<b>fs_manage_tmpfs_blk_files</b>(
@@ -3196,9 +3276,9 @@ on tmpfs filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3207,13 +3287,13 @@ No
</div>
</div>
-<a name="link_fs_manage_tmpfs_chr_dev"></a>
+<a name="link_fs_manage_tmpfs_chr_files"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_manage_tmpfs_chr_dev</b>(
+<b>fs_manage_tmpfs_chr_files</b>(
@@ -3239,9 +3319,9 @@ nodes on tmpfs filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3282,9 +3362,9 @@ tmpfs directories
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3325,9 +3405,9 @@ files on tmpfs filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3368,9 +3448,9 @@ files on tmpfs filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3411,9 +3491,9 @@ links on tmpfs filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -3453,9 +3533,9 @@ Mount all filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -3495,9 +3575,9 @@ Mount an automount pseudo filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -3537,9 +3617,9 @@ Mount a CIFS or SMB network filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -3580,9 +3660,9 @@ FAT32 or NTFS.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -3623,9 +3703,9 @@ is usually used on CDs.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -3665,9 +3745,9 @@ Mount a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -3707,9 +3787,9 @@ Mount a NFS server pseudo filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -3749,9 +3829,9 @@ Mount a RAM filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -3791,9 +3871,9 @@ Mount a ROM filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -3833,9 +3913,9 @@ Mount a RPC pipe filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -3875,9 +3955,9 @@ Mount a tmpfs filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -3919,9 +3999,9 @@ ext3, JFS, or XFS.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -3991,9 +4071,9 @@ in particular used by the ssh-agent policy.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4001,9 +4081,53 @@ No
<tr><td>
target_domain
</td><td>
-
+<p>
The type of the new process.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_fs_noxattr_type"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>fs_noxattr_type</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Transform specified type into a filesystem
+type which does not have extended attribute
+support.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -4043,9 +4167,9 @@ Read files on a CIFS or SMB filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4085,9 +4209,9 @@ Read symbolic links on a CIFS or SMB filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain reading the symbolic links.
-
+</p>
</td><td>
No
</td></tr>
@@ -4127,9 +4251,9 @@ Read eventpollfs files
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4169,9 +4293,9 @@ Read files on a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4211,9 +4335,9 @@ Read symbolic links on a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain reading the symbolic links.
-
+</p>
</td><td>
No
</td></tr>
@@ -4253,9 +4377,9 @@ Read all noxattrfs files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4295,9 +4419,9 @@ Read all noxattrfs symbolic links.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4337,9 +4461,9 @@ Read removable storage files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4379,9 +4503,9 @@ Read removable storage symbolic links.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4390,13 +4514,13 @@ No
</div>
</div>
-<a name="link_fs_read_rpc_dirs"></a>
+<a name="link_fs_read_rpc_files"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_read_rpc_dirs</b>(
+<b>fs_read_rpc_files</b>(
@@ -4410,7 +4534,7 @@ No
<h5>Summary</h5>
<p>
-Read directories of RPC file system pipes.
+Read files of RPC file system pipes.
</p>
@@ -4421,9 +4545,9 @@ Read directories of RPC file system pipes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain reading the symbolic links.
-
+</p>
</td><td>
No
</td></tr>
@@ -4432,13 +4556,13 @@ No
</div>
</div>
-<a name="link_fs_read_rpc_files"></a>
+<a name="link_fs_read_rpc_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_read_rpc_files</b>(
+<b>fs_read_rpc_sockets</b>(
@@ -4452,7 +4576,7 @@ No
<h5>Summary</h5>
<p>
-Read files of RPC file system pipes.
+Read sockets of RPC file system pipes.
</p>
@@ -4463,9 +4587,9 @@ Read files of RPC file system pipes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain reading the symbolic links.
-
+</p>
</td><td>
No
</td></tr>
@@ -4474,13 +4598,13 @@ No
</div>
</div>
-<a name="link_fs_read_rpc_sockets"></a>
+<a name="link_fs_read_rpc_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_read_rpc_sockets</b>(
+<b>fs_read_rpc_symlinks</b>(
@@ -4494,7 +4618,7 @@ No
<h5>Summary</h5>
<p>
-Read sockets of RPC file system pipes.
+Read symbolic links of RPC file system pipes.
</p>
@@ -4505,9 +4629,9 @@ Read sockets of RPC file system pipes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain reading the symbolic links.
-
+</p>
</td><td>
No
</td></tr>
@@ -4516,13 +4640,13 @@ No
</div>
</div>
-<a name="link_fs_read_rpc_symlinks"></a>
+<a name="link_fs_read_tmpfs_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_read_rpc_symlinks</b>(
+<b>fs_read_tmpfs_symlinks</b>(
@@ -4536,7 +4660,7 @@ No
<h5>Summary</h5>
<p>
-Read symbolic links of RPC file system pipes.
+Read tmpfs link files.
</p>
@@ -4547,9 +4671,9 @@ Read symbolic links of RPC file system pipes.
<tr><td>
domain
</td><td>
-
-The type of the domain reading the symbolic links.
-
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -4595,10 +4719,10 @@ without specifying the interpreter.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain registering
the interpreter.
-
+</p>
</td><td>
No
</td></tr>
@@ -4607,13 +4731,13 @@ No
</div>
</div>
-<a name="link_fs_relabel_tmpfs_blk_dev"></a>
+<a name="link_fs_relabel_tmpfs_blk_file"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_relabel_tmpfs_blk_dev</b>(
+<b>fs_relabel_tmpfs_blk_file</b>(
@@ -4638,9 +4762,9 @@ Relabel block nodes on tmpfs filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4649,13 +4773,13 @@ No
</div>
</div>
-<a name="link_fs_relabel_tmpfs_chr_dev"></a>
+<a name="link_fs_relabel_tmpfs_chr_file"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_relabel_tmpfs_chr_dev</b>(
+<b>fs_relabel_tmpfs_chr_file</b>(
@@ -4680,9 +4804,9 @@ Relabel character nodes on tmpfs filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -4722,10 +4846,10 @@ Relabelfrom all filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain doing the
getattr on the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -4766,9 +4890,9 @@ DOS filesystem using the context= mount option.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -4810,9 +4934,9 @@ using the context= mount option.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -4853,9 +4977,9 @@ allows some mount options to be changed.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -4896,9 +5020,9 @@ This allows some mount options to be changed.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain remounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -4939,9 +5063,9 @@ This allows some mount options to be changed.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -4983,9 +5107,9 @@ some mount options to be changed.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain remounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -5027,9 +5151,9 @@ some mount options to be changed.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain remounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -5070,9 +5194,9 @@ some mount options to be changed.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain remounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -5113,9 +5237,9 @@ This allows some mount options to be changed.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain remounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -5156,9 +5280,9 @@ some mount options to be changed.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain remounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -5199,9 +5323,9 @@ some mount options to be changed.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain remounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -5242,9 +5366,9 @@ allows some mount option to be changed.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain remounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -5284,9 +5408,9 @@ Remount a tmpfs filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain remounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -5329,9 +5453,9 @@ some mount options to be changed.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain remounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -5371,10 +5495,10 @@ Read and write NFS server files.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain doing the
read or write on nfsd files.
-
+</p>
</td><td>
No
</td></tr>
@@ -5383,13 +5507,13 @@ No
</div>
</div>
-<a name="link_fs_rw_ramfs_pipe"></a>
+<a name="link_fs_rw_ramfs_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_rw_ramfs_pipe</b>(
+<b>fs_rw_ramfs_pipes</b>(
@@ -5414,9 +5538,9 @@ Read and write a named pipe on a ramfs filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5425,13 +5549,13 @@ No
</div>
</div>
-<a name="link_fs_rw_tmpfs_file"></a>
+<a name="link_fs_rw_tmpfs_blk_files"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_rw_tmpfs_file</b>(
+<b>fs_rw_tmpfs_blk_files</b>(
@@ -5445,7 +5569,7 @@ No
<h5>Summary</h5>
<p>
-Read and write generic tmpfs files.
+Read and write block nodes on tmpfs filesystems.
</p>
@@ -5456,9 +5580,93 @@ Read and write generic tmpfs files.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_fs_rw_tmpfs_chr_files"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>fs_rw_tmpfs_chr_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write character nodes on tmpfs filesystems.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_fs_rw_tmpfs_files"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>fs_rw_tmpfs_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write generic tmpfs files.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -5498,9 +5706,9 @@ Search all directories with a filesystem type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5541,9 +5749,9 @@ mounted filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -5583,9 +5791,51 @@ Search directories on a CIFS or SMB filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_fs_search_inotifyfs"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>fs_search_inotifyfs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Search inotifyfs filesystem.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -5625,9 +5875,9 @@ Search directories on a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5667,10 +5917,10 @@ Search NFS server directories.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain doing the
search on nfsd directories.
-
+</p>
</td><td>
No
</td></tr>
@@ -5710,9 +5960,9 @@ Search directories on a ramfs
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5721,13 +5971,13 @@ No
</div>
</div>
-<a name="link_fs_search_removable_dirs"></a>
+<a name="link_fs_search_removable"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_search_removable_dirs</b>(
+<b>fs_search_removable</b>(
@@ -5752,9 +6002,9 @@ Search removable storage directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5763,13 +6013,13 @@ No
</div>
</div>
-<a name="link_fs_search_rpc_dirs"></a>
+<a name="link_fs_search_rpc"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_search_rpc_dirs</b>(
+<b>fs_search_rpc</b>(
@@ -5794,9 +6044,9 @@ Search directories of RPC file system pipes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain reading the symbolic links.
-
+</p>
</td><td>
No
</td></tr>
@@ -5836,9 +6086,9 @@ Search tmpfs directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5878,9 +6128,9 @@ Set the quotas of all filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain setting quotas.
-
+</p>
</td><td>
No
</td></tr>
@@ -5889,13 +6139,13 @@ No
</div>
</div>
-<a name="link_fs_set_xattr_fs_quota"></a>
+<a name="link_fs_set_xattr_fs_quotas"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_set_xattr_fs_quota</b>(
+<b>fs_set_xattr_fs_quotas</b>(
@@ -5921,9 +6171,9 @@ with extended attributes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -5932,13 +6182,13 @@ No
</div>
</div>
-<a name="link_fs_setattr_tmpfs_dir"></a>
+<a name="link_fs_setattr_tmpfs_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_setattr_tmpfs_dir</b>(
+<b>fs_setattr_tmpfs_dirs</b>(
@@ -5963,9 +6213,51 @@ Set the attributes of tmpfs directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_fs_tmpfs_filetrans"></a>
+<div id="interface">
+
+<div id="codeblock">
+
+<b>fs_tmpfs_filetrans</b>(
+
+
+
+
+ ?
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Summary is missing!
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+?
+</td><td>
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -6005,9 +6297,9 @@ Transform specified type into a filesystem type.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -6047,9 +6339,9 @@ Unconfined access to filesystems
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -6089,9 +6381,9 @@ Unmount all filesystems.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain unmounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -6131,9 +6423,9 @@ Unmount an automount pseudo filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain unmounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -6173,9 +6465,9 @@ Unmount a CIFS or SMB network filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -6216,9 +6508,9 @@ FAT32 or NTFS.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain unmounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -6259,9 +6551,9 @@ is usually used on CDs.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain unmounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -6301,9 +6593,9 @@ Unmount a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain unmounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -6343,9 +6635,9 @@ Unmount a NFS server pseudo filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain unmounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -6385,9 +6677,9 @@ Unmount a RAM filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain unmounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -6427,9 +6719,9 @@ Unmount a ROM filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain unmounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -6469,9 +6761,9 @@ Unmount a RPC pipe filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain unmounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -6511,9 +6803,9 @@ Unmount a tmpfs filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain unmounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -6555,93 +6847,9 @@ ext3, JFS, or XFS.
<tr><td>
domain
</td><td>
-
-The type of the domain unmounting the filesystem.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_fs_use_tmpfs_blk_dev"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>fs_use_tmpfs_blk_dev</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Read and write block nodes on tmpfs filesystems.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_fs_use_tmpfs_chr_dev"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>fs_use_tmpfs_chr_dev</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
<p>
-Read and write character nodes on tmpfs filesystems.
+The type of the domain unmounting the filesystem.
</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process performing this action.
-
</td><td>
No
</td></tr>
@@ -6681,9 +6889,9 @@ Read files on a NFS filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -6692,13 +6900,13 @@ No
</div>
</div>
-<a name="link_fs_write_ramfs_pipe"></a>
+<a name="link_fs_write_ramfs_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_write_ramfs_pipe</b>(
+<b>fs_write_ramfs_pipes</b>(
@@ -6723,9 +6931,9 @@ Write to named pipe on a ramfs filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -6734,13 +6942,13 @@ No
</div>
</div>
-<a name="link_fs_write_ramfs_socket"></a>
+<a name="link_fs_write_ramfs_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>fs_write_ramfs_socket</b>(
+<b>fs_write_ramfs_sockets</b>(
@@ -6765,9 +6973,9 @@ Write to named socket on a ramfs filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/kernel_kernel.html b/www/api-docs/kernel_kernel.html
index 28965cd..e25b4b0 100644
--- a/www/api-docs/kernel_kernel.html
+++ b/www/api-docs/kernel_kernel.html
@@ -25,9 +25,6 @@
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -49,6 +46,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -137,9 +137,9 @@ Change the level of kernel messages logged to the console.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -179,9 +179,112 @@ Allows the caller to clear the ring buffer.
<tr><td>
domain
</td><td>
-
+<p>
The process type clearing the buffer.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_kernel_dgram_send"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>kernel_dgram_send</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Send messages to kernel unix datagram sockets.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_kernel_domtrans_to"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>kernel_domtrans_to</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ entrypoint
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Allows to start userland processes
+by transitioning to the specified domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The process type entered by kernel.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+entrypoint
+</td><td>
+<p>
+The executable type for the entrypoint.
+</p>
</td><td>
No
</td></tr>
@@ -190,13 +293,13 @@ No
</div>
</div>
-<a name="link_kernel_dontaudit_getattr_core"></a>
+<a name="link_kernel_dontaudit_getattr_core_if"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_dontaudit_getattr_core</b>(
+<b>kernel_dontaudit_getattr_core_if</b>(
@@ -222,9 +325,9 @@ core kernel interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The process type to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -265,9 +368,9 @@ message interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The process type not to audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -276,13 +379,13 @@ No
</div>
</div>
-<a name="link_kernel_dontaudit_getattr_unlabeled_blk_dev"></a>
+<a name="link_kernel_dontaudit_getattr_unlabeled_blk_files"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_dontaudit_getattr_unlabeled_blk_dev</b>(
+<b>kernel_dontaudit_getattr_unlabeled_blk_files</b>(
@@ -308,9 +411,9 @@ unlabeled block devices.
<tr><td>
domain
</td><td>
-
+<p>
The process type not to audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -319,13 +422,13 @@ No
</div>
</div>
-<a name="link_kernel_dontaudit_getattr_unlabeled_chr_dev"></a>
+<a name="link_kernel_dontaudit_getattr_unlabeled_chr_files"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_dontaudit_getattr_unlabeled_chr_dev</b>(
+<b>kernel_dontaudit_getattr_unlabeled_chr_files</b>(
@@ -351,9 +454,9 @@ unlabeled character devices.
<tr><td>
domain
</td><td>
-
+<p>
The process type not to audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -362,13 +465,13 @@ No
</div>
</div>
-<a name="link_kernel_dontaudit_getattr_unlabeled_file"></a>
+<a name="link_kernel_dontaudit_getattr_unlabeled_files"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_dontaudit_getattr_unlabeled_file</b>(
+<b>kernel_dontaudit_getattr_unlabeled_files</b>(
@@ -394,9 +497,9 @@ attributes of an unlabeled file.
<tr><td>
domain
</td><td>
-
+<p>
The process type not to audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -437,9 +540,9 @@ attributes of unlabeled named pipes.
<tr><td>
domain
</td><td>
-
+<p>
The process type not to audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -480,9 +583,9 @@ attributes of unlabeled named sockets.
<tr><td>
domain
</td><td>
-
+<p>
The process type not to audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -523,9 +626,9 @@ attributes of unlabeled symbolic links.
<tr><td>
domain
</td><td>
-
+<p>
The process type not to audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -566,9 +669,9 @@ contents of directories in /proc.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -608,9 +711,9 @@ Do not audit attempts to list unlabeled directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -619,13 +722,13 @@ No
</div>
</div>
-<a name="link_kernel_dontaudit_read_proc_symlink"></a>
+<a name="link_kernel_dontaudit_read_proc_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_dontaudit_read_proc_symlink</b>(
+<b>kernel_dontaudit_read_proc_symlinks</b>(
@@ -651,9 +754,9 @@ read system state information in proc.
<tr><td>
domain
</td><td>
-
+<p>
The process type not to audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -693,9 +796,9 @@ Do not audit attempts to read the ring buffer.
<tr><td>
domain
</td><td>
-
+<p>
The domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -736,9 +839,9 @@ read system state information in proc.
<tr><td>
domain
</td><td>
-
+<p>
The process type not to audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -747,13 +850,13 @@ No
</div>
</div>
-<a name="link_kernel_dontaudit_read_unlabeled_file"></a>
+<a name="link_kernel_dontaudit_read_unlabeled_files"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_dontaudit_read_unlabeled_file</b>(
+<b>kernel_dontaudit_read_unlabeled_files</b>(
@@ -779,9 +882,9 @@ read an unlabeled file.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -821,9 +924,9 @@ Do not audit attempts to search generic kernel sysctls.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -864,9 +967,9 @@ state directory.
<tr><td>
domain
</td><td>
-
+<p>
The process type reading the state.
-
+</p>
</td><td>
No
</td></tr>
@@ -906,9 +1009,9 @@ Do not audit attempts by caller to search network sysctl directories.
<tr><td>
domain
</td><td>
-
+<p>
The process type not to audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -949,9 +1052,9 @@ the base directory of sysctls.
<tr><td>
domain
</td><td>
-
+<p>
The process type not to audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -960,13 +1063,13 @@ No
</div>
</div>
-<a name="link_kernel_dontaudit_use_fd"></a>
+<a name="link_kernel_dontaudit_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_dontaudit_use_fd</b>(
+<b>kernel_dontaudit_use_fds</b>(
@@ -992,9 +1095,9 @@ kernel file descriptors.
<tr><td>
domain
</td><td>
-
+<p>
The type of process not to audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1034,9 +1137,9 @@ Do not audit attempts to write generic kernel sysctls.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1076,9 +1179,9 @@ Get information on all System V IPC objects.
<tr><td>
domain
</td><td>
+<p>
-
-
+</p>
</td><td>
No
</td></tr>
@@ -1087,13 +1190,13 @@ No
</div>
</div>
-<a name="link_kernel_getattr_core"></a>
+<a name="link_kernel_getattr_core_if"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_getattr_core</b>(
+<b>kernel_getattr_core_if</b>(
@@ -1118,9 +1221,9 @@ Allows caller to get attribues of core kernel interface.
<tr><td>
domain
</td><td>
-
+<p>
The process type getting the attibutes.
-
+</p>
</td><td>
No
</td></tr>
@@ -1160,9 +1263,9 @@ Get the attributes of a kernel debugging filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1203,9 +1306,9 @@ interface (/proc/kmsg).
<tr><td>
domain
</td><td>
-
+<p>
The process type getting the attributes.
-
+</p>
</td><td>
No
</td></tr>
@@ -1245,9 +1348,9 @@ Get the attributes of the proc filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1287,9 +1390,9 @@ Get the attributes of files in /proc.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1329,9 +1432,9 @@ Send a kill signal to unlabeled processes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1340,18 +1443,18 @@ No
</div>
</div>
-<a name="link_kernel_list_from"></a>
+<a name="link_kernel_list_proc"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_list_from</b>(
+<b>kernel_list_proc</b>(
- dir_type
+ domain
)<br>
@@ -1360,8 +1463,7 @@ No
<h5>Summary</h5>
<p>
-Allow the kernel to read the contents
-of the specified directory.
+List the contents of directories in /proc.
</p>
@@ -1370,11 +1472,11 @@ of the specified directory.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-dir_type
+domain
</td><td>
-
-Directory type to list.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1383,13 +1485,13 @@ No
</div>
</div>
-<a name="link_kernel_list_proc"></a>
+<a name="link_kernel_list_unlabeled"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_list_proc</b>(
+<b>kernel_list_unlabeled</b>(
@@ -1403,7 +1505,7 @@ No
<h5>Summary</h5>
<p>
-List the contents of directories in /proc.
+List unlabeled directories.
</p>
@@ -1414,9 +1516,9 @@ List the contents of directories in /proc.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1425,13 +1527,13 @@ No
</div>
</div>
-<a name="link_kernel_list_unlabeled"></a>
+<a name="link_kernel_load_module"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_list_unlabeled</b>(
+<b>kernel_load_module</b>(
@@ -1445,7 +1547,7 @@ No
<h5>Summary</h5>
<p>
-List unlabeled directories.
+Allows caller to load kernel modules
</p>
@@ -1456,9 +1558,9 @@ List unlabeled directories.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+The process type to allow to load kernel modules.
+</p>
</td><td>
No
</td></tr>
@@ -1467,13 +1569,13 @@ No
</div>
</div>
-<a name="link_kernel_load_module"></a>
+<a name="link_kernel_mount_debugfs"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_load_module</b>(
+<b>kernel_mount_debugfs</b>(
@@ -1487,7 +1589,7 @@ No
<h5>Summary</h5>
<p>
-Allows caller to load kernel modules
+Mount a kernel debugging filesystem.
</p>
@@ -1498,51 +1600,9 @@ Allows caller to load kernel modules
<tr><td>
domain
</td><td>
-
-The process type to allow to load kernel modules.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_kernel_mount_debugfs"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>kernel_mount_debugfs</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
<p>
-Mount a kernel debugging filesystem.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
The type of the domain mounting the filesystem.
-
+</p>
</td><td>
No
</td></tr>
@@ -1551,13 +1611,13 @@ No
</div>
</div>
-<a name="link_kernel_read_all_sysctl"></a>
+<a name="link_kernel_read_all_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_read_all_sysctl</b>(
+<b>kernel_read_all_sysctls</b>(
@@ -1582,9 +1642,9 @@ Allow caller to read all sysctls.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1624,9 +1684,9 @@ Read information from the debugging filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1635,13 +1695,13 @@ No
</div>
</div>
-<a name="link_kernel_read_device_sysctl"></a>
+<a name="link_kernel_read_device_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_read_device_sysctl</b>(
+<b>kernel_read_device_sysctls</b>(
@@ -1666,52 +1726,9 @@ Allow caller to read the device sysctls.
<tr><td>
domain
</td><td>
-
-The process type to allow to read the device sysctls.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_kernel_read_file_from"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>kernel_read_file_from</b>(
-
-
-
-
- dir_type
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
<p>
-Allow the kernel to read the
-specified file.
+The process type to allow to read the device sysctls.
</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-dir_type
-</td><td>
-
-Directory type to list.
-
</td><td>
No
</td></tr>
@@ -1720,13 +1737,13 @@ No
</div>
</div>
-<a name="link_kernel_read_fs_sysctl"></a>
+<a name="link_kernel_read_fs_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_read_fs_sysctl</b>(
+<b>kernel_read_fs_sysctls</b>(
@@ -1751,9 +1768,9 @@ Read filesystem sysctls.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1762,13 +1779,13 @@ No
</div>
</div>
-<a name="link_kernel_read_hotplug_sysctl"></a>
+<a name="link_kernel_read_hotplug_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_read_hotplug_sysctl</b>(
+<b>kernel_read_hotplug_sysctls</b>(
@@ -1793,9 +1810,9 @@ Read the hotplug sysctl.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1804,13 +1821,13 @@ No
</div>
</div>
-<a name="link_kernel_read_irq_sysctl"></a>
+<a name="link_kernel_read_irq_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_read_irq_sysctl</b>(
+<b>kernel_read_irq_sysctls</b>(
@@ -1835,9 +1852,9 @@ Read IRQ sysctls.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1846,13 +1863,13 @@ No
</div>
</div>
-<a name="link_kernel_read_kernel_sysctl"></a>
+<a name="link_kernel_read_kernel_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_read_kernel_sysctl</b>(
+<b>kernel_read_kernel_sysctls</b>(
@@ -1877,9 +1894,9 @@ Read generic kernel sysctls.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1920,9 +1937,9 @@ using the /proc/kmsg interface.
<tr><td>
domain
</td><td>
-
+<p>
The process type reading the messages.
-
+</p>
</td><td>
No
</td></tr>
@@ -1931,13 +1948,13 @@ No
</div>
</div>
-<a name="link_kernel_read_modprobe_sysctl"></a>
+<a name="link_kernel_read_modprobe_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_read_modprobe_sysctl</b>(
+<b>kernel_read_modprobe_sysctls</b>(
@@ -1962,9 +1979,9 @@ Read the modprobe sysctl.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1973,13 +1990,13 @@ No
</div>
</div>
-<a name="link_kernel_read_net_sysctl"></a>
+<a name="link_kernel_read_net_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_read_net_sysctl</b>(
+<b>kernel_read_net_sysctls</b>(
@@ -2004,9 +2021,9 @@ Allow caller to read network sysctls.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2046,9 +2063,9 @@ Allow caller to read the network state information.
<tr><td>
domain
</td><td>
-
+<p>
The process type reading the state.
-
+</p>
</td><td>
No
</td></tr>
@@ -2088,9 +2105,9 @@ Allow caller to read the network state symbolic links.
<tr><td>
domain
</td><td>
-
+<p>
The process type reading the state.
-
+</p>
</td><td>
No
</td></tr>
@@ -2130,9 +2147,9 @@ Read symbolic links in /proc.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2172,9 +2189,9 @@ Allows caller to read the ring buffer.
<tr><td>
domain
</td><td>
-
+<p>
The process type allowed to read the ring buffer.
-
+</p>
</td><td>
No
</td></tr>
@@ -2183,13 +2200,13 @@ No
</div>
</div>
-<a name="link_kernel_read_rpc_sysctl"></a>
+<a name="link_kernel_read_rpc_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_read_rpc_sysctl</b>(
+<b>kernel_read_rpc_sysctls</b>(
@@ -2214,9 +2231,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -2256,9 +2273,9 @@ Allow caller to read the state information for software raid.
<tr><td>
domain
</td><td>
-
+<p>
The process type reading software raid state.
-
+</p>
</td><td>
No
</td></tr>
@@ -2298,9 +2315,9 @@ Allow access to read sysctl directories.
<tr><td>
domain
</td><td>
-
+<p>
The process type to allow to read sysctl directories.
-
+</p>
</td><td>
No
</td></tr>
@@ -2340,9 +2357,9 @@ Allows caller to read system state information in proc.
<tr><td>
domain
</td><td>
-
+<p>
The process type reading the system state information.
-
+</p>
</td><td>
No
</td></tr>
@@ -2351,13 +2368,13 @@ No
</div>
</div>
-<a name="link_kernel_read_unix_sysctl"></a>
+<a name="link_kernel_read_unix_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_read_unix_sysctl</b>(
+<b>kernel_read_unix_sysctls</b>(
@@ -2383,9 +2400,9 @@ socket sysctls.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2394,13 +2411,13 @@ No
</div>
</div>
-<a name="link_kernel_read_vm_sysctl"></a>
+<a name="link_kernel_read_vm_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_read_vm_sysctl</b>(
+<b>kernel_read_vm_sysctls</b>(
@@ -2425,9 +2442,9 @@ Allow caller to read virtual memory sysctls.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2436,13 +2453,13 @@ No
</div>
</div>
-<a name="link_kernel_relabel_unlabeled"></a>
+<a name="link_kernel_relabelfrom_unlabeled_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_relabel_unlabeled</b>(
+<b>kernel_relabelfrom_unlabeled_dirs</b>(
@@ -2456,7 +2473,7 @@ No
<h5>Summary</h5>
<p>
-Allow caller to relabel unlabeled objects.
+Allow caller to relabel unlabeled directories.
</p>
@@ -2467,9 +2484,9 @@ Allow caller to relabel unlabeled objects.
<tr><td>
domain
</td><td>
-
+<p>
The process type relabeling the objects.
-
+</p>
</td><td>
No
</td></tr>
@@ -2478,13 +2495,13 @@ No
</div>
</div>
-<a name="link_kernel_remount_debugfs"></a>
+<a name="link_kernel_relabelfrom_unlabeled_files"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_remount_debugfs</b>(
+<b>kernel_relabelfrom_unlabeled_files</b>(
@@ -2498,7 +2515,7 @@ No
<h5>Summary</h5>
<p>
-Remount a kernel debugging filesystem.
+Allow caller to relabel unlabeled files.
</p>
@@ -2509,9 +2526,9 @@ Remount a kernel debugging filesystem.
<tr><td>
domain
</td><td>
-
-The type of the domain remounting the filesystem.
-
+<p>
+The process type relabeling the objects.
+</p>
</td><td>
No
</td></tr>
@@ -2520,18 +2537,18 @@ No
</div>
</div>
-<a name="link_kernel_rootfs_mountpoint"></a>
+<a name="link_kernel_relabelfrom_unlabeled_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rootfs_mountpoint</b>(
+<b>kernel_relabelfrom_unlabeled_pipes</b>(
- directory_type
+ domain
)<br>
@@ -2540,8 +2557,7 @@ No
<h5>Summary</h5>
<p>
-Allows the kernel to mount filesystems on
-the specified directory type.
+Allow caller to relabel unlabeled named pipes.
</p>
@@ -2550,11 +2566,11 @@ the specified directory type.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-directory_type
+domain
</td><td>
-
-The type of the directory to use as a mountpoint.
-
+<p>
+The process type relabeling the objects.
+</p>
</td><td>
No
</td></tr>
@@ -2563,13 +2579,13 @@ No
</div>
</div>
-<a name="link_kernel_rw_all_sysctl"></a>
+<a name="link_kernel_relabelfrom_unlabeled_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_all_sysctl</b>(
+<b>kernel_relabelfrom_unlabeled_sockets</b>(
@@ -2583,7 +2599,7 @@ No
<h5>Summary</h5>
<p>
-Read and write all sysctls.
+Allow caller to relabel unlabeled named sockets.
</p>
@@ -2594,9 +2610,9 @@ Read and write all sysctls.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+The process type relabeling the objects.
+</p>
</td><td>
No
</td></tr>
@@ -2605,13 +2621,13 @@ No
</div>
</div>
-<a name="link_kernel_rw_device_sysctl"></a>
+<a name="link_kernel_relabelfrom_unlabeled_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_device_sysctl</b>(
+<b>kernel_relabelfrom_unlabeled_symlinks</b>(
@@ -2625,7 +2641,7 @@ No
<h5>Summary</h5>
<p>
-Read and write device sysctls.
+Allow caller to relabel unlabeled symbolic links.
</p>
@@ -2636,9 +2652,9 @@ Read and write device sysctls.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+The process type relabeling the objects.
+</p>
</td><td>
No
</td></tr>
@@ -2647,13 +2663,13 @@ No
</div>
</div>
-<a name="link_kernel_rw_fs_sysctl"></a>
+<a name="link_kernel_remount_debugfs"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_fs_sysctl</b>(
+<b>kernel_remount_debugfs</b>(
@@ -2667,7 +2683,7 @@ No
<h5>Summary</h5>
<p>
-Read and write fileystem sysctls.
+Remount a kernel debugging filesystem.
</p>
@@ -2678,9 +2694,9 @@ Read and write fileystem sysctls.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+The type of the domain remounting the filesystem.
+</p>
</td><td>
No
</td></tr>
@@ -2689,18 +2705,18 @@ No
</div>
</div>
-<a name="link_kernel_rw_hotplug_sysctl"></a>
+<a name="link_kernel_rootfs_mountpoint"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_hotplug_sysctl</b>(
+<b>kernel_rootfs_mountpoint</b>(
- domain
+ directory_type
)<br>
@@ -2709,7 +2725,8 @@ No
<h5>Summary</h5>
<p>
-Read and write the hotplug sysctl.
+Allows the kernel to mount filesystems on
+the specified directory type.
</p>
@@ -2718,11 +2735,11 @@ Read and write the hotplug sysctl.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+directory_type
</td><td>
-
-Domain allowed access.
-
+<p>
+The type of the directory to use as a mountpoint.
+</p>
</td><td>
No
</td></tr>
@@ -2731,13 +2748,13 @@ No
</div>
</div>
-<a name="link_kernel_rw_irq_sysctl"></a>
+<a name="link_kernel_rw_all_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_irq_sysctl</b>(
+<b>kernel_rw_all_sysctls</b>(
@@ -2751,7 +2768,7 @@ No
<h5>Summary</h5>
<p>
-Read and write IRQ sysctls.
+Read and write all sysctls.
</p>
@@ -2762,9 +2779,9 @@ Read and write IRQ sysctls.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2773,13 +2790,13 @@ No
</div>
</div>
-<a name="link_kernel_rw_kernel_sysctl"></a>
+<a name="link_kernel_rw_device_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_kernel_sysctl</b>(
+<b>kernel_rw_device_sysctls</b>(
@@ -2793,7 +2810,7 @@ No
<h5>Summary</h5>
<p>
-Read and write generic kernel sysctls.
+Read and write device sysctls.
</p>
@@ -2804,9 +2821,9 @@ Read and write generic kernel sysctls.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2815,13 +2832,13 @@ No
</div>
</div>
-<a name="link_kernel_rw_modprobe_sysctl"></a>
+<a name="link_kernel_rw_fs_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_modprobe_sysctl</b>(
+<b>kernel_rw_fs_sysctls</b>(
@@ -2835,7 +2852,7 @@ No
<h5>Summary</h5>
<p>
-Read and write the modprobe sysctl.
+Read and write fileystem sysctls.
</p>
@@ -2846,9 +2863,9 @@ Read and write the modprobe sysctl.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2857,13 +2874,13 @@ No
</div>
</div>
-<a name="link_kernel_rw_net_sysctl"></a>
+<a name="link_kernel_rw_hotplug_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_net_sysctl</b>(
+<b>kernel_rw_hotplug_sysctls</b>(
@@ -2877,7 +2894,7 @@ No
<h5>Summary</h5>
<p>
-Allow caller to modiry contents of sysctl network files.
+Read and write the hotplug sysctl.
</p>
@@ -2888,9 +2905,9 @@ Allow caller to modiry contents of sysctl network files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2899,13 +2916,13 @@ No
</div>
</div>
-<a name="link_kernel_rw_pipe"></a>
+<a name="link_kernel_rw_irq_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_pipe</b>(
+<b>kernel_rw_irq_sysctls</b>(
@@ -2919,7 +2936,7 @@ No
<h5>Summary</h5>
<p>
-Read and write kernel unnamed pipes.
+Read and write IRQ sysctls.
</p>
@@ -2930,9 +2947,9 @@ Read and write kernel unnamed pipes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2941,18 +2958,18 @@ No
</div>
</div>
-<a name="link_kernel_rw_rpc_sysctl"></a>
+<a name="link_kernel_rw_kernel_sysctl"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_rpc_sysctl</b>(
+<b>kernel_rw_kernel_sysctl</b>(
- ?
+ domain
)<br>
@@ -2961,7 +2978,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Read and write generic kernel sysctls.
</p>
@@ -2970,11 +2987,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -2983,13 +3000,13 @@ No
</div>
</div>
-<a name="link_kernel_rw_software_raid_state"></a>
+<a name="link_kernel_rw_modprobe_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_software_raid_state</b>(
+<b>kernel_rw_modprobe_sysctls</b>(
@@ -3003,7 +3020,7 @@ No
<h5>Summary</h5>
<p>
-Allow caller to read and set the state information for software raid.
+Read and write the modprobe sysctl.
</p>
@@ -3014,9 +3031,9 @@ Allow caller to read and set the state information for software raid.
<tr><td>
domain
</td><td>
-
-The process type reading software raid state.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3025,13 +3042,13 @@ No
</div>
</div>
-<a name="link_kernel_rw_unix_dgram_socket"></a>
+<a name="link_kernel_rw_net_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_unix_dgram_socket</b>(
+<b>kernel_rw_net_sysctls</b>(
@@ -3045,7 +3062,7 @@ No
<h5>Summary</h5>
<p>
-Read and write kernel unix datagram sockets.
+Allow caller to modiry contents of sysctl network files.
</p>
@@ -3056,9 +3073,9 @@ Read and write kernel unix datagram sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3067,13 +3084,13 @@ No
</div>
</div>
-<a name="link_kernel_rw_unix_sysctl"></a>
+<a name="link_kernel_rw_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_unix_sysctl</b>(
+<b>kernel_rw_pipes</b>(
@@ -3087,8 +3104,7 @@ No
<h5>Summary</h5>
<p>
-Read and write unix domain
-socket sysctls.
+Read and write kernel unnamed pipes.
</p>
@@ -3099,9 +3115,9 @@ socket sysctls.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3110,18 +3126,18 @@ No
</div>
</div>
-<a name="link_kernel_rw_unlabeled_dir"></a>
+<a name="link_kernel_rw_rpc_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_unlabeled_dir</b>(
+<b>kernel_rw_rpc_sysctls</b>(
- domain
+ ?
)<br>
@@ -3130,7 +3146,7 @@ No
<h5>Summary</h5>
<p>
-Read and write unlabeled directories.
+Summary is missing!
</p>
@@ -3139,11 +3155,11 @@ Read and write unlabeled directories.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -3152,13 +3168,13 @@ No
</div>
</div>
-<a name="link_kernel_rw_vm_sysctl"></a>
+<a name="link_kernel_rw_software_raid_state"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_rw_vm_sysctl</b>(
+<b>kernel_rw_software_raid_state</b>(
@@ -3172,7 +3188,7 @@ No
<h5>Summary</h5>
<p>
-Read and write virtual memory sysctls.
+Allow caller to read and set the state information for software raid.
</p>
@@ -3183,9 +3199,9 @@ Read and write virtual memory sysctls.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+The process type reading software raid state.
+</p>
</td><td>
No
</td></tr>
@@ -3194,13 +3210,13 @@ No
</div>
</div>
-<a name="link_kernel_search_debugfs"></a>
+<a name="link_kernel_rw_unix_dgram_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_search_debugfs</b>(
+<b>kernel_rw_unix_dgram_sockets</b>(
@@ -3214,7 +3230,7 @@ No
<h5>Summary</h5>
<p>
-Search the contents of a kernel debugging filesystem.
+Read and write kernel unix datagram sockets.
</p>
@@ -3225,9 +3241,9 @@ Search the contents of a kernel debugging filesystem.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3236,18 +3252,18 @@ No
</div>
</div>
-<a name="link_kernel_search_from"></a>
+<a name="link_kernel_rw_unix_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_search_from</b>(
+<b>kernel_rw_unix_sysctls</b>(
- dir_type
+ domain
)<br>
@@ -3256,8 +3272,8 @@ No
<h5>Summary</h5>
<p>
-Allow the kernel to search the
-specified directory.
+Read and write unix domain
+socket sysctls.
</p>
@@ -3266,11 +3282,11 @@ specified directory.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-dir_type
+domain
</td><td>
-
-Directory type to search.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3279,13 +3295,13 @@ No
</div>
</div>
-<a name="link_kernel_search_network_state"></a>
+<a name="link_kernel_rw_unlabeled_blk_files"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_search_network_state</b>(
+<b>kernel_rw_unlabeled_blk_files</b>(
@@ -3299,7 +3315,7 @@ No
<h5>Summary</h5>
<p>
-Allow searching of network state directory.
+Read and write unlabeled block device nodes.
</p>
@@ -3310,9 +3326,9 @@ Allow searching of network state directory.
<tr><td>
domain
</td><td>
-
-The process type reading the state.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3321,13 +3337,13 @@ No
</div>
</div>
-<a name="link_kernel_search_network_sysctl"></a>
+<a name="link_kernel_rw_unlabeled_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_search_network_sysctl</b>(
+<b>kernel_rw_unlabeled_dirs</b>(
@@ -3341,7 +3357,7 @@ No
<h5>Summary</h5>
<p>
-Search network sysctl directories.
+Read and write unlabeled directories.
</p>
@@ -3352,9 +3368,9 @@ Search network sysctl directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3363,13 +3379,13 @@ No
</div>
</div>
-<a name="link_kernel_search_proc"></a>
+<a name="link_kernel_rw_vm_sysctls"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_search_proc</b>(
+<b>kernel_rw_vm_sysctls</b>(
@@ -3383,7 +3399,7 @@ No
<h5>Summary</h5>
<p>
-Search directories in /proc.
+Read and write virtual memory sysctls.
</p>
@@ -3394,9 +3410,9 @@ Search directories in /proc.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3405,13 +3421,13 @@ No
</div>
</div>
-<a name="link_kernel_search_vm_sysctl"></a>
+<a name="link_kernel_search_debugfs"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_search_vm_sysctl</b>(
+<b>kernel_search_debugfs</b>(
@@ -3425,7 +3441,7 @@ No
<h5>Summary</h5>
<p>
-Allow caller to search virtual memory sysctls.
+Search the contents of a kernel debugging filesystem.
</p>
@@ -3436,9 +3452,9 @@ Allow caller to search virtual memory sysctls.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3447,26 +3463,18 @@ No
</div>
</div>
-<a name="link_kernel_send_syslog_msg_from"></a>
+<a name="link_kernel_search_network_state"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_send_syslog_msg_from</b>(
-
-
-
-
- socket
-
+<b>kernel_search_network_state</b>(
- ,
-
- syslog_type
+ domain
)<br>
@@ -3475,10 +3483,7 @@ No
<h5>Summary</h5>
<p>
-Allow the kernel to send a syslog
-message to the specified domain,
-connecting over the specified named
-socket.
+Allow searching of network state directory.
</p>
@@ -3487,21 +3492,11 @@ socket.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-socket
-</td><td>
-
-The type of the named socket file.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-syslog_type
+domain
</td><td>
-
-The domain of the syslog daemon.
-
+<p>
+The process type reading the state.
+</p>
</td><td>
No
</td></tr>
@@ -3510,13 +3505,13 @@ No
</div>
</div>
-<a name="link_kernel_sendrecv_unlabeled_association"></a>
+<a name="link_kernel_search_network_sysctl"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_sendrecv_unlabeled_association</b>(
+<b>kernel_search_network_sysctl</b>(
@@ -3530,27 +3525,10 @@ No
<h5>Summary</h5>
<p>
-Send and receive messages from an
-unlabeled IPSEC association.
+Search network sysctl directories.
</p>
-<h5>Description</h5>
-<p>
-</p><p>
-Send and receive messages from an
-unlabeled IPSEC association. Network
-connections that are not protected
-by IPSEC have use an unlabeled
-assocation.
-</p><p>
-</p><p>
-The corenetwork interface
-corenet_non_ipsec_sendrecv() should
-be used instead of this one.
-</p><p>
-</p>
-
<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
@@ -3558,9 +3536,9 @@ be used instead of this one.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3569,13 +3547,13 @@ No
</div>
</div>
-<a name="link_kernel_sendto_unix_dgram_socket"></a>
+<a name="link_kernel_search_proc"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_sendto_unix_dgram_socket</b>(
+<b>kernel_search_proc</b>(
@@ -3589,7 +3567,7 @@ No
<h5>Summary</h5>
<p>
-Send messages to kernel unix datagram sockets.
+Search directories in /proc.
</p>
@@ -3600,9 +3578,9 @@ Send messages to kernel unix datagram sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3611,13 +3589,13 @@ No
</div>
</div>
-<a name="link_kernel_setpgid"></a>
+<a name="link_kernel_search_vm_sysctl"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_setpgid</b>(
+<b>kernel_search_vm_sysctl</b>(
@@ -3631,7 +3609,7 @@ No
<h5>Summary</h5>
<p>
-Set the process group of kernel threads.
+Allow caller to search virtual memory sysctls.
</p>
@@ -3642,9 +3620,9 @@ Set the process group of kernel threads.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3653,13 +3631,13 @@ No
</div>
</div>
-<a name="link_kernel_share_state"></a>
+<a name="link_kernel_sendrecv_unlabeled_association"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_share_state</b>(
+<b>kernel_sendrecv_unlabeled_association</b>(
@@ -3673,11 +3651,27 @@ No
<h5>Summary</h5>
<p>
-Allows the kernel to share state information with
-the caller.
+Send and receive messages from an
+unlabeled IPSEC association.
</p>
+<h5>Description</h5>
+<p>
+</p><p>
+Send and receive messages from an
+unlabeled IPSEC association. Network
+connections that are not protected
+by IPSEC have use an unlabeled
+assocation.
+</p><p>
+</p><p>
+The corenetwork interface
+corenet_non_ipsec_sendrecv() should
+be used instead of this one.
+</p><p>
+</p>
+
<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
@@ -3685,9 +3679,9 @@ the caller.
<tr><td>
domain
</td><td>
-
-The type of the process with which to share state information.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3696,13 +3690,13 @@ No
</div>
</div>
-<a name="link_kernel_sigchld"></a>
+<a name="link_kernel_setpgid"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_sigchld</b>(
+<b>kernel_setpgid</b>(
@@ -3716,7 +3710,7 @@ No
<h5>Summary</h5>
<p>
-Send a SIGCHLD signal to kernel threads.
+Set the process group of kernel threads.
</p>
@@ -3727,9 +3721,9 @@ Send a SIGCHLD signal to kernel threads.
<tr><td>
domain
</td><td>
-
-The type of the process sending the signal.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3738,13 +3732,13 @@ No
</div>
</div>
-<a name="link_kernel_sigchld_from"></a>
+<a name="link_kernel_share_state"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_sigchld_from</b>(
+<b>kernel_share_state</b>(
@@ -3758,8 +3752,8 @@ No
<h5>Summary</h5>
<p>
-Allow the kernel to send a SIGCHLD
-signal to the specified domain.
+Allows the kernel to share state information with
+the caller.
</p>
@@ -3770,9 +3764,9 @@ signal to the specified domain.
<tr><td>
domain
</td><td>
-
-Domain receiving the SIGCHLD.
-
+<p>
+The type of the process with which to share state information.
+</p>
</td><td>
No
</td></tr>
@@ -3781,13 +3775,13 @@ No
</div>
</div>
-<a name="link_kernel_sigchld_from_unlabeled"></a>
+<a name="link_kernel_sigchld"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_sigchld_from_unlabeled</b>(
+<b>kernel_sigchld</b>(
@@ -3801,8 +3795,7 @@ No
<h5>Summary</h5>
<p>
-Allow unlabeled processes to send a SIGCHLD
-signal to the specified domain.
+Send a SIGCHLD signal to kernel threads.
</p>
@@ -3813,9 +3806,9 @@ signal to the specified domain.
<tr><td>
domain
</td><td>
-
-Domain receiving the SIGCHLD.
-
+<p>
+The type of the process sending the signal.
+</p>
</td><td>
No
</td></tr>
@@ -3855,9 +3848,9 @@ Send a child terminated signal to unlabeled processes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3897,9 +3890,9 @@ Send a generic signal to kernel threads.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process sending the signal.
-
+</p>
</td><td>
No
</td></tr>
@@ -3939,9 +3932,9 @@ Send general signals to unlabeled processes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -3981,9 +3974,9 @@ Send a null signal to unlabeled processes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4023,9 +4016,9 @@ Send a stop signal to unlabeled processes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4065,9 +4058,9 @@ Receive messages from kernel TCP sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4107,9 +4100,9 @@ Receive messages from kernel UDP sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4118,13 +4111,13 @@ No
</div>
</div>
-<a name="link_kernel_udp_sendfrom"></a>
+<a name="link_kernel_udp_send"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_udp_sendfrom</b>(
+<b>kernel_udp_send</b>(
@@ -4138,8 +4131,7 @@ No
<h5>Summary</h5>
<p>
-Allow the kernel to send UDP network traffic
-the specified domain.
+Send UDP network traffic to the kernel.
</p>
@@ -4150,9 +4142,9 @@ the specified domain.
<tr><td>
domain
</td><td>
-
-The type of the receiving domain.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -4192,9 +4184,9 @@ Unconfined access to kernel module resources.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4234,193 +4226,9 @@ Unmount a kernel debugging filesystem.
<tr><td>
domain
</td><td>
-
-The type of the domain unmounting the filesystem.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_kernel_use_fd"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>kernel_use_fd</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Permits caller to use kernel file descriptors.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The type of the process using the descriptors.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_kernel_use_ld_so_from"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>kernel_use_ld_so_from</b>(
-
-
-
-
- lib_type
-
-
-
- ,
-
-
-
- ld_type
-
-
-
- ,
-
-
-
- cache_type
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Use the specified types for /lib directory
-and use the dynamic link/loader for automatic loading
-of shared libraries, and the link/loader
-cache.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-lib_type
-</td><td>
-
-The type of the lib directories.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-ld_type
-</td><td>
-
-The type of the dynamic link/loader.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-cache_type
-</td><td>
-
-The type of the dynamic link/loader cache.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_kernel_use_shared_libs_from"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>kernel_use_shared_libs_from</b>(
-
-
-
-
- lib_dir_type
-
-
-
- ,
-
-
-
- shlib_type
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
<p>
-Allow the kernel to load and execute
-functions from the specified shared libraries.
+The type of the domain unmounting the filesystem.
</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-lib_dir_type
-</td><td>
-
-The type of the lib directories.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-shlib_type
-</td><td>
-
-Shared library type.
-
</td><td>
No
</td></tr>
@@ -4429,13 +4237,13 @@ No
</div>
</div>
-<a name="link_kernel_use_unlabeled_blk_dev"></a>
+<a name="link_kernel_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_use_unlabeled_blk_dev</b>(
+<b>kernel_use_fds</b>(
@@ -4449,7 +4257,7 @@ No
<h5>Summary</h5>
<p>
-Read and write unlabeled block device nodes.
+Permits caller to use kernel file descriptors.
</p>
@@ -4460,70 +4268,9 @@ Read and write unlabeled block device nodes.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-<a name="link_kernel_userland_entry"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>kernel_userland_entry</b>(
-
-
-
-
- domain
-
-
-
- ,
-
-
-
- entrypoint
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
<p>
-Allows to start userland processes
-by transitioning to the specified domain.
+The type of the process using the descriptors.
</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-The process type entered by kernel.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-entrypoint
-</td><td>
-
-The executable type for the entrypoint.
-
</td><td>
No
</td></tr>
@@ -4532,13 +4279,13 @@ No
</div>
</div>
-<a name="link_kernel_write_proc_file"></a>
+<a name="link_kernel_write_proc_files"></a>
<div id="interface">
<div id="codeblock">
-<b>kernel_write_proc_file</b>(
+<b>kernel_write_proc_files</b>(
@@ -4563,9 +4310,9 @@ Write to generic proc entries.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/kernel_mcs.html b/www/api-docs/kernel_mcs.html
new file mode 100644
index 0000000..49d1be6
--- /dev/null
+++ b/www/api-docs/kernel_mcs.html
@@ -0,0 +1,157 @@
+<html>
+<head>
+<title>
+ Security Enhanced Linux Reference Policy
+ </title>
+<style type="text/css" media="all">@import "style.css";</style>
+</head>
+<body>
+<div id="Header">Security Enhanced Linux Reference Policy</div>
+<div id='Menu'>
+
+ <a href="admin.html">+
+ admin</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="apps.html">+
+ apps</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="kernel.html">+
+ kernel</a></br/>
+ <div id='subitem'>
+
+ - <a href='kernel_corecommands.html'>
+ corecommands</a><br/>
+
+ - <a href='kernel_corenetwork.html'>
+ corenetwork</a><br/>
+
+ - <a href='kernel_devices.html'>
+ devices</a><br/>
+
+ - <a href='kernel_domain.html'>
+ domain</a><br/>
+
+ - <a href='kernel_files.html'>
+ files</a><br/>
+
+ - <a href='kernel_filesystem.html'>
+ filesystem</a><br/>
+
+ - <a href='kernel_kernel.html'>
+ kernel</a><br/>
+
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
+ - <a href='kernel_mls.html'>
+ mls</a><br/>
+
+ - <a href='kernel_selinux.html'>
+ selinux</a><br/>
+
+ - <a href='kernel_storage.html'>
+ storage</a><br/>
+
+ - <a href='kernel_terminal.html'>
+ terminal</a><br/>
+
+ </div>
+
+ <a href="services.html">+
+ services</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="system.html">+
+ system</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <br/><p/>
+ <a href="global_booleans.html">* Global Booleans </a>
+ <br/><p/>
+ <a href="global_tunables.html">* Global Tunables </a>
+ <p/><br/><p/>
+ <a href="index.html">* Layer Index</a>
+ <br/><p/>
+ <a href="interfaces.html">* Interface Index</a>
+ <br/><p/>
+ <a href="templates.html">* Template Index</a>
+</div>
+
+<div id="Content">
+<a name="top":></a>
+<h1>Layer: kernel</h1><p/>
+<h2>Module: mcs</h2><p/>
+
+<h3>Description:</h3>
+
+<p><p>Multicategory security policy</p></p>
+
+
+<p>This module is required to be included in all policies.</p>
+
+
+<a name="interfaces"></a>
+<h3>Interfaces: </h3>
+
+<a name="link_mcs_killall"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>mcs_killall</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+This domain is allowed to sigkill and sigstop
+all domains regardless of their MCS level.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain target for user exemption.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+
+
+</div>
+</body>
+</html>
diff --git a/www/api-docs/kernel_mls.html b/www/api-docs/kernel_mls.html
index c8c820b..01643c7 100644
--- a/www/api-docs/kernel_mls.html
+++ b/www/api-docs/kernel_mls.html
@@ -25,9 +25,6 @@
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -49,6 +46,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -142,9 +142,9 @@ for lowering the level of files.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -185,9 +185,9 @@ for reading from files at higher levels.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -228,9 +228,9 @@ for raising the level of files.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -271,9 +271,9 @@ for writing to files at lower levels.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -314,9 +314,9 @@ for reading from processes at higher levels.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -358,9 +358,9 @@ it executes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -401,9 +401,9 @@ for writing to processes at lower levels.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -445,9 +445,9 @@ the current level.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -489,9 +489,9 @@ the current level.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -544,9 +544,9 @@ objects, for example, files and directories.
<tr><td>
domain
</td><td>
-
+<p>
The type of the object.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/kernel_selinux.html b/www/api-docs/kernel_selinux.html
index de51cbf..96fb982 100644
--- a/www/api-docs/kernel_selinux.html
+++ b/www/api-docs/kernel_selinux.html
@@ -25,9 +25,6 @@
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -49,6 +46,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -136,9 +136,9 @@ Allows caller to compute an access vector.
<tr><td>
domain
</td><td>
-
+<p>
The process type allowed to compute an access vector.
-
+</p>
</td><td>
No
</td></tr>
@@ -178,9 +178,9 @@ Calculate the default type for object creation.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -221,9 +221,9 @@ directory members.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -274,9 +274,9 @@ a terminal when a user logs in.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -316,9 +316,9 @@ Allows caller to compute possible contexts for a user.
<tr><td>
domain
</td><td>
-
+<p>
The process type allowed to compute user contexts.
-
+</p>
</td><td>
No
</td></tr>
@@ -359,9 +359,9 @@ attributes of the selinuxfs directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -402,9 +402,9 @@ generic selinuxfs entries
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -444,9 +444,9 @@ Do not audit attempts to search selinuxfs.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -487,9 +487,9 @@ Allows the caller to get the mode of policy enforcement
<tr><td>
domain
</td><td>
-
+<p>
The process type to allow to get the enforcing mode.
-
+</p>
</td><td>
No
</td></tr>
@@ -529,9 +529,9 @@ Gets the caller the mountpoint of the selinuxfs filesystem.
<tr><td>
domain
</td><td>
-
+<p>
The process type requesting the selinuxfs mountpoint.
-
+</p>
</td><td>
No
</td></tr>
@@ -571,9 +571,9 @@ Allow caller to load the policy into the kernel.
<tr><td>
domain
</td><td>
-
+<p>
The process type that will load the policy.
-
+</p>
</td><td>
No
</td></tr>
@@ -613,9 +613,9 @@ Search selinuxfs.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -668,9 +668,9 @@ always audited.
<tr><td>
domain
</td><td>
-
+<p>
The process type allowed to set the Boolean.
-
+</p>
</td><td>
No
</td></tr>
@@ -723,9 +723,9 @@ always audited.
<tr><td>
domain
</td><td>
-
+<p>
The process type to allow to set the enforcement mode.
-
+</p>
</td><td>
No
</td></tr>
@@ -778,9 +778,9 @@ always audited.
<tr><td>
domain
</td><td>
-
+<p>
The process type to allow to set security parameters.
-
+</p>
</td><td>
No
</td></tr>
@@ -820,9 +820,9 @@ Unconfined access to the SELinux kernel security server.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -862,9 +862,9 @@ Allows caller to validate security contexts.
<tr><td>
domain
</td><td>
-
+<p>
The process type permitted to validate contexts.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/kernel_storage.html b/www/api-docs/kernel_storage.html
index 0996017..dfdda44 100644
--- a/www/api-docs/kernel_storage.html
+++ b/www/api-docs/kernel_storage.html
@@ -25,9 +25,6 @@
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -49,6 +46,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -101,13 +101,13 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
-<a name="link_storage_create_fixed_disk"></a>
+<a name="link_storage_dev_filetrans_fixed_disk"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_create_fixed_disk</b>(
+<b>storage_dev_filetrans_fixed_disk</b>(
@@ -121,7 +121,8 @@
<h5>Summary</h5>
<p>
-Create block devices in /dev with the fixed disk type.
+Create block devices in /dev with the fixed disk type
+via an automatic type transition.
</p>
@@ -132,9 +133,9 @@ Create block devices in /dev with the fixed disk type.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -143,13 +144,13 @@ No
</div>
</div>
-<a name="link_storage_create_fixed_disk_tmpfs"></a>
+<a name="link_storage_dontaudit_getattr_fixed_disk_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_create_fixed_disk_tmpfs</b>(
+<b>storage_dontaudit_getattr_fixed_disk_dev</b>(
@@ -163,7 +164,8 @@ No
<h5>Summary</h5>
<p>
-Create fixed disk device nodes on a tmpfs filesystem.
+Do not audit attempts made by the caller to get
+the attributes of fixed disk device nodes.
</p>
@@ -174,9 +176,9 @@ Create fixed disk device nodes on a tmpfs filesystem.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+The type of the process to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -185,13 +187,13 @@ No
</div>
</div>
-<a name="link_storage_dontaudit_getattr_fixed_disk"></a>
+<a name="link_storage_dontaudit_getattr_removable_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_dontaudit_getattr_fixed_disk</b>(
+<b>storage_dontaudit_getattr_removable_dev</b>(
@@ -206,7 +208,7 @@ No
<h5>Summary</h5>
<p>
Do not audit attempts made by the caller to get
-the attributes of fixed disk device nodes.
+the attributes of removable devices device nodes.
</p>
@@ -217,9 +219,9 @@ the attributes of fixed disk device nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -228,13 +230,13 @@ No
</div>
</div>
-<a name="link_storage_dontaudit_getattr_removable_device"></a>
+<a name="link_storage_dontaudit_raw_read_removable_device"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_dontaudit_getattr_removable_device</b>(
+<b>storage_dontaudit_raw_read_removable_device</b>(
@@ -248,8 +250,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts made by the caller to get
-the attributes of removable devices device nodes.
+Do not audit attempts to directly read removable devices.
</p>
@@ -260,9 +261,51 @@ the attributes of removable devices device nodes.
<tr><td>
domain
</td><td>
+<p>
+Domain to not audit.
+</p>
+</td><td>
+No
+</td></tr>
-The type of the process to not audit.
+</table>
+</div>
+</div>
+
+<a name="link_storage_dontaudit_raw_write_removable_device"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+<b>storage_dontaudit_raw_write_removable_device</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to directly write removable devices.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -303,9 +346,9 @@ fixed disk device nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -346,9 +389,9 @@ removable devices device nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -357,13 +400,13 @@ No
</div>
</div>
-<a name="link_storage_dontaudit_setattr_fixed_disk"></a>
+<a name="link_storage_dontaudit_rw_scsi_generic"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_dontaudit_setattr_fixed_disk</b>(
+<b>storage_dontaudit_rw_scsi_generic</b>(
@@ -377,8 +420,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts made by the caller to set
-the attributes of fixed disk device nodes.
+Do not audit attempts to read or write
+SCSI generic device interfaces.
</p>
@@ -389,9 +432,9 @@ the attributes of fixed disk device nodes.
<tr><td>
domain
</td><td>
-
-The type of the process to not audit.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -400,13 +443,13 @@ No
</div>
</div>
-<a name="link_storage_dontaudit_setattr_removable_device"></a>
+<a name="link_storage_dontaudit_setattr_fixed_disk_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_dontaudit_setattr_removable_device</b>(
+<b>storage_dontaudit_setattr_fixed_disk_dev</b>(
@@ -421,7 +464,7 @@ No
<h5>Summary</h5>
<p>
Do not audit attempts made by the caller to set
-the attributes of removable devices device nodes.
+the attributes of fixed disk device nodes.
</p>
@@ -432,9 +475,9 @@ the attributes of removable devices device nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -443,13 +486,13 @@ No
</div>
</div>
-<a name="link_storage_getattr_fixed_disk"></a>
+<a name="link_storage_dontaudit_setattr_removable_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_getattr_fixed_disk</b>(
+<b>storage_dontaudit_setattr_removable_dev</b>(
@@ -463,8 +506,8 @@ No
<h5>Summary</h5>
<p>
-Allow the caller to get the attributes of fixed disk
-device nodes.
+Do not audit attempts made by the caller to set
+the attributes of removable devices device nodes.
</p>
@@ -475,9 +518,9 @@ device nodes.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+The type of the process to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -486,13 +529,13 @@ No
</div>
</div>
-<a name="link_storage_getattr_removable_device"></a>
+<a name="link_storage_dontaudit_write_fixed_disk"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_getattr_removable_device</b>(
+<b>storage_dontaudit_write_fixed_disk</b>(
@@ -506,8 +549,8 @@ No
<h5>Summary</h5>
<p>
-Allow the caller to get the attributes of removable
-devices device nodes.
+Do not audit attempts made by the caller to write
+fixed disk device nodes.
</p>
@@ -518,9 +561,9 @@ devices device nodes.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -529,13 +572,13 @@ No
</div>
</div>
-<a name="link_storage_getattr_scsi_generic"></a>
+<a name="link_storage_getattr_fixed_disk_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_getattr_scsi_generic</b>(
+<b>storage_getattr_fixed_disk_dev</b>(
@@ -549,8 +592,8 @@ No
<h5>Summary</h5>
<p>
-Allow the caller to get the attributes of
-the generic SCSI interface device nodes.
+Allow the caller to get the attributes of fixed disk
+device nodes.
</p>
@@ -561,9 +604,9 @@ the generic SCSI interface device nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -572,13 +615,13 @@ No
</div>
</div>
-<a name="link_storage_getattr_tape_device"></a>
+<a name="link_storage_getattr_removable_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_getattr_tape_device</b>(
+<b>storage_getattr_removable_dev</b>(
@@ -592,8 +635,8 @@ No
<h5>Summary</h5>
<p>
-Allow the caller to get the attributes
-of device nodes of tape devices.
+Allow the caller to get the attributes of removable
+devices device nodes.
</p>
@@ -604,9 +647,9 @@ of device nodes of tape devices.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -615,13 +658,13 @@ No
</div>
</div>
-<a name="link_storage_manage_fixed_disk"></a>
+<a name="link_storage_getattr_scsi_generic_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_manage_fixed_disk</b>(
+<b>storage_getattr_scsi_generic_dev</b>(
@@ -635,7 +678,8 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete fixed disk device nodes.
+Allow the caller to get the attributes of
+the generic SCSI interface device nodes.
</p>
@@ -646,9 +690,9 @@ Create, read, write, and delete fixed disk device nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -657,13 +701,13 @@ No
</div>
</div>
-<a name="link_storage_raw_read_fixed_disk"></a>
+<a name="link_storage_getattr_tape_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_raw_read_fixed_disk</b>(
+<b>storage_getattr_tape_dev</b>(
@@ -677,10 +721,8 @@ No
<h5>Summary</h5>
<p>
-Allow the caller to directly read from a fixed disk.
-This is extremly dangerous as it can bypass the
-SELinux protections for filesystem objects, and
-should only be used by trusted domains.
+Allow the caller to get the attributes
+of device nodes of tape devices.
</p>
@@ -691,9 +733,9 @@ should only be used by trusted domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -702,13 +744,13 @@ No
</div>
</div>
-<a name="link_storage_raw_read_lvm_volume"></a>
+<a name="link_storage_manage_fixed_disk"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_raw_read_lvm_volume</b>(
+<b>storage_manage_fixed_disk</b>(
@@ -722,10 +764,7 @@ No
<h5>Summary</h5>
<p>
-Allow the caller to directly read from a logical volume.
-This is extremly dangerous as it can bypass the
-SELinux protections for filesystem objects, and
-should only be used by trusted domains.
+Create, read, write, and delete fixed disk device nodes.
</p>
@@ -736,9 +775,9 @@ should only be used by trusted domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -747,13 +786,13 @@ No
</div>
</div>
-<a name="link_storage_raw_read_removable_device"></a>
+<a name="link_storage_raw_read_fixed_disk"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_raw_read_removable_device</b>(
+<b>storage_raw_read_fixed_disk</b>(
@@ -767,8 +806,7 @@ No
<h5>Summary</h5>
<p>
-Allow the caller to directly read from
-a removable device.
+Allow the caller to directly read from a fixed disk.
This is extremly dangerous as it can bypass the
SELinux protections for filesystem objects, and
should only be used by trusted domains.
@@ -782,9 +820,9 @@ should only be used by trusted domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -793,13 +831,13 @@ No
</div>
</div>
-<a name="link_storage_raw_write_fixed_disk"></a>
+<a name="link_storage_raw_read_removable_device"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_raw_write_fixed_disk</b>(
+<b>storage_raw_read_removable_device</b>(
@@ -813,7 +851,8 @@ No
<h5>Summary</h5>
<p>
-Allow the caller to directly write to a fixed disk.
+Allow the caller to directly read from
+a removable device.
This is extremly dangerous as it can bypass the
SELinux protections for filesystem objects, and
should only be used by trusted domains.
@@ -827,9 +866,9 @@ should only be used by trusted domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -838,13 +877,13 @@ No
</div>
</div>
-<a name="link_storage_raw_write_lvm_volume"></a>
+<a name="link_storage_raw_write_fixed_disk"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_raw_write_lvm_volume</b>(
+<b>storage_raw_write_fixed_disk</b>(
@@ -858,7 +897,7 @@ No
<h5>Summary</h5>
<p>
-Allow the caller to directly read from a logical volume.
+Allow the caller to directly write to a fixed disk.
This is extremly dangerous as it can bypass the
SELinux protections for filesystem objects, and
should only be used by trusted domains.
@@ -872,9 +911,9 @@ should only be used by trusted domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -918,9 +957,9 @@ should only be used by trusted domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -964,9 +1003,9 @@ should only be used by trusted domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -975,13 +1014,13 @@ No
</div>
</div>
-<a name="link_storage_read_tape_device"></a>
+<a name="link_storage_read_tape"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_read_tape_device</b>(
+<b>storage_read_tape</b>(
@@ -1007,9 +1046,9 @@ a tape device.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1049,9 +1088,9 @@ Relabel fixed disk device nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1060,13 +1099,13 @@ No
</div>
</div>
-<a name="link_storage_set_scsi_generic_attributes"></a>
+<a name="link_storage_setattr_fixed_disk_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_set_scsi_generic_attributes</b>(
+<b>storage_setattr_fixed_disk_dev</b>(
@@ -1080,8 +1119,8 @@ No
<h5>Summary</h5>
<p>
-Set attributes of the device nodes
-for the SCSI generic inerface.
+Allow the caller to set the attributes of fixed disk
+device nodes.
</p>
@@ -1092,9 +1131,9 @@ for the SCSI generic inerface.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1103,13 +1142,13 @@ No
</div>
</div>
-<a name="link_storage_setattr_fixed_disk"></a>
+<a name="link_storage_setattr_removable_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_setattr_fixed_disk</b>(
+<b>storage_setattr_removable_dev</b>(
@@ -1123,8 +1162,8 @@ No
<h5>Summary</h5>
<p>
-Allow the caller to set the attributes of fixed disk
-device nodes.
+Allow the caller to set the attributes of removable
+devices device nodes.
</p>
@@ -1135,9 +1174,9 @@ device nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1146,13 +1185,13 @@ No
</div>
</div>
-<a name="link_storage_setattr_removable_device"></a>
+<a name="link_storage_setattr_scsi_generic_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_setattr_removable_device</b>(
+<b>storage_setattr_scsi_generic_dev</b>(
@@ -1166,8 +1205,8 @@ No
<h5>Summary</h5>
<p>
-Allow the caller to set the attributes of removable
-devices device nodes.
+Allow the caller to set the attributes of
+the generic SCSI interface device nodes.
</p>
@@ -1178,9 +1217,9 @@ devices device nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1189,13 +1228,13 @@ No
</div>
</div>
-<a name="link_storage_setattr_scsi_generic"></a>
+<a name="link_storage_setattr_scsi_generic_dev_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_setattr_scsi_generic</b>(
+<b>storage_setattr_scsi_generic_dev_dev</b>(
@@ -1209,8 +1248,8 @@ No
<h5>Summary</h5>
<p>
-Allow the caller to set the attributes of
-the generic SCSI interface device nodes.
+Set attributes of the device nodes
+for the SCSI generic inerface.
</p>
@@ -1221,9 +1260,9 @@ the generic SCSI interface device nodes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1232,13 +1271,13 @@ No
</div>
</div>
-<a name="link_storage_setattr_tape_device"></a>
+<a name="link_storage_setattr_tape_dev"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_setattr_tape_device</b>(
+<b>storage_setattr_tape_dev</b>(
@@ -1264,9 +1303,9 @@ of device nodes of tape devices.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1306,9 +1345,52 @@ Enable a fixed disk device as swap space
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_storage_tmpfs_filetrans_fixed_disk"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>storage_tmpfs_filetrans_fixed_disk</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Create block devices in on a tmpfs filesystem with the
+fixed disk type via an automatic type transition.
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -1348,9 +1430,9 @@ Unconfined access to storage devices.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1394,9 +1476,9 @@ should only be used by trusted domains.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1405,13 +1487,13 @@ No
</div>
</div>
-<a name="link_storage_write_tape_device"></a>
+<a name="link_storage_write_tape"></a>
<div id="interface">
<div id="codeblock">
-<b>storage_write_tape_device</b>(
+<b>storage_write_tape</b>(
@@ -1437,9 +1519,9 @@ a tape device.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/kernel_terminal.html b/www/api-docs/kernel_terminal.html
index 5915faa..037110c 100644
--- a/www/api-docs/kernel_terminal.html
+++ b/www/api-docs/kernel_terminal.html
@@ -25,9 +25,6 @@
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -49,6 +46,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -142,9 +142,9 @@ Create a pty in the /dev/pts directory.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process creating the pty.
-
+</p>
</td><td>
No
</td></tr>
@@ -152,9 +152,9 @@ No
<tr><td>
pty_type
</td><td>
-
+<p>
The type of the pty.
-
+</p>
</td><td>
No
</td></tr>
@@ -196,9 +196,9 @@ device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -240,9 +240,9 @@ device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -251,13 +251,13 @@ No
</div>
</div>
-<a name="link_term_dontaudit_getattr_pty_dir"></a>
+<a name="link_term_dontaudit_getattr_pty_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>term_dontaudit_getattr_pty_dir</b>(
+<b>term_dontaudit_getattr_pty_dirs</b>(
@@ -283,9 +283,9 @@ attributes of the /dev/pts directory.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -326,9 +326,9 @@ of all unallocated tty device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -369,9 +369,9 @@ unallocated tty device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -412,9 +412,9 @@ Do not audit attempts to read the
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -423,13 +423,13 @@ No
</div>
</div>
-<a name="link_term_dontaudit_manage_pty_dir"></a>
+<a name="link_term_dontaudit_manage_pty_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>term_dontaudit_manage_pty_dir</b>(
+<b>term_dontaudit_manage_pty_dirs</b>(
@@ -455,9 +455,9 @@ write, or delete the /dev/pts directory.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -498,9 +498,9 @@ contents of the /dev/pts directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -541,9 +541,9 @@ user ptys.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -584,9 +584,9 @@ any user ttys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -627,9 +627,9 @@ or write to the console.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -638,13 +638,13 @@ No
</div>
</div>
-<a name="link_term_dontaudit_use_generic_pty"></a>
+<a name="link_term_dontaudit_use_generic_ptys"></a>
<div id="interface">
<div id="codeblock">
-<b>term_dontaudit_use_generic_pty</b>(
+<b>term_dontaudit_use_generic_ptys</b>(
@@ -671,9 +671,9 @@ generally only used in the targeted policy.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -714,9 +714,9 @@ write the pty multiplexor (/dev/ptmx).
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -725,13 +725,13 @@ No
</div>
</div>
-<a name="link_term_dontaudit_use_unallocated_tty"></a>
+<a name="link_term_dontaudit_use_unallocated_ttys"></a>
<div id="interface">
<div id="codeblock">
-<b>term_dontaudit_use_unallocated_tty</b>(
+<b>term_dontaudit_use_unallocated_ttys</b>(
@@ -757,9 +757,9 @@ write unallocated ttys.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -800,9 +800,9 @@ pty device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -843,9 +843,9 @@ device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -886,9 +886,9 @@ tty device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -897,13 +897,13 @@ No
</div>
</div>
-<a name="link_term_ioctl_generic_pty"></a>
+<a name="link_term_ioctl_generic_ptys"></a>
<div id="interface">
<div id="codeblock">
-<b>term_ioctl_generic_pty</b>(
+<b>term_ioctl_generic_ptys</b>(
@@ -928,9 +928,9 @@ ioctl of generic pty types.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -971,9 +971,9 @@ list all ptys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1014,9 +1014,9 @@ used by login programs, such as sshd.
<tr><td>
pty_type
</td><td>
-
+<p>
An object type that will applied to a pty.
-
+</p>
</td><td>
No
</td></tr>
@@ -1056,9 +1056,9 @@ Transform specified type into a pty type.
<tr><td>
pty_type
</td><td>
-
+<p>
An object type that will applied to a pty.
-
+</p>
</td><td>
No
</td></tr>
@@ -1098,9 +1098,9 @@ Read from the console.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1141,9 +1141,9 @@ user pty device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1184,9 +1184,9 @@ user tty device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1227,9 +1227,9 @@ tty type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1269,9 +1269,9 @@ Relabel to all user ptys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1312,9 +1312,9 @@ the unallocated tty type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1354,9 +1354,9 @@ Search the contents of the /dev/pts directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1397,9 +1397,9 @@ pty device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1440,9 +1440,9 @@ device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1483,9 +1483,9 @@ device node.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1526,9 +1526,9 @@ tty device nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1568,9 +1568,9 @@ Transform specified type into a tty type.
<tr><td>
tty_type
</td><td>
-
+<p>
An object type that will applied to a tty.
-
+</p>
</td><td>
No
</td></tr>
@@ -1611,9 +1611,9 @@ ttys and all ptys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1653,9 +1653,9 @@ Read and write all user ptys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1695,9 +1695,9 @@ Read and write all user to all user ttys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1737,9 +1737,9 @@ Read from and write to the console.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1780,9 +1780,9 @@ terminal (/dev/tty).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1791,13 +1791,13 @@ No
</div>
</div>
-<a name="link_term_use_generic_pty"></a>
+<a name="link_term_use_generic_ptys"></a>
<div id="interface">
<div id="codeblock">
-<b>term_use_generic_pty</b>(
+<b>term_use_generic_ptys</b>(
@@ -1824,9 +1824,9 @@ the targeted policy.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1866,9 +1866,9 @@ Read and write the pty multiplexor (/dev/ptmx).
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to allow access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1877,13 +1877,13 @@ No
</div>
</div>
-<a name="link_term_use_unallocated_tty"></a>
+<a name="link_term_use_unallocated_ttys"></a>
<div id="interface">
<div id="codeblock">
-<b>term_use_unallocated_tty</b>(
+<b>term_use_unallocated_ttys</b>(
@@ -1908,9 +1908,9 @@ Read and write unallocated ttys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1960,10 +1960,10 @@ type change by login programs such as ssh.
<tr><td>
userdomain
</td><td>
-
+<p>
The type of the user domain associated with
this pty.
-
+</p>
</td><td>
No
</td></tr>
@@ -1971,9 +1971,9 @@ No
<tr><td>
object_type
</td><td>
-
+<p>
An object type that will applied to a pty.
-
+</p>
</td><td>
No
</td></tr>
@@ -2013,9 +2013,9 @@ Write to all user ttys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2055,9 +2055,9 @@ Write to the console.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2097,9 +2097,9 @@ Write to unallocated ttys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services.html b/www/api-docs/services.html
index cd38764..4b549ae 100644
--- a/www/api-docs/services.html
+++ b/www/api-docs/services.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -704,16 +704,16 @@ from Windows NT servers.
<td><p>Unix to Unix Copy</p></td>
<tr><td>
- <a href='services_xdm.html'>
- xdm</a></td>
- <td><p>X windows login display manager</p></td>
-
- <tr><td>
<a href='services_xfs.html'>
xfs</a></td>
<td><p>X Windows Font Server </p></td>
<tr><td>
+ <a href='services_xserver.html'>
+ xserver</a></td>
+ <td><p>X Windows Server</p></td>
+
+ <tr><td>
<a href='services_zebra.html'>
zebra</a></td>
<td><p>Zebra border gateway protocol network routing service</p></td>
diff --git a/www/api-docs/services_apache.html b/www/api-docs/services_apache.html
index 2b2fcc1..85409b7 100644
--- a/www/api-docs/services_apache.html
+++ b/www/api-docs/services_apache.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -340,9 +340,9 @@ apache squirrelmail data.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -382,9 +382,9 @@ Transition to apache.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -425,9 +425,9 @@ script domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -468,9 +468,9 @@ a domain transition.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -511,9 +511,9 @@ script domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -554,9 +554,9 @@ Apache logs.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -565,13 +565,13 @@ No
</div>
</div>
-<a name="link_apache_dontaudit_rw_stream_socket"></a>
+<a name="link_apache_dontaudit_rw_stream_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>apache_dontaudit_rw_stream_socket</b>(
+<b>apache_dontaudit_rw_stream_sockets</b>(
@@ -597,9 +597,9 @@ unix domain stream sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -608,13 +608,13 @@ No
</div>
</div>
-<a name="link_apache_dontaudit_rw_sys_script_stream_socket"></a>
+<a name="link_apache_dontaudit_rw_sys_script_stream_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>apache_dontaudit_rw_sys_script_stream_socket</b>(
+<b>apache_dontaudit_rw_sys_script_stream_sockets</b>(
@@ -640,9 +640,9 @@ system script unix domain stream sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -651,13 +651,13 @@ No
</div>
</div>
-<a name="link_apache_dontaudit_rw_tcp_socket"></a>
+<a name="link_apache_dontaudit_rw_tcp_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>apache_dontaudit_rw_tcp_socket</b>(
+<b>apache_dontaudit_rw_tcp_sockets</b>(
@@ -683,9 +683,9 @@ TCP sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -726,9 +726,52 @@ module directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_apache_exec_modules"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>apache_exec_modules</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Allow the specified domain to execute
+apache modules.
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -770,9 +813,9 @@ directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -813,9 +856,9 @@ apache system content files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -856,9 +899,9 @@ apache configuration files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -899,9 +942,9 @@ apache log files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -942,9 +985,51 @@ apache squirrelmail data.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_apache_read_sys_content"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+<b>apache_read_sys_content</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read apache system content
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -994,9 +1079,9 @@ to the specified role.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1004,9 +1089,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the script domains.
-
+</p>
</td><td>
No
</td></tr>
@@ -1064,9 +1149,9 @@ specified role the dmidecode domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1074,9 +1159,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the dmidecode domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -1084,9 +1169,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the dmidecode domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -1126,9 +1211,9 @@ Search system script state directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -1168,9 +1253,9 @@ Send a SIGCHLD signal to apache.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1210,9 +1295,9 @@ Send a null signal to apache.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1221,13 +1306,13 @@ No
</div>
</div>
-<a name="link_apache_use_fd"></a>
+<a name="link_apache_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>apache_use_fd</b>(
+<b>apache_use_fds</b>(
@@ -1252,9 +1337,9 @@ Inherit and use file descriptors from Apache.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1302,9 +1387,9 @@ web content.
<tr><td>
prefix
</td><td>
-
+<p>
The prefix to be used for deriving type names.
-
+</p>
</td><td>
No
</td></tr>
@@ -1373,10 +1458,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -1384,9 +1469,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -1394,9 +1479,9 @@ No
<tr><td>
user_role
</td><td>
-
+<p>
The role associated with the user domain.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_apm.html b/www/api-docs/services_apm.html
index d169cd5..91da64b 100644
--- a/www/api-docs/services_apm.html
+++ b/www/api-docs/services_apm.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Append to apm's log file.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,9 @@ Execute APM in the apm domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -389,13 +389,13 @@ No
</div>
</div>
-<a name="link_apm_rw_stream_socket"></a>
+<a name="link_apm_rw_stream_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>apm_rw_stream_socket</b>(
+<b>apm_rw_stream_sockets</b>(
@@ -420,9 +420,9 @@ Read and write to an apm unix stream socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -462,9 +462,9 @@ Connect to apmd over an unix stream socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -473,13 +473,13 @@ No
</div>
</div>
-<a name="link_apm_use_fd"></a>
+<a name="link_apm_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>apm_use_fd</b>(
+<b>apm_use_fds</b>(
@@ -504,9 +504,9 @@ Use file descriptors for apmd.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -515,13 +515,13 @@ No
</div>
</div>
-<a name="link_apm_write_pipe"></a>
+<a name="link_apm_write_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>apm_write_pipe</b>(
+<b>apm_write_pipes</b>(
@@ -546,9 +546,9 @@ Write to apmd unnamed pipes.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_arpwatch.html b/www/api-docs/services_arpwatch.html
index 48266bf..ea5858d 100644
--- a/www/api-docs/services_arpwatch.html
+++ b/www/api-docs/services_arpwatch.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -305,13 +305,13 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
-<a name="link_arpwatch_dontaudit_rw_packet_socket"></a>
+<a name="link_arpwatch_dontaudit_rw_packet_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>arpwatch_dontaudit_rw_packet_socket</b>(
+<b>arpwatch_dontaudit_rw_packet_sockets</b>(
@@ -337,9 +337,9 @@ arpwatch packet sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -379,9 +379,9 @@ Create arpwatch data files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -421,9 +421,9 @@ Read and write arpwatch temporary files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -463,9 +463,9 @@ Read and write arpwatch temporary files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -505,9 +505,9 @@ Search arpwatch's data file directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_automount.html b/www/api-docs/services_automount.html
index 8b57fd2..cb768e5 100644
--- a/www/api-docs/services_automount.html
+++ b/www/api-docs/services_automount.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,52 @@ Execute automount in the automount domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_automount_dontaudit_getattr_tmp_dirs"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>automount_dontaudit_getattr_tmp_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to get the attributes
+of automount temporary directories.
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +421,9 @@ Execute automount in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_avahi.html b/www/api-docs/services_avahi.html
index 0fb2104..9385e9d 100644
--- a/www/api-docs/services_avahi.html
+++ b/www/api-docs/services_avahi.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -337,9 +337,9 @@ avahi over dbus.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_bind.html b/www/api-docs/services_bind.html
index ce9952e..1f9ae98 100644
--- a/www/api-docs/services_bind.html
+++ b/www/api-docs/services_bind.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Execute bind in the named domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,9 @@ Execute ndc in the ndc domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -421,9 +421,9 @@ BIND cache files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -432,13 +432,13 @@ No
</div>
</div>
-<a name="link_bind_manage_config_dir"></a>
+<a name="link_bind_manage_config_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>bind_manage_config_dir</b>(
+<b>bind_manage_config_dirs</b>(
@@ -464,9 +464,9 @@ BIND configuration directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -506,9 +506,9 @@ Read BIND named configuration files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -548,9 +548,9 @@ Read DNSSEC keys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -590,9 +590,9 @@ Read BIND zone files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -649,9 +649,9 @@ allow the specified role the ndc domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -659,9 +659,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the bind domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -669,9 +669,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the bind domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -711,9 +711,9 @@ Search the BIND cache directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -722,13 +722,13 @@ No
</div>
</div>
-<a name="link_bind_setattr_pid_dir"></a>
+<a name="link_bind_setattr_pid_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>bind_setattr_pid_dir</b>(
+<b>bind_setattr_pid_dirs</b>(
@@ -754,9 +754,9 @@ of the BIND pid directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -796,9 +796,9 @@ Send generic signals to BIND.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -838,9 +838,9 @@ Write BIND named configuration files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_bluetooth.html b/www/api-docs/services_bluetooth.html
index 7d047a7..96eb95e 100644
--- a/www/api-docs/services_bluetooth.html
+++ b/www/api-docs/services_bluetooth.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -337,9 +337,9 @@ bluetooth over dbus.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -379,9 +379,9 @@ Execute bluetooth_helper in the bluetooth_helper domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -421,9 +421,9 @@ Read bluetooth helper files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -463,9 +463,9 @@ Read bluetooth daemon configuration.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -522,9 +522,9 @@ allow the specified role the bluetooth_helper domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -532,9 +532,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the bluetooth_helper domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -542,9 +542,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the bluetooth_helper domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_canna.html b/www/api-docs/services_canna.html
index 65f9814..b153def 100644
--- a/www/api-docs/services_canna.html
+++ b/www/api-docs/services_canna.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Connect to Canna using a unix domain stream socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_comsat.html b/www/api-docs/services_comsat.html
index 94ba93d..4471af6 100644
--- a/www/api-docs/services_comsat.html
+++ b/www/api-docs/services_comsat.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_cpucontrol.html b/www/api-docs/services_cpucontrol.html
index 1862b08..3f0a41a 100644
--- a/www/api-docs/services_cpucontrol.html
+++ b/www/api-docs/services_cpucontrol.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -316,12 +316,8 @@
- [
-
domain
- ]
-
)<br>
</div>
@@ -340,11 +336,11 @@ CPUcontrol stub interface. No access allowed.
<tr><td>
domain
</td><td>
-
+<p>
N/A
-
+</p>
</td><td>
-yes
+Yes
</td></tr>
</table>
diff --git a/www/api-docs/services_cron.html b/www/api-docs/services_cron.html
index edff2da..71f91af 100644
--- a/www/api-docs/services_cron.html
+++ b/www/api-docs/services_cron.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -308,13 +308,13 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
-<a name="link_cron_crw_tcp_socket"></a>
+<a name="link_cron_anacron_domtrans_system_job"></a>
<div id="interface">
<div id="codeblock">
-<b>cron_crw_tcp_socket</b>(
+<b>cron_anacron_domtrans_system_job</b>(
@@ -328,7 +328,7 @@
<h5>Summary</h5>
<p>
-Create, read, and write a cron daemon TCP socket.
+Execute APM in the apm domain.
</p>
@@ -339,9 +339,9 @@ Create, read, and write a cron daemon TCP socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -350,13 +350,13 @@ No
</div>
</div>
-<a name="link_cron_domtrans_anacron_system_job"></a>
+<a name="link_cron_dontaudit_append_system_job_tmp_files"></a>
<div id="interface">
<div id="codeblock">
-<b>cron_domtrans_anacron_system_job</b>(
+<b>cron_dontaudit_append_system_job_tmp_files</b>(
@@ -370,7 +370,8 @@ No
<h5>Summary</h5>
<p>
-Execute APM in the apm domain.
+Do not audit attempts to append temporary
+files from the system cron jobs.
</p>
@@ -381,9 +382,9 @@ Execute APM in the apm domain.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -392,13 +393,13 @@ No
</div>
</div>
-<a name="link_cron_dontaudit_append_system_job_tmp_files"></a>
+<a name="link_cron_dontaudit_write_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>cron_dontaudit_append_system_job_tmp_files</b>(
+<b>cron_dontaudit_write_pipes</b>(
@@ -412,8 +413,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to append temporary
-files from the system cron jobs.
+Do not audit attempts to write cron daemon unnamed pipes.
</p>
@@ -424,9 +424,9 @@ files from the system cron jobs.
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -435,13 +435,13 @@ No
</div>
</div>
-<a name="link_cron_dontaudit_write_pipe"></a>
+<a name="link_cron_read_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>cron_dontaudit_write_pipe</b>(
+<b>cron_read_pipes</b>(
@@ -455,7 +455,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to write cron daemon unnamed pipes.
+Read a cron daemon unnamed pipe.
</p>
@@ -466,9 +466,9 @@ Do not audit attempts to write cron daemon unnamed pipes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -477,13 +477,13 @@ No
</div>
</div>
-<a name="link_cron_read_pipe"></a>
+<a name="link_cron_read_system_job_tmp_files"></a>
<div id="interface">
<div id="codeblock">
-<b>cron_read_pipe</b>(
+<b>cron_read_system_job_tmp_files</b>(
@@ -497,7 +497,7 @@ No
<h5>Summary</h5>
<p>
-Read a cron daemon unnamed pipe.
+Read temporary files from the system cron jobs.
</p>
@@ -508,9 +508,9 @@ Read a cron daemon unnamed pipe.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -519,13 +519,13 @@ No
</div>
</div>
-<a name="link_cron_read_system_job_tmp_files"></a>
+<a name="link_cron_rw_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>cron_read_system_job_tmp_files</b>(
+<b>cron_rw_pipes</b>(
@@ -539,7 +539,7 @@ No
<h5>Summary</h5>
<p>
-Read temporary files from the system cron jobs.
+Read and write a cron daemon unnamed pipe.
</p>
@@ -550,9 +550,9 @@ Read temporary files from the system cron jobs.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -561,13 +561,13 @@ No
</div>
</div>
-<a name="link_cron_rw_pipe"></a>
+<a name="link_cron_rw_system_job_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>cron_rw_pipe</b>(
+<b>cron_rw_system_job_pipes</b>(
@@ -581,7 +581,7 @@ No
<h5>Summary</h5>
<p>
-Read and write a cron daemon unnamed pipe.
+Read and write a system cron job unnamed pipe.
</p>
@@ -592,9 +592,9 @@ Read and write a cron daemon unnamed pipe.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -603,13 +603,13 @@ No
</div>
</div>
-<a name="link_cron_rw_system_job_pipe"></a>
+<a name="link_cron_rw_tcp_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>cron_rw_system_job_pipe</b>(
+<b>cron_rw_tcp_sockets</b>(
@@ -623,7 +623,7 @@ No
<h5>Summary</h5>
<p>
-Read and write a system cron job unnamed pipe.
+Read, and write cron daemon TCP sockets.
</p>
@@ -634,9 +634,9 @@ Read and write a system cron job unnamed pipe.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -676,9 +676,9 @@ Search the directory containing user cron tables.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -718,9 +718,9 @@ Send a SIGCHLD signal to the cron daemon.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -769,9 +769,9 @@ from the system cron jobs.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process to transition to.
-
+</p>
</td><td>
No
</td></tr>
@@ -779,9 +779,9 @@ No
<tr><td>
entrypoint
</td><td>
-
+<p>
The type of the file used as an entrypoint to this domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -790,13 +790,13 @@ No
</div>
</div>
-<a name="link_cron_use_fd"></a>
+<a name="link_cron_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>cron_use_fd</b>(
+<b>cron_use_fds</b>(
@@ -822,9 +822,9 @@ from the cron daemon.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -833,13 +833,13 @@ No
</div>
</div>
-<a name="link_cron_use_system_job_fd"></a>
+<a name="link_cron_use_system_job_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>cron_use_system_job_fd</b>(
+<b>cron_use_system_job_fds</b>(
@@ -865,9 +865,9 @@ from system cron jobs.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -876,13 +876,13 @@ No
</div>
</div>
-<a name="link_cron_write_system_job_pipe"></a>
+<a name="link_cron_write_system_job_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>cron_write_system_job_pipe</b>(
+<b>cron_write_system_job_pipes</b>(
@@ -907,9 +907,9 @@ Write a system cron job unnamed pipe.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -964,10 +964,10 @@ allowing the specified user to manage other user crontabs.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -1037,10 +1037,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -1048,9 +1048,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -1058,9 +1058,9 @@ No
<tr><td>
user_role
</td><td>
-
+<p>
The role associated with the user domain.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_cups.html b/www/api-docs/services_cups.html
index 388b501..9e4a727 100644
--- a/www/api-docs/services_cups.html
+++ b/www/api-docs/services_cups.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -337,9 +337,9 @@ cups over dbus.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -380,9 +380,9 @@ cupsd_config over dbus.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -422,9 +422,9 @@ Execute cups in the cups domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -464,9 +464,51 @@ Execute cups_config in the cups_config domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_cups_read_config"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+<b>cups_read_config</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read cups configuration files.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -506,9 +548,9 @@ Read cups log files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -548,9 +590,9 @@ Read cups-writable configuration files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -591,9 +633,9 @@ configuration daemon.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -633,9 +675,93 @@ Connect to ptal over an unix domain stream socket.
<tr><td>
domain
</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+</table>
+</div>
+</div>
+
+<a name="link_cups_tcp_connect"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>cups_tcp_connect</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Connect to cups over TCP.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_cups_write_log"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>cups_write_log</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Write cups log files.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_cvs.html b/www/api-docs/services_cvs.html
index fa3eb7c..23b545b 100644
--- a/www/api-docs/services_cvs.html
+++ b/www/api-docs/services_cvs.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Read the CVS data and metadata.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_cyrus.html b/www/api-docs/services_cyrus.html
index 5d91df8..c0a953b 100644
--- a/www/api-docs/services_cyrus.html
+++ b/www/api-docs/services_cyrus.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -337,9 +337,9 @@ and delete cyrus data files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_dbskk.html b/www/api-docs/services_dbskk.html
index 8eeb9dd..7e47230 100644
--- a/www/api-docs/services_dbskk.html
+++ b/www/api-docs/services_dbskk.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_dbus.html b/www/api-docs/services_dbus.html
index 87739f1..665ab9e 100644
--- a/www/api-docs/services_dbus.html
+++ b/www/api-docs/services_dbus.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -340,9 +340,9 @@ for service (acquire_svc).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -382,9 +382,9 @@ Read dbus configuration.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -393,13 +393,13 @@ No
</div>
</div>
-<a name="link_dbus_send_system_bus_msg"></a>
+<a name="link_dbus_send_system_bus"></a>
<div id="interface">
<div id="codeblock">
-<b>dbus_send_system_bus_msg</b>(
+<b>dbus_send_system_bus</b>(
@@ -424,9 +424,9 @@ Send a message on the system DBUS.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -446,12 +446,8 @@ No
- [
-
domain
- ]
-
)<br>
</div>
@@ -470,11 +466,11 @@ DBUS stub interface. No access allowed.
<tr><td>
domain
</td><td>
-
+<p>
N/A
-
+</p>
</td><td>
-yes
+Yes
</td></tr>
</table>
@@ -512,9 +508,9 @@ Allow unconfined access to the system DBUS.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -590,10 +586,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -601,9 +597,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -611,9 +607,9 @@ No
<tr><td>
user_role
</td><td>
-
+<p>
The role associated with the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -662,10 +658,10 @@ the system DBUS.
<tr><td>
domain_prefix
</td><td>
-
+<p>
The prefix of the domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -673,9 +669,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_dhcp.html b/www/api-docs/services_dhcp.html
index 0974ce8..33f9dad 100644
--- a/www/api-docs/services_dhcp.html
+++ b/www/api-docs/services_dhcp.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -337,9 +337,9 @@ server state files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_dictd.html b/www/api-docs/services_dictd.html
index b8e2fd6..21b5f78 100644
--- a/www/api-docs/services_dictd.html
+++ b/www/api-docs/services_dictd.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -305,13 +305,13 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
-<a name="link_dictd_use"></a>
+<a name="link_dictd_tcp_connect"></a>
<div id="interface">
<div id="codeblock">
-<b>dictd_use</b>(
+<b>dictd_tcp_connect</b>(
@@ -337,9 +337,9 @@ over TCP.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_distcc.html b/www/api-docs/services_distcc.html
index e774d37..38838c1 100644
--- a/www/api-docs/services_distcc.html
+++ b/www/api-docs/services_distcc.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_djbdns.html b/www/api-docs/services_djbdns.html
index d38b50c..6454e31 100644
--- a/www/api-docs/services_djbdns.html
+++ b/www/api-docs/services_djbdns.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -338,9 +338,9 @@ components that are directly supervised by daemontools.
<tr><td>
prefix
</td><td>
-
+<p>
The prefix to be used for deriving type names.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_dovecot.html b/www/api-docs/services_dovecot.html
index 234d06e..d0bda22 100644
--- a/www/api-docs/services_dovecot.html
+++ b/www/api-docs/services_dovecot.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Create, read, write, and delete the dovecot spool files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_fetchmail.html b/www/api-docs/services_fetchmail.html
index 2115aad..663ddea 100644
--- a/www/api-docs/services_fetchmail.html
+++ b/www/api-docs/services_fetchmail.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_finger.html b/www/api-docs/services_finger.html
index 7367b29..6a79f9b 100644
--- a/www/api-docs/services_finger.html
+++ b/www/api-docs/services_finger.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Execute fingerd in the fingerd domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,9 @@ Allow the specified domain to connect to fingerd with a tcp socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_ftp.html b/www/api-docs/services_ftp.html
index 34147ad..496f943 100644
--- a/www/api-docs/services_ftp.html
+++ b/www/api-docs/services_ftp.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -339,9 +339,9 @@ Execute FTP daemon entry point programs.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -381,9 +381,9 @@ Read ftpd etc files
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -423,9 +423,9 @@ Read FTP transfer logs
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -465,9 +465,9 @@ Use ftp by connecting over TCP.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -528,10 +528,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_gpm.html b/www/api-docs/services_gpm.html
index 1e59ca4..30587ac 100644
--- a/www/api-docs/services_gpm.html
+++ b/www/api-docs/services_gpm.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -338,9 +338,9 @@ named socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -381,9 +381,9 @@ control channel named socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -424,9 +424,52 @@ control channel named socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+<a name="link_gpm_stream_connect"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>gpm_stream_connect</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Connect to GPM over a unix domain
+stream socket.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_hal.html b/www/api-docs/services_hal.html
index 0454f4c..b6ba2df 100644
--- a/www/api-docs/services_hal.html
+++ b/www/api-docs/services_hal.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -337,9 +337,9 @@ hal over dbus.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -379,9 +379,9 @@ Send a dbus message to hal.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -390,13 +390,13 @@ No
</div>
</div>
-<a name="link_hal_dgram_sendto"></a>
+<a name="link_hal_dgram_send"></a>
<div id="interface">
<div id="codeblock">
-<b>hal_dgram_sendto</b>(
+<b>hal_dgram_send</b>(
@@ -422,9 +422,9 @@ datagram socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -464,9 +464,9 @@ Execute hal in the hal domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -507,9 +507,9 @@ stream socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_howl.html b/www/api-docs/services_howl.html
index f1b1ad7..55402c4 100644
--- a/www/api-docs/services_howl.html
+++ b/www/api-docs/services_howl.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Send generic signals to howl.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_i18n_input.html b/www/api-docs/services_i18n_input.html
index 1f190c7..69458c3 100644
--- a/www/api-docs/services_i18n_input.html
+++ b/www/api-docs/services_i18n_input.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Use i18n_input over a TCP connection.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_inetd.html b/www/api-docs/services_inetd.html
index a110089..e3aa1ad 100644
--- a/www/api-docs/services_inetd.html
+++ b/www/api-docs/services_inetd.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -339,11 +339,13 @@ Define the specified domain as a inetd service.
<h5>Description</h5>
<p>
+</p><p>
Define the specified domain as a inetd service. The
inetd_service_domain(), inetd_tcp_service_domain(),
or inetd_udp_service_domain() interfaces should be used
instead of this interface, as this interface only provides
the common rules to these three interfaces.
+</p><p>
</p>
<h5>Parameters</h5>
@@ -353,9 +355,9 @@ the common rules to these three interfaces.
<tr><td>
domain
</td><td>
-
+<p>
The type associated with the inetd service process.
-
+</p>
</td><td>
No
</td></tr>
@@ -363,9 +365,9 @@ No
<tr><td>
entrypoint
</td><td>
-
+<p>
The type associated with the process program.
-
+</p>
</td><td>
No
</td></tr>
@@ -405,9 +407,9 @@ Run inetd child process in the inet child domain
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -416,13 +418,13 @@ No
</div>
</div>
-<a name="link_inetd_rw_tcp_socket"></a>
+<a name="link_inetd_rw_tcp_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>inetd_rw_tcp_socket</b>(
+<b>inetd_rw_tcp_sockets</b>(
@@ -447,9 +449,9 @@ Read and write inetd TCP sockets.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -497,9 +499,9 @@ Define the specified domain as a TCP and UDP inetd service.
<tr><td>
domain
</td><td>
-
+<p>
The type associated with the inetd service process.
-
+</p>
</td><td>
No
</td></tr>
@@ -507,9 +509,9 @@ No
<tr><td>
entrypoint
</td><td>
-
+<p>
The type associated with the process program.
-
+</p>
</td><td>
No
</td></tr>
@@ -549,9 +551,9 @@ Connect to the inetd service using a TCP connection.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -599,9 +601,9 @@ Define the specified domain as a TCP inetd service.
<tr><td>
domain
</td><td>
-
+<p>
The type associated with the inetd service process.
-
+</p>
</td><td>
No
</td></tr>
@@ -609,9 +611,9 @@ No
<tr><td>
entrypoint
</td><td>
-
+<p>
The type associated with the process program.
-
+</p>
</td><td>
No
</td></tr>
@@ -620,13 +622,13 @@ No
</div>
</div>
-<a name="link_inetd_udp_sendto"></a>
+<a name="link_inetd_udp_send"></a>
<div id="interface">
<div id="codeblock">
-<b>inetd_udp_sendto</b>(
+<b>inetd_udp_send</b>(
@@ -651,9 +653,9 @@ Send UDP network traffic to inetd.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -701,9 +703,9 @@ Define the specified domain as a UDP inetd service.
<tr><td>
domain
</td><td>
-
+<p>
The type associated with the inetd service process.
-
+</p>
</td><td>
No
</td></tr>
@@ -711,9 +713,9 @@ No
<tr><td>
entrypoint
</td><td>
-
+<p>
The type associated with the process program.
-
+</p>
</td><td>
No
</td></tr>
@@ -722,13 +724,13 @@ No
</div>
</div>
-<a name="link_inetd_use_fd"></a>
+<a name="link_inetd_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>inetd_use_fd</b>(
+<b>inetd_use_fds</b>(
@@ -753,9 +755,9 @@ Inherit and use file descriptors from inetd.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_inn.html b/www/api-docs/services_inn.html
index 411f719..d81ecd3 100644
--- a/www/api-docs/services_inn.html
+++ b/www/api-docs/services_inn.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -305,13 +305,13 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
-<a name="link_inn_exec"></a>
+<a name="link_inn_dgram_send"></a>
<div id="interface">
<div id="codeblock">
-<b>inn_exec</b>(
+<b>inn_dgram_send</b>(
@@ -325,8 +325,7 @@
<h5>Summary</h5>
<p>
-Allow the specified domain to execute innd
-in the caller domain.
+Send to a innd unix dgram socket.
</p>
@@ -337,9 +336,9 @@ in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -348,13 +347,13 @@ No
</div>
</div>
-<a name="link_inn_exec_config"></a>
+<a name="link_inn_exec"></a>
<div id="interface">
<div id="codeblock">
-<b>inn_exec_config</b>(
+<b>inn_exec</b>(
@@ -368,8 +367,8 @@ No
<h5>Summary</h5>
<p>
-Allow the specified domain to execute
-inn configuration files in /etc.
+Allow the specified domain to execute innd
+in the caller domain.
</p>
@@ -380,9 +379,9 @@ inn configuration files in /etc.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -391,13 +390,13 @@ No
</div>
</div>
-<a name="link_inn_manage_log"></a>
+<a name="link_inn_exec_config"></a>
<div id="interface">
<div id="codeblock">
-<b>inn_manage_log</b>(
+<b>inn_exec_config</b>(
@@ -411,7 +410,8 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete the innd log.
+Allow the specified domain to execute
+inn configuration files in /etc.
</p>
@@ -422,9 +422,9 @@ Create, read, write, and delete the innd log.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -433,13 +433,13 @@ No
</div>
</div>
-<a name="link_inn_manage_pid"></a>
+<a name="link_inn_manage_log"></a>
<div id="interface">
<div id="codeblock">
-<b>inn_manage_pid</b>(
+<b>inn_manage_log</b>(
@@ -453,7 +453,7 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete the innd pid files.
+Create, read, write, and delete the innd log.
</p>
@@ -464,9 +464,9 @@ Create, read, write, and delete the innd pid files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -475,13 +475,13 @@ No
</div>
</div>
-<a name="link_inn_read_config"></a>
+<a name="link_inn_manage_pid"></a>
<div id="interface">
<div id="codeblock">
-<b>inn_read_config</b>(
+<b>inn_manage_pid</b>(
@@ -495,7 +495,7 @@ No
<h5>Summary</h5>
<p>
-Read innd configuration files.
+Create, read, write, and delete the innd pid files.
</p>
@@ -506,9 +506,9 @@ Read innd configuration files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -517,13 +517,13 @@ No
</div>
</div>
-<a name="link_inn_read_news_lib"></a>
+<a name="link_inn_read_config"></a>
<div id="interface">
<div id="codeblock">
-<b>inn_read_news_lib</b>(
+<b>inn_read_config</b>(
@@ -537,7 +537,7 @@ No
<h5>Summary</h5>
<p>
-Read innd news library files.
+Read innd configuration files.
</p>
@@ -548,9 +548,9 @@ Read innd news library files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -559,13 +559,13 @@ No
</div>
</div>
-<a name="link_inn_read_news_spool"></a>
+<a name="link_inn_read_news_lib"></a>
<div id="interface">
<div id="codeblock">
-<b>inn_read_news_spool</b>(
+<b>inn_read_news_lib</b>(
@@ -590,9 +590,9 @@ Read innd news library files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -601,13 +601,13 @@ No
</div>
</div>
-<a name="link_inn_sendto_unix_dgram_socket"></a>
+<a name="link_inn_read_news_spool"></a>
<div id="interface">
<div id="codeblock">
-<b>inn_sendto_unix_dgram_socket</b>(
+<b>inn_read_news_spool</b>(
@@ -621,7 +621,7 @@ No
<h5>Summary</h5>
<p>
-Send to a innd unix dgram socket.
+Read innd news library files.
</p>
@@ -632,9 +632,9 @@ Send to a innd unix dgram socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_irqbalance.html b/www/api-docs/services_irqbalance.html
index 97ee46b..a55294e 100644
--- a/www/api-docs/services_irqbalance.html
+++ b/www/api-docs/services_irqbalance.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_kerberos.html b/www/api-docs/services_kerberos.html
index 68ea859..44d40be 100644
--- a/www/api-docs/services_kerberos.html
+++ b/www/api-docs/services_kerberos.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -357,9 +357,9 @@ configuration file (/etc/krb5.conf).
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -399,9 +399,9 @@ Read the kerberos configuration file (/etc/krb5.conf).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -441,9 +441,9 @@ Read the kerberos key table.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -483,9 +483,9 @@ Read and write the kerberos configuration file (/etc/krb5.conf).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -525,9 +525,9 @@ Use kerberos services
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_ktalk.html b/www/api-docs/services_ktalk.html
index 8a66795..7d2f9b0 100644
--- a/www/api-docs/services_ktalk.html
+++ b/www/api-docs/services_ktalk.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_ldap.html b/www/api-docs/services_ldap.html
index 4b9ace7..291537c 100644
--- a/www/api-docs/services_ldap.html
+++ b/www/api-docs/services_ldap.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -305,13 +305,13 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
-<a name="link_ldap_list_db_dir"></a>
+<a name="link_ldap_list_db"></a>
<div id="interface">
<div id="codeblock">
-<b>ldap_list_db_dir</b>(
+<b>ldap_list_db</b>(
@@ -337,9 +337,9 @@ database directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -379,9 +379,9 @@ Read the OpenLDAP configuration files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -421,9 +421,9 @@ Use LDAP over TCP connection.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_lpd.html b/www/api-docs/services_lpd.html
index dafce81..8863ba0 100644
--- a/www/api-docs/services_lpd.html
+++ b/www/api-docs/services_lpd.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -296,6 +296,9 @@
<h1>Layer: services</h1><p/>
<h2>Module: lpd</h2><p/>
+<a href=#interfaces>Interfaces</a>
+<a href=#templates>Templates</a>
+
<h3>Description:</h3>
<p><p>Line printer daemon</p></p>
@@ -336,9 +339,9 @@ Execute lpd in the lpd domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +381,9 @@ List the contents of the printer spool directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -420,9 +423,9 @@ Create, read, write, and delete printer spool files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -462,9 +465,9 @@ List the contents of the printer spool directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -521,9 +524,9 @@ allow the specified role the lpd domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -531,9 +534,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the lpd domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -541,9 +544,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the lpd domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -556,6 +559,155 @@ No
<a href=#top>Return</a>
+<a name="templates"></a>
+<h3>Templates: </h3>
+
+<a name="link_lpd_per_userdomain_template"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>lpd_per_userdomain_template</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ user_domain
+
+
+
+ ,
+
+
+
+ user_role
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+The per user domain template for the lpd module.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+This template creates a derived domains which are used
+for lpr printing client.
+</p><p>
+</p><p>
+This template is invoked automatically for each user, and
+generally does not need to be invoked directly
+by policy writers.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+user_domain
+</td><td>
+<p>
+The type of the user domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+user_role
+</td><td>
+<p>
+The role associated with the user domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_lpr_admin_template"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>lpr_admin_template</b>(
+
+
+
+
+ userdomain_prefix
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+The administrative functions template for the lpd module.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+This template creates rules for administrating the ldp service,
+allowing the specified user to manage lpr files.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
</div>
diff --git a/www/api-docs/services_mailman.html b/www/api-docs/services_mailman.html
index 133746d..c7f16cb 100644
--- a/www/api-docs/services_mailman.html
+++ b/www/api-docs/services_mailman.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -339,9 +339,9 @@ Execute mailman in the mailman domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -382,9 +382,9 @@ mailman CGI domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -424,9 +424,9 @@ Execute mailman in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowd access.
-
+</p>
</td><td>
No
</td></tr>
@@ -466,9 +466,9 @@ List the contents of mailman data directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -509,9 +509,9 @@ mailman logs.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -551,9 +551,9 @@ Allow domain to read mailman archive files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -593,9 +593,9 @@ Allow read acces to mailman data symbolic links.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -635,9 +635,9 @@ Allow domain to search data directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -677,9 +677,9 @@ Send generic signals to the mailman cgi domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -734,9 +734,9 @@ a new mailman daemon.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The type of daemon to be used eg, cgi would give mailman_cgi_
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_mta.html b/www/api-docs/services_mta.html
index 05afb9d..d4101aa 100644
--- a/www/api-docs/services_mta.html
+++ b/www/api-docs/services_mta.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -339,9 +339,9 @@ Create, read, and write the mail spool.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -381,9 +381,9 @@ Delete from the mail spool.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -392,18 +392,18 @@ No
</div>
</div>
-<a name="link_mta_dontaudit_read_spool_symlink"></a>
+<a name="link_mta_dontaudit_getattr_spool_files"></a>
<div id="interface">
<div id="codeblock">
-<b>mta_dontaudit_read_spool_symlink</b>(
+<b>mta_dontaudit_getattr_spool_files</b>(
- domain
+ ?
)<br>
@@ -412,8 +412,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read a symlink
-in the mail spool.
+Summary is missing!
</p>
@@ -422,11 +421,11 @@ in the mail spool.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -435,13 +434,13 @@ No
</div>
</div>
-<a name="link_mta_dontaudit_rw_delivery_tcp_socket"></a>
+<a name="link_mta_dontaudit_read_spool_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>mta_dontaudit_rw_delivery_tcp_socket</b>(
+<b>mta_dontaudit_read_spool_symlinks</b>(
@@ -455,8 +454,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read and write TCP
-sockets of mail delivery domains.
+Do not audit attempts to read a symlink
+in the mail spool.
</p>
@@ -467,9 +466,9 @@ sockets of mail delivery domains.
<tr><td>
domain
</td><td>
-
-Mail server domain.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -478,13 +477,13 @@ No
</div>
</div>
-<a name="link_mta_dontaudit_rw_queue"></a>
+<a name="link_mta_dontaudit_rw_delivery_tcp_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>mta_dontaudit_rw_queue</b>(
+<b>mta_dontaudit_rw_delivery_tcp_sockets</b>(
@@ -498,8 +497,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read and
-write the mail queue.
+Do not audit attempts to read and write TCP
+sockets of mail delivery domains.
</p>
@@ -510,9 +509,9 @@ write the mail queue.
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Mail server domain.
+</p>
</td><td>
No
</td></tr>
@@ -521,18 +520,18 @@ No
</div>
</div>
-<a name="link_mta_exec"></a>
+<a name="link_mta_dontaudit_rw_queue"></a>
<div id="interface">
<div id="codeblock">
-<b>mta_exec</b>(
+<b>mta_dontaudit_rw_queue</b>(
- ?
+ domain
)<br>
@@ -541,7 +540,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Do not audit attempts to read and
+write the mail queue.
</p>
@@ -550,11 +550,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -563,13 +563,13 @@ No
</div>
</div>
-<a name="link_mta_filetrans_etc_aliases"></a>
+<a name="link_mta_etc_filetrans_aliases"></a>
<div id="interface">
<div id="codeblock">
-<b>mta_filetrans_etc_aliases</b>(
+<b>mta_etc_filetrans_aliases</b>(
@@ -595,9 +595,9 @@ to the mail address aliases type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -606,38 +606,18 @@ No
</div>
</div>
-<a name="link_mta_filetrans_spool"></a>
+<a name="link_mta_exec"></a>
<div id="interface">
<div id="codeblock">
-<b>mta_filetrans_spool</b>(
-
-
-
-
- domain
-
-
-
- ,
-
-
-
- private type
-
+<b>mta_exec</b>(
- ,
-
-
- [
-
- object
- ]
+ ?
)<br>
@@ -646,8 +626,7 @@ No
<h5>Summary</h5>
<p>
-Create private objects in the
-mail spool directory.
+Summary is missing!
</p>
@@ -656,36 +635,15 @@ mail spool directory.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
-</td><td>
-
-Domain allowed access.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-private type
+?
</td><td>
-
-The type of the object to be created.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-object
-</td><td>
-
-The object class of the object being created. If
-no class is specified, file will be used.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
@@ -721,9 +679,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -763,9 +721,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -806,9 +764,9 @@ for delivering mail to local users.
<tr><td>
domain
</td><td>
-
+<p>
Mail server domain type used for delivering mail.
-
+</p>
</td><td>
No
</td></tr>
@@ -849,9 +807,9 @@ for sending mail.
<tr><td>
domain
</td><td>
-
+<p>
Mail server domain type used for sending mail.
-
+</p>
</td><td>
No
</td></tr>
@@ -893,9 +851,9 @@ users to the local mail spool.
<tr><td>
domain
</td><td>
-
+<p>
Mail server domain type used for sending local mail.
-
+</p>
</td><td>
No
</td></tr>
@@ -935,9 +893,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -977,9 +935,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1019,9 +977,9 @@ Read mail address aliases.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1061,9 +1019,9 @@ Read mail server configuration.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1103,9 +1061,9 @@ Read sendmail binary.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1145,9 +1103,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1187,9 +1145,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1198,13 +1156,13 @@ No
</div>
</div>
-<a name="link_mta_rw_user_mail_stream_socket"></a>
+<a name="link_mta_rw_user_mail_stream_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>mta_rw_user_mail_stream_socket</b>(
+<b>mta_rw_user_mail_stream_sockets</b>(
@@ -1230,9 +1188,9 @@ of user mail domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1272,9 +1230,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1339,9 +1297,9 @@ by the sendmail policy.
<tr><td>
domain
</td><td>
-
+<p>
The type to be used for the mail server.
-
+</p>
</td><td>
No
</td></tr>
@@ -1349,9 +1307,88 @@ No
<tr><td>
entry_point
</td><td>
-
+<p>
The type to be used for the domain entry point program.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_mta_spool_filetrans"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>mta_spool_filetrans</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ private type
+
+
+
+ ,
+
+
+
+ object
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Create private objects in the
+mail spool directory.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+private type
+</td><td>
+<p>
+The type of the object to be created.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+object
+</td><td>
+<p>
+The object class of the object being created.
+</p>
</td><td>
No
</td></tr>
@@ -1371,12 +1408,8 @@ No
- [
-
domain
- ]
-
)<br>
</div>
@@ -1395,11 +1428,11 @@ MTA stub interface. No access allowed.
<tr><td>
domain
</td><td>
-
+<p>
N/A
-
+</p>
</td><td>
-yes
+Yes
</td></tr>
</table>
@@ -1437,9 +1470,9 @@ Connect to all mail servers over TCP.
<tr><td>
domain
</td><td>
-
+<p>
Mail server domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -1495,10 +1528,10 @@ mail domain.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -1506,9 +1539,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -1561,10 +1594,10 @@ to the system agent and user agents.
<tr><td>
domain_prefix
</td><td>
-
+<p>
The prefix of the domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -1634,10 +1667,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -1645,9 +1678,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -1655,9 +1688,9 @@ No
<tr><td>
user_role
</td><td>
-
+<p>
The role associated with the user domain.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_mysql.html b/www/api-docs/services_mysql.html
index 5bcafc7..f561414 100644
--- a/www/api-docs/services_mysql.html
+++ b/www/api-docs/services_mysql.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -305,13 +305,13 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
-<a name="link_mysql_manage_db_dir"></a>
+<a name="link_mysql_manage_db_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>mysql_manage_db_dir</b>(
+<b>mysql_manage_db_dirs</b>(
@@ -336,9 +336,9 @@ Create, read, write, and delete MySQL database directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,9 @@ Read MySQL configuration files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -389,13 +389,13 @@ No
</div>
</div>
-<a name="link_mysql_rw_db_dir"></a>
+<a name="link_mysql_rw_db_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>mysql_rw_db_dir</b>(
+<b>mysql_rw_db_dirs</b>(
@@ -420,9 +420,9 @@ Read and write to the MySQL database directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -431,13 +431,13 @@ No
</div>
</div>
-<a name="link_mysql_rw_db_socket"></a>
+<a name="link_mysql_rw_db_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>mysql_rw_db_socket</b>(
+<b>mysql_rw_db_sockets</b>(
@@ -463,9 +463,9 @@ named socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -474,13 +474,13 @@ No
</div>
</div>
-<a name="link_mysql_search_db_dir"></a>
+<a name="link_mysql_search_db"></a>
<div id="interface">
<div id="codeblock">
-<b>mysql_search_db_dir</b>(
+<b>mysql_search_db</b>(
@@ -506,9 +506,9 @@ database storage.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -548,9 +548,9 @@ Send a generic signal to MySQL.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -590,9 +590,9 @@ Connect to MySQL using a unix domain stream socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -632,9 +632,9 @@ Write to the MySQL log.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_networkmanager.html b/www/api-docs/services_networkmanager.html
index 4feec98..190d4aa 100644
--- a/www/api-docs/services_networkmanager.html
+++ b/www/api-docs/services_networkmanager.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -337,9 +337,9 @@ NetworkManager over dbus.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -348,13 +348,13 @@ No
</div>
</div>
-<a name="link_networkmanager_rw_packet_socket"></a>
+<a name="link_networkmanager_rw_packet_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>networkmanager_rw_packet_socket</b>(
+<b>networkmanager_rw_packet_sockets</b>(
@@ -379,9 +379,9 @@ Read and write NetworkManager packet sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -390,13 +390,13 @@ No
</div>
</div>
-<a name="link_networkmanager_rw_routing_socket"></a>
+<a name="link_networkmanager_rw_routing_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>networkmanager_rw_routing_socket</b>(
+<b>networkmanager_rw_routing_sockets</b>(
@@ -422,9 +422,9 @@ routing sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -433,13 +433,13 @@ No
</div>
</div>
-<a name="link_networkmanager_rw_udp_socket"></a>
+<a name="link_networkmanager_rw_udp_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>networkmanager_rw_udp_socket</b>(
+<b>networkmanager_rw_udp_sockets</b>(
@@ -464,9 +464,9 @@ Read and write NetworkManager UDP sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_nis.html b/www/api-docs/services_nis.html
index 22560d6..f2bb4e4 100644
--- a/www/api-docs/services_nis.html
+++ b/www/api-docs/services_nis.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Delete ypbind pid files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,9 @@ Execute ypbind in the ypbind domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -420,9 +420,9 @@ List the contents of the NIS data directory.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -462,9 +462,9 @@ Read ypbind pid files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -504,9 +504,9 @@ Read ypserv configuration files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -546,9 +546,9 @@ Send generic signals to ypbind.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -588,9 +588,9 @@ Connect to ypbind over TCP.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -599,13 +599,13 @@ No
</div>
</div>
-<a name="link_nis_udp_sendto_ypbind"></a>
+<a name="link_nis_udp_send_ypbind"></a>
<div id="interface">
<div id="codeblock">
-<b>nis_udp_sendto_ypbind</b>(
+<b>nis_udp_send_ypbind</b>(
@@ -630,9 +630,9 @@ Send UDP network traffic to NIS clients.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -672,9 +672,9 @@ Use the ypbind service to access NIS services.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -729,9 +729,9 @@ and the regular interface should be used.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_nscd.html b/www/api-docs/services_nscd.html
index c846b3b..845964f 100644
--- a/www/api-docs/services_nscd.html
+++ b/www/api-docs/services_nscd.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Execute NSCD in the nscd domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,9 @@ Read NSCD pid file.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -389,13 +389,13 @@ No
</div>
</div>
-<a name="link_nscd_unconfined"></a>
+<a name="link_nscd_shm_use"></a>
<div id="interface">
<div id="codeblock">
-<b>nscd_unconfined</b>(
+<b>nscd_shm_use</b>(
@@ -409,7 +409,8 @@ No
<h5>Summary</h5>
<p>
-Unconfined access to NSCD services.
+Use NSCD services by mapping the database from
+an inherited NSCD file descriptor.
</p>
@@ -420,9 +421,9 @@ Unconfined access to NSCD services.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -431,13 +432,13 @@ No
</div>
</div>
-<a name="link_nscd_use_shared_mem"></a>
+<a name="link_nscd_socket_use"></a>
<div id="interface">
<div id="codeblock">
-<b>nscd_use_shared_mem</b>(
+<b>nscd_socket_use</b>(
@@ -451,8 +452,8 @@ No
<h5>Summary</h5>
<p>
-Use NSCD services by mapping the database from
-an inherited NSCD file descriptor.
+Use NSCD services by connecting using
+a unix stream socket.
</p>
@@ -463,9 +464,9 @@ an inherited NSCD file descriptor.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -474,13 +475,13 @@ No
</div>
</div>
-<a name="link_nscd_use_socket"></a>
+<a name="link_nscd_unconfined"></a>
<div id="interface">
<div id="codeblock">
-<b>nscd_use_socket</b>(
+<b>nscd_unconfined</b>(
@@ -494,8 +495,7 @@ No
<h5>Summary</h5>
<p>
-Use NSCD services by connecting using
-a unix stream socket.
+Unconfined access to NSCD services.
</p>
@@ -506,9 +506,9 @@ a unix stream socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_ntp.html b/www/api-docs/services_ntp.html
index 3e47897..21c4d29 100644
--- a/www/api-docs/services_ntp.html
+++ b/www/api-docs/services_ntp.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Execute ntp server in the ntpd domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,9 @@ Execute ntp server in the ntpd domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -400,12 +400,8 @@ No
- [
-
domain
- ]
-
)<br>
</div>
@@ -424,11 +420,11 @@ NTP stub interface. No access allowed.
<tr><td>
domain
</td><td>
-
+<p>
N/A
-
+</p>
</td><td>
-yes
+Yes
</td></tr>
</table>
diff --git a/www/api-docs/services_openct.html b/www/api-docs/services_openct.html
index 69539aa..fccf66e 100644
--- a/www/api-docs/services_openct.html
+++ b/www/api-docs/services_openct.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_pegasus.html b/www/api-docs/services_pegasus.html
index da6530c..2d7e842 100644
--- a/www/api-docs/services_pegasus.html
+++ b/www/api-docs/services_pegasus.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_portmap.html b/www/api-docs/services_portmap.html
index ecd695a..2e85d71 100644
--- a/www/api-docs/services_portmap.html
+++ b/www/api-docs/services_portmap.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Execute portmap_helper in the helper domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -396,9 +396,9 @@ Communicate with portmap.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -406,9 +406,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the portmap domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -416,9 +416,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the portmap domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -458,9 +458,9 @@ Connect to portmap over a TCP socket
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -469,13 +469,13 @@ No
</div>
</div>
-<a name="link_portmap_udp_sendrecv"></a>
+<a name="link_portmap_udp_chat"></a>
<div id="interface">
<div id="codeblock">
-<b>portmap_udp_sendrecv</b>(
+<b>portmap_udp_chat</b>(
@@ -500,9 +500,9 @@ Send and receive UDP network traffic from portmap.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -511,13 +511,13 @@ No
</div>
</div>
-<a name="link_portmap_udp_sendto"></a>
+<a name="link_portmap_udp_send"></a>
<div id="interface">
<div id="codeblock">
-<b>portmap_udp_sendto</b>(
+<b>portmap_udp_send</b>(
@@ -542,9 +542,9 @@ Send UDP network traffic to portmap.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_postfix.html b/www/api-docs/services_postfix.html
index d6bf20c..3561d79 100644
--- a/www/api-docs/services_postfix.html
+++ b/www/api-docs/services_postfix.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -308,13 +308,13 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
-<a name="link_postfix_domtrans_map"></a>
+<a name="link_postfix_config_filetrans"></a>
<div id="interface">
<div id="codeblock">
-<b>postfix_domtrans_map</b>(
+<b>postfix_config_filetrans</b>(
@@ -322,13 +322,30 @@
domain
+
+ ,
+
+
+
+ private type
+
+
+
+ ,
+
+
+
+ object
+
+
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Execute postfix_map in the postfix_map domain.
+Create files with the specified type in
+the postfix configuration directories.
</p>
@@ -339,9 +356,29 @@ Execute postfix_map in the postfix_map domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+private type
+</td><td>
+<p>
+The type of the object to be created.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+object
+</td><td>
+<p>
+The object class of the object being created.
+</p>
</td><td>
No
</td></tr>
@@ -350,13 +387,13 @@ No
</div>
</div>
-<a name="link_postfix_domtrans_master"></a>
+<a name="link_postfix_domtrans_map"></a>
<div id="interface">
<div id="codeblock">
-<b>postfix_domtrans_master</b>(
+<b>postfix_domtrans_map</b>(
@@ -370,8 +407,7 @@ No
<h5>Summary</h5>
<p>
-Execute the master postfix program in the
-postfix_master domain.
+Execute postfix_map in the postfix_map domain.
</p>
@@ -382,9 +418,9 @@ postfix_master domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -393,13 +429,13 @@ No
</div>
</div>
-<a name="link_postfix_domtrans_user_mail_handler"></a>
+<a name="link_postfix_domtrans_master"></a>
<div id="interface">
<div id="codeblock">
-<b>postfix_domtrans_user_mail_handler</b>(
+<b>postfix_domtrans_master</b>(
@@ -413,8 +449,8 @@ No
<h5>Summary</h5>
<p>
-Execute postfix user mail programs
-in their respective domains.
+Execute the master postfix program in the
+postfix_master domain.
</p>
@@ -425,9 +461,9 @@ in their respective domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -436,13 +472,13 @@ No
</div>
</div>
-<a name="link_postfix_dontaudit_rw_local_tcp_socket"></a>
+<a name="link_postfix_domtrans_user_mail_handler"></a>
<div id="interface">
<div id="codeblock">
-<b>postfix_dontaudit_rw_local_tcp_socket</b>(
+<b>postfix_domtrans_user_mail_handler</b>(
@@ -456,9 +492,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read and
-write postfix local delivery
-TCP sockets.
+Execute postfix user mail programs
+in their respective domains.
</p>
@@ -469,9 +504,9 @@ TCP sockets.
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -480,13 +515,13 @@ No
</div>
</div>
-<a name="link_postfix_dontaudit_use_fd"></a>
+<a name="link_postfix_dontaudit_rw_local_tcp_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>postfix_dontaudit_use_fd</b>(
+<b>postfix_dontaudit_rw_local_tcp_sockets</b>(
@@ -500,9 +535,9 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to use
-postfix master process file
-file descriptors.
+Do not audit attempts to read and
+write postfix local delivery
+TCP sockets.
</p>
@@ -513,9 +548,9 @@ file descriptors.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -524,13 +559,13 @@ No
</div>
</div>
-<a name="link_postfix_exec_master"></a>
+<a name="link_postfix_dontaudit_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>postfix_exec_master</b>(
+<b>postfix_dontaudit_use_fds</b>(
@@ -544,8 +579,9 @@ No
<h5>Summary</h5>
<p>
-Execute the master postfix program in the
-caller domain.
+Do not audit attempts to use
+postfix master process file
+file descriptors.
</p>
@@ -556,9 +592,9 @@ caller domain.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -567,13 +603,13 @@ No
</div>
</div>
-<a name="link_postfix_filetrans_config"></a>
+<a name="link_postfix_exec_master"></a>
<div id="interface">
<div id="codeblock">
-<b>postfix_filetrans_config</b>(
+<b>postfix_exec_master</b>(
@@ -581,34 +617,14 @@ No
domain
-
- ,
-
-
-
- private type
-
-
-
- ,
-
-
-
- [
-
- object
-
- ]
-
-
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Create files with the specified type in
-the postfix configuration directories.
+Execute the master postfix program in the
+caller domain.
</p>
@@ -619,34 +635,13 @@ the postfix configuration directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-private type
-</td><td>
-
-The type of the object to be created.
-
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-object
-</td><td>
-
-The object class of the object being created. If
-no class is specified, file will be used.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
@@ -682,9 +677,9 @@ List postfix mail spool directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -724,9 +719,9 @@ Read postfix configuration files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -783,9 +778,9 @@ allow the specified role the postfix_map domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -793,9 +788,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the postfix_map domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -803,9 +798,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the postfix_map domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -845,9 +840,9 @@ Search postfix mail spool directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -867,12 +862,8 @@ No
- [
-
domain
- ]
-
)<br>
</div>
@@ -891,11 +882,11 @@ Postfix stub interface. No access allowed.
<tr><td>
domain
</td><td>
-
+<p>
N/A
-
+</p>
</td><td>
-yes
+Yes
</td></tr>
</table>
@@ -940,9 +931,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -982,9 +973,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1024,9 +1015,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1066,9 +1057,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1108,9 +1099,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_postgresql.html b/www/api-docs/services_postgresql.html
index 8cb81b1..38ae591 100644
--- a/www/api-docs/services_postgresql.html
+++ b/www/api-docs/services_postgresql.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Execute postgresql in the postgresql domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,9 @@ Allow the specified domain to manage postgresql's database.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -420,9 +420,9 @@ Allow the specified domain to read postgresql's etc.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -431,13 +431,13 @@ No
</div>
</div>
-<a name="link_postgresql_search_db_dir"></a>
+<a name="link_postgresql_search_db"></a>
<div id="interface">
<div id="codeblock">
-<b>postgresql_search_db_dir</b>(
+<b>postgresql_search_db</b>(
@@ -462,9 +462,9 @@ Allow the specified domain to search postgresql's database directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -473,13 +473,13 @@ No
</div>
</div>
-<a name="link_postgresql_tcp_connect"></a>
+<a name="link_postgresql_stream_connect"></a>
<div id="interface">
<div id="codeblock">
-<b>postgresql_tcp_connect</b>(
+<b>postgresql_stream_connect</b>(
@@ -493,7 +493,7 @@ No
<h5>Summary</h5>
<p>
-Allow the specified domain to connect to postgresql with a tcp socket.
+Allow the specified domain to connect to postgresql with a unix socket.
</p>
@@ -504,9 +504,9 @@ Allow the specified domain to connect to postgresql with a tcp socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -515,13 +515,13 @@ No
</div>
</div>
-<a name="link_postgresql_unix_connect"></a>
+<a name="link_postgresql_tcp_connect"></a>
<div id="interface">
<div id="codeblock">
-<b>postgresql_unix_connect</b>(
+<b>postgresql_tcp_connect</b>(
@@ -535,7 +535,7 @@ No
<h5>Summary</h5>
<p>
-Allow the specified domain to connect to postgresql with a unix socket.
+Allow the specified domain to connect to postgresql with a tcp socket.
</p>
@@ -546,9 +546,9 @@ Allow the specified domain to connect to postgresql with a unix socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_ppp.html b/www/api-docs/services_ppp.html
index a63f79c..a71a4cc 100644
--- a/www/api-docs/services_ppp.html
+++ b/www/api-docs/services_ppp.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Execute domain in the ppp domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -347,13 +347,13 @@ No
</div>
</div>
-<a name="link_ppp_dontaudit_use_fd"></a>
+<a name="link_ppp_dontaudit_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>ppp_dontaudit_use_fd</b>(
+<b>ppp_dontaudit_use_fds</b>(
@@ -379,9 +379,9 @@ and use PPP file discriptors.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -421,9 +421,9 @@ Unconditionally execute ppp daemon on behalf of a user or staff type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -463,9 +463,9 @@ Conditionally execute ppp daemon on behalf of a user or staff type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -505,9 +505,9 @@ Send a SIGCHLD signal to PPP.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -547,9 +547,9 @@ Send a generic signal to PPP.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -558,13 +558,13 @@ No
</div>
</div>
-<a name="link_ppp_use_fd"></a>
+<a name="link_ppp_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>ppp_use_fd</b>(
+<b>ppp_use_fds</b>(
@@ -589,9 +589,9 @@ Use PPP file discriptors.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_privoxy.html b/www/api-docs/services_privoxy.html
index fa64e0e..0db57dc 100644
--- a/www/api-docs/services_privoxy.html
+++ b/www/api-docs/services_privoxy.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_procmail.html b/www/api-docs/services_procmail.html
index e9a5869..bb00dd4 100644
--- a/www/api-docs/services_procmail.html
+++ b/www/api-docs/services_procmail.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Execute procmail with a domain transition.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,9 @@ Execute procmail in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_publicfile.html b/www/api-docs/services_publicfile.html
index 4cead32..430ab15 100644
--- a/www/api-docs/services_publicfile.html
+++ b/www/api-docs/services_publicfile.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_radius.html b/www/api-docs/services_radius.html
index 349b827..b7ae22a 100644
--- a/www/api-docs/services_radius.html
+++ b/www/api-docs/services_radius.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Use radius over a UDP connection.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_radvd.html b/www/api-docs/services_radvd.html
index 7a346fa..11b446c 100644
--- a/www/api-docs/services_radvd.html
+++ b/www/api-docs/services_radvd.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_rdisc.html b/www/api-docs/services_rdisc.html
index 3083c2f..7596239 100644
--- a/www/api-docs/services_rdisc.html
+++ b/www/api-docs/services_rdisc.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_remotelogin.html b/www/api-docs/services_remotelogin.html
index 2c57654..1764018 100644
--- a/www/api-docs/services_remotelogin.html
+++ b/www/api-docs/services_remotelogin.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Domain transition to the remote login domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_rlogin.html b/www/api-docs/services_rlogin.html
index a62d51f..49fbf2f 100644
--- a/www/api-docs/services_rlogin.html
+++ b/www/api-docs/services_rlogin.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Execute rlogind in the rlogin domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_roundup.html b/www/api-docs/services_roundup.html
index 6c3088a..2b28ead 100644
--- a/www/api-docs/services_roundup.html
+++ b/www/api-docs/services_roundup.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_rpc.html b/www/api-docs/services_rpc.html
index 7b13383..b1d53ac 100644
--- a/www/api-docs/services_rpc.html
+++ b/www/api-docs/services_rpc.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -339,9 +339,9 @@ Execute domain in nfsd domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -382,9 +382,9 @@ of the NFS export file.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -424,9 +424,9 @@ Allow domain to create read and write NFS directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -466,9 +466,9 @@ Allow domain to create read and write NFS directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -508,9 +508,9 @@ Allow read access to exports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -550,9 +550,9 @@ Search NFS state data in /var/lib/nfs.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -592,9 +592,9 @@ Allow domain to read and write to an NFS UDP socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -603,13 +603,13 @@ No
</div>
</div>
-<a name="link_rpc_udp_sendto"></a>
+<a name="link_rpc_udp_send"></a>
<div id="interface">
<div id="codeblock">
-<b>rpc_udp_sendto</b>(
+<b>rpc_udp_send</b>(
@@ -634,9 +634,9 @@ Send UDP network traffic to rpc and recieve UDP traffic from rpc.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -645,13 +645,13 @@ No
</div>
</div>
-<a name="link_rpc_udp_sendto_nfs"></a>
+<a name="link_rpc_udp_send_nfs"></a>
<div id="interface">
<div id="codeblock">
-<b>rpc_udp_sendto_nfs</b>(
+<b>rpc_udp_send_nfs</b>(
@@ -665,8 +665,7 @@ No
<h5>Summary</h5>
<p>
-Allow NFS to send UDP network traffic
-the specified domain and recieve from it.
+Send UDP traffic to NFSd.
</p>
@@ -677,9 +676,9 @@ the specified domain and recieve from it.
<tr><td>
domain
</td><td>
-
-The type of the receiving domain.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -719,9 +718,9 @@ Allow write access to exports.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -776,9 +775,9 @@ a new rpc daemon.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The type of daemon to be used.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_rshd.html b/www/api-docs/services_rshd.html
index add52d9..6012c4c 100644
--- a/www/api-docs/services_rshd.html
+++ b/www/api-docs/services_rshd.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Domain transition to rshd.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_rsync.html b/www/api-docs/services_rsync.html
index 3c06a63..902689d 100644
--- a/www/api-docs/services_rsync.html
+++ b/www/api-docs/services_rsync.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_samba.html b/www/api-docs/services_samba.html
index bf7c0da..3c2609a 100644
--- a/www/api-docs/services_samba.html
+++ b/www/api-docs/services_samba.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -312,48 +312,6 @@ from Windows NT servers.
<a name="interfaces"></a>
<h3>Interfaces: </h3>
-<a name="link_samba_connect_winbind"></a>
-<div id="interface">
-
-
-<div id="codeblock">
-
-<b>samba_connect_winbind</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
-<p>
-Connect to winbind.
-</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-Domain allowed access.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
<a name="link_samba_domtrans_net"></a>
<div id="interface">
@@ -385,9 +343,9 @@ Execute samba net in the samba_net domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -427,9 +385,9 @@ Execute smbmount in the smbmount domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -469,9 +427,9 @@ Execute winbind_helper in the winbind_helper domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -511,9 +469,9 @@ Execute samba log in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -554,9 +512,9 @@ samba configuration files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -596,9 +554,9 @@ Allow the specified domain to read samba's log files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -638,9 +596,9 @@ Allow the specified domain to read samba's secrets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -680,9 +638,9 @@ Allow the specified domain to read the winbind pid files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -739,9 +697,9 @@ allow the specified role the samba_net domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -749,9 +707,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the samba_net domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -759,9 +717,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the samba_net domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -818,9 +776,9 @@ allow the specified role the winbind_helper domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -828,9 +786,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the winbind_helper domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -838,9 +796,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the winbind_helper domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -881,9 +839,9 @@ and write samba configuration files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -892,13 +850,13 @@ No
</div>
</div>
-<a name="link_samba_rw_smbmount_tcp_socket"></a>
+<a name="link_samba_rw_smbmount_tcp_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>samba_rw_smbmount_tcp_socket</b>(
+<b>samba_rw_smbmount_tcp_sockets</b>(
@@ -923,9 +881,9 @@ Allow the specified domain to read and write to smbmount tcp sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -966,9 +924,9 @@ read and write samba /var files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1009,9 +967,51 @@ samba /var directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+<a name="link_samba_stream_connect_winbind"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>samba_stream_connect_winbind</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Connect to winbind.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1020,13 +1020,13 @@ No
</div>
</div>
-<a name="link_samba_write_smbmount_tcp_socket"></a>
+<a name="link_samba_write_smbmount_tcp_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>samba_write_smbmount_tcp_socket</b>(
+<b>samba_write_smbmount_tcp_sockets</b>(
@@ -1051,9 +1051,9 @@ Allow the specified domain to write to smbmount tcp sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1114,10 +1114,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_sasl.html b/www/api-docs/services_sasl.html
index ea35ce2..0f58dfe 100644
--- a/www/api-docs/services_sasl.html
+++ b/www/api-docs/services_sasl.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Connect to SASL.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_sendmail.html b/www/api-docs/services_sendmail.html
index e545f23..69379ba 100644
--- a/www/api-docs/services_sendmail.html
+++ b/www/api-docs/services_sendmail.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Create sendmail logs with the correct type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,9 @@ Domain transition to sendmail.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -420,9 +420,9 @@ Create, read, write, and delete sendmail logs.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -431,13 +431,13 @@ No
</div>
</div>
-<a name="link_sendmail_rw_tcp_socket"></a>
+<a name="link_sendmail_rw_tcp_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>sendmail_rw_tcp_socket</b>(
+<b>sendmail_rw_tcp_sockets</b>(
@@ -462,9 +462,51 @@ Read and write sendmail TCP sockets.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+<a name="link_sendmail_rw_unix_stream_sockets"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>sendmail_rw_unix_stream_sockets</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write sendmail unix_stream_sockets.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -484,12 +526,8 @@ No
- [
-
domain
- ]
-
)<br>
</div>
@@ -508,11 +546,11 @@ Sendmail stub interface. No access allowed.
<tr><td>
domain
</td><td>
-
+<p>
N/A
-
+</p>
</td><td>
-yes
+Yes
</td></tr>
</table>
diff --git a/www/api-docs/services_slrnpull.html b/www/api-docs/services_slrnpull.html
index 830422d..59c4353 100644
--- a/www/api-docs/services_slrnpull.html
+++ b/www/api-docs/services_slrnpull.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -337,9 +337,9 @@ write, and delete slrnpull spools.
<tr><td>
pty_type
</td><td>
-
+<p>
domain allowed access
-
+</p>
</td><td>
No
</td></tr>
@@ -379,9 +379,9 @@ Allow the domain to search slrnpull spools.
<tr><td>
pty_type
</td><td>
-
+<p>
domain allowed access
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_smartmon.html b/www/api-docs/services_smartmon.html
index 0429d46..b5d8ea9 100644
--- a/www/api-docs/services_smartmon.html
+++ b/www/api-docs/services_smartmon.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -305,13 +305,13 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
-<a name="link_smartmon_read_tmp"></a>
+<a name="link_smartmon_read_tmp_files"></a>
<div id="interface">
<div id="codeblock">
-<b>smartmon_read_tmp</b>(
+<b>smartmon_read_tmp_files</b>(
@@ -336,9 +336,9 @@ Allow caller to read smartmon temporary files.
<tr><td>
domain
</td><td>
-
+<p>
The process type reading the temporary files.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_snmp.html b/www/api-docs/services_snmp.html
index bc0bbfb..602a07f 100644
--- a/www/api-docs/services_snmp.html
+++ b/www/api-docs/services_snmp.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -305,13 +305,13 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
-<a name="link_snmp_use"></a>
+<a name="link_snmp_read_snmp_var_lib_files"></a>
<div id="interface">
<div id="codeblock">
-<b>snmp_use</b>(
+<b>snmp_read_snmp_var_lib_files</b>(
@@ -325,7 +325,7 @@
<h5>Summary</h5>
<p>
-Use snmp over a TCP connection.
+Read snmpd libraries.
</p>
@@ -336,9 +336,93 @@ Use snmp over a TCP connection.
<tr><td>
domain
</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+</table>
+</div>
+</div>
+
+<a name="link_snmp_tcp_connect"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>snmp_tcp_connect</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Use snmp over a TCP connection.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+</table>
+</div>
+</div>
+
+<a name="link_snmp_udp_chat"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>snmp_udp_chat</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Send and receive UDP traffic to SNMP
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_spamassassin.html b/www/api-docs/services_spamassassin.html
index ba8cf6d..4d54f0f 100644
--- a/www/api-docs/services_spamassassin.html
+++ b/www/api-docs/services_spamassassin.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -340,9 +340,9 @@ program in the caller directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -383,9 +383,9 @@ program in the caller directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -460,10 +460,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -471,9 +471,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -481,9 +481,9 @@ No
<tr><td>
user_role
</td><td>
-
+<p>
The role associated with the user domain.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_squid.html b/www/api-docs/services_squid.html
index 7019ea1..2293bc6 100644
--- a/www/api-docs/services_squid.html
+++ b/www/api-docs/services_squid.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Append squid logs.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,9 @@ Execute squid in the squid domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -421,9 +421,9 @@ squid logs.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -463,9 +463,9 @@ Read squid configuration file.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -505,9 +505,9 @@ Append squid logs.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -547,9 +547,9 @@ Use squid services by connecting over TCP.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_ssh.html b/www/api-docs/services_ssh.html
index 437a9af..e4a974f 100644
--- a/www/api-docs/services_ssh.html
+++ b/www/api-docs/services_ssh.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -327,7 +327,136 @@
<div id="description">
<h5>Summary</h5>
-<p>Read ssh server keys</p>
+<p>
+Read ssh server keys
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_ssh_dontaudit_rw_tcp_sockets"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>ssh_dontaudit_rw_tcp_sockets</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to read and write
+ssh server TCP sockets.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to not audit.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_ssh_read_pipes"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>ssh_read_pipes</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read a ssh server unnamed pipe.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_ssh_sigchld"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>ssh_sigchld</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Send a SIGCHLD signal to the ssh server.
+</p>
<h5>Parameters</h5>
@@ -337,9 +466,51 @@
<tr><td>
domain
</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_ssh_tcp_connect"></a>
+<div id="interface">
-The type of the process performing this action.
+<div id="codeblock">
+
+<b>ssh_tcp_connect</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Connect to SSH daemons over TCP sockets.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -416,10 +587,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -427,9 +598,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -437,9 +608,9 @@ No
<tr><td>
user_role
</td><td>
-
+<p>
The role associated with the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -490,10 +661,10 @@ a external network-facing ssh server.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the server domain (e.g., sshd
is the prefix for sshd_t).
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_stunnel.html b/www/api-docs/services_stunnel.html
index a17c45b..00b77cc 100644
--- a/www/api-docs/services_stunnel.html
+++ b/www/api-docs/services_stunnel.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_sysstat.html b/www/api-docs/services_sysstat.html
index 4d7c576..591919f 100644
--- a/www/api-docs/services_sysstat.html
+++ b/www/api-docs/services_sysstat.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Manage sysstat logs.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_tcpd.html b/www/api-docs/services_tcpd.html
index e58c5df..757a6fa 100644
--- a/www/api-docs/services_tcpd.html
+++ b/www/api-docs/services_tcpd.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Execute tcpd in the tcpd domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_telnet.html b/www/api-docs/services_telnet.html
index 8a7ff0b..e71ed0e 100644
--- a/www/api-docs/services_telnet.html
+++ b/www/api-docs/services_telnet.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_tftp.html b/www/api-docs/services_tftp.html
index 8b0d554..f89542c 100644
--- a/www/api-docs/services_tftp.html
+++ b/www/api-docs/services_tftp.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_timidity.html b/www/api-docs/services_timidity.html
index be9e71a..01f47ff 100644
--- a/www/api-docs/services_timidity.html
+++ b/www/api-docs/services_timidity.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_ucspitcp.html b/www/api-docs/services_ucspitcp.html
index c04cf98..0f86b1f 100644
--- a/www/api-docs/services_ucspitcp.html
+++ b/www/api-docs/services_ucspitcp.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -348,9 +348,9 @@ Define a specified domain as a ucspitcp service.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -358,9 +358,9 @@ No
<tr><td>
entrypoint
</td><td>
-
+<p>
The type associated with the process program.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_uucp.html b/www/api-docs/services_uucp.html
index 6836fa0..f49c09f 100644
--- a/www/api-docs/services_uucp.html
+++ b/www/api-docs/services_uucp.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
diff --git a/www/api-docs/services_xdm.html b/www/api-docs/services_xdm.html
deleted file mode 100644
index 01e0011..0000000
--- a/www/api-docs/services_xdm.html
+++ /dev/null
@@ -1,312 +0,0 @@
-<html>
-<head>
-<title>
- Security Enhanced Linux Reference Policy
- </title>
-<style type="text/css" media="all">@import "style.css";</style>
-</head>
-<body>
-<div id="Header">Security Enhanced Linux Reference Policy</div>
-<div id='Menu'>
-
- <a href="admin.html">+
- admin</a></br/>
- <div id='subitem'>
-
- </div>
-
- <a href="apps.html">+
- apps</a></br/>
- <div id='subitem'>
-
- </div>
-
- <a href="kernel.html">+
- kernel</a></br/>
- <div id='subitem'>
-
- </div>
-
- <a href="services.html">+
- services</a></br/>
- <div id='subitem'>
-
- - <a href='services_apache.html'>
- apache</a><br/>
-
- - <a href='services_apm.html'>
- apm</a><br/>
-
- - <a href='services_arpwatch.html'>
- arpwatch</a><br/>
-
- - <a href='services_automount.html'>
- automount</a><br/>
-
- - <a href='services_avahi.html'>
- avahi</a><br/>
-
- - <a href='services_bind.html'>
- bind</a><br/>
-
- - <a href='services_bluetooth.html'>
- bluetooth</a><br/>
-
- - <a href='services_canna.html'>
- canna</a><br/>
-
- - <a href='services_comsat.html'>
- comsat</a><br/>
-
- - <a href='services_cpucontrol.html'>
- cpucontrol</a><br/>
-
- - <a href='services_cron.html'>
- cron</a><br/>
-
- - <a href='services_cups.html'>
- cups</a><br/>
-
- - <a href='services_cvs.html'>
- cvs</a><br/>
-
- - <a href='services_cyrus.html'>
- cyrus</a><br/>
-
- - <a href='services_dbskk.html'>
- dbskk</a><br/>
-
- - <a href='services_dbus.html'>
- dbus</a><br/>
-
- - <a href='services_dhcp.html'>
- dhcp</a><br/>
-
- - <a href='services_dictd.html'>
- dictd</a><br/>
-
- - <a href='services_distcc.html'>
- distcc</a><br/>
-
- - <a href='services_djbdns.html'>
- djbdns</a><br/>
-
- - <a href='services_dovecot.html'>
- dovecot</a><br/>
-
- - <a href='services_fetchmail.html'>
- fetchmail</a><br/>
-
- - <a href='services_finger.html'>
- finger</a><br/>
-
- - <a href='services_ftp.html'>
- ftp</a><br/>
-
- - <a href='services_gpm.html'>
- gpm</a><br/>
-
- - <a href='services_hal.html'>
- hal</a><br/>
-
- - <a href='services_howl.html'>
- howl</a><br/>
-
- - <a href='services_i18n_input.html'>
- i18n_input</a><br/>
-
- - <a href='services_inetd.html'>
- inetd</a><br/>
-
- - <a href='services_inn.html'>
- inn</a><br/>
-
- - <a href='services_irqbalance.html'>
- irqbalance</a><br/>
-
- - <a href='services_kerberos.html'>
- kerberos</a><br/>
-
- - <a href='services_ktalk.html'>
- ktalk</a><br/>
-
- - <a href='services_ldap.html'>
- ldap</a><br/>
-
- - <a href='services_lpd.html'>
- lpd</a><br/>
-
- - <a href='services_mailman.html'>
- mailman</a><br/>
-
- - <a href='services_mta.html'>
- mta</a><br/>
-
- - <a href='services_mysql.html'>
- mysql</a><br/>
-
- - <a href='services_networkmanager.html'>
- networkmanager</a><br/>
-
- - <a href='services_nis.html'>
- nis</a><br/>
-
- - <a href='services_nscd.html'>
- nscd</a><br/>
-
- - <a href='services_ntp.html'>
- ntp</a><br/>
-
- - <a href='services_openct.html'>
- openct</a><br/>
-
- - <a href='services_pegasus.html'>
- pegasus</a><br/>
-
- - <a href='services_portmap.html'>
- portmap</a><br/>
-
- - <a href='services_postfix.html'>
- postfix</a><br/>
-
- - <a href='services_postgresql.html'>
- postgresql</a><br/>
-
- - <a href='services_ppp.html'>
- ppp</a><br/>
-
- - <a href='services_privoxy.html'>
- privoxy</a><br/>
-
- - <a href='services_procmail.html'>
- procmail</a><br/>
-
- - <a href='services_publicfile.html'>
- publicfile</a><br/>
-
- - <a href='services_radius.html'>
- radius</a><br/>
-
- - <a href='services_radvd.html'>
- radvd</a><br/>
-
- - <a href='services_rdisc.html'>
- rdisc</a><br/>
-
- - <a href='services_remotelogin.html'>
- remotelogin</a><br/>
-
- - <a href='services_rlogin.html'>
- rlogin</a><br/>
-
- - <a href='services_roundup.html'>
- roundup</a><br/>
-
- - <a href='services_rpc.html'>
- rpc</a><br/>
-
- - <a href='services_rshd.html'>
- rshd</a><br/>
-
- - <a href='services_rsync.html'>
- rsync</a><br/>
-
- - <a href='services_samba.html'>
- samba</a><br/>
-
- - <a href='services_sasl.html'>
- sasl</a><br/>
-
- - <a href='services_sendmail.html'>
- sendmail</a><br/>
-
- - <a href='services_slrnpull.html'>
- slrnpull</a><br/>
-
- - <a href='services_smartmon.html'>
- smartmon</a><br/>
-
- - <a href='services_snmp.html'>
- snmp</a><br/>
-
- - <a href='services_spamassassin.html'>
- spamassassin</a><br/>
-
- - <a href='services_squid.html'>
- squid</a><br/>
-
- - <a href='services_ssh.html'>
- ssh</a><br/>
-
- - <a href='services_stunnel.html'>
- stunnel</a><br/>
-
- - <a href='services_sysstat.html'>
- sysstat</a><br/>
-
- - <a href='services_tcpd.html'>
- tcpd</a><br/>
-
- - <a href='services_telnet.html'>
- telnet</a><br/>
-
- - <a href='services_tftp.html'>
- tftp</a><br/>
-
- - <a href='services_timidity.html'>
- timidity</a><br/>
-
- - <a href='services_ucspitcp.html'>
- ucspitcp</a><br/>
-
- - <a href='services_uucp.html'>
- uucp</a><br/>
-
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- - <a href='services_xfs.html'>
- xfs</a><br/>
-
- - <a href='services_zebra.html'>
- zebra</a><br/>
-
- </div>
-
- <a href="system.html">+
- system</a></br/>
- <div id='subitem'>
-
- </div>
-
- <br/><p/>
- <a href="global_booleans.html">* Global Booleans </a>
- <br/><p/>
- <a href="global_tunables.html">* Global Tunables </a>
- <p/><br/><p/>
- <a href="index.html">* Layer Index</a>
- <br/><p/>
- <a href="interfaces.html">* Interface Index</a>
- <br/><p/>
- <a href="templates.html">* Template Index</a>
-</div>
-
-<div id="Content">
-<a name="top":></a>
-<h1>Layer: services</h1><p/>
-<h2>Module: xdm</h2><p/>
-
-<h3>Description:</h3>
-
-<p><p>X windows login display manager</p></p>
-
-
-
-
-
-<h3>No interfaces or templates.</h3>
-
-
-</div>
-</body>
-</html>
diff --git a/www/api-docs/services_xfs.html b/www/api-docs/services_xfs.html
index 506bb31..99e8b33 100644
--- a/www/api-docs/services_xfs.html
+++ b/www/api-docs/services_xfs.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -305,13 +305,13 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
-<a name="link_xfs_read_socket"></a>
+<a name="link_xfs_read_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>xfs_read_socket</b>(
+<b>xfs_read_sockets</b>(
@@ -336,9 +336,52 @@ Read a X font server named socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xfs_stream_connect"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+<b>xfs_stream_connect</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Connect to a X font server over
+a unix domain stream socket.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/services_xserver.html b/www/api-docs/services_xserver.html
new file mode 100644
index 0000000..4160777
--- /dev/null
+++ b/www/api-docs/services_xserver.html
@@ -0,0 +1,1236 @@
+<html>
+<head>
+<title>
+ Security Enhanced Linux Reference Policy
+ </title>
+<style type="text/css" media="all">@import "style.css";</style>
+</head>
+<body>
+<div id="Header">Security Enhanced Linux Reference Policy</div>
+<div id='Menu'>
+
+ <a href="admin.html">+
+ admin</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="apps.html">+
+ apps</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="kernel.html">+
+ kernel</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <a href="services.html">+
+ services</a></br/>
+ <div id='subitem'>
+
+ - <a href='services_apache.html'>
+ apache</a><br/>
+
+ - <a href='services_apm.html'>
+ apm</a><br/>
+
+ - <a href='services_arpwatch.html'>
+ arpwatch</a><br/>
+
+ - <a href='services_automount.html'>
+ automount</a><br/>
+
+ - <a href='services_avahi.html'>
+ avahi</a><br/>
+
+ - <a href='services_bind.html'>
+ bind</a><br/>
+
+ - <a href='services_bluetooth.html'>
+ bluetooth</a><br/>
+
+ - <a href='services_canna.html'>
+ canna</a><br/>
+
+ - <a href='services_comsat.html'>
+ comsat</a><br/>
+
+ - <a href='services_cpucontrol.html'>
+ cpucontrol</a><br/>
+
+ - <a href='services_cron.html'>
+ cron</a><br/>
+
+ - <a href='services_cups.html'>
+ cups</a><br/>
+
+ - <a href='services_cvs.html'>
+ cvs</a><br/>
+
+ - <a href='services_cyrus.html'>
+ cyrus</a><br/>
+
+ - <a href='services_dbskk.html'>
+ dbskk</a><br/>
+
+ - <a href='services_dbus.html'>
+ dbus</a><br/>
+
+ - <a href='services_dhcp.html'>
+ dhcp</a><br/>
+
+ - <a href='services_dictd.html'>
+ dictd</a><br/>
+
+ - <a href='services_distcc.html'>
+ distcc</a><br/>
+
+ - <a href='services_djbdns.html'>
+ djbdns</a><br/>
+
+ - <a href='services_dovecot.html'>
+ dovecot</a><br/>
+
+ - <a href='services_fetchmail.html'>
+ fetchmail</a><br/>
+
+ - <a href='services_finger.html'>
+ finger</a><br/>
+
+ - <a href='services_ftp.html'>
+ ftp</a><br/>
+
+ - <a href='services_gpm.html'>
+ gpm</a><br/>
+
+ - <a href='services_hal.html'>
+ hal</a><br/>
+
+ - <a href='services_howl.html'>
+ howl</a><br/>
+
+ - <a href='services_i18n_input.html'>
+ i18n_input</a><br/>
+
+ - <a href='services_inetd.html'>
+ inetd</a><br/>
+
+ - <a href='services_inn.html'>
+ inn</a><br/>
+
+ - <a href='services_irqbalance.html'>
+ irqbalance</a><br/>
+
+ - <a href='services_kerberos.html'>
+ kerberos</a><br/>
+
+ - <a href='services_ktalk.html'>
+ ktalk</a><br/>
+
+ - <a href='services_ldap.html'>
+ ldap</a><br/>
+
+ - <a href='services_lpd.html'>
+ lpd</a><br/>
+
+ - <a href='services_mailman.html'>
+ mailman</a><br/>
+
+ - <a href='services_mta.html'>
+ mta</a><br/>
+
+ - <a href='services_mysql.html'>
+ mysql</a><br/>
+
+ - <a href='services_networkmanager.html'>
+ networkmanager</a><br/>
+
+ - <a href='services_nis.html'>
+ nis</a><br/>
+
+ - <a href='services_nscd.html'>
+ nscd</a><br/>
+
+ - <a href='services_ntp.html'>
+ ntp</a><br/>
+
+ - <a href='services_openct.html'>
+ openct</a><br/>
+
+ - <a href='services_pegasus.html'>
+ pegasus</a><br/>
+
+ - <a href='services_portmap.html'>
+ portmap</a><br/>
+
+ - <a href='services_postfix.html'>
+ postfix</a><br/>
+
+ - <a href='services_postgresql.html'>
+ postgresql</a><br/>
+
+ - <a href='services_ppp.html'>
+ ppp</a><br/>
+
+ - <a href='services_privoxy.html'>
+ privoxy</a><br/>
+
+ - <a href='services_procmail.html'>
+ procmail</a><br/>
+
+ - <a href='services_publicfile.html'>
+ publicfile</a><br/>
+
+ - <a href='services_radius.html'>
+ radius</a><br/>
+
+ - <a href='services_radvd.html'>
+ radvd</a><br/>
+
+ - <a href='services_rdisc.html'>
+ rdisc</a><br/>
+
+ - <a href='services_remotelogin.html'>
+ remotelogin</a><br/>
+
+ - <a href='services_rlogin.html'>
+ rlogin</a><br/>
+
+ - <a href='services_roundup.html'>
+ roundup</a><br/>
+
+ - <a href='services_rpc.html'>
+ rpc</a><br/>
+
+ - <a href='services_rshd.html'>
+ rshd</a><br/>
+
+ - <a href='services_rsync.html'>
+ rsync</a><br/>
+
+ - <a href='services_samba.html'>
+ samba</a><br/>
+
+ - <a href='services_sasl.html'>
+ sasl</a><br/>
+
+ - <a href='services_sendmail.html'>
+ sendmail</a><br/>
+
+ - <a href='services_slrnpull.html'>
+ slrnpull</a><br/>
+
+ - <a href='services_smartmon.html'>
+ smartmon</a><br/>
+
+ - <a href='services_snmp.html'>
+ snmp</a><br/>
+
+ - <a href='services_spamassassin.html'>
+ spamassassin</a><br/>
+
+ - <a href='services_squid.html'>
+ squid</a><br/>
+
+ - <a href='services_ssh.html'>
+ ssh</a><br/>
+
+ - <a href='services_stunnel.html'>
+ stunnel</a><br/>
+
+ - <a href='services_sysstat.html'>
+ sysstat</a><br/>
+
+ - <a href='services_tcpd.html'>
+ tcpd</a><br/>
+
+ - <a href='services_telnet.html'>
+ telnet</a><br/>
+
+ - <a href='services_tftp.html'>
+ tftp</a><br/>
+
+ - <a href='services_timidity.html'>
+ timidity</a><br/>
+
+ - <a href='services_ucspitcp.html'>
+ ucspitcp</a><br/>
+
+ - <a href='services_uucp.html'>
+ uucp</a><br/>
+
+ - <a href='services_xfs.html'>
+ xfs</a><br/>
+
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
+ - <a href='services_zebra.html'>
+ zebra</a><br/>
+
+ </div>
+
+ <a href="system.html">+
+ system</a></br/>
+ <div id='subitem'>
+
+ </div>
+
+ <br/><p/>
+ <a href="global_booleans.html">* Global Booleans </a>
+ <br/><p/>
+ <a href="global_tunables.html">* Global Tunables </a>
+ <p/><br/><p/>
+ <a href="index.html">* Layer Index</a>
+ <br/><p/>
+ <a href="interfaces.html">* Interface Index</a>
+ <br/><p/>
+ <a href="templates.html">* Template Index</a>
+</div>
+
+<div id="Content">
+<a name="top":></a>
+<h1>Layer: services</h1><p/>
+<h2>Module: xserver</h2><p/>
+
+<a href=#interfaces>Interfaces</a>
+<a href=#templates>Templates</a>
+
+<h3>Description:</h3>
+
+<p><p>X Windows Server</p></p>
+
+
+
+<a name="interfaces"></a>
+<h3>Interfaces: </h3>
+
+<a name="link_xserver_create_xdm_tmp_sockets"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>xserver_create_xdm_tmp_sockets</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Create a named socket in a XDM
+temporary directory.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xserver_delete_log"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>xserver_delete_log</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to write the X server
+log files.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to not audit
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xserver_domtrans_xdm_xserver"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>xserver_domtrans_xdm_xserver</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute the X server in the XDM X server domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xserver_dontaudit_write_log"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>xserver_dontaudit_write_log</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to write the X server
+log files.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to not audit
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xserver_read_xdm_pid"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>xserver_read_xdm_pid</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read XDM pid files.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xserver_read_xdm_rw_config"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>xserver_read_xdm_rw_config</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read xdm-writable configuration files.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xserver_setattr_xdm_tmp_dirs"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>xserver_setattr_xdm_tmp_dirs</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Set the attributes of XDM temporary directories.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xserver_stream_connect_xdm"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>xserver_stream_connect_xdm</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Connect to XDM over a unix domain
+stream socket.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xserver_xsession_entry_type"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>xserver_xsession_entry_type</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Make an X session script an entrypoint for the specified domain.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The domain for which the shell is an entrypoint.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xserver_xsession_spec_domtrans"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>xserver_xsession_spec_domtrans</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ target_domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute an X session in the target domain. This
+is an explicit transition, requiring the
+caller to use setexeccon().
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Execute an Xsession in the target domain. This
+is an explicit transition, requiring the
+caller to use setexeccon().
+</p><p>
+</p><p>
+No interprocess communication (signals, pipes,
+etc.) is provided by this interface since
+the domains are not owned by this module.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+target_domain
+</td><td>
+<p>
+The type of the shell process.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+<a name="templates"></a>
+<h3>Templates: </h3>
+
+<a name="link_xserver_common_domain_template"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>xserver_common_domain_template</b>(
+
+
+
+
+ prefix
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Template to create types and rules common to
+all X server domains.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+prefix
+</td><td>
+<p>
+The prefix of the domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xserver_domtrans_user_xauth"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>xserver_domtrans_user_xauth</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Transition to a user Xauthority domain.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Transition to a user Xauthority domain.
+</p><p>
+</p><p>
+This is a templated interface, and should only
+be called from a per-userdomain template.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xserver_per_userdomain_template"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>xserver_per_userdomain_template</b>(
+
+
+
+
+ prefix
+
+
+
+ ,
+
+
+
+ user_domain
+
+
+
+ ,
+
+
+
+ user_role
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+The per user domain template for the xserver module.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Define a derived domain for the X server when executed
+by a user domain (e.g. via startx). See the xdm module
+if using an X Display Manager.
+</p><p>
+</p><p>
+This is invoked automatically for each user and
+generally does not need to be invoked directly
+by policy writers.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+user_domain
+</td><td>
+<p>
+The type of the user domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+user_role
+</td><td>
+<p>
+The role associated with the user domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xserver_ro_session_template"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>xserver_ro_session_template</b>(
+
+
+
+
+ prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ tmpfs_type
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Template for creating sessions on a
+prefix X server, with read-only
+access to the X server shared
+memory segments.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+prefix
+</td><td>
+<p>
+The prefix of the domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+tmpfs_type
+</td><td>
+<p>
+The type of the domain SYSV tmpfs files.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xserver_rw_session_template"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>xserver_rw_session_template</b>(
+
+
+
+
+ prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ tmpfs_type
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Template for creating sessions on a
+prefix X server, with read and write
+access to the X server shared
+memory segments.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+prefix
+</td><td>
+<p>
+The prefix of the domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+tmpfs_type
+</td><td>
+<p>
+The type of the domain SYSV tmpfs files.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_xserver_user_client_template"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>xserver_user_client_template</b>(
+
+
+
+
+ prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ tmpfs_type
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Template for creating full client sessions
+on a user X server.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+prefix
+</td><td>
+<p>
+The prefix of the domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+tmpfs_type
+</td><td>
+<p>
+The type of the domain SYSV tmpfs files.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+
+</div>
+</body>
+</html>
diff --git a/www/api-docs/services_zebra.html b/www/api-docs/services_zebra.html
index ecc6a8a..9dba3a5 100644
--- a/www/api-docs/services_zebra.html
+++ b/www/api-docs/services_zebra.html
@@ -262,12 +262,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -336,9 +336,9 @@ Read the configuration files for zebra.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_authlogin.html b/www/api-docs/system_authlogin.html
index dec0da3..35bc4ac 100644
--- a/www/api-docs/system_authlogin.html
+++ b/www/api-docs/system_authlogin.html
@@ -171,9 +171,9 @@ Append to the login failure log.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -213,9 +213,9 @@ Append only to the last logins log.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -255,9 +255,9 @@ Append to login records (wtmp).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -297,9 +297,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -339,9 +339,9 @@ Delete pam_console data.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -381,9 +381,9 @@ Delete pam PID files.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -423,9 +423,9 @@ Run unix_chkpwd to check a password.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -473,9 +473,9 @@ Execute a login_program in the target domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -483,9 +483,9 @@ No
<tr><td>
target_domain
</td><td>
-
+<p>
The type of the login_program process.
-
+</p>
</td><td>
No
</td></tr>
@@ -525,9 +525,9 @@ Execute pam programs in the pam domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -567,9 +567,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -609,9 +609,9 @@ Execute utempter programs in the utempter domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -651,9 +651,9 @@ Do not audit attemps to execute utempter executable.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -694,9 +694,9 @@ of the shadow passwords file.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -736,9 +736,9 @@ Do not audit attemps to read PAM pid files.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -779,9 +779,9 @@ password file (/etc/shadow).
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -821,9 +821,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -863,9 +863,9 @@ Execute the pam program.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -874,18 +874,18 @@ No
</div>
</div>
-<a name="link_auth_filetrans_login_records"></a>
+<a name="link_auth_getattr_shadow"></a>
<div id="interface">
<div id="codeblock">
-<b>auth_filetrans_login_records</b>(
+<b>auth_getattr_shadow</b>(
- ?
+ domain
)<br>
@@ -894,7 +894,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Get the attributes of the shadow passwords file.
</p>
@@ -903,11 +903,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -916,18 +916,18 @@ No
</div>
</div>
-<a name="link_auth_getattr_shadow"></a>
+<a name="link_auth_list_pam_console_data"></a>
<div id="interface">
<div id="codeblock">
-<b>auth_getattr_shadow</b>(
+<b>auth_list_pam_console_data</b>(
- domain
+ ?
)<br>
@@ -936,7 +936,7 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of the shadow passwords file.
+Summary is missing!
</p>
@@ -945,11 +945,11 @@ Get the attributes of the shadow passwords file.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -958,13 +958,13 @@ No
</div>
</div>
-<a name="link_auth_list_pam_console_data"></a>
+<a name="link_auth_log_filetrans_login_records"></a>
<div id="interface">
<div id="codeblock">
-<b>auth_list_pam_console_data</b>(
+<b>auth_log_filetrans_login_records</b>(
@@ -989,9 +989,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1031,9 +1031,9 @@ Use the login program as an entry point program.
<tr><td>
domain
</td><td>
-
+<p>
The type of process using the login program as entry point.
-
+</p>
</td><td>
No
</td></tr>
@@ -1061,12 +1061,8 @@ No
- [
-
exception_types
- ]
-
)<br>
</div>
@@ -1086,9 +1082,9 @@ the shadow passwords and listed exceptions.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain perfoming this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1096,12 +1092,12 @@ No
<tr><td>
exception_types
</td><td>
-
+<p>
The types to be excluded. Each type or attribute
must be negated by the caller.
-
+</p>
</td><td>
-yes
+Yes
</td></tr>
</table>
@@ -1139,9 +1135,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1181,9 +1177,51 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
+</p>
+</td><td>
+No
+</td></tr>
+</table>
+</div>
+</div>
+
+<a name="link_auth_manage_pam_pid"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>auth_manage_pam_pid</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Manage pam PID files.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -1223,9 +1261,52 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_auth_manage_var_auth"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+<b>auth_manage_var_auth</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Manage var auth files. Used by various other applications
+and pam applets etc.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -1253,12 +1334,8 @@ No
- [
-
exception_types
- ]
-
)<br>
</div>
@@ -1278,9 +1355,9 @@ the shadow passwords and listed exceptions.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain perfoming this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1288,12 +1365,12 @@ No
<tr><td>
exception_types
</td><td>
-
+<p>
The types to be excluded. Each type or attribute
must be negated by the caller.
-
+</p>
</td><td>
-yes
+Yes
</td></tr>
</table>
@@ -1319,12 +1396,8 @@ yes
- [
-
exception_types
- ]
-
)<br>
</div>
@@ -1344,9 +1417,9 @@ the shadow passwords and listed exceptions.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain perfoming this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1354,12 +1427,12 @@ No
<tr><td>
exception_types
</td><td>
-
+<p>
The types to be excluded. Each type or attribute
must be negated by the caller.
-
+</p>
</td><td>
-yes
+Yes
</td></tr>
</table>
@@ -1385,12 +1458,8 @@ yes
- [
-
exception_types
- ]
-
)<br>
</div>
@@ -1410,9 +1479,9 @@ the shadow passwords and listed exceptions.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain perfoming this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1420,12 +1489,12 @@ No
<tr><td>
exception_types
</td><td>
-
+<p>
The types to be excluded. Each type or attribute
must be negated by the caller.
-
+</p>
</td><td>
-yes
+Yes
</td></tr>
</table>
@@ -1463,9 +1532,9 @@ Read the last logins log.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1505,9 +1574,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1547,9 +1616,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1589,9 +1658,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1631,9 +1700,9 @@ Read the shadow passwords file (/etc/shadow)
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1661,12 +1730,8 @@ No
- [
-
exception_types
- ]
-
)<br>
</div>
@@ -1686,9 +1751,9 @@ the shadow passwords and listed exceptions.
<tr><td>
domain
</td><td>
-
+<p>
The type of the domain perfoming this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1696,12 +1761,12 @@ No
<tr><td>
exception_types
</td><td>
-
+<p>
The types to be excluded. Each type or attribute
must be negated by the caller.
-
+</p>
</td><td>
-yes
+Yes
</td></tr>
</table>
@@ -1740,9 +1805,9 @@ password file type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1783,9 +1848,9 @@ password file type.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1841,9 +1906,9 @@ Execute pam programs in the PAM domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1851,9 +1916,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to allow the PAM domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -1861,9 +1926,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the PAM domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -1919,9 +1984,9 @@ Execute utempter programs in the utempter domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1929,9 +1994,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to allow the utempter domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -1939,9 +2004,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the utempter domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -1981,9 +2046,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -2023,9 +2088,9 @@ Read and write to the last logins log.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2065,9 +2130,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -2107,9 +2172,9 @@ Read and write the shadow password file (/etc/shadow).
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2150,9 +2215,9 @@ pam_console data directory.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2192,9 +2257,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -2234,9 +2299,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -2288,9 +2353,9 @@ be passed. No access is granted yet.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2330,9 +2395,9 @@ Use nsswitch to look up uid-username mappings.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2372,9 +2437,9 @@ Write to login records (wtmp).
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2442,10 +2507,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -2453,9 +2518,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -2503,10 +2568,10 @@ to authenticate users by using PAM unix_chkpwd support.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -2577,10 +2642,10 @@ by policy writers.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -2588,9 +2653,9 @@ No
<tr><td>
user_domain
</td><td>
-
+<p>
The type of the user domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -2598,9 +2663,9 @@ No
<tr><td>
user_role
</td><td>
-
+<p>
The role associated with the user domain.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_clock.html b/www/api-docs/system_clock.html
index a33a0f3..ea7f38f 100644
--- a/www/api-docs/system_clock.html
+++ b/www/api-docs/system_clock.html
@@ -168,9 +168,9 @@ Execute hwclock in the clock domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -210,9 +210,9 @@ Execute hwclock in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -269,9 +269,9 @@ allow the specified role the hwclock domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -279,9 +279,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the clock domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -289,9 +289,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the clock domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -331,9 +331,9 @@ Allow executing domain to modify clock drift
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_daemontools.html b/www/api-docs/system_daemontools.html
index ea91cb2..557632a 100644
--- a/www/api-docs/system_daemontools.html
+++ b/www/api-docs/system_daemontools.html
@@ -172,9 +172,9 @@ Execute in the svc_multilog_t domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -214,9 +214,9 @@ Execute in the svc_run_t domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -256,9 +256,9 @@ Execute in the svc_start_t domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -298,9 +298,9 @@ An ipc channel between the supervised domain and svc_start_t
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access to svc_start_t.
-
+</p>
</td><td>
No
</td></tr>
@@ -340,9 +340,9 @@ Allow a domain to create svc_svc_t files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -382,9 +382,9 @@ Allow a domain to read svc_svc_t files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -432,9 +432,9 @@ Define a specified domain as a supervised service.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -442,9 +442,9 @@ No
<tr><td>
entrypoint
</td><td>
-
+<p>
The type associated with the process program.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_fstools.html b/www/api-docs/system_fstools.html
index 984d2d2..c05e520 100644
--- a/www/api-docs/system_fstools.html
+++ b/www/api-docs/system_fstools.html
@@ -168,9 +168,9 @@ Execute fs tools in the fstools domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -210,9 +210,9 @@ Execute fsadm in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -253,9 +253,9 @@ filesystem tools programs.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -296,9 +296,9 @@ filesystem tools programs.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -355,9 +355,9 @@ allow the specified role the fs tools domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -365,9 +365,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the fs tools domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -375,9 +375,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the fs tools domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_getty.html b/www/api-docs/system_getty.html
index d1fa34f..18da826 100644
--- a/www/api-docs/system_getty.html
+++ b/www/api-docs/system_getty.html
@@ -168,9 +168,9 @@ Execute gettys in the getty domain.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -179,13 +179,13 @@ No
</div>
</div>
-<a name="link_getty_modify_config"></a>
+<a name="link_getty_read_config"></a>
<div id="interface">
<div id="codeblock">
-<b>getty_modify_config</b>(
+<b>getty_read_config</b>(
@@ -199,7 +199,7 @@ No
<h5>Summary</h5>
<p>
-Allow process to edit getty config file.
+Allow process to read getty config file.
</p>
@@ -210,9 +210,9 @@ Allow process to edit getty config file.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -221,13 +221,13 @@ No
</div>
</div>
-<a name="link_getty_read_config"></a>
+<a name="link_getty_read_log"></a>
<div id="interface">
<div id="codeblock">
-<b>getty_read_config</b>(
+<b>getty_read_log</b>(
@@ -241,7 +241,7 @@ No
<h5>Summary</h5>
<p>
-Allow process to read getty config file.
+Allow process to read getty log file.
</p>
@@ -252,9 +252,9 @@ Allow process to read getty config file.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -263,13 +263,13 @@ No
</div>
</div>
-<a name="link_getty_read_log"></a>
+<a name="link_getty_rw_config"></a>
<div id="interface">
<div id="codeblock">
-<b>getty_read_log</b>(
+<b>getty_rw_config</b>(
@@ -283,7 +283,7 @@ No
<h5>Summary</h5>
<p>
-Allow process to read getty log file.
+Allow process to edit getty config file.
</p>
@@ -294,9 +294,51 @@ Allow process to read getty log file.
<tr><td>
domain
</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_getty_use_fds"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>getty_use_fds</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Inherit and use getty file descriptors.
+</p>
+
-The type of the process performing this action.
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_hostname.html b/www/api-docs/system_hostname.html
index 71fa6cc..e185fc7 100644
--- a/www/api-docs/system_hostname.html
+++ b/www/api-docs/system_hostname.html
@@ -168,9 +168,9 @@ Execute hostname in the hostname domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -210,9 +210,9 @@ Execute hostname in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -269,9 +269,9 @@ allow the specified role the hostname domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -279,9 +279,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the hostname domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -289,9 +289,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the hostname domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_hotplug.html b/www/api-docs/system_hotplug.html
index 6f78a6c..4c7efb4 100644
--- a/www/api-docs/system_hotplug.html
+++ b/www/api-docs/system_hotplug.html
@@ -171,9 +171,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -213,9 +213,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -224,13 +224,13 @@ No
</div>
</div>
-<a name="link_hotplug_dontaudit_use_fd"></a>
+<a name="link_hotplug_dontaudit_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>hotplug_dontaudit_use_fd</b>(
+<b>hotplug_dontaudit_use_fds</b>(
@@ -255,9 +255,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -297,9 +297,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -308,13 +308,13 @@ No
</div>
</div>
-<a name="link_hotplug_getattr_config_dir"></a>
+<a name="link_hotplug_getattr_config_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>hotplug_getattr_config_dir</b>(
+<b>hotplug_getattr_config_dirs</b>(
@@ -339,9 +339,9 @@ Get the attributes of the hotplug configuration directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -381,9 +381,9 @@ Read the configuration files for hotplug.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -423,9 +423,9 @@ Search the hotplug configuration directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -434,13 +434,13 @@ No
</div>
</div>
-<a name="link_hotplug_use_fd"></a>
+<a name="link_hotplug_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>hotplug_use_fd</b>(
+<b>hotplug_use_fds</b>(
@@ -465,9 +465,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_init.html b/www/api-docs/system_init.html
index 63e0941..375b549 100644
--- a/www/api-docs/system_init.html
+++ b/www/api-docs/system_init.html
@@ -177,9 +177,9 @@ Create a domain for long running processes
<tr><td>
domain
</td><td>
-
+<p>
Type to be used as a domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -187,9 +187,9 @@ No
<tr><td>
entry_point
</td><td>
-
+<p>
Type of the program to be used as an entry point to this domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -230,9 +230,9 @@ init scripts over dbus.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -280,9 +280,9 @@ Create a domain which can be started by init.
<tr><td>
domain
</td><td>
-
+<p>
Type to be used as a domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -290,9 +290,9 @@ No
<tr><td>
entry_point
</td><td>
-
+<p>
Type of the program to be used as an entry point to this domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -332,9 +332,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -374,9 +374,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -416,9 +416,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -427,13 +427,13 @@ No
</div>
</div>
-<a name="link_init_dontaudit_lock_pid"></a>
+<a name="link_init_dontaudit_lock_utmp"></a>
<div id="interface">
<div id="codeblock">
-<b>init_dontaudit_lock_pid</b>(
+<b>init_dontaudit_lock_utmp</b>(
@@ -459,9 +459,9 @@ init script pid files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -470,13 +470,13 @@ No
</div>
</div>
-<a name="link_init_dontaudit_rw_script_pid"></a>
+<a name="link_init_dontaudit_rw_initctl"></a>
<div id="interface">
<div id="codeblock">
-<b>init_dontaudit_rw_script_pid</b>(
+<b>init_dontaudit_rw_initctl</b>(
@@ -501,9 +501,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -512,18 +512,18 @@ No
</div>
</div>
-<a name="link_init_dontaudit_unix_connect_script"></a>
+<a name="link_init_dontaudit_rw_utmp"></a>
<div id="interface">
<div id="codeblock">
-<b>init_dontaudit_unix_connect_script</b>(
+<b>init_dontaudit_rw_utmp</b>(
- domain
+ ?
)<br>
@@ -532,8 +532,7 @@ No
<h5>Summary</h5>
<p>
-Dont audit the specified domain connecting to
-init scripts with a unix domain stream socket.
+Summary is missing!
</p>
@@ -542,11 +541,11 @@ init scripts with a unix domain stream socket.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -555,18 +554,18 @@ No
</div>
</div>
-<a name="link_init_dontaudit_use_fd"></a>
+<a name="link_init_dontaudit_stream_connect_script"></a>
<div id="interface">
<div id="codeblock">
-<b>init_dontaudit_use_fd</b>(
+<b>init_dontaudit_stream_connect_script</b>(
- ?
+ domain
)<br>
@@ -575,7 +574,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Dont audit the specified domain connecting to
+init scripts with a unix domain stream socket.
</p>
@@ -584,11 +584,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -597,13 +597,13 @@ No
</div>
</div>
-<a name="link_init_dontaudit_use_initctl"></a>
+<a name="link_init_dontaudit_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>init_dontaudit_use_initctl</b>(
+<b>init_dontaudit_use_fds</b>(
@@ -628,9 +628,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -639,13 +639,13 @@ No
</div>
</div>
-<a name="link_init_dontaudit_use_script_fd"></a>
+<a name="link_init_dontaudit_use_script_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>init_dontaudit_use_script_fd</b>(
+<b>init_dontaudit_use_script_fds</b>(
@@ -670,9 +670,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -681,13 +681,13 @@ No
</div>
</div>
-<a name="link_init_dontaudit_use_script_pty"></a>
+<a name="link_init_dontaudit_use_script_ptys"></a>
<div id="interface">
<div id="codeblock">
-<b>init_dontaudit_use_script_pty</b>(
+<b>init_dontaudit_use_script_ptys</b>(
@@ -713,9 +713,9 @@ write the init script pty.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -724,13 +724,13 @@ No
</div>
</div>
-<a name="link_init_dontaudit_write_script_pid"></a>
+<a name="link_init_dontaudit_write_utmp"></a>
<div id="interface">
<div id="codeblock">
-<b>init_dontaudit_write_script_pid</b>(
+<b>init_dontaudit_write_utmp</b>(
@@ -755,9 +755,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -797,9 +797,9 @@ Execute the init program in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -808,13 +808,13 @@ No
</div>
</div>
-<a name="link_init_exec_script"></a>
+<a name="link_init_exec_script_files"></a>
<div id="interface">
<div id="codeblock">
-<b>init_exec_script</b>(
+<b>init_exec_script_files</b>(
@@ -839,9 +839,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -850,38 +850,18 @@ No
</div>
</div>
-<a name="link_init_filetrans_script_tmp"></a>
+<a name="link_init_getattr_initctl"></a>
<div id="interface">
<div id="codeblock">
-<b>init_filetrans_script_tmp</b>(
-
-
-
-
- domain
-
-
-
- ,
-
-
-
- file_type
-
+<b>init_getattr_initctl</b>(
- ,
-
- [
-
- object_class
-
- ]
+ ?
)<br>
@@ -890,8 +870,7 @@ No
<h5>Summary</h5>
<p>
-Create files in a init script
-temporary data directory.
+Summary is missing!
</p>
@@ -900,51 +879,31 @@ temporary data directory.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
-</td><td>
-
-Domain allowed access.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-file_type
+?
</td><td>
-
-The type of the object to be created
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-object_class
-</td><td>
-
-The object class. If not specified, file is used.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
-<a name="link_init_get_process_group"></a>
+<a name="link_init_getattr_script_files"></a>
<div id="interface">
<div id="codeblock">
-<b>init_get_process_group</b>(
+<b>init_getattr_script_files</b>(
- ?
+ domain
)<br>
@@ -953,7 +912,7 @@ yes
<h5>Summary</h5>
<p>
-Summary is missing!
+Get the attribute of init script entrypoint files.
</p>
@@ -962,11 +921,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -975,18 +934,18 @@ No
</div>
</div>
-<a name="link_init_get_script_process_group"></a>
+<a name="link_init_getattr_utmp"></a>
<div id="interface">
<div id="codeblock">
-<b>init_get_script_process_group</b>(
+<b>init_getattr_utmp</b>(
- ?
+ domain
)<br>
@@ -995,7 +954,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Get the attributes of init script process id files.
</p>
@@ -1004,11 +963,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1017,13 +976,13 @@ No
</div>
</div>
-<a name="link_init_getattr_initctl"></a>
+<a name="link_init_getpgid"></a>
<div id="interface">
<div id="codeblock">
-<b>init_getattr_initctl</b>(
+<b>init_getpgid</b>(
@@ -1048,9 +1007,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1059,18 +1018,18 @@ No
</div>
</div>
-<a name="link_init_getattr_script_entry_file"></a>
+<a name="link_init_getpgid_script"></a>
<div id="interface">
<div id="codeblock">
-<b>init_getattr_script_entry_file</b>(
+<b>init_getpgid_script</b>(
- domain
+ ?
)<br>
@@ -1079,7 +1038,7 @@ No
<h5>Summary</h5>
<p>
-Get the attribute of init script entrypoint files.
+Summary is missing!
</p>
@@ -1088,11 +1047,11 @@ Get the attribute of init script entrypoint files.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -1101,13 +1060,13 @@ No
</div>
</div>
-<a name="link_init_getattr_script_pids"></a>
+<a name="link_init_manage_utmp"></a>
<div id="interface">
<div id="codeblock">
-<b>init_getattr_script_pids</b>(
+<b>init_manage_utmp</b>(
@@ -1121,7 +1080,7 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of init script process id files.
+Create, read, write, and delete utmp.
</p>
@@ -1132,9 +1091,9 @@ Get the attributes of init script process id files.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain access allowed.
+</p>
</td><td>
No
</td></tr>
@@ -1143,13 +1102,13 @@ No
</div>
</div>
-<a name="link_init_list_script_pids"></a>
+<a name="link_init_read_script_files"></a>
<div id="interface">
<div id="codeblock">
-<b>init_list_script_pids</b>(
+<b>init_read_script_files</b>(
@@ -1163,8 +1122,7 @@ No
<h5>Summary</h5>
<p>
-List the contents of an init script
-process id directory.
+Read init scripts.
</p>
@@ -1175,9 +1133,9 @@ process id directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1186,13 +1144,13 @@ No
</div>
</div>
-<a name="link_init_read_script"></a>
+<a name="link_init_read_script_state"></a>
<div id="interface">
<div id="codeblock">
-<b>init_read_script</b>(
+<b>init_read_script_state</b>(
@@ -1206,7 +1164,7 @@ No
<h5>Summary</h5>
<p>
-Read init scripts.
+Read the process state (/proc/pid) of the init scripts.
</p>
@@ -1217,9 +1175,9 @@ Read init scripts.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1228,18 +1186,18 @@ No
</div>
</div>
-<a name="link_init_read_script_file"></a>
+<a name="link_init_read_utmp"></a>
<div id="interface">
<div id="codeblock">
-<b>init_read_script_file</b>(
+<b>init_read_utmp</b>(
- domain
+ ?
)<br>
@@ -1248,7 +1206,7 @@ No
<h5>Summary</h5>
<p>
-Read init scripts.
+Summary is missing!
</p>
@@ -1257,11 +1215,11 @@ Read init scripts.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -1270,18 +1228,34 @@ No
</div>
</div>
-<a name="link_init_read_script_pid"></a>
+<a name="link_init_run_daemon"></a>
<div id="interface">
<div id="codeblock">
-<b>init_read_script_pid</b>(
+<b>init_run_daemon</b>(
- ?
+ domain
+
+
+
+ ,
+
+
+
+ role
+
+
+
+ ,
+
+
+
+ terminal
)<br>
@@ -1290,40 +1264,69 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Start and stop daemon programs directly.
</p>
+<h5>Description</h5>
+<p>
+</p><p>
+Start and stop daemon programs directly
+in the traditional "/etc/init.d/daemon start"
+style, and do not require run_init.
+</p><p>
+</p>
+
<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
-</table>
-</div>
-</div>
-
-<a name="link_init_read_script_process_state"></a>
-<div id="interface">
+<tr><td>
+role
+</td><td>
+<p>
+The role to be performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+terminal
+</td><td>
+<p>
+The type of the terminal of the user.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_init_rw_initctl"></a>
+<div id="interface">
<div id="codeblock">
-<b>init_read_script_process_state</b>(
+<b>init_rw_initctl</b>(
- domain
+ ?
)<br>
@@ -1332,7 +1335,7 @@ No
<h5>Summary</h5>
<p>
-Read the process state (/proc/pid) of the init scripts.
+Summary is missing!
</p>
@@ -1341,11 +1344,11 @@ Read the process state (/proc/pid) of the init scripts.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+?
</td><td>
-
-Domain allowed access.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -1354,13 +1357,13 @@ No
</div>
</div>
-<a name="link_init_run_daemon"></a>
+<a name="link_init_rw_script_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>init_run_daemon</b>(
+<b>init_rw_script_pipes</b>(
@@ -1368,41 +1371,16 @@ No
domain
-
- ,
-
-
-
- role
-
-
-
- ,
-
-
-
- terminal
-
-
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Start and stop daemon programs directly.
+Read and write init script unnamed pipes.
</p>
-<h5>Description</h5>
-<p>
-</p><p>
-Start and stop daemon programs directly
-in the traditional "/etc/init.d/daemon start"
-style, and do not require run_init.
-</p><p>
-</p>
-
<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
@@ -1410,29 +1388,51 @@ style, and do not require run_init.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-role
-</td><td>
+</table>
+</div>
+</div>
-The role to be performing this action.
+<a name="link_init_rw_script_tmp_files"></a>
+<div id="interface">
-</td><td>
-No
-</td></tr>
-<tr><td>
-terminal
-</td><td>
+<div id="codeblock">
-The type of the terminal of the user.
+<b>init_rw_script_tmp_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write init script temporary data.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1441,13 +1441,13 @@ No
</div>
</div>
-<a name="link_init_rw_script_pid"></a>
+<a name="link_init_rw_utmp"></a>
<div id="interface">
<div id="codeblock">
-<b>init_rw_script_pid</b>(
+<b>init_rw_utmp</b>(
@@ -1472,9 +1472,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1483,18 +1483,26 @@ No
</div>
</div>
-<a name="link_init_rw_script_pipe"></a>
+<a name="link_init_script_file_domtrans"></a>
<div id="interface">
<div id="codeblock">
-<b>init_rw_script_pipe</b>(
+<b>init_script_file_domtrans</b>(
- domain
+ source_domain
+
+
+
+ ,
+
+
+
+ target_domain
)<br>
@@ -1503,20 +1511,42 @@ No
<h5>Summary</h5>
<p>
-Read and write init script unnamed pipes.
+Execute a init script in a specified domain.
</p>
+<h5>Description</h5>
+<p>
+</p><p>
+Execute a init script in a specified domain.
+</p><p>
+</p><p>
+No interprocess communication (signals, pipes,
+etc.) is provided by this interface since
+the domains are not owned by this module.
+</p><p>
+</p>
+
<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+source_domain
</td><td>
+<p>
+Domain to transition from.
+</p>
+</td><td>
+No
+</td></tr>
-Domain allowed access.
-
+<tr><td>
+target_domain
+</td><td>
+<p>
+Domain to transition to.
+</p>
</td><td>
No
</td></tr>
@@ -1525,13 +1555,13 @@ No
</div>
</div>
-<a name="link_init_rw_script_tmp_files"></a>
+<a name="link_init_script_file_entry_type"></a>
<div id="interface">
<div id="codeblock">
-<b>init_rw_script_tmp_files</b>(
+<b>init_script_file_entry_type</b>(
@@ -1545,7 +1575,8 @@ No
<h5>Summary</h5>
<p>
-Read and write init script temporary data.
+Make init scripts an entry point for
+the specified domain.
</p>
@@ -1556,9 +1587,9 @@ Read and write init script temporary data.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+The domain for which init scripts are an entrypoint.
+</p>
</td><td>
No
</td></tr>
@@ -1567,13 +1598,13 @@ No
</div>
</div>
-<a name="link_init_sigchld"></a>
+<a name="link_init_script_tmp_filetrans"></a>
<div id="interface">
<div id="codeblock">
-<b>init_sigchld</b>(
+<b>init_script_tmp_filetrans</b>(
@@ -1581,13 +1612,30 @@ No
domain
+
+ ,
+
+
+
+ file_type
+
+
+
+ ,
+
+
+
+ object_class
+
+
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Send init a SIGCHLD signal.
+Create files in a init script
+temporary data directory.
</p>
@@ -1598,9 +1646,29 @@ Send init a SIGCHLD signal.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+file_type
+</td><td>
+<p>
+The type of the object to be created
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+object_class
+</td><td>
+<p>
+The object class.
+</p>
</td><td>
No
</td></tr>
@@ -1609,13 +1677,13 @@ No
</div>
</div>
-<a name="link_init_sigchld_script"></a>
+<a name="link_init_sigchld"></a>
<div id="interface">
<div id="codeblock">
-<b>init_sigchld_script</b>(
+<b>init_sigchld</b>(
@@ -1629,7 +1697,7 @@ No
<h5>Summary</h5>
<p>
-Send SIGCHLD signals to init scripts.
+Send init a SIGCHLD signal.
</p>
@@ -1640,9 +1708,9 @@ Send SIGCHLD signals to init scripts.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1651,13 +1719,13 @@ No
</div>
</div>
-<a name="link_init_signal_script"></a>
+<a name="link_init_sigchld_script"></a>
<div id="interface">
<div id="codeblock">
-<b>init_signal_script</b>(
+<b>init_sigchld_script</b>(
@@ -1671,7 +1739,7 @@ No
<h5>Summary</h5>
<p>
-Send generic signals to init scripts.
+Send SIGCHLD signals to init scripts.
</p>
@@ -1682,9 +1750,9 @@ Send generic signals to init scripts.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1693,13 +1761,13 @@ No
</div>
</div>
-<a name="link_init_signull"></a>
+<a name="link_init_signal_script"></a>
<div id="interface">
<div id="codeblock">
-<b>init_signull</b>(
+<b>init_signal_script</b>(
@@ -1713,7 +1781,7 @@ No
<h5>Summary</h5>
<p>
-Send init a null signal.
+Send generic signals to init scripts.
</p>
@@ -1724,9 +1792,9 @@ Send init a null signal.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1735,13 +1803,13 @@ No
</div>
</div>
-<a name="link_init_signull_script"></a>
+<a name="link_init_signull"></a>
<div id="interface">
<div id="codeblock">
-<b>init_signull_script</b>(
+<b>init_signull</b>(
@@ -1755,7 +1823,7 @@ No
<h5>Summary</h5>
<p>
-Send null signals to init scripts.
+Send init a null signal.
</p>
@@ -1766,9 +1834,9 @@ Send null signals to init scripts.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1777,13 +1845,13 @@ No
</div>
</div>
-<a name="link_init_system_domain"></a>
+<a name="link_init_signull_script"></a>
<div id="interface">
<div id="codeblock">
-<b>init_system_domain</b>(
+<b>init_signull_script</b>(
@@ -1791,22 +1859,13 @@ No
domain
-
- ,
-
-
-
- entry_point
-
-
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Create a domain for short running processes
-which can be started by init scripts.
+Send null signals to init scripts.
</p>
@@ -1817,19 +1876,9 @@ which can be started by init scripts.
<tr><td>
domain
</td><td>
-
-Type to be used as a domain.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-entry_point
-</td><td>
-
-Type of the program to be used as an entry point to this domain.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1838,13 +1887,13 @@ No
</div>
</div>
-<a name="link_init_udp_sendto"></a>
+<a name="link_init_stream_connect_script"></a>
<div id="interface">
<div id="codeblock">
-<b>init_udp_sendto</b>(
+<b>init_stream_connect_script</b>(
@@ -1858,7 +1907,8 @@ No
<h5>Summary</h5>
<p>
-Send UDP network traffic to init.
+Allow the specified domain to connect to
+init scripts with a unix socket.
</p>
@@ -1869,9 +1919,9 @@ Send UDP network traffic to init.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1880,13 +1930,13 @@ No
</div>
</div>
-<a name="link_init_udp_sendto_script"></a>
+<a name="link_init_system_domain"></a>
<div id="interface">
<div id="codeblock">
-<b>init_udp_sendto_script</b>(
+<b>init_system_domain</b>(
@@ -1894,13 +1944,22 @@ No
domain
+
+ ,
+
+
+
+ entry_point
+
+
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Send UDP network traffic to init scripts.
+Create a domain for short running processes
+which can be started by init scripts.
</p>
@@ -1911,9 +1970,19 @@ Send UDP network traffic to init scripts.
<tr><td>
domain
</td><td>
+<p>
+Type to be used as a domain.
+</p>
+</td><td>
+No
+</td></tr>
-Domain allowed access.
-
+<tr><td>
+entry_point
+</td><td>
+<p>
+Type of the program to be used as an entry point to this domain.
+</p>
</td><td>
No
</td></tr>
@@ -1922,13 +1991,13 @@ No
</div>
</div>
-<a name="link_init_unix_connect_script"></a>
+<a name="link_init_udp_send"></a>
<div id="interface">
<div id="codeblock">
-<b>init_unix_connect_script</b>(
+<b>init_udp_send</b>(
@@ -1942,8 +2011,7 @@ No
<h5>Summary</h5>
<p>
-Allow the specified domain to connect to
-init scripts with a unix socket.
+Send UDP network traffic to init.
</p>
@@ -1954,9 +2022,9 @@ init scripts with a unix socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1965,18 +2033,18 @@ No
</div>
</div>
-<a name="link_init_use_fd"></a>
+<a name="link_init_udp_send_script"></a>
<div id="interface">
<div id="codeblock">
-<b>init_use_fd</b>(
+<b>init_udp_send_script</b>(
- ?
+ domain
)<br>
@@ -1985,7 +2053,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Send UDP network traffic to init scripts.
</p>
@@ -1994,11 +2062,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -2007,13 +2075,13 @@ No
</div>
</div>
-<a name="link_init_use_initctl"></a>
+<a name="link_init_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>init_use_initctl</b>(
+<b>init_use_fds</b>(
@@ -2038,9 +2106,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -2049,13 +2117,13 @@ No
</div>
</div>
-<a name="link_init_use_script_fd"></a>
+<a name="link_init_use_script_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>init_use_script_fd</b>(
+<b>init_use_script_fds</b>(
@@ -2080,9 +2148,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -2091,13 +2159,13 @@ No
</div>
</div>
-<a name="link_init_use_script_pty"></a>
+<a name="link_init_use_script_ptys"></a>
<div id="interface">
<div id="codeblock">
-<b>init_use_script_pty</b>(
+<b>init_use_script_ptys</b>(
@@ -2133,9 +2201,9 @@ the administrator terminal.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2175,9 +2243,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -2186,13 +2254,13 @@ No
</div>
</div>
-<a name="link_init_write_script_pipe"></a>
+<a name="link_init_write_script_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>init_write_script_pipe</b>(
+<b>init_write_script_pipes</b>(
@@ -2217,9 +2285,9 @@ Write an init script unnamed pipe.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_ipsec.html b/www/api-docs/system_ipsec.html
index e26d0a2..a5e8dd8 100644
--- a/www/api-docs/system_ipsec.html
+++ b/www/api-docs/system_ipsec.html
@@ -168,9 +168,9 @@ Execute ipsec in the ipsec domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -210,9 +210,9 @@ Execute the IPSEC management program in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -221,13 +221,13 @@ No
</div>
</div>
-<a name="link_ipsec_getattr_key_socket"></a>
+<a name="link_ipsec_getattr_key_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>ipsec_getattr_key_socket</b>(
+<b>ipsec_getattr_key_sockets</b>(
@@ -252,9 +252,9 @@ Get the attributes of an IPSEC key socket.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -294,9 +294,9 @@ Create, read, write, and delete the IPSEC pid files.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -336,9 +336,9 @@ Read the IPSEC configuration
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,9 @@ Connect to IPSEC using a unix domain stream socket.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_iptables.html b/www/api-docs/system_iptables.html
index 02b8701..e19e775 100644
--- a/www/api-docs/system_iptables.html
+++ b/www/api-docs/system_iptables.html
@@ -168,9 +168,9 @@ Execute iptables in the iptables domain.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -210,9 +210,9 @@ Execute iptables in the caller domain.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -269,9 +269,9 @@ allow the specified role the iptables domain.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -279,9 +279,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the iptables domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -289,9 +289,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the iptables domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_libraries.html b/www/api-docs/system_libraries.html
index c50a752..8b60e8d 100644
--- a/www/api-docs/system_libraries.html
+++ b/www/api-docs/system_libraries.html
@@ -137,6 +137,48 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
+<a name="link_libs_delete_lib_symlinks"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>libs_delete_lib_symlinks</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Delete generic symlinks in library directories.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
<a name="link_libs_domtrans_ldconfig"></a>
<div id="interface">
@@ -168,9 +210,9 @@ Execute ldconfig in the ldconfig domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -210,9 +252,9 @@ Execute the dynamic link/loader in the caller's domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -252,9 +294,9 @@ Execute library scripts in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -295,9 +337,9 @@ of shared libraries with legacy support.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -338,9 +380,9 @@ with legacy support.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -381,9 +423,9 @@ dynamic link/loader.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -424,9 +466,9 @@ files in library directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -466,9 +508,9 @@ Create, read, write, and delete shared libraries.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -477,13 +519,13 @@ No
</div>
</div>
-<a name="link_libs_read_lib"></a>
+<a name="link_libs_read_lib_files"></a>
<div id="interface">
<div id="codeblock">
-<b>libs_read_lib</b>(
+<b>libs_read_lib_files</b>(
@@ -509,9 +551,9 @@ as static libraries.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -552,9 +594,9 @@ the dynamic link/loader.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -595,9 +637,9 @@ for generic lib files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -638,9 +680,9 @@ shared libraries.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -680,9 +722,9 @@ Relabel files to the type used in library directories.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -738,9 +780,9 @@ Execute ldconfig in the ldconfig domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -748,9 +790,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to allow the ldconfig domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -758,9 +800,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the ldconfig domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -801,9 +843,9 @@ of shared libraries.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -843,9 +885,9 @@ Search lib directories.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -886,9 +928,9 @@ of shared libraries.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -897,13 +939,13 @@ No
</div>
</div>
-<a name="link_libs_use_lib"></a>
+<a name="link_libs_use_lib_files"></a>
<div id="interface">
<div id="codeblock">
-<b>libs_use_lib</b>(
+<b>libs_use_lib_files</b>(
@@ -929,9 +971,9 @@ lib files as shared libraries.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -971,9 +1013,9 @@ Load and execute functions from shared libraries.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_locallogin.html b/www/api-docs/system_locallogin.html
index 1bac391..33c630c 100644
--- a/www/api-docs/system_locallogin.html
+++ b/www/api-docs/system_locallogin.html
@@ -168,9 +168,9 @@ Execute local logins in the local login domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -179,13 +179,13 @@ No
</div>
</div>
-<a name="link_locallogin_dontaudit_use_fd"></a>
+<a name="link_locallogin_dontaudit_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>locallogin_dontaudit_use_fd</b>(
+<b>locallogin_dontaudit_use_fds</b>(
@@ -210,9 +210,9 @@ Do not audit attempts to inherit local login file descriptors.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -252,9 +252,9 @@ Send a null signal to local login processes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -263,13 +263,13 @@ No
</div>
</div>
-<a name="link_locallogin_use_fd"></a>
+<a name="link_locallogin_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>locallogin_use_fd</b>(
+<b>locallogin_use_fds</b>(
@@ -294,9 +294,9 @@ Allow processes to inherit local login file descriptors.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_logging.html b/www/api-docs/system_logging.html
index a3ed069..20e6ab6 100644
--- a/www/api-docs/system_logging.html
+++ b/www/api-docs/system_logging.html
@@ -168,9 +168,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -210,9 +210,9 @@ Execute auditctl in the auditctl domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -252,9 +252,9 @@ Execute syslogd in the syslog domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -294,9 +294,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -336,9 +336,9 @@ Execute all log files in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -347,18 +347,18 @@ No
</div>
</div>
-<a name="link_logging_filetrans_log"></a>
+<a name="link_logging_list_logs"></a>
<div id="interface">
<div id="codeblock">
-<b>logging_filetrans_log</b>(
+<b>logging_list_logs</b>(
- ?
+ domain
)<br>
@@ -367,7 +367,7 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+List the contents of the generic log directory (/var/log).
</p>
@@ -376,11 +376,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -389,18 +389,18 @@ No
</div>
</div>
-<a name="link_logging_list_logs"></a>
+<a name="link_logging_log_file"></a>
<div id="interface">
<div id="codeblock">
-<b>logging_list_logs</b>(
+<b>logging_log_file</b>(
- domain
+ file_type
)<br>
@@ -409,7 +409,8 @@ No
<h5>Summary</h5>
<p>
-List the contents of the generic log directory (/var/log).
+Make the specified type a file
+used for logs.
</p>
@@ -418,11 +419,11 @@ List the contents of the generic log directory (/var/log).
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-domain
+file_type
</td><td>
-
-Domain allowed access.
-
+<p>
+Type of the file to be used as a log.
+</p>
</td><td>
No
</td></tr>
@@ -431,18 +432,18 @@ No
</div>
</div>
-<a name="link_logging_log_file"></a>
+<a name="link_logging_log_filetrans"></a>
<div id="interface">
<div id="codeblock">
-<b>logging_log_file</b>(
+<b>logging_log_filetrans</b>(
- file_type
+ ?
)<br>
@@ -451,8 +452,7 @@ No
<h5>Summary</h5>
<p>
-Make the specified type a file
-used for logs.
+Summary is missing!
</p>
@@ -461,11 +461,11 @@ used for logs.
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-file_type
+?
</td><td>
-
-Type of the file to be used as a log.
-
+<p>
+Parameter descriptions are missing!
+</p>
</td><td>
No
</td></tr>
@@ -505,9 +505,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -548,9 +548,9 @@ generic log files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -590,9 +590,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -601,13 +601,13 @@ No
</div>
</div>
-<a name="link_logging_read_audit_log"></a>
+<a name="link_logging_read_audit_config"></a>
<div id="interface">
<div id="codeblock">
-<b>logging_read_audit_log</b>(
+<b>logging_read_audit_config</b>(
@@ -621,7 +621,7 @@ No
<h5>Summary</h5>
<p>
-Read the audit log.
+Read the auditd configuration files.
</p>
@@ -632,9 +632,9 @@ Read the audit log.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -643,13 +643,13 @@ No
</div>
</div>
-<a name="link_logging_read_auditd_config"></a>
+<a name="link_logging_read_audit_log"></a>
<div id="interface">
<div id="codeblock">
-<b>logging_read_auditd_config</b>(
+<b>logging_read_audit_log</b>(
@@ -663,7 +663,7 @@ No
<h5>Summary</h5>
<p>
-Read the auditd configuration files.
+Read the audit log.
</p>
@@ -674,9 +674,9 @@ Read the auditd configuration files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -716,9 +716,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -727,13 +727,13 @@ No
</div>
</div>
-<a name="link_logging_rw_generic_logs"></a>
+<a name="link_logging_rw_generic_log_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>logging_rw_generic_logs</b>(
+<b>logging_rw_generic_log_dirs</b>(
@@ -747,7 +747,7 @@ No
<h5>Summary</h5>
<p>
-Read and write generic log files.
+Read and write the generic log directory (/var/log).
</p>
@@ -758,9 +758,9 @@ Read and write generic log files.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -769,13 +769,13 @@ No
</div>
</div>
-<a name="link_logging_rw_log_dir"></a>
+<a name="link_logging_rw_generic_logs"></a>
<div id="interface">
<div id="codeblock">
-<b>logging_rw_log_dir</b>(
+<b>logging_rw_generic_logs</b>(
@@ -789,7 +789,7 @@ No
<h5>Summary</h5>
<p>
-Read and write the generic log directory (/var/log).
+Read and write generic log files.
</p>
@@ -800,9 +800,9 @@ Read and write the generic log directory (/var/log).
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -844,9 +844,9 @@ of the contents of the log directory.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -886,9 +886,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -928,9 +928,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_lvm.html b/www/api-docs/system_lvm.html
index 25e356d..c245996 100644
--- a/www/api-docs/system_lvm.html
+++ b/www/api-docs/system_lvm.html
@@ -168,9 +168,9 @@ Execute lvm programs in the lvm domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -210,9 +210,9 @@ Read LVM configuration files.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -268,9 +268,9 @@ Execute lvm programs in the lvm domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -278,9 +278,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to allow the LVM domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -288,9 +288,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the LVM domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_miscfiles.html b/www/api-docs/system_miscfiles.html
index 6d68d01..9be30f8 100644
--- a/www/api-docs/system_miscfiles.html
+++ b/www/api-docs/system_miscfiles.html
@@ -168,9 +168,9 @@ Delete man pages
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -210,9 +210,9 @@ Do not audit attempts to search man pages.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -252,9 +252,9 @@ Execute TeX data programs in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -294,9 +294,9 @@ Allow process to read legacy time localization info
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -336,9 +336,9 @@ Create, read, write, and delete fonts.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,9 @@ Create, read, write, and delete man pages
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -421,9 +421,9 @@ and directories used for file transfer services.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -463,9 +463,9 @@ Read system SSL certificates.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -505,9 +505,9 @@ Read fonts.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -547,9 +547,9 @@ Read hardware identification data.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -589,9 +589,9 @@ Allow process to read localization info
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -631,9 +631,9 @@ Read man pages
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -674,9 +674,9 @@ transfer services.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -716,9 +716,9 @@ Read TeX data
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_modutils.html b/www/api-docs/system_modutils.html
index 71e40c4..b23cca1 100644
--- a/www/api-docs/system_modutils.html
+++ b/www/api-docs/system_modutils.html
@@ -168,9 +168,9 @@ Execute depmod in the depmod domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -210,9 +210,9 @@ Execute insmod in the insmod domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -252,9 +252,9 @@ Unconditionally execute insmod in the insmod domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -294,9 +294,9 @@ Execute depmod in the depmod domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -336,9 +336,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -420,9 +420,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -431,13 +431,13 @@ No
</div>
</div>
-<a name="link_modutils_read_mods_deps"></a>
+<a name="link_modutils_read_module_config"></a>
<div id="interface">
<div id="codeblock">
-<b>modutils_read_mods_deps</b>(
+<b>modutils_read_module_config</b>(
@@ -451,7 +451,8 @@ No
<h5>Summary</h5>
<p>
-Read the dependencies of kernel modules.
+Read the configuration options used when
+loading modules.
</p>
@@ -462,9 +463,9 @@ Read the dependencies of kernel modules.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -473,13 +474,13 @@ No
</div>
</div>
-<a name="link_modutils_read_module_conf"></a>
+<a name="link_modutils_read_module_deps"></a>
<div id="interface">
<div id="codeblock">
-<b>modutils_read_module_conf</b>(
+<b>modutils_read_module_deps</b>(
@@ -493,8 +494,7 @@ No
<h5>Summary</h5>
<p>
-Read the configuration options used when
-loading modules.
+Read the dependencies of kernel modules.
</p>
@@ -505,9 +505,9 @@ loading modules.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -516,13 +516,13 @@ No
</div>
</div>
-<a name="link_modutils_rename_module_conf"></a>
+<a name="link_modutils_rename_module_config"></a>
<div id="interface">
<div id="codeblock">
-<b>modutils_rename_module_conf</b>(
+<b>modutils_rename_module_config</b>(
@@ -548,9 +548,9 @@ loading modules.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -606,9 +606,9 @@ Execute depmod in the depmod domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -616,9 +616,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the depmod domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -626,9 +626,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the depmod domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -687,9 +687,9 @@ backchannel.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -697,9 +697,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the insmod domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -707,9 +707,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the insmod domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -765,9 +765,9 @@ Execute update_modules in the update_modules domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -775,9 +775,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the update_modules domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -785,9 +785,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the update_modules domain to use.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_mount.html b/www/api-docs/system_mount.html
index cff208a..2f5233e 100644
--- a/www/api-docs/system_mount.html
+++ b/www/api-docs/system_mount.html
@@ -168,9 +168,9 @@ Execute mount in the mount domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -210,9 +210,9 @@ Execute mount in the caller domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -270,9 +270,9 @@ and use the caller's terminal.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -280,9 +280,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the mount domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -290,9 +290,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the mount domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -333,9 +333,9 @@ network drives
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -344,13 +344,13 @@ No
</div>
</div>
-<a name="link_mount_use_fd"></a>
+<a name="link_mount_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>mount_use_fd</b>(
+<b>mount_use_fds</b>(
@@ -375,9 +375,9 @@ Use file descriptors for mount.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_pcmcia.html b/www/api-docs/system_pcmcia.html
index 4b15f40..25b4cf6 100644
--- a/www/api-docs/system_pcmcia.html
+++ b/www/api-docs/system_pcmcia.html
@@ -168,9 +168,9 @@ Execute cardctl in the cardmgr domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -210,9 +210,9 @@ Execute cardmgr in the cardmgr domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -253,9 +253,9 @@ cardmgr pid files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -264,13 +264,13 @@ No
</div>
</div>
-<a name="link_pcmcia_manage_runtime_chr"></a>
+<a name="link_pcmcia_manage_pid_chr_files"></a>
<div id="interface">
<div id="codeblock">
-<b>pcmcia_manage_runtime_chr</b>(
+<b>pcmcia_manage_pid_chr_files</b>(
@@ -296,9 +296,9 @@ cardmgr runtime character nodes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -338,9 +338,9 @@ Read cardmgr pid files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -397,9 +397,9 @@ allow the specified role the cardmgr domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -407,9 +407,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the cardmgr domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -417,9 +417,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the cardmgr domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -439,12 +439,8 @@ No
- [
-
domain
- ]
-
)<br>
</div>
@@ -463,24 +459,24 @@ PCMCIA stub interface. No access allowed.
<tr><td>
domain
</td><td>
-
+<p>
N/A
-
+</p>
</td><td>
-yes
+Yes
</td></tr>
</table>
</div>
</div>
-<a name="link_pcmcia_use_cardmgr_fd"></a>
+<a name="link_pcmcia_use_cardmgr_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>pcmcia_use_cardmgr_fd</b>(
+<b>pcmcia_use_cardmgr_fds</b>(
@@ -505,9 +501,9 @@ Inherit and use file descriptors from cardmgr.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_raid.html b/www/api-docs/system_raid.html
index 368bb1b..13e1949 100644
--- a/www/api-docs/system_raid.html
+++ b/www/api-docs/system_raid.html
@@ -168,9 +168,9 @@ Execute software raid tools in the mdadm domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -220,9 +220,9 @@ Added for use in the init module.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_selinuxutil.html b/www/api-docs/system_selinuxutil.html
index e05bfad..2a0e9ad 100644
--- a/www/api-docs/system_selinuxutil.html
+++ b/www/api-docs/system_selinuxutil.html
@@ -137,13 +137,13 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
-<a name="link_seutil_create_binary_pol"></a>
+<a name="link_seutil_create_bin_policy"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_create_binary_pol</b>(
+<b>seutil_create_bin_policy</b>(
@@ -168,9 +168,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -179,13 +179,13 @@ No
</div>
</div>
-<a name="link_seutil_domtrans_checkpol"></a>
+<a name="link_seutil_domtrans_checkpolicy"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_domtrans_checkpol</b>(
+<b>seutil_domtrans_checkpolicy</b>(
@@ -210,9 +210,9 @@ Execute checkpolicy in the checkpolicy domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -221,13 +221,13 @@ No
</div>
</div>
-<a name="link_seutil_domtrans_loadpol"></a>
+<a name="link_seutil_domtrans_loadpolicy"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_domtrans_loadpol</b>(
+<b>seutil_domtrans_loadpolicy</b>(
@@ -252,9 +252,9 @@ Execute load_policy in the load_policy domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -294,9 +294,9 @@ Execute newrole in the load_policy domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -336,9 +336,9 @@ Execute restorecon in the restorecon domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,9 +378,51 @@ Execute run_init in the run_init domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_seutil_domtrans_semanage"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>seutil_domtrans_semanage</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+<h5>Summary</h5>
+<p>
+Execute a domain transition to run semanage.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed to transition.
+</p>
</td><td>
No
</td></tr>
@@ -420,9 +462,9 @@ Execute setfiles in the setfiles domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -463,9 +505,9 @@ userland configuration (/etc/selinux).
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -506,9 +548,9 @@ configuration directory (/etc/selinux).
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -549,9 +591,9 @@ a signal to newrole.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -560,13 +602,13 @@ No
</div>
</div>
-<a name="link_seutil_exec_checkpol"></a>
+<a name="link_seutil_exec_checkpolicy"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_exec_checkpol</b>(
+<b>seutil_exec_checkpolicy</b>(
@@ -591,9 +633,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -602,13 +644,13 @@ No
</div>
</div>
-<a name="link_seutil_exec_loadpol"></a>
+<a name="link_seutil_exec_loadpolicy"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_exec_loadpol</b>(
+<b>seutil_exec_loadpolicy</b>(
@@ -633,9 +675,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -675,9 +717,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -715,11 +757,279 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+?
+</td><td>
+<p>
+Parameter descriptions are missing!
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_seutil_exec_setfiles"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>seutil_exec_setfiles</b>(
+
+
+
+
+ ?
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Summary is missing!
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+?
+</td><td>
+<p>
+Parameter descriptions are missing!
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_seutil_get_semanage_read_lock"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>seutil_get_semanage_read_lock</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Get read lock on module store
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_seutil_get_semanage_trans_lock"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>seutil_get_semanage_trans_lock</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Get trans lock on module store
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_seutil_init_script_domtrans_runinit"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>seutil_init_script_domtrans_runinit</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute init scripts in the run_init domain.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Execute init scripts in the run_init domain.
+This is used for the Gentoo integrated run_init.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_seutil_init_script_run_runinit"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>seutil_init_script_run_runinit</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ role
+
+
+
+ ,
+
+
+
+ terminal
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute init scripts in the run_init domain, and
+allow the specified role the run_init domain,
+and use the caller's terminal.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Execute init scripts in the run_init domain, and
+allow the specified role the run_init domain,
+and use the caller's terminal.
+</p><p>
+</p><p>
+This is used for the Gentoo integrated run_init.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+role
+</td><td>
+<p>
+The role to be allowed the run_init domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+terminal
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+The type of the terminal allow the run_init domain to use.
+</p>
</td><td>
No
</td></tr>
@@ -728,13 +1038,13 @@ No
</div>
</div>
-<a name="link_seutil_exec_setfiles"></a>
+<a name="link_seutil_manage_bin_policy"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_exec_setfiles</b>(
+<b>seutil_manage_bin_policy</b>(
@@ -759,9 +1069,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -770,18 +1080,18 @@ No
</div>
</div>
-<a name="link_seutil_manage_binary_pol"></a>
+<a name="link_seutil_manage_module_store"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_manage_binary_pol</b>(
+<b>seutil_manage_module_store</b>(
- ?
+ domain
)<br>
@@ -790,7 +1100,8 @@ No
<h5>Summary</h5>
<p>
-Summary is missing!
+Full management of the semanage
+module store.
</p>
@@ -799,11 +1110,11 @@ Summary is missing!
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-?
+domain
</td><td>
-
-Parameter descriptions are missing!
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -812,13 +1123,13 @@ No
</div>
</div>
-<a name="link_seutil_manage_src_pol"></a>
+<a name="link_seutil_manage_src_policy"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_manage_src_pol</b>(
+<b>seutil_manage_src_policy</b>(
@@ -843,9 +1154,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -854,13 +1165,13 @@ No
</div>
</div>
-<a name="link_seutil_read_binary_pol"></a>
+<a name="link_seutil_read_bin_policy"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_read_binary_pol</b>(
+<b>seutil_read_bin_policy</b>(
@@ -885,9 +1196,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -927,9 +1238,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -969,9 +1280,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1011,9 +1322,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1022,13 +1333,13 @@ No
</div>
</div>
-<a name="link_seutil_read_loadpol"></a>
+<a name="link_seutil_read_loadpolicy"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_read_loadpol</b>(
+<b>seutil_read_loadpolicy</b>(
@@ -1053,9 +1364,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1064,13 +1375,13 @@ No
</div>
</div>
-<a name="link_seutil_read_src_pol"></a>
+<a name="link_seutil_read_src_policy"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_read_src_pol</b>(
+<b>seutil_read_src_policy</b>(
@@ -1095,9 +1406,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1106,13 +1417,13 @@ No
</div>
</div>
-<a name="link_seutil_relabelto_binary_pol"></a>
+<a name="link_seutil_relabelto_bin_policy"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_relabelto_binary_pol</b>(
+<b>seutil_relabelto_bin_policy</b>(
@@ -1137,9 +1448,9 @@ Allow the caller to relabel a file to the binary policy type.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1148,13 +1459,13 @@ No
</div>
</div>
-<a name="link_seutil_run_checkpol"></a>
+<a name="link_seutil_run_checkpolicy"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_run_checkpol</b>(
+<b>seutil_run_checkpolicy</b>(
@@ -1197,9 +1508,9 @@ and use the caller's terminal.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1207,9 +1518,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the checkpolicy domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -1217,9 +1528,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the checkpolicy domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -1228,13 +1539,13 @@ No
</div>
</div>
-<a name="link_seutil_run_loadpol"></a>
+<a name="link_seutil_run_loadpolicy"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_run_loadpol</b>(
+<b>seutil_run_loadpolicy</b>(
@@ -1278,9 +1589,9 @@ Has a SIGCHLD signal backchannel.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1288,9 +1599,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the load_policy domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -1298,9 +1609,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the load_policy domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -1358,9 +1669,9 @@ and use the caller's terminal.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1368,9 +1679,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the newrole domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -1378,9 +1689,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the newrole domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -1438,9 +1749,9 @@ and use the caller's terminal.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1448,9 +1759,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the restorecon domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -1458,9 +1769,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the restorecon domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -1518,9 +1829,9 @@ and use the caller's terminal.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1528,9 +1839,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the run_init domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -1538,9 +1849,89 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the run_init domain to use.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_seutil_run_semanage"></a>
+<div id="interface">
+
+<div id="codeblock">
+
+<b>seutil_run_semanage</b>(
+
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ role
+
+
+
+ ,
+
+
+
+ terminal
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute semanage in the semanage domain, and
+allow the specified role the semanage domain,
+and use the caller's terminal.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+The type of the process performing this action.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+role
+</td><td>
+<p>
+The role to be allowed the checkpolicy domain.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+terminal
+</td><td>
+<p>
+The type of the terminal allow the semanage domain to use.
+</p>
</td><td>
No
</td></tr>
@@ -1598,9 +1989,9 @@ and use the caller's terminal.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1608,9 +1999,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the setfiles domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -1618,9 +2009,51 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the setfiles domain to use.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_seutil_rw_file_contexts"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>seutil_rw_file_contexts</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write the file_contexts files.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -1660,9 +2093,9 @@ Search the policy directory with default_context files.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -1702,9 +2135,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1713,13 +2146,13 @@ No
</div>
</div>
-<a name="link_seutil_use_newrole_fd"></a>
+<a name="link_seutil_use_newrole_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_use_newrole_fd</b>(
+<b>seutil_use_newrole_fds</b>(
@@ -1744,9 +2177,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
@@ -1755,13 +2188,13 @@ No
</div>
</div>
-<a name="link_seutil_use_runinit_fd"></a>
+<a name="link_seutil_use_runinit_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>seutil_use_runinit_fd</b>(
+<b>seutil_use_runinit_fds</b>(
@@ -1786,9 +2219,9 @@ Summary is missing!
<tr><td>
?
</td><td>
-
+<p>
Parameter descriptions are missing!
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_sysnetwork.html b/www/api-docs/system_sysnetwork.html
index 47a4655..2bdfdd9 100644
--- a/www/api-docs/system_sysnetwork.html
+++ b/www/api-docs/system_sysnetwork.html
@@ -169,9 +169,9 @@ dhcpc over dbus.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -211,9 +211,9 @@ Delete the dhcp client pid file.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -222,13 +222,13 @@ No
</div>
</div>
-<a name="link_sysnet_dns_name_resolve"></a>
+<a name="link_sysnet_dhcp_state_filetrans"></a>
<div id="interface">
<div id="codeblock">
-<b>sysnet_dns_name_resolve</b>(
+<b>sysnet_dhcp_state_filetrans</b>(
@@ -236,16 +236,44 @@ No
domain
+
+ ,
+
+
+
+ file_type
+
+
+
+ ,
+
+
+
+ object_class
+
+
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Perform a DNS name resolution.
+Create DHCP state data.
</p>
+<h5>Description</h5>
+<p>
+</p><p>
+Create DHCP state data.
+</p><p>
+</p><p>
+This is added for DHCP server, as
+the server and client put their state
+files in the same directory.
+</p><p>
+</p>
+
<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
@@ -253,9 +281,29 @@ Perform a DNS name resolution.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+file_type
+</td><td>
+<p>
+The type of the object to be created
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+object_class
+</td><td>
+<p>
+The object class.
+</p>
</td><td>
No
</td></tr>
@@ -264,13 +312,13 @@ No
</div>
</div>
-<a name="link_sysnet_domtrans_dhcpc"></a>
+<a name="link_sysnet_dns_name_resolve"></a>
<div id="interface">
<div id="codeblock">
-<b>sysnet_domtrans_dhcpc</b>(
+<b>sysnet_dns_name_resolve</b>(
@@ -284,7 +332,7 @@ No
<h5>Summary</h5>
<p>
-Execute dhcp client in dhcpc domain.
+Perform a DNS name resolution.
</p>
@@ -295,9 +343,9 @@ Execute dhcp client in dhcpc domain.
<tr><td>
domain
</td><td>
-
-The type of the process performing this action.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -306,13 +354,13 @@ No
</div>
</div>
-<a name="link_sysnet_domtrans_ifconfig"></a>
+<a name="link_sysnet_domtrans_dhcpc"></a>
<div id="interface">
<div id="codeblock">
-<b>sysnet_domtrans_ifconfig</b>(
+<b>sysnet_domtrans_dhcpc</b>(
@@ -326,7 +374,7 @@ No
<h5>Summary</h5>
<p>
-Execute ifconfig in the ifconfig domain.
+Execute dhcp client in dhcpc domain.
</p>
@@ -337,9 +385,9 @@ Execute ifconfig in the ifconfig domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -348,13 +396,13 @@ No
</div>
</div>
-<a name="link_sysnet_dontaudit_read_config"></a>
+<a name="link_sysnet_domtrans_ifconfig"></a>
<div id="interface">
<div id="codeblock">
-<b>sysnet_dontaudit_read_config</b>(
+<b>sysnet_domtrans_ifconfig</b>(
@@ -368,7 +416,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read network config files.
+Execute ifconfig in the ifconfig domain.
</p>
@@ -379,9 +427,9 @@ Do not audit attempts to read network config files.
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+The type of the process performing this action.
+</p>
</td><td>
No
</td></tr>
@@ -390,13 +438,13 @@ No
</div>
</div>
-<a name="link_sysnet_exec_ifconfig"></a>
+<a name="link_sysnet_dontaudit_read_config"></a>
<div id="interface">
<div id="codeblock">
-<b>sysnet_exec_ifconfig</b>(
+<b>sysnet_dontaudit_read_config</b>(
@@ -410,7 +458,7 @@ No
<h5>Summary</h5>
<p>
-Execute ifconfig in the caller domain.
+Do not audit attempts to read network config files.
</p>
@@ -421,9 +469,9 @@ Execute ifconfig in the caller domain.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -432,13 +480,13 @@ No
</div>
</div>
-<a name="link_sysnet_filetrans_config"></a>
+<a name="link_sysnet_etc_filetrans_config"></a>
<div id="interface">
<div id="codeblock">
-<b>sysnet_filetrans_config</b>(
+<b>sysnet_etc_filetrans_config</b>(
@@ -464,9 +512,9 @@ the network config files.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -475,13 +523,13 @@ No
</div>
</div>
-<a name="link_sysnet_filetrans_dhcp_state"></a>
+<a name="link_sysnet_exec_ifconfig"></a>
<div id="interface">
<div id="codeblock">
-<b>sysnet_filetrans_dhcp_state</b>(
+<b>sysnet_exec_ifconfig</b>(
@@ -489,48 +537,16 @@ No
domain
-
- ,
-
-
-
- file_type
-
-
-
- ,
-
-
-
- [
-
- object_class
-
- ]
-
-
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Create DHCP state data.
+Execute ifconfig in the caller domain.
</p>
-<h5>Description</h5>
-<p>
-</p><p>
-Create DHCP state data.
-</p><p>
-</p><p>
-This is added for DHCP server, as
-the server and client put their state
-files in the same directory.
-</p><p>
-</p>
-
<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
@@ -538,33 +554,13 @@ files in the same directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
-</td><td>
-No
-</td></tr>
-
-<tr><td>
-file_type
-</td><td>
-
-The type of the object to be created
-
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-object_class
-</td><td>
-
-The object class. If not specified, file is used.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
@@ -600,9 +596,9 @@ Send a kill signal to the dhcp client.
<tr><td>
domain
</td><td>
-
+<p>
The domain sending the SIGKILL.
-
+</p>
</td><td>
No
</td></tr>
@@ -642,9 +638,9 @@ Create, read, write, and delete network config files.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -684,9 +680,9 @@ Allow network init to read network config files.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -726,9 +722,9 @@ Read the DHCP configuration files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -768,9 +764,9 @@ Read the dhcp client pid file.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -810,9 +806,9 @@ Read dhcp client state files.
<tr><td>
domain
</td><td>
-
+<p>
The domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -869,9 +865,9 @@ allow the specified role the dhcpc domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -879,9 +875,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the clock domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -889,9 +885,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the clock domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -949,9 +945,9 @@ and use the caller's terminal.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -959,9 +955,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to be allowed the ifconfig domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -969,9 +965,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the ifconfig domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -1011,9 +1007,9 @@ Read and write dhcp configuration files.
<tr><td>
domain
</td><td>
-
+<p>
The domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1053,9 +1049,9 @@ Search the DHCP state data directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1095,9 +1091,9 @@ Send a SIGCHLD signal to the dhcp client.
<tr><td>
domain
</td><td>
-
+<p>
The domain sending the SIGCHLD.
-
+</p>
</td><td>
No
</td></tr>
@@ -1137,9 +1133,9 @@ Send a generic signal to the dhcp client.
<tr><td>
domain
</td><td>
-
+<p>
The domain sending the signal.
-
+</p>
</td><td>
No
</td></tr>
@@ -1179,9 +1175,9 @@ Send a null signal to the dhcp client.
<tr><td>
domain
</td><td>
-
+<p>
The domain sending the null signal.
-
+</p>
</td><td>
No
</td></tr>
@@ -1221,9 +1217,9 @@ Send a SIGSTOP signal to the dhcp client.
<tr><td>
domain
</td><td>
-
+<p>
The domain sending the SIGSTOP.
-
+</p>
</td><td>
No
</td></tr>
@@ -1263,9 +1259,9 @@ Connect and use a LDAP server.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1305,9 +1301,9 @@ Connect and use remote port mappers.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_udev.html b/www/api-docs/system_udev.html
index e87ec3d..4e3547d 100644
--- a/www/api-docs/system_udev.html
+++ b/www/api-docs/system_udev.html
@@ -168,9 +168,9 @@ Execute udev in the udev domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -179,13 +179,13 @@ No
</div>
</div>
-<a name="link_udev_dontaudit_rw_unix_dgram_socket"></a>
+<a name="link_udev_dontaudit_rw_dgram_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>udev_dontaudit_rw_unix_dgram_socket</b>(
+<b>udev_dontaudit_rw_dgram_sockets</b>(
@@ -211,9 +211,9 @@ to a udev unix datagram socket.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -222,13 +222,13 @@ No
</div>
</div>
-<a name="link_udev_dontaudit_use_fd"></a>
+<a name="link_udev_dontaudit_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>udev_dontaudit_use_fd</b>(
+<b>udev_dontaudit_use_fds</b>(
@@ -254,9 +254,9 @@ udev file descriptor.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -296,9 +296,9 @@ Execute a udev helper in the udev domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -338,9 +338,9 @@ Allow process to read list of devices.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -380,9 +380,9 @@ Allow process to read udev process state.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -422,9 +422,9 @@ Allow process to modify list of devices.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/system_unconfined.html b/www/api-docs/system_unconfined.html
index c800bef..ce82257 100644
--- a/www/api-docs/system_unconfined.html
+++ b/www/api-docs/system_unconfined.html
@@ -128,9 +128,6 @@
<h1>Layer: system</h1><p/>
<h2>Module: unconfined</h2><p/>
-<a href=#interfaces>Interfaces</a>
-<a href=#templates>Templates</a>
-
<h3>Description:</h3>
<p><p>The unconfined domain.</p></p>
@@ -183,9 +180,9 @@ on the strict policy.
<tr><td>
domain
</td><td>
-
+<p>
New alias of the unconfined domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -225,9 +222,95 @@ Send messages to the unconfined domain over dbus.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_unconfined_domain"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>unconfined_domain</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Make the specified domain unconfined and
+audit executable memory and executable heap
+usage.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to make unconfined.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_unconfined_domain_noaudit"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>unconfined_domain_noaudit</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Make the specified domain unconfined.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to make unconfined.
+</p>
</td><td>
No
</td></tr>
@@ -267,9 +350,9 @@ Transition to the unconfined domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -278,13 +361,13 @@ No
</div>
</div>
-<a name="link_unconfined_dontaudit_read_pipe"></a>
+<a name="link_unconfined_dontaudit_read_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>unconfined_dontaudit_read_pipe</b>(
+<b>unconfined_dontaudit_read_pipes</b>(
@@ -309,9 +392,9 @@ Do not audit attempts to read unconfined domain unnamed pipes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -320,13 +403,13 @@ No
</div>
</div>
-<a name="link_unconfined_dontaudit_rw_tcp_socket"></a>
+<a name="link_unconfined_dontaudit_rw_tcp_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>unconfined_dontaudit_rw_tcp_socket</b>(
+<b>unconfined_dontaudit_rw_tcp_sockets</b>(
@@ -364,9 +447,9 @@ symptom in ldconfig.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -375,13 +458,13 @@ No
</div>
</div>
-<a name="link_unconfined_read_pipe"></a>
+<a name="link_unconfined_read_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>unconfined_read_pipe</b>(
+<b>unconfined_read_pipes</b>(
@@ -406,9 +489,9 @@ Read unconfined domain unnamed pipes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -464,9 +547,9 @@ Execute specified programs in the unconfined domain.
<tr><td>
domain
</td><td>
-
+<p>
The type of the process performing this action.
-
+</p>
</td><td>
No
</td></tr>
@@ -474,9 +557,9 @@ No
<tr><td>
role
</td><td>
-
+<p>
The role to allow the unconfined domain.
-
+</p>
</td><td>
No
</td></tr>
@@ -484,9 +567,9 @@ No
<tr><td>
terminal
</td><td>
-
+<p>
The type of the terminal allow the unconfined domain to use.
-
+</p>
</td><td>
No
</td></tr>
@@ -495,13 +578,13 @@ No
</div>
</div>
-<a name="link_unconfined_rw_pipe"></a>
+<a name="link_unconfined_rw_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>unconfined_rw_pipe</b>(
+<b>unconfined_rw_pipes</b>(
@@ -526,9 +609,9 @@ Read and write unconfined domain unnamed pipes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -568,9 +651,9 @@ Transition to the unconfined domain by executing a shell.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -610,9 +693,9 @@ Send a SIGCHLD signal to the unconfined domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -652,9 +735,9 @@ Send generic signals to the unconfined domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -663,13 +746,13 @@ No
</div>
</div>
-<a name="link_unconfined_use_fd"></a>
+<a name="link_unconfined_use_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>unconfined_use_fd</b>(
+<b>unconfined_use_fds</b>(
@@ -694,58 +777,9 @@ Inherit file descriptors from the unconfined domain.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
-</td><td>
-No
-</td></tr>
-
-</table>
-</div>
-</div>
-
-
-<a href=#top>Return</a>
-
-
-<a name="templates"></a>
-<h3>Templates: </h3>
-
-<a name="link_unconfined_domain_template"></a>
-<div id="template">
-
-
-<div id="codeblock">
-
-<b>unconfined_domain_template</b>(
-
-
-
-
- domain
-
-
- )<br>
-</div>
-<div id="description">
-
-<h5>Summary</h5>
<p>
-A template to make the specified domain unconfined.
+Domain allowed access.
</p>
-
-
-<h5>Parameters</h5>
-<table border="1" cellspacing="0" cellpadding="3" width="80%">
-<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
-
-<tr><td>
-domain
-</td><td>
-
-Domain to make unconfined.
-
</td><td>
No
</td></tr>
@@ -759,6 +793,7 @@ No
+
</div>
</body>
</html>
diff --git a/www/api-docs/system_userdomain.html b/www/api-docs/system_userdomain.html
index d20b699..13f8554 100644
--- a/www/api-docs/system_userdomain.html
+++ b/www/api-docs/system_userdomain.html
@@ -140,13 +140,13 @@
<a name="interfaces"></a>
<h3>Interfaces: </h3>
-<a name="link_userdom_create_sysadm_home"></a>
+<a name="link_userdom_bin_spec_domtrans_sysadm"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_create_sysadm_home</b>(
+<b>userdom_bin_spec_domtrans_sysadm</b>(
@@ -154,26 +154,13 @@
domain
-
- ,
-
-
-
- [
-
- object_class
-
- ]
-
-
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Create objects in sysadm home directories
-with automatic file type transition.
+Execute a generic bin program in the sysadm domain.
</p>
@@ -184,35 +171,24 @@ with automatic file type transition.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-object_class
-</td><td>
-
-The class of the object to be created.
-If not specified, file is used.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
-<a name="link_userdom_dbus_send_all_users"></a>
+<a name="link_userdom_bin_spec_domtrans_unpriv_users"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dbus_send_all_users</b>(
+<b>userdom_bin_spec_domtrans_unpriv_users</b>(
@@ -226,7 +202,9 @@ yes
<h5>Summary</h5>
<p>
-Send a dbus message to all user domains.
+Execute bin_t in the unprivileged user domains. This
+is an explicit transition, requiring the
+caller to use setexeccon().
</p>
@@ -237,9 +215,9 @@ Send a dbus message to all user domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -248,13 +226,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_getattr_sysadm_home_dir"></a>
+<a name="link_userdom_dbus_send_all_users"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dontaudit_getattr_sysadm_home_dir</b>(
+<b>userdom_dbus_send_all_users</b>(
@@ -268,9 +246,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to get the
-attributes of the sysadm users
-home directory.
+Send a dbus message to all user domains.
</p>
@@ -281,9 +257,9 @@ home directory.
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -292,13 +268,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_getattr_sysadm_tty"></a>
+<a name="link_userdom_dontaudit_append_staff_home_content_files"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dontaudit_getattr_sysadm_tty</b>(
+<b>userdom_dontaudit_append_staff_home_content_files</b>(
@@ -312,8 +288,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attepts to get the attributes
-of sysadm ttys.
+Do not audit attempts to append to the staff
+users home directory.
</p>
@@ -324,9 +300,9 @@ of sysadm ttys.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -335,13 +311,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_list_sysadm_home_dir"></a>
+<a name="link_userdom_dontaudit_getattr_sysadm_home_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dontaudit_list_sysadm_home_dir</b>(
+<b>userdom_dontaudit_getattr_sysadm_home_dirs</b>(
@@ -355,8 +331,9 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to list the sysadm
-users home directory.
+Do not audit attempts to get the
+attributes of the sysadm users
+home directory.
</p>
@@ -367,9 +344,9 @@ users home directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -378,13 +355,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_search_all_users_home"></a>
+<a name="link_userdom_dontaudit_getattr_sysadm_ttys"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dontaudit_search_all_users_home</b>(
+<b>userdom_dontaudit_getattr_sysadm_ttys</b>(
@@ -398,7 +375,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to search all users home directories.
+Do not audit attepts to get the attributes
+of sysadm ttys.
</p>
@@ -409,9 +387,9 @@ Do not audit attempts to search all users home directories.
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -420,13 +398,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_search_staff_home_dir"></a>
+<a name="link_userdom_dontaudit_list_sysadm_home_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dontaudit_search_staff_home_dir</b>(
+<b>userdom_dontaudit_list_sysadm_home_dirs</b>(
@@ -440,7 +418,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to search the staff
+Do not audit attempts to list the sysadm
users home directory.
</p>
@@ -452,9 +430,9 @@ users home directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -463,13 +441,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_search_sysadm_home_dir"></a>
+<a name="link_userdom_dontaudit_read_sysadm_home_content_files"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dontaudit_search_sysadm_home_dir</b>(
+<b>userdom_dontaudit_read_sysadm_home_content_files</b>(
@@ -495,9 +473,9 @@ users home directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -506,13 +484,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_search_user_home_dirs"></a>
+<a name="link_userdom_dontaudit_relabelfrom_unpriv_users_ptys"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dontaudit_search_user_home_dirs</b>(
+<b>userdom_dontaudit_relabelfrom_unpriv_users_ptys</b>(
@@ -526,7 +504,8 @@ No
<h5>Summary</h5>
<p>
-Don't audit search on the user home subdirectory.
+Do not audit attempts to relabel files from
+unprivileged user pty types.
</p>
@@ -537,9 +516,9 @@ Don't audit search on the user home subdirectory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -548,13 +527,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_use_all_user_fd"></a>
+<a name="link_userdom_dontaudit_search_all_users_home_content"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dontaudit_use_all_user_fd</b>(
+<b>userdom_dontaudit_search_all_users_home_content</b>(
@@ -568,8 +547,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to inherit the file
-descriptors from any user domains.
+Do not audit attempts to search all users home directories.
</p>
@@ -580,9 +558,9 @@ descriptors from any user domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -591,13 +569,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_use_sysadm_pty"></a>
+<a name="link_userdom_dontaudit_search_generic_user_home_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dontaudit_use_sysadm_pty</b>(
+<b>userdom_dontaudit_search_generic_user_home_dirs</b>(
@@ -611,7 +589,7 @@ No
<h5>Summary</h5>
<p>
-Dont audit attempts to read and write sysadm ptys.
+Don't audit search on the user home subdirectory.
</p>
@@ -622,9 +600,9 @@ Dont audit attempts to read and write sysadm ptys.
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -633,13 +611,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_use_sysadm_terms"></a>
+<a name="link_userdom_dontaudit_search_staff_home_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dontaudit_use_sysadm_terms</b>(
+<b>userdom_dontaudit_search_staff_home_dirs</b>(
@@ -653,7 +631,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to use sysadm ttys and ptys.
+Do not audit attempts to search the staff
+users home directory.
</p>
@@ -664,9 +643,9 @@ Do not audit attempts to use sysadm ttys and ptys.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -675,13 +654,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_use_sysadm_tty"></a>
+<a name="link_userdom_dontaudit_search_sysadm_home_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dontaudit_use_sysadm_tty</b>(
+<b>userdom_dontaudit_search_sysadm_home_dirs</b>(
@@ -695,7 +674,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to use sysadm ttys.
+Do not audit attempts to search the sysadm
+users home directory.
</p>
@@ -706,9 +686,9 @@ Do not audit attempts to use sysadm ttys.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -717,13 +697,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_use_unpriv_user_fd"></a>
+<a name="link_userdom_dontaudit_use_all_users_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dontaudit_use_unpriv_user_fd</b>(
+<b>userdom_dontaudit_use_all_users_fds</b>(
@@ -737,8 +717,8 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to inherit the
-file descriptors from all user domains.
+Do not audit attempts to inherit the file
+descriptors from any user domains.
</p>
@@ -749,9 +729,9 @@ file descriptors from all user domains.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -760,13 +740,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_use_unpriv_user_pty"></a>
+<a name="link_userdom_dontaudit_use_sysadm_ptys"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dontaudit_use_unpriv_user_pty</b>(
+<b>userdom_dontaudit_use_sysadm_ptys</b>(
@@ -780,8 +760,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to use unprivileged
-user ptys.
+Dont audit attempts to read and write sysadm ptys.
</p>
@@ -792,9 +771,9 @@ user ptys.
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -803,13 +782,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_use_unpriv_user_tty"></a>
+<a name="link_userdom_dontaudit_use_sysadm_terms"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_dontaudit_use_unpriv_user_tty</b>(
+<b>userdom_dontaudit_use_sysadm_terms</b>(
@@ -823,8 +802,7 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to use unprivileged
-user ttys.
+Do not audit attempts to use sysadm ttys and ptys.
</p>
@@ -835,9 +813,9 @@ user ttys.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -846,13 +824,13 @@ No
</div>
</div>
-<a name="link_userdom_filetrans_generic_user_home"></a>
+<a name="link_userdom_dontaudit_use_sysadm_ttys"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_filetrans_generic_user_home</b>(
+<b>userdom_dontaudit_use_sysadm_ttys</b>(
@@ -860,26 +838,13 @@ No
domain
-
- ,
-
-
-
- [
-
- object_class
-
- ]
-
-
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Create objects in generic user home directories
-with automatic file type transition.
+Do not audit attempts to use sysadm ttys.
</p>
@@ -890,35 +855,24 @@ with automatic file type transition.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-object_class
-</td><td>
-
-The class of the object to be created.
-If not specified, file is used.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
-<a name="link_userdom_filetrans_generic_user_home_dir"></a>
+<a name="link_userdom_dontaudit_use_unpriv_user_fds"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_filetrans_generic_user_home_dir</b>(
+<b>userdom_dontaudit_use_unpriv_user_fds</b>(
@@ -932,8 +886,8 @@ yes
<h5>Summary</h5>
<p>
-Create generic user home directories
-with automatic file type transition.
+Do not audit attempts to inherit the
+file descriptors from all user domains.
</p>
@@ -944,9 +898,9 @@ with automatic file type transition.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -955,13 +909,13 @@ No
</div>
</div>
-<a name="link_userdom_getattr_all_userdomains"></a>
+<a name="link_userdom_dontaudit_use_unpriv_users_ptys"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_getattr_all_userdomains</b>(
+<b>userdom_dontaudit_use_unpriv_users_ptys</b>(
@@ -975,7 +929,8 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of all user domains.
+Do not audit attempts to use unprivileged
+user ptys.
</p>
@@ -986,9 +941,9 @@ Get the attributes of all user domains.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -997,13 +952,13 @@ No
</div>
</div>
-<a name="link_userdom_getattr_sysadm_home_dir"></a>
+<a name="link_userdom_dontaudit_use_unpriv_users_ttys"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_getattr_sysadm_home_dir</b>(
+<b>userdom_dontaudit_use_unpriv_users_ttys</b>(
@@ -1017,8 +972,8 @@ No
<h5>Summary</h5>
<p>
-Get the attributes of the sysadm users
-home directory.
+Do not audit attempts to use unprivileged
+user ttys.
</p>
@@ -1029,9 +984,9 @@ home directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1040,13 +995,13 @@ No
</div>
</div>
-<a name="link_userdom_list_sysadm_home_dir"></a>
+<a name="link_userdom_entry_spec_domtrans_sysadm"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_list_sysadm_home_dir</b>(
+<b>userdom_entry_spec_domtrans_sysadm</b>(
@@ -1060,7 +1015,9 @@ No
<h5>Summary</h5>
<p>
-List the sysadm users home directory.
+Execute all entrypoint files in the sysadm domain. This
+is an explicit transition, requiring the
+caller to use setexeccon().
</p>
@@ -1071,9 +1028,9 @@ List the sysadm users home directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1082,13 +1039,13 @@ No
</div>
</div>
-<a name="link_userdom_list_unpriv_user_tmp"></a>
+<a name="link_userdom_entry_spec_domtrans_unpriv_users"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_list_unpriv_user_tmp</b>(
+<b>userdom_entry_spec_domtrans_unpriv_users</b>(
@@ -1102,7 +1059,9 @@ No
<h5>Summary</h5>
<p>
-Read all unprivileged users temporary directories.
+Execute all entrypoint files in unprivileged user
+domains. This is an explicit transition, requiring the
+caller to use setexeccon().
</p>
@@ -1113,9 +1072,9 @@ Read all unprivileged users temporary directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1124,13 +1083,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_all_user_dirs"></a>
+<a name="link_userdom_generic_user_home_dir_filetrans_generic_user_home_content"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_manage_all_user_dirs</b>(
+<b>userdom_generic_user_home_dir_filetrans_generic_user_home_content</b>(
@@ -1138,14 +1097,22 @@ No
domain
+
+ ,
+
+
+
+ object_class
+
+
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Create, read, write, and delete all directories
-in all users home directories.
+Create objects in generic user home directories
+with automatic file type transition.
</p>
@@ -1156,9 +1123,20 @@ in all users home directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+object_class
+</td><td>
+<p>
+The class of the object to be created.
+If not specified, file is used.
+</p>
</td><td>
No
</td></tr>
@@ -1167,13 +1145,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_all_user_files"></a>
+<a name="link_userdom_getattr_all_users"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_manage_all_user_files</b>(
+<b>userdom_getattr_all_users</b>(
@@ -1187,8 +1165,7 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete all files
-in all users home directories.
+Get the attributes of all user domains.
</p>
@@ -1199,9 +1176,9 @@ in all users home directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1210,13 +1187,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_all_user_symlinks"></a>
+<a name="link_userdom_getattr_sysadm_home_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_manage_all_user_symlinks</b>(
+<b>userdom_getattr_sysadm_home_dirs</b>(
@@ -1230,8 +1207,8 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete all symlinks
-in all users home directories.
+Get the attributes of the sysadm users
+home directory.
</p>
@@ -1242,9 +1219,9 @@ in all users home directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1253,13 +1230,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_generic_user_home_dir"></a>
+<a name="link_userdom_home_filetrans_generic_user_home_dir"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_manage_generic_user_home_dir</b>(
+<b>userdom_home_filetrans_generic_user_home_dir</b>(
@@ -1273,8 +1250,8 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete
-generic user home directories.
+Create generic user home directories
+with automatic file type transition.
</p>
@@ -1285,9 +1262,9 @@ generic user home directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1296,13 +1273,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_generic_user_home_dirs"></a>
+<a name="link_userdom_list_all_users_home_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_manage_generic_user_home_dirs</b>(
+<b>userdom_list_all_users_home_dirs</b>(
@@ -1316,9 +1293,7 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete
-subdirectories of generic user
-home directories.
+List all users home directories.
</p>
@@ -1329,9 +1304,9 @@ home directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1340,13 +1315,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_generic_user_home_files"></a>
+<a name="link_userdom_list_sysadm_home_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_manage_generic_user_home_files</b>(
+<b>userdom_list_sysadm_home_dirs</b>(
@@ -1360,8 +1335,7 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete files
-in generic user home directories.
+List the sysadm users home directory.
</p>
@@ -1372,9 +1346,9 @@ in generic user home directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1383,13 +1357,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_generic_user_home_pipes"></a>
+<a name="link_userdom_list_unpriv_users_tmp"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_manage_generic_user_home_pipes</b>(
+<b>userdom_list_unpriv_users_tmp</b>(
@@ -1403,8 +1377,7 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete named
-pipes in generic user home directories.
+Read all unprivileged users temporary directories.
</p>
@@ -1415,9 +1388,9 @@ pipes in generic user home directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1426,13 +1399,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_generic_user_home_sockets"></a>
+<a name="link_userdom_manage_all_users_home_content_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_manage_generic_user_home_sockets</b>(
+<b>userdom_manage_all_users_home_content_dirs</b>(
@@ -1446,8 +1419,8 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete named
-sockets in generic user home directories.
+Create, read, write, and delete all directories
+in all users home directories.
</p>
@@ -1458,9 +1431,9 @@ sockets in generic user home directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1469,13 +1442,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_generic_user_home_symlinks"></a>
+<a name="link_userdom_manage_all_users_home_content_files"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_manage_generic_user_home_symlinks</b>(
+<b>userdom_manage_all_users_home_content_files</b>(
@@ -1489,8 +1462,8 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete symbolic
-links in generic user home directories.
+Create, read, write, and delete all files
+in all users home directories.
</p>
@@ -1501,9 +1474,9 @@ links in generic user home directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1512,13 +1485,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_unpriv_user_semaphores"></a>
+<a name="link_userdom_manage_all_users_home_content_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_manage_unpriv_user_semaphores</b>(
+<b>userdom_manage_all_users_home_content_symlinks</b>(
@@ -1532,7 +1505,8 @@ No
<h5>Summary</h5>
<p>
-Manage unpriviledged user SysV sempaphores.
+Create, read, write, and delete all symlinks
+in all users home directories.
</p>
@@ -1543,9 +1517,9 @@ Manage unpriviledged user SysV sempaphores.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1554,13 +1528,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_unpriv_user_shared_mem"></a>
+<a name="link_userdom_manage_generic_user_home_content_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_manage_unpriv_user_shared_mem</b>(
+<b>userdom_manage_generic_user_home_content_dirs</b>(
@@ -1574,8 +1548,9 @@ No
<h5>Summary</h5>
<p>
-Manage unpriviledged user SysV shared
-memory segments.
+Create, read, write, and delete
+subdirectories of generic user
+home directories.
</p>
@@ -1586,9 +1561,9 @@ memory segments.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1597,13 +1572,13 @@ No
</div>
</div>
-<a name="link_userdom_priveleged_home_dir_manager"></a>
+<a name="link_userdom_manage_generic_user_home_content_files"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_priveleged_home_dir_manager</b>(
+<b>userdom_manage_generic_user_home_content_files</b>(
@@ -1617,22 +1592,11 @@ No
<h5>Summary</h5>
<p>
-Make the specified domain a privileged
-home directory manager.
+Create, read, write, and delete files
+in generic user home directories.
</p>
-<h5>Description</h5>
-<p>
-</p><p>
-Make the specified domain a privileged
-home directory manager. This domain will be
-able to manage the contents of all users
-general home directory content, and create
-files with the correct context.
-</p><p>
-</p>
-
<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
@@ -1640,9 +1604,9 @@ files with the correct context.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1651,13 +1615,13 @@ No
</div>
</div>
-<a name="link_userdom_read_all_user_files"></a>
+<a name="link_userdom_manage_generic_user_home_content_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_read_all_user_files</b>(
+<b>userdom_manage_generic_user_home_content_pipes</b>(
@@ -1671,7 +1635,8 @@ No
<h5>Summary</h5>
<p>
-Read all files in all users home directories.
+Create, read, write, and delete named
+pipes in generic user home directories.
</p>
@@ -1682,9 +1647,9 @@ Read all files in all users home directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1693,13 +1658,13 @@ No
</div>
</div>
-<a name="link_userdom_read_all_userdomains_state"></a>
+<a name="link_userdom_manage_generic_user_home_content_sockets"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_read_all_userdomains_state</b>(
+<b>userdom_manage_generic_user_home_content_sockets</b>(
@@ -1713,7 +1678,8 @@ No
<h5>Summary</h5>
<p>
-Read the process state of all user domains.
+Create, read, write, and delete named
+sockets in generic user home directories.
</p>
@@ -1724,9 +1690,9 @@ Read the process state of all user domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1735,13 +1701,13 @@ No
</div>
</div>
-<a name="link_userdom_read_staff_home_files"></a>
+<a name="link_userdom_manage_generic_user_home_content_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_read_staff_home_files</b>(
+<b>userdom_manage_generic_user_home_content_symlinks</b>(
@@ -1755,7 +1721,8 @@ No
<h5>Summary</h5>
<p>
-Read files in the staff users home directory.
+Create, read, write, and delete symbolic
+links in generic user home directories.
</p>
@@ -1766,9 +1733,9 @@ Read files in the staff users home directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1777,13 +1744,13 @@ No
</div>
</div>
-<a name="link_userdom_read_sysadm_home_files"></a>
+<a name="link_userdom_manage_unpriv_user_semaphores"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_read_sysadm_home_files</b>(
+<b>userdom_manage_unpriv_user_semaphores</b>(
@@ -1797,7 +1764,7 @@ No
<h5>Summary</h5>
<p>
-Read files in the sysadm users home directory.
+Manage unpriviledged user SysV sempaphores.
</p>
@@ -1808,9 +1775,9 @@ Read files in the sysadm users home directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1819,13 +1786,13 @@ No
</div>
</div>
-<a name="link_userdom_read_unpriv_user_home_files"></a>
+<a name="link_userdom_manage_unpriv_user_shared_mem"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_read_unpriv_user_home_files</b>(
+<b>userdom_manage_unpriv_user_shared_mem</b>(
@@ -1839,8 +1806,8 @@ No
<h5>Summary</h5>
<p>
-Read all unprivileged users home directory
-files.
+Manage unpriviledged user SysV shared
+memory segments.
</p>
@@ -1851,9 +1818,9 @@ files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1862,13 +1829,13 @@ No
</div>
</div>
-<a name="link_userdom_read_unpriv_user_tmp_files"></a>
+<a name="link_userdom_priveleged_home_dir_manager"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_read_unpriv_user_tmp_files</b>(
+<b>userdom_priveleged_home_dir_manager</b>(
@@ -1882,10 +1849,22 @@ No
<h5>Summary</h5>
<p>
-Read all unprivileged users temporary files.
+Make the specified domain a privileged
+home directory manager.
</p>
+<h5>Description</h5>
+<p>
+</p><p>
+Make the specified domain a privileged
+home directory manager. This domain will be
+able to manage the contents of all users
+general home directory content, and create
+files with the correct context.
+</p><p>
+</p>
+
<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
@@ -1893,9 +1872,9 @@ Read all unprivileged users temporary files.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1904,13 +1883,13 @@ No
</div>
</div>
-<a name="link_userdom_read_unpriv_user_tmp_symlinks"></a>
+<a name="link_userdom_read_all_tmp_untrusted_content"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_read_unpriv_user_tmp_symlinks</b>(
+<b>userdom_read_all_tmp_untrusted_content</b>(
@@ -1924,7 +1903,7 @@ No
<h5>Summary</h5>
<p>
-Read all unprivileged users temporary symbolic links.
+Read all user temporary untrusted content files.
</p>
@@ -1935,9 +1914,9 @@ Read all unprivileged users temporary symbolic links.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1946,13 +1925,13 @@ No
</div>
</div>
-<a name="link_userdom_rw_sysadm_pipe"></a>
+<a name="link_userdom_read_all_untrusted_content"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_rw_sysadm_pipe</b>(
+<b>userdom_read_all_untrusted_content</b>(
@@ -1966,7 +1945,7 @@ No
<h5>Summary</h5>
<p>
-Read and write sysadm user unnamed pipes.
+Read all user untrusted content files.
</p>
@@ -1977,9 +1956,9 @@ Read and write sysadm user unnamed pipes.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -1988,13 +1967,13 @@ No
</div>
</div>
-<a name="link_userdom_search_all_users_home"></a>
+<a name="link_userdom_read_all_users_home_content_files"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_search_all_users_home</b>(
+<b>userdom_read_all_users_home_content_files</b>(
@@ -2008,7 +1987,7 @@ No
<h5>Summary</h5>
<p>
-Search all users home directories.
+Read all files in all users home directories.
</p>
@@ -2019,9 +1998,9 @@ Search all users home directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2030,13 +2009,13 @@ No
</div>
</div>
-<a name="link_userdom_search_generic_user_home_dir"></a>
+<a name="link_userdom_read_all_users_state"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_search_generic_user_home_dir</b>(
+<b>userdom_read_all_users_state</b>(
@@ -2050,7 +2029,7 @@ No
<h5>Summary</h5>
<p>
-Search generic user home directories.
+Read the process state of all user domains.
</p>
@@ -2061,9 +2040,9 @@ Search generic user home directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2072,13 +2051,13 @@ No
</div>
</div>
-<a name="link_userdom_search_staff_home_dir"></a>
+<a name="link_userdom_read_staff_home_content_files"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_search_staff_home_dir</b>(
+<b>userdom_read_staff_home_content_files</b>(
@@ -2092,7 +2071,7 @@ No
<h5>Summary</h5>
<p>
-Search the staff users home directory.
+Read files in the staff users home directory.
</p>
@@ -2103,9 +2082,9 @@ Search the staff users home directory.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2114,13 +2093,13 @@ No
</div>
</div>
-<a name="link_userdom_search_sysadm_home_dir"></a>
+<a name="link_userdom_read_sysadm_home_content_files"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_search_sysadm_home_dir</b>(
+<b>userdom_read_sysadm_home_content_files</b>(
@@ -2134,7 +2113,7 @@ No
<h5>Summary</h5>
<p>
-Search the sysadm users home directory.
+Read files in the sysadm users home directory.
</p>
@@ -2145,9 +2124,9 @@ Search the sysadm users home directory.
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -2156,13 +2135,13 @@ No
</div>
</div>
-<a name="link_userdom_search_sysadm_home_subdirs"></a>
+<a name="link_userdom_read_unpriv_users_home_content_files"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_search_sysadm_home_subdirs</b>(
+<b>userdom_read_unpriv_users_home_content_files</b>(
@@ -2176,7 +2155,8 @@ No
<h5>Summary</h5>
<p>
-Search the sysadm users home sub directories.
+Read all unprivileged users home directory
+files.
</p>
@@ -2187,9 +2167,9 @@ Search the sysadm users home sub directories.
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -2198,13 +2178,13 @@ No
</div>
</div>
-<a name="link_userdom_search_unpriv_user_home_dirs"></a>
+<a name="link_userdom_read_unpriv_users_tmp_files"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_search_unpriv_user_home_dirs</b>(
+<b>userdom_read_unpriv_users_tmp_files</b>(
@@ -2218,7 +2198,7 @@ No
<h5>Summary</h5>
<p>
-Search all unprivileged users home directories.
+Read all unprivileged users temporary files.
</p>
@@ -2229,9 +2209,9 @@ Search all unprivileged users home directories.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2240,13 +2220,13 @@ No
</div>
</div>
-<a name="link_userdom_setattr_unpriv_user_pty"></a>
+<a name="link_userdom_read_unpriv_users_tmp_symlinks"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_setattr_unpriv_user_pty</b>(
+<b>userdom_read_unpriv_users_tmp_symlinks</b>(
@@ -2260,7 +2240,7 @@ No
<h5>Summary</h5>
<p>
-Set the attributes of user ptys.
+Read all unprivileged users temporary symbolic links.
</p>
@@ -2271,9 +2251,9 @@ Set the attributes of user ptys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2282,13 +2262,13 @@ No
</div>
</div>
-<a name="link_userdom_shell_domtrans_sysadm"></a>
+<a name="link_userdom_relabelto_unpriv_users_ptys"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_shell_domtrans_sysadm</b>(
+<b>userdom_relabelto_unpriv_users_ptys</b>(
@@ -2302,7 +2282,7 @@ No
<h5>Summary</h5>
<p>
-Execute a shell in the sysadm domain.
+Relabel files to unprivileged user pty types.
</p>
@@ -2313,9 +2293,9 @@ Execute a shell in the sysadm domain.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2324,13 +2304,13 @@ No
</div>
</div>
-<a name="link_userdom_sigchld_all_users"></a>
+<a name="link_userdom_rw_sysadm_pipes"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_sigchld_all_users</b>(
+<b>userdom_rw_sysadm_pipes</b>(
@@ -2344,7 +2324,7 @@ No
<h5>Summary</h5>
<p>
-Send a SIGCHLD signal to all user domains.
+Read and write sysadm user unnamed pipes.
</p>
@@ -2355,9 +2335,9 @@ Send a SIGCHLD signal to all user domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2366,13 +2346,13 @@ No
</div>
</div>
-<a name="link_userdom_sigchld_sysadm"></a>
+<a name="link_userdom_sbin_spec_domtrans_sysadm"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_sigchld_sysadm</b>(
+<b>userdom_sbin_spec_domtrans_sysadm</b>(
@@ -2386,7 +2366,7 @@ No
<h5>Summary</h5>
<p>
-Send a SIGCHLD signal to sysadm users.
+Execute a generic sbin program in the sysadm domain.
</p>
@@ -2397,9 +2377,9 @@ Send a SIGCHLD signal to sysadm users.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2408,13 +2388,13 @@ No
</div>
</div>
-<a name="link_userdom_signal_all_users"></a>
+<a name="link_userdom_sbin_spec_domtrans_unpriv_users"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_signal_all_users</b>(
+<b>userdom_sbin_spec_domtrans_unpriv_users</b>(
@@ -2428,7 +2408,9 @@ No
<h5>Summary</h5>
<p>
-Send general signals to all user domains.
+Execute generic sbin programs in all unprivileged user
+domains. This is an explicit transition, requiring the
+caller to use setexeccon().
</p>
@@ -2439,9 +2421,9 @@ Send general signals to all user domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2450,13 +2432,13 @@ No
</div>
</div>
-<a name="link_userdom_signal_unpriv_users"></a>
+<a name="link_userdom_search_all_users_home_content"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_signal_unpriv_users</b>(
+<b>userdom_search_all_users_home_content</b>(
@@ -2470,7 +2452,7 @@ No
<h5>Summary</h5>
<p>
-Send general signals to unprivileged user domains.
+Search all users home directories.
</p>
@@ -2481,9 +2463,9 @@ Send general signals to unprivileged user domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2492,13 +2474,13 @@ No
</div>
</div>
-<a name="link_userdom_spec_domtrans_all_users"></a>
+<a name="link_userdom_search_generic_user_home_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_spec_domtrans_all_users</b>(
+<b>userdom_search_generic_user_home_dirs</b>(
@@ -2512,9 +2494,7 @@ No
<h5>Summary</h5>
<p>
-Execute a shell in all user domains. This
-is an explicit transition, requiring the
-caller to use setexeccon().
+Search generic user home directories.
</p>
@@ -2525,9 +2505,9 @@ caller to use setexeccon().
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2536,13 +2516,13 @@ No
</div>
</div>
-<a name="link_userdom_spec_domtrans_unpriv_users"></a>
+<a name="link_userdom_search_staff_home_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_spec_domtrans_unpriv_users</b>(
+<b>userdom_search_staff_home_dirs</b>(
@@ -2556,9 +2536,7 @@ No
<h5>Summary</h5>
<p>
-Execute a shell in all unprivileged user domains. This
-is an explicit transition, requiring the
-caller to use setexeccon().
+Search the staff users home directory.
</p>
@@ -2569,9 +2547,9 @@ caller to use setexeccon().
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2580,13 +2558,13 @@ No
</div>
</div>
-<a name="link_userdom_unconfined"></a>
+<a name="link_userdom_search_sysadm_home_content_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_unconfined</b>(
+<b>userdom_search_sysadm_home_content_dirs</b>(
@@ -2600,7 +2578,7 @@ No
<h5>Summary</h5>
<p>
-Unconfined access to user domains.
+Search the sysadm users home sub directories.
</p>
@@ -2611,9 +2589,9 @@ Unconfined access to user domains.
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -2622,13 +2600,13 @@ No
</div>
</div>
-<a name="link_userdom_use_all_user_fd"></a>
+<a name="link_userdom_search_sysadm_home_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_use_all_user_fd</b>(
+<b>userdom_search_sysadm_home_dirs</b>(
@@ -2642,7 +2620,7 @@ No
<h5>Summary</h5>
<p>
-Inherit the file descriptors from all user domains
+Search the sysadm users home directory.
</p>
@@ -2653,9 +2631,9 @@ Inherit the file descriptors from all user domains
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -2664,13 +2642,13 @@ No
</div>
</div>
-<a name="link_userdom_use_sysadm_fd"></a>
+<a name="link_userdom_search_unpriv_users_home_dirs"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_use_sysadm_fd</b>(
+<b>userdom_search_unpriv_users_home_dirs</b>(
@@ -2684,7 +2662,7 @@ No
<h5>Summary</h5>
<p>
-Inherit and use sysadm file descriptors
+Search all unprivileged users home directories.
</p>
@@ -2695,9 +2673,9 @@ Inherit and use sysadm file descriptors
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2706,13 +2684,13 @@ No
</div>
</div>
-<a name="link_userdom_use_sysadm_pty"></a>
+<a name="link_userdom_setattr_unpriv_users_ptys"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_use_sysadm_pty</b>(
+<b>userdom_setattr_unpriv_users_ptys</b>(
@@ -2726,7 +2704,7 @@ No
<h5>Summary</h5>
<p>
-Read and write sysadm ptys.
+Set the attributes of user ptys.
</p>
@@ -2737,9 +2715,9 @@ Read and write sysadm ptys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2748,13 +2726,13 @@ No
</div>
</div>
-<a name="link_userdom_use_sysadm_terms"></a>
+<a name="link_userdom_shell_domtrans_sysadm"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_use_sysadm_terms</b>(
+<b>userdom_shell_domtrans_sysadm</b>(
@@ -2768,7 +2746,7 @@ No
<h5>Summary</h5>
<p>
-Read and write sysadm ttys and ptys.
+Execute a shell in the sysadm domain.
</p>
@@ -2779,9 +2757,9 @@ Read and write sysadm ttys and ptys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2790,13 +2768,13 @@ No
</div>
</div>
-<a name="link_userdom_use_sysadm_tty"></a>
+<a name="link_userdom_sigchld_all_users"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_use_sysadm_tty</b>(
+<b>userdom_sigchld_all_users</b>(
@@ -2810,7 +2788,7 @@ No
<h5>Summary</h5>
<p>
-Read and write sysadm ttys.
+Send a SIGCHLD signal to all user domains.
</p>
@@ -2821,9 +2799,9 @@ Read and write sysadm ttys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2832,13 +2810,13 @@ No
</div>
</div>
-<a name="link_userdom_use_unpriv_user_pty"></a>
+<a name="link_userdom_sigchld_sysadm"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_use_unpriv_user_pty</b>(
+<b>userdom_sigchld_sysadm</b>(
@@ -2852,7 +2830,7 @@ No
<h5>Summary</h5>
<p>
-Read and write unprivileged user ptys.
+Send a SIGCHLD signal to sysadm users.
</p>
@@ -2863,9 +2841,9 @@ Read and write unprivileged user ptys.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2874,13 +2852,13 @@ No
</div>
</div>
-<a name="link_userdom_use_unpriv_users_fd"></a>
+<a name="link_userdom_signal_all_users"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_use_unpriv_users_fd</b>(
+<b>userdom_signal_all_users</b>(
@@ -2894,7 +2872,7 @@ No
<h5>Summary</h5>
<p>
-Inherit the file descriptors from unprivileged user domains.
+Send general signals to all user domains.
</p>
@@ -2905,9 +2883,9 @@ Inherit the file descriptors from unprivileged user domains.
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2916,13 +2894,13 @@ No
</div>
</div>
-<a name="link_userdom_write_unpriv_user_tmp"></a>
+<a name="link_userdom_signal_unpriv_users"></a>
<div id="interface">
<div id="codeblock">
-<b>userdom_write_unpriv_user_tmp</b>(
+<b>userdom_signal_unpriv_users</b>(
@@ -2936,7 +2914,7 @@ No
<h5>Summary</h5>
<p>
-Write all unprivileged users files in /tmp
+Send general signals to unprivileged user domains.
</p>
@@ -2947,9 +2925,9 @@ Write all unprivileged users files in /tmp
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -2958,25 +2936,62 @@ No
</div>
</div>
+<a name="link_userdom_spec_domtrans_all_users"></a>
+<div id="interface">
-<a href=#top>Return</a>
+<div id="codeblock">
-<a name="templates"></a>
-<h3>Templates: </h3>
+<b>userdom_spec_domtrans_all_users</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
-<a name="link_admin_user_template"></a>
-<div id="template">
+<h5>Summary</h5>
+<p>
+Execute a shell in all user domains. This
+is an explicit transition, requiring the
+caller to use setexeccon().
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_spec_domtrans_unpriv_users"></a>
+<div id="interface">
<div id="codeblock">
-<b>admin_user_template</b>(
+<b>userdom_spec_domtrans_unpriv_users</b>(
- userdomain_prefix
+ domain
)<br>
@@ -2985,44 +3000,22 @@ No
<h5>Summary</h5>
<p>
-The template for creating an administrative user.
+Execute a shell in all unprivileged user domains. This
+is an explicit transition, requiring the
+caller to use setexeccon().
</p>
-<h5>Description</h5>
-<p>
-</p><p>
-This template creates a user domain, types, and
-rules for the user's tty, pty, home directories,
-tmp, and tmpfs files.
-</p><p>
-</p><p>
-The privileges given to administrative users are:
-<ul><p>
-</p><li><p>Raw disk access</p></li><p>
-</p><li><p>Set all sysctls</p></li><p>
-</p><li><p>All kernel ring buffer controls</p></li><p>
-</p><li><p>Set SELinux enforcement mode (enforcing/permissive)</p></li><p>
-</p><li><p>Set SELinux booleans</p></li><p>
-</p><li><p>Relabel all files but shadow</p></li><p>
-</p><li><p>Create, read, write, and delete all files but shadow</p></li><p>
-</p><li><p>Manage source and binary format SELinux policy</p></li><p>
-</p><li><p>Run insmod</p></li><p>
-</p></ul>
-</p><p>
-</p>
-
<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-userdomain_prefix
+domain
</td><td>
-
-The prefix of the user domain (e.g., sysadm
-is the prefix for sysadm_t).
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3031,18 +3024,34 @@ No
</div>
</div>
-<a name="link_base_user_template"></a>
-<div id="template">
+<a name="link_userdom_sysadm_home_dir_filetrans"></a>
+<div id="interface">
<div id="codeblock">
-<b>base_user_template</b>(
+<b>userdom_sysadm_home_dir_filetrans</b>(
- userdomain_prefix
+ domain
+
+
+
+ ,
+
+
+
+ private type
+
+
+
+ ,
+
+
+
+ object_class
)<br>
@@ -3051,36 +3060,42 @@ No
<h5>Summary</h5>
<p>
-The template containing rules common to unprivileged
-users and administrative users.
+Create objects in sysadm home directories
+with automatic file type transition.
</p>
-<h5>Description</h5>
-<p>
-</p><p>
-This template creates a user domain, types, and
-rules for the user's tty, pty, home directories,
-tmp, and tmpfs files.
-</p><p>
-</p><p>
-This generally should not be used, rather the
-unpriv_user_template or admin_user_template should
-be used.
-</p><p>
-</p>
-
<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
<tr><td>
-userdomain_prefix
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
</td><td>
+No
+</td></tr>
-The prefix of the user domain (e.g., user
-is the prefix for user_t).
+<tr><td>
+private type
+</td><td>
+<p>
+The type of the object to be created.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+object_class
+</td><td>
+<p>
+The class of the object to be created.
+If not specified, file is used.
+</p>
</td><td>
No
</td></tr>
@@ -3089,18 +3104,18 @@ No
</div>
</div>
-<a name="link_unpriv_user_template"></a>
-<div id="template">
+<a name="link_userdom_unconfined"></a>
+<div id="interface">
<div id="codeblock">
-<b>unpriv_user_template</b>(
+<b>userdom_unconfined</b>(
- userdomain_prefix
+ domain
)<br>
@@ -3109,16 +3124,1187 @@ No
<h5>Summary</h5>
<p>
-The template for creating a unprivileged user.
+Unconfined access to user domains.
</p>
-<h5>Description</h5>
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
<p>
-</p><p>
-This template creates a user domain, types, and
-rules for the user's tty, pty, home directories,
-tmp, and tmpfs files.
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_use_all_users_fds"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>userdom_use_all_users_fds</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Inherit the file descriptors from all user domains
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_use_sysadm_fds"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>userdom_use_sysadm_fds</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Inherit and use sysadm file descriptors
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_use_sysadm_ptys"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>userdom_use_sysadm_ptys</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write sysadm ptys.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_use_sysadm_terms"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>userdom_use_sysadm_terms</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write sysadm ttys and ptys.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_use_sysadm_ttys"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>userdom_use_sysadm_ttys</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write sysadm ttys.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_use_unpriv_users_fds"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>userdom_use_unpriv_users_fds</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Inherit the file descriptors from unprivileged user domains.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_use_unpriv_users_ptys"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>userdom_use_unpriv_users_ptys</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Read and write unprivileged user ptys.
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_write_unpriv_users_tmp_files"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>userdom_write_unpriv_users_tmp_files</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Write all unprivileged users files in /tmp
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_xsession_spec_domtrans_all_users"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>userdom_xsession_spec_domtrans_all_users</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute an Xserver session in all unprivileged user domains. This
+is an explicit transition, requiring the
+caller to use setexeccon().
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_xsession_spec_domtrans_unpriv_users"></a>
+<div id="interface">
+
+
+<div id="codeblock">
+
+<b>userdom_xsession_spec_domtrans_unpriv_users</b>(
+
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Execute an Xserver session in all unprivileged user domains. This
+is an explicit transition, requiring the
+caller to use setexeccon().
+</p>
+
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+
+<a href=#top>Return</a>
+
+
+<a name="templates"></a>
+<h3>Templates: </h3>
+
+<a name="link_admin_user_template"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>admin_user_template</b>(
+
+
+
+
+ userdomain_prefix
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+The template for creating an administrative user.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+This template creates a user domain, types, and
+rules for the user's tty, pty, home directories,
+tmp, and tmpfs files.
+</p><p>
+</p><p>
+The privileges given to administrative users are:
+<ul><p>
+</p><li><p>Raw disk access</p></li><p>
+</p><li><p>Set all sysctls</p></li><p>
+</p><li><p>All kernel ring buffer controls</p></li><p>
+</p><li><p>Set SELinux enforcement mode (enforcing/permissive)</p></li><p>
+</p><li><p>Set SELinux booleans</p></li><p>
+</p><li><p>Relabel all files but shadow</p></li><p>
+</p><li><p>Create, read, write, and delete all files but shadow</p></li><p>
+</p><li><p>Manage source and binary format SELinux policy</p></li><p>
+</p><li><p>Run insmod</p></li><p>
+</p></ul>
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., sysadm
+is the prefix for sysadm_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_base_user_template"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>base_user_template</b>(
+
+
+
+
+ userdomain_prefix
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+The template containing rules common to unprivileged
+users and administrative users.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+This template creates a user domain, types, and
+rules for the user's tty, pty, home directories,
+tmp, and tmpfs files.
+</p><p>
+</p><p>
+This generally should not be used, rather the
+unpriv_user_template or admin_user_template should
+be used.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_unpriv_user_template"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>unpriv_user_template</b>(
+
+
+
+
+ userdomain_prefix
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+The template for creating a unprivileged user.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+This template creates a user domain, types, and
+rules for the user's tty, pty, home directories,
+tmp, and tmpfs files.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_create_user_pty"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>userdom_create_user_pty</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Create a user pty.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Create a user pty.
+</p><p>
+</p><p>
+This is a templated interface, and should only
+be called from a per-userdomain template.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_dontaudit_append_user_tmp_files"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>userdom_dontaudit_append_user_tmp_files</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to append users
+temporary files.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Do not audit attempts to append users
+temporary files.
+</p><p>
+</p><p>
+This is a templated interface, and should only
+be called from a per-userdomain template.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to not audit.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_dontaudit_exec_user_home_content_files"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>userdom_dontaudit_exec_user_home_content_files</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to execute user home files.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Do not audit attempts to execute user home files.
+</p><p>
+</p><p>
+This is a templated interface, and should only
+be called from a per-userdomain template.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_dontaudit_list_user_home_dirs"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>userdom_dontaudit_list_user_home_dirs</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to list user home subdirectories.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Do not audit attempts to list user home subdirectories.
+</p><p>
+</p><p>
+This is a templated interface, and should only
+be called from a per-userdomain template.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to not audit
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_dontaudit_list_user_tmp"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>userdom_dontaudit_list_user_tmp</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to list user
+temporary directories.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Do not audit attempts to list user
+temporary directories.
+</p><p>
+</p><p>
+This is a templated interface, and should only
+be called from a per-userdomain template.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to not audit.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_dontaudit_list_user_tmp_untrusted_content"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>userdom_dontaudit_list_user_tmp_untrusted_content</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to list user
+temporary untrusted directories.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Do not audit attempts to list user
+temporary directories.
+</p><p>
+</p><p>
+This is a templated interface, and should only
+be called from a per-userdomain template.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to not audit.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_dontaudit_list_user_untrusted_content"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>userdom_dontaudit_list_user_untrusted_content</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to list user
+untrusted directories.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Do not audit attempts to read user
+untrusted directories.
+</p><p>
+</p><p>
+This is a templated interface, and should only
+be called from a per-userdomain template.
+</p><p>
+</p>
+
+<h5>Parameters</h5>
+<table border="1" cellspacing="0" cellpadding="3" width="80%">
+<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
+
+<tr><td>
+userdomain_prefix
+</td><td>
+<p>
+The prefix of the user domain (e.g., user
+is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to not audit.
+</p>
+</td><td>
+No
+</td></tr>
+
+</table>
+</div>
+</div>
+
+<a name="link_userdom_dontaudit_read_user_home_content_files"></a>
+<div id="template">
+
+
+<div id="codeblock">
+
+<b>userdom_dontaudit_read_user_home_content_files</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+ )<br>
+</div>
+<div id="description">
+
+<h5>Summary</h5>
+<p>
+Do not audit attempts to read user home files.
+</p>
+
+
+<h5>Description</h5>
+<p>
+</p><p>
+Do not audit attempts to read user home files.
+</p><p>
+</p><p>
+This is a templated interface, and should only
+be called from a per-userdomain template.
</p><p>
</p>
@@ -3129,10 +4315,20 @@ tmp, and tmpfs files.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+domain
+</td><td>
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -3141,13 +4337,13 @@ No
</div>
</div>
-<a name="link_userdom_create_user_home"></a>
+<a name="link_userdom_dontaudit_read_user_tmp_files"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_create_user_home</b>(
+<b>userdom_dontaudit_read_user_tmp_files</b>(
@@ -3163,45 +4359,22 @@ No
domain
-
- ,
-
-
-
- [
-
- object_class
-
- ]
-
-
-
- ,
-
-
-
- [
-
- private_type
-
- ]
-
-
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-
+Do not audit attempts to read users
+temporary files.
</p>
<h5>Description</h5>
<p>
</p><p>
-Create, read, write, and delete named sockets
-in a user home subdirectory.
+Do not audit attempts to read users
+temporary files.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -3216,10 +4389,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -3227,47 +4400,24 @@ No
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
-<tr><td>
-object_class
-</td><td>
-
-The class of the object to be created. If not
-specified, file is used.
-
-</td><td>
-yes
-</td></tr>
-
-<tr><td>
-private_type
-</td><td>
-
-The type of the object to create. If this is
-not specified, the regular home directory
-type is used.
-
-</td><td>
-yes
-</td></tr>
-
</table>
</div>
</div>
-<a name="link_userdom_create_user_pty"></a>
+<a name="link_userdom_dontaudit_read_user_tmp_untrusted_content_files"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_create_user_pty</b>(
+<b>userdom_dontaudit_read_user_tmp_untrusted_content_files</b>(
@@ -3289,14 +4439,16 @@ yes
<h5>Summary</h5>
<p>
-Create a user pty.
+Do not audit attempts to read users
+temporary untrusted files.
</p>
<h5>Description</h5>
<p>
</p><p>
-Create a user pty.
+Do not audit attempts to read users
+temporary untrusted files.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -3311,10 +4463,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -3322,9 +4474,9 @@ No
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -3333,13 +4485,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_exec_user_home_files"></a>
+<a name="link_userdom_dontaudit_read_user_untrusted_content_files"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_dontaudit_exec_user_home_files</b>(
+<b>userdom_dontaudit_read_user_untrusted_content_files</b>(
@@ -3361,14 +4513,16 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to execute user home files.
+Do not audit attempts to read users
+untrusted files.
</p>
<h5>Description</h5>
<p>
</p><p>
-Do not audit attempts to execute user home files.
+Do not audit attempts to read users
+untrusted files.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -3383,10 +4537,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -3394,9 +4548,9 @@ No
<tr><td>
domain
</td><td>
-
-Domain allowed access.
-
+<p>
+Domain to not audit.
+</p>
</td><td>
No
</td></tr>
@@ -3405,13 +4559,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_list_user_home_dir"></a>
+<a name="link_userdom_dontaudit_setattr_user_home_content_files"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_dontaudit_list_user_home_dir</b>(
+<b>userdom_dontaudit_setattr_user_home_content_files</b>(
@@ -3433,14 +4587,16 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to list user home subdirectories.
+Do not audit attempts to set the
+attributes of user home files.
</p>
<h5>Description</h5>
<p>
</p><p>
-Do not audit attempts to list user home subdirectories.
+Do not audit attempts to set the
+attributes of user home files.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -3455,10 +4611,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -3466,9 +4622,9 @@ No
<tr><td>
domain
</td><td>
-
-Domain to not audit
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3477,13 +4633,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_list_user_tmp"></a>
+<a name="link_userdom_dontaudit_use_user_terminals"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_dontaudit_list_user_tmp</b>(
+<b>userdom_dontaudit_use_user_terminals</b>(
@@ -3505,16 +4661,16 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to list user
-temporary directories.
+Do not audit attempts to read and write
+a user domain tty and pty.
</p>
<h5>Description</h5>
<p>
</p><p>
-Do not audit attempts to list user
-temporary directories.
+Do not audit attempts to read and write
+a user domain tty and pty.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -3529,10 +4685,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -3540,9 +4696,9 @@ No
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3551,13 +4707,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_list_user_tmp_untrusted_content"></a>
+<a name="link_userdom_dontaudit_write_user_home_content_files"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_dontaudit_list_user_tmp_untrusted_content</b>(
+<b>userdom_dontaudit_write_user_home_content_files</b>(
@@ -3579,16 +4735,14 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to list user
-temporary untrusted directories.
+Do not audit attempts to write user home files.
</p>
<h5>Description</h5>
<p>
</p><p>
-Do not audit attempts to list user
-temporary directories.
+Do not audit attempts to write user home files.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -3603,10 +4757,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -3614,9 +4768,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain to not audit.
-
+</p>
</td><td>
No
</td></tr>
@@ -3625,13 +4779,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_list_user_untrusted_content"></a>
+<a name="link_userdom_exec_user_home_content_files"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_dontaudit_list_user_untrusted_content</b>(
+<b>userdom_exec_user_home_content_files</b>(
@@ -3653,16 +4807,14 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to list user
-untrusted directories.
+Execute user home files.
</p>
<h5>Description</h5>
<p>
</p><p>
-Do not audit attempts to read user
-untrusted directories.
+Execute user home files.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -3677,10 +4829,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -3688,9 +4840,9 @@ No
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3699,13 +4851,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_read_user_home_files"></a>
+<a name="link_userdom_list_user_home_dirs"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_dontaudit_read_user_home_files</b>(
+<b>userdom_list_user_home_dirs</b>(
@@ -3727,14 +4879,14 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read user home files.
+List user home directories.
</p>
<h5>Description</h5>
<p>
</p><p>
-Do not audit attempts to read user home files.
+List user home directories.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -3749,10 +4901,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -3760,9 +4912,9 @@ No
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3771,13 +4923,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_read_user_tmp_files"></a>
+<a name="link_userdom_list_user_tmp"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_dontaudit_read_user_tmp_files</b>(
+<b>userdom_list_user_tmp</b>(
@@ -3799,16 +4951,14 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read users
-temporary files.
+List user temporary directories.
</p>
<h5>Description</h5>
<p>
</p><p>
-Do not audit attempts to read users
-temporary files.
+List user temporary directories.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -3823,10 +4973,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -3834,9 +4984,9 @@ No
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3845,13 +4995,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_read_user_tmp_untrusted_content_files"></a>
+<a name="link_userdom_list_user_tmp_untrusted_content"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_dontaudit_read_user_tmp_untrusted_content_files</b>(
+<b>userdom_list_user_tmp_untrusted_content</b>(
@@ -3873,16 +5023,14 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read users
-temporary untrusted files.
+List users temporary untrusted directories.
</p>
<h5>Description</h5>
<p>
</p><p>
-Do not audit attempts to read users
-temporary untrusted files.
+List users temporary untrusted directories.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -3897,10 +5045,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -3908,9 +5056,9 @@ No
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3919,13 +5067,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_read_user_untrusted_content_files"></a>
+<a name="link_userdom_list_user_untrusted_content"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_dontaudit_read_user_untrusted_content_files</b>(
+<b>userdom_list_user_untrusted_content</b>(
@@ -3947,16 +5095,14 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read users
-untrusted files.
+List users untrusted directories.
</p>
<h5>Description</h5>
<p>
</p><p>
-Do not audit attempts to read users
-untrusted files.
+List users untrusted directories.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -3971,10 +5117,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -3982,9 +5128,9 @@ No
<tr><td>
domain
</td><td>
-
-Domain to not audit.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -3993,13 +5139,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_setattr_user_home_files"></a>
+<a name="link_userdom_manage_user_home_content_dirs"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_dontaudit_setattr_user_home_files</b>(
+<b>userdom_manage_user_home_content_dirs</b>(
@@ -4021,17 +5167,17 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to set the
-attributes of user home files.
+Create, read, write, and delete directories
+in a user home subdirectory.
</p>
<h5>Description</h5>
<p>
</p><p>
-Do not audit attempts to set the
-attributes of user home files.
-</p><p>
+Create, read, write, and delete directories
+in a user home subdirectory.
+</p><p>
</p><p>
This is a templated interface, and should only
be called from a per-userdomain template.
@@ -4045,10 +5191,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -4056,9 +5202,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4067,13 +5213,13 @@ No
</div>
</div>
-<a name="link_userdom_dontaudit_use_user_terminals"></a>
+<a name="link_userdom_manage_user_home_content_files"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_dontaudit_use_user_terminals</b>(
+<b>userdom_manage_user_home_content_files</b>(
@@ -4095,16 +5241,16 @@ No
<h5>Summary</h5>
<p>
-Do not audit attempts to read and write
-a user domain tty and pty.
+Create, read, write, and delete files
+in a user home subdirectory.
</p>
<h5>Description</h5>
<p>
</p><p>
-Do not audit attempts to read and write
-a user domain tty and pty.
+Create, read, write, and delete files
+in a user home subdirectory.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -4119,10 +5265,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -4130,9 +5276,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4141,13 +5287,13 @@ No
</div>
</div>
-<a name="link_userdom_exec_user_home_files"></a>
+<a name="link_userdom_manage_user_home_content_pipes"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_exec_user_home_files</b>(
+<b>userdom_manage_user_home_content_pipes</b>(
@@ -4169,14 +5315,16 @@ No
<h5>Summary</h5>
<p>
-Execute user home files.
+Create, read, write, and delete named pipes
+in a user home subdirectory.
</p>
<h5>Description</h5>
<p>
</p><p>
-Execute user home files.
+Create, read, write, and delete named pipes
+in a user home subdirectory.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -4191,10 +5339,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -4202,9 +5350,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4213,13 +5361,13 @@ No
</div>
</div>
-<a name="link_userdom_home_file"></a>
+<a name="link_userdom_manage_user_home_content_sockets"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_home_file</b>(
+<b>userdom_manage_user_home_content_sockets</b>(
@@ -4232,7 +5380,7 @@ No
- type
+ domain
)<br>
@@ -4241,16 +5389,16 @@ No
<h5>Summary</h5>
<p>
-Make the specified type usable in a
-user home directory.
+Create, read, write, and delete named sockets
+in a user home subdirectory.
</p>
<h5>Description</h5>
<p>
</p><p>
-Make the specified type usable in a
-user home directory.
+Create, read, write, and delete named sockets
+in a user home subdirectory.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -4265,21 +5413,20 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
<tr><td>
-type
+domain
</td><td>
-
-Type to be used as a file in the
-user home directory.
-
+<p>
+Domain allowed access.
+</p>
</td><td>
No
</td></tr>
@@ -4288,13 +5435,13 @@ No
</div>
</div>
-<a name="link_userdom_list_user_tmp"></a>
+<a name="link_userdom_manage_user_home_content_symlinks"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_list_user_tmp</b>(
+<b>userdom_manage_user_home_content_symlinks</b>(
@@ -4316,14 +5463,16 @@ No
<h5>Summary</h5>
<p>
-List user temporary directories.
+Create, read, write, and delete symbolic links
+in a user home subdirectory.
</p>
<h5>Description</h5>
<p>
</p><p>
-List user temporary directories.
+Create, read, write, and delete symbolic links
+in a user home subdirectory.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -4338,10 +5487,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -4349,9 +5498,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4360,13 +5509,13 @@ No
</div>
</div>
-<a name="link_userdom_list_user_tmp_untrusted_content"></a>
+<a name="link_userdom_manage_user_tmp_dirs"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_list_user_tmp_untrusted_content</b>(
+<b>userdom_manage_user_tmp_dirs</b>(
@@ -4388,14 +5537,16 @@ No
<h5>Summary</h5>
<p>
-List users temporary untrusted directories.
+Create, read, write, and delete user
+temporary directories.
</p>
<h5>Description</h5>
<p>
</p><p>
-List users temporary untrusted directories.
+Create, read, write, and delete user
+temporary directories.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -4410,10 +5561,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -4421,9 +5572,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4432,13 +5583,13 @@ No
</div>
</div>
-<a name="link_userdom_list_user_untrusted_content"></a>
+<a name="link_userdom_manage_user_tmp_files"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_list_user_untrusted_content</b>(
+<b>userdom_manage_user_tmp_files</b>(
@@ -4460,14 +5611,16 @@ No
<h5>Summary</h5>
<p>
-List users untrusted directories.
+Create, read, write, and delete user
+temporary files.
</p>
<h5>Description</h5>
<p>
</p><p>
-List users untrusted directories.
+Create, read, write, and delete user
+temporary files.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -4482,10 +5635,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -4493,9 +5646,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4504,13 +5657,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_user_home_subdir_files"></a>
+<a name="link_userdom_manage_user_tmp_pipes"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_manage_user_home_subdir_files</b>(
+<b>userdom_manage_user_tmp_pipes</b>(
@@ -4532,16 +5685,16 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete files
-in a user home subdirectory.
+Create, read, write, and delete user
+temporary named pipes.
</p>
<h5>Description</h5>
<p>
</p><p>
-Create, read, write, and delete files
-in a user home subdirectory.
+Create, read, write, and delete user
+temporary named pipes.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -4556,10 +5709,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -4567,9 +5720,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4578,13 +5731,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_user_home_subdir_pipes"></a>
+<a name="link_userdom_manage_user_tmp_sockets"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_manage_user_home_subdir_pipes</b>(
+<b>userdom_manage_user_tmp_sockets</b>(
@@ -4606,16 +5759,16 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete named pipes
-in a user home subdirectory.
+Create, read, write, and delete user
+temporary named sockets.
</p>
<h5>Description</h5>
<p>
</p><p>
-Create, read, write, and delete named pipes
-in a user home subdirectory.
+Create, read, write, and delete user
+temporary named sockets.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -4630,10 +5783,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -4641,9 +5794,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4652,13 +5805,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_user_home_subdir_sockets"></a>
+<a name="link_userdom_manage_user_tmp_symlinks"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_manage_user_home_subdir_sockets</b>(
+<b>userdom_manage_user_tmp_symlinks</b>(
@@ -4680,16 +5833,16 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete named sockets
-in a user home subdirectory.
+Create, read, write, and delete user
+temporary symbolic links.
</p>
<h5>Description</h5>
<p>
</p><p>
-Create, read, write, and delete named sockets
-in a user home subdirectory.
+Create, read, write, and delete user
+temporary symbolic links.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -4704,10 +5857,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -4715,9 +5868,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4726,13 +5879,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_user_home_subdir_symlinks"></a>
+<a name="link_userdom_read_user_home_content_files"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_manage_user_home_subdir_symlinks</b>(
+<b>userdom_read_user_home_content_files</b>(
@@ -4754,16 +5907,14 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete symbolic links
-in a user home subdirectory.
+Read user home files.
</p>
<h5>Description</h5>
<p>
</p><p>
-Create, read, write, and delete symbolic links
-in a user home subdirectory.
+Read user home files.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -4778,10 +5929,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -4789,9 +5940,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4800,13 +5951,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_user_home_subdirs"></a>
+<a name="link_userdom_read_user_home_content_symlinks"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_manage_user_home_subdirs</b>(
+<b>userdom_read_user_home_content_symlinks</b>(
@@ -4828,16 +5979,14 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete directories
-in a user home subdirectory.
+Read user home subdirectory symbolic links.
</p>
<h5>Description</h5>
<p>
</p><p>
-Create, read, write, and delete directories
-in a user home subdirectory.
+Read user home subdirectory symbolic links.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -4852,10 +6001,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -4863,9 +6012,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4874,13 +6023,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_user_tmp_dirs"></a>
+<a name="link_userdom_read_user_tmp_files"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_manage_user_tmp_dirs</b>(
+<b>userdom_read_user_tmp_files</b>(
@@ -4902,16 +6051,14 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete user
-temporary directories.
+Read user temporary files.
</p>
<h5>Description</h5>
<p>
</p><p>
-Create, read, write, and delete user
-temporary directories.
+Read user temporary files.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -4926,10 +6073,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -4937,9 +6084,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -4948,13 +6095,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_user_tmp_files"></a>
+<a name="link_userdom_read_user_tmp_symlinks"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_manage_user_tmp_files</b>(
+<b>userdom_read_user_tmp_symlinks</b>(
@@ -4976,16 +6123,16 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete user
-temporary files.
+Read user
+temporary symbolic links.
</p>
<h5>Description</h5>
<p>
</p><p>
-Create, read, write, and delete user
-temporary files.
+Read user
+temporary symbolic links.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -5000,10 +6147,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -5011,9 +6158,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5022,13 +6169,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_user_tmp_pipes"></a>
+<a name="link_userdom_read_user_tmp_untrusted_content_files"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_manage_user_tmp_pipes</b>(
+<b>userdom_read_user_tmp_untrusted_content_files</b>(
@@ -5050,16 +6197,14 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete user
-temporary named pipes.
+Read user temporary untrusted files.
</p>
<h5>Description</h5>
<p>
</p><p>
-Create, read, write, and delete user
-temporary named pipes.
+Read user temporary untrusted files.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -5074,10 +6219,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -5085,9 +6230,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5096,13 +6241,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_user_tmp_sockets"></a>
+<a name="link_userdom_read_user_tmp_untrusted_content_symlinks"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_manage_user_tmp_sockets</b>(
+<b>userdom_read_user_tmp_untrusted_content_symlinks</b>(
@@ -5124,16 +6269,14 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete user
-temporary named sockets.
+Read user temporary untrusted symbolic links.
</p>
<h5>Description</h5>
<p>
</p><p>
-Create, read, write, and delete user
-temporary named sockets.
+Read user temporary untrusted symbolic links.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -5148,10 +6291,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -5159,9 +6302,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5170,13 +6313,13 @@ No
</div>
</div>
-<a name="link_userdom_manage_user_tmp_symlinks"></a>
+<a name="link_userdom_read_user_untrusted_content_files"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_manage_user_tmp_symlinks</b>(
+<b>userdom_read_user_untrusted_content_files</b>(
@@ -5198,16 +6341,14 @@ No
<h5>Summary</h5>
<p>
-Create, read, write, and delete user
-temporary symbolic links.
+Read user untrusted files.
</p>
<h5>Description</h5>
<p>
</p><p>
-Create, read, write, and delete user
-temporary symbolic links.
+Read user untrusted files.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -5222,10 +6363,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -5233,9 +6374,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5244,13 +6385,13 @@ No
</div>
</div>
-<a name="link_userdom_read_user_home_files"></a>
+<a name="link_userdom_read_user_untrusted_content_symlinks"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_read_user_home_files</b>(
+<b>userdom_read_user_untrusted_content_symlinks</b>(
@@ -5272,14 +6413,14 @@ No
<h5>Summary</h5>
<p>
-Read user home files.
+Read user untrusted symbolic links.
</p>
<h5>Description</h5>
<p>
</p><p>
-Read user home files.
+Read user untrusted symbolic links.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -5294,10 +6435,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -5305,9 +6446,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5316,13 +6457,13 @@ No
</div>
</div>
-<a name="link_userdom_read_user_home_symlinks"></a>
+<a name="link_userdom_rw_user_tmp_files"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_read_user_home_symlinks</b>(
+<b>userdom_rw_user_tmp_files</b>(
@@ -5344,14 +6485,14 @@ No
<h5>Summary</h5>
<p>
-Read user home subdirectory symbolic links.
+Read and write user temporary files.
</p>
<h5>Description</h5>
<p>
</p><p>
-Read user home subdirectory symbolic links.
+Read and write user temporary files.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -5366,10 +6507,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -5377,9 +6518,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5388,13 +6529,13 @@ No
</div>
</div>
-<a name="link_userdom_read_user_tmp_files"></a>
+<a name="link_userdom_rw_user_tmpfs_files"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_read_user_tmp_files</b>(
+<b>userdom_rw_user_tmpfs_files</b>(
@@ -5416,14 +6557,14 @@ No
<h5>Summary</h5>
<p>
-Read user temporary files.
+Read user tmpfs files.
</p>
<h5>Description</h5>
<p>
</p><p>
-Read user temporary files.
+Read user tmpfs files.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -5438,10 +6579,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -5449,9 +6590,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5460,13 +6601,13 @@ No
</div>
</div>
-<a name="link_userdom_read_user_tmp_symlinks"></a>
+<a name="link_userdom_search_user_home_dirs"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_read_user_tmp_symlinks</b>(
+<b>userdom_search_user_home_dirs</b>(
@@ -5488,16 +6629,14 @@ No
<h5>Summary</h5>
<p>
-Read user
-temporary symbolic links.
+Search user home directories.
</p>
<h5>Description</h5>
<p>
</p><p>
-Read user
-temporary symbolic links.
+Search user home directories.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -5512,10 +6651,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -5523,9 +6662,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5534,13 +6673,13 @@ No
</div>
</div>
-<a name="link_userdom_read_user_tmp_untrusted_content_files"></a>
+<a name="link_userdom_setattr_user_ptys"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_read_user_tmp_untrusted_content_files</b>(
+<b>userdom_setattr_user_ptys</b>(
@@ -5562,14 +6701,14 @@ No
<h5>Summary</h5>
<p>
-Read user temporary untrusted files.
+Set the attributes of a user pty.
</p>
<h5>Description</h5>
<p>
</p><p>
-Read user temporary untrusted files.
+Set the attributes of a user pty.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -5584,10 +6723,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -5595,9 +6734,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5606,13 +6745,13 @@ No
</div>
</div>
-<a name="link_userdom_read_user_tmp_untrusted_content_symlinks"></a>
+<a name="link_userdom_setattr_user_ttys"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_read_user_tmp_untrusted_content_symlinks</b>(
+<b>userdom_setattr_user_ttys</b>(
@@ -5634,14 +6773,14 @@ No
<h5>Summary</h5>
<p>
-Read user temporary untrusted symbolic links.
+Set the attributes of a user domain tty.
</p>
<h5>Description</h5>
<p>
</p><p>
-Read user temporary untrusted symbolic links.
+Set the attributes of a user domain tty.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -5656,10 +6795,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -5667,9 +6806,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5678,13 +6817,13 @@ No
</div>
</div>
-<a name="link_userdom_read_user_untrusted_content_files"></a>
+<a name="link_userdom_use_user_terminals"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_read_user_untrusted_content_files</b>(
+<b>userdom_use_user_terminals</b>(
@@ -5706,14 +6845,14 @@ No
<h5>Summary</h5>
<p>
-Read user untrusted files.
+Read and write a user domain tty and pty.
</p>
<h5>Description</h5>
<p>
</p><p>
-Read user untrusted files.
+Read and write a user domain tty and pty.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -5728,10 +6867,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -5739,9 +6878,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5750,13 +6889,13 @@ No
</div>
</div>
-<a name="link_userdom_read_user_untrusted_content_symlinks"></a>
+<a name="link_userdom_use_user_ttys"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_read_user_untrusted_content_symlinks</b>(
+<b>userdom_use_user_ttys</b>(
@@ -5778,14 +6917,14 @@ No
<h5>Summary</h5>
<p>
-Read user untrusted symbolic links.
+Read and write a user domain tty.
</p>
<h5>Description</h5>
<p>
</p><p>
-Read user untrusted symbolic links.
+Read and write a user domain tty.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -5800,10 +6939,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -5811,9 +6950,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -5822,13 +6961,13 @@ No
</div>
</div>
-<a name="link_userdom_search_user_home"></a>
+<a name="link_userdom_user_home_content"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_search_user_home</b>(
+<b>userdom_user_home_content</b>(
@@ -5841,7 +6980,7 @@ No
- domain
+ type
)<br>
@@ -5850,14 +6989,16 @@ No
<h5>Summary</h5>
<p>
-Search user home directories.
+Make the specified type usable in a
+user home directory.
</p>
<h5>Description</h5>
<p>
</p><p>
-Search user home directories.
+Make the specified type usable in a
+user home directory.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -5872,20 +7013,21 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
<tr><td>
-domain
+type
</td><td>
-
-Domain allowed access.
-
+<p>
+Type to be used as a file in the
+user home directory.
+</p>
</td><td>
No
</td></tr>
@@ -5894,13 +7036,13 @@ No
</div>
</div>
-<a name="link_userdom_setattr_user_pty"></a>
+<a name="link_userdom_user_home_dir_filetrans"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_setattr_user_pty</b>(
+<b>userdom_user_home_dir_filetrans</b>(
@@ -5916,20 +7058,40 @@ No
domain
+
+ ,
+
+
+
+ private_type
+
+
+
+ ,
+
+
+
+ object_class
+
+
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Set the attributes of a user pty.
+Create objects in a user home directory
+with an automatic type transition to
+a specified private type.
</p>
<h5>Description</h5>
<p>
</p><p>
-Set the attributes of a user pty.
+Create objects in a user home directory
+with an automatic type transition to
+a specified private type.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -5944,10 +7106,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -5955,9 +7117,30 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+
+<tr><td>
+private_type
+</td><td>
+<p>
+The type of the object to create.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+object_class
+</td><td>
+<p>
+The class of the object to be created. If not
+specified, file is used.
+</p>
</td><td>
No
</td></tr>
@@ -5966,13 +7149,13 @@ No
</div>
</div>
-<a name="link_userdom_use_user_terminals"></a>
+<a name="link_userdom_user_home_dir_filetrans_user_home_content"></a>
<div id="template">
<div id="codeblock">
-<b>userdom_use_user_terminals</b>(
+<b>userdom_user_home_dir_filetrans_user_home_content</b>(
@@ -5988,20 +7171,32 @@ No
domain
+
+ ,
+
+
+
+ object_class
+
+
)<br>
</div>
<div id="description">
<h5>Summary</h5>
<p>
-Read and write a user domain tty and pty.
+Create objects in a user home directory
+with an automatic type transition to
+the user home file type.
</p>
<h5>Description</h5>
<p>
</p><p>
-Read and write a user domain tty and pty.
+Create objects in a user home directory
+with an automatic type transition to
+the user home file type.
</p><p>
</p><p>
This is a templated interface, and should only
@@ -6016,10 +7211,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -6027,9 +7222,20 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
+</p>
+</td><td>
+No
+</td></tr>
+<tr><td>
+object_class
+</td><td>
+<p>
+The class of the object to be created. If not
+specified, file is used.
+</p>
</td><td>
No
</td></tr>
@@ -6105,10 +7311,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -6116,9 +7322,9 @@ No
<tr><td>
source_domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
@@ -6126,9 +7332,9 @@ No
<tr><td>
target_domain
</td><td>
-
+<p>
Domain to transition to.
-
+</p>
</td><td>
No
</td></tr>
@@ -6187,10 +7393,10 @@ be called from a per-userdomain template.
<tr><td>
userdomain_prefix
</td><td>
-
+<p>
The prefix of the user domain (e.g., user
is the prefix for user_t).
-
+</p>
</td><td>
No
</td></tr>
@@ -6198,9 +7404,9 @@ No
<tr><td>
domain
</td><td>
-
+<p>
Domain allowed access.
-
+</p>
</td><td>
No
</td></tr>
diff --git a/www/api-docs/templates.html b/www/api-docs/templates.html
index 59bdb3b..10c481a 100644
--- a/www/api-docs/templates.html
+++ b/www/api-docs/templates.html
@@ -25,6 +25,12 @@
- <a href='admin_anaconda.html'>
anaconda</a><br/>
+ - <a href='admin_bootloader.html'>
+ bootloader</a><br/>
+
+ - <a href='admin_certwatch.html'>
+ certwatch</a><br/>
+
- <a href='admin_consoletype.html'>
consoletype</a><br/>
@@ -49,9 +55,15 @@
- <a href='admin_logwatch.html'>
logwatch</a><br/>
+ - <a href='admin_mrtg.html'>
+ mrtg</a><br/>
+
- <a href='admin_netutils.html'>
netutils</a><br/>
+ - <a href='admin_portage.html'>
+ portage</a><br/>
+
- <a href='admin_prelink.html'>
prelink</a><br/>
@@ -112,24 +124,39 @@
- <a href='apps_lockdev.html'>
lockdev</a><br/>
+ - <a href='apps_mono.html'>
+ mono</a><br/>
+
- <a href='apps_screen.html'>
screen</a><br/>
- <a href='apps_slocate.html'>
slocate</a><br/>
+ - <a href='apps_tvtime.html'>
+ tvtime</a><br/>
+
+ - <a href='apps_uml.html'>
+ uml</a><br/>
+
+ - <a href='apps_userhelper.html'>
+ userhelper</a><br/>
+
+ - <a href='apps_usernetctl.html'>
+ usernetctl</a><br/>
+
- <a href='apps_webalizer.html'>
webalizer</a><br/>
+ - <a href='apps_wine.html'>
+ wine</a><br/>
+
</div>
<a href="kernel.html">+
kernel</a></br/>
<div id='subitem'>
- - <a href='kernel_bootloader.html'>
- bootloader</a><br/>
-
- <a href='kernel_corecommands.html'>
corecommands</a><br/>
@@ -151,6 +178,9 @@
- <a href='kernel_kernel.html'>
kernel</a><br/>
+ - <a href='kernel_mcs.html'>
+ mcs</a><br/>
+
- <a href='kernel_mls.html'>
mls</a><br/>
@@ -400,12 +430,12 @@
- <a href='services_uucp.html'>
uucp</a><br/>
- - <a href='services_xdm.html'>
- xdm</a><br/>
-
- <a href='services_xfs.html'>
xfs</a><br/>
+ - <a href='services_xserver.html'>
+ xserver</a><br/>
+
- <a href='services_zebra.html'>
zebra</a><br/>
@@ -1042,7 +1072,7 @@ apps</a><p/>
- userdomain_prefix
+ userdomain
@@ -1050,7 +1080,7 @@ apps</a><p/>
- domain
+ role
)<br>
@@ -1191,6 +1221,74 @@ The per user domain template for the lockdev module.
</div>
<div id="templatesmall">
+Module: <a href='services_lpd.html#link_lpd_per_userdomain_template'>
+lpd</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>lpd_per_userdomain_template</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ user_domain
+
+
+
+ ,
+
+
+
+ user_role
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+The per user domain template for the lpd module.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='services_lpd.html#link_lpr_admin_template'>
+lpd</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>lpr_admin_template</b>(
+
+
+
+
+ userdomain_prefix
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+The administrative functions template for the lpd module.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
Module: <a href='services_mailman.html#link_mailman_domain_template'>
mailman</a><p/>
Layer: <a href='services.html'>
@@ -1320,6 +1418,32 @@ The per user domain template for the mta module.
</div>
<div id="templatesmall">
+Module: <a href='admin_portage.html#link_portage_compile_domain_template'>
+portage</a><p/>
+Layer: <a href='admin.html'>
+admin</a><p/>
+<div id="codeblock">
+
+<b>portage_compile_domain_template</b>(
+
+
+
+
+ prefix
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Template for portage sandbox.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
Module: <a href='services_postfix.html#link_postfix_domain_template'>
postfix</a><p/>
Layer: <a href='services.html'>
@@ -1764,18 +1888,76 @@ The per user domain template for the sudo module.
</div>
<div id="templatesmall">
-Module: <a href='system_unconfined.html#link_unconfined_domain_template'>
-unconfined</a><p/>
-Layer: <a href='system.html'>
-system</a><p/>
+Module: <a href='apps_tvtime.html#link_tvtime_per_userdomain_template'>
+tvtime</a><p/>
+Layer: <a href='apps.html'>
+apps</a><p/>
<div id="codeblock">
-<b>unconfined_domain_template</b>(
+<b>tvtime_per_userdomain_template</b>(
- domain
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ user_domain
+
+
+
+ ,
+
+
+
+ user_role
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+The per user domain template for the tvtime module.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='apps_uml.html#link_uml_per_userdomain_template'>
+uml</a><p/>
+Layer: <a href='apps.html'>
+apps</a><p/>
+<div id="codeblock">
+
+<b>uml_per_userdomain_template</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ user_domain
+
+
+
+ ,
+
+
+
+ user_role
)<br>
@@ -1783,7 +1965,7 @@ system</a><p/>
<div id="description">
<p>
-A template to make the specified domain unconfined.
+The per user domain template for the uml module.
</p>
</div>
@@ -1816,13 +1998,13 @@ The template for creating a unprivileged user.
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_create_user_home'>
+Module: <a href='system_userdomain.html#link_userdom_create_user_pty'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_create_user_home</b>(
+<b>userdom_create_user_pty</b>(
@@ -1838,49 +2020,25 @@ system</a><p/>
domain
-
- ,
-
-
-
- [
-
- object_class
-
- ]
-
-
-
- ,
-
-
-
- [
-
- private_type
-
- ]
-
-
)<br>
</div>
<div id="description">
<p>
-
+Create a user pty.
</p>
</div>
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_create_user_pty'>
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_append_user_tmp_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_create_user_pty</b>(
+<b>userdom_dontaudit_append_user_tmp_files</b>(
@@ -1901,20 +2059,21 @@ system</a><p/>
<div id="description">
<p>
-Create a user pty.
+Do not audit attempts to append users
+temporary files.
</p>
</div>
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_exec_user_home_files'>
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_exec_user_home_content_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_exec_user_home_files</b>(
+<b>userdom_dontaudit_exec_user_home_content_files</b>(
@@ -1942,13 +2101,13 @@ Do not audit attempts to execute user home files.
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_list_user_home_dir'>
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_list_user_home_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_list_user_home_dir</b>(
+<b>userdom_dontaudit_list_user_home_dirs</b>(
@@ -2081,13 +2240,13 @@ untrusted directories.
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_read_user_home_files'>
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_read_user_home_content_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_read_user_home_files</b>(
+<b>userdom_dontaudit_read_user_home_content_files</b>(
@@ -2220,13 +2379,13 @@ untrusted files.
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_dontaudit_setattr_user_home_files'>
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_setattr_user_home_content_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_dontaudit_setattr_user_home_files</b>(
+<b>userdom_dontaudit_setattr_user_home_content_files</b>(
@@ -2290,13 +2449,47 @@ a user domain tty and pty.
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_exec_user_home_files'>
+Module: <a href='system_userdomain.html#link_userdom_dontaudit_write_user_home_content_files'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_dontaudit_write_user_home_content_files</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do not audit attempts to write user home files.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='system_userdomain.html#link_userdom_exec_user_home_content_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_exec_user_home_files</b>(
+<b>userdom_exec_user_home_content_files</b>(
@@ -2324,13 +2517,13 @@ Execute user home files.
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_home_file'>
+Module: <a href='system_userdomain.html#link_userdom_list_user_home_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_home_file</b>(
+<b>userdom_list_user_home_dirs</b>(
@@ -2343,7 +2536,7 @@ system</a><p/>
- type
+ domain
)<br>
@@ -2351,8 +2544,7 @@ system</a><p/>
<div id="description">
<p>
-Make the specified type usable in a
-user home directory.
+List user home directories.
</p>
</div>
@@ -2461,13 +2653,13 @@ List users untrusted directories.
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_user_home_subdir_files'>
+Module: <a href='system_userdomain.html#link_userdom_manage_user_home_content_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_user_home_subdir_files</b>(
+<b>userdom_manage_user_home_content_dirs</b>(
@@ -2488,7 +2680,7 @@ system</a><p/>
<div id="description">
<p>
-Create, read, write, and delete files
+Create, read, write, and delete directories
in a user home subdirectory.
</p>
</div>
@@ -2496,13 +2688,13 @@ in a user home subdirectory.
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_user_home_subdir_pipes'>
+Module: <a href='system_userdomain.html#link_userdom_manage_user_home_content_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_user_home_subdir_pipes</b>(
+<b>userdom_manage_user_home_content_files</b>(
@@ -2523,7 +2715,7 @@ system</a><p/>
<div id="description">
<p>
-Create, read, write, and delete named pipes
+Create, read, write, and delete files
in a user home subdirectory.
</p>
</div>
@@ -2531,13 +2723,13 @@ in a user home subdirectory.
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_user_home_subdir_sockets'>
+Module: <a href='system_userdomain.html#link_userdom_manage_user_home_content_pipes'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_user_home_subdir_sockets</b>(
+<b>userdom_manage_user_home_content_pipes</b>(
@@ -2558,7 +2750,7 @@ system</a><p/>
<div id="description">
<p>
-Create, read, write, and delete named sockets
+Create, read, write, and delete named pipes
in a user home subdirectory.
</p>
</div>
@@ -2566,13 +2758,13 @@ in a user home subdirectory.
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_user_home_subdir_symlinks'>
+Module: <a href='system_userdomain.html#link_userdom_manage_user_home_content_sockets'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_user_home_subdir_symlinks</b>(
+<b>userdom_manage_user_home_content_sockets</b>(
@@ -2593,7 +2785,7 @@ system</a><p/>
<div id="description">
<p>
-Create, read, write, and delete symbolic links
+Create, read, write, and delete named sockets
in a user home subdirectory.
</p>
</div>
@@ -2601,13 +2793,13 @@ in a user home subdirectory.
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_manage_user_home_subdirs'>
+Module: <a href='system_userdomain.html#link_userdom_manage_user_home_content_symlinks'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_manage_user_home_subdirs</b>(
+<b>userdom_manage_user_home_content_symlinks</b>(
@@ -2628,7 +2820,7 @@ system</a><p/>
<div id="description">
<p>
-Create, read, write, and delete directories
+Create, read, write, and delete symbolic links
in a user home subdirectory.
</p>
</div>
@@ -2811,13 +3003,13 @@ temporary symbolic links.
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_read_user_home_files'>
+Module: <a href='system_userdomain.html#link_userdom_read_user_home_content_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_read_user_home_files</b>(
+<b>userdom_read_user_home_content_files</b>(
@@ -2845,13 +3037,13 @@ Read user home files.
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_read_user_home_symlinks'>
+Module: <a href='system_userdomain.html#link_userdom_read_user_home_content_symlinks'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_read_user_home_symlinks</b>(
+<b>userdom_read_user_home_content_symlinks</b>(
@@ -3084,13 +3276,13 @@ Read user untrusted symbolic links.
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_search_user_home'>
+Module: <a href='system_userdomain.html#link_userdom_rw_user_tmp_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_search_user_home</b>(
+<b>userdom_rw_user_tmp_files</b>(
@@ -3111,20 +3303,20 @@ system</a><p/>
<div id="description">
<p>
-Search user home directories.
+Read and write user temporary files.
</p>
</div>
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_setattr_user_pty'>
+Module: <a href='system_userdomain.html#link_userdom_rw_user_tmpfs_files'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_setattr_user_pty</b>(
+<b>userdom_rw_user_tmpfs_files</b>(
@@ -3145,20 +3337,20 @@ system</a><p/>
<div id="description">
<p>
-Set the attributes of a user pty.
+Read user tmpfs files.
</p>
</div>
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_use_user_terminals'>
+Module: <a href='system_userdomain.html#link_userdom_search_user_home_dirs'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_use_user_terminals</b>(
+<b>userdom_search_user_home_dirs</b>(
@@ -3179,20 +3371,20 @@ system</a><p/>
<div id="description">
<p>
-Read and write a user domain tty and pty.
+Search user home directories.
</p>
</div>
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_user_home_domtrans'>
+Module: <a href='system_userdomain.html#link_userdom_setattr_user_ptys'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
<div id="codeblock">
-<b>userdom_user_home_domtrans</b>(
+<b>userdom_setattr_user_ptys</b>(
@@ -3205,15 +3397,7 @@ system</a><p/>
- source_domain
-
-
-
- ,
-
-
-
- target_domain
+ domain
)<br>
@@ -3221,16 +3405,291 @@ system</a><p/>
<div id="description">
<p>
-Do a domain transition to the specified
-domain when executing a program in the
-user home directory.
+Set the attributes of a user pty.
</p>
</div>
</div>
<div id="templatesmall">
-Module: <a href='system_userdomain.html#link_userdom_write_user_tmp_sockets'>
+Module: <a href='system_userdomain.html#link_userdom_setattr_user_ttys'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_setattr_user_ttys</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Set the attributes of a user domain tty.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='system_userdomain.html#link_userdom_use_user_terminals'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_use_user_terminals</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read and write a user domain tty and pty.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='system_userdomain.html#link_userdom_use_user_ttys'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_use_user_ttys</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Read and write a user domain tty.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='system_userdomain.html#link_userdom_user_home_content'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_user_home_content</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ type
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Make the specified type usable in a
+user home directory.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='system_userdomain.html#link_userdom_user_home_dir_filetrans'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_user_home_dir_filetrans</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ private_type
+
+
+
+ ,
+
+
+
+ object_class
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create objects in a user home directory
+with an automatic type transition to
+a specified private type.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='system_userdomain.html#link_userdom_user_home_dir_filetrans_user_home_content'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_user_home_dir_filetrans_user_home_content</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ object_class
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Create objects in a user home directory
+with an automatic type transition to
+the user home file type.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='system_userdomain.html#link_userdom_user_home_domtrans'>
+userdomain</a><p/>
+Layer: <a href='system.html'>
+system</a><p/>
+<div id="codeblock">
+
+<b>userdom_user_home_domtrans</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ source_domain
+
+
+
+ ,
+
+
+
+ target_domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Do a domain transition to the specified
+domain when executing a program in the
+user home directory.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='system_userdomain.html#link_userdom_write_user_tmp_sockets'>
userdomain</a><p/>
Layer: <a href='system.html'>
system</a><p/>
@@ -3263,6 +3722,284 @@ Write to user temporary named sockets.
</div>
+<div id="templatesmall">
+Module: <a href='apps_userhelper.html#link_userhelper_per_userdomain_template'>
+userhelper</a><p/>
+Layer: <a href='apps.html'>
+apps</a><p/>
+<div id="codeblock">
+
+<b>userhelper_per_userdomain_template</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ user_domain
+
+
+
+ ,
+
+
+
+ user_role
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+The per user domain template for the userhelper module.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='services_xserver.html#link_xserver_common_domain_template'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_common_domain_template</b>(
+
+
+
+
+ prefix
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Template to create types and rules common to
+all X server domains.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='services_xserver.html#link_xserver_domtrans_user_xauth'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_domtrans_user_xauth</b>(
+
+
+
+
+ userdomain_prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Transition to a user Xauthority domain.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='services_xserver.html#link_xserver_per_userdomain_template'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_per_userdomain_template</b>(
+
+
+
+
+ prefix
+
+
+
+ ,
+
+
+
+ user_domain
+
+
+
+ ,
+
+
+
+ user_role
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+The per user domain template for the xserver module.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='services_xserver.html#link_xserver_ro_session_template'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_ro_session_template</b>(
+
+
+
+
+ prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ tmpfs_type
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Template for creating sessions on a
+prefix X server, with read-only
+access to the X server shared
+memory segments.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='services_xserver.html#link_xserver_rw_session_template'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_rw_session_template</b>(
+
+
+
+
+ prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ tmpfs_type
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Template for creating sessions on a
+prefix X server, with read and write
+access to the X server shared
+memory segments.
+</p>
+</div>
+
+</div>
+
+<div id="templatesmall">
+Module: <a href='services_xserver.html#link_xserver_user_client_template'>
+xserver</a><p/>
+Layer: <a href='services.html'>
+services</a><p/>
+<div id="codeblock">
+
+<b>xserver_user_client_template</b>(
+
+
+
+
+ prefix
+
+
+
+ ,
+
+
+
+ domain
+
+
+
+ ,
+
+
+
+ tmpfs_type
+
+
+ )<br>
+</div>
+
+<div id="description">
+<p>
+Template for creating full client sessions
+on a user X server.
+</p>
+</div>
+
+</div>
+
</div>
</body>