diff --git a/www/api-docs/admin.html b/www/api-docs/admin.html index b2feaf8..265235a 100644 --- a/www/api-docs/admin.html +++ b/www/api-docs/admin.html @@ -13,9 +13,18 @@ admin
+    -  + consoletype
+    -  dmesg
+    -  + logrotate
+ +    -  + netutils
+    -  rpm
@@ -24,6 +33,12 @@
+ +  + apps
+
+ +
+ +  kernel
@@ -44,6 +59,8 @@

* Interface Index +

+ * Template Index

@@ -55,11 +72,28 @@ + + consoletype +

+Determine of the console connected to the controlling terminal. +

+ + dmesg

Policy for dmesg.

+ + logrotate +

Rotate and archive system logs

+ + + + netutils +

Network analysis utilities

+ + rpm

Policy for the RPM package manager.

@@ -80,6 +114,9 @@ + + +



diff --git a/www/api-docs/admin_consoletype.html b/www/api-docs/admin_consoletype.html new file mode 100644 index 0000000..37a4b2d --- /dev/null +++ b/www/api-docs/admin_consoletype.html @@ -0,0 +1,172 @@ + + + + Security Enhanced Linux Reference Policy + + + + +

+ + +
+ +

Layer: admin

+

Module: consoletype

+ + + +

Description:

+ +

+Determine of the console connected to the controlling terminal. +

+ + + +

Interfaces:

+ +
+ + +
+ +consoletype_domtrans( + + + + + domain + + + )
+
+
+ + +
Description
+

+Execute consoletype in the consoletype domain. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +consoletype_exec( + + + + + domain + + + )
+
+
+ + +
Description
+

+Execute consoletype in the caller domain. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ + +Return + + + +
+ + diff --git a/www/api-docs/admin_dmesg.html b/www/api-docs/admin_dmesg.html index 73b8b72..0d4fb90 100644 --- a/www/api-docs/admin_dmesg.html +++ b/www/api-docs/admin_dmesg.html @@ -13,9 +13,18 @@ admin
+    -  + consoletype
+    -  dmesg
+    -  + logrotate
+ +    -  + netutils
+    -  rpm
@@ -24,6 +33,12 @@
+ +  + apps
+
+ +
+ +  kernel
@@ -44,15 +59,23 @@

* Interface Index +

+ * Template Index

+

Layer: admin

Module: dmesg

+ + +

Description:

Policy for dmesg.

+ +

Interfaces:

@@ -75,7 +98,7 @@
Description

- Execute dmesg in the dmesg domain. +Execute dmesg in the dmesg domain.

Parameters
@@ -86,7 +109,7 @@ domain - The type of the process performing this action. +The type of the process performing this action. No @@ -116,7 +139,7 @@ No
Description

- Execute dmesg in the caller domain. +Execute dmesg in the caller domain.

Parameters
@@ -127,7 +150,7 @@ No domain - The type of the process performing this action. +The type of the process performing this action. No @@ -138,6 +161,9 @@ No
+Return + +
diff --git a/www/api-docs/admin_logrotate.html b/www/api-docs/admin_logrotate.html new file mode 100644 index 0000000..d05e732 --- /dev/null +++ b/www/api-docs/admin_logrotate.html @@ -0,0 +1,289 @@ + + + + Security Enhanced Linux Reference Policy + + + + + + + +
+ +

Layer: admin

+

Module: logrotate

+ + + +

Description:

+ +

Rotate and archive system logs

+ + + +

Interfaces:

+ +
+ + +
+ +logrotate_domtrans( + + + + + domain + + + )
+
+
+ +
Summary
+

+Execute logrotate in the logrotate domain. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +logrotate_dontaudit_use_fd( + + + + + domain + + + )
+
+
+ +
Summary
+

+Do not audit attempts to inherit logrotate file descriptors. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process to not audit. + + +No +
+
+
+ +
+ + +
+ +logrotate_exec( + + + + + domain + + + )
+
+
+ +
Summary
+

+Execute logrotate in the caller domain. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +logrotate_run( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+
+ +
Summary
+

+Execute logrotate in the logrotate domain, and +allow the specified role the logrotate domain. +

+ + +
Parameters
+ + + + + + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+role + + +The role to be allowed the logrotate domain. + + +No +
+terminal + + +The type of the terminal allow the logrotate domain to use. + + +No +
+
+
+ + +Return + + + +
+ + diff --git a/www/api-docs/admin_netutils.html b/www/api-docs/admin_netutils.html new file mode 100644 index 0000000..7beb0fd --- /dev/null +++ b/www/api-docs/admin_netutils.html @@ -0,0 +1,568 @@ + + + + Security Enhanced Linux Reference Policy + + + + + + + +
+ +

Layer: admin

+

Module: netutils

+ + + +

Description:

+ +

Network analysis utilities

+ + + +

Interfaces:

+ +
+ + +
+ +netutils_domtrans( + + + + + domain + + + )
+
+
+ +
Summary
+

+Execute network utilities in the netutils domain. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +netutils_domtrans_ping( + + + + + domain + + + )
+
+
+ +
Summary
+

+Execute ping in the ping domain. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +netutils_domtrans_traceroute( + + + + + domain + + + )
+
+
+ +
Summary
+

+Execute traceroute in the traceroute domain. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +netutils_exec( + + + + + domain + + + )
+
+
+ +
Summary
+

+Execute network utilities in the caller domain. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +netutils_exec_ping( + + + + + domain + + + )
+
+
+ +
Summary
+

+Execute ping in the caller domain. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +netutils_exec_traceroute( + + + + + domain + + + )
+
+
+ +
Summary
+

+Execute traceroute in the caller domain. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +netutils_run( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+
+ +
Summary
+

+Execute network utilities in the netutils domain, and +allow the specified role the netutils domain. +

+ + +
Parameters
+ + + + + + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+role + + +The role to be allowed the netutils domain. + + +No +
+terminal + + +The type of the terminal allow the netutils domain to use. + + +No +
+
+
+ +
+ + +
+ +netutils_run_ping( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+
+ +
Summary
+

+Execute ping in the ping domain, and +allow the specified role the ping domain. +

+ + +
Parameters
+ + + + + + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+role + + +The role to be allowed the ping domain. + + +No +
+terminal + + +The type of the terminal allow the ping domain to use. + + +No +
+
+
+ +
+ + +
+ +netutils_run_traceroute( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+
+ +
Summary
+

+Execute traceroute in the traceroute domain, and +allow the specified role the traceroute domain. +

+ + +
Parameters
+ + + + + + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+role + + +The role to be allowed the traceroute domain. + + +No +
+terminal + + +The type of the terminal allow the traceroute domain to use. + + +No +
+
+
+ + +Return + + + +
+ + diff --git a/www/api-docs/admin_rpm.html b/www/api-docs/admin_rpm.html index 4abe612..ed15c7c 100644 --- a/www/api-docs/admin_rpm.html +++ b/www/api-docs/admin_rpm.html @@ -13,9 +13,18 @@ admin
+    -  + consoletype
+    -  dmesg
+    -  + logrotate
+ +    -  + netutils
+    -  rpm
@@ -24,6 +33,12 @@
+ +  + apps
+
+ +
+ +  kernel
@@ -44,15 +59,23 @@

* Interface Index +

+ * Template Index

+

Layer: admin

Module: rpm

+ + +

Description:

Policy for the RPM package manager.

+ +

Interfaces:

@@ -72,12 +95,53 @@
+
Summary
+

+Execute rpm programs in the rpm domain. +

+ -
Description
+
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +rpm_manage_db( + + + + + domain + + + )
+
+
+ +
Summary

- Execute rpm programs in the rpm domain. +Create, read, write, and delete the RPM package database.

+
Parameters
@@ -86,7 +150,7 @@ domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -113,12 +177,12 @@ No
- -
Description
+
Summary

- Read RPM package database. +Read the RPM package database.

+
Parameters
@@ -127,7 +191,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -154,12 +218,12 @@ No
- -
Description
+
Summary

- Read from a RPM pipe. +Read from a RPM pipe.

+
Parameters
@@ -168,7 +232,7 @@ No domain + + + @@ -98,7 +109,7 @@ Device nodes and interfaces for many basic system devices. kernel diff --git a/www/api-docs/kernel_bootloader.html b/www/api-docs/kernel_bootloader.html index dc9c9d5..f85589c 100644 --- a/www/api-docs/kernel_bootloader.html +++ b/www/api-docs/kernel_bootloader.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -59,15 +65,23 @@

* Interface Index +

+ * Template Index

+

Layer: kernel

Module: bootloader

+ + +

Description:

Policy for the kernel modules, kernel image, and bootloader.

+ +

Interfaces:

@@ -90,7 +104,7 @@
Description

- Install a kernel into the /boot directory. +Install a kernel into the /boot directory.

Parameters
@@ -101,7 +115,7 @@ domain
+ +
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -211,12 +275,12 @@ No
- -
Description
+
Summary

- Execute RPM programs in the RPM domain. +Execute RPM programs in the RPM domain.

+
Parameters
@@ -225,7 +289,7 @@ No domain + + + @@ -214,7 +275,7 @@ Device nodes and interfaces for many basic system devices. kernel @@ -246,7 +307,7 @@ Policy for kernel security interface, in particular, selinuxfs.
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -235,7 +299,7 @@ No role - The role to allow the RPM domain. +The role to allow the RPM domain. No @@ -245,7 +309,7 @@ No terminal - The type of the terminal allow the RPM domain to use. +The type of the terminal allow the RPM domain to use. No @@ -272,12 +336,12 @@ No
- -
Description
+
Summary

- Inherit and use file descriptors from RPM. +Inherit and use file descriptors from RPM.

+
Parameters
@@ -286,7 +350,7 @@ No domain + +
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -297,6 +361,9 @@ No +Return + + diff --git a/www/api-docs/admin_usermanage.html b/www/api-docs/admin_usermanage.html index dde0c32..6453b11 100644 --- a/www/api-docs/admin_usermanage.html +++ b/www/api-docs/admin_usermanage.html @@ -13,9 +13,18 @@ admin
+    -  + consoletype
+    -  dmesg
+    -  + logrotate
+ +    -  + netutils
+    -  rpm
@@ -24,6 +33,12 @@
+ +  + apps
+
+ +
+ +  kernel
@@ -44,15 +59,23 @@

* Interface Index +

+ * Template Index

+

Layer: admin

Module: usermanage

+ + +

Description:

Policy for managing user accounts.

+ +

Interfaces:

@@ -75,7 +98,7 @@
Description

- Execute chfn in the chfn domain. +Execute chfn in the chfn domain.

Parameters
@@ -86,7 +109,7 @@ domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -116,7 +139,7 @@ No
Description

- Execute groupadd in the groupadd domain. +Execute groupadd in the groupadd domain.

Parameters
@@ -127,7 +150,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -157,7 +180,7 @@ No
Description

- Execute passwd in the passwd domain. +Execute passwd in the passwd domain.

Parameters
@@ -168,7 +191,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -198,7 +221,7 @@ No
Description

- Execute useradd in the useradd domain. +Execute useradd in the useradd domain.

Parameters
@@ -209,7 +232,48 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. + + +No +
+
+ + +
+ + +
+ +usermanage_read_crack_db( + + + + + domain + + + )
+
+
+ +
Summary
+

+Read the crack database. +

+ + +
Parameters
+ + + + + + + + + + + + + @@ -176,6 +231,9 @@ + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. No @@ -255,8 +319,8 @@ No
Description

- Execute chfn in the chfn domain, and - allow the specified role the chfn domain. +Execute chfn in the chfn domain, and +allow the specified role the chfn domain.

Parameters
@@ -267,7 +331,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -277,7 +341,7 @@ No role - The role to be allowed the chfn domain. +The role to be allowed the chfn domain. No @@ -287,7 +351,7 @@ No terminal - The type of the terminal allow the chfn domain to use. +The type of the terminal allow the chfn domain to use. No @@ -333,8 +397,8 @@ No
Description

- Execute groupadd in the groupadd domain, and - allow the specified role the groupadd domain. +Execute groupadd in the groupadd domain, and +allow the specified role the groupadd domain.

Parameters
@@ -345,7 +409,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -355,7 +419,7 @@ No role - The role to be allowed the groupadd domain. +The role to be allowed the groupadd domain. No @@ -365,7 +429,7 @@ No terminal - The type of the terminal allow the groupadd domain to use. +The type of the terminal allow the groupadd domain to use. No @@ -411,8 +475,8 @@ No
Description

- Execute passwd in the passwd domain, and - allow the specified role the passwd domain. +Execute passwd in the passwd domain, and +allow the specified role the passwd domain.

Parameters
@@ -423,7 +487,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -433,7 +497,7 @@ No role - The role to be allowed the passwd domain. +The role to be allowed the passwd domain. No @@ -443,7 +507,7 @@ No terminal - The type of the terminal allow the passwd domain to use. +The type of the terminal allow the passwd domain to use. No @@ -489,8 +553,8 @@ No
Description

- Execute useradd in the useradd domain, and - allow the specified role the useradd domain. +Execute useradd in the useradd domain, and +allow the specified role the useradd domain.

Parameters
@@ -501,7 +565,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -511,7 +575,7 @@ No role - The role to be allowed the useradd domain. +The role to be allowed the useradd domain. No @@ -521,7 +585,7 @@ No terminal - The type of the terminal allow the useradd domain to use. +The type of the terminal allow the useradd domain to use. No @@ -532,6 +596,9 @@ No +Return + + diff --git a/www/api-docs/apps.html b/www/api-docs/apps.html new file mode 100644 index 0000000..85af566 --- /dev/null +++ b/www/api-docs/apps.html @@ -0,0 +1,83 @@ + + + + Security Enhanced Linux Reference Policy + + + + + + + +
+ +

Layer: apps

+ + + + + + + + + + + + + + + + + + + + + + +
Module:Description:
+ + gpg

Policy for GNU Privacy Guard and related programs.

+



+ +

+ + diff --git a/www/api-docs/apps_gpg.html b/www/api-docs/apps_gpg.html new file mode 100644 index 0000000..c354b75 --- /dev/null +++ b/www/api-docs/apps_gpg.html @@ -0,0 +1,128 @@ + + + + Security Enhanced Linux Reference Policy + + + + + + + +
+ +

Layer: apps

+

Module: gpg

+ +

Description:

+ +

Policy for GNU Privacy Guard and related programs.

+ + + + +

Templates:

+ +
+ + +
+ +gpg_per_userdomain_template( + + + + + userdomain_prefix + + + )
+
+
+ +
Summary
+

+The per user domain template for the gpg module. +

+ + +
Description
+

+

+This template creates the types and rules for GPG, +GPG-agent, and GPG helper programs. This protects +the user keys and secrets, and runs the programs +in domains specific to the user type. +

+

+This is invoked automatically for each user and +generally does not need to be invoked directly +by policy writers. +

+

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+userdomain_prefix + + +The prefix of the user domain (e.g., user +is the prefix for user_t). + + +No +
+
+
+ + +Return + + +
+ + diff --git a/www/api-docs/index.html b/www/api-docs/index.html index b7d6703..60256bc 100644 --- a/www/api-docs/index.html +++ b/www/api-docs/index.html @@ -13,9 +13,18 @@ admin
+    -  + consoletype
+    -  dmesg
+    -  + logrotate
+ +    -  + netutils
+    -  rpm
@@ -24,6 +33,15 @@
+ +  + apps
+
+ +    -  + gpg
+ +
+ +  kernel
@@ -58,15 +76,30 @@ services
+    -  + cron
+ +    -  + inetd
+ +    -  + kerberos
+    -  mta
+    -  + nis
+    -  remotelogin
   -  sendmail
+    -  + ssh
+
+  @@ -88,6 +121,9 @@    -  files
+    -  + fstools
+    -  getty
@@ -140,6 +176,8 @@

* Interface Index +

+ * Template Index

@@ -151,11 +189,28 @@
+ + consoletype

+Determine of the console connected to the controlling terminal. +

dmesg

Policy for dmesg.

+ + logrotate

Rotate and archive system logs

+ + netutils

Network analysis utilities

rpm

Policy for the RPM package manager.



@@ -188,6 +246,9 @@

bootloader

-Policy for kernel threads, proc filesystem, +Policy for kernel threads, proc filesystem, and unlabeled processes and objects.



-

Layer: services

+

Layer: apps

@@ -255,23 +316,16 @@ Policy for kernel security interface, in particular, selinuxfs. - - - - + + gpg + - - + + - - + + @@ -296,6 +350,9 @@ Policy for kernel security interface, in particular, selinuxfs. + + + @@ -327,6 +384,11 @@ Basic filesystem types and interfaces.

+ + + @@ -414,6 +476,69 @@ connection and disconnection of devices at runtime.
Module:Description:
- - mta

Policy common to all email tranfer agents.

Policy for GNU Privacy Guard and related programs.

- - remotelogin

Policy for rshd, rlogind, and telnetd.

- - sendmail

Policy for sendmail.

authlogin
+ + fstools

Tools for filesystem management, such as mkfs and fsck.

getty

Policy for getty.



+

Layer: services

+ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
Module:Description:
+ + cron

Periodic execution of scheduled commands.

+ + inetd

Internet services daemon.

+ + kerberos

MIT Kerberos admin and KDC

+ + mta

Policy common to all email tranfer agents.

+ + nis

Policy for NIS (YP) servers and clients

+ + remotelogin

Policy for rshd, rlogind, and telnetd.

+ + sendmail

Policy for sendmail.

+ + ssh

Secure shell client and server policy.

+



+

diff --git a/www/api-docs/interfaces.html b/www/api-docs/interfaces.html index 4edbaa1..aee2de3 100644 --- a/www/api-docs/interfaces.html +++ b/www/api-docs/interfaces.html @@ -13,9 +13,18 @@ admin
+    -  + consoletype
+    -  dmesg
+    -  + logrotate
+ +    -  + netutils
+    -  rpm
@@ -24,6 +33,15 @@
+ +  + apps
+
+ +    -  + gpg
+ +
+ +  kernel
@@ -58,15 +76,30 @@ services
+    -  + cron
+ +    -  + inetd
+ +    -  + kerberos
+    -  mta
+    -  + nis
+    -  remotelogin
   -  sendmail
+    -  + ssh
+
+  @@ -88,6 +121,9 @@    -  files
+    -  + fstools
+    -  getty
@@ -140,6 +176,8 @@

* Interface Index +

+ * Template Index

@@ -241,6 +279,32 @@ Layer: system

+auth_domtrans_pam_console( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +authlogin

+Layer: +system

+

+ auth_domtrans_utempter( @@ -306,12 +370,18 @@ system

- domain + ? )

+
+

+Summary is missing! +

+
+
@@ -346,12 +416,18 @@ system

- domain + ? )

+
+

+Summary is missing! +

+
+
@@ -413,17 +489,153 @@ Layer: system

+auth_manage_login_records( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +authlogin

+Layer: +system

+

+ +auth_manage_pam_console_data( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +authlogin

+Layer: +system

+

+ +auth_manage_shadow( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +authlogin

+Layer: +system

+

+ auth_read_login_records( - domain + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +authlogin

+Layer: +system

+

+ +auth_read_pam_console_data( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +authlogin

+Layer: +system

+

+ +auth_read_pam_pid( + + + + + ? )
+
+

+Summary is missing! +

+
+
@@ -485,6 +697,32 @@ Layer: system

+auth_relabelto_shadow( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +authlogin

+Layer: +system

+

+ auth_run_pam( @@ -557,17 +795,23 @@ Layer: system

-auth_rw_shadow( +auth_rw_faillog( - domain + ? )
+
+

+Summary is missing! +

+
+
@@ -577,47 +821,59 @@ Layer: system

-authlogin_per_userdomain_template( +auth_rw_lastlog( - userdomain_prefix + ? )
+
+

+Summary is missing! +

+
+
-Module: -bootloader

-Layer: -kernel

+Module: +authlogin

+Layer: +system

-bootloader_create_kernel( +auth_rw_login_records( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -bootloader

-Layer: -kernel

+Module: +authlogin

+Layer: +system

-bootloader_create_kernel_symbol_table( +auth_rw_shadow( @@ -637,7 +893,7 @@ Layer: kernel

-bootloader_create_runtime_file( +bootloader_create_kernel( @@ -657,7 +913,7 @@ Layer: kernel

-bootloader_delete_kernel( +bootloader_create_kernel_symbol_table( @@ -677,17 +933,23 @@ Layer: kernel

-bootloader_delete_kernel_symbol_table( +bootloader_create_modules( - domain + ? )
+
+

+Summary is missing! +

+
+
@@ -697,7 +959,7 @@ Layer: kernel

-bootloader_domtrans( +bootloader_create_runtime_file( @@ -717,7 +979,7 @@ Layer: kernel

-bootloader_dontaudit_search_boot( +bootloader_delete_kernel( @@ -737,7 +999,7 @@ Layer: kernel

-bootloader_list_kernel_modules( +bootloader_delete_kernel_symbol_table( @@ -757,7 +1019,7 @@ Layer: kernel

-bootloader_manage_kernel_modules( +bootloader_domtrans( @@ -777,7 +1039,7 @@ Layer: kernel

-bootloader_read_config( +bootloader_dontaudit_search_boot( @@ -797,7 +1059,7 @@ Layer: kernel

-bootloader_read_kernel_modules( +bootloader_list_kernel_modules( @@ -817,7 +1079,67 @@ Layer: kernel

-bootloader_read_kernel_symbol_table( +bootloader_manage_kernel_modules( + + + + + domain + + + )
+
+ +
+ +
+Module: +bootloader

+Layer: +kernel

+

+ +bootloader_read_config( + + + + + domain + + + )
+
+ +
+ +
+Module: +bootloader

+Layer: +kernel

+

+ +bootloader_read_kernel_modules( + + + + + domain + + + )
+
+ +
+ +
+Module: +bootloader

+Layer: +kernel

+

+ +bootloader_read_kernel_symbol_table( @@ -933,7 +1255,7 @@ Layer: kernel

-bootloader_search_boot_dir( +bootloader_search_boot( @@ -1063,13 +1385,13 @@ system

-Module: -corecommands

-Layer: -system

+Module: +consoletype

+Layer: +admin

-corecmd_domtrans_shell( +consoletype_domtrans( @@ -1077,17 +1399,55 @@ system

domain + )
+

+ +
+ +
+Module: +consoletype

+Layer: +admin

+

+ +consoletype_exec( + + - , + domain + + )
+
+ +
+ +
+Module: +corecommands

+Layer: +system

+

+ +corecmd_chroot_exec_chroot( + - target_domain + + + ? )
+
+

+Summary is missing! +

+
+
@@ -1097,7 +1457,7 @@ Layer: system

-corecmd_shell_spec_domtrans( +corecmd_domtrans_shell( @@ -1119,113 +1479,143 @@ system

-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_compat_ipv4_node( +corecmd_dontaudit_getattr_sbin_file( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_eth0( +corecmd_exec_bin( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_eth1( +corecmd_exec_ls( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_eth2( +corecmd_exec_sbin( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_inaddr_any_node( +corecmd_exec_shell( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_ippp0( +corecmd_getattr_bin_file( @@ -1236,76 +1626,100 @@ kernel

)

+
+

+Get the attributes of files in bin directories. +

+
+
-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_ipsec0( +corecmd_getattr_sbin_file( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_ipsec1( +corecmd_list_bin( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_ipsec2( +corecmd_list_sbin( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_link_local_node( +corecmd_read_bin_symlink( @@ -1316,16 +1730,22 @@ kernel

)

+
+

+Read symbolic links in bin directories. +

+
+
-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_lo( +corecmd_read_sbin_symlink( @@ -1336,56 +1756,74 @@ kernel

)

+
+

+Read symbolic links in sbin directories. +

+
+
-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_lo_node( +corecmd_search_bin( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_mapped_ipv4_node( +corecmd_search_sbin( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_multicast_node( +corecmd_shell_entry_type( @@ -1396,16 +1834,22 @@ kernel

)

+
+

+Make the shell an entrypoint for the specified domain. +

+
+
-Module: -corenetwork

-Layer: -kernel

+Module: +corecommands

+Layer: +system

-corenet_raw_receive_site_local_node( +corecmd_shell_spec_domtrans( @@ -1413,6 +1857,14 @@ kernel

domain + + , + + + + target_domain + + )

@@ -1425,7 +1877,7 @@ Layer: kernel

-corenet_raw_receive_unspec_node( +corenet_dontaudit_tcp_bind_all_reserved_ports( @@ -1436,6 +1888,12 @@ kernel

)

+
+

+Do not audit attempts to bind TCP sockets to all reserved ports. +

+
+
@@ -1445,7 +1903,7 @@ Layer: kernel

-corenet_raw_send_compat_ipv4_node( +corenet_dontaudit_udp_bind_all_reserved_ports( @@ -1456,6 +1914,12 @@ kernel

)

+
+

+Do not audit attempts to bind UDP sockets to all reserved ports. +

+
+
@@ -1465,7 +1929,7 @@ Layer: kernel

-corenet_raw_send_eth0( +corenet_raw_receive_all_if( @@ -1476,6 +1940,12 @@ kernel

)

+
+

+Receive raw IP packets on all interfaces. +

+
+
@@ -1485,7 +1955,7 @@ Layer: kernel

-corenet_raw_send_eth1( +corenet_raw_receive_all_nodes( @@ -1496,6 +1966,12 @@ kernel

)

+
+

+Receive raw IP packets on all nodes. +

+
+
@@ -1505,7 +1981,7 @@ Layer: kernel

-corenet_raw_send_eth2( +corenet_raw_receive_compat_ipv4_node( @@ -1525,7 +2001,7 @@ Layer: kernel

-corenet_raw_send_inaddr_any_node( +corenet_raw_receive_eth0( @@ -1545,7 +2021,7 @@ Layer: kernel

-corenet_raw_send_ippp0( +corenet_raw_receive_eth1( @@ -1565,7 +2041,7 @@ Layer: kernel

-corenet_raw_send_ipsec0( +corenet_raw_receive_eth2( @@ -1585,7 +2061,7 @@ Layer: kernel

-corenet_raw_send_ipsec1( +corenet_raw_receive_generic_if( @@ -1596,6 +2072,12 @@ kernel

)

+
+

+Receive raw IP packets on generic interfaces. +

+
+
@@ -1605,7 +2087,7 @@ Layer: kernel

-corenet_raw_send_ipsec2( +corenet_raw_receive_generic_node( @@ -1616,6 +2098,12 @@ kernel

)

+
+

+Receive raw IP packets on generic nodes. +

+
+
@@ -1625,7 +2113,7 @@ Layer: kernel

-corenet_raw_send_link_local_node( +corenet_raw_receive_inaddr_any_node( @@ -1645,7 +2133,7 @@ Layer: kernel

-corenet_raw_send_lo( +corenet_raw_receive_ippp0( @@ -1665,7 +2153,7 @@ Layer: kernel

-corenet_raw_send_lo_node( +corenet_raw_receive_ipsec0( @@ -1685,7 +2173,7 @@ Layer: kernel

-corenet_raw_send_mapped_ipv4_node( +corenet_raw_receive_ipsec1( @@ -1705,7 +2193,7 @@ Layer: kernel

-corenet_raw_send_multicast_node( +corenet_raw_receive_ipsec2( @@ -1725,7 +2213,7 @@ Layer: kernel

-corenet_raw_send_site_local_node( +corenet_raw_receive_link_local_node( @@ -1745,7 +2233,7 @@ Layer: kernel

-corenet_raw_send_unspec_node( +corenet_raw_receive_lo( @@ -1765,7 +2253,7 @@ Layer: kernel

-corenet_raw_sendrecv_compat_ipv4_node( +corenet_raw_receive_lo_node( @@ -1785,7 +2273,7 @@ Layer: kernel

-corenet_raw_sendrecv_eth0( +corenet_raw_receive_mapped_ipv4_node( @@ -1805,7 +2293,7 @@ Layer: kernel

-corenet_raw_sendrecv_eth1( +corenet_raw_receive_multicast_node( @@ -1825,7 +2313,7 @@ Layer: kernel

-corenet_raw_sendrecv_eth2( +corenet_raw_receive_site_local_node( @@ -1845,7 +2333,7 @@ Layer: kernel

-corenet_raw_sendrecv_inaddr_any_node( +corenet_raw_receive_unspec_node( @@ -1865,7 +2353,7 @@ Layer: kernel

-corenet_raw_sendrecv_ippp0( +corenet_raw_send_all_if( @@ -1876,6 +2364,12 @@ kernel

)

+
+

+Send raw IP packets on all interfaces. +

+
+
@@ -1885,7 +2379,7 @@ Layer: kernel

-corenet_raw_sendrecv_ipsec0( +corenet_raw_send_all_nodes( @@ -1896,6 +2390,12 @@ kernel

)

+
+

+Send raw IP packets on all nodes. +

+
+
@@ -1905,7 +2405,7 @@ Layer: kernel

-corenet_raw_sendrecv_ipsec1( +corenet_raw_send_compat_ipv4_node( @@ -1925,7 +2425,7 @@ Layer: kernel

-corenet_raw_sendrecv_ipsec2( +corenet_raw_send_eth0( @@ -1945,7 +2445,7 @@ Layer: kernel

-corenet_raw_sendrecv_link_local_node( +corenet_raw_send_eth1( @@ -1965,7 +2465,7 @@ Layer: kernel

-corenet_raw_sendrecv_lo( +corenet_raw_send_eth2( @@ -1985,7 +2485,7 @@ Layer: kernel

-corenet_raw_sendrecv_lo_node( +corenet_raw_send_generic_if( @@ -1996,6 +2496,12 @@ kernel

)

+
+

+Send raw IP packets on generic interfaces. +

+
+
@@ -2005,7 +2511,7 @@ Layer: kernel

-corenet_raw_sendrecv_mapped_ipv4_node( +corenet_raw_send_generic_node( @@ -2016,6 +2522,12 @@ kernel

)

+
+

+Send raw IP packets on generic nodes. +

+
+
@@ -2025,7 +2537,7 @@ Layer: kernel

-corenet_raw_sendrecv_multicast_node( +corenet_raw_send_inaddr_any_node( @@ -2045,7 +2557,7 @@ Layer: kernel

-corenet_raw_sendrecv_site_local_node( +corenet_raw_send_ippp0( @@ -2065,7 +2577,7 @@ Layer: kernel

-corenet_raw_sendrecv_unspec_node( +corenet_raw_send_ipsec0( @@ -2085,7 +2597,7 @@ Layer: kernel

-corenet_tcp_bind_amanda_port( +corenet_raw_send_ipsec1( @@ -2105,7 +2617,7 @@ Layer: kernel

-corenet_tcp_bind_compat_ipv4_node( +corenet_raw_send_ipsec2( @@ -2125,7 +2637,7 @@ Layer: kernel

-corenet_tcp_bind_dbskkd_port( +corenet_raw_send_link_local_node( @@ -2145,7 +2657,7 @@ Layer: kernel

-corenet_tcp_bind_dhcpc_port( +corenet_raw_send_lo( @@ -2165,7 +2677,7 @@ Layer: kernel

-corenet_tcp_bind_dhcpd_port( +corenet_raw_send_lo_node( @@ -2185,7 +2697,7 @@ Layer: kernel

-corenet_tcp_bind_dict_port( +corenet_raw_send_mapped_ipv4_node( @@ -2205,7 +2717,7 @@ Layer: kernel

-corenet_tcp_bind_dns_port( +corenet_raw_send_multicast_node( @@ -2225,7 +2737,7 @@ Layer: kernel

-corenet_tcp_bind_fingerd_port( +corenet_raw_send_site_local_node( @@ -2245,7 +2757,7 @@ Layer: kernel

-corenet_tcp_bind_ftp_data_port( +corenet_raw_send_unspec_node( @@ -2265,7 +2777,7 @@ Layer: kernel

-corenet_tcp_bind_ftp_port( +corenet_raw_sendrecv_all_if( @@ -2276,6 +2788,12 @@ kernel

)

+
+

+Send and receive raw IP packets on all interfaces. +

+
+
@@ -2285,7 +2803,7 @@ Layer: kernel

-corenet_tcp_bind_howl_port( +corenet_raw_sendrecv_all_nodes( @@ -2296,6 +2814,12 @@ kernel

)

+
+

+Send and receive raw IP packets on all nodes. +

+
+
@@ -2305,7 +2829,7 @@ Layer: kernel

-corenet_tcp_bind_http_cache_port( +corenet_raw_sendrecv_compat_ipv4_node( @@ -2325,7 +2849,7 @@ Layer: kernel

-corenet_tcp_bind_http_port( +corenet_raw_sendrecv_eth0( @@ -2345,7 +2869,7 @@ Layer: kernel

-corenet_tcp_bind_inaddr_any_node( +corenet_raw_sendrecv_eth1( @@ -2365,7 +2889,7 @@ Layer: kernel

-corenet_tcp_bind_inetd_child_port( +corenet_raw_sendrecv_eth2( @@ -2385,7 +2909,7 @@ Layer: kernel

-corenet_tcp_bind_innd_port( +corenet_raw_sendrecv_generic_if( @@ -2396,6 +2920,12 @@ kernel

)

+
+

+Send and receive raw IP packets on generic interfaces. +

+
+
@@ -2405,7 +2935,7 @@ Layer: kernel

-corenet_tcp_bind_ipp_port( +corenet_raw_sendrecv_generic_node( @@ -2416,6 +2946,12 @@ kernel

)

+
+

+Send and receive raw IP packets on generic nodes. +

+
+
@@ -2425,7 +2961,7 @@ Layer: kernel

-corenet_tcp_bind_kerberos_admin_port( +corenet_raw_sendrecv_inaddr_any_node( @@ -2445,7 +2981,7 @@ Layer: kernel

-corenet_tcp_bind_kerberos_master_port( +corenet_raw_sendrecv_ippp0( @@ -2465,7 +3001,7 @@ Layer: kernel

-corenet_tcp_bind_kerberos_port( +corenet_raw_sendrecv_ipsec0( @@ -2485,7 +3021,7 @@ Layer: kernel

-corenet_tcp_bind_ktalkd_port( +corenet_raw_sendrecv_ipsec1( @@ -2505,7 +3041,7 @@ Layer: kernel

-corenet_tcp_bind_ldap_port( +corenet_raw_sendrecv_ipsec2( @@ -2525,7 +3061,7 @@ Layer: kernel

-corenet_tcp_bind_link_local_node( +corenet_raw_sendrecv_link_local_node( @@ -2545,7 +3081,7 @@ Layer: kernel

-corenet_tcp_bind_lo_node( +corenet_raw_sendrecv_lo( @@ -2565,7 +3101,7 @@ Layer: kernel

-corenet_tcp_bind_mail_port( +corenet_raw_sendrecv_lo_node( @@ -2585,7 +3121,7 @@ Layer: kernel

-corenet_tcp_bind_mapped_ipv4_node( +corenet_raw_sendrecv_mapped_ipv4_node( @@ -2605,7 +3141,7 @@ Layer: kernel

-corenet_tcp_bind_multicast_node( +corenet_raw_sendrecv_multicast_node( @@ -2625,7 +3161,7 @@ Layer: kernel

-corenet_tcp_bind_mysqld_port( +corenet_raw_sendrecv_site_local_node( @@ -2645,7 +3181,7 @@ Layer: kernel

-corenet_tcp_bind_nmbd_port( +corenet_raw_sendrecv_unspec_node( @@ -2665,7 +3201,7 @@ Layer: kernel

-corenet_tcp_bind_pop_port( +corenet_tcp_bind_all_nodes( @@ -2676,8 +3212,14 @@ kernel

)

-
- +
+

+Bind TCP sockets to all nodes. +

+
+ +
+
Module: corenetwork

@@ -2685,7 +3227,7 @@ Layer: kernel

-corenet_tcp_bind_portmap_port( +corenet_tcp_bind_all_ports( @@ -2696,6 +3238,12 @@ kernel

)

+
+

+Bind TCP sockets to all ports. +

+
+
@@ -2705,7 +3253,7 @@ Layer: kernel

-corenet_tcp_bind_postgresql_port( +corenet_tcp_bind_all_reserved_ports( @@ -2716,6 +3264,12 @@ kernel

)

+
+

+Bind TCP sockets to all reserved ports. +

+
+
@@ -2725,7 +3279,7 @@ Layer: kernel

-corenet_tcp_bind_printer_port( +corenet_tcp_bind_amanda_port( @@ -2745,7 +3299,7 @@ Layer: kernel

-corenet_tcp_bind_pxe_port( +corenet_tcp_bind_compat_ipv4_node( @@ -2765,7 +3319,7 @@ Layer: kernel

-corenet_tcp_bind_radacct_port( +corenet_tcp_bind_dbskkd_port( @@ -2785,7 +3339,7 @@ Layer: kernel

-corenet_tcp_bind_radius_port( +corenet_tcp_bind_dhcpc_port( @@ -2805,7 +3359,7 @@ Layer: kernel

-corenet_tcp_bind_rsh_port( +corenet_tcp_bind_dhcpd_port( @@ -2825,7 +3379,7 @@ Layer: kernel

-corenet_tcp_bind_rsync_port( +corenet_tcp_bind_dict_port( @@ -2845,7 +3399,7 @@ Layer: kernel

-corenet_tcp_bind_site_local_node( +corenet_tcp_bind_dns_port( @@ -2865,7 +3419,7 @@ Layer: kernel

-corenet_tcp_bind_smbd_port( +corenet_tcp_bind_fingerd_port( @@ -2885,7 +3439,7 @@ Layer: kernel

-corenet_tcp_bind_smtp_port( +corenet_tcp_bind_ftp_data_port( @@ -2905,7 +3459,7 @@ Layer: kernel

-corenet_tcp_bind_snmp_port( +corenet_tcp_bind_ftp_port( @@ -2925,7 +3479,7 @@ Layer: kernel

-corenet_tcp_bind_ssh_port( +corenet_tcp_bind_generic_node( @@ -2936,6 +3490,12 @@ kernel

)

+
+

+Bind TCP sockets to generic nodes. +

+
+
@@ -2945,7 +3505,7 @@ Layer: kernel

-corenet_tcp_bind_swat_port( +corenet_tcp_bind_generic_port( @@ -2956,6 +3516,12 @@ kernel

)

+
+

+Bind TCP sockets to generic ports. +

+
+
@@ -2965,7 +3531,7 @@ Layer: kernel

-corenet_tcp_bind_syslogd_port( +corenet_tcp_bind_howl_port( @@ -2985,7 +3551,7 @@ Layer: kernel

-corenet_tcp_bind_telnetd_port( +corenet_tcp_bind_http_cache_port( @@ -3005,7 +3571,7 @@ Layer: kernel

-corenet_tcp_bind_tftp_port( +corenet_tcp_bind_http_port( @@ -3025,7 +3591,7 @@ Layer: kernel

-corenet_tcp_bind_unspec_node( +corenet_tcp_bind_inaddr_any_node( @@ -3045,7 +3611,7 @@ Layer: kernel

-corenet_tcp_bind_vnc_port( +corenet_tcp_bind_inetd_child_port( @@ -3065,7 +3631,7 @@ Layer: kernel

-corenet_tcp_bind_xserver_port( +corenet_tcp_bind_innd_port( @@ -3085,7 +3651,7 @@ Layer: kernel

-corenet_tcp_bind_zebra_port( +corenet_tcp_bind_ipp_port( @@ -3105,7 +3671,7 @@ Layer: kernel

-corenet_tcp_sendrecv_amanda_port( +corenet_tcp_bind_kerberos_admin_port( @@ -3125,7 +3691,7 @@ Layer: kernel

-corenet_tcp_sendrecv_compat_ipv4_node( +corenet_tcp_bind_kerberos_master_port( @@ -3145,7 +3711,7 @@ Layer: kernel

-corenet_tcp_sendrecv_dbskkd_port( +corenet_tcp_bind_kerberos_port( @@ -3165,7 +3731,7 @@ Layer: kernel

-corenet_tcp_sendrecv_dhcpc_port( +corenet_tcp_bind_ktalkd_port( @@ -3185,7 +3751,7 @@ Layer: kernel

-corenet_tcp_sendrecv_dhcpd_port( +corenet_tcp_bind_ldap_port( @@ -3205,7 +3771,7 @@ Layer: kernel

-corenet_tcp_sendrecv_dict_port( +corenet_tcp_bind_link_local_node( @@ -3225,7 +3791,7 @@ Layer: kernel

-corenet_tcp_sendrecv_dns_port( +corenet_tcp_bind_lo_node( @@ -3245,7 +3811,7 @@ Layer: kernel

-corenet_tcp_sendrecv_eth0( +corenet_tcp_bind_mail_port( @@ -3265,7 +3831,7 @@ Layer: kernel

-corenet_tcp_sendrecv_eth1( +corenet_tcp_bind_mapped_ipv4_node( @@ -3285,7 +3851,7 @@ Layer: kernel

-corenet_tcp_sendrecv_eth2( +corenet_tcp_bind_multicast_node( @@ -3305,7 +3871,7 @@ Layer: kernel

-corenet_tcp_sendrecv_fingerd_port( +corenet_tcp_bind_mysqld_port( @@ -3325,7 +3891,7 @@ Layer: kernel

-corenet_tcp_sendrecv_ftp_data_port( +corenet_tcp_bind_nmbd_port( @@ -3345,7 +3911,7 @@ Layer: kernel

-corenet_tcp_sendrecv_ftp_port( +corenet_tcp_bind_pop_port( @@ -3365,7 +3931,7 @@ Layer: kernel

-corenet_tcp_sendrecv_generic_if( +corenet_tcp_bind_portmap_port( @@ -3385,7 +3951,7 @@ Layer: kernel

-corenet_tcp_sendrecv_howl_port( +corenet_tcp_bind_postgresql_port( @@ -3405,7 +3971,7 @@ Layer: kernel

-corenet_tcp_sendrecv_http_cache_port( +corenet_tcp_bind_printer_port( @@ -3425,7 +3991,7 @@ Layer: kernel

-corenet_tcp_sendrecv_http_port( +corenet_tcp_bind_pxe_port( @@ -3445,7 +4011,7 @@ Layer: kernel

-corenet_tcp_sendrecv_inaddr_any_node( +corenet_tcp_bind_radacct_port( @@ -3465,7 +4031,7 @@ Layer: kernel

-corenet_tcp_sendrecv_inetd_child_port( +corenet_tcp_bind_radius_port( @@ -3485,7 +4051,7 @@ Layer: kernel

-corenet_tcp_sendrecv_innd_port( +corenet_tcp_bind_reserved_port( @@ -3496,6 +4062,12 @@ kernel

)

+
+

+Bind TCP sockets to generic reserved ports. +

+
+
@@ -3505,7 +4077,7 @@ Layer: kernel

-corenet_tcp_sendrecv_ipp_port( +corenet_tcp_bind_rsh_port( @@ -3525,7 +4097,7 @@ Layer: kernel

-corenet_tcp_sendrecv_ippp0( +corenet_tcp_bind_rsync_port( @@ -3545,7 +4117,7 @@ Layer: kernel

-corenet_tcp_sendrecv_ipsec0( +corenet_tcp_bind_site_local_node( @@ -3565,7 +4137,7 @@ Layer: kernel

-corenet_tcp_sendrecv_ipsec1( +corenet_tcp_bind_smbd_port( @@ -3585,7 +4157,7 @@ Layer: kernel

-corenet_tcp_sendrecv_ipsec2( +corenet_tcp_bind_smtp_port( @@ -3605,7 +4177,7 @@ Layer: kernel

-corenet_tcp_sendrecv_kerberos_admin_port( +corenet_tcp_bind_snmp_port( @@ -3625,7 +4197,7 @@ Layer: kernel

-corenet_tcp_sendrecv_kerberos_master_port( +corenet_tcp_bind_ssh_port( @@ -3645,7 +4217,7 @@ Layer: kernel

-corenet_tcp_sendrecv_kerberos_port( +corenet_tcp_bind_swat_port( @@ -3665,7 +4237,7 @@ Layer: kernel

-corenet_tcp_sendrecv_ktalkd_port( +corenet_tcp_bind_syslogd_port( @@ -3685,7 +4257,7 @@ Layer: kernel

-corenet_tcp_sendrecv_ldap_port( +corenet_tcp_bind_telnetd_port( @@ -3705,7 +4277,7 @@ Layer: kernel

-corenet_tcp_sendrecv_link_local_node( +corenet_tcp_bind_tftp_port( @@ -3725,7 +4297,7 @@ Layer: kernel

-corenet_tcp_sendrecv_lo( +corenet_tcp_bind_unspec_node( @@ -3745,7 +4317,7 @@ Layer: kernel

-corenet_tcp_sendrecv_lo_node( +corenet_tcp_bind_vnc_port( @@ -3765,7 +4337,7 @@ Layer: kernel

-corenet_tcp_sendrecv_mail_port( +corenet_tcp_bind_xserver_port( @@ -3785,7 +4357,7 @@ Layer: kernel

-corenet_tcp_sendrecv_mapped_ipv4_node( +corenet_tcp_bind_zebra_port( @@ -3805,7 +4377,7 @@ Layer: kernel

-corenet_tcp_sendrecv_multicast_node( +corenet_tcp_sendrecv_all_if( @@ -3816,6 +4388,12 @@ kernel

)

+
+

+Send and receive TCP network traffic on all interfaces. +

+
+
@@ -3825,7 +4403,7 @@ Layer: kernel

-corenet_tcp_sendrecv_mysqld_port( +corenet_tcp_sendrecv_all_nodes( @@ -3836,6 +4414,12 @@ kernel

)

+
+

+Send and receive TCP network traffic on all nodes. +

+
+
@@ -3845,7 +4429,7 @@ Layer: kernel

-corenet_tcp_sendrecv_nmbd_port( +corenet_tcp_sendrecv_all_ports( @@ -3856,6 +4440,12 @@ kernel

)

+
+

+Send and receive TCP network traffic on all ports. +

+
+
@@ -3865,7 +4455,7 @@ Layer: kernel

-corenet_tcp_sendrecv_pop_port( +corenet_tcp_sendrecv_all_reserved_ports( @@ -3876,6 +4466,12 @@ kernel

)

+
+

+Send and receive TCP network traffic on all reserved ports. +

+
+
@@ -3885,7 +4481,7 @@ Layer: kernel

-corenet_tcp_sendrecv_portmap_port( +corenet_tcp_sendrecv_amanda_port( @@ -3905,7 +4501,7 @@ Layer: kernel

-corenet_tcp_sendrecv_postgresql_port( +corenet_tcp_sendrecv_compat_ipv4_node( @@ -3925,7 +4521,7 @@ Layer: kernel

-corenet_tcp_sendrecv_printer_port( +corenet_tcp_sendrecv_dbskkd_port( @@ -3945,7 +4541,7 @@ Layer: kernel

-corenet_tcp_sendrecv_pxe_port( +corenet_tcp_sendrecv_dhcpc_port( @@ -3965,7 +4561,7 @@ Layer: kernel

-corenet_tcp_sendrecv_radacct_port( +corenet_tcp_sendrecv_dhcpd_port( @@ -3985,7 +4581,7 @@ Layer: kernel

-corenet_tcp_sendrecv_radius_port( +corenet_tcp_sendrecv_dict_port( @@ -4005,7 +4601,7 @@ Layer: kernel

-corenet_tcp_sendrecv_rsh_port( +corenet_tcp_sendrecv_dns_port( @@ -4025,7 +4621,7 @@ Layer: kernel

-corenet_tcp_sendrecv_rsync_port( +corenet_tcp_sendrecv_eth0( @@ -4045,7 +4641,7 @@ Layer: kernel

-corenet_tcp_sendrecv_site_local_node( +corenet_tcp_sendrecv_eth1( @@ -4065,7 +4661,7 @@ Layer: kernel

-corenet_tcp_sendrecv_smbd_port( +corenet_tcp_sendrecv_eth2( @@ -4085,7 +4681,7 @@ Layer: kernel

-corenet_tcp_sendrecv_smtp_port( +corenet_tcp_sendrecv_fingerd_port( @@ -4105,7 +4701,7 @@ Layer: kernel

-corenet_tcp_sendrecv_snmp_port( +corenet_tcp_sendrecv_ftp_data_port( @@ -4125,7 +4721,7 @@ Layer: kernel

-corenet_tcp_sendrecv_ssh_port( +corenet_tcp_sendrecv_ftp_port( @@ -4145,7 +4741,7 @@ Layer: kernel

-corenet_tcp_sendrecv_swat_port( +corenet_tcp_sendrecv_generic_if( @@ -4156,6 +4752,12 @@ kernel

)

+
+

+Send and receive TCP network traffic on the generic interfaces. +

+
+
@@ -4165,7 +4767,7 @@ Layer: kernel

-corenet_tcp_sendrecv_syslogd_port( +corenet_tcp_sendrecv_generic_node( @@ -4176,6 +4778,12 @@ kernel

)

+
+

+Send and receive TCP network traffic on generic nodes. +

+
+
@@ -4185,7 +4793,7 @@ Layer: kernel

-corenet_tcp_sendrecv_telnetd_port( +corenet_tcp_sendrecv_generic_port( @@ -4196,6 +4804,12 @@ kernel

)

+
+

+Send and receive TCP network traffic on generic ports. +

+
+
@@ -4205,7 +4819,7 @@ Layer: kernel

-corenet_tcp_sendrecv_tftp_port( +corenet_tcp_sendrecv_howl_port( @@ -4225,7 +4839,7 @@ Layer: kernel

-corenet_tcp_sendrecv_unspec_node( +corenet_tcp_sendrecv_http_cache_port( @@ -4245,7 +4859,7 @@ Layer: kernel

-corenet_tcp_sendrecv_vnc_port( +corenet_tcp_sendrecv_http_port( @@ -4265,7 +4879,7 @@ Layer: kernel

-corenet_tcp_sendrecv_xserver_port( +corenet_tcp_sendrecv_inaddr_any_node( @@ -4285,7 +4899,7 @@ Layer: kernel

-corenet_tcp_sendrecv_zebra_port( +corenet_tcp_sendrecv_inetd_child_port( @@ -4305,7 +4919,7 @@ Layer: kernel

-corenet_udp_bind_amanda_port( +corenet_tcp_sendrecv_innd_port( @@ -4325,7 +4939,7 @@ Layer: kernel

-corenet_udp_bind_compat_ipv4_node( +corenet_tcp_sendrecv_ipp_port( @@ -4345,7 +4959,7 @@ Layer: kernel

-corenet_udp_bind_dbskkd_port( +corenet_tcp_sendrecv_ippp0( @@ -4365,7 +4979,7 @@ Layer: kernel

-corenet_udp_bind_dhcpc_port( +corenet_tcp_sendrecv_ipsec0( @@ -4385,7 +4999,7 @@ Layer: kernel

-corenet_udp_bind_dhcpd_port( +corenet_tcp_sendrecv_ipsec1( @@ -4405,7 +5019,7 @@ Layer: kernel

-corenet_udp_bind_dict_port( +corenet_tcp_sendrecv_ipsec2( @@ -4425,7 +5039,7 @@ Layer: kernel

-corenet_udp_bind_dns_port( +corenet_tcp_sendrecv_kerberos_admin_port( @@ -4445,7 +5059,7 @@ Layer: kernel

-corenet_udp_bind_fingerd_port( +corenet_tcp_sendrecv_kerberos_master_port( @@ -4465,7 +5079,7 @@ Layer: kernel

-corenet_udp_bind_ftp_data_port( +corenet_tcp_sendrecv_kerberos_port( @@ -4485,7 +5099,7 @@ Layer: kernel

-corenet_udp_bind_ftp_port( +corenet_tcp_sendrecv_ktalkd_port( @@ -4505,7 +5119,7 @@ Layer: kernel

-corenet_udp_bind_howl_port( +corenet_tcp_sendrecv_ldap_port( @@ -4525,7 +5139,7 @@ Layer: kernel

-corenet_udp_bind_http_cache_port( +corenet_tcp_sendrecv_link_local_node( @@ -4545,7 +5159,7 @@ Layer: kernel

-corenet_udp_bind_http_port( +corenet_tcp_sendrecv_lo( @@ -4565,7 +5179,7 @@ Layer: kernel

-corenet_udp_bind_inaddr_any_node( +corenet_tcp_sendrecv_lo_node( @@ -4585,7 +5199,7 @@ Layer: kernel

-corenet_udp_bind_inetd_child_port( +corenet_tcp_sendrecv_mail_port( @@ -4605,7 +5219,7 @@ Layer: kernel

-corenet_udp_bind_innd_port( +corenet_tcp_sendrecv_mapped_ipv4_node( @@ -4625,7 +5239,7 @@ Layer: kernel

-corenet_udp_bind_ipp_port( +corenet_tcp_sendrecv_multicast_node( @@ -4645,7 +5259,7 @@ Layer: kernel

-corenet_udp_bind_kerberos_admin_port( +corenet_tcp_sendrecv_mysqld_port( @@ -4665,7 +5279,7 @@ Layer: kernel

-corenet_udp_bind_kerberos_master_port( +corenet_tcp_sendrecv_nmbd_port( @@ -4685,7 +5299,7 @@ Layer: kernel

-corenet_udp_bind_kerberos_port( +corenet_tcp_sendrecv_pop_port( @@ -4705,7 +5319,7 @@ Layer: kernel

-corenet_udp_bind_ktalkd_port( +corenet_tcp_sendrecv_portmap_port( @@ -4725,7 +5339,7 @@ Layer: kernel

-corenet_udp_bind_ldap_port( +corenet_tcp_sendrecv_postgresql_port( @@ -4745,7 +5359,7 @@ Layer: kernel

-corenet_udp_bind_link_local_node( +corenet_tcp_sendrecv_printer_port( @@ -4765,7 +5379,7 @@ Layer: kernel

-corenet_udp_bind_lo_node( +corenet_tcp_sendrecv_pxe_port( @@ -4785,7 +5399,7 @@ Layer: kernel

-corenet_udp_bind_mail_port( +corenet_tcp_sendrecv_radacct_port( @@ -4805,7 +5419,7 @@ Layer: kernel

-corenet_udp_bind_mapped_ipv4_node( +corenet_tcp_sendrecv_radius_port( @@ -4825,7 +5439,7 @@ Layer: kernel

-corenet_udp_bind_multicast_node( +corenet_tcp_sendrecv_reserved_port( @@ -4836,6 +5450,12 @@ kernel

)

+
+

+Send and receive TCP network traffic on generic reserved ports. +

+
+
@@ -4845,7 +5465,7 @@ Layer: kernel

-corenet_udp_bind_mysqld_port( +corenet_tcp_sendrecv_rsh_port( @@ -4865,7 +5485,7 @@ Layer: kernel

-corenet_udp_bind_nmbd_port( +corenet_tcp_sendrecv_rsync_port( @@ -4885,7 +5505,7 @@ Layer: kernel

-corenet_udp_bind_pop_port( +corenet_tcp_sendrecv_site_local_node( @@ -4905,7 +5525,7 @@ Layer: kernel

-corenet_udp_bind_portmap_port( +corenet_tcp_sendrecv_smbd_port( @@ -4925,7 +5545,7 @@ Layer: kernel

-corenet_udp_bind_postgresql_port( +corenet_tcp_sendrecv_smtp_port( @@ -4945,7 +5565,7 @@ Layer: kernel

-corenet_udp_bind_printer_port( +corenet_tcp_sendrecv_snmp_port( @@ -4965,7 +5585,7 @@ Layer: kernel

-corenet_udp_bind_pxe_port( +corenet_tcp_sendrecv_ssh_port( @@ -4985,7 +5605,7 @@ Layer: kernel

-corenet_udp_bind_radacct_port( +corenet_tcp_sendrecv_swat_port( @@ -5005,7 +5625,7 @@ Layer: kernel

-corenet_udp_bind_radius_port( +corenet_tcp_sendrecv_syslogd_port( @@ -5025,7 +5645,7 @@ Layer: kernel

-corenet_udp_bind_rsh_port( +corenet_tcp_sendrecv_telnetd_port( @@ -5045,7 +5665,7 @@ Layer: kernel

-corenet_udp_bind_rsync_port( +corenet_tcp_sendrecv_tftp_port( @@ -5065,7 +5685,7 @@ Layer: kernel

-corenet_udp_bind_site_local_node( +corenet_tcp_sendrecv_unspec_node( @@ -5085,7 +5705,7 @@ Layer: kernel

-corenet_udp_bind_smbd_port( +corenet_tcp_sendrecv_vnc_port( @@ -5105,7 +5725,7 @@ Layer: kernel

-corenet_udp_bind_smtp_port( +corenet_tcp_sendrecv_xserver_port( @@ -5125,7 +5745,7 @@ Layer: kernel

-corenet_udp_bind_snmp_port( +corenet_tcp_sendrecv_zebra_port( @@ -5145,7 +5765,7 @@ Layer: kernel

-corenet_udp_bind_ssh_port( +corenet_udp_bind_all_nodes( @@ -5156,6 +5776,12 @@ kernel

)

+
+

+Bind UDP sockets to all nodes. +

+
+
@@ -5165,7 +5791,7 @@ Layer: kernel

-corenet_udp_bind_swat_port( +corenet_udp_bind_all_ports( @@ -5176,6 +5802,12 @@ kernel

)

+
+

+Bind UDP sockets to all ports. +

+
+
@@ -5185,7 +5817,7 @@ Layer: kernel

-corenet_udp_bind_syslogd_port( +corenet_udp_bind_all_reserved_ports( @@ -5196,6 +5828,12 @@ kernel

)

+
+

+Bind UDP sockets to all reserved ports. +

+
+
@@ -5205,7 +5843,7 @@ Layer: kernel

-corenet_udp_bind_telnetd_port( +corenet_udp_bind_amanda_port( @@ -5225,7 +5863,7 @@ Layer: kernel

-corenet_udp_bind_tftp_port( +corenet_udp_bind_compat_ipv4_node( @@ -5245,7 +5883,7 @@ Layer: kernel

-corenet_udp_bind_unspec_node( +corenet_udp_bind_dbskkd_port( @@ -5265,7 +5903,7 @@ Layer: kernel

-corenet_udp_bind_vnc_port( +corenet_udp_bind_dhcpc_port( @@ -5285,7 +5923,7 @@ Layer: kernel

-corenet_udp_bind_xserver_port( +corenet_udp_bind_dhcpd_port( @@ -5305,7 +5943,7 @@ Layer: kernel

-corenet_udp_bind_zebra_port( +corenet_udp_bind_dict_port( @@ -5325,7 +5963,7 @@ Layer: kernel

-corenet_udp_receive_amanda_port( +corenet_udp_bind_dns_port( @@ -5345,7 +5983,7 @@ Layer: kernel

-corenet_udp_receive_compat_ipv4_node( +corenet_udp_bind_fingerd_port( @@ -5365,7 +6003,7 @@ Layer: kernel

-corenet_udp_receive_dbskkd_port( +corenet_udp_bind_ftp_data_port( @@ -5385,7 +6023,7 @@ Layer: kernel

-corenet_udp_receive_dhcpc_port( +corenet_udp_bind_ftp_port( @@ -5405,7 +6043,7 @@ Layer: kernel

-corenet_udp_receive_dhcpd_port( +corenet_udp_bind_generic_node( @@ -5416,6 +6054,12 @@ kernel

)

+
+

+Bind UDP sockets to generic nodes. +

+
+
@@ -5425,7 +6069,7 @@ Layer: kernel

-corenet_udp_receive_dict_port( +corenet_udp_bind_generic_port( @@ -5436,6 +6080,12 @@ kernel

)

+
+

+Bind UDP sockets to generic ports. +

+
+
@@ -5445,7 +6095,7 @@ Layer: kernel

-corenet_udp_receive_dns_port( +corenet_udp_bind_howl_port( @@ -5465,7 +6115,7 @@ Layer: kernel

-corenet_udp_receive_eth0( +corenet_udp_bind_http_cache_port( @@ -5485,7 +6135,7 @@ Layer: kernel

-corenet_udp_receive_eth1( +corenet_udp_bind_http_port( @@ -5505,7 +6155,7 @@ Layer: kernel

-corenet_udp_receive_eth2( +corenet_udp_bind_inaddr_any_node( @@ -5525,7 +6175,7 @@ Layer: kernel

-corenet_udp_receive_fingerd_port( +corenet_udp_bind_inetd_child_port( @@ -5545,7 +6195,7 @@ Layer: kernel

-corenet_udp_receive_ftp_data_port( +corenet_udp_bind_innd_port( @@ -5565,7 +6215,7 @@ Layer: kernel

-corenet_udp_receive_ftp_port( +corenet_udp_bind_ipp_port( @@ -5585,7 +6235,7 @@ Layer: kernel

-corenet_udp_receive_howl_port( +corenet_udp_bind_kerberos_admin_port( @@ -5605,7 +6255,7 @@ Layer: kernel

-corenet_udp_receive_http_cache_port( +corenet_udp_bind_kerberos_master_port( @@ -5625,7 +6275,7 @@ Layer: kernel

-corenet_udp_receive_http_port( +corenet_udp_bind_kerberos_port( @@ -5645,7 +6295,7 @@ Layer: kernel

-corenet_udp_receive_inaddr_any_node( +corenet_udp_bind_ktalkd_port( @@ -5665,7 +6315,7 @@ Layer: kernel

-corenet_udp_receive_inetd_child_port( +corenet_udp_bind_ldap_port( @@ -5685,7 +6335,7 @@ Layer: kernel

-corenet_udp_receive_innd_port( +corenet_udp_bind_link_local_node( @@ -5705,7 +6355,7 @@ Layer: kernel

-corenet_udp_receive_ipp_port( +corenet_udp_bind_lo_node( @@ -5725,7 +6375,7 @@ Layer: kernel

-corenet_udp_receive_ippp0( +corenet_udp_bind_mail_port( @@ -5745,7 +6395,7 @@ Layer: kernel

-corenet_udp_receive_ipsec0( +corenet_udp_bind_mapped_ipv4_node( @@ -5765,7 +6415,7 @@ Layer: kernel

-corenet_udp_receive_ipsec1( +corenet_udp_bind_multicast_node( @@ -5785,7 +6435,7 @@ Layer: kernel

-corenet_udp_receive_ipsec2( +corenet_udp_bind_mysqld_port( @@ -5805,7 +6455,7 @@ Layer: kernel

-corenet_udp_receive_kerberos_admin_port( +corenet_udp_bind_nmbd_port( @@ -5825,7 +6475,7 @@ Layer: kernel

-corenet_udp_receive_kerberos_master_port( +corenet_udp_bind_pop_port( @@ -5845,7 +6495,7 @@ Layer: kernel

-corenet_udp_receive_kerberos_port( +corenet_udp_bind_portmap_port( @@ -5865,7 +6515,7 @@ Layer: kernel

-corenet_udp_receive_ktalkd_port( +corenet_udp_bind_postgresql_port( @@ -5885,7 +6535,7 @@ Layer: kernel

-corenet_udp_receive_ldap_port( +corenet_udp_bind_printer_port( @@ -5905,7 +6555,7 @@ Layer: kernel

-corenet_udp_receive_link_local_node( +corenet_udp_bind_pxe_port( @@ -5925,7 +6575,7 @@ Layer: kernel

-corenet_udp_receive_lo( +corenet_udp_bind_radacct_port( @@ -5945,7 +6595,7 @@ Layer: kernel

-corenet_udp_receive_lo_node( +corenet_udp_bind_radius_port( @@ -5965,7 +6615,7 @@ Layer: kernel

-corenet_udp_receive_mail_port( +corenet_udp_bind_reserved_port( @@ -5976,6 +6626,12 @@ kernel

)

+
+

+Bind UDP sockets to generic reserved ports. +

+
+
@@ -5985,7 +6641,7 @@ Layer: kernel

-corenet_udp_receive_mapped_ipv4_node( +corenet_udp_bind_rsh_port( @@ -6005,7 +6661,7 @@ Layer: kernel

-corenet_udp_receive_multicast_node( +corenet_udp_bind_rsync_port( @@ -6025,7 +6681,7 @@ Layer: kernel

-corenet_udp_receive_mysqld_port( +corenet_udp_bind_site_local_node( @@ -6045,7 +6701,7 @@ Layer: kernel

-corenet_udp_receive_nmbd_port( +corenet_udp_bind_smbd_port( @@ -6065,7 +6721,7 @@ Layer: kernel

-corenet_udp_receive_pop_port( +corenet_udp_bind_smtp_port( @@ -6085,7 +6741,7 @@ Layer: kernel

-corenet_udp_receive_portmap_port( +corenet_udp_bind_snmp_port( @@ -6105,7 +6761,7 @@ Layer: kernel

-corenet_udp_receive_postgresql_port( +corenet_udp_bind_ssh_port( @@ -6125,7 +6781,7 @@ Layer: kernel

-corenet_udp_receive_printer_port( +corenet_udp_bind_swat_port( @@ -6145,7 +6801,7 @@ Layer: kernel

-corenet_udp_receive_pxe_port( +corenet_udp_bind_syslogd_port( @@ -6165,7 +6821,7 @@ Layer: kernel

-corenet_udp_receive_radacct_port( +corenet_udp_bind_telnetd_port( @@ -6185,7 +6841,7 @@ Layer: kernel

-corenet_udp_receive_radius_port( +corenet_udp_bind_tftp_port( @@ -6205,7 +6861,7 @@ Layer: kernel

-corenet_udp_receive_rsh_port( +corenet_udp_bind_unspec_node( @@ -6225,7 +6881,7 @@ Layer: kernel

-corenet_udp_receive_rsync_port( +corenet_udp_bind_vnc_port( @@ -6245,7 +6901,7 @@ Layer: kernel

-corenet_udp_receive_site_local_node( +corenet_udp_bind_xserver_port( @@ -6265,7 +6921,7 @@ Layer: kernel

-corenet_udp_receive_smbd_port( +corenet_udp_bind_zebra_port( @@ -6285,7 +6941,7 @@ Layer: kernel

-corenet_udp_receive_smtp_port( +corenet_udp_receive_all_if( @@ -6296,6 +6952,12 @@ kernel

)

+
+

+Receive UDP network traffic on all interfaces. +

+
+
@@ -6305,7 +6967,7 @@ Layer: kernel

-corenet_udp_receive_snmp_port( +corenet_udp_receive_all_nodes( @@ -6316,6 +6978,12 @@ kernel

)

+
+

+Receive UDP network traffic on all nodes. +

+
+
@@ -6325,7 +6993,7 @@ Layer: kernel

-corenet_udp_receive_ssh_port( +corenet_udp_receive_all_ports( @@ -6336,6 +7004,12 @@ kernel

)

+
+

+Receive UDP network traffic on all ports. +

+
+
@@ -6345,7 +7019,7 @@ Layer: kernel

-corenet_udp_receive_swat_port( +corenet_udp_receive_all_reserved_ports( @@ -6356,6 +7030,12 @@ kernel

)

+
+

+Receive UDP network traffic on all reserved ports. +

+
+
@@ -6365,7 +7045,7 @@ Layer: kernel

-corenet_udp_receive_syslogd_port( +corenet_udp_receive_amanda_port( @@ -6385,7 +7065,7 @@ Layer: kernel

-corenet_udp_receive_telnetd_port( +corenet_udp_receive_compat_ipv4_node( @@ -6405,7 +7085,7 @@ Layer: kernel

-corenet_udp_receive_tftp_port( +corenet_udp_receive_dbskkd_port( @@ -6425,7 +7105,7 @@ Layer: kernel

-corenet_udp_receive_unspec_node( +corenet_udp_receive_dhcpc_port( @@ -6445,7 +7125,7 @@ Layer: kernel

-corenet_udp_receive_vnc_port( +corenet_udp_receive_dhcpd_port( @@ -6465,7 +7145,7 @@ Layer: kernel

-corenet_udp_receive_xserver_port( +corenet_udp_receive_dict_port( @@ -6485,7 +7165,7 @@ Layer: kernel

-corenet_udp_receive_zebra_port( +corenet_udp_receive_dns_port( @@ -6505,7 +7185,7 @@ Layer: kernel

-corenet_udp_send_amanda_port( +corenet_udp_receive_eth0( @@ -6525,7 +7205,7 @@ Layer: kernel

-corenet_udp_send_compat_ipv4_node( +corenet_udp_receive_eth1( @@ -6545,7 +7225,7 @@ Layer: kernel

-corenet_udp_send_dbskkd_port( +corenet_udp_receive_eth2( @@ -6565,7 +7245,7 @@ Layer: kernel

-corenet_udp_send_dhcpc_port( +corenet_udp_receive_fingerd_port( @@ -6585,7 +7265,7 @@ Layer: kernel

-corenet_udp_send_dhcpd_port( +corenet_udp_receive_ftp_data_port( @@ -6605,7 +7285,7 @@ Layer: kernel

-corenet_udp_send_dict_port( +corenet_udp_receive_ftp_port( @@ -6625,7 +7305,7 @@ Layer: kernel

-corenet_udp_send_dns_port( +corenet_udp_receive_generic_if( @@ -6636,6 +7316,12 @@ kernel

)

+
+

+Receive UDP network traffic on generic interfaces. +

+
+
@@ -6645,7 +7331,7 @@ Layer: kernel

-corenet_udp_send_eth0( +corenet_udp_receive_generic_node( @@ -6656,6 +7342,12 @@ kernel

)

+
+

+Receive UDP network traffic on generic nodes. +

+
+
@@ -6665,7 +7357,7 @@ Layer: kernel

-corenet_udp_send_eth1( +corenet_udp_receive_generic_port( @@ -6676,6 +7368,12 @@ kernel

)

+
+

+Receive UDP network traffic on generic ports. +

+
+
@@ -6685,7 +7383,7 @@ Layer: kernel

-corenet_udp_send_eth2( +corenet_udp_receive_howl_port( @@ -6705,7 +7403,7 @@ Layer: kernel

-corenet_udp_send_fingerd_port( +corenet_udp_receive_http_cache_port( @@ -6725,7 +7423,7 @@ Layer: kernel

-corenet_udp_send_ftp_data_port( +corenet_udp_receive_http_port( @@ -6745,7 +7443,7 @@ Layer: kernel

-corenet_udp_send_ftp_port( +corenet_udp_receive_inaddr_any_node( @@ -6765,7 +7463,7 @@ Layer: kernel

-corenet_udp_send_howl_port( +corenet_udp_receive_inetd_child_port( @@ -6785,7 +7483,7 @@ Layer: kernel

-corenet_udp_send_http_cache_port( +corenet_udp_receive_innd_port( @@ -6805,7 +7503,7 @@ Layer: kernel

-corenet_udp_send_http_port( +corenet_udp_receive_ipp_port( @@ -6825,7 +7523,7 @@ Layer: kernel

-corenet_udp_send_inaddr_any_node( +corenet_udp_receive_ippp0( @@ -6845,7 +7543,7 @@ Layer: kernel

-corenet_udp_send_inetd_child_port( +corenet_udp_receive_ipsec0( @@ -6865,7 +7563,7 @@ Layer: kernel

-corenet_udp_send_innd_port( +corenet_udp_receive_ipsec1( @@ -6885,7 +7583,7 @@ Layer: kernel

-corenet_udp_send_ipp_port( +corenet_udp_receive_ipsec2( @@ -6905,7 +7603,7 @@ Layer: kernel

-corenet_udp_send_ippp0( +corenet_udp_receive_kerberos_admin_port( @@ -6925,7 +7623,7 @@ Layer: kernel

-corenet_udp_send_ipsec0( +corenet_udp_receive_kerberos_master_port( @@ -6945,7 +7643,7 @@ Layer: kernel

-corenet_udp_send_ipsec1( +corenet_udp_receive_kerberos_port( @@ -6965,7 +7663,7 @@ Layer: kernel

-corenet_udp_send_ipsec2( +corenet_udp_receive_ktalkd_port( @@ -6985,7 +7683,7 @@ Layer: kernel

-corenet_udp_send_kerberos_admin_port( +corenet_udp_receive_ldap_port( @@ -7005,7 +7703,7 @@ Layer: kernel

-corenet_udp_send_kerberos_master_port( +corenet_udp_receive_link_local_node( @@ -7025,7 +7723,7 @@ Layer: kernel

-corenet_udp_send_kerberos_port( +corenet_udp_receive_lo( @@ -7045,7 +7743,7 @@ Layer: kernel

-corenet_udp_send_ktalkd_port( +corenet_udp_receive_lo_node( @@ -7065,7 +7763,7 @@ Layer: kernel

-corenet_udp_send_ldap_port( +corenet_udp_receive_mail_port( @@ -7085,7 +7783,7 @@ Layer: kernel

-corenet_udp_send_link_local_node( +corenet_udp_receive_mapped_ipv4_node( @@ -7105,7 +7803,7 @@ Layer: kernel

-corenet_udp_send_lo( +corenet_udp_receive_multicast_node( @@ -7125,7 +7823,7 @@ Layer: kernel

-corenet_udp_send_lo_node( +corenet_udp_receive_mysqld_port( @@ -7145,7 +7843,7 @@ Layer: kernel

-corenet_udp_send_mail_port( +corenet_udp_receive_nmbd_port( @@ -7165,7 +7863,7 @@ Layer: kernel

-corenet_udp_send_mapped_ipv4_node( +corenet_udp_receive_pop_port( @@ -7185,7 +7883,7 @@ Layer: kernel

-corenet_udp_send_multicast_node( +corenet_udp_receive_portmap_port( @@ -7205,7 +7903,7 @@ Layer: kernel

-corenet_udp_send_mysqld_port( +corenet_udp_receive_postgresql_port( @@ -7225,7 +7923,7 @@ Layer: kernel

-corenet_udp_send_nmbd_port( +corenet_udp_receive_printer_port( @@ -7245,7 +7943,7 @@ Layer: kernel

-corenet_udp_send_pop_port( +corenet_udp_receive_pxe_port( @@ -7265,7 +7963,7 @@ Layer: kernel

-corenet_udp_send_portmap_port( +corenet_udp_receive_radacct_port( @@ -7285,7 +7983,7 @@ Layer: kernel

-corenet_udp_send_postgresql_port( +corenet_udp_receive_radius_port( @@ -7305,7 +8003,7 @@ Layer: kernel

-corenet_udp_send_printer_port( +corenet_udp_receive_reserved_port( @@ -7316,6 +8014,12 @@ kernel

)

+
+

+Receive UDP network traffic on generic reserved ports. +

+
+
@@ -7325,7 +8029,7 @@ Layer: kernel

-corenet_udp_send_pxe_port( +corenet_udp_receive_rsh_port( @@ -7345,7 +8049,7 @@ Layer: kernel

-corenet_udp_send_radacct_port( +corenet_udp_receive_rsync_port( @@ -7365,7 +8069,7 @@ Layer: kernel

-corenet_udp_send_radius_port( +corenet_udp_receive_site_local_node( @@ -7385,7 +8089,7 @@ Layer: kernel

-corenet_udp_send_rsh_port( +corenet_udp_receive_smbd_port( @@ -7405,7 +8109,7 @@ Layer: kernel

-corenet_udp_send_rsync_port( +corenet_udp_receive_smtp_port( @@ -7425,7 +8129,7 @@ Layer: kernel

-corenet_udp_send_site_local_node( +corenet_udp_receive_snmp_port( @@ -7445,7 +8149,7 @@ Layer: kernel

-corenet_udp_send_smbd_port( +corenet_udp_receive_ssh_port( @@ -7465,7 +8169,7 @@ Layer: kernel

-corenet_udp_send_smtp_port( +corenet_udp_receive_swat_port( @@ -7485,7 +8189,7 @@ Layer: kernel

-corenet_udp_send_snmp_port( +corenet_udp_receive_syslogd_port( @@ -7505,7 +8209,7 @@ Layer: kernel

-corenet_udp_send_ssh_port( +corenet_udp_receive_telnetd_port( @@ -7525,7 +8229,7 @@ Layer: kernel

-corenet_udp_send_swat_port( +corenet_udp_receive_tftp_port( @@ -7545,7 +8249,7 @@ Layer: kernel

-corenet_udp_send_syslogd_port( +corenet_udp_receive_unspec_node( @@ -7565,7 +8269,7 @@ Layer: kernel

-corenet_udp_send_telnetd_port( +corenet_udp_receive_vnc_port( @@ -7585,7 +8289,7 @@ Layer: kernel

-corenet_udp_send_tftp_port( +corenet_udp_receive_xserver_port( @@ -7605,7 +8309,7 @@ Layer: kernel

-corenet_udp_send_unspec_node( +corenet_udp_receive_zebra_port( @@ -7625,7 +8329,7 @@ Layer: kernel

-corenet_udp_send_vnc_port( +corenet_udp_send_all_if( @@ -7636,6 +8340,12 @@ kernel

)

+
+

+Send UDP network traffic on all interfaces. +

+
+
@@ -7645,7 +8355,7 @@ Layer: kernel

-corenet_udp_send_xserver_port( +corenet_udp_send_all_nodes( @@ -7656,6 +8366,12 @@ kernel

)

+
+

+Send UDP network traffic on all nodes. +

+
+
@@ -7665,7 +8381,7 @@ Layer: kernel

-corenet_udp_send_zebra_port( +corenet_udp_send_all_ports( @@ -7676,6 +8392,12 @@ kernel

)

+
+

+Send UDP network traffic on all ports. +

+
+
@@ -7685,7 +8407,7 @@ Layer: kernel

-corenet_udp_sendrecv_compat_ipv4_node( +corenet_udp_send_all_reserved_ports( @@ -7696,6 +8418,12 @@ kernel

)

+
+

+Send UDP network traffic on all reserved ports. +

+
+
@@ -7705,7 +8433,7 @@ Layer: kernel

-corenet_udp_sendrecv_inaddr_any_node( +corenet_udp_send_amanda_port( @@ -7725,7 +8453,7 @@ Layer: kernel

-corenet_udp_sendrecv_link_local_node( +corenet_udp_send_compat_ipv4_node( @@ -7745,7 +8473,7 @@ Layer: kernel

-corenet_udp_sendrecv_lo_node( +corenet_udp_send_dbskkd_port( @@ -7765,7 +8493,7 @@ Layer: kernel

-corenet_udp_sendrecv_mapped_ipv4_node( +corenet_udp_send_dhcpc_port( @@ -7785,7 +8513,7 @@ Layer: kernel

-corenet_udp_sendrecv_multicast_node( +corenet_udp_send_dhcpd_port( @@ -7805,7 +8533,7 @@ Layer: kernel

-corenet_udp_sendrecv_site_local_node( +corenet_udp_send_dict_port( @@ -7825,7 +8553,7 @@ Layer: kernel

-corenet_udp_sendrecv_unspec_node( +corenet_udp_send_dns_port( @@ -7845,7 +8573,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_amanda_port( +corenet_udp_send_eth0( @@ -7865,7 +8593,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_dbskkd_port( +corenet_udp_send_eth1( @@ -7885,7 +8613,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_dhcpc_port( +corenet_udp_send_eth2( @@ -7905,7 +8633,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_dhcpd_port( +corenet_udp_send_fingerd_port( @@ -7925,7 +8653,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_dict_port( +corenet_udp_send_ftp_data_port( @@ -7945,7 +8673,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_dns_port( +corenet_udp_send_ftp_port( @@ -7965,7 +8693,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_eth0_interface( +corenet_udp_send_generic_if( @@ -7976,6 +8704,12 @@ kernel

)

+
+

+Send UDP network traffic on generic interfaces. +

+
+
@@ -7985,7 +8719,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_eth1_interface( +corenet_udp_send_generic_node( @@ -7996,6 +8730,12 @@ kernel

)

+
+

+Send UDP network traffic on generic nodes. +

+
+
@@ -8005,7 +8745,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_eth2_interface( +corenet_udp_send_generic_port( @@ -8016,6 +8756,12 @@ kernel

)

+
+

+Send UDP network traffic on generic ports. +

+
+
@@ -8025,7 +8771,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_fingerd_port( +corenet_udp_send_howl_port( @@ -8045,7 +8791,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_ftp_data_port( +corenet_udp_send_http_cache_port( @@ -8065,7 +8811,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_ftp_port( +corenet_udp_send_http_port( @@ -8085,7 +8831,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_howl_port( +corenet_udp_send_inaddr_any_node( @@ -8105,7 +8851,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_http_cache_port( +corenet_udp_send_inetd_child_port( @@ -8125,7 +8871,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_http_port( +corenet_udp_send_innd_port( @@ -8145,7 +8891,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_inetd_child_port( +corenet_udp_send_ipp_port( @@ -8165,7 +8911,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_innd_port( +corenet_udp_send_ippp0( @@ -8185,7 +8931,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_ipp_port( +corenet_udp_send_ipsec0( @@ -8205,7 +8951,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_ippp0_interface( +corenet_udp_send_ipsec1( @@ -8225,7 +8971,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_ipsec0_interface( +corenet_udp_send_ipsec2( @@ -8245,7 +8991,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_ipsec1_interface( +corenet_udp_send_kerberos_admin_port( @@ -8265,7 +9011,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_ipsec2_interface( +corenet_udp_send_kerberos_master_port( @@ -8285,7 +9031,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_kerberos_admin_port( +corenet_udp_send_kerberos_port( @@ -8305,7 +9051,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_kerberos_master_port( +corenet_udp_send_ktalkd_port( @@ -8325,7 +9071,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_kerberos_port( +corenet_udp_send_ldap_port( @@ -8345,7 +9091,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_ktalkd_port( +corenet_udp_send_link_local_node( @@ -8365,7 +9111,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_ldap_port( +corenet_udp_send_lo( @@ -8385,7 +9131,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_lo_interface( +corenet_udp_send_lo_node( @@ -8405,7 +9151,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_mail_port( +corenet_udp_send_mail_port( @@ -8425,7 +9171,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_mysqld_port( +corenet_udp_send_mapped_ipv4_node( @@ -8445,7 +9191,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_nmbd_port( +corenet_udp_send_multicast_node( @@ -8465,7 +9211,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_pop_port( +corenet_udp_send_mysqld_port( @@ -8485,7 +9231,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_portmap_port( +corenet_udp_send_nmbd_port( @@ -8505,7 +9251,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_postgresql_port( +corenet_udp_send_pop_port( @@ -8525,7 +9271,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_printer_port( +corenet_udp_send_portmap_port( @@ -8545,7 +9291,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_pxe_port( +corenet_udp_send_postgresql_port( @@ -8565,7 +9311,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_radacct_port( +corenet_udp_send_printer_port( @@ -8585,7 +9331,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_radius_port( +corenet_udp_send_pxe_port( @@ -8605,7 +9351,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_rsh_port( +corenet_udp_send_radacct_port( @@ -8625,7 +9371,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_rsync_port( +corenet_udp_send_radius_port( @@ -8645,7 +9391,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_smbd_port( +corenet_udp_send_reserved_port( @@ -8656,6 +9402,12 @@ kernel

)

+
+

+Send UDP network traffic on generic reserved ports. +

+
+
@@ -8665,7 +9417,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_smtp_port( +corenet_udp_send_rsh_port( @@ -8685,7 +9437,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_snmp_port( +corenet_udp_send_rsync_port( @@ -8705,7 +9457,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_ssh_port( +corenet_udp_send_site_local_node( @@ -8725,7 +9477,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_swat_port( +corenet_udp_send_smbd_port( @@ -8745,7 +9497,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_syslogd_port( +corenet_udp_send_smtp_port( @@ -8765,7 +9517,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_telnetd_port( +corenet_udp_send_snmp_port( @@ -8785,7 +9537,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_tftp_port( +corenet_udp_send_ssh_port( @@ -8805,7 +9557,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_vnc_port( +corenet_udp_send_swat_port( @@ -8825,7 +9577,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_xserver_port( +corenet_udp_send_syslogd_port( @@ -8845,7 +9597,7 @@ Layer: kernel

-corenetwork_sendrecv_udp_on_zebra_port( +corenet_udp_send_telnetd_port( @@ -8859,13 +9611,13 @@ kernel

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_create_dev_node( +corenet_udp_send_tftp_port( @@ -8873,42 +9625,19 @@ kernel

domain - - , - - - - file - - - - , - - - - objectclass(es) - - )

-
-

- Create, read, and write device nodes. The node - will be transitioned to the type provided. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_create_dir( +corenet_udp_send_unspec_node( @@ -8919,22 +9648,16 @@ kernel

)

-
-

- Create a directory in the device directory. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_create_generic_chr_file( +corenet_udp_send_vnc_port( @@ -8945,22 +9668,16 @@ kernel

)

-
-

- Allow read, write, and create for generic character device files. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_del_generic_symlinks( +corenet_udp_send_xserver_port( @@ -8971,22 +9688,16 @@ kernel

)

-
-

- Delete symbolic links in device directories. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_delete_lvm_control( +corenet_udp_send_zebra_port( @@ -8997,22 +9708,16 @@ kernel

)

-
-

- Delete the lvm control device. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_dontaudit_getattr_all_blk_files( +corenet_udp_sendrecv_all_if( @@ -9025,20 +9730,20 @@ kernel

- Dontaudit getattr on all block file device nodes. +Send and receive UDP network traffic on all interfaces.

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_dontaudit_getattr_all_chr_files( +corenet_udp_sendrecv_all_nodes( @@ -9051,20 +9756,20 @@ kernel

- Dontaudit getattr on all character file device nodes. +Send and receive UDP network traffic on all nodes.

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_dontaudit_getattr_generic_blk_file( +corenet_udp_sendrecv_all_ports( @@ -9077,20 +9782,20 @@ kernel

- Dontaudit getattr on generic block devices. +Send and receive UDP network traffic on all ports.

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_dontaudit_getattr_generic_chr_file( +corenet_udp_sendrecv_all_reserved_ports( @@ -9103,20 +9808,20 @@ kernel

- Dontaudit getattr for generic character device files. +Send and receive UDP network traffic on all reserved ports.

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_dontaudit_getattr_generic_pipe( +corenet_udp_sendrecv_amanda_port( @@ -9127,22 +9832,16 @@ kernel

)

-
-

- Dontaudit getattr on generic pipes. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_dontaudit_list_all_dev_nodes( +corenet_udp_sendrecv_compat_ipv4_node( @@ -9153,22 +9852,16 @@ kernel

)

-
-

- Dontaudit attempts to list all device nodes. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_dontaudit_rw_dri_dev( +corenet_udp_sendrecv_dbskkd_port( @@ -9179,22 +9872,16 @@ kernel

)

-
-

- Dontaudit read and write on the dri devices. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_dontaudit_rw_generic_dev_nodes( +corenet_udp_sendrecv_dhcpc_port( @@ -9205,22 +9892,16 @@ kernel

)

-
-

- Dontaudit getattr for generic device files. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_getattr_agp_dev( +corenet_udp_sendrecv_dhcpd_port( @@ -9231,22 +9912,16 @@ kernel

)

-
-

- Getattr the agp devices. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_getattr_all_blk_files( +corenet_udp_sendrecv_dict_port( @@ -9257,22 +9932,16 @@ kernel

)

-
-

- Getattr on all block file device nodes. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_getattr_all_chr_files( +corenet_udp_sendrecv_dns_port( @@ -9283,22 +9952,16 @@ kernel

)

-
-

- Getattr on all character file device nodes. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_getattr_generic_blk_file( +corenet_udp_sendrecv_eth0( @@ -9309,22 +9972,16 @@ kernel

)

-
-

- Allow getattr on generic block devices. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_getattr_generic_chr_file( +corenet_udp_sendrecv_eth1( @@ -9335,22 +9992,16 @@ kernel

)

-
-

- Allow getattr for generic character device files. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_list_all_dev_nodes( +corenet_udp_sendrecv_eth2( @@ -9361,22 +10012,16 @@ kernel

)

-
-

- List all of the device nodes in a device directory. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_list_usbfs( +corenet_udp_sendrecv_fingerd_port( @@ -9390,13 +10035,13 @@ kernel

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_manage_all_blk_files( +corenet_udp_sendrecv_ftp_data_port( @@ -9407,22 +10052,16 @@ kernel

)

-
-

- Read, write, create, and delete all block device files. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_manage_all_chr_files( +corenet_udp_sendrecv_ftp_port( @@ -9433,22 +10072,16 @@ kernel

)

-
-

- Read, write, create, and delete all character device files. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_manage_dev_nodes( +corenet_udp_sendrecv_generic_if( @@ -9461,20 +10094,20 @@ kernel

- Create, delete, read, and write device nodes in device directories. +Send and Receive UDP network traffic on generic interfaces.

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_manage_generic_blk_file( +corenet_udp_sendrecv_generic_node( @@ -9487,21 +10120,20 @@ kernel

- Allow read, write, create, and delete for generic - block files. +Send and receive UDP network traffic on generic nodes.

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_manage_generic_blk_file( +corenet_udp_sendrecv_generic_port( @@ -9514,20 +10146,20 @@ kernel

- Create, delete, read, and write block device files. +Send and receive UDP network traffic on generic ports.

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_manage_generic_chr_file( +corenet_udp_sendrecv_howl_port( @@ -9538,22 +10170,16 @@ kernel

)

-
-

- Create, delete, read, and write character device files. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_manage_generic_symlinks( +corenet_udp_sendrecv_http_cache_port( @@ -9564,49 +10190,36 @@ kernel

)

-
-

- Create, delete, read, and write symbolic links in device directories. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_node( +corenet_udp_sendrecv_http_port( - object_type + domain )
-
-

- Make the passed in type a type appropriate for - use on device nodes (usually files in /dev). -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_cpuid( +corenet_udp_sendrecv_inaddr_any_node( @@ -9617,22 +10230,16 @@ kernel

)

-
-

- Read the multiplexed input device (/dev/input). -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_framebuffer( +corenet_udp_sendrecv_inetd_child_port( @@ -9643,22 +10250,16 @@ kernel

)

-
-

- Read the framebuffer device. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_input( +corenet_udp_sendrecv_innd_port( @@ -9669,22 +10270,16 @@ kernel

)

-
-

- Read the multiplexed input device (/dev/input). -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_lvm_control( +corenet_udp_sendrecv_ipp_port( @@ -9695,22 +10290,16 @@ kernel

)

-
-

- Read the lvm comtrol device. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_misc( +corenet_udp_sendrecv_ippp0( @@ -9721,22 +10310,16 @@ kernel

)

-
-

- Read miscellaneous devices. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_mouse( +corenet_udp_sendrecv_ipsec0( @@ -9747,22 +10330,16 @@ kernel

)

-
-

- Read the mouse devices. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_mtrr( +corenet_udp_sendrecv_ipsec1( @@ -9773,22 +10350,16 @@ kernel

)

-
-

- Read the mtrr device. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_rand( +corenet_udp_sendrecv_ipsec2( @@ -9799,22 +10370,16 @@ kernel

)

-
-

- Read from random devices (e.g., /dev/random) -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_raw_memory( +corenet_udp_sendrecv_kerberos_admin_port( @@ -9825,22 +10390,16 @@ kernel

)

-
-

- Read raw memory devices (e.g. /dev/mem). -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_realtime_clock( +corenet_udp_sendrecv_kerberos_master_port( @@ -9851,22 +10410,16 @@ kernel

)

-
-

- Read the realtime clock (/dev/rtc). -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_snd_dev( +corenet_udp_sendrecv_kerberos_port( @@ -9877,22 +10430,16 @@ kernel

)

-
-

- Read the sound devices. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_snd_mixer_dev( +corenet_udp_sendrecv_ktalkd_port( @@ -9903,22 +10450,16 @@ kernel

)

-
-

- Read the sound mixer devices. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_sysfs( +corenet_udp_sendrecv_ldap_port( @@ -9932,13 +10473,13 @@ kernel

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_urand( +corenet_udp_sendrecv_link_local_node( @@ -9949,22 +10490,16 @@ kernel

)

-
-

- Read from pseudo random devices (e.g., /dev/urandom) -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_read_usbfs( +corenet_udp_sendrecv_lo( @@ -9978,13 +10513,13 @@ kernel

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_relabel_all_dev_nodes( +corenet_udp_sendrecv_lo_node( @@ -9995,22 +10530,16 @@ kernel

)

-
-

- Allow full relabeling (to and from) of all device nodes. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_relabel_dev_dirs( +corenet_udp_sendrecv_mail_port( @@ -10021,22 +10550,16 @@ kernel

)

-
-

- Allow full relabeling (to and from) of directories in /dev. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_rw_agp_dev( +corenet_udp_sendrecv_mapped_ipv4_node( @@ -10047,22 +10570,16 @@ kernel

)

-
-

- Read and write the agp devices. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_rw_cpu_microcode( +corenet_udp_sendrecv_multicast_node( @@ -10073,23 +10590,16 @@ kernel

)

-
-

- Read and write the the cpu microcode device. This - is required to load cpu microcode. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_rw_dri_dev( +corenet_udp_sendrecv_mysqld_port( @@ -10100,22 +10610,16 @@ kernel

)

-
-

- Read and write the dri devices. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_rw_lvm_control( +corenet_udp_sendrecv_nmbd_port( @@ -10126,22 +10630,16 @@ kernel

)

-
-

- Read and write the lvm control device. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_rw_null_dev( +corenet_udp_sendrecv_pop_port( @@ -10152,22 +10650,16 @@ kernel

)

-
-

- Read and write to the null device (/dev/null). -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_rw_power_management( +corenet_udp_sendrecv_portmap_port( @@ -10178,22 +10670,16 @@ kernel

)

-
-

- Read and write the the power management device. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_rw_realtime_clock( +corenet_udp_sendrecv_postgresql_port( @@ -10204,22 +10690,16 @@ kernel

)

-
-

- Read the realtime clock (/dev/rtc). -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_rw_scanner( +corenet_udp_sendrecv_printer_port( @@ -10230,22 +10710,16 @@ kernel

)

-
-

- Read and write the the scanner device. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_rw_sysfs( +corenet_udp_sendrecv_pxe_port( @@ -10259,13 +10733,13 @@ kernel

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_rw_usbfs( +corenet_udp_sendrecv_radacct_port( @@ -10279,13 +10753,13 @@ kernel

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_rw_zero_dev( +corenet_udp_sendrecv_radius_port( @@ -10296,22 +10770,16 @@ kernel

)

-
-

- Read and write to the zero device (/dev/zero). -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_rwx_zero_dev( +corenet_udp_sendrecv_reserved_port( @@ -10324,20 +10792,20 @@ kernel

- Read, write, and execute the zero device (/dev/zero). +Send and receive UDP network traffic on generic reserved ports.

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_rx_raw_memory( +corenet_udp_sendrecv_rsh_port( @@ -10348,22 +10816,16 @@ kernel

)

-
-

- Read and execute raw memory devices (e.g. /dev/mem). -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_search_sysfs( +corenet_udp_sendrecv_rsync_port( @@ -10377,13 +10839,13 @@ kernel

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_search_usbfs( +corenet_udp_sendrecv_site_local_node( @@ -10397,13 +10859,13 @@ kernel

-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_setattr_all_blk_files( +corenet_udp_sendrecv_smbd_port( @@ -10414,22 +10876,16 @@ kernel

)

-
-

- Setattr on all block file device nodes. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_setattr_all_chr_files( +corenet_udp_sendrecv_smtp_port( @@ -10440,22 +10896,16 @@ kernel

)

-
-

- Setattr on all character file device nodes. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_write_framebuffer( +corenet_udp_sendrecv_snmp_port( @@ -10466,22 +10916,16 @@ kernel

)

-
-

- Write the framebuffer device. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_write_misc( +corenet_udp_sendrecv_ssh_port( @@ -10492,22 +10936,16 @@ kernel

)

-
-

- Write miscellaneous devices. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_write_mtrr( +corenet_udp_sendrecv_swat_port( @@ -10518,22 +10956,16 @@ kernel

)

-
-

- Write the mtrr device. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_write_rand( +corenet_udp_sendrecv_syslogd_port( @@ -10544,24 +10976,16 @@ kernel

)

-
-

- Write to the random device (e.g., /dev/random). This adds - entropy used to generate the random data read from the - random device. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_write_raw_memory( +corenet_udp_sendrecv_telnetd_port( @@ -10572,22 +10996,16 @@ kernel

)

-
-

- Write raw memory devices (e.g. /dev/mem). -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_write_realtime_clock( +corenet_udp_sendrecv_tftp_port( @@ -10598,22 +11016,16 @@ kernel

)

-
-

- Read the realtime clock (/dev/rtc). -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_write_snd_dev( +corenet_udp_sendrecv_unspec_node( @@ -10624,22 +11036,16 @@ kernel

)

-
-

- Write the sound devices. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_write_snd_mixer_dev( +corenet_udp_sendrecv_vnc_port( @@ -10650,22 +11056,16 @@ kernel

)

-
-

- Write the sound mixer devices. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_write_urand( +corenet_udp_sendrecv_xserver_port( @@ -10676,23 +11076,16 @@ kernel

)

-
-

- Write to the pseudo random device (e.g., /dev/urandom). This - sets the random number generator seed. -

-
-
-Module: -devices

+Module: +corenetwork

Layer: kernel

-dev_wx_raw_memory( +corenet_udp_sendrecv_zebra_port( @@ -10703,22 +11096,16 @@ kernel

)

-
-

- Write and execute raw memory devices (e.g. /dev/mem). -

-
-
-Module: -dmesg

-Layer: -admin

+Module: +corenetwork

+Layer: +kernel

-dmesg_domtrans( +corenet_use_tun_tap_device( @@ -10729,16 +11116,22 @@ admin

)

+
+

+Read and write the TUN/TAP virtual network device. +

+
+
-Module: -dmesg

-Layer: -admin

+Module: +cron

+Layer: +services

-dmesg_exec( +cron_read_pipe( @@ -10749,16 +11142,22 @@ admin

)

+
+

+Read a cron daemon unnamed pipe +

+
+
-Module: -domain

-Layer: -system

+Module: +cron

+Layer: +services

-domain_dontaudit_getattr_all_tcp_sockets( +cron_rw_log( @@ -10769,16 +11168,22 @@ system

)

+
+

+Read and write the cron daemon log files. +

+
+
-Module: -domain

-Layer: -system

+Module: +cron

+Layer: +services

-domain_dontaudit_getattr_all_udp_sockets( +cron_search_spool( @@ -10789,16 +11194,22 @@ system

)

+
+

+Search the directory containing user cron tables. +

+
+
-Module: -domain

-Layer: -system

+Module: +cron

+Layer: +services

-domain_dontaudit_getattr_all_unix_dgram_sockets( +cron_system_entry( @@ -10806,19 +11217,34 @@ system

domain + + , + + + + entrypoint + + )

+
+

+Make the specified program domain accessable +from the system cron jobs. +

+
+
-Module: -domain

-Layer: -system

+Module: +devices

+Layer: +kernel

-domain_dontaudit_getattr_all_unnamed_pipes( +dev_create_dev_node( @@ -10826,19 +11252,42 @@ system

domain + + , + + + + file + + + + , + + + + objectclass(es) + + )

+
+

+Create, read, and write device nodes. The node +will be transitioned to the type provided. +

+
+
-Module: -domain

-Layer: -system

+Module: +devices

+Layer: +kernel

-domain_dontaudit_list_all_domains_proc( +dev_create_dir( @@ -10849,16 +11298,22 @@ system

)

+
+

+Create a directory in the device directory. +

+
+
-Module: -domain

-Layer: -system

+Module: +devices

+Layer: +kernel

-domain_getsession_all_domains( +dev_create_generic_chr_file( @@ -10869,16 +11324,22 @@ system

)

+
+

+Allow read, write, and create for generic character device files. +

+
+
-Module: -domain

-Layer: -system

+Module: +devices

+Layer: +kernel

-domain_kill_all_domains( +dev_del_generic_symlinks( @@ -10889,16 +11350,22 @@ system

)

+
+

+Delete symbolic links in device directories. +

-
-Module: -domain

-Layer: -system

+

+ +
+Module: +devices

+Layer: +kernel

-domain_obj_id_change_exempt( +dev_delete_lvm_control( @@ -10909,16 +11376,22 @@ system

)

+
+

+Delete the lvm control device. +

+
+
-Module: -domain

-Layer: -system

+Module: +devices

+Layer: +kernel

-domain_read_all_domains_state( +dev_dontaudit_getattr_all_blk_files( @@ -10929,16 +11402,22 @@ system

)

+
+

+Dontaudit getattr on all block file device nodes. +

+
+
-Module: -domain

-Layer: -system

+Module: +devices

+Layer: +kernel

-domain_role_change_exempt( +dev_dontaudit_getattr_all_chr_files( @@ -10949,16 +11428,22 @@ system

)

+
+

+Dontaudit getattr on all character file device nodes. +

+
+
-Module: -domain

-Layer: -system

+Module: +devices

+Layer: +kernel

-domain_sigchld_all_domains( +dev_dontaudit_getattr_apm_bios( @@ -10969,16 +11454,23 @@ system

)

+
+

+Do not audit attempts to get the attributes of +the apm bios device node. +

+
+
-Module: -domain

-Layer: -system

+Module: +devices

+Layer: +kernel

-domain_signal_all_domains( +dev_dontaudit_getattr_generic_blk_file( @@ -10989,16 +11481,22 @@ system

)

+
+

+Dontaudit getattr on generic block devices. +

+
+
-Module: -domain

-Layer: -system

+Module: +devices

+Layer: +kernel

-domain_signull_all_domains( +dev_dontaudit_getattr_generic_chr_file( @@ -11009,16 +11507,22 @@ system

)

+
+

+Dontaudit getattr for generic character device files. +

+
+
-Module: -domain

-Layer: -system

+Module: +devices

+Layer: +kernel

-domain_sigstop_all_domains( +dev_dontaudit_getattr_generic_pipe( @@ -11029,16 +11533,22 @@ system

)

+
+

+Dontaudit getattr on generic pipes. +

+
+
-Module: -domain

-Layer: -system

+Module: +devices

+Layer: +kernel

-domain_subj_id_change_exempt( +dev_dontaudit_getattr_misc( @@ -11049,16 +11559,23 @@ system

)

+
+

+Do not audit attempts to get the attributes +of miscellaneous devices. +

+
+
-Module: -files

-Layer: -system

+Module: +devices

+Layer: +kernel

-files_create_root( +dev_dontaudit_getattr_scanner( @@ -11066,43 +11583,53 @@ system

domain - - , - - - - [ - - private type - - ] - + )
+

+ +
+

+Do not audit attempts to get the attributes of +the scanner device. +

+
+ +
+ +
+Module: +devices

+Layer: +kernel

+

+ +dev_dontaudit_getattr_video_dev( - , - - [ - - object - - ] + domain )
+
+

+Do not audit attempts to get the attributes +of video4linux device nodes. +

+
+
-Module: -files

-Layer: -system

+Module: +devices

+Layer: +kernel

-files_delete_generic_etc_files( +dev_dontaudit_list_all_dev_nodes( @@ -11113,16 +11640,22 @@ system

)

+
+

+Dontaudit attempts to list all device nodes. +

+
+
-Module: -files

-Layer: -system

+Module: +devices

+Layer: +kernel

-files_dontaudit_ioctl_all_pids( +dev_dontaudit_read_framebuffer( @@ -11133,16 +11666,22 @@ system

)

+
+

+Do not audit attempts to read the framebuffer. +

+
+
-Module: -files

-Layer: -system

+Module: +devices

+Layer: +kernel

-files_dontaudit_write_all_pids( +dev_dontaudit_rw_dri_dev( @@ -11153,16 +11692,22 @@ system

)

+
+

+Dontaudit read and write on the dri devices. +

+
+
-Module: -files

-Layer: -system

+Module: +devices

+Layer: +kernel

-files_exec_usr_files( +dev_dontaudit_rw_generic_dev_nodes( @@ -11173,16 +11718,22 @@ system

)

+
+

+Dontaudit getattr for generic device files. +

+
+
-Module: -files

-Layer: -system

+Module: +devices

+Layer: +kernel

-files_list_home( +dev_dontaudit_search_sysfs( @@ -11193,16 +11744,22 @@ system

)

+
+

+Do not audit attempts to search sysfs. +

+
+
-Module: -files

-Layer: -system

+Module: +devices

+Layer: +kernel

-files_manage_all_files( +dev_dontaudit_setattr_apm_bios( @@ -11210,31 +11767,26 @@ system

domain - - , - - - - [ - - exception_types - - ] - - )

+
+

+Do not audit attempts to set the attributes of +the apm bios device node. +

+
+
-Module: -files

-Layer: -system

+Module: +devices

+Layer: +kernel

-files_relabel_all_files( +dev_dontaudit_setattr_framebuffer( @@ -11242,111 +11794,132 @@ system

domain - - , - - - - [ - - exception_types - - ] - - )

+
+

+Dot not audit attempts to set the attributes +of the framebuffer device node. +

+
+
-Module: -files

-Layer: -system

+Module: +devices

+Layer: +kernel

-files_tmpfs_file( +dev_dontaudit_setattr_generic_blk_file( - type + domain )
+
+

+Dontaudit setattr on generic block devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_associate( +dev_dontaudit_setattr_generic_chr_file( - file_type + domain )
+
+

+Dontaudit setattr for generic character device files. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_associate_noxattr( +dev_dontaudit_setattr_misc( - file_type + domain )
+
+

+Do not audit attempts to set the attributes +of miscellaneous devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_associate_tmpfs( +dev_dontaudit_setattr_scanner( - type + domain )
+
+

+Do not audit attempts to set the attributes of +the scanner device. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_dontaudit_getattr_xattr_fs( +dev_dontaudit_setattr_video_dev( @@ -11357,16 +11930,23 @@ kernel

)

+
+

+Do not audit attempts to set the attributes +of video4linux device nodes. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_execute_cifs_files( +dev_getattr_agp_dev( @@ -11377,16 +11957,22 @@ kernel

)

+
+

+Getattr the agp devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_execute_nfs_files( +dev_getattr_all_blk_files( @@ -11397,16 +11983,22 @@ kernel

)

+
+

+Getattr on all block file device nodes. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_get_all_fs_quotas( +dev_getattr_all_chr_files( @@ -11417,16 +12009,22 @@ kernel

)

+
+

+Getattr on all character file device nodes. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_getattr_all_fs( +dev_getattr_apm_bios( @@ -11437,16 +12035,22 @@ kernel

)

+
+

+Get the attributes of the apm bios device node. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_getattr_autofs( +dev_getattr_framebuffer( @@ -11457,16 +12061,22 @@ kernel

)

+
+

+Get the attributes of the framebuffer device node. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_getattr_cifs( +dev_getattr_generic_blk_file( @@ -11477,16 +12087,22 @@ kernel

)

+
+

+Allow getattr on generic block devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_getattr_dos_fs( +dev_getattr_generic_chr_file( @@ -11497,16 +12113,22 @@ kernel

)

+
+

+Allow getattr for generic character device files. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_getattr_nfs( +dev_getattr_misc( @@ -11517,16 +12139,22 @@ kernel

)

+
+

+Get the attributes of miscellaneous devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_getattr_nfsd_fs( +dev_getattr_mouse( @@ -11537,16 +12165,22 @@ kernel

)

+
+

+Get the attributes of the mouse devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_getattr_ramfs( +dev_getattr_power_management( @@ -11557,16 +12191,22 @@ kernel

)

+
+

+Get the attributes of the the power management device. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_getattr_romfs( +dev_getattr_scanner( @@ -11577,16 +12217,22 @@ kernel

)

+
+

+Get the attributes of the scanner device. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_getattr_rpc_pipefs( +dev_getattr_snd_dev( @@ -11597,16 +12243,22 @@ kernel

)

+
+

+Get the attributes of the sound devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_getattr_tmpfs( +dev_getattr_sysfs_dir( @@ -11617,16 +12269,22 @@ kernel

)

+
+

+Get the attributes of sysfs directories. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_getattr_xattr_fs( +dev_getattr_video_dev( @@ -11637,16 +12295,22 @@ kernel

)

+
+

+Get the attributes of video4linux devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_make_fs( +dev_list_all_dev_nodes( @@ -11657,16 +12321,22 @@ kernel

)

+
+

+List all of the device nodes in a device directory. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_make_noxattr_fs( +dev_list_usbfs( @@ -11677,16 +12347,22 @@ kernel

)

+
+

+Allow caller to get a list of usb hardware. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_manage_cifs_dirs( +dev_manage_all_blk_files( @@ -11697,16 +12373,22 @@ kernel

)

+
+

+Read, write, create, and delete all block device files. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_manage_cifs_files( +dev_manage_all_chr_files( @@ -11717,16 +12399,22 @@ kernel

)

+
+

+Read, write, create, and delete all character device files. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_manage_cifs_named_pipes( +dev_manage_dev_nodes( @@ -11737,16 +12425,22 @@ kernel

)

+
+

+Create, delete, read, and write device nodes in device directories. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_manage_cifs_named_sockets( +dev_manage_generic_blk_file( @@ -11757,16 +12451,23 @@ kernel

)

+
+

+Allow read, write, create, and delete for generic +block files. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_manage_cifs_symlinks( +dev_manage_generic_blk_file( @@ -11777,16 +12478,22 @@ kernel

)

+
+

+Create, delete, read, and write block device files. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_manage_nfs_dirs( +dev_manage_generic_chr_file( @@ -11797,16 +12504,22 @@ kernel

)

+
+

+Create, delete, read, and write character device files. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_manage_nfs_files( +dev_manage_generic_symlinks( @@ -11817,16 +12530,22 @@ kernel

)

+
+

+Create, delete, read, and write symbolic links in device directories. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_manage_nfs_named_pipes( +dev_mount_usbfs( @@ -11837,36 +12556,49 @@ kernel

)

+
+

+Mount a usbfs filesystem. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_manage_nfs_named_sockets( +dev_node( - domain + object_type )
+
+

+Make the passed in type a type appropriate for +use on device nodes (usually files in /dev). +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_manage_nfs_symlinks( +dev_read_cpuid( @@ -11877,16 +12609,22 @@ kernel

)

+
+

+Read the multiplexed input device (/dev/input). +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_manage_tmpfs_block_devices( +dev_read_framebuffer( @@ -11897,16 +12635,22 @@ kernel

)

+
+

+Read the framebuffer. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_manage_tmpfs_character_devices( +dev_read_input( @@ -11917,16 +12661,22 @@ kernel

)

+
+

+Read the multiplexed input device (/dev/input). +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_mount_all_fs( +dev_read_lvm_control( @@ -11937,16 +12687,22 @@ kernel

)

+
+

+Read the lvm comtrol device. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_mount_autofs( +dev_read_misc( @@ -11957,16 +12713,22 @@ kernel

)

+
+

+Read miscellaneous devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_mount_cifs( +dev_read_mouse( @@ -11977,16 +12739,22 @@ kernel

)

+
+

+Read the mouse devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_mount_dos_fs( +dev_read_mtrr( @@ -11997,16 +12765,22 @@ kernel

)

+
+

+Read the mtrr device. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_mount_iso9660_fs( +dev_read_rand( @@ -12017,16 +12791,22 @@ kernel

)

+
+

+Read from random devices (e.g., /dev/random) +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_mount_iso9660_fs( +dev_read_raw_memory( @@ -12037,16 +12817,22 @@ kernel

)

+
+

+Read raw memory devices (e.g. /dev/mem). +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_mount_nfs( +dev_read_realtime_clock( @@ -12057,16 +12843,22 @@ kernel

)

+
+

+Read the realtime clock (/dev/rtc). +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_mount_nfs( +dev_read_snd_dev( @@ -12077,16 +12869,22 @@ kernel

)

+
+

+Read the sound devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_mount_nfsd_fs( +dev_read_snd_mixer_dev( @@ -12097,16 +12895,22 @@ kernel

)

+
+

+Read the sound mixer devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_mount_ramfs( +dev_read_sysfs( @@ -12117,16 +12921,22 @@ kernel

)

+
+

+Allow caller to read hardware state information. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_mount_romfs( +dev_read_urand( @@ -12137,16 +12947,22 @@ kernel

)

+
+

+Read from pseudo random devices (e.g., /dev/urandom) +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_mount_rpc_pipefs( +dev_read_usbfs( @@ -12157,16 +12973,23 @@ kernel

)

+
+

+Read USB hardware information using +the usbfs filesystem interface. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_mount_tmpfs( +dev_relabel_all_dev_nodes( @@ -12177,16 +13000,22 @@ kernel

)

+
+

+Allow full relabeling (to and from) of all device nodes. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_mount_xattr_fs( +dev_relabel_dev_dirs( @@ -12197,16 +13026,22 @@ kernel

)

+
+

+Allow full relabeling (to and from) of directories in /dev. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_register_binary_executable_type( +dev_relabel_generic_symlinks( @@ -12217,16 +13052,22 @@ kernel

)

+
+

+Relabel symbolic links in device directories. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_relabel_tmpfs_block_devices( +dev_rw_agp_dev( @@ -12237,16 +13078,22 @@ kernel

)

+
+

+Read and write the agp devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_relabel_tmpfs_character_devices( +dev_rw_apm_bios( @@ -12257,16 +13104,22 @@ kernel

)

+
+

+Read and write the apm bios. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_relabelfrom_dos_fs( +dev_rw_cpu_microcode( @@ -12277,16 +13130,23 @@ kernel

)

+
+

+Read and write the the cpu microcode device. This +is required to load cpu microcode. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_relabelfrom_xattr_fs( +dev_rw_dri_dev( @@ -12297,16 +13157,22 @@ kernel

)

+
+

+Read and write the dri devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_remount_all_fs( +dev_rw_lvm_control( @@ -12317,16 +13183,22 @@ kernel

)

+
+

+Read and write the lvm control device. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_remount_autofs( +dev_rw_null_dev( @@ -12337,16 +13209,22 @@ kernel

)

+
+

+Read and write to the null device (/dev/null). +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_remount_cifs( +dev_rw_power_management( @@ -12357,16 +13235,22 @@ kernel

)

+
+

+Read and write the the power management device. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_remount_dos_fs( +dev_rw_realtime_clock( @@ -12377,16 +13261,22 @@ kernel

)

+
+

+Read the realtime clock (/dev/rtc). +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_remount_iso9660_fs( +dev_rw_scanner( @@ -12397,16 +13287,22 @@ kernel

)

+
+

+Read and write the scanner device. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_remount_nfs( +dev_rw_sysfs( @@ -12417,16 +13313,22 @@ kernel

)

+
+

+Allow caller to modify hardware state information. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_remount_nfsd_fs( +dev_rw_usbfs( @@ -12437,16 +13339,22 @@ kernel

)

+
+

+Allow caller to modify usb hardware configuration files. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_remount_ramfs( +dev_rw_zero_dev( @@ -12457,16 +13365,22 @@ kernel

)

+
+

+Read and write to the zero device (/dev/zero). +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_remount_romfs( +dev_rwx_zero_dev( @@ -12477,16 +13391,22 @@ kernel

)

+
+

+Read, write, and execute the zero device (/dev/zero). +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_remount_rpc_pipefs( +dev_rx_raw_memory( @@ -12497,16 +13417,22 @@ kernel

)

+
+

+Read and execute raw memory devices (e.g. /dev/mem). +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_remount_tmpfs( +dev_search_sysfs( @@ -12517,16 +13443,22 @@ kernel

)

+
+

+Search sysfs. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_remount_xattr_fs( +dev_search_usbfs( @@ -12537,16 +13469,22 @@ kernel

)

+
+

+Search the directory containing USB hardware information. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_set_all_quotas( +dev_setattr_all_blk_files( @@ -12557,16 +13495,22 @@ kernel

)

+
+

+Setattr on all block file device nodes. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_unmount_all_fs( +dev_setattr_all_chr_files( @@ -12577,16 +13521,22 @@ kernel

)

+
+

+Setattr on all character file device nodes. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_unmount_autofs( +dev_setattr_apm_bios( @@ -12597,16 +13547,22 @@ kernel

)

+
+

+Set the attributes of the apm bios device node. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_unmount_cifs( +dev_setattr_framebuffer( @@ -12617,16 +13573,22 @@ kernel

)

+
+

+Set the attributes of the framebuffer device node. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_unmount_dos_fs( +dev_setattr_misc( @@ -12637,16 +13599,22 @@ kernel

)

+
+

+Set the attributes of miscellaneous devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_unmount_iso9660_fs( +dev_setattr_mouse( @@ -12657,16 +13625,22 @@ kernel

)

+
+

+Set the attributes of the mouse devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_unmount_nfsd_fs( +dev_setattr_power_management( @@ -12677,16 +13651,22 @@ kernel

)

+
+

+Set the attributes of the the power management device. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_unmount_ramfs( +dev_setattr_scanner( @@ -12697,16 +13677,22 @@ kernel

)

+
+

+Set the attributes of the scanner device. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_unmount_romfs( +dev_setattr_snd_dev( @@ -12717,16 +13703,22 @@ kernel

)

+
+

+Set the attributes of the sound devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_unmount_rpc_pipefs( +dev_setattr_video_dev( @@ -12737,16 +13729,22 @@ kernel

)

+
+

+Set the attributes of video4linux device nodes. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_unmount_tmpfs( +dev_write_framebuffer( @@ -12757,16 +13755,22 @@ kernel

)

+
+

+Write the framebuffer. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_unmount_xattr_fs( +dev_write_misc( @@ -12777,16 +13781,22 @@ kernel

)

+
+

+Write miscellaneous devices. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_use_tmpfs_block_devices( +dev_write_mtrr( @@ -12797,16 +13807,22 @@ kernel

)

+
+

+Write the mtrr device. +

+
+
-Module: -filesystem

+Module: +devices

Layer: kernel

-fs_use_tmpfs_character_devices( +dev_write_rand( @@ -12817,16 +13833,24 @@ kernel

)

+
+

+Write to the random device (e.g., /dev/random). This adds +entropy used to generate the random data read from the +random device. +

+
+
-Module: -getty

-Layer: -system

+Module: +devices

+Layer: +kernel

-getty_domtrans( +dev_write_raw_memory( @@ -12837,16 +13861,22 @@ system

)

+
+

+Write raw memory devices (e.g. /dev/mem). +

+
+
-Module: -getty

-Layer: -system

+Module: +devices

+Layer: +kernel

-getty_modify_config( +dev_write_realtime_clock( @@ -12857,16 +13887,22 @@ system

)

+
+

+Read the realtime clock (/dev/rtc). +

+
+
-Module: -getty

-Layer: -system

+Module: +devices

+Layer: +kernel

-getty_read_config( +dev_write_snd_dev( @@ -12877,16 +13913,22 @@ system

)

+
+

+Write the sound devices. +

+
+
-Module: -getty

-Layer: -system

+Module: +devices

+Layer: +kernel

-getty_read_log( +dev_write_snd_mixer_dev( @@ -12897,16 +13939,22 @@ system

)

+
+

+Write the sound mixer devices. +

+
+
-Module: -hostname

-Layer: -system

+Module: +devices

+Layer: +kernel

-hostname_domtrans( +dev_write_urand( @@ -12917,16 +13965,23 @@ system

)

+
+

+Write to the pseudo random device (e.g., /dev/urandom). This +sets the random number generator seed. +

+
+
-Module: -hostname

-Layer: -system

+Module: +devices

+Layer: +kernel

-hostname_exec( +dev_wx_raw_memory( @@ -12937,16 +13992,22 @@ system

)

+
+

+Write and execute raw memory devices (e.g. /dev/mem). +

+
+
-Module: -hostname

-Layer: -system

+Module: +dmesg

+Layer: +admin

-hostname_run( +dmesg_domtrans( @@ -12954,35 +14015,19 @@ system

domain - - , - - - - role - - - - , - - - - terminal - - )

-Module: -hotplug

-Layer: -system

+Module: +dmesg

+Layer: +admin

-hotplug_read_config( +dmesg_exec( @@ -12996,33 +14041,39 @@ system

-Module: -init

+Module: +domain

Layer: system

-init_read_script_process_state( +domain_base_domain_type( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -init

+Module: +domain

Layer: system

-init_rw_script_tmp_files( +domain_dontaudit_getattr_all_tcp_sockets( @@ -13036,13 +14087,13 @@ system

-Module: -iptables

+Module: +domain

Layer: system

-iptables_domtrans( +domain_dontaudit_getattr_all_udp_sockets( @@ -13056,13 +14107,13 @@ system

-Module: -iptables

+Module: +domain

Layer: system

-iptables_exec( +domain_dontaudit_getattr_all_unix_dgram_sockets( @@ -13076,13 +14127,13 @@ system

-Module: -iptables

+Module: +domain

Layer: system

-iptables_run( +domain_dontaudit_getattr_all_unnamed_pipes( @@ -13090,35 +14141,19 @@ system

domain - - , - - - - role - - - - , - - - - terminal - - )

-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_change_ring_buffer_level( +domain_dontaudit_list_all_domains_proc( @@ -13132,93 +14167,117 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_clear_ring_buffer( +domain_dontaudit_use_wide_inherit_fd( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_dontaudit_getattr_core( +domain_dyntrans_type( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_dontaudit_getattr_message_if( +domain_entry_file( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_dontaudit_getattr_unlabeled_blk_dev( +domain_exec_all_entry_files( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_dontaudit_read_ring_buffer( +domain_getsession_all_domains( @@ -13232,13 +14291,13 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_dontaudit_read_system_state( +domain_kill_all_domains( @@ -13252,13 +14311,13 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_dontaudit_search_network_sysctl_dir( +domain_obj_id_change_exempt( @@ -13272,13 +14331,13 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_dontaudit_search_sysctl_dir( +domain_read_all_domains_state( @@ -13292,33 +14351,39 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_dontaudit_use_fd( +domain_read_all_entry_files( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_get_sysvipc_info( +domain_role_change_exempt( @@ -13332,33 +14397,39 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_getattr_core( +domain_setpriority_all_domains( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_getattr_message_if( +domain_sigchld_all_domains( @@ -13372,13 +14443,13 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_kill_unlabeled( +domain_sigchld_wide_inherit_fd( @@ -13389,16 +14460,23 @@ kernel

)

+
+

+Send a SIGCHLD signal to domains whose file +discriptors are widely inheritable. +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_load_module( +domain_signal_all_domains( @@ -13412,13 +14490,13 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_read_all_sysctl( +domain_signull_all_domains( @@ -13432,13 +14510,13 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_read_device_sysctl( +domain_sigstop_all_domains( @@ -13452,13 +14530,13 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_read_fs_sysctl( +domain_subj_id_change_exempt( @@ -13472,153 +14550,195 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_read_hotplug_sysctl( +domain_type( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_read_irq_sysctl( +domain_use_wide_inherit_fd( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +domain

+Layer: +system

-kernel_read_kernel_sysctl( +domain_wide_inherit_fd( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_read_messages( +files_create_boot_flag( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_read_modprobe_sysctl( +files_create_etc_config( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_read_net_sysctl( +files_create_lock( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_read_network_state( +files_create_pid( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_read_ring_buffer( +files_create_root( @@ -13626,99 +14746,147 @@ kernel

domain + + , + + + + [ + + private type + + ] + + + + , + + + + [ + + object + + ] + + )

-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_read_software_raid_state( +files_create_tmp_files( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_read_system_state( +files_delete_all_locks( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_read_unix_sysctl( +files_delete_all_pids( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_read_vm_sysctl( +files_delete_all_tmp_files( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_relabel_unlabeled( +files_delete_etc_files( @@ -13732,33 +14900,39 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_rootfs_mountpoint( +files_delete_root_dir_entry( - directory_type + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_rw_all_sysctl( +files_dontaudit_ioctl_all_pids( @@ -13772,93 +14946,117 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_rw_device_sysctl( +files_dontaudit_read_root_file( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_rw_fs_sysctl( +files_dontaudit_rw_root_chr_dev( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_rw_hotplug_sysctl( +files_dontaudit_rw_root_file( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_rw_irq_sysctl( +files_dontaudit_search_all_dirs( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_rw_kernel_sysctl( +files_dontaudit_search_isid_type_dir( @@ -13869,56 +15067,75 @@ kernel

)

+
+

+Do not audit attempts to search directories on new filesystems +that have not yet been labeled. +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_rw_modprobe_sysctl( +files_dontaudit_search_pids( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_rw_net_sysctl( +files_dontaudit_search_var( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_rw_unix_sysctl( +files_dontaudit_write_all_pids( @@ -13932,33 +15149,39 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_rw_vm_sysctl( +files_exec_etc_files( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_share_state( +files_exec_usr_files( @@ -13972,93 +15195,117 @@ kernel

-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_sigchld_unlabeled( +files_getattr_all_files( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_signal_unlabeled( +files_getattr_generic_locks( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_signull_unlabeled( +files_list_all_dirs( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_sigstop_unlabeled( +files_list_etc( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_use_fd( +files_list_home( @@ -14069,124 +15316,152 @@ kernel

)

+
+

+Get listing of home directories. +

+
+
-Module: -kernel

-Layer: -kernel

+Module: +files

+Layer: +system

-kernel_userland_entry( - - - - - domain - +files_list_mnt( - , - - entrypoint + ? )
+
+

+Summary is missing! +

+
+
-Module: -libraries

+Module: +files

Layer: system

-libs_domtrans_ldconfig( +files_list_pids( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -libraries

+Module: +files

Layer: system

-libs_exec_ld_so( +files_list_root( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -libraries

+Module: +files

Layer: system

-libs_exec_lib_files( +files_list_spool( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -libraries

+Module: +files

Layer: system

-libs_legacy_use_ld_so( +files_lock_file( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -libraries

+Module: +files

Layer: system

-libs_legacy_use_shared_libs( +files_manage_all_files( @@ -14194,135 +15469,161 @@ system

domain - )
-

+ + , + + + + [ + + exception_types + + ] + + + )
+
-Module: -libraries

+Module: +files

Layer: system

-libs_read_lib( +files_manage_etc_files( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -libraries

+Module: +files

Layer: system

-libs_run_ldconfig( - - - - - domain - - - - , - - - - role - +files_manage_etc_runtime_files( - , - - terminal + ? )
+
+

+Summary is missing! +

+
+
-Module: -libraries

+Module: +files

Layer: system

-libs_rw_ld_so_cache( +files_manage_generic_locks( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -libraries

+Module: +files

Layer: system

-libs_use_ld_so( +files_manage_generic_spool_dirs( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -libraries

+Module: +files

Layer: system

-libs_use_shared_libs( +files_manage_generic_spools( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -locallogin

+Module: +files

Layer: system

-locallogin_domtrans( +files_manage_isid_type_blk_node( @@ -14333,16 +15634,23 @@ system

)

+
+

+Create, read, write, and delete block device nodes +on new filesystems that have not yet been labeled. +

+
+
-Module: -locallogin

+Module: +files

Layer: system

-locallogin_use_fd( +files_manage_isid_type_chr_node( @@ -14353,16 +15661,23 @@ system

)

+
+

+Create, read, write, and delete character device nodes +on new filesystems that have not yet been labeled. +

+
+
-Module: -logging

+Module: +files

Layer: system

-logging_search_logs( +files_manage_isid_type_dir( @@ -14373,16 +15688,23 @@ system

)

+
+

+Create, read, write, and delete directories +on new filesystems that have not yet been labeled. +

+
+
-Module: -lvm

+Module: +files

Layer: system

-lvm_domtrans( +files_manage_isid_type_file( @@ -14393,16 +15715,23 @@ system

)

+
+

+Create, read, write, and delete files +on new filesystems that have not yet been labeled. +

+
+
-Module: -lvm

+Module: +files

Layer: system

-lvm_read_config( +files_manage_isid_type_symlink( @@ -14413,16 +15742,23 @@ system

)

+
+

+Create, read, write, and delete symbolic links +on new filesystems that have not yet been labeled. +

+
+
-Module: -lvm

+Module: +files

Layer: system

-lvm_run( +files_manage_lost_found( @@ -14430,271 +15766,338 @@ system

domain - - , - - - - role - - - - , - - - - terminal - - )

+
+

+Create, read, write, and delete objects in +lost+found directories. +

+
+
-Module: -miscfiles

+Module: +files

Layer: system

-miscfiles_legacy_read_localization( +files_manage_urandom_seed( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -miscfiles

+Module: +files

Layer: system

-miscfiles_read_fonts( +files_mount_all_file_type_fs( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -miscfiles

+Module: +files

Layer: system

-miscfiles_read_localization( +files_mounton_all_mountpoints( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -miscfiles

+Module: +files

Layer: system

-miscfiles_read_man_pages( +files_mountpoint( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -miscfiles

+Module: +files

Layer: system

-miscfiles_rw_man_cache( +files_pid_file( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -modutils

+Module: +files

Layer: system

-modutils_domtrans_depmod( +files_read_all_pids( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -modutils

+Module: +files

Layer: system

-modutils_domtrans_insmod( +files_read_etc_files( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -modutils

+Module: +files

Layer: system

-modutils_domtrans_update_mods( +files_read_etc_runtime_files( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -modutils

+Module: +files

Layer: system

-modutils_read_kernel_module_dependencies( +files_read_generic_spools( - domain + ? )
-
- +
+

+Summary is missing! +

+
+ +
+
-Module: -modutils

+Module: +files

Layer: system

-modutils_read_module_conf( +files_read_usr_files( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -modutils

+Module: +files

Layer: system

-modutils_run_depmod( +files_read_usr_src_files( - domain + ? - - , - - - - role - + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +files

+Layer: +system

+

+ +files_read_var_files( - , - - terminal + domain )
+
+

+Read files in the /var directory. +

+
+
-Module: -modutils

+Module: +files

Layer: system

-modutils_run_insmod( +files_relabel_all_files( @@ -14707,15 +16110,11 @@ system

- role - - - - , - + [ + exception_types - terminal + ] )
@@ -14724,69 +16123,91 @@ system

-Module: -modutils

+Module: +files

Layer: system

-modutils_run_update_mods( +files_relabelto_all_file_type_fs( - domain + ? - - , - - - - role - + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +files

+Layer: +system

+

+ +files_rw_etc_files( - , - - terminal + ? )
+
+

+Summary is missing! +

+
+
-Module: -mount

+Module: +files

Layer: system

-mount_domtrans( +files_rw_generic_pids( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -mount

+Module: +files

Layer: system

-mount_run( +files_rw_isid_type_blk_node( @@ -14794,35 +16215,26 @@ system

domain - - , - - - - role - - - - , - - - - terminal - - )

+
+

+Read and write block device nodes on new filesystems +that have not yet been labeled. +

+
+
-Module: -mount

+Module: +files

Layer: system

-mount_send_nfs_client_request( +files_rw_isid_type_dir( @@ -14833,76 +16245,101 @@ system

)

+
+

+Read and write directories on new filesystems +that have not yet been labeled. +

+
+
-Module: -mount

+Module: +files

Layer: system

-mount_use_fd( +files_search_all_dirs( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -mta

-Layer: -services

+Module: +files

+Layer: +system

-mta_read_aliases( +files_search_etc( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -remotelogin

-Layer: -services

+Module: +files

+Layer: +system

-remotelogin_domtrans( +files_search_generic_locks( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -rpm

-Layer: -admin

+Module: +files

+Layer: +system

-rpm_domtrans( +files_search_home( @@ -14913,132 +16350,178 @@ admin

)

+
+

+Search home directories. +

+
+
-Module: -rpm

-Layer: -admin

+Module: +files

+Layer: +system

-rpm_read_db( +files_search_mnt( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -rpm

-Layer: -admin

+Module: +files

+Layer: +system

-rpm_read_pipe( +files_search_pids( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -rpm

-Layer: -admin

+Module: +files

+Layer: +system

-rpm_run( +files_search_spool( - domain + ? - - , - - - - role - + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +files

+Layer: +system

+

+ +files_search_tmp( - , - - terminal + domain )
+
+

+Search the tmp directory (/tmp) +

+
+
-Module: -rpm

-Layer: -admin

+Module: +files

+Layer: +system

-rpm_use_fd( +files_search_usr( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -selinux

-Layer: -kernel

+Module: +files

+Layer: +system

-selinux_compute_access_vector( +files_search_var( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -selinux

-Layer: -kernel

+Module: +files

+Layer: +system

-selinux_compute_create_context( +files_search_var_lib( @@ -15052,38 +16535,44 @@ kernel

-Module: -selinux

-Layer: -kernel

+Module: +files

+Layer: +system

-selinux_compute_relabel_context( +files_tmp_file( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -selinux

-Layer: -kernel

+Module: +files

+Layer: +system

-selinux_compute_user_contexts( +files_tmpfs_file( - domain + type )
@@ -15092,90 +16581,96 @@ kernel

-Module: -selinux

-Layer: -kernel

+Module: +files

+Layer: +system

-selinux_get_enforce_mode( +files_type( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -selinux

-Layer: -kernel

+Module: +files

+Layer: +system

-selinux_get_fs_mount( +files_unmount_all_file_type_fs( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -selinux

-Layer: -kernel

+Module: +files

+Layer: +system

-selinux_load_policy( +files_unmount_rootfs( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -selinux

+Module: +filesystem

Layer: kernel

-selinux_set_boolean( - - - - - domain - +fs_associate( - , - - - [ - - booltype - ] + file_type )
@@ -15184,18 +16679,18 @@ kernel

-Module: -selinux

+Module: +filesystem

Layer: kernel

-selinux_set_enforce_mode( +fs_associate_noxattr( - domain + file_type )
@@ -15204,18 +16699,18 @@ kernel

-Module: -selinux

+Module: +filesystem

Layer: kernel

-selinux_set_parameters( +fs_associate_tmpfs( - domain + type )
@@ -15224,33 +16719,39 @@ kernel

-Module: -selinux

+Module: +filesystem

Layer: kernel

-selinux_validate_context( +fs_create_tmpfs_data( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -sendmail

-Layer: -services

+Module: +filesystem

+Layer: +kernel

-sendmail_domtrans( +fs_dontaudit_getattr_all_fs( @@ -15264,13 +16765,13 @@ services

-Module: -selinuxutil

-Layer: -system

+Module: +filesystem

+Layer: +kernel

-seutil_domtrans_checkpol( +fs_dontaudit_getattr_xattr_fs( @@ -15284,13 +16785,13 @@ system

-Module: -selinuxutil

-Layer: -system

+Module: +filesystem

+Layer: +kernel

-seutil_domtrans_loadpol( +fs_dontaudit_rw_cifs_files( @@ -15304,13 +16805,13 @@ system

-Module: -selinuxutil

-Layer: -system

+Module: +filesystem

+Layer: +kernel

-seutil_domtrans_newrole( +fs_dontaudit_rw_nfs_files( @@ -15324,13 +16825,13 @@ system

-Module: -selinuxutil

-Layer: -system

+Module: +filesystem

+Layer: +kernel

-seutil_domtrans_restorecon( +fs_execute_cifs_files( @@ -15344,13 +16845,13 @@ system

-Module: -selinuxutil

-Layer: -system

+Module: +filesystem

+Layer: +kernel

-seutil_domtrans_runinit( +fs_execute_nfs_files( @@ -15364,13 +16865,13 @@ system

-Module: -selinuxutil

-Layer: -system

+Module: +filesystem

+Layer: +kernel

-seutil_domtrans_setfiles( +fs_get_all_fs_quotas( @@ -15384,33 +16885,39 @@ system

-Module: -selinuxutil

-Layer: -system

+Module: +filesystem

+Layer: +kernel

-seutil_dontaudit_newrole_signal( +fs_getattr_all_files( - domain + ? )
+
+

+Summary is missing! +

+
+
-Module: -selinuxutil

-Layer: -system

+Module: +filesystem

+Layer: +kernel

-seutil_relabelto_binary_pol( +fs_getattr_all_fs( @@ -15424,13 +16931,13 @@ system

-Module: -selinuxutil

-Layer: -system

+Module: +filesystem

+Layer: +kernel

-seutil_run_checkpol( +fs_getattr_autofs( @@ -15438,35 +16945,19 @@ system

domain - - , - - - - role - - - - , - - - - terminal - - )

-Module: -selinuxutil

-Layer: -system

+Module: +filesystem

+Layer: +kernel

-seutil_run_loadpol( +fs_getattr_cifs( @@ -15474,35 +16965,19 @@ system

domain - - , - - - - role - - - - , - - - - terminal - - )

-Module: -selinuxutil

-Layer: -system

+Module: +filesystem

+Layer: +kernel

-seutil_run_newrole( +fs_getattr_dos_fs( @@ -15510,35 +16985,19 @@ system

domain - - , - - - - role - - - - , - - - - terminal - - )

-Module: -selinuxutil

-Layer: -system

+Module: +filesystem

+Layer: +kernel

-seutil_run_restorecon( +fs_getattr_iso9660_fs( @@ -15546,20 +17005,24 @@ system

domain - - , - - - - role - + )
+

+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_getattr_nfs( - , - - terminal + domain )
@@ -15568,13 +17031,13 @@ system

-Module: -selinuxutil

-Layer: -system

+Module: +filesystem

+Layer: +kernel

-seutil_run_runinit( +fs_getattr_nfsd_fs( @@ -15582,20 +17045,24 @@ system

domain - - , - - - - role - + )
+

+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_getattr_ramfs( - , - - terminal + domain )
@@ -15604,13 +17071,13 @@ system

-Module: -selinuxutil

-Layer: -system

+Module: +filesystem

+Layer: +kernel

-seutil_run_setfiles( +fs_getattr_romfs( @@ -15618,20 +17085,24 @@ system

domain - - , - - - - role - + )
+

+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_getattr_rpc_pipefs( - , - - terminal + domain )
@@ -15640,13 +17111,13 @@ system

-Module: -storage

+Module: +filesystem

Layer: kernel

-storage_create_fixed_disk( +fs_getattr_tmpfs( @@ -15660,13 +17131,13 @@ kernel

-Module: -storage

+Module: +filesystem

Layer: kernel

-storage_dontaudit_getattr_fixed_disk( +fs_getattr_xattr_fs( @@ -15680,13 +17151,13 @@ kernel

-Module: -storage

+Module: +filesystem

Layer: kernel

-storage_dontaudit_getattr_removable_device( +fs_make_noxattr_fs( @@ -15700,13 +17171,13 @@ kernel

-Module: -storage

+Module: +filesystem

Layer: kernel

-storage_getattr_fixed_disk( +fs_manage_cifs_dirs( @@ -15720,13 +17191,13 @@ kernel

-Module: -storage

+Module: +filesystem

Layer: kernel

-storage_getattr_removable_device( +fs_manage_cifs_files( @@ -15740,13 +17211,13 @@ kernel

-Module: -storage

+Module: +filesystem

Layer: kernel

-storage_getattr_scsi_generic( +fs_manage_cifs_named_pipes( @@ -15760,13 +17231,13 @@ kernel

-Module: -storage

+Module: +filesystem

Layer: kernel

-storage_getattr_tape_device( +fs_manage_cifs_named_sockets( @@ -15780,13 +17251,13 @@ kernel

-Module: -storage

+Module: +filesystem

Layer: kernel

-storage_manage_fixed_disk( +fs_manage_cifs_symlinks( @@ -15800,13 +17271,7743 @@ kernel

-Module: -storage

+Module: +filesystem

Layer: kernel

-storage_raw_read_fixed_disk( +fs_manage_nfs_dirs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_manage_nfs_files( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_manage_nfs_named_pipes( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_manage_nfs_named_sockets( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_manage_nfs_symlinks( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_manage_tmpfs_blk_dev( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_manage_tmpfs_chr_dev( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_manage_tmpfs_sockets( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_manage_tmpfs_symlinks( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_mount_all_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_mount_autofs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_mount_cifs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_mount_dos_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_mount_iso9660_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_mount_nfs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_mount_nfsd_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_mount_ramfs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_mount_romfs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_mount_rpc_pipefs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_mount_tmpfs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_mount_xattr_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_read_cifs_files( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_read_cifs_files( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_read_cifs_symlinks( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_read_nfs_files( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_read_nfs_symlinks( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_register_binary_executable_type( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_relabel_tmpfs_blk_dev( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_relabel_tmpfs_chr_dev( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_relabelfrom_dos_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_relabelfrom_xattr_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_remount_all_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_remount_autofs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_remount_cifs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_remount_dos_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_remount_iso9660_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_remount_nfs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_remount_nfsd_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_remount_ramfs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_remount_romfs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_remount_rpc_pipefs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_remount_tmpfs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_remount_xattr_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_search_auto_mountpoints( + + + + + domain + + + )
+
+ +
+

+Search automount filesystem to use automatically +mounted filesystems. +

+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_set_all_quotas( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_type( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_unmount_all_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_unmount_autofs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_unmount_cifs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_unmount_dos_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_unmount_iso9660_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_unmount_nfs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_unmount_nfsd_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_unmount_ramfs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_unmount_romfs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_unmount_rpc_pipefs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_unmount_tmpfs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_unmount_xattr_fs( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_use_tmpfs_blk_dev( + + + + + domain + + + )
+
+ +
+ +
+Module: +filesystem

+Layer: +kernel

+

+ +fs_use_tmpfs_chr_dev( + + + + + domain + + + )
+
+ +
+ +
+Module: +fstools

+Layer: +system

+

+ +fstools_domtrans( + + + + + domain + + + )
+
+ +
+ +
+Module: +fstools

+Layer: +system

+

+ +fstools_exec( + + + + + domain + + + )
+
+ +
+ +
+Module: +fstools

+Layer: +system

+

+ +fstools_run( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +getty

+Layer: +system

+

+ +getty_domtrans( + + + + + domain + + + )
+
+ +
+ +
+Module: +getty

+Layer: +system

+

+ +getty_modify_config( + + + + + domain + + + )
+
+ +
+ +
+Module: +getty

+Layer: +system

+

+ +getty_read_config( + + + + + domain + + + )
+
+ +
+ +
+Module: +getty

+Layer: +system

+

+ +getty_read_log( + + + + + domain + + + )
+
+ +
+ +
+Module: +hostname

+Layer: +system

+

+ +hostname_domtrans( + + + + + domain + + + )
+
+ +
+ +
+Module: +hostname

+Layer: +system

+

+ +hostname_exec( + + + + + domain + + + )
+
+ +
+ +
+Module: +hostname

+Layer: +system

+

+ +hostname_run( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +hotplug

+Layer: +system

+

+ +hotplug_domtrans( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +hotplug

+Layer: +system

+

+ +hotplug_dontaudit_search_config( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +hotplug

+Layer: +system

+

+ +hotplug_dontaudit_use_fd( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +hotplug

+Layer: +system

+

+ +hotplug_exec( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +hotplug

+Layer: +system

+

+ +hotplug_read_config( + + + + + domain + + + )
+
+ +
+ +
+Module: +hotplug

+Layer: +system

+

+ +hotplug_use_fd( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +inetd

+Layer: +services

+

+ +inetd_core_service_domain( + + + + + domain + + + + , + + + + entrypoint + + + )
+
+ +
+

+Define the specified domain as a inetd service. +

+
+ +
+ +
+Module: +inetd

+Layer: +services

+

+ +inetd_service_domain( + + + + + domain + + + + , + + + + entrypoint + + + )
+
+ +
+

+Define the specified domain as a TCP and UDP inetd service. +

+
+ +
+ +
+Module: +inetd

+Layer: +services

+

+ +inetd_tcp_service_domain( + + + + + domain + + + + , + + + + entrypoint + + + )
+
+ +
+

+Define the specified domain as a TCP inetd service. +

+
+ +
+ +
+Module: +inetd

+Layer: +services

+

+ +inetd_udp_service_domain( + + + + + domain + + + + , + + + + entrypoint + + + )
+
+ +
+

+Define the specified domain as a UDP inetd service. +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_daemon_domain( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_domain( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_domtrans( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_domtrans_script( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_dontaudit_getattr_initctl( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_dontaudit_rw_script_pid( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_dontaudit_use_fd( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_dontaudit_use_initctl( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_dontaudit_use_script_fd( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_dontaudit_use_script_pty( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_dontaudit_write_script_pid( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_exec_script( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_get_process_group( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_get_script_process_group( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_getattr_initctl( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_read_script_pid( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_read_script_process_state( + + + + + domain + + + )
+
+ +
+

+Read the process state (/proc/pid) of the init scripts. +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_rw_script_pid( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_rw_script_pipe( + + + + + domain + + + )
+
+ +
+

+Read and write init script unnamed pipes. +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_rw_script_tmp_files( + + + + + domain + + + )
+
+ +
+

+Read and write init script temporary data. +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_sigchld( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_system_domain( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_udp_sendto_script( + + + + + domain + + + )
+
+ +
+

+Send UDP network traffic to init scripts. +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_use_fd( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_use_initctl( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_use_script_fd( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_use_script_pty( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +init

+Layer: +system

+

+ +init_write_initctl( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +iptables

+Layer: +system

+

+ +iptables_domtrans( + + + + + domain + + + )
+
+ +
+ +
+Module: +iptables

+Layer: +system

+

+ +iptables_exec( + + + + + domain + + + )
+
+ +
+ +
+Module: +iptables

+Layer: +system

+

+ +iptables_run( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +kerberos

+Layer: +services

+

+ +kerberos_read_conf( + + + + + domain + + + )
+
+ +
+

+Read the kerberos configuration file (/etc/krb5.conf). +

+
+ +
+ +
+Module: +kerberos

+Layer: +services

+

+ +kerberos_use( + + + + + domain + + + )
+
+ +
+

+Use kerberos services +

+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_change_ring_buffer_level( + + + + + domain + + + )
+
+ +
+

+Change the level of kernel messages logged to the console. +

+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_clear_ring_buffer( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_dontaudit_getattr_core( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_dontaudit_getattr_message_if( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_dontaudit_getattr_unlabeled_blk_dev( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_dontaudit_read_ring_buffer( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_dontaudit_read_system_state( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_dontaudit_search_network_sysctl_dir( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_dontaudit_search_sysctl_dir( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_dontaudit_use_fd( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_get_sysvipc_info( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_getattr_core( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_getattr_message_if( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_kill_unlabeled( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_load_module( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_all_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_device_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_fs_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_hotplug_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_irq_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_kernel_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_messages( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_modprobe_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_net_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_network_state( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_ring_buffer( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_rpc_sysctl( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_software_raid_state( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_system_state( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_unix_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_read_vm_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_relabel_unlabeled( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_rootfs_mountpoint( + + + + + directory_type + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_rw_all_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_rw_device_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_rw_fs_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_rw_hotplug_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_rw_irq_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_rw_kernel_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_rw_modprobe_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_rw_net_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_rw_rpc_sysctl( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_rw_unix_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_rw_vm_sysctl( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_share_state( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_sigchld( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_sigchld_unlabeled( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_signal_unlabeled( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_signull_unlabeled( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_sigstop_unlabeled( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_use_fd( + + + + + domain + + + )
+
+ +
+ +
+Module: +kernel

+Layer: +kernel

+

+ +kernel_userland_entry( + + + + + domain + + + + , + + + + entrypoint + + + )
+
+ +
+ +
+Module: +libraries

+Layer: +system

+

+ +libs_domtrans_ldconfig( + + + + + domain + + + )
+
+ +
+

+Execute ldconfig in the ldconfig domain. +

+
+ +
+ +
+Module: +libraries

+Layer: +system

+

+ +libs_exec_ld_so( + + + + + domain + + + )
+
+ +
+

+Execute the dynamic link/loader in the caller's domain. +

+
+ +
+ +
+Module: +libraries

+Layer: +system

+

+ +libs_exec_lib_files( + + + + + domain + + + )
+
+ +
+

+Execute library scripts in the caller domain. +

+
+ +
+ +
+Module: +libraries

+Layer: +system

+

+ +libs_legacy_use_ld_so( + + + + + domain + + + )
+
+ +
+

+Use the dynamic link/loader for automatic loading +of shared libraries with legacy support. +

+
+ +
+ +
+Module: +libraries

+Layer: +system

+

+ +libs_legacy_use_shared_libs( + + + + + domain + + + )
+
+ +
+

+Load and execute functions from shared libraries, +with legacy support. +

+
+ +
+ +
+Module: +libraries

+Layer: +system

+

+ +libs_read_lib( + + + + + domain + + + )
+
+ +
+

+Read files in the library directories, such +as static libraries. +

+
+ +
+ +
+Module: +libraries

+Layer: +system

+

+ +libs_run_ldconfig( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+

+Execute ldconfig in the ldconfig domain. +

+
+ +
+ +
+Module: +libraries

+Layer: +system

+

+ +libs_rw_ld_so_cache( + + + + + domain + + + )
+
+ +
+

+Modify the dynamic link/loader's cached listing +of shared libraries. +

+
+ +
+ +
+Module: +libraries

+Layer: +system

+

+ +libs_search_lib( + + + + + domain + + + )
+
+ +
+

+Search lib directories. +

+
+ +
+ +
+Module: +libraries

+Layer: +system

+

+ +libs_use_ld_so( + + + + + domain + + + )
+
+ +
+

+Use the dynamic link/loader for automatic loading +of shared libraries. +

+
+ +
+ +
+Module: +libraries

+Layer: +system

+

+ +libs_use_shared_libs( + + + + + domain + + + )
+
+ +
+

+Load and execute functions from shared libraries. +

+
+ +
+ +
+Module: +locallogin

+Layer: +system

+

+ +locallogin_domtrans( + + + + + domain + + + )
+
+ +
+

+Execute local logins in the local login domain. +

+
+ +
+ +
+Module: +locallogin

+Layer: +system

+

+ +locallogin_signull( + + + + + domain + + + )
+
+ +
+

+Send a null signal to local login processes. +

+
+ +
+ +
+Module: +locallogin

+Layer: +system

+

+ +locallogin_use_fd( + + + + + domain + + + )
+
+ +
+

+Allow processes to inherit local login file descriptors +

+
+ +
+ +
+Module: +logging

+Layer: +system

+

+ +logging_append_all_logs( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +logging

+Layer: +system

+

+ +logging_create_log( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +logging

+Layer: +system

+

+ +logging_dontaudit_getattr_all_logs( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +logging

+Layer: +system

+

+ +logging_exec_all_logs( + + + + + domain + + + )
+
+ +
+

+Execute all log files in the caller domain. +

+
+ +
+ +
+Module: +logging

+Layer: +system

+

+ +logging_log_file( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +logging

+Layer: +system

+

+ +logging_manage_all_logs( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +logging

+Layer: +system

+

+ +logging_read_all_logs( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +logging

+Layer: +system

+

+ +logging_read_generic_logs( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +logging

+Layer: +system

+

+ +logging_rw_generic_logs( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +logging

+Layer: +system

+

+ +logging_rw_log_dir( + + + + + domain + + + )
+
+ +
+

+Read and write the generic log directory (/var/log). +

+
+ +
+ +
+Module: +logging

+Layer: +system

+

+ +logging_search_logs( + + + + + domain + + + )
+
+ +
+ +
+Module: +logging

+Layer: +system

+

+ +logging_send_syslog_msg( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +logging

+Layer: +system

+

+ +logging_write_generic_logs( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +logrotate

+Layer: +admin

+

+ +logrotate_domtrans( + + + + + domain + + + )
+
+ +
+

+Execute logrotate in the logrotate domain. +

+
+ +
+ +
+Module: +logrotate

+Layer: +admin

+

+ +logrotate_dontaudit_use_fd( + + + + + domain + + + )
+
+ +
+

+Do not audit attempts to inherit logrotate file descriptors. +

+
+ +
+ +
+Module: +logrotate

+Layer: +admin

+

+ +logrotate_exec( + + + + + domain + + + )
+
+ +
+

+Execute logrotate in the caller domain. +

+
+ +
+ +
+Module: +logrotate

+Layer: +admin

+

+ +logrotate_run( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+

+Execute logrotate in the logrotate domain, and +allow the specified role the logrotate domain. +

+
+ +
+ +
+Module: +lvm

+Layer: +system

+

+ +lvm_domtrans( + + + + + domain + + + )
+
+ +
+ +
+Module: +lvm

+Layer: +system

+

+ +lvm_read_config( + + + + + domain + + + )
+
+ +
+ +
+Module: +lvm

+Layer: +system

+

+ +lvm_run( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +miscfiles

+Layer: +system

+

+ +miscfiles_legacy_read_localization( + + + + + domain + + + )
+
+ +
+ +
+Module: +miscfiles

+Layer: +system

+

+ +miscfiles_read_fonts( + + + + + domain + + + )
+
+ +
+ +
+Module: +miscfiles

+Layer: +system

+

+ +miscfiles_read_localization( + + + + + domain + + + )
+
+ +
+ +
+Module: +miscfiles

+Layer: +system

+

+ +miscfiles_read_man_pages( + + + + + domain + + + )
+
+ +
+ +
+Module: +miscfiles

+Layer: +system

+

+ +miscfiles_rw_man_cache( + + + + + domain + + + )
+
+ +
+ +
+Module: +modutils

+Layer: +system

+

+ +modutils_domtrans_depmod( + + + + + domain + + + )
+
+ +
+ +
+Module: +modutils

+Layer: +system

+

+ +modutils_domtrans_insmod( + + + + + domain + + + )
+
+ +
+ +
+Module: +modutils

+Layer: +system

+

+ +modutils_domtrans_update_mods( + + + + + domain + + + )
+
+ +
+ +
+Module: +modutils

+Layer: +system

+

+ +modutils_exec_depmod( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +modutils

+Layer: +system

+

+ +modutils_exec_insmod( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +modutils

+Layer: +system

+

+ +modutils_exec_update_mods( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +modutils

+Layer: +system

+

+ +modutils_read_mods_deps( + + + + + domain + + + )
+
+ +
+ +
+Module: +modutils

+Layer: +system

+

+ +modutils_read_module_conf( + + + + + domain + + + )
+
+ +
+ +
+Module: +modutils

+Layer: +system

+

+ +modutils_run_depmod( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +modutils

+Layer: +system

+

+ +modutils_run_insmod( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +modutils

+Layer: +system

+

+ +modutils_run_update_mods( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +mount

+Layer: +system

+

+ +mount_domtrans( + + + + + domain + + + )
+
+ +
+ +
+Module: +mount

+Layer: +system

+

+ +mount_run( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +mount

+Layer: +system

+

+ +mount_send_nfs_client_request( + + + + + domain + + + )
+
+ +
+ +
+Module: +mount

+Layer: +system

+

+ +mount_use_fd( + + + + + domain + + + )
+
+ +
+ +
+Module: +mta

+Layer: +services

+

+ +mta_exec( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +mta

+Layer: +services

+

+ +mta_getattr_spool( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +mta

+Layer: +services

+

+ +mta_mailserver( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +mta

+Layer: +services

+

+ +mta_manage_queue( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +mta

+Layer: +services

+

+ +mta_manage_spool( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +mta

+Layer: +services

+

+ +mta_read_aliases( + + + + + domain + + + )
+
+ +
+ +
+Module: +mta

+Layer: +services

+

+ +mta_rw_aliases( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +mta

+Layer: +services

+

+ +mta_rw_spool( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +mta

+Layer: +services

+

+ +mta_send_mail( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +mta

+Layer: +services

+

+ +mta_sendmail_mailserver( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +netutils

+Layer: +admin

+

+ +netutils_domtrans( + + + + + domain + + + )
+
+ +
+

+Execute network utilities in the netutils domain. +

+
+ +
+ +
+Module: +netutils

+Layer: +admin

+

+ +netutils_domtrans_ping( + + + + + domain + + + )
+
+ +
+

+Execute ping in the ping domain. +

+
+ +
+ +
+Module: +netutils

+Layer: +admin

+

+ +netutils_domtrans_traceroute( + + + + + domain + + + )
+
+ +
+

+Execute traceroute in the traceroute domain. +

+
+ +
+ +
+Module: +netutils

+Layer: +admin

+

+ +netutils_exec( + + + + + domain + + + )
+
+ +
+

+Execute network utilities in the caller domain. +

+
+ +
+ +
+Module: +netutils

+Layer: +admin

+

+ +netutils_exec_ping( + + + + + domain + + + )
+
+ +
+

+Execute ping in the caller domain. +

+
+ +
+ +
+Module: +netutils

+Layer: +admin

+

+ +netutils_exec_traceroute( + + + + + domain + + + )
+
+ +
+

+Execute traceroute in the caller domain. +

+
+ +
+ +
+Module: +netutils

+Layer: +admin

+

+ +netutils_run( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+

+Execute network utilities in the netutils domain, and +allow the specified role the netutils domain. +

+
+ +
+ +
+Module: +netutils

+Layer: +admin

+

+ +netutils_run_ping( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+

+Execute ping in the ping domain, and +allow the specified role the ping domain. +

+
+ +
+ +
+Module: +netutils

+Layer: +admin

+

+ +netutils_run_traceroute( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+

+Execute traceroute in the traceroute domain, and +allow the specified role the traceroute domain. +

+
+ +
+ +
+Module: +nis

+Layer: +services

+

+ +nis_list_var_yp( + + + + + domain + + + )
+
+ +
+

+Send UDP network traffic to NIS clients. +

+
+ +
+ +
+Module: +nis

+Layer: +services

+

+ +nis_udp_sendto_ypbind( + + + + + domain + + + )
+
+ +
+

+Send UDP network traffic to NIS clients. +

+
+ +
+ +
+Module: +nis

+Layer: +services

+

+ +nis_use_ypbind( + + + + + domain + + + )
+
+ +
+

+Use the ypbind service to access NIS services. +

+
+ +
+ +
+Module: +remotelogin

+Layer: +services

+

+ +remotelogin_domtrans( + + + + + domain + + + )
+
+ +
+ +
+Module: +rpm

+Layer: +admin

+

+ +rpm_domtrans( + + + + + domain + + + )
+
+ +
+

+Execute rpm programs in the rpm domain. +

+
+ +
+ +
+Module: +rpm

+Layer: +admin

+

+ +rpm_manage_db( + + + + + domain + + + )
+
+ +
+

+Create, read, write, and delete the RPM package database. +

+
+ +
+ +
+Module: +rpm

+Layer: +admin

+

+ +rpm_read_db( + + + + + domain + + + )
+
+ +
+

+Read the RPM package database. +

+
+ +
+ +
+Module: +rpm

+Layer: +admin

+

+ +rpm_read_pipe( + + + + + domain + + + )
+
+ +
+

+Read from a RPM pipe. +

+
+ +
+ +
+Module: +rpm

+Layer: +admin

+

+ +rpm_run( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+

+Execute RPM programs in the RPM domain. +

+
+ +
+ +
+Module: +rpm

+Layer: +admin

+

+ +rpm_use_fd( + + + + + domain + + + )
+
+ +
+

+Inherit and use file descriptors from RPM. +

+
+ +
+ +
+Module: +selinux

+Layer: +kernel

+

+ +selinux_compute_access_vector( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinux

+Layer: +kernel

+

+ +selinux_compute_create_context( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinux

+Layer: +kernel

+

+ +selinux_compute_relabel_context( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinux

+Layer: +kernel

+

+ +selinux_compute_user_contexts( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinux

+Layer: +kernel

+

+ +selinux_get_enforce_mode( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinux

+Layer: +kernel

+

+ +selinux_get_fs_mount( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinux

+Layer: +kernel

+

+ +selinux_load_policy( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinux

+Layer: +kernel

+

+ +selinux_set_boolean( + + + + + domain + + + + , + + + + [ + + booltype + + ] + + + )
+
+ +
+ +
+Module: +selinux

+Layer: +kernel

+

+ +selinux_set_enforce_mode( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinux

+Layer: +kernel

+

+ +selinux_set_parameters( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinux

+Layer: +kernel

+

+ +selinux_validate_context( + + + + + domain + + + )
+
+ +
+ +
+Module: +sendmail

+Layer: +services

+

+ +sendmail_domtrans( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_create_binary_pol( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_domtrans_checkpol( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_domtrans_loadpol( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_domtrans_newrole( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_domtrans_restorecon( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_domtrans_runinit( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_domtrans_setfiles( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_dontaudit_signal_newrole( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_exec_checkpol( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_exec_loadpol( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_exec_newrole( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_exec_restorecon( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_exec_setfiles( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_manage_binary_pol( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_manage_src_pol( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_read_binary_pol( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_read_config( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_read_default_contexts( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_read_file_contexts( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_read_loadpol( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_read_src_pol( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_relabelto_binary_pol( + + + + + domain + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_run_checkpol( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_run_loadpol( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_run_newrole( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_run_restorecon( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_run_runinit( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_run_setfiles( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_search_default_contexts( + + + + + domain + + + )
+
+ +
+

+Search the policy directory with default_context files. +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_sigchld_newrole( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_use_newrole_fd( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +selinuxutil

+Layer: +system

+

+ +seutil_use_runinit_fd( + + + + + ? + + + )
+
+ +
+

+Summary is missing! +

+
+ +
+ +
+Module: +ssh

+Layer: +services

+

+ +ssh_dontaudit_read_server_keys( + + + + + domain + + + )
+
+ +
+

Read ssh server keys

+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_create_fixed_disk( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_dontaudit_getattr_fixed_disk( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_dontaudit_getattr_removable_device( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_dontaudit_setattr_fixed_disk( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_dontaudit_setattr_removable_device( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_getattr_fixed_disk( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_getattr_removable_device( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_getattr_scsi_generic( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_getattr_scsi_generic( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_getattr_tape_device( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_manage_fixed_disk( + + + + + domain + + + )
+
+ +
+

+Create, read, write, and delete fixed disk device nodes. +

+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_raw_read_fixed_disk( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_raw_read_lvm_volume( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_raw_read_removable_device( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_raw_write_fixed_disk( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_raw_write_lvm_volume( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_raw_write_removable_device( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_read_scsi_generic( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_read_tape_device( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_relabel_fixed_disk( + + + + + domain + + + )
+
+ +
+

+Relabel fixed disk device nodes. +

+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_set_scsi_generic_attributes( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_setattr_fixed_disk( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_setattr_removable_device( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_setattr_scsi_generic( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_setattr_tape_device( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_swapon_fixed_disk( + + + + + domain + + + )
+
+ +
+

+Enable a fixed disk device as swap space +

+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_write_scsi_generic( + + + + + domain + + + )
+
+ +
+ +
+Module: +storage

+Layer: +kernel

+

+ +storage_write_tape_device( + + + + + domain + + + )
+
+ +
+ +
+Module: +sysnetwork

+Layer: +system

+

+ +sysnet_domtrans_dhcpc( + + + + + domain + + + )
+
+ +
+ +
+Module: +sysnetwork

+Layer: +system

+

+ +sysnet_domtrans_ifconfig( + + + + + domain + + + )
+
+ +
+ +
+Module: +sysnetwork

+Layer: +system

+

+ +sysnet_kill_dhcpc( + + + + + domain + + + )
+
+ +
+

+Send a kill signal to the dhcp client. +

+
+ +
+ +
+Module: +sysnetwork

+Layer: +system

+

+ +sysnet_read_config( + + + + + domain + + + )
+
+ +
+

+Allow network init to read network config files. +

+
+ +
+ +
+Module: +sysnetwork

+Layer: +system

+

+ +sysnet_read_dhcpc_pid( + + + + + domain + + + )
+
+ +
+

+Read the dhcp client pid file. +

+
+ +
+ +
+Module: +sysnetwork

+Layer: +system

+

+ +sysnet_read_dhcpc_state( + + + + + domain + + + )
+
+ +
+

+Read dhcp client state files. +

+
+ +
+ +
+Module: +sysnetwork

+Layer: +system

+

+ +sysnet_run_ifconfig( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
+
+ +
+ +
+Module: +sysnetwork

+Layer: +system

+

+ +sysnet_rw_dhcp_config( @@ -15817,16 +25018,22 @@ kernel

)

+
+

+Read and write dhcp configuration files. +

+
+
-Module: -storage

-Layer: -kernel

+Module: +sysnetwork

+Layer: +system

-storage_raw_read_lvm_volume( +sysnet_sigchld_dhcpc( @@ -15837,16 +25044,22 @@ kernel

)

+
+

+Send a SIGCHLD signal to the dhcp client. +

+
+
-Module: -storage

-Layer: -kernel

+Module: +sysnetwork

+Layer: +system

-storage_raw_read_removable_device( +sysnet_signal_dhcpc( @@ -15857,16 +25070,22 @@ kernel

)

+
+

+Send a generic signal to the dhcp client. +

+
+
-Module: -storage

-Layer: -kernel

+Module: +sysnetwork

+Layer: +system

-storage_raw_write_fixed_disk( +sysnet_signull_dhcpc( @@ -15877,16 +25096,22 @@ kernel

)

+
+

+Send a null signal to the dhcp client. +

+
+
-Module: -storage

-Layer: -kernel

+Module: +sysnetwork

+Layer: +system

-storage_raw_write_lvm_volume( +sysnet_sigstop_dhcpc( @@ -15897,16 +25122,22 @@ kernel

)

+
+

+Send a SIGSTOP signal to the dhcp client. +

+
+
-Module: -storage

+Module: +terminal

Layer: kernel

-storage_raw_write_removable_device( +term_create_pty( @@ -15914,19 +25145,27 @@ kernel

domain + + , + + + + pty_type + + )

-Module: -storage

+Module: +terminal

Layer: kernel

-storage_read_scsi_generic( +term_dontaudit_getattr_all_user_ttys( @@ -15940,13 +25179,13 @@ kernel

-Module: -storage

+Module: +terminal

Layer: kernel

-storage_read_tape_device( +term_dontaudit_list_ptys( @@ -15960,13 +25199,13 @@ kernel

-Module: -storage

+Module: +terminal

Layer: kernel

-storage_setattr_fixed_disk( +term_dontaudit_use_all_user_ptys( @@ -15980,13 +25219,13 @@ kernel

-Module: -storage

+Module: +terminal

Layer: kernel

-storage_setattr_removable_device( +term_dontaudit_use_all_user_ttys( @@ -16000,13 +25239,13 @@ kernel

-Module: -storage

+Module: +terminal

Layer: kernel

-storage_setattr_scsi_generic( +term_dontaudit_use_console( @@ -16020,13 +25259,13 @@ kernel

-Module: -storage

+Module: +terminal

Layer: kernel

-storage_setattr_tape_device( +term_dontaudit_use_generic_pty( @@ -16040,13 +25279,13 @@ kernel

-Module: -storage

+Module: +terminal

Layer: kernel

-storage_write_scsi_generic( +term_dontaudit_use_ptmx( @@ -16060,13 +25299,13 @@ kernel

-Module: -storage

+Module: +terminal

Layer: kernel

-storage_write_tape_device( +term_dontaudit_use_unallocated_tty( @@ -16080,13 +25319,13 @@ kernel

-Module: -sysnetwork

-Layer: -system

+Module: +terminal

+Layer: +kernel

-sysnet_domtrans_dhcpc( +term_getattr_all_user_ptys( @@ -16100,13 +25339,13 @@ system

-Module: -sysnetwork

-Layer: -system

+Module: +terminal

+Layer: +kernel

-sysnet_domtrans_ifconfig( +term_getattr_all_user_ttys( @@ -16120,13 +25359,13 @@ system

-Module: -sysnetwork

-Layer: -system

+Module: +terminal

+Layer: +kernel

-sysnet_read_config( +term_getattr_unallocated_ttys( @@ -16140,13 +25379,13 @@ system

-Module: -sysnetwork

-Layer: -system

+Module: +terminal

+Layer: +kernel

-sysnet_run_ifconfig( +term_list_ptys( @@ -16154,22 +25393,6 @@ system

domain - - , - - - - role - - - - , - - - - terminal - - )

@@ -16182,17 +25405,9 @@ Layer: kernel

-term_create_pty( - - - - - domain - +term_login_pty( - , - pty_type @@ -16210,12 +25425,12 @@ Layer: kernel

-term_dontaudit_getattr_all_user_ttys( +term_pty( - domain + pty_type )
@@ -16230,7 +25445,7 @@ Layer: kernel

-term_dontaudit_list_ptys( +term_relabel_all_user_ptys( @@ -16250,7 +25465,7 @@ Layer: kernel

-term_dontaudit_use_all_user_ptys( +term_relabel_all_user_ttys( @@ -16270,7 +25485,7 @@ Layer: kernel

-term_dontaudit_use_all_user_ttys( +term_relabel_unallocated_ttys( @@ -16290,7 +25505,7 @@ Layer: kernel

-term_dontaudit_use_console( +term_reset_tty_labels( @@ -16310,7 +25525,7 @@ Layer: kernel

-term_dontaudit_use_generic_pty( +term_setattr_all_user_ttys( @@ -16330,7 +25545,7 @@ Layer: kernel

-term_dontaudit_use_ptmx( +term_setattr_console( @@ -16350,7 +25565,7 @@ Layer: kernel

-term_dontaudit_use_unallocated_tty( +term_setattr_unallocated_ttys( @@ -16370,12 +25585,12 @@ Layer: kernel

-term_getattr_all_user_ptys( +term_tty( - domain + tty_type )
@@ -16390,7 +25605,7 @@ Layer: kernel

-term_getattr_all_user_ttys( +term_use_all_terms( @@ -16410,7 +25625,7 @@ Layer: kernel

-term_getattr_unallocated_ttys( +term_use_all_user_ptys( @@ -16430,7 +25645,7 @@ Layer: kernel

-term_list_ptys( +term_use_all_user_ttys( @@ -16450,12 +25665,12 @@ Layer: kernel

-term_pty( +term_use_console( - pty_type + domain )
@@ -16470,7 +25685,7 @@ Layer: kernel

-term_relabel_all_user_ttys( +term_use_controlling_term( @@ -16490,7 +25705,7 @@ Layer: kernel

-term_relabel_unallocated_ttys( +term_use_generic_pty( @@ -16510,7 +25725,7 @@ Layer: kernel

-term_reset_tty_labels( +term_use_unallocated_tty( @@ -16530,12 +25745,20 @@ Layer: kernel

-term_setattr_all_user_ttys( +term_user_pty( - domain + userdomain + + + + , + + + + object_type )
@@ -16550,7 +25773,7 @@ Layer: kernel

-term_setattr_console( +term_write_all_user_ttys( @@ -16570,7 +25793,7 @@ Layer: kernel

-term_setattr_unallocated_ttys( +term_write_console( @@ -16590,12 +25813,12 @@ Layer: kernel

-term_tty( +term_write_unallocated_ttys( - tty_type + domain )
@@ -16604,13 +25827,13 @@ kernel

-Module: -terminal

-Layer: -kernel

+Module: +udev

+Layer: +system

-term_use_all_terms( +udev_domtrans( @@ -16624,13 +25847,13 @@ kernel

-Module: -terminal

-Layer: -kernel

+Module: +udev

+Layer: +system

-term_use_all_user_ptys( +udev_read_db( @@ -16644,13 +25867,13 @@ kernel

-Module: -terminal

-Layer: -kernel

+Module: +udev

+Layer: +system

-term_use_all_user_ttys( +udev_rw_db( @@ -16664,13 +25887,13 @@ kernel

-Module: -terminal

-Layer: -kernel

+Module: +userdomain

+Layer: +system

-term_use_console( +userdom_dontaudit_use_sysadm_terms( @@ -16681,16 +25904,22 @@ kernel

)

+
+

+Do not audit attempts to use admin ttys and ptys. +

+
+
-Module: -terminal

-Layer: -kernel

+Module: +userdomain

+Layer: +system

-term_use_controlling_term( +userdom_dontaudit_use_unpriv_user_fd( @@ -16701,16 +25930,23 @@ kernel

)

+
+

+Do not audit attempts to inherit the +file descriptors from all user domains. +

+
+
-Module: -terminal

-Layer: -kernel

+Module: +userdomain

+Layer: +system

-term_use_generic_pty( +userdom_dontaudit_use_unpriv_user_tty( @@ -16721,16 +25957,23 @@ kernel

)

+
+

+Do not audit attempts to use unprivileged +user ttys. +

+
+
-Module: -terminal

-Layer: -kernel

+Module: +userdomain

+Layer: +system

-term_use_unallocated_tty( +userdom_read_all_user_files( @@ -16741,44 +25984,48 @@ kernel

)

+
+

+Read all files in all users home directories. +

+
+
-Module: -terminal

-Layer: -kernel

+Module: +userdomain

+Layer: +system

-term_user_pty( - - - - - userdomain - +userdom_read_staff_home_files( - , - - object_type + domain )
+
+

+Read files in the staff users home directory. +

+
+
-Module: -terminal

-Layer: -kernel

+Module: +userdomain

+Layer: +system

-term_write_all_user_ttys( +userdom_read_sysadm_home_files( @@ -16789,16 +26036,22 @@ kernel

)

+
+

+Read files in the sysadm users home directory. +

+
+
-Module: -terminal

-Layer: -kernel

+Module: +userdomain

+Layer: +system

-term_write_console( +userdom_rw_sysadm_pipe( @@ -16809,16 +26062,22 @@ kernel

)

+
+

+Read and write sysadm user unnamed pipes. +

+
+
-Module: -terminal

-Layer: -kernel

+Module: +userdomain

+Layer: +system

-term_write_unallocated_ttys( +userdom_search_all_users_home( @@ -16829,16 +26088,22 @@ kernel

)

+
+

+Search all users home directories. +

+
+
-Module: -udev

+Module: +userdomain

Layer: system

-udev_domtrans( +userdom_shell_domtrans_sysadm( @@ -16849,16 +26114,22 @@ system

)

+
+

+Execute a shell in the sysadm domain. +

+
+
-Module: -udev

+Module: +userdomain

Layer: system

-udev_read_db( +userdom_signal_all_users( @@ -16869,16 +26140,22 @@ system

)

+
+

+Send general signals to all user domains. +

+
+
-Module: -udev

+Module: +userdomain

Layer: system

-udev_rw_db( +userdom_signal_unpriv_users( @@ -16889,6 +26166,12 @@ system

)

+
+

+Send general signals to unprivileged user domains. +

+
+
@@ -16898,7 +26181,7 @@ Layer: system

-userdom_dontaudit_use_sysadm_terms( +userdom_spec_domtrans_all_users( @@ -16909,6 +26192,14 @@ system

)

+
+

+Execute a shell in all user domains. This +is an explicit transition, requiring the +caller to use setexeccon(). +

+
+
@@ -16918,7 +26209,7 @@ Layer: system

-userdom_dontaudit_use_unpriv_user_fd( +userdom_spec_domtrans_unpriv_users( @@ -16929,6 +26220,14 @@ system

)

+
+

+Execute a shell in all unprivileged user domains. This +is an explicit transition, requiring the +caller to use setexeccon(). +

+
+
@@ -16938,7 +26237,7 @@ Layer: system

-userdom_read_all_user_data( +userdom_use_all_user_fd( @@ -16949,6 +26248,12 @@ system

)

+
+

+Inherit the file descriptors from all user domains +

+
+
@@ -16958,7 +26263,7 @@ Layer: system

-userdom_search_all_users_home( +userdom_use_sysadm_fd( @@ -16969,6 +26274,12 @@ system

)

+
+

+Inherit and use sysadm file descriptors +

+
+
@@ -16978,7 +26289,7 @@ Layer: system

-userdom_shell_domtrans_sysadm( +userdom_use_sysadm_pty( @@ -16989,6 +26300,12 @@ system

)

+
+

+Read and write sysadm ptys. +

+
+
@@ -16998,7 +26315,7 @@ Layer: system

-userdom_signal_all_users( +userdom_use_sysadm_terms( @@ -17009,6 +26326,12 @@ system

)

+
+

+Read and write sysadm ttys and ptys. +

+
+
@@ -17018,7 +26341,7 @@ Layer: system

-userdom_spec_domtrans_all_users( +userdom_use_sysadm_tty( @@ -17029,6 +26352,12 @@ system

)

+
+

+Read and write sysadm ttys. +

+
+
@@ -17038,7 +26367,7 @@ Layer: system

-userdom_use_all_user_fd( +userdom_use_unpriv_users_fd( @@ -17049,6 +26378,12 @@ system

)

+
+

+Inherit the file descriptors from unprivileged user domains. +

+
+
@@ -17058,7 +26393,7 @@ Layer: system

-userdom_use_sysadm_terms( +userdom_write_unpriv_user_tmp( @@ -17069,16 +26404,22 @@ system

)

+
+

+Write all unprivileged users files in /tmp +

+
+
-Module: -userdomain

-Layer: -system

+Module: +usermanage

+Layer: +admin

-userdom_use_unpriv_users_fd( +usermanage_domtrans_chfn( @@ -17098,7 +26439,7 @@ Layer: admin

-usermanage_domtrans_chfn( +usermanage_domtrans_groupadd( @@ -17118,7 +26459,7 @@ Layer: admin

-usermanage_domtrans_groupadd( +usermanage_domtrans_passwd( @@ -17138,7 +26479,7 @@ Layer: admin

-usermanage_domtrans_passwd( +usermanage_domtrans_useradd( @@ -17158,7 +26499,7 @@ Layer: admin

-usermanage_domtrans_useradd( +usermanage_read_crack_db( @@ -17169,6 +26510,12 @@ admin

)

+
+

+Read the crack database. +

+
+
diff --git a/www/api-docs/kernel.html b/www/api-docs/kernel.html index 4add457..2a28af8 100644 --- a/www/api-docs/kernel.html +++ b/www/api-docs/kernel.html @@ -15,6 +15,12 @@
+ +  + apps
+
+ +
+ +  kernel
@@ -59,6 +65,8 @@

* Interface Index +

+ * Template Index

@@ -72,6 +80,9 @@
bootloader

-Policy for kernel threads, proc filesystem, +Policy for kernel threads, proc filesystem, and unlabeled processes and objects.

- The type of the process performing this action. +The type of the process performing this action. No @@ -131,7 +145,7 @@ No
Description

- Install a system.map into the /boot directory. +Install a system.map into the /boot directory.

Parameters
@@ -142,7 +156,48 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. + + +No +
+
+ + +
+ + +
+ +bootloader_create_modules( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! No @@ -172,8 +227,8 @@ No
Description

- Read and write the bootloader - temporary data in /tmp. +Read and write the bootloader +temporary data in /tmp.

Parameters
@@ -184,7 +239,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -214,7 +269,7 @@ No
Description

- Delete a kernel from /boot. +Delete a kernel from /boot.

Parameters
@@ -225,7 +280,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -255,7 +310,7 @@ No
Description

- Delete a system.map in the /boot directory. +Delete a system.map in the /boot directory.

Parameters
@@ -266,7 +321,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -296,7 +351,7 @@ No
Description

- Execute bootloader in the bootloader domain. +Execute bootloader in the bootloader domain.

Parameters
@@ -307,7 +362,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -337,7 +392,7 @@ No
Description

- Do not audit attempts to search the /boot directory. +Do not audit attempts to search the /boot directory.

Parameters
@@ -348,7 +403,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -378,7 +433,7 @@ No
Description

- List the contents of the kernel module directories. +List the contents of the kernel module directories.

Parameters
@@ -389,7 +444,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -419,8 +474,8 @@ No
Description

- Create, read, write, and delete - kernel module files. +Create, read, write, and delete +kernel module files.

Parameters
@@ -431,7 +486,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -461,7 +516,7 @@ No
Description

- Read the bootloader configuration file. +Read the bootloader configuration file.

Parameters
@@ -472,7 +527,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -502,7 +557,7 @@ No
Description

- Read kernel module files. +Read kernel module files.

Parameters
@@ -513,7 +568,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -543,7 +598,7 @@ No
Description

- Read system.map in the /boot directory. +Read system.map in the /boot directory.

Parameters
@@ -554,7 +609,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -600,8 +655,8 @@ No
Description

- Execute bootloader interactively and do - a domain transition to the bootloader domain. +Execute bootloader interactively and do +a domain transition to the bootloader domain.

Parameters
@@ -612,7 +667,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -622,7 +677,7 @@ No role - The role to be allowed the bootloader domain. +The role to be allowed the bootloader domain. No @@ -632,7 +687,7 @@ No terminal - The type of the terminal allow the bootloader domain to use. +The type of the terminal allow the bootloader domain to use. No @@ -662,8 +717,8 @@ No
Description

- Read and write symbolic links - in the /boot directory. +Read and write symbolic links +in the /boot directory.

Parameters
@@ -674,7 +729,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -704,8 +759,8 @@ No
Description

- Read and write the bootloader - configuration file. +Read and write the bootloader +configuration file.

Parameters
@@ -716,7 +771,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -746,8 +801,8 @@ No
Description

- Read and write the bootloader - temporary data in /tmp. +Read and write the bootloader +temporary data in /tmp.

Parameters
@@ -758,7 +813,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -773,7 +828,7 @@ No
-bootloader_search_boot_dir( +bootloader_search_boot( @@ -788,7 +843,7 @@ No
Description

- Search the /boot directory. +Search the /boot directory.

Parameters
@@ -799,7 +854,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -829,7 +884,7 @@ No
Description

- Write kernel module files. +Write kernel module files.

Parameters
@@ -840,7 +895,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -851,6 +906,9 @@ No +Return + + diff --git a/www/api-docs/kernel_corenetwork.html b/www/api-docs/kernel_corenetwork.html index 04f0ba2..aac2e08 100644 --- a/www/api-docs/kernel_corenetwork.html +++ b/www/api-docs/kernel_corenetwork.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -59,15 +65,23 @@

* Interface Index +

+ * Template Index

+

Layer: kernel

Module: corenetwork

+ + +

Description:

Policy controlling access to network objects

+ +

Interfaces:

@@ -75,7 +89,2385 @@
-corenet_raw_receive_compat_ipv4_node( +corenet_dontaudit_tcp_bind_all_reserved_ports( + + + + + domain + + + )
+
+
+ +
Summary
+

+Do not audit attempts to bind TCP sockets to all reserved ports. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process to not audit. + + +No +
+
+
+ +
+ + +
+ +corenet_dontaudit_udp_bind_all_reserved_ports( + + + + + domain + + + )
+
+
+ +
Summary
+

+Do not audit attempts to bind UDP sockets to all reserved ports. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process to not audit. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_all_if( + + + + + domain + + + )
+
+
+ +
Summary
+

+Receive raw IP packets on all interfaces. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_all_nodes( + + + + + domain + + + )
+
+
+ +
Summary
+

+Receive raw IP packets on all nodes. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_compat_ipv4_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the compat_ipv4 node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_eth0( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the eth0 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_eth1( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the eth1 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_eth2( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the eth2 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_generic_if( + + + + + domain + + + )
+
+
+ +
Summary
+

+Receive raw IP packets on generic interfaces. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_generic_node( + + + + + domain + + + )
+
+
+ +
Summary
+

+Receive raw IP packets on generic nodes. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_inaddr_any_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the inaddr_any node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_ippp0( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the ippp0 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_ipsec0( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the ipsec0 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_ipsec1( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the ipsec1 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_ipsec2( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the ipsec2 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_link_local_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the link_local node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_lo( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the lo interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_lo_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the lo node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_mapped_ipv4_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the mapped_ipv4 node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_multicast_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the multicast node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_site_local_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the site_local node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_receive_unspec_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Receive raw IP packets on the unspec node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_all_if( + + + + + domain + + + )
+
+
+ +
Summary
+

+Send raw IP packets on all interfaces. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_all_nodes( + + + + + domain + + + )
+
+
+ +
Summary
+

+Send raw IP packets on all nodes. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_compat_ipv4_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the compat_ipv4 node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_eth0( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the eth0 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_eth1( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the eth1 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_eth2( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the eth2 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_generic_if( + + + + + domain + + + )
+
+
+ +
Summary
+

+Send raw IP packets on generic interfaces. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_generic_node( + + + + + domain + + + )
+
+
+ +
Summary
+

+Send raw IP packets on generic nodes. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_inaddr_any_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the inaddr_any node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_ippp0( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the ippp0 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_ipsec0( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the ipsec0 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_ipsec1( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the ipsec1 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_ipsec2( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the ipsec2 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_link_local_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the link_local node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_lo( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the lo interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_lo_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the lo node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_mapped_ipv4_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the mapped_ipv4 node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_multicast_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the multicast node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_site_local_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the site_local node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_send_unspec_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send raw IP packets on the unspec node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_all_if( + + + + + domain + + + )
+
+
+ +
Summary
+

+Send and receive raw IP packets on all interfaces. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_all_nodes( + + + + + domain + + + )
+
+
+ +
Summary
+

+Send and receive raw IP packets on all nodes. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_compat_ipv4_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send and receive raw IP packets on the compat_ipv4 node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_eth0( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send and receive raw IP packets on the eth0 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_eth1( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send and receive raw IP packets on the eth1 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_eth2( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send and receive raw IP packets on the eth2 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_generic_if( + + + + + domain + + + )
+
+
+ +
Summary
+

+Send and receive raw IP packets on generic interfaces. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_generic_node( + + + + + domain + + + )
+
+
+ +
Summary
+

+Send and receive raw IP packets on generic nodes. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_inaddr_any_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send and receive raw IP packets on the inaddr_any node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_ippp0( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send and receive raw IP packets on the ippp0 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_ipsec0( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send and receive raw IP packets on the ipsec0 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_ipsec1( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send and receive raw IP packets on the ipsec1 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_ipsec2( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send and receive raw IP packets on the ipsec2 interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_link_local_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send and receive raw IP packets on the link_local node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_lo( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send and receive raw IP packets on the lo interface. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_lo_node( + + + + + domain + + + )
+
+
+ + +
Description
+

+Send and receive raw IP packets on the lo node. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corenet_raw_sendrecv_mapped_ipv4_node( @@ -90,7 +2482,7 @@
Description

- Receive raw IP packets on the compat_ipv4 node. +Send and receive raw IP packets on the mapped_ipv4 node.

Parameters
@@ -101,7 +2493,7 @@ domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -116,7 +2508,7 @@ No
-corenet_raw_receive_eth0( +corenet_raw_sendrecv_multicast_node( @@ -131,7 +2523,7 @@ No
Description

- Receive raw IP packets on the eth0 interface. +Send and receive raw IP packets on the multicast node.

Parameters
@@ -142,7 +2534,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -157,7 +2549,7 @@ No
-corenet_raw_receive_eth1( +corenet_raw_sendrecv_site_local_node( @@ -172,7 +2564,7 @@ No
Description

- Receive raw IP packets on the eth1 interface. +Send and receive raw IP packets on the site_local node.

Parameters
@@ -183,7 +2575,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -198,7 +2590,7 @@ No
-corenet_raw_receive_eth2( +corenet_raw_sendrecv_unspec_node( @@ -213,7 +2605,7 @@ No
Description

- Receive raw IP packets on the eth2 interface. +Send and receive raw IP packets on the unspec node.

Parameters
@@ -224,7 +2616,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -239,7 +2631,7 @@ No
-corenet_raw_receive_inaddr_any_node( +corenet_tcp_bind_all_nodes( @@ -251,12 +2643,12 @@ No
- -
Description
+
Summary

- Receive raw IP packets on the inaddr_any node. +Bind TCP sockets to all nodes.

+
Parameters
@@ -265,7 +2657,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -280,7 +2672,7 @@ No
-corenet_raw_receive_ippp0( +corenet_tcp_bind_all_ports( @@ -292,12 +2684,12 @@ No
- -
Description
+
Summary

- Receive raw IP packets on the ippp0 interface. +Bind TCP sockets to all ports.

+
Parameters
@@ -306,7 +2698,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -321,7 +2713,7 @@ No
-corenet_raw_receive_ipsec0( +corenet_tcp_bind_all_reserved_ports( @@ -333,12 +2725,12 @@ No
- -
Description
+
Summary

- Receive raw IP packets on the ipsec0 interface. +Bind TCP sockets to all reserved ports.

+
Parameters
@@ -347,7 +2739,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -362,7 +2754,7 @@ No
-corenet_raw_receive_ipsec1( +corenet_tcp_bind_amanda_port( @@ -377,7 +2769,7 @@ No
Description

- Receive raw IP packets on the ipsec1 interface. +Bind TCP sockets to the amanda port.

Parameters
@@ -388,7 +2780,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -403,7 +2795,7 @@ No
-corenet_raw_receive_ipsec2( +corenet_tcp_bind_compat_ipv4_node( @@ -418,7 +2810,7 @@ No
Description

- Receive raw IP packets on the ipsec2 interface. +Bind TCP sockets to node compat_ipv4.

Parameters
@@ -429,7 +2821,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -444,7 +2836,7 @@ No
-corenet_raw_receive_link_local_node( +corenet_tcp_bind_dbskkd_port( @@ -459,7 +2851,7 @@ No
Description

- Receive raw IP packets on the link_local node. +Bind TCP sockets to the dbskkd port.

Parameters
@@ -470,7 +2862,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -485,7 +2877,7 @@ No
-corenet_raw_receive_lo( +corenet_tcp_bind_dhcpc_port( @@ -500,7 +2892,7 @@ No
Description

- Receive raw IP packets on the lo interface. +Bind TCP sockets to the dhcpc port.

Parameters
@@ -511,7 +2903,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -526,7 +2918,7 @@ No
-corenet_raw_receive_lo_node( +corenet_tcp_bind_dhcpd_port( @@ -541,7 +2933,7 @@ No
Description

- Receive raw IP packets on the lo node. +Bind TCP sockets to the dhcpd port.

Parameters
@@ -552,7 +2944,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -567,7 +2959,7 @@ No
-corenet_raw_receive_mapped_ipv4_node( +corenet_tcp_bind_dict_port( @@ -582,7 +2974,7 @@ No
Description

- Receive raw IP packets on the mapped_ipv4 node. +Bind TCP sockets to the dict port.

Parameters
@@ -593,7 +2985,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -608,7 +3000,7 @@ No
-corenet_raw_receive_multicast_node( +corenet_tcp_bind_dns_port( @@ -623,7 +3015,7 @@ No
Description

- Receive raw IP packets on the multicast node. +Bind TCP sockets to the dns port.

Parameters
@@ -634,7 +3026,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -649,7 +3041,7 @@ No
-corenet_raw_receive_site_local_node( +corenet_tcp_bind_fingerd_port( @@ -664,7 +3056,7 @@ No
Description

- Receive raw IP packets on the site_local node. +Bind TCP sockets to the fingerd port.

Parameters
@@ -675,7 +3067,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -690,7 +3082,7 @@ No
-corenet_raw_receive_unspec_node( +corenet_tcp_bind_ftp_data_port( @@ -705,7 +3097,7 @@ No
Description

- Receive raw IP packets on the unspec node. +Bind TCP sockets to the ftp_data port.

Parameters
@@ -716,7 +3108,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -731,7 +3123,7 @@ No
-corenet_raw_send_compat_ipv4_node( +corenet_tcp_bind_ftp_port( @@ -746,7 +3138,7 @@ No
Description

- Send raw IP packets on the compat_ipv4 node. +Bind TCP sockets to the ftp port.

Parameters
@@ -757,7 +3149,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -772,7 +3164,7 @@ No
-corenet_raw_send_eth0( +corenet_tcp_bind_generic_node( @@ -784,12 +3176,12 @@ No
- -
Description
+
Summary

- Send raw IP packets on the eth0 interface. +Bind TCP sockets to generic nodes.

+
Parameters
@@ -798,7 +3190,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -813,7 +3205,7 @@ No
-corenet_raw_send_eth1( +corenet_tcp_bind_generic_port( @@ -825,12 +3217,12 @@ No
- -
Description
+
Summary

- Send raw IP packets on the eth1 interface. +Bind TCP sockets to generic ports.

+
Parameters
@@ -839,7 +3231,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -854,7 +3246,7 @@ No
-corenet_raw_send_eth2( +corenet_tcp_bind_howl_port( @@ -869,7 +3261,7 @@ No
Description

- Send raw IP packets on the eth2 interface. +Bind TCP sockets to the howl port.

Parameters
@@ -880,7 +3272,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -895,7 +3287,7 @@ No
-corenet_raw_send_inaddr_any_node( +corenet_tcp_bind_http_cache_port( @@ -910,7 +3302,7 @@ No
Description

- Send raw IP packets on the inaddr_any node. +Bind TCP sockets to the http_cache port.

Parameters
@@ -921,7 +3313,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -936,7 +3328,7 @@ No
-corenet_raw_send_ippp0( +corenet_tcp_bind_http_port( @@ -951,7 +3343,7 @@ No
Description

- Send raw IP packets on the ippp0 interface. +Bind TCP sockets to the http port.

Parameters
@@ -962,7 +3354,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -977,7 +3369,7 @@ No
-corenet_raw_send_ipsec0( +corenet_tcp_bind_inaddr_any_node( @@ -992,7 +3384,7 @@ No
Description

- Send raw IP packets on the ipsec0 interface. +Bind TCP sockets to node inaddr_any.

Parameters
@@ -1003,7 +3395,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1018,7 +3410,7 @@ No
-corenet_raw_send_ipsec1( +corenet_tcp_bind_inetd_child_port( @@ -1033,7 +3425,7 @@ No
Description

- Send raw IP packets on the ipsec1 interface. +Bind TCP sockets to the inetd_child port.

Parameters
@@ -1044,7 +3436,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1059,7 +3451,7 @@ No
-corenet_raw_send_ipsec2( +corenet_tcp_bind_innd_port( @@ -1074,7 +3466,7 @@ No
Description

- Send raw IP packets on the ipsec2 interface. +Bind TCP sockets to the innd port.

Parameters
@@ -1085,7 +3477,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1100,7 +3492,7 @@ No
-corenet_raw_send_link_local_node( +corenet_tcp_bind_ipp_port( @@ -1115,7 +3507,7 @@ No
Description

- Send raw IP packets on the link_local node. +Bind TCP sockets to the ipp port.

Parameters
@@ -1126,7 +3518,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1141,7 +3533,7 @@ No
-corenet_raw_send_lo( +corenet_tcp_bind_kerberos_admin_port( @@ -1156,7 +3548,7 @@ No
Description

- Send raw IP packets on the lo interface. +Bind TCP sockets to the kerberos_admin port.

Parameters
@@ -1167,7 +3559,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1182,7 +3574,7 @@ No
-corenet_raw_send_lo_node( +corenet_tcp_bind_kerberos_master_port( @@ -1197,7 +3589,7 @@ No
Description

- Send raw IP packets on the lo node. +Bind TCP sockets to the kerberos_master port.

Parameters
@@ -1208,7 +3600,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1223,7 +3615,7 @@ No
-corenet_raw_send_mapped_ipv4_node( +corenet_tcp_bind_kerberos_port( @@ -1238,7 +3630,7 @@ No
Description

- Send raw IP packets on the mapped_ipv4 node. +Bind TCP sockets to the kerberos port.

Parameters
@@ -1249,7 +3641,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1264,7 +3656,7 @@ No
-corenet_raw_send_multicast_node( +corenet_tcp_bind_ktalkd_port( @@ -1279,7 +3671,7 @@ No
Description

- Send raw IP packets on the multicast node. +Bind TCP sockets to the ktalkd port.

Parameters
@@ -1290,7 +3682,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1305,7 +3697,7 @@ No
-corenet_raw_send_site_local_node( +corenet_tcp_bind_ldap_port( @@ -1320,7 +3712,7 @@ No
Description

- Send raw IP packets on the site_local node. +Bind TCP sockets to the ldap port.

Parameters
@@ -1331,7 +3723,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1346,7 +3738,7 @@ No
-corenet_raw_send_unspec_node( +corenet_tcp_bind_link_local_node( @@ -1361,7 +3753,7 @@ No
Description

- Send raw IP packets on the unspec node. +Bind TCP sockets to node link_local.

Parameters
@@ -1372,7 +3764,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1387,7 +3779,7 @@ No
-corenet_raw_sendrecv_compat_ipv4_node( +corenet_tcp_bind_lo_node( @@ -1402,7 +3794,7 @@ No
Description

- Send and receive raw IP packets on the compat_ipv4 node. +Bind TCP sockets to node lo.

Parameters
@@ -1413,7 +3805,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1428,7 +3820,7 @@ No
-corenet_raw_sendrecv_eth0( +corenet_tcp_bind_mail_port( @@ -1443,7 +3835,7 @@ No
Description

- Send and receive raw IP packets on the eth0 interface. +Bind TCP sockets to the mail port.

Parameters
@@ -1454,7 +3846,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1469,7 +3861,7 @@ No
-corenet_raw_sendrecv_eth1( +corenet_tcp_bind_mapped_ipv4_node( @@ -1484,7 +3876,7 @@ No
Description

- Send and receive raw IP packets on the eth1 interface. +Bind TCP sockets to node mapped_ipv4.

Parameters
@@ -1495,7 +3887,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1510,7 +3902,7 @@ No
-corenet_raw_sendrecv_eth2( +corenet_tcp_bind_multicast_node( @@ -1525,7 +3917,7 @@ No
Description

- Send and receive raw IP packets on the eth2 interface. +Bind TCP sockets to node multicast.

Parameters
@@ -1536,7 +3928,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1551,7 +3943,7 @@ No
-corenet_raw_sendrecv_inaddr_any_node( +corenet_tcp_bind_mysqld_port( @@ -1566,7 +3958,7 @@ No
Description

- Send and receive raw IP packets on the inaddr_any node. +Bind TCP sockets to the mysqld port.

Parameters
@@ -1577,7 +3969,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1592,7 +3984,7 @@ No
-corenet_raw_sendrecv_ippp0( +corenet_tcp_bind_nmbd_port( @@ -1607,7 +3999,7 @@ No
Description

- Send and receive raw IP packets on the ippp0 interface. +Bind TCP sockets to the nmbd port.

Parameters
@@ -1618,7 +4010,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1633,7 +4025,7 @@ No
-corenet_raw_sendrecv_ipsec0( +corenet_tcp_bind_pop_port( @@ -1648,7 +4040,7 @@ No
Description

- Send and receive raw IP packets on the ipsec0 interface. +Bind TCP sockets to the pop port.

Parameters
@@ -1659,7 +4051,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1674,7 +4066,7 @@ No
-corenet_raw_sendrecv_ipsec1( +corenet_tcp_bind_portmap_port( @@ -1689,7 +4081,7 @@ No
Description

- Send and receive raw IP packets on the ipsec1 interface. +Bind TCP sockets to the portmap port.

Parameters
@@ -1700,7 +4092,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1715,7 +4107,7 @@ No
-corenet_raw_sendrecv_ipsec2( +corenet_tcp_bind_postgresql_port( @@ -1730,7 +4122,7 @@ No
Description

- Send and receive raw IP packets on the ipsec2 interface. +Bind TCP sockets to the postgresql port.

Parameters
@@ -1741,7 +4133,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1756,7 +4148,7 @@ No
-corenet_raw_sendrecv_link_local_node( +corenet_tcp_bind_printer_port( @@ -1771,7 +4163,7 @@ No
Description

- Send and receive raw IP packets on the link_local node. +Bind TCP sockets to the printer port.

Parameters
@@ -1782,7 +4174,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1797,7 +4189,7 @@ No
-corenet_raw_sendrecv_lo( +corenet_tcp_bind_pxe_port( @@ -1812,7 +4204,7 @@ No
Description

- Send and receive raw IP packets on the lo interface. +Bind TCP sockets to the pxe port.

Parameters
@@ -1823,7 +4215,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1838,7 +4230,7 @@ No
-corenet_raw_sendrecv_lo_node( +corenet_tcp_bind_radacct_port( @@ -1853,7 +4245,7 @@ No
Description

- Send and receive raw IP packets on the lo node. +Bind TCP sockets to the radacct port.

Parameters
@@ -1864,7 +4256,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1879,7 +4271,7 @@ No
-corenet_raw_sendrecv_mapped_ipv4_node( +corenet_tcp_bind_radius_port( @@ -1894,7 +4286,7 @@ No
Description

- Send and receive raw IP packets on the mapped_ipv4 node. +Bind TCP sockets to the radius port.

Parameters
@@ -1905,7 +4297,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1920,7 +4312,7 @@ No
-corenet_raw_sendrecv_multicast_node( +corenet_tcp_bind_reserved_port( @@ -1932,12 +4324,12 @@ No
- -
Description
+
Summary

- Send and receive raw IP packets on the multicast node. +Bind TCP sockets to generic reserved ports.

+
Parameters
@@ -1946,7 +4338,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -1961,7 +4353,7 @@ No
-corenet_raw_sendrecv_site_local_node( +corenet_tcp_bind_rsh_port( @@ -1976,7 +4368,7 @@ No
Description

- Send and receive raw IP packets on the site_local node. +Bind TCP sockets to the rsh port.

Parameters
@@ -1987,7 +4379,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2002,7 +4394,7 @@ No
-corenet_raw_sendrecv_unspec_node( +corenet_tcp_bind_rsync_port( @@ -2017,7 +4409,7 @@ No
Description

- Send and receive raw IP packets on the unspec node. +Bind TCP sockets to the rsync port.

Parameters
@@ -2028,7 +4420,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2043,7 +4435,7 @@ No
-corenet_tcp_bind_amanda_port( +corenet_tcp_bind_site_local_node( @@ -2058,7 +4450,7 @@ No
Description

- Bind TCP sockets to the amanda port. +Bind TCP sockets to node site_local.

Parameters
@@ -2069,7 +4461,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2084,7 +4476,7 @@ No
-corenet_tcp_bind_compat_ipv4_node( +corenet_tcp_bind_smbd_port( @@ -2099,7 +4491,7 @@ No
Description

- Bind TCP sockets to node compat_ipv4. +Bind TCP sockets to the smbd port.

Parameters
@@ -2110,7 +4502,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2125,7 +4517,7 @@ No
-corenet_tcp_bind_dbskkd_port( +corenet_tcp_bind_smtp_port( @@ -2140,7 +4532,7 @@ No
Description

- Bind TCP sockets to the dbskkd port. +Bind TCP sockets to the smtp port.

Parameters
@@ -2151,7 +4543,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2166,7 +4558,7 @@ No
-corenet_tcp_bind_dhcpc_port( +corenet_tcp_bind_snmp_port( @@ -2181,7 +4573,7 @@ No
Description

- Bind TCP sockets to the dhcpc port. +Bind TCP sockets to the snmp port.

Parameters
@@ -2192,7 +4584,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2207,7 +4599,7 @@ No
-corenet_tcp_bind_dhcpd_port( +corenet_tcp_bind_ssh_port( @@ -2222,7 +4614,7 @@ No
Description

- Bind TCP sockets to the dhcpd port. +Bind TCP sockets to the ssh port.

Parameters
@@ -2233,7 +4625,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2248,7 +4640,7 @@ No
-corenet_tcp_bind_dict_port( +corenet_tcp_bind_swat_port( @@ -2263,7 +4655,7 @@ No
Description

- Bind TCP sockets to the dict port. +Bind TCP sockets to the swat port.

Parameters
@@ -2274,7 +4666,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2289,7 +4681,7 @@ No
-corenet_tcp_bind_dns_port( +corenet_tcp_bind_syslogd_port( @@ -2304,7 +4696,7 @@ No
Description

- Bind TCP sockets to the dns port. +Bind TCP sockets to the syslogd port.

Parameters
@@ -2315,7 +4707,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2330,7 +4722,7 @@ No
-corenet_tcp_bind_fingerd_port( +corenet_tcp_bind_telnetd_port( @@ -2345,7 +4737,7 @@ No
Description

- Bind TCP sockets to the fingerd port. +Bind TCP sockets to the telnetd port.

Parameters
@@ -2356,7 +4748,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2371,7 +4763,7 @@ No
-corenet_tcp_bind_ftp_data_port( +corenet_tcp_bind_tftp_port( @@ -2386,7 +4778,7 @@ No
Description

- Bind TCP sockets to the ftp_data port. +Bind TCP sockets to the tftp port.

Parameters
@@ -2397,7 +4789,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2412,7 +4804,7 @@ No
-corenet_tcp_bind_ftp_port( +corenet_tcp_bind_unspec_node( @@ -2427,7 +4819,7 @@ No
Description

- Bind TCP sockets to the ftp port. +Bind TCP sockets to node unspec.

Parameters
@@ -2438,7 +4830,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2453,7 +4845,7 @@ No
-corenet_tcp_bind_howl_port( +corenet_tcp_bind_vnc_port( @@ -2468,7 +4860,7 @@ No
Description

- Bind TCP sockets to the howl port. +Bind TCP sockets to the vnc port.

Parameters
@@ -2479,7 +4871,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2494,7 +4886,7 @@ No
-corenet_tcp_bind_http_cache_port( +corenet_tcp_bind_xserver_port( @@ -2509,7 +4901,7 @@ No
Description

- Bind TCP sockets to the http_cache port. +Bind TCP sockets to the xserver port.

Parameters
@@ -2520,7 +4912,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2535,7 +4927,7 @@ No
-corenet_tcp_bind_http_port( +corenet_tcp_bind_zebra_port( @@ -2550,7 +4942,7 @@ No
Description

- Bind TCP sockets to the http port. +Bind TCP sockets to the zebra port.

Parameters
@@ -2561,7 +4953,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2576,7 +4968,7 @@ No
-corenet_tcp_bind_inaddr_any_node( +corenet_tcp_sendrecv_all_if( @@ -2588,12 +4980,12 @@ No
- -
Description
+
Summary

- Bind TCP sockets to node inaddr_any. +Send and receive TCP network traffic on all interfaces.

+
Parameters
@@ -2602,7 +4994,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -2617,7 +5009,7 @@ No
-corenet_tcp_bind_inetd_child_port( +corenet_tcp_sendrecv_all_nodes( @@ -2629,12 +5021,12 @@ No
- -
Description
+
Summary

- Bind TCP sockets to the inetd_child port. +Send and receive TCP network traffic on all nodes.

+
Parameters
@@ -2643,7 +5035,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -2658,7 +5050,7 @@ No
-corenet_tcp_bind_innd_port( +corenet_tcp_sendrecv_all_ports( @@ -2670,12 +5062,12 @@ No
- -
Description
+
Summary

- Bind TCP sockets to the innd port. +Send and receive TCP network traffic on all ports.

+
Parameters
@@ -2684,7 +5076,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -2699,7 +5091,7 @@ No
-corenet_tcp_bind_ipp_port( +corenet_tcp_sendrecv_all_reserved_ports( @@ -2711,12 +5103,12 @@ No
- -
Description
+
Summary

- Bind TCP sockets to the ipp port. +Send and receive TCP network traffic on all reserved ports.

+
Parameters
@@ -2725,7 +5117,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -2740,7 +5132,7 @@ No
-corenet_tcp_bind_kerberos_admin_port( +corenet_tcp_sendrecv_amanda_port( @@ -2755,7 +5147,7 @@ No
Description

- Bind TCP sockets to the kerberos_admin port. +Send and receive TCP traffic on the amanda port.

Parameters
@@ -2766,7 +5158,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2781,7 +5173,7 @@ No
-corenet_tcp_bind_kerberos_master_port( +corenet_tcp_sendrecv_compat_ipv4_node( @@ -2796,7 +5188,7 @@ No
Description

- Bind TCP sockets to the kerberos_master port. +Send and receive TCP traffic on the compat_ipv4 node.

Parameters
@@ -2807,7 +5199,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2822,7 +5214,7 @@ No
-corenet_tcp_bind_kerberos_port( +corenet_tcp_sendrecv_dbskkd_port( @@ -2837,7 +5229,7 @@ No
Description

- Bind TCP sockets to the kerberos port. +Send and receive TCP traffic on the dbskkd port.

Parameters
@@ -2848,7 +5240,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2863,7 +5255,7 @@ No
-corenet_tcp_bind_ktalkd_port( +corenet_tcp_sendrecv_dhcpc_port( @@ -2878,7 +5270,7 @@ No
Description

- Bind TCP sockets to the ktalkd port. +Send and receive TCP traffic on the dhcpc port.

Parameters
@@ -2889,7 +5281,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2904,7 +5296,7 @@ No
-corenet_tcp_bind_ldap_port( +corenet_tcp_sendrecv_dhcpd_port( @@ -2919,7 +5311,7 @@ No
Description

- Bind TCP sockets to the ldap port. +Send and receive TCP traffic on the dhcpd port.

Parameters
@@ -2930,7 +5322,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2945,7 +5337,7 @@ No
-corenet_tcp_bind_link_local_node( +corenet_tcp_sendrecv_dict_port( @@ -2960,7 +5352,7 @@ No
Description

- Bind TCP sockets to node link_local. +Send and receive TCP traffic on the dict port.

Parameters
@@ -2971,7 +5363,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2986,7 +5378,7 @@ No
-corenet_tcp_bind_lo_node( +corenet_tcp_sendrecv_dns_port( @@ -3001,7 +5393,7 @@ No
Description

- Bind TCP sockets to node lo. +Send and receive TCP traffic on the dns port.

Parameters
@@ -3012,7 +5404,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3027,7 +5419,7 @@ No
-corenet_tcp_bind_mail_port( +corenet_tcp_sendrecv_eth0( @@ -3042,7 +5434,7 @@ No
Description

- Bind TCP sockets to the mail port. +Send and receive TCP network traffic on the eth0 interface.

Parameters
@@ -3053,7 +5445,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3068,7 +5460,7 @@ No
-corenet_tcp_bind_mapped_ipv4_node( +corenet_tcp_sendrecv_eth1( @@ -3083,7 +5475,7 @@ No
Description

- Bind TCP sockets to node mapped_ipv4. +Send and receive TCP network traffic on the eth1 interface.

Parameters
@@ -3094,7 +5486,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3109,7 +5501,7 @@ No
-corenet_tcp_bind_multicast_node( +corenet_tcp_sendrecv_eth2( @@ -3124,7 +5516,7 @@ No
Description

- Bind TCP sockets to node multicast. +Send and receive TCP network traffic on the eth2 interface.

Parameters
@@ -3135,7 +5527,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3150,7 +5542,7 @@ No
-corenet_tcp_bind_mysqld_port( +corenet_tcp_sendrecv_fingerd_port( @@ -3165,7 +5557,7 @@ No
Description

- Bind TCP sockets to the mysqld port. +Send and receive TCP traffic on the fingerd port.

Parameters
@@ -3176,7 +5568,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3191,7 +5583,7 @@ No
-corenet_tcp_bind_nmbd_port( +corenet_tcp_sendrecv_ftp_data_port( @@ -3206,7 +5598,7 @@ No
Description

- Bind TCP sockets to the nmbd port. +Send and receive TCP traffic on the ftp_data port.

Parameters
@@ -3217,7 +5609,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3232,7 +5624,7 @@ No
-corenet_tcp_bind_pop_port( +corenet_tcp_sendrecv_ftp_port( @@ -3247,7 +5639,7 @@ No
Description

- Bind TCP sockets to the pop port. +Send and receive TCP traffic on the ftp port.

Parameters
@@ -3258,7 +5650,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3273,7 +5665,7 @@ No
-corenet_tcp_bind_portmap_port( +corenet_tcp_sendrecv_generic_if( @@ -3285,12 +5677,12 @@ No
- -
Description
+
Summary

- Bind TCP sockets to the portmap port. +Send and receive TCP network traffic on the generic interfaces.

+
Parameters
@@ -3299,7 +5691,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -3314,7 +5706,7 @@ No
-corenet_tcp_bind_postgresql_port( +corenet_tcp_sendrecv_generic_node( @@ -3326,12 +5718,12 @@ No
- -
Description
+
Summary

- Bind TCP sockets to the postgresql port. +Send and receive TCP network traffic on generic nodes.

+
Parameters
@@ -3340,7 +5732,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -3355,7 +5747,7 @@ No
-corenet_tcp_bind_printer_port( +corenet_tcp_sendrecv_generic_port( @@ -3367,12 +5759,12 @@ No
- -
Description
+
Summary

- Bind TCP sockets to the printer port. +Send and receive TCP network traffic on generic ports.

+
Parameters
@@ -3381,7 +5773,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -3396,7 +5788,7 @@ No
-corenet_tcp_bind_pxe_port( +corenet_tcp_sendrecv_howl_port( @@ -3411,7 +5803,7 @@ No
Description

- Bind TCP sockets to the pxe port. +Send and receive TCP traffic on the howl port.

Parameters
@@ -3422,7 +5814,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3437,7 +5829,7 @@ No
-corenet_tcp_bind_radacct_port( +corenet_tcp_sendrecv_http_cache_port( @@ -3452,7 +5844,7 @@ No
Description

- Bind TCP sockets to the radacct port. +Send and receive TCP traffic on the http_cache port.

Parameters
@@ -3463,7 +5855,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3478,7 +5870,7 @@ No
-corenet_tcp_bind_radius_port( +corenet_tcp_sendrecv_http_port( @@ -3493,7 +5885,7 @@ No
Description

- Bind TCP sockets to the radius port. +Send and receive TCP traffic on the http port.

Parameters
@@ -3504,7 +5896,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3519,7 +5911,7 @@ No
-corenet_tcp_bind_rsh_port( +corenet_tcp_sendrecv_inaddr_any_node( @@ -3534,7 +5926,7 @@ No
Description

- Bind TCP sockets to the rsh port. +Send and receive TCP traffic on the inaddr_any node.

Parameters
@@ -3545,7 +5937,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3560,7 +5952,7 @@ No
-corenet_tcp_bind_rsync_port( +corenet_tcp_sendrecv_inetd_child_port( @@ -3575,7 +5967,7 @@ No
Description

- Bind TCP sockets to the rsync port. +Send and receive TCP traffic on the inetd_child port.

Parameters
@@ -3586,7 +5978,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3601,7 +5993,7 @@ No
-corenet_tcp_bind_site_local_node( +corenet_tcp_sendrecv_innd_port( @@ -3616,7 +6008,7 @@ No
Description

- Bind TCP sockets to node site_local. +Send and receive TCP traffic on the innd port.

Parameters
@@ -3627,7 +6019,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3642,7 +6034,7 @@ No
-corenet_tcp_bind_smbd_port( +corenet_tcp_sendrecv_ipp_port( @@ -3657,7 +6049,7 @@ No
Description

- Bind TCP sockets to the smbd port. +Send and receive TCP traffic on the ipp port.

Parameters
@@ -3668,7 +6060,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3683,7 +6075,7 @@ No
-corenet_tcp_bind_smtp_port( +corenet_tcp_sendrecv_ippp0( @@ -3698,7 +6090,7 @@ No
Description

- Bind TCP sockets to the smtp port. +Send and receive TCP network traffic on the ippp0 interface.

Parameters
@@ -3709,7 +6101,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3724,7 +6116,7 @@ No
-corenet_tcp_bind_snmp_port( +corenet_tcp_sendrecv_ipsec0( @@ -3739,7 +6131,7 @@ No
Description

- Bind TCP sockets to the snmp port. +Send and receive TCP network traffic on the ipsec0 interface.

Parameters
@@ -3750,7 +6142,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3765,7 +6157,7 @@ No
-corenet_tcp_bind_ssh_port( +corenet_tcp_sendrecv_ipsec1( @@ -3780,7 +6172,7 @@ No
Description

- Bind TCP sockets to the ssh port. +Send and receive TCP network traffic on the ipsec1 interface.

Parameters
@@ -3791,7 +6183,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3806,7 +6198,7 @@ No
-corenet_tcp_bind_swat_port( +corenet_tcp_sendrecv_ipsec2( @@ -3821,7 +6213,7 @@ No
Description

- Bind TCP sockets to the swat port. +Send and receive TCP network traffic on the ipsec2 interface.

Parameters
@@ -3832,7 +6224,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3847,7 +6239,7 @@ No
-corenet_tcp_bind_syslogd_port( +corenet_tcp_sendrecv_kerberos_admin_port( @@ -3862,7 +6254,7 @@ No
Description

- Bind TCP sockets to the syslogd port. +Send and receive TCP traffic on the kerberos_admin port.

Parameters
@@ -3873,7 +6265,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3888,7 +6280,7 @@ No
-corenet_tcp_bind_telnetd_port( +corenet_tcp_sendrecv_kerberos_master_port( @@ -3903,7 +6295,7 @@ No
Description

- Bind TCP sockets to the telnetd port. +Send and receive TCP traffic on the kerberos_master port.

Parameters
@@ -3914,7 +6306,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3929,7 +6321,7 @@ No
-corenet_tcp_bind_tftp_port( +corenet_tcp_sendrecv_kerberos_port( @@ -3944,7 +6336,7 @@ No
Description

- Bind TCP sockets to the tftp port. +Send and receive TCP traffic on the kerberos port.

Parameters
@@ -3955,7 +6347,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -3970,7 +6362,7 @@ No
-corenet_tcp_bind_unspec_node( +corenet_tcp_sendrecv_ktalkd_port( @@ -3985,7 +6377,7 @@ No
Description

- Bind TCP sockets to node unspec. +Send and receive TCP traffic on the ktalkd port.

Parameters
@@ -3996,7 +6388,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4011,7 +6403,7 @@ No
-corenet_tcp_bind_vnc_port( +corenet_tcp_sendrecv_ldap_port( @@ -4026,7 +6418,7 @@ No
Description

- Bind TCP sockets to the vnc port. +Send and receive TCP traffic on the ldap port.

Parameters
@@ -4037,7 +6429,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4052,7 +6444,7 @@ No
-corenet_tcp_bind_xserver_port( +corenet_tcp_sendrecv_link_local_node( @@ -4067,7 +6459,7 @@ No
Description

- Bind TCP sockets to the xserver port. +Send and receive TCP traffic on the link_local node.

Parameters
@@ -4078,7 +6470,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4093,7 +6485,7 @@ No
-corenet_tcp_bind_zebra_port( +corenet_tcp_sendrecv_lo( @@ -4108,7 +6500,7 @@ No
Description

- Bind TCP sockets to the zebra port. +Send and receive TCP network traffic on the lo interface.

Parameters
@@ -4119,7 +6511,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4134,7 +6526,7 @@ No
-corenet_tcp_sendrecv_amanda_port( +corenet_tcp_sendrecv_lo_node( @@ -4149,7 +6541,7 @@ No
Description

- Send and receive TCP traffic on the amanda port. +Send and receive TCP traffic on the lo node.

Parameters
@@ -4160,7 +6552,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4175,7 +6567,7 @@ No
-corenet_tcp_sendrecv_compat_ipv4_node( +corenet_tcp_sendrecv_mail_port( @@ -4190,7 +6582,7 @@ No
Description

- Send and receive TCP traffic on the compat_ipv4 node. +Send and receive TCP traffic on the mail port.

Parameters
@@ -4201,7 +6593,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4216,7 +6608,7 @@ No
-corenet_tcp_sendrecv_dbskkd_port( +corenet_tcp_sendrecv_mapped_ipv4_node( @@ -4231,7 +6623,7 @@ No
Description

- Send and receive TCP traffic on the dbskkd port. +Send and receive TCP traffic on the mapped_ipv4 node.

Parameters
@@ -4242,7 +6634,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4257,7 +6649,7 @@ No
-corenet_tcp_sendrecv_dhcpc_port( +corenet_tcp_sendrecv_multicast_node( @@ -4272,7 +6664,7 @@ No
Description

- Send and receive TCP traffic on the dhcpc port. +Send and receive TCP traffic on the multicast node.

Parameters
@@ -4283,7 +6675,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4298,7 +6690,7 @@ No
-corenet_tcp_sendrecv_dhcpd_port( +corenet_tcp_sendrecv_mysqld_port( @@ -4313,7 +6705,7 @@ No
Description

- Send and receive TCP traffic on the dhcpd port. +Send and receive TCP traffic on the mysqld port.

Parameters
@@ -4324,7 +6716,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4339,7 +6731,7 @@ No
-corenet_tcp_sendrecv_dict_port( +corenet_tcp_sendrecv_nmbd_port( @@ -4354,7 +6746,7 @@ No
Description

- Send and receive TCP traffic on the dict port. +Send and receive TCP traffic on the nmbd port.

Parameters
@@ -4365,7 +6757,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4380,7 +6772,7 @@ No
-corenet_tcp_sendrecv_dns_port( +corenet_tcp_sendrecv_pop_port( @@ -4395,7 +6787,7 @@ No
Description

- Send and receive TCP traffic on the dns port. +Send and receive TCP traffic on the pop port.

Parameters
@@ -4406,7 +6798,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4421,7 +6813,7 @@ No
-corenet_tcp_sendrecv_eth0( +corenet_tcp_sendrecv_portmap_port( @@ -4436,7 +6828,7 @@ No
Description

- Send and receive TCP network traffic on the eth0 interface. +Send and receive TCP traffic on the portmap port.

Parameters
@@ -4447,7 +6839,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4462,7 +6854,7 @@ No
-corenet_tcp_sendrecv_eth1( +corenet_tcp_sendrecv_postgresql_port( @@ -4477,7 +6869,7 @@ No
Description

- Send and receive TCP network traffic on the eth1 interface. +Send and receive TCP traffic on the postgresql port.

Parameters
@@ -4488,7 +6880,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4503,7 +6895,7 @@ No
-corenet_tcp_sendrecv_eth2( +corenet_tcp_sendrecv_printer_port( @@ -4518,7 +6910,7 @@ No
Description

- Send and receive TCP network traffic on the eth2 interface. +Send and receive TCP traffic on the printer port.

Parameters
@@ -4529,7 +6921,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4544,7 +6936,7 @@ No
-corenet_tcp_sendrecv_fingerd_port( +corenet_tcp_sendrecv_pxe_port( @@ -4559,7 +6951,7 @@ No
Description

- Send and receive TCP traffic on the fingerd port. +Send and receive TCP traffic on the pxe port.

Parameters
@@ -4570,7 +6962,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4585,7 +6977,7 @@ No
-corenet_tcp_sendrecv_ftp_data_port( +corenet_tcp_sendrecv_radacct_port( @@ -4600,7 +6992,7 @@ No
Description

- Send and receive TCP traffic on the ftp_data port. +Send and receive TCP traffic on the radacct port.

Parameters
@@ -4611,7 +7003,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4626,7 +7018,7 @@ No
-corenet_tcp_sendrecv_ftp_port( +corenet_tcp_sendrecv_radius_port( @@ -4641,7 +7033,7 @@ No
Description

- Send and receive TCP traffic on the ftp port. +Send and receive TCP traffic on the radius port.

Parameters
@@ -4652,7 +7044,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4667,7 +7059,7 @@ No
-corenet_tcp_sendrecv_generic_if( +corenet_tcp_sendrecv_reserved_port( @@ -4679,12 +7071,12 @@ No
- -
Description
+
Summary

- Send and receive TCP network traffic on the general interfaces. +Send and receive TCP network traffic on generic reserved ports.

+
Parameters
@@ -4693,7 +7085,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -4708,7 +7100,7 @@ No
-corenet_tcp_sendrecv_howl_port( +corenet_tcp_sendrecv_rsh_port( @@ -4723,7 +7115,7 @@ No
Description

- Send and receive TCP traffic on the howl port. +Send and receive TCP traffic on the rsh port.

Parameters
@@ -4734,7 +7126,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4749,7 +7141,7 @@ No
-corenet_tcp_sendrecv_http_cache_port( +corenet_tcp_sendrecv_rsync_port( @@ -4764,7 +7156,7 @@ No
Description

- Send and receive TCP traffic on the http_cache port. +Send and receive TCP traffic on the rsync port.

Parameters
@@ -4775,7 +7167,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4790,7 +7182,7 @@ No
-corenet_tcp_sendrecv_http_port( +corenet_tcp_sendrecv_site_local_node( @@ -4805,7 +7197,7 @@ No
Description

- Send and receive TCP traffic on the http port. +Send and receive TCP traffic on the site_local node.

Parameters
@@ -4816,7 +7208,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4831,7 +7223,7 @@ No
-corenet_tcp_sendrecv_inaddr_any_node( +corenet_tcp_sendrecv_smbd_port( @@ -4846,7 +7238,7 @@ No
Description

- Send and receive TCP traffic on the inaddr_any node. +Send and receive TCP traffic on the smbd port.

Parameters
@@ -4857,7 +7249,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4872,7 +7264,7 @@ No
-corenet_tcp_sendrecv_inetd_child_port( +corenet_tcp_sendrecv_smtp_port( @@ -4887,7 +7279,7 @@ No
Description

- Send and receive TCP traffic on the inetd_child port. +Send and receive TCP traffic on the smtp port.

Parameters
@@ -4898,7 +7290,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4913,7 +7305,7 @@ No
-corenet_tcp_sendrecv_innd_port( +corenet_tcp_sendrecv_snmp_port( @@ -4928,7 +7320,7 @@ No
Description

- Send and receive TCP traffic on the innd port. +Send and receive TCP traffic on the snmp port.

Parameters
@@ -4939,7 +7331,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4954,7 +7346,7 @@ No
-corenet_tcp_sendrecv_ipp_port( +corenet_tcp_sendrecv_ssh_port( @@ -4969,7 +7361,7 @@ No
Description

- Send and receive TCP traffic on the ipp port. +Send and receive TCP traffic on the ssh port.

Parameters
@@ -4980,7 +7372,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -4995,7 +7387,7 @@ No
-corenet_tcp_sendrecv_ippp0( +corenet_tcp_sendrecv_swat_port( @@ -5010,7 +7402,7 @@ No
Description

- Send and receive TCP network traffic on the ippp0 interface. +Send and receive TCP traffic on the swat port.

Parameters
@@ -5021,7 +7413,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5036,7 +7428,7 @@ No
-corenet_tcp_sendrecv_ipsec0( +corenet_tcp_sendrecv_syslogd_port( @@ -5051,7 +7443,7 @@ No
Description

- Send and receive TCP network traffic on the ipsec0 interface. +Send and receive TCP traffic on the syslogd port.

Parameters
@@ -5062,7 +7454,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5077,7 +7469,7 @@ No
-corenet_tcp_sendrecv_ipsec1( +corenet_tcp_sendrecv_telnetd_port( @@ -5092,7 +7484,7 @@ No
Description

- Send and receive TCP network traffic on the ipsec1 interface. +Send and receive TCP traffic on the telnetd port.

Parameters
@@ -5103,7 +7495,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5118,7 +7510,7 @@ No
-corenet_tcp_sendrecv_ipsec2( +corenet_tcp_sendrecv_tftp_port( @@ -5133,7 +7525,7 @@ No
Description

- Send and receive TCP network traffic on the ipsec2 interface. +Send and receive TCP traffic on the tftp port.

Parameters
@@ -5144,7 +7536,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5159,7 +7551,7 @@ No
-corenet_tcp_sendrecv_kerberos_admin_port( +corenet_tcp_sendrecv_unspec_node( @@ -5174,7 +7566,7 @@ No
Description

- Send and receive TCP traffic on the kerberos_admin port. +Send and receive TCP traffic on the unspec node.

Parameters
@@ -5185,7 +7577,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5200,7 +7592,7 @@ No
-corenet_tcp_sendrecv_kerberos_master_port( +corenet_tcp_sendrecv_vnc_port( @@ -5215,7 +7607,7 @@ No
Description

- Send and receive TCP traffic on the kerberos_master port. +Send and receive TCP traffic on the vnc port.

Parameters
@@ -5226,7 +7618,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5241,7 +7633,7 @@ No
-corenet_tcp_sendrecv_kerberos_port( +corenet_tcp_sendrecv_xserver_port( @@ -5256,7 +7648,7 @@ No
Description

- Send and receive TCP traffic on the kerberos port. +Send and receive TCP traffic on the xserver port.

Parameters
@@ -5267,7 +7659,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5282,7 +7674,7 @@ No
-corenet_tcp_sendrecv_ktalkd_port( +corenet_tcp_sendrecv_zebra_port( @@ -5297,7 +7689,7 @@ No
Description

- Send and receive TCP traffic on the ktalkd port. +Send and receive TCP traffic on the zebra port.

Parameters
@@ -5308,7 +7700,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5323,7 +7715,7 @@ No
-corenet_tcp_sendrecv_ldap_port( +corenet_udp_bind_all_nodes( @@ -5335,12 +7727,12 @@ No
- -
Description
+
Summary

- Send and receive TCP traffic on the ldap port. +Bind UDP sockets to all nodes.

+
Parameters
@@ -5349,7 +7741,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -5364,7 +7756,7 @@ No
-corenet_tcp_sendrecv_link_local_node( +corenet_udp_bind_all_ports( @@ -5376,12 +7768,12 @@ No
- -
Description
+
Summary

- Send and receive TCP traffic on the link_local node. +Bind UDP sockets to all ports.

+
Parameters
@@ -5390,7 +7782,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -5405,7 +7797,7 @@ No
-corenet_tcp_sendrecv_lo( +corenet_udp_bind_all_reserved_ports( @@ -5417,12 +7809,12 @@ No
- -
Description
+
Summary

- Send and receive TCP network traffic on the lo interface. +Bind UDP sockets to all reserved ports.

+
Parameters
@@ -5431,7 +7823,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -5446,7 +7838,7 @@ No
-corenet_tcp_sendrecv_lo_node( +corenet_udp_bind_amanda_port( @@ -5461,7 +7853,7 @@ No
Description

- Send and receive TCP traffic on the lo node. +Bind UDP sockets to the amanda port.

Parameters
@@ -5472,7 +7864,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5487,7 +7879,7 @@ No
-corenet_tcp_sendrecv_mail_port( +corenet_udp_bind_compat_ipv4_node( @@ -5502,7 +7894,7 @@ No
Description

- Send and receive TCP traffic on the mail port. +Bind UDP sockets to the compat_ipv4 node.

Parameters
@@ -5513,7 +7905,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5528,7 +7920,7 @@ No
-corenet_tcp_sendrecv_mapped_ipv4_node( +corenet_udp_bind_dbskkd_port( @@ -5543,7 +7935,7 @@ No
Description

- Send and receive TCP traffic on the mapped_ipv4 node. +Bind UDP sockets to the dbskkd port.

Parameters
@@ -5554,7 +7946,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5569,7 +7961,7 @@ No
-corenet_tcp_sendrecv_multicast_node( +corenet_udp_bind_dhcpc_port( @@ -5584,7 +7976,7 @@ No
Description

- Send and receive TCP traffic on the multicast node. +Bind UDP sockets to the dhcpc port.

Parameters
@@ -5595,7 +7987,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5610,7 +8002,7 @@ No
-corenet_tcp_sendrecv_mysqld_port( +corenet_udp_bind_dhcpd_port( @@ -5625,7 +8017,7 @@ No
Description

- Send and receive TCP traffic on the mysqld port. +Bind UDP sockets to the dhcpd port.

Parameters
@@ -5636,7 +8028,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5651,7 +8043,7 @@ No
-corenet_tcp_sendrecv_nmbd_port( +corenet_udp_bind_dict_port( @@ -5666,7 +8058,7 @@ No
Description

- Send and receive TCP traffic on the nmbd port. +Bind UDP sockets to the dict port.

Parameters
@@ -5677,7 +8069,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5692,7 +8084,7 @@ No
-corenet_tcp_sendrecv_pop_port( +corenet_udp_bind_dns_port( @@ -5707,7 +8099,7 @@ No
Description

- Send and receive TCP traffic on the pop port. +Bind UDP sockets to the dns port.

Parameters
@@ -5718,7 +8110,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5733,7 +8125,7 @@ No
-corenet_tcp_sendrecv_portmap_port( +corenet_udp_bind_fingerd_port( @@ -5748,7 +8140,7 @@ No
Description

- Send and receive TCP traffic on the portmap port. +Bind UDP sockets to the fingerd port.

Parameters
@@ -5759,7 +8151,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5774,7 +8166,7 @@ No
-corenet_tcp_sendrecv_postgresql_port( +corenet_udp_bind_ftp_data_port( @@ -5789,7 +8181,7 @@ No
Description

- Send and receive TCP traffic on the postgresql port. +Bind UDP sockets to the ftp_data port.

Parameters
@@ -5800,7 +8192,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5815,7 +8207,7 @@ No
-corenet_tcp_sendrecv_printer_port( +corenet_udp_bind_ftp_port( @@ -5830,7 +8222,7 @@ No
Description

- Send and receive TCP traffic on the printer port. +Bind UDP sockets to the ftp port.

Parameters
@@ -5841,7 +8233,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5856,7 +8248,7 @@ No
-corenet_tcp_sendrecv_pxe_port( +corenet_udp_bind_generic_node( @@ -5868,12 +8260,12 @@ No
- -
Description
+
Summary

- Send and receive TCP traffic on the pxe port. +Bind UDP sockets to generic nodes.

+
Parameters
@@ -5882,7 +8274,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -5897,7 +8289,7 @@ No
-corenet_tcp_sendrecv_radacct_port( +corenet_udp_bind_generic_port( @@ -5909,12 +8301,12 @@ No
- -
Description
+
Summary

- Send and receive TCP traffic on the radacct port. +Bind UDP sockets to generic ports.

+
Parameters
@@ -5923,7 +8315,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -5938,7 +8330,7 @@ No
-corenet_tcp_sendrecv_radius_port( +corenet_udp_bind_howl_port( @@ -5953,7 +8345,7 @@ No
Description

- Send and receive TCP traffic on the radius port. +Bind UDP sockets to the howl port.

Parameters
@@ -5964,7 +8356,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -5979,7 +8371,7 @@ No
-corenet_tcp_sendrecv_rsh_port( +corenet_udp_bind_http_cache_port( @@ -5994,7 +8386,7 @@ No
Description

- Send and receive TCP traffic on the rsh port. +Bind UDP sockets to the http_cache port.

Parameters
@@ -6005,7 +8397,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6020,7 +8412,7 @@ No
-corenet_tcp_sendrecv_rsync_port( +corenet_udp_bind_http_port( @@ -6035,7 +8427,7 @@ No
Description

- Send and receive TCP traffic on the rsync port. +Bind UDP sockets to the http port.

Parameters
@@ -6046,7 +8438,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6061,7 +8453,7 @@ No
-corenet_tcp_sendrecv_site_local_node( +corenet_udp_bind_inaddr_any_node( @@ -6076,7 +8468,7 @@ No
Description

- Send and receive TCP traffic on the site_local node. +Bind UDP sockets to the inaddr_any node.

Parameters
@@ -6087,7 +8479,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6102,7 +8494,7 @@ No
-corenet_tcp_sendrecv_smbd_port( +corenet_udp_bind_inetd_child_port( @@ -6117,7 +8509,7 @@ No
Description

- Send and receive TCP traffic on the smbd port. +Bind UDP sockets to the inetd_child port.

Parameters
@@ -6128,7 +8520,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6143,7 +8535,7 @@ No
-corenet_tcp_sendrecv_smtp_port( +corenet_udp_bind_innd_port( @@ -6158,7 +8550,7 @@ No
Description

- Send and receive TCP traffic on the smtp port. +Bind UDP sockets to the innd port.

Parameters
@@ -6169,7 +8561,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6184,7 +8576,7 @@ No
-corenet_tcp_sendrecv_snmp_port( +corenet_udp_bind_ipp_port( @@ -6199,7 +8591,7 @@ No
Description

- Send and receive TCP traffic on the snmp port. +Bind UDP sockets to the ipp port.

Parameters
@@ -6210,7 +8602,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6225,7 +8617,7 @@ No
-corenet_tcp_sendrecv_ssh_port( +corenet_udp_bind_kerberos_admin_port( @@ -6240,7 +8632,7 @@ No
Description

- Send and receive TCP traffic on the ssh port. +Bind UDP sockets to the kerberos_admin port.

Parameters
@@ -6251,7 +8643,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6266,7 +8658,7 @@ No
-corenet_tcp_sendrecv_swat_port( +corenet_udp_bind_kerberos_master_port( @@ -6281,7 +8673,7 @@ No
Description

- Send and receive TCP traffic on the swat port. +Bind UDP sockets to the kerberos_master port.

Parameters
@@ -6292,7 +8684,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6307,7 +8699,7 @@ No
-corenet_tcp_sendrecv_syslogd_port( +corenet_udp_bind_kerberos_port( @@ -6322,7 +8714,7 @@ No
Description

- Send and receive TCP traffic on the syslogd port. +Bind UDP sockets to the kerberos port.

Parameters
@@ -6333,7 +8725,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6348,7 +8740,7 @@ No
-corenet_tcp_sendrecv_telnetd_port( +corenet_udp_bind_ktalkd_port( @@ -6363,7 +8755,7 @@ No
Description

- Send and receive TCP traffic on the telnetd port. +Bind UDP sockets to the ktalkd port.

Parameters
@@ -6374,7 +8766,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6389,7 +8781,7 @@ No
-corenet_tcp_sendrecv_tftp_port( +corenet_udp_bind_ldap_port( @@ -6404,7 +8796,7 @@ No
Description

- Send and receive TCP traffic on the tftp port. +Bind UDP sockets to the ldap port.

Parameters
@@ -6415,7 +8807,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6430,7 +8822,7 @@ No
-corenet_tcp_sendrecv_unspec_node( +corenet_udp_bind_link_local_node( @@ -6445,7 +8837,7 @@ No
Description

- Send and receive TCP traffic on the unspec node. +Bind UDP sockets to the link_local node.

Parameters
@@ -6456,7 +8848,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6471,7 +8863,7 @@ No
-corenet_tcp_sendrecv_vnc_port( +corenet_udp_bind_lo_node( @@ -6486,7 +8878,7 @@ No
Description

- Send and receive TCP traffic on the vnc port. +Bind UDP sockets to the lo node.

Parameters
@@ -6497,7 +8889,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6512,7 +8904,7 @@ No
-corenet_tcp_sendrecv_xserver_port( +corenet_udp_bind_mail_port( @@ -6527,7 +8919,7 @@ No
Description

- Send and receive TCP traffic on the xserver port. +Bind UDP sockets to the mail port.

Parameters
@@ -6538,7 +8930,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6553,7 +8945,7 @@ No
-corenet_tcp_sendrecv_zebra_port( +corenet_udp_bind_mapped_ipv4_node( @@ -6568,7 +8960,7 @@ No
Description

- Send and receive TCP traffic on the zebra port. +Bind UDP sockets to the mapped_ipv4 node.

Parameters
@@ -6579,7 +8971,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6594,7 +8986,7 @@ No
-corenet_udp_bind_amanda_port( +corenet_udp_bind_multicast_node( @@ -6609,7 +9001,7 @@ No
Description

- Bind UDP sockets to the amanda port. +Bind UDP sockets to the multicast node.

Parameters
@@ -6620,7 +9012,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6635,7 +9027,7 @@ No
-corenet_udp_bind_compat_ipv4_node( +corenet_udp_bind_mysqld_port( @@ -6650,7 +9042,7 @@ No
Description

- Bind UDP sockets to the compat_ipv4 node. +Bind UDP sockets to the mysqld port.

Parameters
@@ -6661,7 +9053,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6676,7 +9068,7 @@ No
-corenet_udp_bind_dbskkd_port( +corenet_udp_bind_nmbd_port( @@ -6691,7 +9083,7 @@ No
Description

- Bind UDP sockets to the dbskkd port. +Bind UDP sockets to the nmbd port.

Parameters
@@ -6702,7 +9094,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6717,7 +9109,7 @@ No
-corenet_udp_bind_dhcpc_port( +corenet_udp_bind_pop_port( @@ -6732,7 +9124,7 @@ No
Description

- Bind UDP sockets to the dhcpc port. +Bind UDP sockets to the pop port.

Parameters
@@ -6743,7 +9135,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6758,7 +9150,7 @@ No
-corenet_udp_bind_dhcpd_port( +corenet_udp_bind_portmap_port( @@ -6773,7 +9165,7 @@ No
Description

- Bind UDP sockets to the dhcpd port. +Bind UDP sockets to the portmap port.

Parameters
@@ -6784,7 +9176,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6799,7 +9191,7 @@ No
-corenet_udp_bind_dict_port( +corenet_udp_bind_postgresql_port( @@ -6814,7 +9206,7 @@ No
Description

- Bind UDP sockets to the dict port. +Bind UDP sockets to the postgresql port.

Parameters
@@ -6825,7 +9217,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6840,7 +9232,7 @@ No
-corenet_udp_bind_dns_port( +corenet_udp_bind_printer_port( @@ -6855,7 +9247,7 @@ No
Description

- Bind UDP sockets to the dns port. +Bind UDP sockets to the printer port.

Parameters
@@ -6866,7 +9258,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6881,7 +9273,7 @@ No
-corenet_udp_bind_fingerd_port( +corenet_udp_bind_pxe_port( @@ -6896,7 +9288,7 @@ No
Description

- Bind UDP sockets to the fingerd port. +Bind UDP sockets to the pxe port.

Parameters
@@ -6907,7 +9299,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6922,7 +9314,7 @@ No
-corenet_udp_bind_ftp_data_port( +corenet_udp_bind_radacct_port( @@ -6937,7 +9329,7 @@ No
Description

- Bind UDP sockets to the ftp_data port. +Bind UDP sockets to the radacct port.

Parameters
@@ -6948,7 +9340,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -6963,7 +9355,7 @@ No
-corenet_udp_bind_ftp_port( +corenet_udp_bind_radius_port( @@ -6978,7 +9370,7 @@ No
Description

- Bind UDP sockets to the ftp port. +Bind UDP sockets to the radius port.

Parameters
@@ -6989,7 +9381,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7004,7 +9396,7 @@ No
-corenet_udp_bind_howl_port( +corenet_udp_bind_reserved_port( @@ -7016,12 +9408,12 @@ No
- -
Description
+
Summary

- Bind UDP sockets to the howl port. +Bind UDP sockets to generic reserved ports.

+
Parameters
@@ -7030,7 +9422,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -7045,7 +9437,7 @@ No
-corenet_udp_bind_http_cache_port( +corenet_udp_bind_rsh_port( @@ -7060,7 +9452,7 @@ No
Description

- Bind UDP sockets to the http_cache port. +Bind UDP sockets to the rsh port.

Parameters
@@ -7071,7 +9463,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7086,7 +9478,7 @@ No
-corenet_udp_bind_http_port( +corenet_udp_bind_rsync_port( @@ -7101,7 +9493,7 @@ No
Description

- Bind UDP sockets to the http port. +Bind UDP sockets to the rsync port.

Parameters
@@ -7112,7 +9504,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7127,7 +9519,7 @@ No
-corenet_udp_bind_inaddr_any_node( +corenet_udp_bind_site_local_node( @@ -7142,7 +9534,7 @@ No
Description

- Bind UDP sockets to the inaddr_any node. +Bind UDP sockets to the site_local node.

Parameters
@@ -7153,7 +9545,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7168,7 +9560,7 @@ No
-corenet_udp_bind_inetd_child_port( +corenet_udp_bind_smbd_port( @@ -7183,7 +9575,7 @@ No
Description

- Bind UDP sockets to the inetd_child port. +Bind UDP sockets to the smbd port.

Parameters
@@ -7194,7 +9586,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7209,7 +9601,7 @@ No
-corenet_udp_bind_innd_port( +corenet_udp_bind_smtp_port( @@ -7224,7 +9616,7 @@ No
Description

- Bind UDP sockets to the innd port. +Bind UDP sockets to the smtp port.

Parameters
@@ -7235,7 +9627,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7250,7 +9642,7 @@ No
-corenet_udp_bind_ipp_port( +corenet_udp_bind_snmp_port( @@ -7265,7 +9657,7 @@ No
Description

- Bind UDP sockets to the ipp port. +Bind UDP sockets to the snmp port.

Parameters
@@ -7276,7 +9668,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7291,7 +9683,7 @@ No
-corenet_udp_bind_kerberos_admin_port( +corenet_udp_bind_ssh_port( @@ -7306,7 +9698,7 @@ No
Description

- Bind UDP sockets to the kerberos_admin port. +Bind UDP sockets to the ssh port.

Parameters
@@ -7317,7 +9709,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7332,7 +9724,7 @@ No
-corenet_udp_bind_kerberos_master_port( +corenet_udp_bind_swat_port( @@ -7347,7 +9739,7 @@ No
Description

- Bind UDP sockets to the kerberos_master port. +Bind UDP sockets to the swat port.

Parameters
@@ -7358,7 +9750,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7373,7 +9765,7 @@ No
-corenet_udp_bind_kerberos_port( +corenet_udp_bind_syslogd_port( @@ -7388,7 +9780,7 @@ No
Description

- Bind UDP sockets to the kerberos port. +Bind UDP sockets to the syslogd port.

Parameters
@@ -7399,7 +9791,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7414,7 +9806,7 @@ No
-corenet_udp_bind_ktalkd_port( +corenet_udp_bind_telnetd_port( @@ -7429,7 +9821,7 @@ No
Description

- Bind UDP sockets to the ktalkd port. +Bind UDP sockets to the telnetd port.

Parameters
@@ -7440,7 +9832,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7455,7 +9847,7 @@ No
-corenet_udp_bind_ldap_port( +corenet_udp_bind_tftp_port( @@ -7470,7 +9862,7 @@ No
Description

- Bind UDP sockets to the ldap port. +Bind UDP sockets to the tftp port.

Parameters
@@ -7481,7 +9873,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7496,7 +9888,7 @@ No
-corenet_udp_bind_link_local_node( +corenet_udp_bind_unspec_node( @@ -7511,7 +9903,7 @@ No
Description

- Bind UDP sockets to the link_local node. +Bind UDP sockets to the unspec node.

Parameters
@@ -7522,7 +9914,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7537,7 +9929,7 @@ No
-corenet_udp_bind_lo_node( +corenet_udp_bind_vnc_port( @@ -7552,7 +9944,7 @@ No
Description

- Bind UDP sockets to the lo node. +Bind UDP sockets to the vnc port.

Parameters
@@ -7563,7 +9955,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7578,7 +9970,7 @@ No
-corenet_udp_bind_mail_port( +corenet_udp_bind_xserver_port( @@ -7593,7 +9985,7 @@ No
Description

- Bind UDP sockets to the mail port. +Bind UDP sockets to the xserver port.

Parameters
@@ -7604,7 +9996,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7619,7 +10011,7 @@ No
-corenet_udp_bind_mapped_ipv4_node( +corenet_udp_bind_zebra_port( @@ -7634,7 +10026,7 @@ No
Description

- Bind UDP sockets to the mapped_ipv4 node. +Bind UDP sockets to the zebra port.

Parameters
@@ -7645,7 +10037,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7660,7 +10052,7 @@ No
-corenet_udp_bind_multicast_node( +corenet_udp_receive_all_if( @@ -7672,12 +10064,12 @@ No
- -
Description
+
Summary

- Bind UDP sockets to the multicast node. +Receive UDP network traffic on all interfaces.

+
Parameters
@@ -7686,7 +10078,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -7701,7 +10093,7 @@ No
-corenet_udp_bind_mysqld_port( +corenet_udp_receive_all_nodes( @@ -7713,12 +10105,12 @@ No
- -
Description
+
Summary

- Bind UDP sockets to the mysqld port. +Receive UDP network traffic on all nodes.

+
Parameters
@@ -7727,7 +10119,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -7742,7 +10134,7 @@ No
-corenet_udp_bind_nmbd_port( +corenet_udp_receive_all_ports( @@ -7754,12 +10146,12 @@ No
- -
Description
+
Summary

- Bind UDP sockets to the nmbd port. +Receive UDP network traffic on all ports.

+
Parameters
@@ -7768,7 +10160,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -7783,7 +10175,7 @@ No
-corenet_udp_bind_pop_port( +corenet_udp_receive_all_reserved_ports( @@ -7795,12 +10187,12 @@ No
- -
Description
+
Summary

- Bind UDP sockets to the pop port. +Receive UDP network traffic on all reserved ports.

+
Parameters
@@ -7809,7 +10201,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -7824,7 +10216,7 @@ No
-corenet_udp_bind_portmap_port( +corenet_udp_receive_amanda_port( @@ -7839,7 +10231,7 @@ No
Description

- Bind UDP sockets to the portmap port. +Receive UDP traffic on the amanda port.

Parameters
@@ -7850,7 +10242,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7865,7 +10257,7 @@ No
-corenet_udp_bind_postgresql_port( +corenet_udp_receive_compat_ipv4_node( @@ -7880,7 +10272,7 @@ No
Description

- Bind UDP sockets to the postgresql port. +Receive UDP traffic on the compat_ipv4 node.

Parameters
@@ -7891,7 +10283,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7906,7 +10298,7 @@ No
-corenet_udp_bind_printer_port( +corenet_udp_receive_dbskkd_port( @@ -7921,7 +10313,7 @@ No
Description

- Bind UDP sockets to the printer port. +Receive UDP traffic on the dbskkd port.

Parameters
@@ -7932,7 +10324,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7947,7 +10339,7 @@ No
-corenet_udp_bind_pxe_port( +corenet_udp_receive_dhcpc_port( @@ -7962,7 +10354,7 @@ No
Description

- Bind UDP sockets to the pxe port. +Receive UDP traffic on the dhcpc port.

Parameters
@@ -7973,7 +10365,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -7988,7 +10380,7 @@ No
-corenet_udp_bind_radacct_port( +corenet_udp_receive_dhcpd_port( @@ -8003,7 +10395,7 @@ No
Description

- Bind UDP sockets to the radacct port. +Receive UDP traffic on the dhcpd port.

Parameters
@@ -8014,7 +10406,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8029,7 +10421,7 @@ No
-corenet_udp_bind_radius_port( +corenet_udp_receive_dict_port( @@ -8044,7 +10436,7 @@ No
Description

- Bind UDP sockets to the radius port. +Receive UDP traffic on the dict port.

Parameters
@@ -8055,7 +10447,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8070,7 +10462,7 @@ No
-corenet_udp_bind_rsh_port( +corenet_udp_receive_dns_port( @@ -8085,7 +10477,7 @@ No
Description

- Bind UDP sockets to the rsh port. +Receive UDP traffic on the dns port.

Parameters
@@ -8096,7 +10488,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8111,7 +10503,7 @@ No
-corenet_udp_bind_rsync_port( +corenet_udp_receive_eth0( @@ -8126,7 +10518,7 @@ No
Description

- Bind UDP sockets to the rsync port. +Receive UDP network traffic on the eth0 interface.

Parameters
@@ -8137,7 +10529,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8152,7 +10544,7 @@ No
-corenet_udp_bind_site_local_node( +corenet_udp_receive_eth1( @@ -8167,7 +10559,7 @@ No
Description

- Bind UDP sockets to the site_local node. +Receive UDP network traffic on the eth1 interface.

Parameters
@@ -8178,7 +10570,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8193,7 +10585,7 @@ No
-corenet_udp_bind_smbd_port( +corenet_udp_receive_eth2( @@ -8208,7 +10600,7 @@ No
Description

- Bind UDP sockets to the smbd port. +Receive UDP network traffic on the eth2 interface.

Parameters
@@ -8219,7 +10611,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8234,7 +10626,7 @@ No
-corenet_udp_bind_smtp_port( +corenet_udp_receive_fingerd_port( @@ -8249,7 +10641,7 @@ No
Description

- Bind UDP sockets to the smtp port. +Receive UDP traffic on the fingerd port.

Parameters
@@ -8260,7 +10652,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8275,7 +10667,7 @@ No
-corenet_udp_bind_snmp_port( +corenet_udp_receive_ftp_data_port( @@ -8290,7 +10682,7 @@ No
Description

- Bind UDP sockets to the snmp port. +Receive UDP traffic on the ftp_data port.

Parameters
@@ -8301,7 +10693,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8316,7 +10708,7 @@ No
-corenet_udp_bind_ssh_port( +corenet_udp_receive_ftp_port( @@ -8331,7 +10723,7 @@ No
Description

- Bind UDP sockets to the ssh port. +Receive UDP traffic on the ftp port.

Parameters
@@ -8342,7 +10734,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8357,7 +10749,7 @@ No
-corenet_udp_bind_swat_port( +corenet_udp_receive_generic_if( @@ -8369,12 +10761,12 @@ No
- -
Description
+
Summary

- Bind UDP sockets to the swat port. +Receive UDP network traffic on generic interfaces.

+
Parameters
@@ -8383,7 +10775,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -8398,7 +10790,7 @@ No
-corenet_udp_bind_syslogd_port( +corenet_udp_receive_generic_node( @@ -8410,12 +10802,12 @@ No
- -
Description
+
Summary

- Bind UDP sockets to the syslogd port. +Receive UDP network traffic on generic nodes.

+
Parameters
@@ -8424,7 +10816,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -8439,7 +10831,7 @@ No
-corenet_udp_bind_telnetd_port( +corenet_udp_receive_generic_port( @@ -8451,12 +10843,12 @@ No
- -
Description
+
Summary

- Bind UDP sockets to the telnetd port. +Receive UDP network traffic on generic ports.

+
Parameters
@@ -8465,7 +10857,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -8480,7 +10872,7 @@ No
-corenet_udp_bind_tftp_port( +corenet_udp_receive_howl_port( @@ -8495,7 +10887,7 @@ No
Description

- Bind UDP sockets to the tftp port. +Receive UDP traffic on the howl port.

Parameters
@@ -8506,7 +10898,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8521,7 +10913,7 @@ No
-corenet_udp_bind_unspec_node( +corenet_udp_receive_http_cache_port( @@ -8536,7 +10928,7 @@ No
Description

- Bind UDP sockets to the unspec node. +Receive UDP traffic on the http_cache port.

Parameters
@@ -8547,7 +10939,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8562,7 +10954,7 @@ No
-corenet_udp_bind_vnc_port( +corenet_udp_receive_http_port( @@ -8577,7 +10969,7 @@ No
Description

- Bind UDP sockets to the vnc port. +Receive UDP traffic on the http port.

Parameters
@@ -8588,7 +10980,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8603,7 +10995,7 @@ No
-corenet_udp_bind_xserver_port( +corenet_udp_receive_inaddr_any_node( @@ -8618,7 +11010,7 @@ No
Description

- Bind UDP sockets to the xserver port. +Receive UDP traffic on the inaddr_any node.

Parameters
@@ -8629,7 +11021,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8644,7 +11036,7 @@ No
-corenet_udp_bind_zebra_port( +corenet_udp_receive_inetd_child_port( @@ -8659,7 +11051,7 @@ No
Description

- Bind UDP sockets to the zebra port. +Receive UDP traffic on the inetd_child port.

Parameters
@@ -8670,7 +11062,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8685,7 +11077,7 @@ No
-corenet_udp_receive_amanda_port( +corenet_udp_receive_innd_port( @@ -8700,7 +11092,7 @@ No
Description

- Receive UDP traffic on the amanda port. +Receive UDP traffic on the innd port.

Parameters
@@ -8711,7 +11103,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8726,7 +11118,7 @@ No
-corenet_udp_receive_compat_ipv4_node( +corenet_udp_receive_ipp_port( @@ -8741,7 +11133,7 @@ No
Description

- Receive UDP traffic on the compat_ipv4 node. +Receive UDP traffic on the ipp port.

Parameters
@@ -8752,7 +11144,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8767,7 +11159,7 @@ No
-corenet_udp_receive_dbskkd_port( +corenet_udp_receive_ippp0( @@ -8782,7 +11174,7 @@ No
Description

- Receive UDP traffic on the dbskkd port. +Receive UDP network traffic on the ippp0 interface.

Parameters
@@ -8793,7 +11185,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8808,7 +11200,7 @@ No
-corenet_udp_receive_dhcpc_port( +corenet_udp_receive_ipsec0( @@ -8823,7 +11215,7 @@ No
Description

- Receive UDP traffic on the dhcpc port. +Receive UDP network traffic on the ipsec0 interface.

Parameters
@@ -8834,7 +11226,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8849,7 +11241,7 @@ No
-corenet_udp_receive_dhcpd_port( +corenet_udp_receive_ipsec1( @@ -8864,7 +11256,7 @@ No
Description

- Receive UDP traffic on the dhcpd port. +Receive UDP network traffic on the ipsec1 interface.

Parameters
@@ -8875,7 +11267,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8890,7 +11282,7 @@ No
-corenet_udp_receive_dict_port( +corenet_udp_receive_ipsec2( @@ -8905,7 +11297,7 @@ No
Description

- Receive UDP traffic on the dict port. +Receive UDP network traffic on the ipsec2 interface.

Parameters
@@ -8916,7 +11308,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8931,7 +11323,7 @@ No
-corenet_udp_receive_dns_port( +corenet_udp_receive_kerberos_admin_port( @@ -8946,7 +11338,7 @@ No
Description

- Receive UDP traffic on the dns port. +Receive UDP traffic on the kerberos_admin port.

Parameters
@@ -8957,7 +11349,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -8972,7 +11364,7 @@ No
-corenet_udp_receive_eth0( +corenet_udp_receive_kerberos_master_port( @@ -8987,7 +11379,7 @@ No
Description

- Receive UDP network traffic on the eth0 interface. +Receive UDP traffic on the kerberos_master port.

Parameters
@@ -8998,7 +11390,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9013,7 +11405,7 @@ No
-corenet_udp_receive_eth1( +corenet_udp_receive_kerberos_port( @@ -9028,7 +11420,7 @@ No
Description

- Receive UDP network traffic on the eth1 interface. +Receive UDP traffic on the kerberos port.

Parameters
@@ -9039,7 +11431,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9054,7 +11446,7 @@ No
-corenet_udp_receive_eth2( +corenet_udp_receive_ktalkd_port( @@ -9069,7 +11461,7 @@ No
Description

- Receive UDP network traffic on the eth2 interface. +Receive UDP traffic on the ktalkd port.

Parameters
@@ -9080,7 +11472,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9095,7 +11487,7 @@ No
-corenet_udp_receive_fingerd_port( +corenet_udp_receive_ldap_port( @@ -9110,7 +11502,7 @@ No
Description

- Receive UDP traffic on the fingerd port. +Receive UDP traffic on the ldap port.

Parameters
@@ -9121,7 +11513,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9136,7 +11528,7 @@ No
-corenet_udp_receive_ftp_data_port( +corenet_udp_receive_link_local_node( @@ -9151,7 +11543,7 @@ No
Description

- Receive UDP traffic on the ftp_data port. +Receive UDP traffic on the link_local node.

Parameters
@@ -9162,7 +11554,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9177,7 +11569,7 @@ No
-corenet_udp_receive_ftp_port( +corenet_udp_receive_lo( @@ -9192,7 +11584,7 @@ No
Description

- Receive UDP traffic on the ftp port. +Receive UDP network traffic on the lo interface.

Parameters
@@ -9203,7 +11595,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9218,7 +11610,7 @@ No
-corenet_udp_receive_howl_port( +corenet_udp_receive_lo_node( @@ -9233,7 +11625,7 @@ No
Description

- Receive UDP traffic on the howl port. +Receive UDP traffic on the lo node.

Parameters
@@ -9244,7 +11636,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9259,7 +11651,7 @@ No
-corenet_udp_receive_http_cache_port( +corenet_udp_receive_mail_port( @@ -9274,7 +11666,7 @@ No
Description

- Receive UDP traffic on the http_cache port. +Receive UDP traffic on the mail port.

Parameters
@@ -9285,7 +11677,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9300,7 +11692,7 @@ No
-corenet_udp_receive_http_port( +corenet_udp_receive_mapped_ipv4_node( @@ -9315,7 +11707,7 @@ No
Description

- Receive UDP traffic on the http port. +Receive UDP traffic on the mapped_ipv4 node.

Parameters
@@ -9326,7 +11718,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9341,7 +11733,7 @@ No
-corenet_udp_receive_inaddr_any_node( +corenet_udp_receive_multicast_node( @@ -9356,7 +11748,7 @@ No
Description

- Receive UDP traffic on the inaddr_any node. +Receive UDP traffic on the multicast node.

Parameters
@@ -9367,7 +11759,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9382,7 +11774,7 @@ No
-corenet_udp_receive_inetd_child_port( +corenet_udp_receive_mysqld_port( @@ -9397,7 +11789,7 @@ No
Description

- Receive UDP traffic on the inetd_child port. +Receive UDP traffic on the mysqld port.

Parameters
@@ -9408,7 +11800,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9423,7 +11815,7 @@ No
-corenet_udp_receive_innd_port( +corenet_udp_receive_nmbd_port( @@ -9438,7 +11830,7 @@ No
Description

- Receive UDP traffic on the innd port. +Receive UDP traffic on the nmbd port.

Parameters
@@ -9449,7 +11841,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9464,7 +11856,7 @@ No
-corenet_udp_receive_ipp_port( +corenet_udp_receive_pop_port( @@ -9479,7 +11871,7 @@ No
Description

- Receive UDP traffic on the ipp port. +Receive UDP traffic on the pop port.

Parameters
@@ -9490,7 +11882,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9505,7 +11897,7 @@ No
-corenet_udp_receive_ippp0( +corenet_udp_receive_portmap_port( @@ -9520,7 +11912,7 @@ No
Description

- Receive UDP network traffic on the ippp0 interface. +Receive UDP traffic on the portmap port.

Parameters
@@ -9531,7 +11923,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9546,7 +11938,7 @@ No
-corenet_udp_receive_ipsec0( +corenet_udp_receive_postgresql_port( @@ -9561,7 +11953,7 @@ No
Description

- Receive UDP network traffic on the ipsec0 interface. +Receive UDP traffic on the postgresql port.

Parameters
@@ -9572,7 +11964,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9587,7 +11979,7 @@ No
-corenet_udp_receive_ipsec1( +corenet_udp_receive_printer_port( @@ -9602,7 +11994,7 @@ No
Description

- Receive UDP network traffic on the ipsec1 interface. +Receive UDP traffic on the printer port.

Parameters
@@ -9613,7 +12005,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9628,7 +12020,7 @@ No
-corenet_udp_receive_ipsec2( +corenet_udp_receive_pxe_port( @@ -9643,7 +12035,7 @@ No
Description

- Receive UDP network traffic on the ipsec2 interface. +Receive UDP traffic on the pxe port.

Parameters
@@ -9654,7 +12046,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9669,7 +12061,7 @@ No
-corenet_udp_receive_kerberos_admin_port( +corenet_udp_receive_radacct_port( @@ -9684,7 +12076,7 @@ No
Description

- Receive UDP traffic on the kerberos_admin port. +Receive UDP traffic on the radacct port.

Parameters
@@ -9695,7 +12087,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9710,7 +12102,7 @@ No
-corenet_udp_receive_kerberos_master_port( +corenet_udp_receive_radius_port( @@ -9725,7 +12117,7 @@ No
Description

- Receive UDP traffic on the kerberos_master port. +Receive UDP traffic on the radius port.

Parameters
@@ -9736,7 +12128,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9751,7 +12143,7 @@ No
-corenet_udp_receive_kerberos_port( +corenet_udp_receive_reserved_port( @@ -9763,12 +12155,12 @@ No
- -
Description
+
Summary

- Receive UDP traffic on the kerberos port. +Receive UDP network traffic on generic reserved ports.

+
Parameters
@@ -9777,7 +12169,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -9792,7 +12184,7 @@ No
-corenet_udp_receive_ktalkd_port( +corenet_udp_receive_rsh_port( @@ -9807,7 +12199,7 @@ No
Description

- Receive UDP traffic on the ktalkd port. +Receive UDP traffic on the rsh port.

Parameters
@@ -9818,7 +12210,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9833,7 +12225,7 @@ No
-corenet_udp_receive_ldap_port( +corenet_udp_receive_rsync_port( @@ -9848,7 +12240,7 @@ No
Description

- Receive UDP traffic on the ldap port. +Receive UDP traffic on the rsync port.

Parameters
@@ -9859,7 +12251,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9874,7 +12266,7 @@ No
-corenet_udp_receive_link_local_node( +corenet_udp_receive_site_local_node( @@ -9889,7 +12281,7 @@ No
Description

- Receive UDP traffic on the link_local node. +Receive UDP traffic on the site_local node.

Parameters
@@ -9900,7 +12292,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9915,7 +12307,7 @@ No
-corenet_udp_receive_lo( +corenet_udp_receive_smbd_port( @@ -9930,7 +12322,7 @@ No
Description

- Receive UDP network traffic on the lo interface. +Receive UDP traffic on the smbd port.

Parameters
@@ -9941,7 +12333,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9956,7 +12348,7 @@ No
-corenet_udp_receive_lo_node( +corenet_udp_receive_smtp_port( @@ -9971,7 +12363,7 @@ No
Description

- Receive UDP traffic on the lo node. +Receive UDP traffic on the smtp port.

Parameters
@@ -9982,7 +12374,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -9997,7 +12389,7 @@ No
-corenet_udp_receive_mail_port( +corenet_udp_receive_snmp_port( @@ -10012,7 +12404,7 @@ No
Description

- Receive UDP traffic on the mail port. +Receive UDP traffic on the snmp port.

Parameters
@@ -10023,7 +12415,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10038,7 +12430,7 @@ No
-corenet_udp_receive_mapped_ipv4_node( +corenet_udp_receive_ssh_port( @@ -10053,7 +12445,7 @@ No
Description

- Receive UDP traffic on the mapped_ipv4 node. +Receive UDP traffic on the ssh port.

Parameters
@@ -10064,7 +12456,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10079,7 +12471,7 @@ No
-corenet_udp_receive_multicast_node( +corenet_udp_receive_swat_port( @@ -10094,7 +12486,7 @@ No
Description

- Receive UDP traffic on the multicast node. +Receive UDP traffic on the swat port.

Parameters
@@ -10105,7 +12497,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10120,7 +12512,7 @@ No
-corenet_udp_receive_mysqld_port( +corenet_udp_receive_syslogd_port( @@ -10135,7 +12527,7 @@ No
Description

- Receive UDP traffic on the mysqld port. +Receive UDP traffic on the syslogd port.

Parameters
@@ -10146,7 +12538,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10161,7 +12553,7 @@ No
-corenet_udp_receive_nmbd_port( +corenet_udp_receive_telnetd_port( @@ -10176,7 +12568,7 @@ No
Description

- Receive UDP traffic on the nmbd port. +Receive UDP traffic on the telnetd port.

Parameters
@@ -10187,7 +12579,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10202,7 +12594,7 @@ No
-corenet_udp_receive_pop_port( +corenet_udp_receive_tftp_port( @@ -10217,7 +12609,7 @@ No
Description

- Receive UDP traffic on the pop port. +Receive UDP traffic on the tftp port.

Parameters
@@ -10228,7 +12620,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10243,7 +12635,7 @@ No
-corenet_udp_receive_portmap_port( +corenet_udp_receive_unspec_node( @@ -10258,7 +12650,7 @@ No
Description

- Receive UDP traffic on the portmap port. +Receive UDP traffic on the unspec node.

Parameters
@@ -10269,7 +12661,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10284,7 +12676,7 @@ No
-corenet_udp_receive_postgresql_port( +corenet_udp_receive_vnc_port( @@ -10299,7 +12691,7 @@ No
Description

- Receive UDP traffic on the postgresql port. +Receive UDP traffic on the vnc port.

Parameters
@@ -10310,7 +12702,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10325,7 +12717,7 @@ No
-corenet_udp_receive_printer_port( +corenet_udp_receive_xserver_port( @@ -10340,7 +12732,7 @@ No
Description

- Receive UDP traffic on the printer port. +Receive UDP traffic on the xserver port.

Parameters
@@ -10351,7 +12743,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10366,7 +12758,7 @@ No
-corenet_udp_receive_pxe_port( +corenet_udp_receive_zebra_port( @@ -10381,7 +12773,7 @@ No
Description

- Receive UDP traffic on the pxe port. +Receive UDP traffic on the zebra port.

Parameters
@@ -10392,7 +12784,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10407,7 +12799,7 @@ No
-corenet_udp_receive_radacct_port( +corenet_udp_send_all_if( @@ -10419,12 +12811,12 @@ No
- -
Description
+
Summary

- Receive UDP traffic on the radacct port. +Send UDP network traffic on all interfaces.

+
Parameters
@@ -10433,7 +12825,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -10448,7 +12840,7 @@ No
-corenet_udp_receive_radius_port( +corenet_udp_send_all_nodes( @@ -10460,12 +12852,12 @@ No
- -
Description
+
Summary

- Receive UDP traffic on the radius port. +Send UDP network traffic on all nodes.

+
Parameters
@@ -10474,7 +12866,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -10489,7 +12881,7 @@ No
-corenet_udp_receive_rsh_port( +corenet_udp_send_all_ports( @@ -10501,12 +12893,12 @@ No
- -
Description
+
Summary

- Receive UDP traffic on the rsh port. +Send UDP network traffic on all ports.

+
Parameters
@@ -10515,7 +12907,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -10530,7 +12922,7 @@ No
-corenet_udp_receive_rsync_port( +corenet_udp_send_all_reserved_ports( @@ -10542,12 +12934,12 @@ No
- -
Description
+
Summary

- Receive UDP traffic on the rsync port. +Send UDP network traffic on all reserved ports.

+
Parameters
@@ -10556,7 +12948,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -10571,7 +12963,7 @@ No
-corenet_udp_receive_site_local_node( +corenet_udp_send_amanda_port( @@ -10586,7 +12978,7 @@ No
Description

- Receive UDP traffic on the site_local node. +Send UDP traffic on the amanda port.

Parameters
@@ -10597,7 +12989,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10612,7 +13004,7 @@ No
-corenet_udp_receive_smbd_port( +corenet_udp_send_compat_ipv4_node( @@ -10627,7 +13019,7 @@ No
Description

- Receive UDP traffic on the smbd port. +Send UDP traffic on the compat_ipv4 node.

Parameters
@@ -10638,7 +13030,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10653,7 +13045,7 @@ No
-corenet_udp_receive_smtp_port( +corenet_udp_send_dbskkd_port( @@ -10668,7 +13060,7 @@ No
Description

- Receive UDP traffic on the smtp port. +Send UDP traffic on the dbskkd port.

Parameters
@@ -10679,7 +13071,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10694,7 +13086,7 @@ No
-corenet_udp_receive_snmp_port( +corenet_udp_send_dhcpc_port( @@ -10709,7 +13101,7 @@ No
Description

- Receive UDP traffic on the snmp port. +Send UDP traffic on the dhcpc port.

Parameters
@@ -10720,7 +13112,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10735,7 +13127,7 @@ No
-corenet_udp_receive_ssh_port( +corenet_udp_send_dhcpd_port( @@ -10750,7 +13142,7 @@ No
Description

- Receive UDP traffic on the ssh port. +Send UDP traffic on the dhcpd port.

Parameters
@@ -10761,7 +13153,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10776,7 +13168,7 @@ No
-corenet_udp_receive_swat_port( +corenet_udp_send_dict_port( @@ -10791,7 +13183,7 @@ No
Description

- Receive UDP traffic on the swat port. +Send UDP traffic on the dict port.

Parameters
@@ -10802,7 +13194,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10817,7 +13209,7 @@ No
-corenet_udp_receive_syslogd_port( +corenet_udp_send_dns_port( @@ -10832,7 +13224,7 @@ No
Description

- Receive UDP traffic on the syslogd port. +Send UDP traffic on the dns port.

Parameters
@@ -10843,7 +13235,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10858,7 +13250,7 @@ No
-corenet_udp_receive_telnetd_port( +corenet_udp_send_eth0( @@ -10873,7 +13265,7 @@ No
Description

- Receive UDP traffic on the telnetd port. +Send UDP network traffic on the eth0 interface.

Parameters
@@ -10884,7 +13276,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10899,7 +13291,7 @@ No
-corenet_udp_receive_tftp_port( +corenet_udp_send_eth1( @@ -10914,7 +13306,7 @@ No
Description

- Receive UDP traffic on the tftp port. +Send UDP network traffic on the eth1 interface.

Parameters
@@ -10925,7 +13317,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10940,7 +13332,7 @@ No
-corenet_udp_receive_unspec_node( +corenet_udp_send_eth2( @@ -10955,7 +13347,7 @@ No
Description

- Receive UDP traffic on the unspec node. +Send UDP network traffic on the eth2 interface.

Parameters
@@ -10966,7 +13358,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -10981,7 +13373,7 @@ No
-corenet_udp_receive_vnc_port( +corenet_udp_send_fingerd_port( @@ -10996,7 +13388,7 @@ No
Description

- Receive UDP traffic on the vnc port. +Send UDP traffic on the fingerd port.

Parameters
@@ -11007,7 +13399,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11022,7 +13414,7 @@ No
-corenet_udp_receive_xserver_port( +corenet_udp_send_ftp_data_port( @@ -11037,7 +13429,7 @@ No
Description

- Receive UDP traffic on the xserver port. +Send UDP traffic on the ftp_data port.

Parameters
@@ -11048,7 +13440,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11063,7 +13455,7 @@ No
-corenet_udp_receive_zebra_port( +corenet_udp_send_ftp_port( @@ -11078,7 +13470,7 @@ No
Description

- Receive UDP traffic on the zebra port. +Send UDP traffic on the ftp port.

Parameters
@@ -11089,7 +13481,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11104,7 +13496,7 @@ No
-corenet_udp_send_amanda_port( +corenet_udp_send_generic_if( @@ -11116,12 +13508,12 @@ No
- -
Description
+
Summary

- Send UDP traffic on the amanda port. +Send UDP network traffic on generic interfaces.

+
Parameters
@@ -11130,7 +13522,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -11145,7 +13537,7 @@ No
-corenet_udp_send_compat_ipv4_node( +corenet_udp_send_generic_node( @@ -11157,12 +13549,12 @@ No
- -
Description
+
Summary

- Send UDP traffic on the compat_ipv4 node. +Send UDP network traffic on generic nodes.

+
Parameters
@@ -11171,7 +13563,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -11186,7 +13578,7 @@ No
-corenet_udp_send_dbskkd_port( +corenet_udp_send_generic_port( @@ -11198,12 +13590,12 @@ No
- -
Description
+
Summary

- Send UDP traffic on the dbskkd port. +Send UDP network traffic on generic ports.

+
Parameters
@@ -11212,7 +13604,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -11227,7 +13619,7 @@ No
-corenet_udp_send_dhcpc_port( +corenet_udp_send_howl_port( @@ -11242,7 +13634,7 @@ No
Description

- Send UDP traffic on the dhcpc port. +Send UDP traffic on the howl port.

Parameters
@@ -11253,7 +13645,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11268,7 +13660,7 @@ No
-corenet_udp_send_dhcpd_port( +corenet_udp_send_http_cache_port( @@ -11283,7 +13675,7 @@ No
Description

- Send UDP traffic on the dhcpd port. +Send UDP traffic on the http_cache port.

Parameters
@@ -11294,7 +13686,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11309,7 +13701,7 @@ No
-corenet_udp_send_dict_port( +corenet_udp_send_http_port( @@ -11324,7 +13716,7 @@ No
Description

- Send UDP traffic on the dict port. +Send UDP traffic on the http port.

Parameters
@@ -11335,7 +13727,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11350,7 +13742,7 @@ No
-corenet_udp_send_dns_port( +corenet_udp_send_inaddr_any_node( @@ -11365,7 +13757,7 @@ No
Description

- Send UDP traffic on the dns port. +Send UDP traffic on the inaddr_any node.

Parameters
@@ -11376,7 +13768,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11391,7 +13783,7 @@ No
-corenet_udp_send_eth0( +corenet_udp_send_inetd_child_port( @@ -11406,7 +13798,7 @@ No
Description

- Send UDP network traffic on the eth0 interface. +Send UDP traffic on the inetd_child port.

Parameters
@@ -11417,7 +13809,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11432,7 +13824,7 @@ No
-corenet_udp_send_eth1( +corenet_udp_send_innd_port( @@ -11447,7 +13839,7 @@ No
Description

- Send UDP network traffic on the eth1 interface. +Send UDP traffic on the innd port.

Parameters
@@ -11458,7 +13850,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11473,7 +13865,7 @@ No
-corenet_udp_send_eth2( +corenet_udp_send_ipp_port( @@ -11488,7 +13880,7 @@ No
Description

- Send UDP network traffic on the eth2 interface. +Send UDP traffic on the ipp port.

Parameters
@@ -11499,7 +13891,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11514,7 +13906,7 @@ No
-corenet_udp_send_fingerd_port( +corenet_udp_send_ippp0( @@ -11529,7 +13921,7 @@ No
Description

- Send UDP traffic on the fingerd port. +Send UDP network traffic on the ippp0 interface.

Parameters
@@ -11540,7 +13932,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11555,7 +13947,7 @@ No
-corenet_udp_send_ftp_data_port( +corenet_udp_send_ipsec0( @@ -11570,7 +13962,7 @@ No
Description

- Send UDP traffic on the ftp_data port. +Send UDP network traffic on the ipsec0 interface.

Parameters
@@ -11581,7 +13973,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11596,7 +13988,7 @@ No
-corenet_udp_send_ftp_port( +corenet_udp_send_ipsec1( @@ -11611,7 +14003,7 @@ No
Description

- Send UDP traffic on the ftp port. +Send UDP network traffic on the ipsec1 interface.

Parameters
@@ -11622,7 +14014,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11637,7 +14029,7 @@ No
-corenet_udp_send_howl_port( +corenet_udp_send_ipsec2( @@ -11652,7 +14044,7 @@ No
Description

- Send UDP traffic on the howl port. +Send UDP network traffic on the ipsec2 interface.

Parameters
@@ -11663,7 +14055,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11678,7 +14070,7 @@ No
-corenet_udp_send_http_cache_port( +corenet_udp_send_kerberos_admin_port( @@ -11693,7 +14085,7 @@ No
Description

- Send UDP traffic on the http_cache port. +Send UDP traffic on the kerberos_admin port.

Parameters
@@ -11704,7 +14096,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11719,7 +14111,7 @@ No
-corenet_udp_send_http_port( +corenet_udp_send_kerberos_master_port( @@ -11734,7 +14126,7 @@ No
Description

- Send UDP traffic on the http port. +Send UDP traffic on the kerberos_master port.

Parameters
@@ -11745,7 +14137,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11760,7 +14152,7 @@ No
-corenet_udp_send_inaddr_any_node( +corenet_udp_send_kerberos_port( @@ -11775,7 +14167,7 @@ No
Description

- Send UDP traffic on the inaddr_any node. +Send UDP traffic on the kerberos port.

Parameters
@@ -11786,7 +14178,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11801,7 +14193,7 @@ No
-corenet_udp_send_inetd_child_port( +corenet_udp_send_ktalkd_port( @@ -11816,7 +14208,7 @@ No
Description

- Send UDP traffic on the inetd_child port. +Send UDP traffic on the ktalkd port.

Parameters
@@ -11827,7 +14219,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11842,7 +14234,7 @@ No
-corenet_udp_send_innd_port( +corenet_udp_send_ldap_port( @@ -11857,7 +14249,7 @@ No
Description

- Send UDP traffic on the innd port. +Send UDP traffic on the ldap port.

Parameters
@@ -11868,7 +14260,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11883,7 +14275,7 @@ No
-corenet_udp_send_ipp_port( +corenet_udp_send_link_local_node( @@ -11898,7 +14290,7 @@ No
Description

- Send UDP traffic on the ipp port. +Send UDP traffic on the link_local node.

Parameters
@@ -11909,7 +14301,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11924,7 +14316,7 @@ No
-corenet_udp_send_ippp0( +corenet_udp_send_lo( @@ -11939,7 +14331,7 @@ No
Description

- Send UDP network traffic on the ippp0 interface. +Send UDP network traffic on the lo interface.

Parameters
@@ -11950,7 +14342,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -11965,7 +14357,7 @@ No
-corenet_udp_send_ipsec0( +corenet_udp_send_lo_node( @@ -11980,7 +14372,7 @@ No
Description

- Send UDP network traffic on the ipsec0 interface. +Send UDP traffic on the lo node.

Parameters
@@ -11991,7 +14383,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12006,7 +14398,7 @@ No
-corenet_udp_send_ipsec1( +corenet_udp_send_mail_port( @@ -12021,7 +14413,7 @@ No
Description

- Send UDP network traffic on the ipsec1 interface. +Send UDP traffic on the mail port.

Parameters
@@ -12032,7 +14424,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12047,7 +14439,7 @@ No
-corenet_udp_send_ipsec2( +corenet_udp_send_mapped_ipv4_node( @@ -12062,7 +14454,7 @@ No
Description

- Send UDP network traffic on the ipsec2 interface. +Send UDP traffic on the mapped_ipv4 node.

Parameters
@@ -12073,7 +14465,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12088,7 +14480,7 @@ No
-corenet_udp_send_kerberos_admin_port( +corenet_udp_send_multicast_node( @@ -12103,7 +14495,7 @@ No
Description

- Send UDP traffic on the kerberos_admin port. +Send UDP traffic on the multicast node.

Parameters
@@ -12114,7 +14506,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12129,7 +14521,7 @@ No
-corenet_udp_send_kerberos_master_port( +corenet_udp_send_mysqld_port( @@ -12144,7 +14536,7 @@ No
Description

- Send UDP traffic on the kerberos_master port. +Send UDP traffic on the mysqld port.

Parameters
@@ -12155,7 +14547,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12170,7 +14562,7 @@ No
-corenet_udp_send_kerberos_port( +corenet_udp_send_nmbd_port( @@ -12185,7 +14577,7 @@ No
Description

- Send UDP traffic on the kerberos port. +Send UDP traffic on the nmbd port.

Parameters
@@ -12196,7 +14588,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12211,7 +14603,7 @@ No
-corenet_udp_send_ktalkd_port( +corenet_udp_send_pop_port( @@ -12226,7 +14618,7 @@ No
Description

- Send UDP traffic on the ktalkd port. +Send UDP traffic on the pop port.

Parameters
@@ -12237,7 +14629,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12252,7 +14644,7 @@ No
-corenet_udp_send_ldap_port( +corenet_udp_send_portmap_port( @@ -12267,7 +14659,7 @@ No
Description

- Send UDP traffic on the ldap port. +Send UDP traffic on the portmap port.

Parameters
@@ -12278,7 +14670,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12293,7 +14685,7 @@ No
-corenet_udp_send_link_local_node( +corenet_udp_send_postgresql_port( @@ -12308,7 +14700,7 @@ No
Description

- Send UDP traffic on the link_local node. +Send UDP traffic on the postgresql port.

Parameters
@@ -12319,7 +14711,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12334,7 +14726,7 @@ No
-corenet_udp_send_lo( +corenet_udp_send_printer_port( @@ -12349,7 +14741,7 @@ No
Description

- Send UDP network traffic on the lo interface. +Send UDP traffic on the printer port.

Parameters
@@ -12360,7 +14752,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12375,7 +14767,7 @@ No
-corenet_udp_send_lo_node( +corenet_udp_send_pxe_port( @@ -12390,7 +14782,7 @@ No
Description

- Send UDP traffic on the lo node. +Send UDP traffic on the pxe port.

Parameters
@@ -12401,7 +14793,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12416,7 +14808,7 @@ No
-corenet_udp_send_mail_port( +corenet_udp_send_radacct_port( @@ -12431,7 +14823,7 @@ No
Description

- Send UDP traffic on the mail port. +Send UDP traffic on the radacct port.

Parameters
@@ -12442,7 +14834,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12457,7 +14849,7 @@ No
-corenet_udp_send_mapped_ipv4_node( +corenet_udp_send_radius_port( @@ -12472,7 +14864,7 @@ No
Description

- Send UDP traffic on the mapped_ipv4 node. +Send UDP traffic on the radius port.

Parameters
@@ -12483,7 +14875,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12498,7 +14890,7 @@ No
-corenet_udp_send_multicast_node( +corenet_udp_send_reserved_port( @@ -12510,12 +14902,12 @@ No
- -
Description
+
Summary

- Send UDP traffic on the multicast node. +Send UDP network traffic on generic reserved ports.

+
Parameters
@@ -12524,7 +14916,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -12539,7 +14931,7 @@ No
-corenet_udp_send_mysqld_port( +corenet_udp_send_rsh_port( @@ -12554,7 +14946,7 @@ No
Description

- Send UDP traffic on the mysqld port. +Send UDP traffic on the rsh port.

Parameters
@@ -12565,7 +14957,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12580,7 +14972,7 @@ No
-corenet_udp_send_nmbd_port( +corenet_udp_send_rsync_port( @@ -12595,7 +14987,7 @@ No
Description

- Send UDP traffic on the nmbd port. +Send UDP traffic on the rsync port.

Parameters
@@ -12606,7 +14998,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12621,7 +15013,7 @@ No
-corenet_udp_send_pop_port( +corenet_udp_send_site_local_node( @@ -12636,7 +15028,7 @@ No
Description

- Send UDP traffic on the pop port. +Send UDP traffic on the site_local node.

Parameters
@@ -12647,7 +15039,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12662,7 +15054,7 @@ No
-corenet_udp_send_portmap_port( +corenet_udp_send_smbd_port( @@ -12677,7 +15069,7 @@ No
Description

- Send UDP traffic on the portmap port. +Send UDP traffic on the smbd port.

Parameters
@@ -12688,7 +15080,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12703,7 +15095,7 @@ No
-corenet_udp_send_postgresql_port( +corenet_udp_send_smtp_port( @@ -12718,7 +15110,7 @@ No
Description

- Send UDP traffic on the postgresql port. +Send UDP traffic on the smtp port.

Parameters
@@ -12729,7 +15121,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12744,7 +15136,7 @@ No
-corenet_udp_send_printer_port( +corenet_udp_send_snmp_port( @@ -12759,7 +15151,7 @@ No
Description

- Send UDP traffic on the printer port. +Send UDP traffic on the snmp port.

Parameters
@@ -12770,7 +15162,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12785,7 +15177,7 @@ No
-corenet_udp_send_pxe_port( +corenet_udp_send_ssh_port( @@ -12800,7 +15192,7 @@ No
Description

- Send UDP traffic on the pxe port. +Send UDP traffic on the ssh port.

Parameters
@@ -12811,7 +15203,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12826,7 +15218,7 @@ No
-corenet_udp_send_radacct_port( +corenet_udp_send_swat_port( @@ -12841,7 +15233,7 @@ No
Description

- Send UDP traffic on the radacct port. +Send UDP traffic on the swat port.

Parameters
@@ -12852,7 +15244,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12867,7 +15259,7 @@ No
-corenet_udp_send_radius_port( +corenet_udp_send_syslogd_port( @@ -12882,7 +15274,7 @@ No
Description

- Send UDP traffic on the radius port. +Send UDP traffic on the syslogd port.

Parameters
@@ -12893,7 +15285,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12908,7 +15300,7 @@ No
-corenet_udp_send_rsh_port( +corenet_udp_send_telnetd_port( @@ -12923,7 +15315,7 @@ No
Description

- Send UDP traffic on the rsh port. +Send UDP traffic on the telnetd port.

Parameters
@@ -12934,7 +15326,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12949,7 +15341,7 @@ No
-corenet_udp_send_rsync_port( +corenet_udp_send_tftp_port( @@ -12964,7 +15356,7 @@ No
Description

- Send UDP traffic on the rsync port. +Send UDP traffic on the tftp port.

Parameters
@@ -12975,7 +15367,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -12990,7 +15382,7 @@ No
-corenet_udp_send_site_local_node( +corenet_udp_send_unspec_node( @@ -13005,7 +15397,7 @@ No
Description

- Send UDP traffic on the site_local node. +Send UDP traffic on the unspec node.

Parameters
@@ -13016,7 +15408,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13031,7 +15423,7 @@ No
-corenet_udp_send_smbd_port( +corenet_udp_send_vnc_port( @@ -13046,7 +15438,7 @@ No
Description

- Send UDP traffic on the smbd port. +Send UDP traffic on the vnc port.

Parameters
@@ -13057,7 +15449,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13072,7 +15464,7 @@ No
-corenet_udp_send_smtp_port( +corenet_udp_send_xserver_port( @@ -13087,7 +15479,7 @@ No
Description

- Send UDP traffic on the smtp port. +Send UDP traffic on the xserver port.

Parameters
@@ -13098,7 +15490,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13113,7 +15505,7 @@ No
-corenet_udp_send_snmp_port( +corenet_udp_send_zebra_port( @@ -13128,7 +15520,7 @@ No
Description

- Send UDP traffic on the snmp port. +Send UDP traffic on the zebra port.

Parameters
@@ -13139,7 +15531,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13154,7 +15546,7 @@ No
-corenet_udp_send_ssh_port( +corenet_udp_sendrecv_all_if( @@ -13166,12 +15558,12 @@ No
- -
Description
+
Summary

- Send UDP traffic on the ssh port. +Send and receive UDP network traffic on all interfaces.

+
Parameters
@@ -13180,7 +15572,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -13195,7 +15587,7 @@ No
-corenet_udp_send_swat_port( +corenet_udp_sendrecv_all_nodes( @@ -13207,12 +15599,12 @@ No
- -
Description
+
Summary

- Send UDP traffic on the swat port. +Send and receive UDP network traffic on all nodes.

+
Parameters
@@ -13221,7 +15613,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -13236,7 +15628,7 @@ No
-corenet_udp_send_syslogd_port( +corenet_udp_sendrecv_all_ports( @@ -13248,12 +15640,12 @@ No
- -
Description
+
Summary

- Send UDP traffic on the syslogd port. +Send and receive UDP network traffic on all ports.

+
Parameters
@@ -13262,7 +15654,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -13277,7 +15669,7 @@ No
-corenet_udp_send_telnetd_port( +corenet_udp_sendrecv_all_reserved_ports( @@ -13289,12 +15681,12 @@ No
- -
Description
+
Summary

- Send UDP traffic on the telnetd port. +Send and receive UDP network traffic on all reserved ports.

+
Parameters
@@ -13303,7 +15695,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -13318,7 +15710,7 @@ No
-corenet_udp_send_tftp_port( +corenet_udp_sendrecv_amanda_port( @@ -13333,7 +15725,7 @@ No
Description

- Send UDP traffic on the tftp port. +Send and receive UDP traffic on the amanda port.

Parameters
@@ -13344,7 +15736,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13359,7 +15751,7 @@ No
-corenet_udp_send_unspec_node( +corenet_udp_sendrecv_compat_ipv4_node( @@ -13374,7 +15766,7 @@ No
Description

- Send UDP traffic on the unspec node. +Send and receive UDP traffic on the compat_ipv4 node.

Parameters
@@ -13385,7 +15777,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13400,7 +15792,7 @@ No
-corenet_udp_send_vnc_port( +corenet_udp_sendrecv_dbskkd_port( @@ -13415,7 +15807,7 @@ No
Description

- Send UDP traffic on the vnc port. +Send and receive UDP traffic on the dbskkd port.

Parameters
@@ -13426,7 +15818,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13441,7 +15833,7 @@ No
-corenet_udp_send_xserver_port( +corenet_udp_sendrecv_dhcpc_port( @@ -13456,7 +15848,7 @@ No
Description

- Send UDP traffic on the xserver port. +Send and receive UDP traffic on the dhcpc port.

Parameters
@@ -13467,7 +15859,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13482,7 +15874,7 @@ No
-corenet_udp_send_zebra_port( +corenet_udp_sendrecv_dhcpd_port( @@ -13497,7 +15889,7 @@ No
Description

- Send UDP traffic on the zebra port. +Send and receive UDP traffic on the dhcpd port.

Parameters
@@ -13508,7 +15900,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13523,7 +15915,7 @@ No
-corenet_udp_sendrecv_compat_ipv4_node( +corenet_udp_sendrecv_dict_port( @@ -13538,7 +15930,7 @@ No
Description

- Send and receive UDP traffic on the compat_ipv4 node. +Send and receive UDP traffic on the dict port.

Parameters
@@ -13549,7 +15941,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13564,7 +15956,7 @@ No
-corenet_udp_sendrecv_inaddr_any_node( +corenet_udp_sendrecv_dns_port( @@ -13579,7 +15971,7 @@ No
Description

- Send and receive UDP traffic on the inaddr_any node. +Send and receive UDP traffic on the dns port.

Parameters
@@ -13590,7 +15982,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13605,7 +15997,7 @@ No
-corenet_udp_sendrecv_link_local_node( +corenet_udp_sendrecv_eth0( @@ -13620,7 +16012,7 @@ No
Description

- Send and receive UDP traffic on the link_local node. +Send and receive UDP network traffic on the eth0 interface.

Parameters
@@ -13631,7 +16023,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13646,7 +16038,7 @@ No
-corenet_udp_sendrecv_lo_node( +corenet_udp_sendrecv_eth1( @@ -13661,7 +16053,7 @@ No
Description

- Send and receive UDP traffic on the lo node. +Send and receive UDP network traffic on the eth1 interface.

Parameters
@@ -13672,7 +16064,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13687,7 +16079,7 @@ No
-corenet_udp_sendrecv_mapped_ipv4_node( +corenet_udp_sendrecv_eth2( @@ -13702,7 +16094,7 @@ No
Description

- Send and receive UDP traffic on the mapped_ipv4 node. +Send and receive UDP network traffic on the eth2 interface.

Parameters
@@ -13713,7 +16105,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13728,7 +16120,7 @@ No
-corenet_udp_sendrecv_multicast_node( +corenet_udp_sendrecv_fingerd_port( @@ -13743,7 +16135,7 @@ No
Description

- Send and receive UDP traffic on the multicast node. +Send and receive UDP traffic on the fingerd port.

Parameters
@@ -13754,7 +16146,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13769,7 +16161,7 @@ No
-corenet_udp_sendrecv_site_local_node( +corenet_udp_sendrecv_ftp_data_port( @@ -13784,7 +16176,7 @@ No
Description

- Send and receive UDP traffic on the site_local node. +Send and receive UDP traffic on the ftp_data port.

Parameters
@@ -13795,7 +16187,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13810,7 +16202,7 @@ No
-corenet_udp_sendrecv_unspec_node( +corenet_udp_sendrecv_ftp_port( @@ -13825,7 +16217,7 @@ No
Description

- Send and receive UDP traffic on the unspec node. +Send and receive UDP traffic on the ftp port.

Parameters
@@ -13836,7 +16228,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -13851,7 +16243,7 @@ No
-corenetwork_sendrecv_udp_on_amanda_port( +corenet_udp_sendrecv_generic_if( @@ -13863,12 +16255,12 @@ No
- -
Description
+
Summary

- Send and receive UDP traffic on the amanda port. +Send and Receive UDP network traffic on generic interfaces.

+
Parameters
@@ -13877,7 +16269,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -13892,7 +16284,7 @@ No
-corenetwork_sendrecv_udp_on_dbskkd_port( +corenet_udp_sendrecv_generic_node( @@ -13904,12 +16296,12 @@ No
- -
Description
+
Summary

- Send and receive UDP traffic on the dbskkd port. +Send and receive UDP network traffic on generic nodes.

+
Parameters
@@ -13918,7 +16310,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -13933,7 +16325,7 @@ No
-corenetwork_sendrecv_udp_on_dhcpc_port( +corenet_udp_sendrecv_generic_port( @@ -13945,12 +16337,12 @@ No
- -
Description
+
Summary

- Send and receive UDP traffic on the dhcpc port. +Send and receive UDP network traffic on generic ports.

+
Parameters
@@ -13959,7 +16351,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -13974,7 +16366,7 @@ No
-corenetwork_sendrecv_udp_on_dhcpd_port( +corenet_udp_sendrecv_howl_port( @@ -13989,7 +16381,7 @@ No
Description

- Send and receive UDP traffic on the dhcpd port. +Send and receive UDP traffic on the howl port.

Parameters
@@ -14000,7 +16392,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14015,7 +16407,7 @@ No
-corenetwork_sendrecv_udp_on_dict_port( +corenet_udp_sendrecv_http_cache_port( @@ -14030,7 +16422,7 @@ No
Description

- Send and receive UDP traffic on the dict port. +Send and receive UDP traffic on the http_cache port.

Parameters
@@ -14041,7 +16433,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14056,7 +16448,7 @@ No
-corenetwork_sendrecv_udp_on_dns_port( +corenet_udp_sendrecv_http_port( @@ -14071,7 +16463,7 @@ No
Description

- Send and receive UDP traffic on the dns port. +Send and receive UDP traffic on the http port.

Parameters
@@ -14082,7 +16474,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14097,7 +16489,7 @@ No
-corenetwork_sendrecv_udp_on_eth0_interface( +corenet_udp_sendrecv_inaddr_any_node( @@ -14112,7 +16504,7 @@ No
Description

- Send and receive UDP network traffic on the eth0 interface. +Send and receive UDP traffic on the inaddr_any node.

Parameters
@@ -14123,7 +16515,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14138,7 +16530,7 @@ No
-corenetwork_sendrecv_udp_on_eth1_interface( +corenet_udp_sendrecv_inetd_child_port( @@ -14153,7 +16545,7 @@ No
Description

- Send and receive UDP network traffic on the eth1 interface. +Send and receive UDP traffic on the inetd_child port.

Parameters
@@ -14164,7 +16556,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14179,7 +16571,7 @@ No
-corenetwork_sendrecv_udp_on_eth2_interface( +corenet_udp_sendrecv_innd_port( @@ -14194,7 +16586,7 @@ No
Description

- Send and receive UDP network traffic on the eth2 interface. +Send and receive UDP traffic on the innd port.

Parameters
@@ -14205,7 +16597,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14220,7 +16612,7 @@ No
-corenetwork_sendrecv_udp_on_fingerd_port( +corenet_udp_sendrecv_ipp_port( @@ -14235,7 +16627,7 @@ No
Description

- Send and receive UDP traffic on the fingerd port. +Send and receive UDP traffic on the ipp port.

Parameters
@@ -14246,7 +16638,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14261,7 +16653,7 @@ No
-corenetwork_sendrecv_udp_on_ftp_data_port( +corenet_udp_sendrecv_ippp0( @@ -14276,7 +16668,7 @@ No
Description

- Send and receive UDP traffic on the ftp_data port. +Send and receive UDP network traffic on the ippp0 interface.

Parameters
@@ -14287,7 +16679,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14302,7 +16694,7 @@ No
-corenetwork_sendrecv_udp_on_ftp_port( +corenet_udp_sendrecv_ipsec0( @@ -14317,7 +16709,7 @@ No
Description

- Send and receive UDP traffic on the ftp port. +Send and receive UDP network traffic on the ipsec0 interface.

Parameters
@@ -14328,7 +16720,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14343,7 +16735,7 @@ No
-corenetwork_sendrecv_udp_on_howl_port( +corenet_udp_sendrecv_ipsec1( @@ -14358,7 +16750,7 @@ No
Description

- Send and receive UDP traffic on the howl port. +Send and receive UDP network traffic on the ipsec1 interface.

Parameters
@@ -14369,7 +16761,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14384,7 +16776,7 @@ No
-corenetwork_sendrecv_udp_on_http_cache_port( +corenet_udp_sendrecv_ipsec2( @@ -14399,7 +16791,7 @@ No
Description

- Send and receive UDP traffic on the http_cache port. +Send and receive UDP network traffic on the ipsec2 interface.

Parameters
@@ -14410,7 +16802,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14425,7 +16817,7 @@ No
-corenetwork_sendrecv_udp_on_http_port( +corenet_udp_sendrecv_kerberos_admin_port( @@ -14440,7 +16832,7 @@ No
Description

- Send and receive UDP traffic on the http port. +Send and receive UDP traffic on the kerberos_admin port.

Parameters
@@ -14451,7 +16843,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14466,7 +16858,7 @@ No
-corenetwork_sendrecv_udp_on_inetd_child_port( +corenet_udp_sendrecv_kerberos_master_port( @@ -14481,7 +16873,7 @@ No
Description

- Send and receive UDP traffic on the inetd_child port. +Send and receive UDP traffic on the kerberos_master port.

Parameters
@@ -14492,7 +16884,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14507,7 +16899,7 @@ No
-corenetwork_sendrecv_udp_on_innd_port( +corenet_udp_sendrecv_kerberos_port( @@ -14522,7 +16914,7 @@ No
Description

- Send and receive UDP traffic on the innd port. +Send and receive UDP traffic on the kerberos port.

Parameters
@@ -14533,7 +16925,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14548,7 +16940,7 @@ No
-corenetwork_sendrecv_udp_on_ipp_port( +corenet_udp_sendrecv_ktalkd_port( @@ -14563,7 +16955,7 @@ No
Description

- Send and receive UDP traffic on the ipp port. +Send and receive UDP traffic on the ktalkd port.

Parameters
@@ -14574,7 +16966,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14589,7 +16981,7 @@ No
-corenetwork_sendrecv_udp_on_ippp0_interface( +corenet_udp_sendrecv_ldap_port( @@ -14604,7 +16996,7 @@ No
Description

- Send and receive UDP network traffic on the ippp0 interface. +Send and receive UDP traffic on the ldap port.

Parameters
@@ -14615,7 +17007,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14630,7 +17022,7 @@ No
-corenetwork_sendrecv_udp_on_ipsec0_interface( +corenet_udp_sendrecv_link_local_node( @@ -14645,7 +17037,7 @@ No
Description

- Send and receive UDP network traffic on the ipsec0 interface. +Send and receive UDP traffic on the link_local node.

Parameters
@@ -14656,7 +17048,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14671,7 +17063,7 @@ No
-corenetwork_sendrecv_udp_on_ipsec1_interface( +corenet_udp_sendrecv_lo( @@ -14686,7 +17078,7 @@ No
Description

- Send and receive UDP network traffic on the ipsec1 interface. +Send and receive UDP network traffic on the lo interface.

Parameters
@@ -14697,7 +17089,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14712,7 +17104,7 @@ No
-corenetwork_sendrecv_udp_on_ipsec2_interface( +corenet_udp_sendrecv_lo_node( @@ -14727,7 +17119,7 @@ No
Description

- Send and receive UDP network traffic on the ipsec2 interface. +Send and receive UDP traffic on the lo node.

Parameters
@@ -14738,7 +17130,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14753,7 +17145,7 @@ No
-corenetwork_sendrecv_udp_on_kerberos_admin_port( +corenet_udp_sendrecv_mail_port( @@ -14768,7 +17160,7 @@ No
Description

- Send and receive UDP traffic on the kerberos_admin port. +Send and receive UDP traffic on the mail port.

Parameters
@@ -14779,7 +17171,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14794,7 +17186,7 @@ No
-corenetwork_sendrecv_udp_on_kerberos_master_port( +corenet_udp_sendrecv_mapped_ipv4_node( @@ -14809,7 +17201,7 @@ No
Description

- Send and receive UDP traffic on the kerberos_master port. +Send and receive UDP traffic on the mapped_ipv4 node.

Parameters
@@ -14820,7 +17212,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14835,7 +17227,7 @@ No
-corenetwork_sendrecv_udp_on_kerberos_port( +corenet_udp_sendrecv_multicast_node( @@ -14850,7 +17242,7 @@ No
Description

- Send and receive UDP traffic on the kerberos port. +Send and receive UDP traffic on the multicast node.

Parameters
@@ -14861,7 +17253,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14876,7 +17268,7 @@ No
-corenetwork_sendrecv_udp_on_ktalkd_port( +corenet_udp_sendrecv_mysqld_port( @@ -14891,7 +17283,7 @@ No
Description

- Send and receive UDP traffic on the ktalkd port. +Send and receive UDP traffic on the mysqld port.

Parameters
@@ -14902,7 +17294,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14917,7 +17309,7 @@ No
-corenetwork_sendrecv_udp_on_ldap_port( +corenet_udp_sendrecv_nmbd_port( @@ -14932,7 +17324,7 @@ No
Description

- Send and receive UDP traffic on the ldap port. +Send and receive UDP traffic on the nmbd port.

Parameters
@@ -14943,7 +17335,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14958,7 +17350,7 @@ No
-corenetwork_sendrecv_udp_on_lo_interface( +corenet_udp_sendrecv_pop_port( @@ -14973,7 +17365,7 @@ No
Description

- Send and receive UDP network traffic on the lo interface. +Send and receive UDP traffic on the pop port.

Parameters
@@ -14984,7 +17376,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -14999,7 +17391,7 @@ No
-corenetwork_sendrecv_udp_on_mail_port( +corenet_udp_sendrecv_portmap_port( @@ -15014,7 +17406,7 @@ No
Description

- Send and receive UDP traffic on the mail port. +Send and receive UDP traffic on the portmap port.

Parameters
@@ -15025,7 +17417,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15040,7 +17432,7 @@ No
-corenetwork_sendrecv_udp_on_mysqld_port( +corenet_udp_sendrecv_postgresql_port( @@ -15055,7 +17447,7 @@ No
Description

- Send and receive UDP traffic on the mysqld port. +Send and receive UDP traffic on the postgresql port.

Parameters
@@ -15066,7 +17458,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15081,7 +17473,7 @@ No
-corenetwork_sendrecv_udp_on_nmbd_port( +corenet_udp_sendrecv_printer_port( @@ -15096,7 +17488,7 @@ No
Description

- Send and receive UDP traffic on the nmbd port. +Send and receive UDP traffic on the printer port.

Parameters
@@ -15107,7 +17499,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15122,7 +17514,7 @@ No
-corenetwork_sendrecv_udp_on_pop_port( +corenet_udp_sendrecv_pxe_port( @@ -15137,7 +17529,7 @@ No
Description

- Send and receive UDP traffic on the pop port. +Send and receive UDP traffic on the pxe port.

Parameters
@@ -15148,7 +17540,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15163,7 +17555,7 @@ No
-corenetwork_sendrecv_udp_on_portmap_port( +corenet_udp_sendrecv_radacct_port( @@ -15178,7 +17570,7 @@ No
Description

- Send and receive UDP traffic on the portmap port. +Send and receive UDP traffic on the radacct port.

Parameters
@@ -15189,7 +17581,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15204,7 +17596,7 @@ No
-corenetwork_sendrecv_udp_on_postgresql_port( +corenet_udp_sendrecv_radius_port( @@ -15219,7 +17611,7 @@ No
Description

- Send and receive UDP traffic on the postgresql port. +Send and receive UDP traffic on the radius port.

Parameters
@@ -15230,7 +17622,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15245,7 +17637,7 @@ No
-corenetwork_sendrecv_udp_on_printer_port( +corenet_udp_sendrecv_reserved_port( @@ -15257,12 +17649,12 @@ No
- -
Description
+
Summary

- Send and receive UDP traffic on the printer port. +Send and receive UDP network traffic on generic reserved ports.

+
Parameters
@@ -15271,7 +17663,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -15286,7 +17678,7 @@ No
-corenetwork_sendrecv_udp_on_pxe_port( +corenet_udp_sendrecv_rsh_port( @@ -15301,7 +17693,7 @@ No
Description

- Send and receive UDP traffic on the pxe port. +Send and receive UDP traffic on the rsh port.

Parameters
@@ -15312,7 +17704,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15327,7 +17719,7 @@ No
-corenetwork_sendrecv_udp_on_radacct_port( +corenet_udp_sendrecv_rsync_port( @@ -15342,7 +17734,7 @@ No
Description

- Send and receive UDP traffic on the radacct port. +Send and receive UDP traffic on the rsync port.

Parameters
@@ -15353,7 +17745,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15368,7 +17760,7 @@ No
-corenetwork_sendrecv_udp_on_radius_port( +corenet_udp_sendrecv_site_local_node( @@ -15383,7 +17775,7 @@ No
Description

- Send and receive UDP traffic on the radius port. +Send and receive UDP traffic on the site_local node.

Parameters
@@ -15394,7 +17786,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15409,7 +17801,7 @@ No
-corenetwork_sendrecv_udp_on_rsh_port( +corenet_udp_sendrecv_smbd_port( @@ -15424,7 +17816,7 @@ No
Description

- Send and receive UDP traffic on the rsh port. +Send and receive UDP traffic on the smbd port.

Parameters
@@ -15435,7 +17827,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15450,7 +17842,7 @@ No
-corenetwork_sendrecv_udp_on_rsync_port( +corenet_udp_sendrecv_smtp_port( @@ -15465,7 +17857,7 @@ No
Description

- Send and receive UDP traffic on the rsync port. +Send and receive UDP traffic on the smtp port.

Parameters
@@ -15476,7 +17868,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15491,7 +17883,7 @@ No
-corenetwork_sendrecv_udp_on_smbd_port( +corenet_udp_sendrecv_snmp_port( @@ -15506,7 +17898,7 @@ No
Description

- Send and receive UDP traffic on the smbd port. +Send and receive UDP traffic on the snmp port.

Parameters
@@ -15517,7 +17909,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15532,7 +17924,7 @@ No
-corenetwork_sendrecv_udp_on_smtp_port( +corenet_udp_sendrecv_ssh_port( @@ -15547,7 +17939,7 @@ No
Description

- Send and receive UDP traffic on the smtp port. +Send and receive UDP traffic on the ssh port.

Parameters
@@ -15558,7 +17950,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15573,7 +17965,7 @@ No
-corenetwork_sendrecv_udp_on_snmp_port( +corenet_udp_sendrecv_swat_port( @@ -15588,7 +17980,7 @@ No
Description

- Send and receive UDP traffic on the snmp port. +Send and receive UDP traffic on the swat port.

Parameters
@@ -15599,7 +17991,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15614,7 +18006,7 @@ No
-corenetwork_sendrecv_udp_on_ssh_port( +corenet_udp_sendrecv_syslogd_port( @@ -15629,7 +18021,7 @@ No
Description

- Send and receive UDP traffic on the ssh port. +Send and receive UDP traffic on the syslogd port.

Parameters
@@ -15640,7 +18032,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15655,7 +18047,7 @@ No
-corenetwork_sendrecv_udp_on_swat_port( +corenet_udp_sendrecv_telnetd_port( @@ -15670,7 +18062,7 @@ No
Description

- Send and receive UDP traffic on the swat port. +Send and receive UDP traffic on the telnetd port.

Parameters
@@ -15681,7 +18073,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15696,7 +18088,7 @@ No
-corenetwork_sendrecv_udp_on_syslogd_port( +corenet_udp_sendrecv_tftp_port( @@ -15711,7 +18103,7 @@ No
Description

- Send and receive UDP traffic on the syslogd port. +Send and receive UDP traffic on the tftp port.

Parameters
@@ -15722,7 +18114,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15737,7 +18129,7 @@ No
-corenetwork_sendrecv_udp_on_telnetd_port( +corenet_udp_sendrecv_unspec_node( @@ -15752,7 +18144,7 @@ No
Description

- Send and receive UDP traffic on the telnetd port. +Send and receive UDP traffic on the unspec node.

Parameters
@@ -15763,7 +18155,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15778,7 +18170,7 @@ No
-corenetwork_sendrecv_udp_on_tftp_port( +corenet_udp_sendrecv_vnc_port( @@ -15793,7 +18185,7 @@ No
Description

- Send and receive UDP traffic on the tftp port. +Send and receive UDP traffic on the vnc port.

Parameters
@@ -15804,7 +18196,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15819,7 +18211,7 @@ No
-corenetwork_sendrecv_udp_on_vnc_port( +corenet_udp_sendrecv_xserver_port( @@ -15834,7 +18226,7 @@ No
Description

- Send and receive UDP traffic on the vnc port. +Send and receive UDP traffic on the xserver port.

Parameters
@@ -15845,7 +18237,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15860,7 +18252,7 @@ No
-corenetwork_sendrecv_udp_on_xserver_port( +corenet_udp_sendrecv_zebra_port( @@ -15875,7 +18267,7 @@ No
Description

- Send and receive UDP traffic on the xserver port. +Send and receive UDP traffic on the zebra port.

Parameters
@@ -15886,7 +18278,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -15901,7 +18293,7 @@ No
-corenetwork_sendrecv_udp_on_zebra_port( +corenet_use_tun_tap_device( @@ -15913,12 +18305,12 @@ No
- -
Description
+
Summary

- Send and receive UDP traffic on the zebra port. +Read and write the TUN/TAP virtual network device.

+
Parameters
@@ -15927,7 +18319,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +The domain allowed access. No @@ -15938,6 +18330,9 @@ No +Return + + diff --git a/www/api-docs/kernel_devices.html b/www/api-docs/kernel_devices.html index 14a1a9d..c899619 100644 --- a/www/api-docs/kernel_devices.html +++ b/www/api-docs/kernel_devices.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -59,11 +65,17 @@

* Interface Index +

+ * Template Index

+

Layer: kernel

Module: devices

+ + +

Description:

@@ -80,10 +92,12 @@ are used to label device nodes should use the dev_node macro.

Additionally, this module controls access to three things: -

  • the device directories containing device nodes
  • device nodes as a group
  • individual access to specific device nodes covered by - this module.

+

  • the device directories containing device nodes
  • device nodes as a group
  • individual access to specific device nodes covered by + this module.

+ +

Interfaces:

@@ -121,8 +135,8 @@ Additionally, this module controls access to three things:
Summary

- Create, read, and write device nodes. The node - will be transitioned to the type provided. +Create, read, and write device nodes. The node +will be transitioned to the type provided.

@@ -134,7 +148,7 @@ Additionally, this module controls access to three things: domain
- Domain allowed access. +Domain allowed access. No @@ -144,7 +158,7 @@ No file - Type to which the created node will be transitioned. +Type to which the created node will be transitioned. No @@ -154,8 +168,8 @@ No objectclass(es) - Object class(es) (single or set including {}) for which this - the transition will occur. +Object class(es) (single or set including {}) for which this +the transition will occur. No @@ -184,7 +198,7 @@ No
Summary

- Create a directory in the device directory. +Create a directory in the device directory.

@@ -196,7 +210,7 @@ No domain
- Domain allowed to create the directory. +Domain allowed to create the directory. No @@ -225,7 +239,7 @@ No
Summary

- Allow read, write, and create for generic character device files. +Allow read, write, and create for generic character device files.

@@ -237,7 +251,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -266,7 +280,7 @@ No
Summary

- Delete symbolic links in device directories. +Delete symbolic links in device directories.

@@ -278,7 +292,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -307,7 +321,7 @@ No
Summary

- Delete the lvm control device. +Delete the lvm control device.

@@ -319,7 +333,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -348,7 +362,7 @@ No
Summary

- Dontaudit getattr on all block file device nodes. +Dontaudit getattr on all block file device nodes.

@@ -360,7 +374,7 @@ No domain
- Domain to dontaudit access. +Domain to dontaudit access. No @@ -389,7 +403,49 @@ No
Summary

- Dontaudit getattr on all character file device nodes. +Dontaudit getattr on all character file device nodes. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain to dontaudit access. + + +No +
+ + + +
+ + +
+ +dev_dontaudit_getattr_apm_bios( + + + + + domain + + + )
+
+
+ +
Summary
+

+Do not audit attempts to get the attributes of +the apm bios device node.

@@ -401,7 +457,7 @@ No domain
- Domain to dontaudit access. +Domain to not audit. No @@ -430,7 +486,7 @@ No
Summary

- Dontaudit getattr on generic block devices. +Dontaudit getattr on generic block devices.

@@ -442,7 +498,7 @@ No domain
- Domain to dontaudit access. +Domain to dontaudit access. No @@ -471,7 +527,7 @@ No
Summary

- Dontaudit getattr for generic character device files. +Dontaudit getattr for generic character device files.

@@ -483,7 +539,7 @@ No domain
- Domain to dontaudit access. +Domain to dontaudit access. No @@ -512,7 +568,7 @@ No
Summary

- Dontaudit getattr on generic pipes. +Dontaudit getattr on generic pipes.

@@ -524,7 +580,7 @@ No domain
- Domain to dontaudit. +Domain to dontaudit. No @@ -539,7 +595,7 @@ No
-dev_dontaudit_list_all_dev_nodes( +dev_dontaudit_getattr_misc( @@ -553,7 +609,8 @@ No
Summary

- Dontaudit attempts to list all device nodes. +Do not audit attempts to get the attributes +of miscellaneous devices.

@@ -565,7 +622,7 @@ No domain
- Domain to dontaudit listing of device nodes. +Domain allowed access. No @@ -580,7 +637,7 @@ No
-dev_dontaudit_rw_dri_dev( +dev_dontaudit_getattr_scanner( @@ -594,7 +651,8 @@ No
Summary

- Dontaudit read and write on the dri devices. +Do not audit attempts to get the attributes of +the scanner device.

@@ -606,7 +664,7 @@ No domain
- Domain to dontaudit access. +Domain to not audit. No @@ -621,7 +679,7 @@ No
-dev_dontaudit_rw_generic_dev_nodes( +dev_dontaudit_getattr_video_dev( @@ -635,7 +693,8 @@ No
Summary

- Dontaudit getattr for generic device files. +Do not audit attempts to get the attributes +of video4linux device nodes.

@@ -647,7 +706,7 @@ No domain
- Domain to dontaudit access. +Domain to not audit. No @@ -662,7 +721,7 @@ No
-dev_getattr_agp_dev( +dev_dontaudit_list_all_dev_nodes( @@ -676,7 +735,7 @@ No
Summary

- Getattr the agp devices. +Dontaudit attempts to list all device nodes.

@@ -688,7 +747,7 @@ No domain
- Domain allowed access. +Domain to dontaudit listing of device nodes. No @@ -703,7 +762,7 @@ No
-dev_getattr_all_blk_files( +dev_dontaudit_read_framebuffer( @@ -717,7 +776,7 @@ No
Summary

- Getattr on all block file device nodes. +Do not audit attempts to read the framebuffer.

@@ -729,7 +788,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -744,7 +803,7 @@ No
-dev_getattr_all_chr_files( +dev_dontaudit_rw_dri_dev( @@ -758,7 +817,7 @@ No
Summary

- Getattr on all character file device nodes. +Dontaudit read and write on the dri devices.

@@ -770,7 +829,7 @@ No domain
- Domain allowed access. +Domain to dontaudit access. No @@ -785,7 +844,7 @@ No
-dev_getattr_generic_blk_file( +dev_dontaudit_rw_generic_dev_nodes( @@ -799,7 +858,7 @@ No
Summary

- Allow getattr on generic block devices. +Dontaudit getattr for generic device files.

@@ -811,7 +870,7 @@ No domain
- Domain allowed access. +Domain to dontaudit access. No @@ -826,7 +885,7 @@ No
-dev_getattr_generic_chr_file( +dev_dontaudit_search_sysfs( @@ -840,7 +899,7 @@ No
Summary

- Allow getattr for generic character device files. +Do not audit attempts to search sysfs.

@@ -852,7 +911,7 @@ No domain
- Domain allowed access. +The type of the process performing this action. No @@ -867,7 +926,7 @@ No
-dev_list_all_dev_nodes( +dev_dontaudit_setattr_apm_bios( @@ -881,7 +940,8 @@ No
Summary

- List all of the device nodes in a device directory. +Do not audit attempts to set the attributes of +the apm bios device node.

@@ -893,7 +953,7 @@ No domain
- Domain allowed to list device nodes. +Domain to not audit. No @@ -908,7 +968,7 @@ No
-dev_list_usbfs( +dev_dontaudit_setattr_framebuffer( @@ -920,12 +980,13 @@ No
- -
Description
+
Summary

- Allow caller to get a list of usb hardware. +Dot not audit attempts to set the attributes +of the framebuffer device node.

+
Parameters
@@ -934,7 +995,7 @@ No domain
Parameter:Description:Optional:
- The process type getting the list. +Domain to not audit. No @@ -949,7 +1010,7 @@ No
-dev_manage_all_blk_files( +dev_dontaudit_setattr_generic_blk_file( @@ -963,7 +1024,7 @@ No
Summary

- Read, write, create, and delete all block device files. +Dontaudit setattr on generic block devices.

@@ -975,7 +1036,7 @@ No domain
- Domain allowed access. +Domain to dontaudit access. No @@ -990,7 +1051,7 @@ No
-dev_manage_all_chr_files( +dev_dontaudit_setattr_generic_chr_file( @@ -1004,7 +1065,7 @@ No
Summary

- Read, write, create, and delete all character device files. +Dontaudit setattr for generic character device files.

@@ -1016,7 +1077,7 @@ No domain
- Domain allowed access. +Domain to dontaudit access. No @@ -1031,7 +1092,7 @@ No
-dev_manage_dev_nodes( +dev_dontaudit_setattr_misc( @@ -1045,7 +1106,8 @@ No
Summary

- Create, delete, read, and write device nodes in device directories. +Do not audit attempts to set the attributes +of miscellaneous devices.

@@ -1057,7 +1119,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -1072,7 +1134,7 @@ No
-dev_manage_generic_blk_file( +dev_dontaudit_setattr_scanner( @@ -1086,8 +1148,8 @@ No
Summary

- Allow read, write, create, and delete for generic - block files. +Do not audit attempts to set the attributes of +the scanner device.

@@ -1099,7 +1161,7 @@ No domain
- Domain allowed access. +Domain to not audit. No @@ -1114,7 +1176,7 @@ No
-dev_manage_generic_blk_file( +dev_dontaudit_setattr_video_dev( @@ -1128,7 +1190,8 @@ No
Summary

- Create, delete, read, and write block device files. +Do not audit attempts to set the attributes +of video4linux device nodes.

@@ -1140,7 +1203,7 @@ No domain
- Domain allowed access. +Domain to not audit. No @@ -1155,7 +1218,7 @@ No
-dev_manage_generic_chr_file( +dev_getattr_agp_dev( @@ -1169,7 +1232,7 @@ No
Summary

- Create, delete, read, and write character device files. +Getattr the agp devices.

@@ -1181,7 +1244,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -1196,7 +1259,7 @@ No
-dev_manage_generic_symlinks( +dev_getattr_all_blk_files( @@ -1210,7 +1273,7 @@ No
Summary

- Create, delete, read, and write symbolic links in device directories. +Getattr on all block file device nodes.

@@ -1222,7 +1285,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -1237,12 +1300,12 @@ No
-dev_node( +dev_getattr_all_chr_files( - object_type + domain )
@@ -1251,8 +1314,7 @@ No
Summary

- Make the passed in type a type appropriate for - use on device nodes (usually files in /dev). +Getattr on all character file device nodes.

@@ -1261,10 +1323,10 @@ No
Parameter:Description:Optional:
-object_type +domain - The object type that will be used on device nodes. +Domain allowed access. No @@ -1279,7 +1341,7 @@ No
-dev_read_cpuid( +dev_getattr_apm_bios( @@ -1293,7 +1355,7 @@ No
Summary

- Read the multiplexed input device (/dev/input). +Get the attributes of the apm bios device node.

@@ -1305,7 +1367,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -1320,7 +1382,7 @@ No
-dev_read_framebuffer( +dev_getattr_framebuffer( @@ -1334,7 +1396,7 @@ No
Summary

- Read the framebuffer device. +Get the attributes of the framebuffer device node.

@@ -1346,7 +1408,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -1361,7 +1423,7 @@ No
-dev_read_input( +dev_getattr_generic_blk_file( @@ -1375,7 +1437,7 @@ No
Summary

- Read the multiplexed input device (/dev/input). +Allow getattr on generic block devices.

@@ -1387,7 +1449,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -1402,7 +1464,7 @@ No
-dev_read_lvm_control( +dev_getattr_generic_chr_file( @@ -1416,7 +1478,7 @@ No
Summary

- Read the lvm comtrol device. +Allow getattr for generic character device files.

@@ -1428,7 +1490,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -1443,7 +1505,7 @@ No
-dev_read_misc( +dev_getattr_misc( @@ -1457,7 +1519,7 @@ No
Summary

- Read miscellaneous devices. +Get the attributes of miscellaneous devices.

@@ -1469,7 +1531,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -1484,7 +1546,7 @@ No
-dev_read_mouse( +dev_getattr_mouse( @@ -1498,7 +1560,7 @@ No
Summary

- Read the mouse devices. +Get the attributes of the mouse devices.

@@ -1510,7 +1572,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -1525,7 +1587,7 @@ No
-dev_read_mtrr( +dev_getattr_power_management( @@ -1539,7 +1601,7 @@ No
Summary

- Read the mtrr device. +Get the attributes of the the power management device.

@@ -1551,7 +1613,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -1566,7 +1628,7 @@ No
-dev_read_rand( +dev_getattr_scanner( @@ -1580,7 +1642,7 @@ No
Summary

- Read from random devices (e.g., /dev/random) +Get the attributes of the scanner device.

@@ -1592,7 +1654,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -1607,7 +1669,7 @@ No
-dev_read_raw_memory( +dev_getattr_snd_dev( @@ -1621,7 +1683,7 @@ No
Summary

- Read raw memory devices (e.g. /dev/mem). +Get the attributes of the sound devices.

@@ -1633,7 +1695,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -1648,7 +1710,7 @@ No
-dev_read_realtime_clock( +dev_getattr_sysfs_dir( @@ -1662,7 +1724,7 @@ No
Summary

- Read the realtime clock (/dev/rtc). +Get the attributes of sysfs directories.

@@ -1674,7 +1736,7 @@ No domain
- Domain allowed access. +The type of the process performing this action. No @@ -1689,7 +1751,7 @@ No
-dev_read_snd_dev( +dev_getattr_video_dev( @@ -1703,7 +1765,7 @@ No
Summary

- Read the sound devices. +Get the attributes of video4linux devices.

@@ -1715,7 +1777,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -1730,7 +1792,7 @@ No
-dev_read_snd_mixer_dev( +dev_list_all_dev_nodes( @@ -1744,7 +1806,7 @@ No
Summary

- Read the sound mixer devices. +List all of the device nodes in a device directory.

@@ -1756,7 +1818,7 @@ No domain
- Domain allowed access. +Domain allowed to list device nodes. No @@ -1771,7 +1833,7 @@ No
-dev_read_sysfs( +dev_list_usbfs( @@ -1783,12 +1845,12 @@ No
- -
Description
+
Summary

- Allow caller to read hardware state information. +Allow caller to get a list of usb hardware.

+
Parameters
@@ -1797,7 +1859,7 @@ No domain
Parameter:Description:Optional:
- The process type reading hardware state information. +The process type getting the list. No @@ -1812,7 +1874,7 @@ No
-dev_read_urand( +dev_manage_all_blk_files( @@ -1826,7 +1888,7 @@ No
Summary

- Read from pseudo random devices (e.g., /dev/urandom) +Read, write, create, and delete all block device files.

@@ -1838,7 +1900,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -1853,7 +1915,7 @@ No
-dev_read_usbfs( +dev_manage_all_chr_files( @@ -1865,13 +1927,12 @@ No
- -
Description
+
Summary

- Read USB hardware information using - the usbfs filesystem interface. +Read, write, create, and delete all character device files.

+
Parameters
@@ -1880,7 +1941,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +Domain allowed access. No @@ -1895,7 +1956,7 @@ No
-dev_relabel_all_dev_nodes( +dev_manage_dev_nodes( @@ -1909,7 +1970,7 @@ No
Summary

- Allow full relabeling (to and from) of all device nodes. +Create, delete, read, and write device nodes in device directories.

@@ -1921,7 +1982,7 @@ No domain
- Domain allowed to relabel. +Domain allowed access. No @@ -1936,7 +1997,7 @@ No
-dev_relabel_dev_dirs( +dev_manage_generic_blk_file( @@ -1950,7 +2011,8 @@ No
Summary

- Allow full relabeling (to and from) of directories in /dev. +Allow read, write, create, and delete for generic +block files.

@@ -1962,7 +2024,7 @@ No domain
- Domain allowed to relabel. +Domain allowed access. No @@ -1977,7 +2039,7 @@ No
-dev_rw_agp_dev( +dev_manage_generic_blk_file( @@ -1991,7 +2053,7 @@ No
Summary

- Read and write the agp devices. +Create, delete, read, and write block device files.

@@ -2003,7 +2065,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2018,7 +2080,7 @@ No
-dev_rw_cpu_microcode( +dev_manage_generic_chr_file( @@ -2032,8 +2094,7 @@ No
Summary

- Read and write the the cpu microcode device. This - is required to load cpu microcode. +Create, delete, read, and write character device files.

@@ -2045,7 +2106,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2060,7 +2121,7 @@ No
-dev_rw_dri_dev( +dev_manage_generic_symlinks( @@ -2074,7 +2135,7 @@ No
Summary

- Read and write the dri devices. +Create, delete, read, and write symbolic links in device directories.

@@ -2086,7 +2147,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2101,7 +2162,7 @@ No
-dev_rw_lvm_control( +dev_mount_usbfs( @@ -2115,7 +2176,7 @@ No
Summary

- Read and write the lvm control device. +Mount a usbfs filesystem.

@@ -2127,7 +2188,7 @@ No domain
- Domain allowed access. +The type of the process performing this action. No @@ -2142,7 +2203,49 @@ No
-dev_rw_null_dev( +dev_node( + + + + + object_type + + + )
+
+
+ +
Summary
+

+Make the passed in type a type appropriate for +use on device nodes (usually files in /dev). +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+object_type + + +The object type that will be used on device nodes. + + +No +
+
+ + +
+ + +
+ +dev_read_cpuid( @@ -2156,7 +2259,7 @@ No
Summary

- Read and write to the null device (/dev/null). +Read the multiplexed input device (/dev/input).

@@ -2168,7 +2271,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2183,7 +2286,7 @@ No
-dev_rw_power_management( +dev_read_framebuffer( @@ -2197,7 +2300,7 @@ No
Summary

- Read and write the the power management device. +Read the framebuffer.

@@ -2209,7 +2312,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2224,7 +2327,7 @@ No
-dev_rw_realtime_clock( +dev_read_input( @@ -2238,7 +2341,7 @@ No
Summary

- Read the realtime clock (/dev/rtc). +Read the multiplexed input device (/dev/input).

@@ -2250,7 +2353,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2265,7 +2368,7 @@ No
-dev_rw_scanner( +dev_read_lvm_control( @@ -2279,7 +2382,7 @@ No
Summary

- Read and write the the scanner device. +Read the lvm comtrol device.

@@ -2291,7 +2394,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2306,7 +2409,7 @@ No
-dev_rw_sysfs( +dev_read_misc( @@ -2318,12 +2421,12 @@ No
- -
Description
+
Summary

- Allow caller to modify hardware state information. +Read miscellaneous devices.

+
Parameters
@@ -2332,7 +2435,7 @@ No domain
Parameter:Description:Optional:
- The process type modifying hardware state information. +Domain allowed access. No @@ -2347,7 +2450,7 @@ No
-dev_rw_usbfs( +dev_read_mouse( @@ -2359,12 +2462,12 @@ No
- -
Description
+
Summary

- Allow caller to modify usb hardware configuration files. +Read the mouse devices.

+
Parameters
@@ -2373,7 +2476,7 @@ No domain
Parameter:Description:Optional:
- The process type modifying the options. +Domain allowed access. No @@ -2388,7 +2491,7 @@ No
-dev_rw_zero_dev( +dev_read_mtrr( @@ -2402,7 +2505,7 @@ No
Summary

- Read and write to the zero device (/dev/zero). +Read the mtrr device.

@@ -2414,7 +2517,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2429,7 +2532,7 @@ No
-dev_rwx_zero_dev( +dev_read_rand( @@ -2443,7 +2546,7 @@ No
Summary

- Read, write, and execute the zero device (/dev/zero). +Read from random devices (e.g., /dev/random)

@@ -2455,7 +2558,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2470,7 +2573,7 @@ No
-dev_rx_raw_memory( +dev_read_raw_memory( @@ -2484,7 +2587,7 @@ No
Summary

- Read and execute raw memory devices (e.g. /dev/mem). +Read raw memory devices (e.g. /dev/mem).

@@ -2496,7 +2599,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2511,7 +2614,7 @@ No
-dev_search_sysfs( +dev_read_realtime_clock( @@ -2523,12 +2626,12 @@ No
- -
Description
+
Summary

- Search the directory containing hardware information. +Read the realtime clock (/dev/rtc).

+
Parameters
@@ -2537,7 +2640,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +Domain allowed access. No @@ -2552,7 +2655,7 @@ No
-dev_search_usbfs( +dev_read_snd_dev( @@ -2564,12 +2667,53 @@ No
+
Summary
+

+Read the sound devices. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+ + +
+ + +
+ +dev_read_snd_mixer_dev( + + + + + domain + + + )
+
+
-
Description
+
Summary

- Search the directory containing USB hardware information. +Read the sound mixer devices.

+
Parameters
@@ -2578,7 +2722,7 @@ No domain
Parameter:Description:Optional:
- The type of the process performing this action. +Domain allowed access. No @@ -2593,7 +2737,7 @@ No
-dev_setattr_all_blk_files( +dev_read_sysfs( @@ -2607,7 +2751,7 @@ No
Summary

- Setattr on all block file device nodes. +Allow caller to read hardware state information.

@@ -2619,7 +2763,7 @@ No domain
- Domain allowed access. +The process type reading hardware state information. No @@ -2634,7 +2778,7 @@ No
-dev_setattr_all_chr_files( +dev_read_urand( @@ -2648,7 +2792,7 @@ No
Summary

- Setattr on all character file device nodes. +Read from pseudo random devices (e.g., /dev/urandom)

@@ -2660,7 +2804,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2675,7 +2819,7 @@ No
-dev_write_framebuffer( +dev_read_usbfs( @@ -2689,7 +2833,8 @@ No
Summary

- Write the framebuffer device. +Read USB hardware information using +the usbfs filesystem interface.

@@ -2701,7 +2846,7 @@ No domain
- Domain allowed access. +The type of the process performing this action. No @@ -2716,7 +2861,7 @@ No
-dev_write_misc( +dev_relabel_all_dev_nodes( @@ -2730,7 +2875,7 @@ No
Summary

- Write miscellaneous devices. +Allow full relabeling (to and from) of all device nodes.

@@ -2742,7 +2887,7 @@ No domain
- Domain allowed access. +Domain allowed to relabel. No @@ -2757,7 +2902,7 @@ No
-dev_write_mtrr( +dev_relabel_dev_dirs( @@ -2771,7 +2916,7 @@ No
Summary

- Write the mtrr device. +Allow full relabeling (to and from) of directories in /dev.

@@ -2783,7 +2928,7 @@ No domain
- Domain allowed access. +Domain allowed to relabel. No @@ -2798,7 +2943,7 @@ No
-dev_write_rand( +dev_relabel_generic_symlinks( @@ -2812,9 +2957,7 @@ No
Summary

- Write to the random device (e.g., /dev/random). This adds - entropy used to generate the random data read from the - random device. +Relabel symbolic links in device directories.

@@ -2826,7 +2969,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2841,7 +2984,7 @@ No
-dev_write_raw_memory( +dev_rw_agp_dev( @@ -2855,7 +2998,7 @@ No
Summary

- Write raw memory devices (e.g. /dev/mem). +Read and write the agp devices.

@@ -2867,7 +3010,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2882,7 +3025,7 @@ No
-dev_write_realtime_clock( +dev_rw_apm_bios( @@ -2896,7 +3039,7 @@ No
Summary

- Read the realtime clock (/dev/rtc). +Read and write the apm bios.

@@ -2908,7 +3051,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2923,7 +3066,7 @@ No
-dev_write_snd_dev( +dev_rw_cpu_microcode( @@ -2937,7 +3080,8 @@ No
Summary

- Write the sound devices. +Read and write the the cpu microcode device. This +is required to load cpu microcode.

@@ -2949,7 +3093,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -2964,7 +3108,7 @@ No
-dev_write_snd_mixer_dev( +dev_rw_dri_dev( @@ -2978,7 +3122,7 @@ No
Summary

- Write the sound mixer devices. +Read and write the dri devices.

@@ -2990,7 +3134,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -3005,7 +3149,7 @@ No
-dev_write_urand( +dev_rw_lvm_control( @@ -3019,8 +3163,7 @@ No
Summary

- Write to the pseudo random device (e.g., /dev/urandom). This - sets the random number generator seed. +Read and write the lvm control device.

@@ -3032,7 +3175,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -3047,7 +3190,7 @@ No
-dev_wx_raw_memory( +dev_rw_null_dev( @@ -3061,7 +3204,7 @@ No
Summary

- Write and execute raw memory devices (e.g. /dev/mem). +Read and write to the null device (/dev/null).

@@ -3073,7 +3216,7 @@ No domain
- Domain allowed access. +Domain allowed access. No @@ -3083,6 +3226,1242 @@ No +
+ + +
+ +dev_rw_power_management( + + + + + domain + + + )
+
+
+ +
Summary
+

+Read and write the the power management device. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_rw_realtime_clock( + + + + + domain + + + )
+
+
+ +
Summary
+

+Read the realtime clock (/dev/rtc). +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_rw_scanner( + + + + + domain + + + )
+
+
+ +
Summary
+

+Read and write the scanner device. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_rw_sysfs( + + + + + domain + + + )
+
+
+ +
Summary
+

+Allow caller to modify hardware state information. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The process type modifying hardware state information. + + +No +
+
+
+ +
+ + +
+ +dev_rw_usbfs( + + + + + domain + + + )
+
+
+ +
Summary
+

+Allow caller to modify usb hardware configuration files. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The process type modifying the options. + + +No +
+
+
+ +
+ + +
+ +dev_rw_zero_dev( + + + + + domain + + + )
+
+
+ +
Summary
+

+Read and write to the zero device (/dev/zero). +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_rwx_zero_dev( + + + + + domain + + + )
+
+
+ +
Summary
+

+Read, write, and execute the zero device (/dev/zero). +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_rx_raw_memory( + + + + + domain + + + )
+
+
+ +
Summary
+

+Read and execute raw memory devices (e.g. /dev/mem). +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_search_sysfs( + + + + + domain + + + )
+
+
+ +
Summary
+

+Search sysfs. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +dev_search_usbfs( + + + + + domain + + + )
+
+
+ +
Summary
+

+Search the directory containing USB hardware information. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +dev_setattr_all_blk_files( + + + + + domain + + + )
+
+
+ +
Summary
+

+Setattr on all block file device nodes. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_setattr_all_chr_files( + + + + + domain + + + )
+
+
+ +
Summary
+

+Setattr on all character file device nodes. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_setattr_apm_bios( + + + + + domain + + + )
+
+
+ +
Summary
+

+Set the attributes of the apm bios device node. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_setattr_framebuffer( + + + + + domain + + + )
+
+
+ +
Summary
+

+Set the attributes of the framebuffer device node. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_setattr_misc( + + + + + domain + + + )
+
+
+ +
Summary
+

+Set the attributes of miscellaneous devices. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_setattr_mouse( + + + + + domain + + + )
+
+
+ +
Summary
+

+Set the attributes of the mouse devices. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_setattr_power_management( + + + + + domain + + + )
+
+
+ +
Summary
+

+Set the attributes of the the power management device. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_setattr_scanner( + + + + + domain + + + )
+
+
+ +
Summary
+

+Set the attributes of the scanner device. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_setattr_snd_dev( + + + + + domain + + + )
+
+
+ +
Summary
+

+Set the attributes of the sound devices. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_setattr_video_dev( + + + + + domain + + + )
+
+
+ +
Summary
+

+Set the attributes of video4linux device nodes. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_write_framebuffer( + + + + + domain + + + )
+
+
+ +
Summary
+

+Write the framebuffer. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_write_misc( + + + + + domain + + + )
+
+
+ +
Summary
+

+Write miscellaneous devices. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_write_mtrr( + + + + + domain + + + )
+
+
+ +
Summary
+

+Write the mtrr device. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_write_rand( + + + + + domain + + + )
+
+
+ +
Summary
+

+Write to the random device (e.g., /dev/random). This adds +entropy used to generate the random data read from the +random device. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_write_raw_memory( + + + + + domain + + + )
+
+
+ +
Summary
+

+Write raw memory devices (e.g. /dev/mem). +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_write_realtime_clock( + + + + + domain + + + )
+
+
+ +
Summary
+

+Read the realtime clock (/dev/rtc). +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_write_snd_dev( + + + + + domain + + + )
+
+
+ +
Summary
+

+Write the sound devices. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_write_snd_mixer_dev( + + + + + domain + + + )
+
+
+ +
Summary
+

+Write the sound mixer devices. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_write_urand( + + + + + domain + + + )
+
+
+ +
Summary
+

+Write to the pseudo random device (e.g., /dev/urandom). This +sets the random number generator seed. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +dev_wx_raw_memory( + + + + + domain + + + )
+
+
+ +
Summary
+

+Write and execute raw memory devices (e.g. /dev/mem). +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ + +Return + diff --git a/www/api-docs/kernel_filesystem.html b/www/api-docs/kernel_filesystem.html index 1974c09..f9f1667 100644 --- a/www/api-docs/kernel_filesystem.html +++ b/www/api-docs/kernel_filesystem.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -59,15 +65,23 @@

* Interface Index +

+ * Template Index

+

Layer: kernel

Module: filesystem

+ + +

Description:

Policy for filesystems.

+ +

Interfaces:

@@ -90,10 +104,10 @@
Description

- Associate the specified file type to persistent - filesystems with extended attributes. This - allows a file of this type to be created on - a filesystem such as ext3, JFS, and XFS. +Associate the specified file type to persistent +filesystems with extended attributes. This +allows a file of this type to be created on +a filesystem such as ext3, JFS, and XFS.

Parameters
@@ -104,7 +118,7 @@ file_type
- The type of the to be associated. +The type of the to be associated. No @@ -134,11 +148,11 @@ No
Description

- Associate the specified file type to - filesystems which lack extended attributes - support. This allows a file of this type - to be created on a filesystem such as - FAT32, and NFS. +Associate the specified file type to +filesystems which lack extended attributes +support. This allows a file of this type +to be created on a filesystem such as +FAT32, and NFS.

Parameters
@@ -149,7 +163,7 @@ No file_type
- The type of the to be associated. +The type of the to be associated. No @@ -179,7 +193,7 @@ No
Description

- Allow the type to associate to tmpfs filesystems. +Allow the type to associate to tmpfs filesystems.

Parameters
@@ -190,7 +204,7 @@ No type
- The type of the object to be associated. +The type of the object to be associated. No @@ -205,7 +219,48 @@ No
-fs_dontaudit_getattr_xattr_fs( +fs_create_tmpfs_data( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+ + +
+ + +
+ +fs_dontaudit_getattr_all_fs( @@ -220,10 +275,8 @@ No
Description

- Do not audit attempts to - get the attributes of a persistent - filesystem which has extended - attributes, such as ext3, JFS, or XFS. +Do not audit attempts to get the attributes +all filesystems.

Parameters
@@ -234,7 +287,7 @@ No domain
- The type of the domain to not audit. +The type of the domain to not audit. No @@ -249,7 +302,7 @@ No
-fs_execute_cifs_files( +fs_dontaudit_getattr_xattr_fs( @@ -264,9 +317,10 @@ No
Description

- Execute files on a CIFS or SMB - network filesystem, in the caller - domain. +Do not audit attempts to +get the attributes of a persistent +filesystem which has extended +attributes, such as ext3, JFS, or XFS.

Parameters
@@ -277,7 +331,7 @@ No domain
- The type of the domain executing the files. +The type of the domain to not audit. No @@ -292,7 +346,7 @@ No
-fs_execute_nfs_files( +fs_dontaudit_rw_cifs_files( @@ -307,7 +361,8 @@ No
Description

- Execute files on a NFS filesystem. +Do not audit attempts to read or +write files on a CIFS or SMB filesystem.

Parameters
@@ -318,7 +373,7 @@ No domain
- The type of the domain executing the files. +The type of the domain to not audit. No @@ -333,7 +388,7 @@ No
-fs_get_all_fs_quotas( +fs_dontaudit_rw_nfs_files( @@ -348,7 +403,8 @@ No
Description

- Get the quotas of all filesystems. +Do not audit attempts to read or +write files on a NFS filesystem.

Parameters
@@ -359,7 +415,7 @@ No domain
- The type of the domain getting quotas. +The type of the domain to not audit. No @@ -374,7 +430,7 @@ No
-fs_getattr_all_fs( +fs_execute_cifs_files( @@ -389,8 +445,9 @@ No
Description

- Get the attributes of all persistent - filesystems. +Execute files on a CIFS or SMB +network filesystem, in the caller +domain.

Parameters
@@ -401,8 +458,7 @@ No domain
- The type of the domain doing the - getattr on the filesystem. +The type of the domain executing the files. No @@ -417,7 +473,7 @@ No
-fs_getattr_autofs( +fs_execute_nfs_files( @@ -432,8 +488,7 @@ No
Description

- Get the attributes of an automount - pseudo filesystem. +Execute files on a NFS filesystem.

Parameters
@@ -444,8 +499,7 @@ No domain
- The type of the domain doing the - getattr on the filesystem. +The type of the domain executing the files. No @@ -460,7 +514,7 @@ No
-fs_getattr_cifs( +fs_get_all_fs_quotas( @@ -475,8 +529,7 @@ No
Description

- Get the attributes of a CIFS or - SMB network filesystem. +Get the quotas of all filesystems.

Parameters
@@ -487,8 +540,7 @@ No domain
- The type of the domain doing the - getattr on the filesystem. +The type of the domain getting quotas. No @@ -503,7 +555,48 @@ No
-fs_getattr_dos_fs( +fs_getattr_all_files( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+ + +
+ + +
+ +fs_getattr_all_fs( @@ -518,8 +611,8 @@ No
Description

- Get the attributes of a DOS - filesystem, such as FAT32 or NTFS. +Get the attributes of all persistent +filesystems.

Parameters
@@ -530,8 +623,8 @@ No domain
- The type of the domain doing the - getattr on the filesystem. +The type of the domain doing the +getattr on the filesystem. No @@ -546,7 +639,7 @@ No
-fs_getattr_nfs( +fs_getattr_autofs( @@ -561,7 +654,8 @@ No
Description

- Get the attributes of a NFS filesystem. +Get the attributes of an automount +pseudo filesystem.

Parameters
@@ -572,8 +666,8 @@ No domain
- The type of the domain doing the - getattr on the filesystem. +The type of the domain doing the +getattr on the filesystem. No @@ -588,7 +682,7 @@ No
-fs_getattr_nfsd_fs( +fs_getattr_cifs( @@ -603,8 +697,8 @@ No
Description

- Get the attributes of a NFS server - pseudo filesystem. +Get the attributes of a CIFS or +SMB network filesystem.

Parameters
@@ -615,8 +709,8 @@ No domain
- The type of the domain doing the - getattr on the filesystem. +The type of the domain doing the +getattr on the filesystem. No @@ -631,7 +725,7 @@ No
-fs_getattr_ramfs( +fs_getattr_dos_fs( @@ -646,7 +740,8 @@ No
Description

- Get the attributes of a RAM filesystem. +Get the attributes of a DOS +filesystem, such as FAT32 or NTFS.

Parameters
@@ -657,8 +752,8 @@ No domain
- The type of the domain doing the - getattr on the filesystem. +The type of the domain doing the +getattr on the filesystem. No @@ -673,7 +768,7 @@ No
-fs_getattr_romfs( +fs_getattr_iso9660_fs( @@ -688,8 +783,8 @@ No
Description

- Get the attributes of a ROM - filesystem. +Get the attributes of an iso9660 +filesystem, which is usually used on CDs.

Parameters
@@ -700,8 +795,8 @@ No domain
- The type of the domain doing the - getattr on the filesystem. +The type of the domain doing the +getattr on the filesystem. No @@ -716,7 +811,7 @@ No
-fs_getattr_rpc_pipefs( +fs_getattr_nfs( @@ -731,8 +826,7 @@ No
Description

- Get the attributes of a RPC pipe - filesystem. +Get the attributes of a NFS filesystem.

Parameters
@@ -743,8 +837,8 @@ No domain
- The type of the domain doing the - getattr on the filesystem. +The type of the domain doing the +getattr on the filesystem. No @@ -759,7 +853,7 @@ No
-fs_getattr_tmpfs( +fs_getattr_nfsd_fs( @@ -774,8 +868,8 @@ No
Description

- Get the attributes of a tmpfs - filesystem. +Get the attributes of a NFS server +pseudo filesystem.

Parameters
@@ -786,8 +880,8 @@ No domain
- The type of the domain doing the - getattr on the filesystem. +The type of the domain doing the +getattr on the filesystem. No @@ -802,7 +896,7 @@ No
-fs_getattr_xattr_fs( +fs_getattr_ramfs( @@ -817,9 +911,7 @@ No
Description

- Get the attributes of a persistent - filesystem which has extended - attributes, such as ext3, JFS, or XFS. +Get the attributes of a RAM filesystem.

Parameters
@@ -830,8 +922,8 @@ No domain
- The type of the domain doing the - getattr on the filesystem. +The type of the domain doing the +getattr on the filesystem. No @@ -846,7 +938,7 @@ No
-fs_make_fs( +fs_getattr_romfs( @@ -861,7 +953,8 @@ No
Description

- Transform specified type into a filesystem type. +Get the attributes of a ROM +filesystem.

Parameters
@@ -872,7 +965,8 @@ No domain
- The type of the process performing this action. +The type of the domain doing the +getattr on the filesystem. No @@ -887,7 +981,7 @@ No
-fs_make_noxattr_fs( +fs_getattr_rpc_pipefs( @@ -902,9 +996,8 @@ No
Description

- Transform specified type into a filesystem - type which does not have extended attribute - support. +Get the attributes of a RPC pipe +filesystem.

Parameters
@@ -915,7 +1008,8 @@ No domain
- The type of the process performing this action. +The type of the domain doing the +getattr on the filesystem. No @@ -930,7 +1024,7 @@ No
-fs_manage_cifs_dirs( +fs_getattr_tmpfs( @@ -945,8 +1039,8 @@ No
Description

- Create, read, write, and delete directories - on a CIFS or SMB network filesystem. +Get the attributes of a tmpfs +filesystem.

Parameters
@@ -957,7 +1051,8 @@ No domain
- The type of the domain managing the directories. +The type of the domain doing the +getattr on the filesystem. No @@ -972,7 +1067,7 @@ No
-fs_manage_cifs_files( +fs_getattr_xattr_fs( @@ -987,8 +1082,9 @@ No
Description

- Create, read, write, and delete files - on a CIFS or SMB network filesystem. +Get the attributes of a persistent +filesystem which has extended +attributes, such as ext3, JFS, or XFS.

Parameters
@@ -999,7 +1095,8 @@ No domain
- The type of the domain managing the files. +The type of the domain doing the +getattr on the filesystem. No @@ -1014,7 +1111,7 @@ No
-fs_manage_cifs_named_pipes( +fs_make_noxattr_fs( @@ -1029,8 +1126,9 @@ No
Description

- Create, read, write, and delete named pipes - on a CIFS or SMB network filesystem. +Transform specified type into a filesystem +type which does not have extended attribute +support.

Parameters
@@ -1041,7 +1139,7 @@ No domain
- The type of the domain managing the pipes. +The type of the process performing this action. No @@ -1056,7 +1154,7 @@ No
-fs_manage_cifs_named_sockets( +fs_manage_cifs_dirs( @@ -1071,8 +1169,8 @@ No
Description

- Create, read, write, and delete named sockets - on a CIFS or SMB network filesystem. +Create, read, write, and delete directories +on a CIFS or SMB network filesystem.

Parameters
@@ -1083,7 +1181,7 @@ No domain
- The type of the domain managing the sockets. +The type of the domain managing the directories. No @@ -1098,7 +1196,7 @@ No
-fs_manage_cifs_symlinks( +fs_manage_cifs_files( @@ -1113,8 +1211,8 @@ No
Description

- Create, read, write, and delete symbolic links - on a CIFS or SMB network filesystem. +Create, read, write, and delete files +on a CIFS or SMB network filesystem.

Parameters
@@ -1125,7 +1223,7 @@ No domain
- The type of the domain managing the symbolic links. +The type of the domain managing the files. No @@ -1140,7 +1238,7 @@ No
-fs_manage_nfs_dirs( +fs_manage_cifs_named_pipes( @@ -1155,8 +1253,8 @@ No
Description

- Create, read, write, and delete directories - on a NFS filesystem. +Create, read, write, and delete named pipes +on a CIFS or SMB network filesystem.

Parameters
@@ -1167,7 +1265,7 @@ No domain
- The type of the domain managing the directories. +The type of the domain managing the pipes. No @@ -1182,7 +1280,7 @@ No
-fs_manage_nfs_files( +fs_manage_cifs_named_sockets( @@ -1197,8 +1295,8 @@ No
Description

- Create, read, write, and delete files - on a NFS filesystem. +Create, read, write, and delete named sockets +on a CIFS or SMB network filesystem.

Parameters
@@ -1209,7 +1307,7 @@ No domain
- The type of the domain managing the files. +The type of the domain managing the sockets. No @@ -1224,7 +1322,7 @@ No
-fs_manage_nfs_named_pipes( +fs_manage_cifs_symlinks( @@ -1239,8 +1337,8 @@ No
Description

- Create, read, write, and delete named pipes - on a NFS filesystem. +Create, read, write, and delete symbolic links +on a CIFS or SMB network filesystem.

Parameters
@@ -1251,7 +1349,7 @@ No domain
- The type of the domain managing the pipes. +The type of the domain managing the symbolic links. No @@ -1266,7 +1364,7 @@ No
-fs_manage_nfs_named_sockets( +fs_manage_nfs_dirs( @@ -1281,8 +1379,8 @@ No
Description

- Create, read, write, and delete named sockets - on a NFS filesystem. +Create, read, write, and delete directories +on a NFS filesystem.

Parameters
@@ -1293,7 +1391,7 @@ No domain
- The type of the domain managing the sockets. +The type of the domain managing the directories. No @@ -1308,7 +1406,7 @@ No
-fs_manage_nfs_symlinks( +fs_manage_nfs_files( @@ -1323,8 +1421,8 @@ No
Description

- Create, read, write, and delete symbolic links - on a CIFS or SMB network filesystem. +Create, read, write, and delete files +on a NFS filesystem.

Parameters
@@ -1335,7 +1433,7 @@ No domain
- The type of the domain managing the symbolic links. +The type of the domain managing the files. No @@ -1350,7 +1448,7 @@ No
-fs_manage_tmpfs_block_devices( +fs_manage_nfs_named_pipes( @@ -1365,8 +1463,8 @@ No
Description

- Read and write, create and delete block nodes - on tmpfs filesystems. +Create, read, write, and delete named pipes +on a NFS filesystem.

Parameters
@@ -1377,7 +1475,7 @@ No domain
- The type of the process performing this action. +The type of the domain managing the pipes. No @@ -1392,7 +1490,7 @@ No
-fs_manage_tmpfs_character_devices( +fs_manage_nfs_named_sockets( @@ -1407,8 +1505,8 @@ No
Description

- Read and write, create and delete character - nodes on tmpfs filesystems. +Create, read, write, and delete named sockets +on a NFS filesystem.

Parameters
@@ -1419,7 +1517,7 @@ No domain
- The type of the process performing this action. +The type of the domain managing the sockets. No @@ -1434,7 +1532,7 @@ No
-fs_mount_all_fs( +fs_manage_nfs_symlinks( @@ -1449,7 +1547,8 @@ No
Description

- Mount all filesystems. +Create, read, write, and delete symbolic links +on a CIFS or SMB network filesystem.

Parameters
@@ -1460,7 +1559,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the domain managing the symbolic links. No @@ -1475,7 +1574,7 @@ No
-fs_mount_autofs( +fs_manage_tmpfs_blk_dev( @@ -1490,7 +1589,8 @@ No
Description

- Mount an automount pseudo filesystem. +Read and write, create and delete block nodes +on tmpfs filesystems.

Parameters
@@ -1501,7 +1601,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the process performing this action. No @@ -1516,7 +1616,7 @@ No
-fs_mount_cifs( +fs_manage_tmpfs_chr_dev( @@ -1531,7 +1631,8 @@ No
Description

- Mount a CIFS or SMB network filesystem. +Read and write, create and delete character +nodes on tmpfs filesystems.

Parameters
@@ -1542,7 +1643,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the process performing this action. No @@ -1557,7 +1658,7 @@ No
-fs_mount_dos_fs( +fs_manage_tmpfs_sockets( @@ -1572,8 +1673,8 @@ No
Description

- Mount a DOS filesystem, such as - FAT32 or NTFS. +Read and write, create and delete socket +files on tmpfs filesystems.

Parameters
@@ -1584,7 +1685,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the process performing this action. No @@ -1599,7 +1700,7 @@ No
-fs_mount_iso9660_fs( +fs_manage_tmpfs_symlinks( @@ -1614,8 +1715,8 @@ No
Description

- Mount an iso9660 filesystem, which - is usually used on CDs. +Read and write, create and delete symbolic +links on tmpfs filesystems.

Parameters
@@ -1626,7 +1727,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the process performing this action. No @@ -1641,7 +1742,7 @@ No
-fs_mount_iso9660_fs( +fs_mount_all_fs( @@ -1656,8 +1757,7 @@ No
Description

- Get the attributes of an iso9660 - filesystem, which is usually used on CDs. +Mount all filesystems.

Parameters
@@ -1668,8 +1768,7 @@ No domain
- The type of the domain doing the - getattr on the filesystem. +The type of the domain mounting the filesystem. No @@ -1684,7 +1783,7 @@ No
-fs_mount_nfs( +fs_mount_autofs( @@ -1699,7 +1798,7 @@ No
Description

- Mount a NFS filesystem. +Mount an automount pseudo filesystem.

Parameters
@@ -1710,7 +1809,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the domain mounting the filesystem. No @@ -1725,7 +1824,7 @@ No
-fs_mount_nfs( +fs_mount_cifs( @@ -1740,7 +1839,7 @@ No
Description

- Unmount a NFS filesystem. +Mount a CIFS or SMB network filesystem.

Parameters
@@ -1751,7 +1850,7 @@ No domain
- The type of the domain unmounting the filesystem. +The type of the domain mounting the filesystem. No @@ -1766,7 +1865,7 @@ No
-fs_mount_nfsd_fs( +fs_mount_dos_fs( @@ -1781,7 +1880,8 @@ No
Description

- Mount a NFS server pseudo filesystem. +Mount a DOS filesystem, such as +FAT32 or NTFS.

Parameters
@@ -1792,7 +1892,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the domain mounting the filesystem. No @@ -1807,7 +1907,7 @@ No
-fs_mount_ramfs( +fs_mount_iso9660_fs( @@ -1822,7 +1922,8 @@ No
Description

- Mount a RAM filesystem. +Mount an iso9660 filesystem, which +is usually used on CDs.

Parameters
@@ -1833,7 +1934,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the domain mounting the filesystem. No @@ -1848,7 +1949,7 @@ No
-fs_mount_romfs( +fs_mount_nfs( @@ -1863,7 +1964,7 @@ No
Description

- Mount a ROM filesystem. +Mount a NFS filesystem.

Parameters
@@ -1874,7 +1975,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the domain mounting the filesystem. No @@ -1889,7 +1990,7 @@ No
-fs_mount_rpc_pipefs( +fs_mount_nfsd_fs( @@ -1904,7 +2005,7 @@ No
Description

- Mount a RPC pipe filesystem. +Mount a NFS server pseudo filesystem.

Parameters
@@ -1915,7 +2016,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the domain mounting the filesystem. No @@ -1930,7 +2031,7 @@ No
-fs_mount_tmpfs( +fs_mount_ramfs( @@ -1945,7 +2046,7 @@ No
Description

- Mount a tmpfs filesystem. +Mount a RAM filesystem.

Parameters
@@ -1956,7 +2057,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the domain mounting the filesystem. No @@ -1971,7 +2072,7 @@ No
-fs_mount_xattr_fs( +fs_mount_romfs( @@ -1986,9 +2087,7 @@ No
Description

- Mount a persistent filesystem which - has extended attributes, such as - ext3, JFS, or XFS. +Mount a ROM filesystem.

Parameters
@@ -1999,7 +2098,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the domain mounting the filesystem. No @@ -2014,7 +2113,7 @@ No
-fs_register_binary_executable_type( +fs_mount_rpc_pipefs( @@ -2029,13 +2128,7 @@ No
Description

- Register an interpreter for new binary - file types, using the kernel binfmt_misc - support. A common use for this is to - register a JVM as an interpreter for - Java byte code. Registered binaries - can be directly executed on a command line - without specifying the interpreter. +Mount a RPC pipe filesystem.

Parameters
@@ -2046,8 +2139,7 @@ No domain
- The type of the domain registering - the interpreter. +The type of the domain mounting the filesystem. No @@ -2062,7 +2154,7 @@ No
-fs_relabel_tmpfs_block_devices( +fs_mount_tmpfs( @@ -2077,7 +2169,7 @@ No
Description

- Relabel block nodes on tmpfs filesystems. +Mount a tmpfs filesystem.

Parameters
@@ -2088,7 +2180,7 @@ No domain
- The type of the process performing this action. +The type of the domain mounting the filesystem. No @@ -2103,7 +2195,7 @@ No
-fs_relabel_tmpfs_character_devices( +fs_mount_xattr_fs( @@ -2118,7 +2210,9 @@ No
Description

- Relabel character nodes on tmpfs filesystems. +Mount a persistent filesystem which +has extended attributes, such as +ext3, JFS, or XFS.

Parameters
@@ -2129,7 +2223,7 @@ No domain
- The type of the process performing this action. +The type of the domain mounting the filesystem. No @@ -2144,7 +2238,7 @@ No
-fs_relabelfrom_dos_fs( +fs_read_cifs_files( @@ -2159,8 +2253,7 @@ No
Description

- Allow changing of the label of a - DOS filesystem using the context= mount option. +Read files on a CIFS or SMB filesystem.

Parameters
@@ -2171,7 +2264,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the domain reading the files. No @@ -2186,7 +2279,7 @@ No
-fs_relabelfrom_xattr_fs( +fs_read_cifs_files( @@ -2201,9 +2294,8 @@ No
Description

- Allow changing of the label of a - filesystem with extended attributes - using the context= mount option. +Do not audit attempts to read or +write files on a CIFS or SMB filesystems.

Parameters
@@ -2214,7 +2306,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the domain to not audit. No @@ -2229,7 +2321,7 @@ No
-fs_remount_all_fs( +fs_read_cifs_symlinks( @@ -2244,8 +2336,7 @@ No
Description

- Remount all filesystems. This - allows some mount options to be changed. +Read symbolic links on a CIFS or SMB filesystem.

Parameters
@@ -2256,7 +2347,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the domain reading the symbolic links. No @@ -2271,7 +2362,7 @@ No
-fs_remount_autofs( +fs_read_nfs_files( @@ -2286,8 +2377,7 @@ No
Description

- Remount an automount pseudo filesystem - This allows some mount options to be changed. +Read files on a NFS filesystem.

Parameters
@@ -2298,7 +2388,7 @@ No domain
- The type of the domain remounting the filesystem. +The type of the domain reading the files. No @@ -2313,7 +2403,7 @@ No
-fs_remount_cifs( +fs_read_nfs_symlinks( @@ -2328,8 +2418,7 @@ No
Description

- Remount a CIFS or SMB network filesystem. - This allows some mount options to be changed. +Read symbolic links on a NFS filesystem.

Parameters
@@ -2340,7 +2429,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the domain reading the symbolic links. No @@ -2355,7 +2444,7 @@ No
-fs_remount_dos_fs( +fs_register_binary_executable_type( @@ -2370,9 +2459,13 @@ No
Description

- Remount a DOS filesystem, such as - FAT32 or NTFS. This allows - some mount options to be changed. +Register an interpreter for new binary +file types, using the kernel binfmt_misc +support. A common use for this is to +register a JVM as an interpreter for +Java byte code. Registered binaries +can be directly executed on a command line +without specifying the interpreter.

Parameters
@@ -2383,7 +2476,8 @@ No domain
- The type of the domain remounting the filesystem. +The type of the domain registering +the interpreter. No @@ -2398,7 +2492,7 @@ No
-fs_remount_iso9660_fs( +fs_relabel_tmpfs_blk_dev( @@ -2413,9 +2507,7 @@ No
Description

- Remount an iso9660 filesystem, which - is usually used on CDs. This allows - some mount options to be changed. +Relabel block nodes on tmpfs filesystems.

Parameters
@@ -2426,7 +2518,7 @@ No domain
- The type of the domain remounting the filesystem. +The type of the process performing this action. No @@ -2441,7 +2533,7 @@ No
-fs_remount_nfs( +fs_relabel_tmpfs_chr_dev( @@ -2456,8 +2548,7 @@ No
Description

- Remount a NFS filesystem. This allows - some mount options to be changed. +Relabel character nodes on tmpfs filesystems.

Parameters
@@ -2468,7 +2559,7 @@ No domain
- The type of the domain remounting the filesystem. +The type of the process performing this action. No @@ -2483,7 +2574,7 @@ No
-fs_remount_nfsd_fs( +fs_relabelfrom_dos_fs( @@ -2498,8 +2589,8 @@ No
Description

- Mount a NFS server pseudo filesystem. - This allows some mount options to be changed. +Allow changing of the label of a +DOS filesystem using the context= mount option.

Parameters
@@ -2510,7 +2601,7 @@ No domain
- The type of the domain remounting the filesystem. +The type of the domain mounting the filesystem. No @@ -2525,7 +2616,7 @@ No
-fs_remount_ramfs( +fs_relabelfrom_xattr_fs( @@ -2540,8 +2631,9 @@ No
Description

- Remount a RAM filesystem. This allows - some mount options to be changed. +Allow changing of the label of a +filesystem with extended attributes +using the context= mount option.

Parameters
@@ -2552,7 +2644,7 @@ No domain
- The type of the domain remounting the filesystem. +The type of the domain mounting the filesystem. No @@ -2567,7 +2659,7 @@ No
-fs_remount_romfs( +fs_remount_all_fs( @@ -2582,8 +2674,8 @@ No
Description

- Remount a ROM filesystem. This allows - some mount options to be changed. +Remount all filesystems. This +allows some mount options to be changed.

Parameters
@@ -2594,7 +2686,7 @@ No domain
- The type of the domain remounting the filesystem. +The type of the domain mounting the filesystem. No @@ -2609,7 +2701,7 @@ No
-fs_remount_rpc_pipefs( +fs_remount_autofs( @@ -2624,8 +2716,8 @@ No
Description

- Remount a RPC pipe filesystem. This - allows some mount option to be changed. +Remount an automount pseudo filesystem +This allows some mount options to be changed.

Parameters
@@ -2636,7 +2728,7 @@ No domain
- The type of the domain remounting the filesystem. +The type of the domain remounting the filesystem. No @@ -2651,7 +2743,7 @@ No
-fs_remount_tmpfs( +fs_remount_cifs( @@ -2666,7 +2758,8 @@ No
Description

- Remount a tmpfs filesystem. +Remount a CIFS or SMB network filesystem. +This allows some mount options to be changed.

Parameters
@@ -2677,7 +2770,7 @@ No domain
- The type of the domain remounting the filesystem. +The type of the domain mounting the filesystem. No @@ -2692,7 +2785,7 @@ No
-fs_remount_xattr_fs( +fs_remount_dos_fs( @@ -2707,10 +2800,9 @@ No
Description

- Remount a persistent filesystem which - has extended attributes, such as - ext3, JFS, or XFS. This allows - some mount options to be changed. +Remount a DOS filesystem, such as +FAT32 or NTFS. This allows +some mount options to be changed.

Parameters
@@ -2721,7 +2813,7 @@ No domain
- The type of the domain remounting the filesystem. +The type of the domain remounting the filesystem. No @@ -2736,7 +2828,7 @@ No
-fs_set_all_quotas( +fs_remount_iso9660_fs( @@ -2751,7 +2843,9 @@ No
Description

- Set the quotas of all filesystems. +Remount an iso9660 filesystem, which +is usually used on CDs. This allows +some mount options to be changed.

Parameters
@@ -2762,7 +2856,7 @@ No domain
- The type of the domain setting quotas. +The type of the domain remounting the filesystem. No @@ -2777,7 +2871,7 @@ No
-fs_unmount_all_fs( +fs_remount_nfs( @@ -2792,7 +2886,8 @@ No
Description

- Unmount all filesystems. +Remount a NFS filesystem. This allows +some mount options to be changed.

Parameters
@@ -2803,7 +2898,7 @@ No domain
- The type of the domain unmounting the filesystem. +The type of the domain remounting the filesystem. No @@ -2818,7 +2913,7 @@ No
-fs_unmount_autofs( +fs_remount_nfsd_fs( @@ -2833,7 +2928,8 @@ No
Description

- Unmount an automount pseudo filesystem. +Mount a NFS server pseudo filesystem. +This allows some mount options to be changed.

Parameters
@@ -2844,7 +2940,7 @@ No domain
- The type of the domain unmounting the filesystem. +The type of the domain remounting the filesystem. No @@ -2859,7 +2955,7 @@ No
-fs_unmount_cifs( +fs_remount_ramfs( @@ -2874,7 +2970,8 @@ No
Description

- Unmount a CIFS or SMB network filesystem. +Remount a RAM filesystem. This allows +some mount options to be changed.

Parameters
@@ -2885,7 +2982,7 @@ No domain
- The type of the domain mounting the filesystem. +The type of the domain remounting the filesystem. No @@ -2900,7 +2997,7 @@ No
-fs_unmount_dos_fs( +fs_remount_romfs( @@ -2915,8 +3012,8 @@ No
Description

- Unmount a DOS filesystem, such as - FAT32 or NTFS. +Remount a ROM filesystem. This allows +some mount options to be changed.

Parameters
@@ -2927,7 +3024,7 @@ No domain
- The type of the domain unmounting the filesystem. +The type of the domain remounting the filesystem. No @@ -2942,7 +3039,7 @@ No
-fs_unmount_iso9660_fs( +fs_remount_rpc_pipefs( @@ -2957,8 +3054,8 @@ No
Description

- Unmount an iso9660 filesystem, which - is usually used on CDs. +Remount a RPC pipe filesystem. This +allows some mount option to be changed.

Parameters
@@ -2969,7 +3066,7 @@ No domain
- The type of the domain unmounting the filesystem. +The type of the domain remounting the filesystem. No @@ -2984,7 +3081,7 @@ No
-fs_unmount_nfsd_fs( +fs_remount_tmpfs( @@ -2999,7 +3096,7 @@ No
Description

- Unmount a NFS server pseudo filesystem. +Remount a tmpfs filesystem.

Parameters
@@ -3010,7 +3107,7 @@ No domain
- The type of the domain unmounting the filesystem. +The type of the domain remounting the filesystem. No @@ -3025,7 +3122,7 @@ No
-fs_unmount_ramfs( +fs_remount_xattr_fs( @@ -3040,7 +3137,10 @@ No
Description

- Unmount a RAM filesystem. +Remount a persistent filesystem which +has extended attributes, such as +ext3, JFS, or XFS. This allows +some mount options to be changed.

Parameters
@@ -3051,7 +3151,7 @@ No domain
- The type of the domain unmounting the filesystem. +The type of the domain remounting the filesystem. No @@ -3066,7 +3166,49 @@ No
-fs_unmount_romfs( +fs_search_auto_mountpoints( + + + + + domain + + + )
+
+
+ +
Summary
+

+Search automount filesystem to use automatically +mounted filesystems. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the domain performing this action. + + +No +
+
+ + +
+ + +
+ +fs_set_all_quotas( @@ -3081,7 +3223,7 @@ No
Description

- Unmount a ROM filesystem. +Set the quotas of all filesystems.

Parameters
@@ -3092,7 +3234,7 @@ No domain
- The type of the domain unmounting the filesystem. +The type of the domain setting quotas. No @@ -3107,7 +3249,7 @@ No
-fs_unmount_rpc_pipefs( +fs_type( @@ -3122,7 +3264,7 @@ No
Description

- Unmount a RPC pipe filesystem. +Transform specified type into a filesystem type.

Parameters
@@ -3133,7 +3275,7 @@ No domain
- The type of the domain unmounting the filesystem. +The type of the process performing this action. No @@ -3148,7 +3290,7 @@ No
-fs_unmount_tmpfs( +fs_unmount_all_fs( @@ -3163,7 +3305,7 @@ No
Description

- Unmount a tmpfs filesystem. +Unmount all filesystems.

Parameters
@@ -3174,7 +3316,7 @@ No domain
- The type of the domain unmounting the filesystem. +The type of the domain unmounting the filesystem. No @@ -3189,7 +3331,7 @@ No
-fs_unmount_xattr_fs( +fs_unmount_autofs( @@ -3204,9 +3346,7 @@ No
Description

- Unmount a persistent filesystem which - has extended attributes, such as - ext3, JFS, or XFS. +Unmount an automount pseudo filesystem.

Parameters
@@ -3217,7 +3357,7 @@ No domain
- The type of the domain unmounting the filesystem. +The type of the domain unmounting the filesystem. No @@ -3232,7 +3372,7 @@ No
-fs_use_tmpfs_block_devices( +fs_unmount_cifs( @@ -3247,7 +3387,7 @@ No
Description

- Read and write block nodes on tmpfs filesystems. +Unmount a CIFS or SMB network filesystem.

Parameters
@@ -3258,7 +3398,7 @@ No domain
- The type of the process performing this action. +The type of the domain mounting the filesystem. No @@ -3273,7 +3413,7 @@ No
-fs_use_tmpfs_character_devices( +fs_unmount_dos_fs( @@ -3288,7 +3428,8 @@ No
Description

- Read and write character nodes on tmpfs filesystems. +Unmount a DOS filesystem, such as +FAT32 or NTFS.

Parameters
@@ -3299,7 +3440,7 @@ No domain
- The type of the process performing this action. +The type of the domain unmounting the filesystem. No @@ -3309,6 +3450,422 @@ No +
+ + +
+ +fs_unmount_iso9660_fs( + + + + + domain + + + )
+
+
+ + +
Description
+

+Unmount an iso9660 filesystem, which +is usually used on CDs. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the domain unmounting the filesystem. + + +No +
+
+
+ +
+ + +
+ +fs_unmount_nfs( + + + + + domain + + + )
+
+
+ + +
Description
+

+Unmount a NFS filesystem. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the domain unmounting the filesystem. + + +No +
+
+
+ +
+ + +
+ +fs_unmount_nfsd_fs( + + + + + domain + + + )
+
+
+ + +
Description
+

+Unmount a NFS server pseudo filesystem. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the domain unmounting the filesystem. + + +No +
+
+
+ +
+ + +
+ +fs_unmount_ramfs( + + + + + domain + + + )
+
+
+ + +
Description
+

+Unmount a RAM filesystem. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the domain unmounting the filesystem. + + +No +
+
+
+ +
+ + +
+ +fs_unmount_romfs( + + + + + domain + + + )
+
+
+ + +
Description
+

+Unmount a ROM filesystem. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the domain unmounting the filesystem. + + +No +
+
+
+ +
+ + +
+ +fs_unmount_rpc_pipefs( + + + + + domain + + + )
+
+
+ + +
Description
+

+Unmount a RPC pipe filesystem. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the domain unmounting the filesystem. + + +No +
+
+
+ +
+ + +
+ +fs_unmount_tmpfs( + + + + + domain + + + )
+
+
+ + +
Description
+

+Unmount a tmpfs filesystem. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the domain unmounting the filesystem. + + +No +
+
+
+ +
+ + +
+ +fs_unmount_xattr_fs( + + + + + domain + + + )
+
+
+ + +
Description
+

+Unmount a persistent filesystem which +has extended attributes, such as +ext3, JFS, or XFS. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the domain unmounting the filesystem. + + +No +
+
+
+ +
+ + +
+ +fs_use_tmpfs_blk_dev( + + + + + domain + + + )
+
+
+ + +
Description
+

+Read and write block nodes on tmpfs filesystems. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +fs_use_tmpfs_chr_dev( + + + + + domain + + + )
+
+
+ + +
Description
+

+Read and write character nodes on tmpfs filesystems. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ + +Return + diff --git a/www/api-docs/kernel_kernel.html b/www/api-docs/kernel_kernel.html index 7b67c42..cb23abc 100644 --- a/www/api-docs/kernel_kernel.html +++ b/www/api-docs/kernel_kernel.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -59,18 +65,26 @@

* Interface Index +

+ * Template Index

+

Layer: kernel

Module: kernel

+ + +

Description:

-Policy for kernel threads, proc filesystem, +Policy for kernel threads, proc filesystem, and unlabeled processes and objects.

+ +

Interfaces:

@@ -90,12 +104,12 @@ and unlabeled processes and objects.
- -
Description
+
Summary

- +Change the level of kernel messages logged to the console.

+
Parameters
@@ -104,7 +118,7 @@ and unlabeled processes and objects. domain
Parameter:Description:Optional:
- +The type of the process performing this action. No @@ -134,7 +148,7 @@ No
Description

- Allows the caller to clear the ring buffer. +Allows the caller to clear the ring buffer.

Parameters
@@ -145,7 +159,7 @@ No domain
- The process type clearing the buffer. +The process type clearing the buffer. No @@ -175,8 +189,8 @@ No
Description

- Do not audit attempts to get the attributes of - core kernel interfaces. +Do not audit attempts to get the attributes of +core kernel interfaces.

Parameters
@@ -187,7 +201,7 @@ No domain
- The process type to not audit. +The process type to not audit. No @@ -217,8 +231,8 @@ No
Description

- Do not audit attempts by caller to get the attributes of kernel - message interfaces. +Do not audit attempts by caller to get the attributes of kernel +message interfaces.

Parameters
@@ -229,7 +243,7 @@ No domain
- The process type not to audit. +The process type not to audit. No @@ -259,8 +273,8 @@ No
Description

- Do not audit attempts by caller to get attributes for - unlabeled block devices. +Do not audit attempts by caller to get attributes for +unlabeled block devices.

Parameters
@@ -271,7 +285,7 @@ No domain
- The process type not to audit. +The process type not to audit. No @@ -301,7 +315,7 @@ No
Description

- Do not audit attempts to read the ring buffer. +Do not audit attempts to read the ring buffer.

Parameters
@@ -312,7 +326,7 @@ No domain
- The domain to not audit. +The domain to not audit. No @@ -342,8 +356,8 @@ No
Description

- Do not audit attempts by caller to - read system state information. +Do not audit attempts by caller to +read system state information.

Parameters
@@ -354,7 +368,7 @@ No domain
- The process type not to audit. +The process type not to audit. No @@ -384,7 +398,7 @@ No
Description

- Do not audit attempts by caller to search sysctl network directories. +Do not audit attempts by caller to search sysctl network directories.

Parameters
@@ -395,7 +409,7 @@ No domain
- The process type not to audit. +The process type not to audit. No @@ -425,7 +439,7 @@ No
Description

- Do not audit attempts by caller to search the sysctl directory. +Do not audit attempts by caller to search the sysctl directory.

Parameters
@@ -436,7 +450,7 @@ No domain
- The process type not to audit. +The process type not to audit. No @@ -466,9 +480,9 @@ No
Description

- Do not audit attempts to use - kernel file descriptors. -

+Do not audit attempts to use +kernel file descriptors. +

Parameters
@@ -478,7 +492,7 @@ No domain + +
- The type of process not to audit. +The type of process not to audit. No @@ -508,7 +522,7 @@ No
Description

- Get information on all System V IPC objects. +Get information on all System V IPC objects.

Parameters
@@ -519,7 +533,7 @@ No domain
- + No @@ -549,7 +563,7 @@ No
Description

- Allows caller to get attribues of core kernel interface. +Allows caller to get attribues of core kernel interface.

Parameters
@@ -560,7 +574,7 @@ No domain
- The process type getting the attibutes. +The process type getting the attibutes. No @@ -590,8 +604,8 @@ No
Description

- Allow caller to get the attributes of kernel message - interface (/proc/kmsg). +Allow caller to get the attributes of kernel message +interface (/proc/kmsg).

Parameters
@@ -602,7 +616,7 @@ No domain
- The process type getting the attributes. +The process type getting the attributes. No @@ -632,7 +646,7 @@ No
Description

- Send a kill signal to unlabeled processes. +Send a kill signal to unlabeled processes.

Parameters
@@ -643,7 +657,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -673,7 +687,7 @@ No
Description

- Allows caller to load kernel modules +Allows caller to load kernel modules

Parameters
@@ -684,7 +698,7 @@ No domain
- The process type to allow to load kernel modules. +The process type to allow to load kernel modules. No @@ -714,7 +728,7 @@ No
Description

- Allow caller to read all sysctls. +Allow caller to read all sysctls.

Parameters
@@ -725,7 +739,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -755,7 +769,7 @@ No
Description

- Allow caller to read the device sysctls. +Allow caller to read the device sysctls.

Parameters
@@ -766,7 +780,7 @@ No domain
- The process type to allow to read the device sysctls. +The process type to allow to read the device sysctls. No @@ -796,7 +810,7 @@ No
Description

- Read filesystem sysctls. +Read filesystem sysctls.

Parameters
@@ -807,7 +821,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -837,7 +851,7 @@ No
Description

- Read the hotplug sysctl. +Read the hotplug sysctl.

Parameters
@@ -848,7 +862,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -878,7 +892,7 @@ No
Description

- Read IRQ sysctls. +Read IRQ sysctls.

Parameters
@@ -889,7 +903,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -919,7 +933,7 @@ No
Description

- Read generic kernel sysctls. +Read generic kernel sysctls.

Parameters
@@ -930,7 +944,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -960,8 +974,8 @@ No
Description

- Allow caller to read kernel messages - using the /proc/kmsg interface. +Allow caller to read kernel messages +using the /proc/kmsg interface.

Parameters
@@ -972,7 +986,7 @@ No domain
- The process type reading the messages. +The process type reading the messages. No @@ -1002,7 +1016,7 @@ No
Description

- Read the modprobe sysctl. +Read the modprobe sysctl.

Parameters
@@ -1013,7 +1027,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1043,7 +1057,7 @@ No
Description

- Allow caller to read network sysctls. +Allow caller to read network sysctls.

Parameters
@@ -1054,7 +1068,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1084,7 +1098,7 @@ No
Description

- Allow caller to read the network state information. +Allow caller to read the network state information.

Parameters
@@ -1095,7 +1109,7 @@ No domain
- The process type reading the state. +The process type reading the state. No @@ -1125,7 +1139,7 @@ No
Description

- Allows caller to read the ring buffer. +Allows caller to read the ring buffer.

Parameters
@@ -1136,7 +1150,48 @@ No domain
- The process type allowed to read the ring buffer. +The process type allowed to read the ring buffer. + + +No +
+ + + +
+ + +
+ +kernel_read_rpc_sysctl( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! No @@ -1166,7 +1221,7 @@ No
Description

- Allow caller to read the state information for software raid. +Allow caller to read the state information for software raid.

Parameters
@@ -1177,7 +1232,7 @@ No domain
- The process type reading software raid state. +The process type reading software raid state. No @@ -1207,7 +1262,7 @@ No
Description

- Allows caller to read system state information. +Allows caller to read system state information.

Parameters
@@ -1218,7 +1273,7 @@ No domain
- The process type reading the system state information. +The process type reading the system state information. No @@ -1248,8 +1303,8 @@ No
Description

- Allow caller to read unix domain - socket sysctls. +Allow caller to read unix domain +socket sysctls.

Parameters
@@ -1260,7 +1315,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1290,7 +1345,7 @@ No
Description

- Allow caller to read virtual memory sysctls. +Allow caller to read virtual memory sysctls.

Parameters
@@ -1301,7 +1356,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1331,7 +1386,7 @@ No
Description

- Allow caller to relabel unlabeled objects. +Allow caller to relabel unlabeled objects.

Parameters
@@ -1342,7 +1397,7 @@ No domain
- The process type relabeling the objects. +The process type relabeling the objects. No @@ -1372,8 +1427,8 @@ No
Description

- Allows the kernel to mount filesystems on - the specified directory type. +Allows the kernel to mount filesystems on +the specified directory type.

Parameters
@@ -1384,7 +1439,7 @@ No directory_type
- The type of the directory to use as a mountpoint. +The type of the directory to use as a mountpoint. No @@ -1414,7 +1469,7 @@ No
Description

- Read and write all sysctls. +Read and write all sysctls.

Parameters
@@ -1425,7 +1480,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1455,7 +1510,7 @@ No
Description

- Read and write device sysctls. +Read and write device sysctls.

Parameters
@@ -1466,7 +1521,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1496,7 +1551,7 @@ No
Description

- Read and write fileystem sysctls. +Read and write fileystem sysctls.

Parameters
@@ -1507,7 +1562,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1537,7 +1592,7 @@ No
Description

- Read and write the hotplug sysctl. +Read and write the hotplug sysctl.

Parameters
@@ -1548,7 +1603,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1578,7 +1633,7 @@ No
Description

- Read and write IRQ sysctls. +Read and write IRQ sysctls.

Parameters
@@ -1589,7 +1644,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1619,7 +1674,7 @@ No
Description

- Read and write generic kernel sysctls. +Read and write generic kernel sysctls.

Parameters
@@ -1630,7 +1685,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1660,7 +1715,7 @@ No
Description

- Read and write the modprobe sysctl. +Read and write the modprobe sysctl.

Parameters
@@ -1671,7 +1726,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1701,7 +1756,7 @@ No
Description

- Allow caller to modiry contents of sysctl network files. +Allow caller to modiry contents of sysctl network files.

Parameters
@@ -1712,7 +1767,48 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +kernel_rw_rpc_sysctl( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! No @@ -1742,8 +1838,8 @@ No
Description

- Read and write unix domain - socket sysctls. +Read and write unix domain +socket sysctls.

Parameters
@@ -1754,7 +1850,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1784,7 +1880,7 @@ No
Description

- Read and write virtual memory sysctls. +Read and write virtual memory sysctls.

Parameters
@@ -1795,7 +1891,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1825,9 +1921,9 @@ No
Description

- Allows the kernel to share state information with - the caller. -

+Allows the kernel to share state information with +the caller. +

Parameters
@@ -1837,8 +1933,49 @@ No domain + +
- The type of the process with which to share state information. +The type of the process with which to share state information. + + +No +
+ + + +
+ + +
+ +kernel_sigchld( + + + + domain + + + )
+
+
+ + +
Description
+

+Send a SIGCHLD signal to kernel threads. +

+ +
Parameters
+ + + + @@ -1867,7 +2004,7 @@ No
Description

- Send a child terminated signal to unlabeled processes. +Send a child terminated signal to unlabeled processes.

Parameters
@@ -1878,7 +2015,7 @@ No domain
Parameter:Description:Optional:
+domain + + +The type of the process sending the signal. + No
- The type of the process performing this action. +The type of the process performing this action. No @@ -1908,7 +2045,7 @@ No
Description

- Send general signals to unlabeled processes. +Send general signals to unlabeled processes.

Parameters
@@ -1919,7 +2056,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1949,7 +2086,7 @@ No
Description

- Send a null signal to unlabeled processes. +Send a null signal to unlabeled processes.

Parameters
@@ -1960,7 +2097,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1990,7 +2127,7 @@ No
Description

- Send a stop signal to unlabeled processes. +Send a stop signal to unlabeled processes.

Parameters
@@ -2001,7 +2138,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -2031,8 +2168,8 @@ No
Description

- Permits caller to use kernel file descriptors. -

+Permits caller to use kernel file descriptors. +

Parameters
@@ -2042,8 +2179,8 @@ No domain @@ -2080,9 +2217,9 @@ No
Description

- Allows to start userland processes - by transitioning to the specified domain. -

+Allows to start userland processes +by transitioning to the specified domain. +

Parameters
- The type of the process using the descriptors. - +The type of the process using the descriptors. + No
@@ -2092,8 +2229,8 @@ No domain @@ -2102,8 +2239,8 @@ No entrypoint @@ -2113,6 +2250,9 @@ No +Return + + diff --git a/www/api-docs/kernel_selinux.html b/www/api-docs/kernel_selinux.html index 4174128..4d7cd7a 100644 --- a/www/api-docs/kernel_selinux.html +++ b/www/api-docs/kernel_selinux.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -59,17 +65,25 @@

* Interface Index +

+ * Template Index

+

Layer: kernel

Module: selinux

+ + +

Description:

Policy for kernel security interface, in particular, selinuxfs.

+ +

Interfaces:

@@ -92,7 +106,7 @@ Policy for kernel security interface, in particular, selinuxfs.
Description

- Allows caller to compute an access vector. +Allows caller to compute an access vector.

Parameters
@@ -103,7 +117,7 @@ Policy for kernel security interface, in particular, selinuxfs. domain
+ +
- The process type entered by kernel. - +The process type entered by kernel. + No
- The executable type for the entrypoint. - +The executable type for the entrypoint. + No
- The process type allowed to compute an access vector. +The process type allowed to compute an access vector. No @@ -133,7 +147,7 @@ No
Description

- +

Parameters
@@ -144,7 +158,7 @@ No domain
- + No @@ -174,7 +188,7 @@ No
Description

- +

Parameters
@@ -185,7 +199,7 @@ No domain
- The process type to +The process type to No @@ -215,7 +229,7 @@ No
Description

- Allows caller to compute possible contexts for a user. +Allows caller to compute possible contexts for a user.

Parameters
@@ -226,7 +240,7 @@ No domain
- The process type allowed to compute user contexts. +The process type allowed to compute user contexts. No @@ -256,8 +270,8 @@ No
Description

- Allows the caller to get the mode of policy enforcement - (enforcing or permissive mode). +Allows the caller to get the mode of policy enforcement +(enforcing or permissive mode).

Parameters
@@ -268,7 +282,7 @@ No domain
- The process type to allow to get the enforcing mode. +The process type to allow to get the enforcing mode. No @@ -298,7 +312,7 @@ No
Description

- Gets the caller the mountpoint of the selinuxfs filesystem. +Gets the caller the mountpoint of the selinuxfs filesystem.

Parameters
@@ -309,7 +323,7 @@ No domain
- The process type requesting the selinuxfs mountpoint. +The process type requesting the selinuxfs mountpoint. No @@ -339,7 +353,7 @@ No
Description

- Allow caller to load the policy into the kernel. +Allow caller to load the policy into the kernel.

Parameters
@@ -350,7 +364,7 @@ No domain
- The process type that will load the policy. +The process type that will load the policy. No @@ -392,8 +406,8 @@ No
Description

- Allow caller to set the state of Booleans to - enable or disable conditional portions of the policy. +Allow caller to set the state of Booleans to +enable or disable conditional portions of the policy.

Parameters
@@ -404,7 +418,7 @@ No domain
- The process type allowed to set the Boolean. +The process type allowed to set the Boolean. No @@ -414,7 +428,7 @@ No booltype - The type of Booleans the caller is allowed to set. +The type of Booleans the caller is allowed to set. yes @@ -444,8 +458,8 @@ yes
Description

- Allow caller to set the mode of policy enforcement - (enforcing or permissive mode). +Allow caller to set the mode of policy enforcement +(enforcing or permissive mode).

Parameters
@@ -456,7 +470,7 @@ yes domain
- The process type to allow to set the enforcement mode. +The process type to allow to set the enforcement mode. No @@ -486,7 +500,7 @@ No
Description

- Allow caller to set selinux security parameters. +Allow caller to set selinux security parameters.

Parameters
@@ -497,7 +511,7 @@ No domain
- The process type to allow to set security parameters. +The process type to allow to set security parameters. No @@ -527,7 +541,7 @@ No
Description

- Allows caller to validate security contexts. +Allows caller to validate security contexts.

Parameters
@@ -538,7 +552,7 @@ No domain
- The process type permitted to validate contexts. +The process type permitted to validate contexts. No @@ -549,6 +563,9 @@ No +Return + + diff --git a/www/api-docs/kernel_storage.html b/www/api-docs/kernel_storage.html index 4b373ea..1ec3c66 100644 --- a/www/api-docs/kernel_storage.html +++ b/www/api-docs/kernel_storage.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -59,15 +65,23 @@

* Interface Index +

+ * Template Index

+

Layer: kernel

Module: storage

+ + +

Description:

Policy controlling access to storage devices

+ +

Interfaces:

@@ -90,7 +104,7 @@
Description

- Create block devices in /dev with the fixed disk type. +Create block devices in /dev with the fixed disk type.

Parameters
@@ -101,7 +115,7 @@ domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -131,8 +145,8 @@ No
Description

- Do not audit attempts made by the caller to get - the attributes of fixed disk device nodes. +Do not audit attempts made by the caller to get +the attributes of fixed disk device nodes.

Parameters
@@ -143,7 +157,7 @@ No domain
- The type of the process to not audit. +The type of the process to not audit. No @@ -173,8 +187,8 @@ No
Description

- Do not audit attempts made by the caller to get - the attributes of removable devices device nodes. +Do not audit attempts made by the caller to get +the attributes of removable devices device nodes.

Parameters
@@ -185,7 +199,91 @@ No domain
- The type of the process to not audit. +The type of the process to not audit. + + +No +
+ + + +
+ + +
+ +storage_dontaudit_setattr_fixed_disk( + + + + + domain + + + )
+
+
+ + +
Description
+

+Do not audit attempts made by the caller to set +the attributes of fixed disk device nodes. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process to not audit. + + +No +
+
+
+ +
+ + +
+ +storage_dontaudit_setattr_removable_device( + + + + + domain + + + )
+
+
+ + +
Description
+

+Do not audit attempts made by the caller to set +the attributes of removable devices device nodes. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process to not audit. No @@ -215,8 +313,8 @@ No
Description

- Allow the caller to get the attributes of fixed disk - device nodes. +Allow the caller to get the attributes of fixed disk +device nodes.

Parameters
@@ -227,7 +325,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -257,8 +355,8 @@ No
Description

- Allow the caller to get the attributes of removable - devices device nodes. +Allow the caller to get the attributes of removable +devices device nodes.

Parameters
@@ -269,7 +367,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -299,8 +397,8 @@ No
Description

- Get attributes of the device nodes - for the SCSI generic inerface. +Allow the caller to get the attributes of +the generic SCSI interface device nodes.

Parameters
@@ -311,7 +409,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -326,7 +424,7 @@ No
-storage_getattr_tape_device( +storage_getattr_scsi_generic( @@ -341,8 +439,8 @@ No
Description

- Allow the caller to get the attributes - of device nodes of tape devices. +Get attributes of the device nodes +for the SCSI generic inerface.

Parameters
@@ -353,7 +451,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -368,7 +466,7 @@ No
-storage_manage_fixed_disk( +storage_getattr_tape_device( @@ -383,7 +481,8 @@ No
Description

- Create, read, write, and delete fixed disk device nodes. +Allow the caller to get the attributes +of device nodes of tape devices.

Parameters
@@ -394,7 +493,48 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +storage_manage_fixed_disk( + + + + + domain + + + )
+
+
+ +
Summary
+

+Create, read, write, and delete fixed disk device nodes. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. No @@ -424,10 +564,10 @@ No
Description

- Allow the caller to directly read from a fixed disk. - This is extremly dangerous as it can bypass the - SELinux protections for filesystem objects, and - should only be used by trusted domains. +Allow the caller to directly read from a fixed disk. +This is extremly dangerous as it can bypass the +SELinux protections for filesystem objects, and +should only be used by trusted domains.

Parameters
@@ -438,7 +578,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -468,10 +608,10 @@ No
Description

- Allow the caller to directly read from a logical volume. - This is extremly dangerous as it can bypass the - SELinux protections for filesystem objects, and - should only be used by trusted domains. +Allow the caller to directly read from a logical volume. +This is extremly dangerous as it can bypass the +SELinux protections for filesystem objects, and +should only be used by trusted domains.

Parameters
@@ -482,7 +622,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -512,11 +652,11 @@ No
Description

- Allow the caller to directly read from - a removable device. - This is extremly dangerous as it can bypass the - SELinux protections for filesystem objects, and - should only be used by trusted domains. +Allow the caller to directly read from +a removable device. +This is extremly dangerous as it can bypass the +SELinux protections for filesystem objects, and +should only be used by trusted domains.

Parameters
@@ -527,7 +667,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -557,10 +697,10 @@ No
Description

- Allow the caller to directly write to a fixed disk. - This is extremly dangerous as it can bypass the - SELinux protections for filesystem objects, and - should only be used by trusted domains. +Allow the caller to directly write to a fixed disk. +This is extremly dangerous as it can bypass the +SELinux protections for filesystem objects, and +should only be used by trusted domains.

Parameters
@@ -571,7 +711,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -601,10 +741,10 @@ No
Description

- Allow the caller to directly read from a logical volume. - This is extremly dangerous as it can bypass the - SELinux protections for filesystem objects, and - should only be used by trusted domains. +Allow the caller to directly read from a logical volume. +This is extremly dangerous as it can bypass the +SELinux protections for filesystem objects, and +should only be used by trusted domains.

Parameters
@@ -615,7 +755,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -645,11 +785,11 @@ No
Description

- Allow the caller to directly write to - a removable device. - This is extremly dangerous as it can bypass the - SELinux protections for filesystem objects, and - should only be used by trusted domains. +Allow the caller to directly write to +a removable device. +This is extremly dangerous as it can bypass the +SELinux protections for filesystem objects, and +should only be used by trusted domains.

Parameters
@@ -660,7 +800,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -690,11 +830,11 @@ No
Description

- Allow the caller to directly read, in a - generic fashion, from any SCSI device. - This is extremly dangerous as it can bypass the - SELinux protections for filesystem objects, and - should only be used by trusted domains. +Allow the caller to directly read, in a +generic fashion, from any SCSI device. +This is extremly dangerous as it can bypass the +SELinux protections for filesystem objects, and +should only be used by trusted domains.

Parameters
@@ -705,7 +845,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -735,8 +875,91 @@ No
Description

- Allow the caller to directly read - a tape device. +Allow the caller to directly read +a tape device. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+ + + +
+ + +
+ +storage_relabel_fixed_disk( + + + + + domain + + + )
+
+
+ +
Summary
+

+Relabel fixed disk device nodes. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +storage_set_scsi_generic_attributes( + + + + + domain + + + )
+
+
+ + +
Description
+

+Set attributes of the device nodes +for the SCSI generic inerface.

Parameters
@@ -747,7 +970,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -777,8 +1000,8 @@ No
Description

- Allow the caller to set the attributes of fixed disk - device nodes. +Allow the caller to set the attributes of fixed disk +device nodes.

Parameters
@@ -789,7 +1012,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -819,8 +1042,8 @@ No
Description

- Allow the caller to set the attributes of removable - devices device nodes. +Allow the caller to set the attributes of removable +devices device nodes.

Parameters
@@ -831,7 +1054,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -861,8 +1084,8 @@ No
Description

- Set attributes of the device nodes - for the SCSI generic inerface. +Allow the caller to set the attributes of +the generic SCSI interface device nodes.

Parameters
@@ -873,7 +1096,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -903,10 +1126,51 @@ No
Description

- Allow the caller to set the attributes - of device nodes of tape devices. +Allow the caller to set the attributes +of device nodes of tape devices. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+ + + +
+ + +
+ +storage_swapon_fixed_disk( + + + + + domain + + + )
+
+
+ +
Summary
+

+Enable a fixed disk device as swap space

+
Parameters
@@ -915,7 +1179,7 @@ No domain + +
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No @@ -945,11 +1209,11 @@ No
Description

- Allow the caller to directly write, in a - generic fashion, from any SCSI device. - This is extremly dangerous as it can bypass the - SELinux protections for filesystem objects, and - should only be used by trusted domains. +Allow the caller to directly write, in a +generic fashion, from any SCSI device. +This is extremly dangerous as it can bypass the +SELinux protections for filesystem objects, and +should only be used by trusted domains.

Parameters
@@ -960,7 +1224,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -990,8 +1254,8 @@ No
Description

- Allow the caller to directly read - a tape device. +Allow the caller to directly read +a tape device.

Parameters
@@ -1002,7 +1266,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1013,6 +1277,9 @@ No +Return + + diff --git a/www/api-docs/kernel_terminal.html b/www/api-docs/kernel_terminal.html index f667828..4547c70 100644 --- a/www/api-docs/kernel_terminal.html +++ b/www/api-docs/kernel_terminal.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -59,15 +65,23 @@

* Interface Index +

+ * Template Index

+

Layer: kernel

Module: terminal

+ + +

Description:

Policy for terminals.

+ +

Interfaces:

@@ -98,7 +112,7 @@
Description

- Create a pty in the /dev/pts directory. +Create a pty in the /dev/pts directory.

Parameters
@@ -109,7 +123,7 @@ domain
- The type of the process creating the pty. +The type of the process creating the pty. No @@ -119,7 +133,7 @@ No pty_type - The type of the pty. +The type of the pty. No @@ -149,9 +163,9 @@ No
Description

- Do not audit attempts to get the - attributes of any user tty - device nodes. +Do not audit attempts to get the +attributes of any user tty +device nodes.

Parameters
@@ -162,7 +176,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -192,8 +206,8 @@ No
Description

- Do not audit attempts to read the - /dev/pts directory to. +Do not audit attempts to read the +/dev/pts directory to.

Parameters
@@ -204,7 +218,7 @@ No domain
- The type of the process to not audit. +The type of the process to not audit. No @@ -234,8 +248,8 @@ No
Description

- Do not audit attempts to read any - user ptys. +Do not audit attempts to read any +user ptys.

Parameters
@@ -246,7 +260,7 @@ No domain
- The type of the process to not audit. +The type of the process to not audit. No @@ -276,8 +290,8 @@ No
Description

- Do not audit attempts to read or write - any user ttys. +Do not audit attempts to read or write +any user ttys.

Parameters
@@ -288,7 +302,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -318,8 +332,8 @@ No
Description

- Do not audit attemtps to read from - or write to the console. +Do not audit attemtps to read from +or write to the console.

Parameters
@@ -330,7 +344,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -360,9 +374,9 @@ No
Description

- Dot not audit attempts to read and - write the generic pty type. This is - generally only used in the targeted policy. +Dot not audit attempts to read and +write the generic pty type. This is +generally only used in the targeted policy.

Parameters
@@ -373,7 +387,7 @@ No domain
- The type of the process to not audit. +The type of the process to not audit. No @@ -403,8 +417,8 @@ No
Description

- Do not audit attempts to read and - write the pty multiplexor (/dev/ptmx). +Do not audit attempts to read and +write the pty multiplexor (/dev/ptmx).

Parameters
@@ -415,7 +429,7 @@ No domain
- The type of the process to not audit. +The type of the process to not audit. No @@ -445,8 +459,8 @@ No
Description

- Do not audit attempts to read or - write unallocated ttys. +Do not audit attempts to read or +write unallocated ttys.

Parameters
@@ -457,7 +471,7 @@ No domain
- The type of the process to not audit. +The type of the process to not audit. No @@ -487,8 +501,8 @@ No
Description

- Get the attributes of all user - pty device nodes. +Get the attributes of all user +pty device nodes.

Parameters
@@ -499,7 +513,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -529,8 +543,8 @@ No
Description

- Get the attributes of all user tty - device nodes. +Get the attributes of all user tty +device nodes.

Parameters
@@ -541,7 +555,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -571,8 +585,8 @@ No
Description

- Get the attributes of all unallocated - tty device nodes. +Get the attributes of all unallocated +tty device nodes.

Parameters
@@ -583,7 +597,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -613,8 +627,8 @@ No
Description

- Read the /dev/pts directory to - list all ptys. +Read the /dev/pts directory to +list all ptys.

Parameters
@@ -625,7 +639,49 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +term_login_pty( + + + + + pty_type + + + )
+
+
+ + +
Description
+

+Transform specified type into a pty type +used by login programs, such as sshd. +

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+pty_type + + +An object type that will applied to a pty. No @@ -655,7 +711,7 @@ No
Description

- Transform specified type into a pty type. +Transform specified type into a pty type.

Parameters
@@ -666,7 +722,49 @@ No pty_type
- An object type that will applied to a pty. +An object type that will applied to a pty. + + +No +
+
+
+ +
+ + +
+ +term_relabel_all_user_ptys( + + + + + domain + + + )
+
+
+ + +
Description
+

+Relabel from and to all user +user pty device nodes. +

+ +
Parameters
+ + + + + + + + + + + + + + + + + + + @@ -75,6 +121,11 @@ sendmail + + + diff --git a/www/api-docs/services_cron.html b/www/api-docs/services_cron.html new file mode 100644 index 0000000..a940957 --- /dev/null +++ b/www/api-docs/services_cron.html @@ -0,0 +1,392 @@ + + + + Security Enhanced Linux Reference Policy + + + + + + + +
+ +

Layer: services

+

Module: cron

+ + +Interfaces +Templates + + +

Description:

+ +

Periodic execution of scheduled commands.

+ + + +

Interfaces:

+ +
+ + +
+ +cron_read_pipe( + + + + + domain + + + )
+
+
+ +
Summary
+

+Read a cron daemon unnamed pipe +

+ + +
Parameters
+
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. No @@ -696,8 +794,8 @@ No
Description

- Relabel from and to all user - user tty device nodes. +Relabel from and to all user +user tty device nodes.

Parameters
@@ -708,7 +806,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -738,8 +836,8 @@ No
Description

- Relabel from and to the unallocated - tty type. +Relabel from and to the unallocated +tty type.

Parameters
@@ -750,7 +848,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -780,8 +878,8 @@ No
Description

- Relabel from all user tty types to - the unallocated tty type. +Relabel from all user tty types to +the unallocated tty type.

Parameters
@@ -792,7 +890,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -822,8 +920,8 @@ No
Description

- Set the attributes of all user tty - device nodes. +Set the attributes of all user tty +device nodes.

Parameters
@@ -834,7 +932,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -864,8 +962,8 @@ No
Description

- Set the attributes of the console - device node. +Set the attributes of the console +device node.

Parameters
@@ -876,7 +974,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -906,8 +1004,8 @@ No
Description

- Set the attributes of all unallocated - tty device nodes. +Set the attributes of all unallocated +tty device nodes.

Parameters
@@ -918,7 +1016,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -948,7 +1046,7 @@ No
Description

- Transform specified type into a tty type. +Transform specified type into a tty type.

Parameters
@@ -959,7 +1057,7 @@ No tty_type
- An object type that will applied to a tty. +An object type that will applied to a tty. No @@ -989,8 +1087,8 @@ No
Description

- Read and write the console, all - ttys and all ptys. +Read and write the console, all +ttys and all ptys.

Parameters
@@ -1001,7 +1099,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1031,7 +1129,7 @@ No
Description

- Read and write all user ptys. +Read and write all user ptys.

Parameters
@@ -1042,7 +1140,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1072,7 +1170,7 @@ No
Description

- Read and write all user to all user ttys. +Read and write all user to all user ttys.

Parameters
@@ -1083,7 +1181,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1113,7 +1211,7 @@ No
Description

- Read from and write to the console. +Read from and write to the console.

Parameters
@@ -1124,7 +1222,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1154,8 +1252,8 @@ No
Description

- Read and write the controlling - terminal (/dev/tty). +Read and write the controlling +terminal (/dev/tty).

Parameters
@@ -1166,7 +1264,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1196,9 +1294,9 @@ No
Description

- Read and write the generic pty - type. This is generally only used in - the targeted policy. +Read and write the generic pty +type. This is generally only used in +the targeted policy.

Parameters
@@ -1209,7 +1307,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1239,7 +1337,7 @@ No
Description

- Read and write unallocated ttys. +Read and write unallocated ttys.

Parameters
@@ -1250,7 +1348,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1288,9 +1386,9 @@ No
Description

- Transform specified type into an user - pty type. This allows it to be relabeled via - type change by login programs such as ssh. +Transform specified type into an user +pty type. This allows it to be relabeled via +type change by login programs such as ssh.

Parameters
@@ -1301,8 +1399,8 @@ No userdomain
- The type of the user domain associated with - this pty. +The type of the user domain associated with +this pty. No @@ -1312,7 +1410,7 @@ No object_type - An object type that will applied to a pty. +An object type that will applied to a pty. No @@ -1342,7 +1440,7 @@ No
Description

- Write to all user ttys. +Write to all user ttys.

Parameters
@@ -1353,7 +1451,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1383,7 +1481,7 @@ No
Description

- Write to the console. +Write to the console.

Parameters
@@ -1394,7 +1492,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1424,7 +1522,7 @@ No
Description

- Write to unallocated ttys. +Write to unallocated ttys.

Parameters
@@ -1435,7 +1533,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -1446,6 +1544,9 @@ No +Return + + diff --git a/www/api-docs/services.html b/www/api-docs/services.html index 3fdfb39..72329aa 100644 --- a/www/api-docs/services.html +++ b/www/api-docs/services.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -25,15 +31,30 @@ services
+    -  + cron
+ +    -  + inetd
+ +    -  + kerberos
+    -  mta
+    -  + nis
+    -  remotelogin
   -  sendmail
+    -  + ssh
+
+  @@ -44,6 +65,8 @@

* Interface Index +

+ * Template Index

@@ -60,12 +83,35 @@
+ + cron

Periodic execution of scheduled commands.

+ + inetd

Internet services daemon.

+ + kerberos

MIT Kerberos admin and KDC

mta

Policy common to all email tranfer agents.

+ + nis

Policy for NIS (YP) servers and clients

remotelogin

Policy for rshd, rlogind, and telnetd.

Policy for sendmail.

+ + ssh

Secure shell client and server policy.

+ + + + +
Parameter:Description:Optional:
+domain + + +The type of the process to performing this action. + + +No +
+
+
+ +
+ + +
+ +cron_rw_log( + + + + + domain + + + )
+
+
+ +
Summary
+

+Read and write the cron daemon log files. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process to performing this action. + + +No +
+
+
+ +
+ + +
+ +cron_search_spool( + + + + + domain + + + )
+
+
+ +
Summary
+

+Search the directory containing user cron tables. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process to performing this action. + + +No +
+
+
+ +
+ + +
+ +cron_system_entry( + + + + + domain + + + + , + + + + entrypoint + + + )
+
+
+ +
Summary
+

+Make the specified program domain accessable +from the system cron jobs. +

+ + +
Parameters
+ + + + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process to transition to. + + +No +
+entrypoint + + +The type of the file used as an entrypoint to this domain. + + +No +
+
+
+ + +Return + + + +

Templates:

+ +
+ + +
+ +cron_admin_template( + + + + + userdomain_prefix + + + )
+
+
+ +
Summary
+

+The administrative functions template for the cron module. +

+ + +
Description
+

+

+This template creates rules for administrating the cron service, +allowing the specified user to manage other user crontabs. +

+

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+userdomain_prefix + + +The prefix of the user domain (e.g., user +is the prefix for user_t). + + +No +
+
+
+ +
+ + +
+ +cron_per_userdomain_template( + + + + + userdomain_prefix + + + )
+
+
+ +
Summary
+

+The per user domain template for the cron module. +

+ + +
Description
+

+

+This template creates a derived domains which are used +for running programs on behalf of the user, from cron. +A type for the user crontab is also created. +

+

+This template is invoked automatically for each user, and +generally does not need to be invoked directly +by policy writers. +

+

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+userdomain_prefix + + +The prefix of the user domain (e.g., user +is the prefix for user_t). + + +No +
+
+
+ + +Return + + + + + diff --git a/www/api-docs/services_inetd.html b/www/api-docs/services_inetd.html new file mode 100644 index 0000000..74c94b2 --- /dev/null +++ b/www/api-docs/services_inetd.html @@ -0,0 +1,339 @@ + + + + Security Enhanced Linux Reference Policy + + + + + + + +
+ +

Layer: services

+

Module: inetd

+ + + +

Description:

+ +

Internet services daemon.

+ + + +

Interfaces:

+ +
+ + +
+ +inetd_core_service_domain( + + + + + domain + + + + , + + + + entrypoint + + + )
+
+
+ +
Summary
+

+Define the specified domain as a inetd service. +

+ + +
Description
+

+Define the specified domain as a inetd service. The +inetd_service_domain(), inetd_tcp_service_domain(), +or inetd_udp_service_domain() interfaces should be used +instead of this interface, as this interface only provides +the common rules to these three interfaces. +

+ +
Parameters
+ + + + + + + +
Parameter:Description:Optional:
+domain + + +The type associated with the inetd service process. + + +No +
+entrypoint + + +The type associated with the process program. + + +No +
+
+
+ +
+ + +
+ +inetd_service_domain( + + + + + domain + + + + , + + + + entrypoint + + + )
+
+
+ +
Summary
+

+Define the specified domain as a TCP and UDP inetd service. +

+ + +
Parameters
+ + + + + + + +
Parameter:Description:Optional:
+domain + + +The type associated with the inetd service process. + + +No +
+entrypoint + + +The type associated with the process program. + + +No +
+
+
+ +
+ + +
+ +inetd_tcp_service_domain( + + + + + domain + + + + , + + + + entrypoint + + + )
+
+
+ +
Summary
+

+Define the specified domain as a TCP inetd service. +

+ + +
Parameters
+ + + + + + + +
Parameter:Description:Optional:
+domain + + +The type associated with the inetd service process. + + +No +
+entrypoint + + +The type associated with the process program. + + +No +
+
+
+ +
+ + +
+ +inetd_udp_service_domain( + + + + + domain + + + + , + + + + entrypoint + + + )
+
+
+ +
Summary
+

+Define the specified domain as a UDP inetd service. +

+ + +
Parameters
+ + + + + + + +
Parameter:Description:Optional:
+domain + + +The type associated with the inetd service process. + + +No +
+entrypoint + + +The type associated with the process program. + + +No +
+
+
+ + +Return + + + +
+ + diff --git a/www/api-docs/services_kerberos.html b/www/api-docs/services_kerberos.html new file mode 100644 index 0000000..d25efc4 --- /dev/null +++ b/www/api-docs/services_kerberos.html @@ -0,0 +1,186 @@ + + + + Security Enhanced Linux Reference Policy + + + + + + + +
+ +

Layer: services

+

Module: kerberos

+ + + +

Description:

+ +

+

+This policy supports: +

+

+Servers: +

  • kadmind
  • krb5kdc

+

+Clients: +

  • kinit
  • kdestroy
  • klist
  • ksu (incomplete)

+

+ + + +

Interfaces:

+ +
+ + +
+ +kerberos_read_conf( + + + + + domain + + + )
+
+
+ +
Summary
+

+Read the kerberos configuration file (/etc/krb5.conf). +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ +
+ + +
+ +kerberos_use( + + + + + domain + + + )
+
+
+ +
Summary
+

+Use kerberos services +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. + + +No +
+
+
+ + +Return + + + +
+ + diff --git a/www/api-docs/services_mta.html b/www/api-docs/services_mta.html index 8ad08cd..949e72d 100644 --- a/www/api-docs/services_mta.html +++ b/www/api-docs/services_mta.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -25,15 +31,30 @@ services
+    -  + cron
+ +    -  + inetd
+ +    -  + kerberos
+    -  mta
+    -  + nis
+    -  remotelogin
   -  sendmail
+    -  + ssh
+
+  @@ -44,15 +65,26 @@

* Interface Index +

+ * Template Index

+

Layer: services

Module: mta

+ + +Interfaces +Templates + +

Description:

Policy common to all email tranfer agents.

+ +

Interfaces:

@@ -60,6 +92,211 @@
+mta_exec( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +mta_getattr_spool( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +mta_mailserver( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +mta_manage_queue( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +mta_manage_spool( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ mta_read_aliases( @@ -75,7 +312,7 @@
Description

- Read mail address aliases. +Read mail address aliases.

Parameters
@@ -86,7 +323,219 @@ domain
- The type of the process performing this action. +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +mta_rw_aliases( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +mta_rw_spool( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +mta_send_mail( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +mta_sendmail_mailserver( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ + +Return + + + +

Templates:

+ +
+ + +
+ +mta_per_userdomain_template( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + + + @@ -148,6 +162,11 @@ Basic filesystem types and interfaces.

+ + + diff --git a/www/api-docs/system_authlogin.html b/www/api-docs/system_authlogin.html index fc043f2..bcd8a82 100644 --- a/www/api-docs/system_authlogin.html +++ b/www/api-docs/system_authlogin.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -46,6 +52,9 @@    -  files
+    -  + fstools
+    -  getty
@@ -98,15 +107,26 @@

* Interface Index +

+ * Template Index

+

Layer: system

Module: authlogin

+ + +Interfaces +Templates + +

Description:

Common policy for authentication and user login.

+ +

Interfaces:

@@ -129,7 +149,7 @@
Description

- +Delete pam PID files.

Parameters
@@ -140,7 +160,7 @@ domain
+ +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! No @@ -97,6 +546,8 @@ No +Return + diff --git a/www/api-docs/services_nis.html b/www/api-docs/services_nis.html new file mode 100644 index 0000000..5997c42 --- /dev/null +++ b/www/api-docs/services_nis.html @@ -0,0 +1,217 @@ + + + + Security Enhanced Linux Reference Policy + + + + + + + +
+ +

Layer: services

+

Module: nis

+ + + +

Description:

+ +

Policy for NIS (YP) servers and clients

+ + + +

Interfaces:

+ +
+ + +
+ +nis_list_var_yp( + + + + + domain + + + )
+
+
+ +
Summary
+

+Send UDP network traffic to NIS clients. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +nis_udp_sendto_ypbind( + + + + + domain + + + )
+
+
+ +
Summary
+

+Send UDP network traffic to NIS clients. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +nis_use_ypbind( + + + + + domain + + + )
+
+
+ +
Summary
+

+Use the ypbind service to access NIS services. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ + +Return + + + +
+ + diff --git a/www/api-docs/services_remotelogin.html b/www/api-docs/services_remotelogin.html index 3ca1c03..8bd22ed 100644 --- a/www/api-docs/services_remotelogin.html +++ b/www/api-docs/services_remotelogin.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -25,15 +31,30 @@ services
+    -  + cron
+ +    -  + inetd
+ +    -  + kerberos
+    -  mta
+    -  + nis
+    -  remotelogin
   -  sendmail
+    -  + ssh
+
+  @@ -44,15 +65,23 @@

* Interface Index +

+ * Template Index

+

Layer: services

Module: remotelogin

+ + +

Description:

Policy for rshd, rlogind, and telnetd.

+ +

Interfaces:

@@ -75,7 +104,7 @@
Description

- Domain transition to the remote login domain. +Domain transition to the remote login domain.

Parameters
@@ -86,7 +115,7 @@ domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -97,6 +126,9 @@ No +Return + + diff --git a/www/api-docs/services_sendmail.html b/www/api-docs/services_sendmail.html index a671847..a8561ad 100644 --- a/www/api-docs/services_sendmail.html +++ b/www/api-docs/services_sendmail.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -25,15 +31,30 @@ services
+    -  + cron
+ +    -  + inetd
+ +    -  + kerberos
+    -  mta
+    -  + nis
+    -  remotelogin
   -  sendmail
+    -  + ssh
+
+  @@ -44,15 +65,23 @@

* Interface Index +

+ * Template Index

+

Layer: services

Module: sendmail

+ + +

Description:

Policy for sendmail.

+ +

Interfaces:

@@ -75,7 +104,7 @@
Description

- Domain transition to sendmail. +Domain transition to sendmail.

Parameters
@@ -86,7 +115,7 @@ domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -97,6 +126,9 @@ No +Return + + diff --git a/www/api-docs/services_ssh.html b/www/api-docs/services_ssh.html new file mode 100644 index 0000000..2eadd26 --- /dev/null +++ b/www/api-docs/services_ssh.html @@ -0,0 +1,251 @@ + + + + Security Enhanced Linux Reference Policy + + + + + + + +
+ +

Layer: services

+

Module: ssh

+ + +Interfaces +Templates + + +

Description:

+ +

Secure shell client and server policy.

+ + + +

Interfaces:

+ +
+ + +
+ +ssh_dontaudit_read_server_keys( + + + + + domain + + + )
+
+
+ +
Summary
+

Read ssh server keys

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ + +Return + + + +

Templates:

+ +
+ + +
+ +ssh_per_userdomain_template( + + + + + userdomain_prefix + + + )
+
+
+ +
Summary
+

+The per user domain template for the ssh module. +

+ + +
Description
+

+

+This template creates a derived domains which are used +for ssh client sessions and user ssh agents. A derived +type is also created to protect the user ssh keys. +

+

+This template is invoked automatically for each user, and +generally does not need to be invoked directly +by policy writers. +

+

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+userdomain_prefix + + +The prefix of the user domain (e.g., user +is the prefix for user_t). + + +No +
+
+
+ +
+ + +
+ +ssh_server_template( + + + + + userdomain_prefix + + + )
+
+
+ +
Summary
+

+The template to define a ssh server. +

+ + +
Description
+

+

+This template creates a domains to be used for +creating a ssh server. This is typically done +to have multiple ssh servers of different sensitivities, +such as for an internal network-facing ssh server, and +a external network-facing ssh server. +

+

+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+userdomain_prefix + + +The prefix of the server domain (e.g., sshd +is the prefix for sshd_t). + + +No +
+
+
+ + +Return + + +
+ + diff --git a/www/api-docs/style.css b/www/api-docs/style.css index 9571722..9bac0d9 100644 --- a/www/api-docs/style.css +++ b/www/api-docs/style.css @@ -124,6 +124,30 @@ a:hover {background-color:#eee;} text-decoration:none; font-family:verdana, arial, helvetica, sans-serif; } +#Template { + margin:5px 0px 25px 5px; + padding:5px 0px 5px 5px; + border-style:solid; + border-color:black; + border-width:1px 1px 1px 1px; + background-color:#fafafa; + font-size:14px; + font-weight:400; + text-decoration:none; + font-family:verdana, arial, helvetica, sans-serif; +} +#Templatesmall { + margin:0px 0px 5px 0px; + padding:5px 0px 0px 5px; + border-style:solid; + border-color:black; + border-width:1px 1px 1px 1px; + background-color:#fafafa; + font-size:14px; + font-weight:400; + text-decoration:none; + font-family:verdana, arial, helvetica, sans-serif; +} #Description { margin:0px 0px 0px 5px; padding:0px 0px 0px 5px; diff --git a/www/api-docs/system.html b/www/api-docs/system.html index 64bb8c6..3002695 100644 --- a/www/api-docs/system.html +++ b/www/api-docs/system.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -46,6 +52,9 @@    -  files
+    -  + fstools
+    -  getty
@@ -98,6 +107,8 @@

* Interface Index +

+ * Template Index

@@ -117,6 +128,9 @@
authlogin
+ + fstools

Tools for filesystem management, such as mkfs and fsck.

getty

Policy for getty.

- +The type of the process performing this action. No @@ -170,7 +190,7 @@ No
Description

- +Run unix_chkpwd to check a password.

Parameters
@@ -181,7 +201,7 @@ No domain
- +The type of the process performing this action. No @@ -219,7 +239,7 @@ No
Description

- Execute a login_program in the target domain. +Execute a login_program in the target domain.

Parameters
@@ -230,7 +250,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -240,7 +260,7 @@ No target_domain - The type of the login_program process. +The type of the login_program process. No @@ -270,7 +290,7 @@ No
Description

- Execute pam programs in the pam domain. +Execute pam programs in the pam domain.

Parameters
@@ -281,7 +301,48 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +auth_domtrans_pam_console( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! No @@ -311,7 +372,7 @@ No
Description

- Execute utempter programs in the utempter domain. +Execute utempter programs in the utempter domain.

Parameters
@@ -322,7 +383,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -352,7 +413,7 @@ No
Description

- +

Parameters
@@ -363,7 +424,7 @@ No domain
- +The type of the process performing this action. No @@ -393,7 +454,8 @@ No
Description

- +Do not audit attempts to read the shadow +password file (/etc/shadow).

Parameters
@@ -404,7 +466,7 @@ No domain
- +The type of the domain to not audit. No @@ -424,28 +486,28 @@ No - domain + ? )
- -
Description
+
Summary

- +Summary is missing!

+
Parameters
Parameter:Description:Optional:
-domain +? - +Parameter descriptions are missing! No @@ -475,7 +537,7 @@ No
Description

- +Execute the pam program.

Parameters
@@ -486,7 +548,7 @@ No domain
- +The type of the process performing this action. No @@ -506,28 +568,28 @@ No - domain + ? )
- -
Description
+
Summary

- +Summary is missing!

+
Parameters
Parameter:Description:Optional:
-domain +? - +Parameter descriptions are missing! No @@ -557,7 +619,7 @@ No
Description

- +Use the login program as an entry point program.

Parameters
@@ -568,7 +630,7 @@ No domain
- +The type of process using the login program as entry point. No @@ -610,8 +672,8 @@ No
Description

- Manage all files on the filesystem, except - the shadow passwords and listed exceptions. +Manage all files on the filesystem, except +the shadow passwords and listed exceptions.

Parameters
@@ -622,7 +684,7 @@ No domain
- The type of the domain perfoming this action. +The type of the domain perfoming this action. No @@ -632,8 +694,8 @@ No exception_types - The types to be excluded. Each type or attribute - must be negated by the caller. +The types to be excluded. Each type or attribute +must be negated by the caller. yes @@ -648,33 +710,238 @@ yes
-auth_read_login_records( +auth_manage_login_records( - domain + ? )
+
Summary
+

+Summary is missing! +

-
Description
+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+ + +
+ + +
+ +auth_manage_pam_console_data( + + + + + ? + + + )
+
+
+ +
Summary

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +auth_manage_shadow( + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing!

+
Parameters
+ +
Parameter:Description:Optional:
-domain +? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +auth_read_login_records( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +auth_read_pam_console_data( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + +No +
+
+
+ +
+ +
+ +auth_read_pam_pid( + + + + + ? + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! No @@ -704,7 +971,7 @@ No
Description

- +Read the shadow passwords file (/etc/shadow)

Parameters
@@ -715,7 +982,7 @@ No domain
- +The type of the process performing this action. No @@ -757,8 +1024,8 @@ No
Description

- Relabel all files on the filesystem, except - the shadow passwords and listed exceptions. +Relabel all files on the filesystem, except +the shadow passwords and listed exceptions.

Parameters
@@ -769,7 +1036,7 @@ No domain
- The type of the domain perfoming this action. +The type of the domain perfoming this action. No @@ -779,8 +1046,8 @@ No exception_types - The types to be excluded. Each type or attribute - must be negated by the caller. +The types to be excluded. Each type or attribute +must be negated by the caller. yes @@ -795,6 +1062,47 @@ yes
+auth_relabelto_shadow( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+ + +
+ + +
+ auth_run_pam( @@ -826,7 +1134,7 @@ yes
Description

- Execute pam programs in the PAM domain. +Execute pam programs in the PAM domain.

Parameters
@@ -837,7 +1145,7 @@ yes domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -847,7 +1155,7 @@ No role - The role to allow the PAM domain. +The role to allow the PAM domain. No @@ -857,7 +1165,7 @@ No terminal - The type of the terminal allow the PAM domain to use. +The type of the terminal allow the PAM domain to use. No @@ -903,7 +1211,7 @@ No
Description

- Execute utempter programs in the utempter domain. +Execute utempter programs in the utempter domain.

Parameters
@@ -914,7 +1222,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -924,7 +1232,7 @@ No role - The role to allow the utempter domain. +The role to allow the utempter domain. No @@ -934,7 +1242,130 @@ No terminal - The type of the terminal allow the utempter domain to use. +The type of the terminal allow the utempter domain to use. + + +No +
+
+
+ +
+ + +
+ +auth_rw_faillog( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +auth_rw_lastlog( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +auth_rw_login_records( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! No @@ -964,7 +1395,7 @@ No
Description

- +Read and write the shadow password file (/etc/shadow).

Parameters
@@ -975,7 +1406,7 @@ No domain
- +The type of the process performing this action. No @@ -985,7 +1416,14 @@ No -
+ +Return + + + +

Templates:

+ +
@@ -1002,10 +1440,25 @@ No
+
Summary
+

+The per user domain template for the authlogin module. +

+
Description

- +

+This template creates a derived domain which is allowed +to authenticate users by using PAM unix_chkpwd support. +This domain will be used by any programs running in the +user domain which use PAM to authenticate. +

+

+This template is invoked automatically for each user, and +generally does not need to be invoked directly +by policy writers. +

Parameters
@@ -1016,7 +1469,8 @@ No userdomain_prefix
- +The prefix of the user domain (e.g., user +is the prefix for user_t). No @@ -1027,6 +1481,8 @@ No +Return + diff --git a/www/api-docs/system_clock.html b/www/api-docs/system_clock.html index d7b6154..3301e7c 100644 --- a/www/api-docs/system_clock.html +++ b/www/api-docs/system_clock.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -46,6 +52,9 @@    -  files
+    -  + fstools
+    -  getty
@@ -98,15 +107,23 @@

* Interface Index +

+ * Template Index

+

Layer: system

Module: clock

+ + +

Description:

Policy for reading and setting the hardware clock.

+ +

Interfaces:

@@ -129,7 +146,7 @@
Description

- Execute hwclock in the clock domain. +Execute hwclock in the clock domain.

Parameters
@@ -140,7 +157,7 @@ domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -170,7 +187,7 @@ No
Description

- Execute hwclock + Execute hwclock in the caller domain.

Parameters
@@ -227,8 +244,8 @@ No
Description

- Execute hwclock in the clock domain, and - allow the specified role the hwclock domain. +Execute hwclock in the clock domain, and +allow the specified role the hwclock domain.

Parameters
@@ -239,7 +256,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -249,7 +266,7 @@ No role - The role to be allowed the clock domain. +The role to be allowed the clock domain. No @@ -259,7 +276,7 @@ No terminal - The type of the terminal allow the clock domain to use. +The type of the terminal allow the clock domain to use. No @@ -311,6 +328,9 @@ No +Return + + diff --git a/www/api-docs/system_corecommands.html b/www/api-docs/system_corecommands.html index 2f90aa6..7d065e9 100644 --- a/www/api-docs/system_corecommands.html +++ b/www/api-docs/system_corecommands.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -46,6 +52,9 @@    -  files
+    -  + fstools
+    -  getty
@@ -98,11 +107,17 @@

* Interface Index +

+ * Template Index

+

Layer: system

Module: corecommands

+ + +

Description:

@@ -110,6 +125,8 @@ Core policy for shells, and generic programs in /bin, /sbin, /usr/bin, and /usr/sbin.

+ +

Interfaces:

@@ -117,6 +134,47 @@ in /bin, /sbin, /usr/bin, and /usr/sbin.
+corecmd_chroot_exec_chroot( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ corecmd_domtrans_shell( @@ -140,7 +198,7 @@ in /bin, /sbin, /usr/bin, and /usr/sbin.
Description

- Execute a shell in the target domain. +Execute a shell in the target domain.

Parameters
@@ -151,7 +209,7 @@ in /bin, /sbin, /usr/bin, and /usr/sbin. domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -161,7 +219,7 @@ No target_domain - The type of the shell process. +The type of the shell process. No @@ -176,34 +234,229 @@ No
-corecmd_shell_spec_domtrans( +corecmd_dontaudit_getattr_sbin_file( - domain + ? + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+ + +
+ + +
+ +corecmd_exec_bin( + - , + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +corecmd_exec_ls( + + - target_domain + + ? )
+
Summary
+

+Summary is missing! +

-
Description
+ +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +corecmd_exec_sbin( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +corecmd_exec_shell( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +corecmd_getattr_bin_file( + + + + + domain + + + )
+
+
+ +
Summary

- Execute a shell in the target domain. This - is an explicit transition, requiring the - caller to use setexeccon(). +Get the attributes of files in bin directories.

+
Parameters
@@ -212,17 +465,48 @@ No domain +
Parameter:Description:Optional:
- The type of the process performing this action. +The type of the process performing this action. No
+
+
+ +
+ + +
+ +corecmd_getattr_sbin_file( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + +
Parameter:Description:Optional:
-target_domain +? - The type of the shell process. +Parameter descriptions are missing! No @@ -232,6 +516,357 @@ No +
+ + +
+ +corecmd_list_bin( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +corecmd_list_sbin( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +corecmd_read_bin_symlink( + + + + + domain + + + )
+
+
+ +
Summary
+

+Read symbolic links in bin directories. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corecmd_read_sbin_symlink( + + + + + domain + + + )
+
+
+ +
Summary
+

+Read symbolic links in sbin directories. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +corecmd_search_bin( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +corecmd_search_sbin( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +corecmd_shell_entry_type( + + + + + domain + + + )
+
+
+ +
Summary
+

+Make the shell an entrypoint for the specified domain. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +The domain for which the shell is an entrypoint. + + +No +
+
+
+ +
+ + +
+ +corecmd_shell_spec_domtrans( + + + + + domain + + + + , + + + + target_domain + + + )
+
+
+ + +
Description
+

+Execute a shell in the target domain. This +is an explicit transition, requiring the +caller to use setexeccon(). +

+ +
Parameters
+ + + + + + + +
Parameter:Description:Optional:
+domain + + +The type of the process performing this action. + + +No +
+target_domain + + +The type of the shell process. + + +No +
+
+
+ + +Return + diff --git a/www/api-docs/system_domain.html b/www/api-docs/system_domain.html index b30ed44..f02e5b7 100644 --- a/www/api-docs/system_domain.html +++ b/www/api-docs/system_domain.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -46,6 +52,9 @@    -  files
+    -  + fstools
+    -  getty
@@ -98,15 +107,26 @@

* Interface Index +

+ * Template Index

+

Layer: system

Module: domain

+ + +Interfaces +Templates + +

Description:

Core policy for domains.

+ +

Interfaces:

@@ -114,6 +134,47 @@
+domain_base_domain_type( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ domain_dontaudit_getattr_all_tcp_sockets( @@ -129,8 +190,8 @@
Description

- Do not audit attempts to get the attributes - of all domains TCP sockets. +Do not audit attempts to get the attributes +of all domains TCP sockets.

Parameters
@@ -141,7 +202,7 @@ domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -171,8 +232,8 @@ No
Description

- Do not audit attempts to get the attributes - of all domains UDP sockets. +Do not audit attempts to get the attributes +of all domains UDP sockets.

Parameters
@@ -183,7 +244,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -213,8 +274,8 @@ No
Description

- Do not audit attempts to get the attributes - of all domains unix datagram sockets. +Do not audit attempts to get the attributes +of all domains unix datagram sockets.

Parameters
@@ -225,7 +286,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -255,8 +316,8 @@ No
Description

- Do not audit attempts to get the attributes - of all domains unnamed pipes. +Do not audit attempts to get the attributes +of all domains unnamed pipes.

Parameters
@@ -267,7 +328,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -297,8 +358,8 @@ No
Description

- Do not audit attempts to read the process state - directories of all domains. +Do not audit attempts to read the process state +directories of all domains.

Parameters
@@ -309,7 +370,171 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +domain_dontaudit_use_wide_inherit_fd( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +domain_dyntrans_type( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +domain_entry_file( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +domain_exec_all_entry_files( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! No @@ -339,7 +564,7 @@ No
Description

- Get the session ID of all domains. +Get the session ID of all domains.

Parameters
@@ -350,7 +575,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -380,7 +605,7 @@ No
Description

- Send a kill signal to all domains. +Send a kill signal to all domains.

Parameters
@@ -391,7 +616,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -421,8 +646,8 @@ No
Description

- Makes caller an exception to the constraint preventing - changing the user identity in object contexts. +Makes caller an exception to the constraint preventing +changing the user identity in object contexts.

Parameters
@@ -433,7 +658,7 @@ No domain
- The process type to make an exception to the constraint. +The process type to make an exception to the constraint. No @@ -463,7 +688,7 @@ No
Description

- Read the process state (/proc/pid) of all domains. +Read the process state (/proc/pid) of all domains.

Parameters
@@ -474,7 +699,48 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +domain_read_all_entry_files( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! No @@ -504,8 +770,8 @@ No
Description

- Makes caller an exception to the constraint preventing - changing of role. +Makes caller an exception to the constraint preventing +changing of role.

Parameters
@@ -516,7 +782,48 @@ No domain
- The process type to make an exception to the constraint. +The process type to make an exception to the constraint. + + +No +
+
+
+ +
+ + +
+ +domain_setpriority_all_domains( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! No @@ -546,7 +853,7 @@ No
Description

- Send a child terminated signal to all domains. +Send a child terminated signal to all domains.

Parameters
@@ -557,7 +864,49 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. + + +No +
+
+
+ +
+ + +
+ +domain_sigchld_wide_inherit_fd( + + + + + domain + + + )
+
+
+ +
Summary
+

+Send a SIGCHLD signal to domains whose file +discriptors are widely inheritable. +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+domain + + +Domain allowed access. No @@ -587,7 +936,7 @@ No
Description

- Send general signals to all domains. +Send general signals to all domains.

Parameters
@@ -598,7 +947,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -628,7 +977,7 @@ No
Description

- Send a null signal to all domains. +Send a null signal to all domains.

Parameters
@@ -639,7 +988,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -669,7 +1018,7 @@ No
Description

- Send a stop signal to all domains. +Send a stop signal to all domains.

Parameters
@@ -680,7 +1029,7 @@ No domain
- The type of the process performing this action. +The type of the process performing this action. No @@ -710,8 +1059,8 @@ No
Description

- Makes caller an exception to the constraint preventing - changing of user identity. +Makes caller an exception to the constraint preventing +changing of user identity.

Parameters
@@ -722,7 +1071,48 @@ No domain
- The process type to make an exception to the constraint. +The process type to make an exception to the constraint. + + +No +
+
+
+ +
+ + +
+ +domain_type( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! No @@ -732,6 +1122,179 @@ No +
+ + +
+ +domain_use_wide_inherit_fd( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +domain_wide_inherit_fd( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ + +Return + + + +

Templates:

+ +
+ + +
+ +domain_auto_trans( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ +
+ + +
+ +domain_trans( + + + + + ? + + + )
+
+
+ +
Summary
+

+Summary is missing! +

+ + +
Parameters
+ + + + + +
Parameter:Description:Optional:
+? + + +Parameter descriptions are missing! + + +No +
+
+
+ + +Return diff --git a/www/api-docs/system_files.html b/www/api-docs/system_files.html index bbe0fea..cdfd1f7 100644 --- a/www/api-docs/system_files.html +++ b/www/api-docs/system_files.html @@ -15,6 +15,12 @@ + +  + apps
+
+ +
+ +  kernel
@@ -46,6 +52,9 @@    -  files
+    -  + fstools
+    -  getty
@@ -98,22 +107,30 @@

* Interface Index +

+ * Template Index

+

Layer: system

Module: files

+ + +

Description:

- This module contains basic filesystem types and interfaces. This +This module contains basic filesystem types and interfaces. This includes:

  • The concept of different file types including basic - files, mount points, tmp files, etc.
  • Access to groups of files and all files.
  • Types and interfaces for the basic filesystem layout - (/, /etc, /tmp, /usr, etc.).

+files, mount points, tmp files, etc.

  • Access to groups of files and all files.
  • Types and interfaces for the basic filesystem layout +(/, /etc, /tmp, /usr, etc.).
  • + +

    Interfaces:

    @@ -121,6 +138,170 @@ includes:
    +files_create_boot_flag( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_create_etc_config( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_create_lock( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_create_pid( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + files_create_root( @@ -160,9 +341,9 @@ includes:
    Description

    - Create an object in the root directory, with a private - type. If no object class is specified, the - default is file. +Create an object in the root directory, with a private +type. If no object class is specified, the +default is file.

    Parameters
    @@ -173,7 +354,7 @@ includes: domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -183,9 +364,9 @@ No private type - The type of the object to be created. If no type - is specified, the type of the root directory will - be used. +The type of the object to be created. If no type +is specified, the type of the root directory will +be used. yes @@ -195,8 +376,8 @@ yes object - The object class of the object being created. If - no class is specified, file will be used. +The object class of the object being created. If +no class is specified, file will be used. yes @@ -211,33 +392,33 @@ yes
    -files_delete_generic_etc_files( +files_create_tmp_files( - domain + ? )
    - -
    Description
    +
    Summary

    - Delete system configuration files in /etc. +Summary is missing!

    +
    Parameters
    Parameter:Description:Optional:
    -domain +? - The type of the process performing this action. +Parameter descriptions are missing! No @@ -252,33 +433,33 @@ No
    -files_dontaudit_ioctl_all_pids( +files_delete_all_locks( - domain + ? )
    - -
    Description
    +
    Summary

    - Do not audit attempts to ioctl daemon runtime data files. +Summary is missing!

    +
    Parameters
    Parameter:Description:Optional:
    -domain +? - The type of the process performing this action. +Parameter descriptions are missing! No @@ -293,33 +474,33 @@ No
    -files_dontaudit_write_all_pids( +files_delete_all_pids( - domain + ? )
    - -
    Description
    +
    Summary

    - Do not audit attempts to write to daemon runtime data files. +Summary is missing!

    +
    Parameters
    Parameter:Description:Optional:
    -domain +? - The type of the process performing this action. +Parameter descriptions are missing! No @@ -334,33 +515,33 @@ No
    -files_exec_usr_files( +files_delete_all_tmp_files( - domain + ? )
    - -
    Description
    +
    Summary

    - Execute programs in /usr/src in the caller domain. +Summary is missing!

    +
    Parameters
    +
    Parameter:Description:Optional:
    -domain +? - The type of the process performing this action. +Parameter descriptions are missing! No @@ -375,7 +556,7 @@ No
    -files_list_home( +files_delete_etc_files( @@ -390,7 +571,7 @@ No
    Description

    - Get listing home home directories. +Delete system configuration files in /etc.

    Parameters
    @@ -401,7 +582,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -416,62 +597,38 @@ No
    -files_manage_all_files( - - - - - domain - +files_delete_root_dir_entry( - , - - - [ - - exception_types - ] + ? )
    - -
    Description
    +
    Summary

    - Manage all files on the filesystem, except - the listed exceptions. +Summary is missing!

    +
    Parameters
    - -
    Parameter:Description:Optional:
    -domain +? - The type of the domain perfoming this action. +Parameter descriptions are missing! No
    -exception_types - - - The types to be excluded. Each type or attribute - must be negated by the caller. - - -yes -
    @@ -481,7 +638,7 @@ yes
    -files_relabel_all_files( +files_dontaudit_ioctl_all_pids( @@ -489,18 +646,6 @@ yes domain - - , - - - - [ - - exception_types - - ] - - )
    @@ -508,8 +653,7 @@ yes
    Description

    - Relabel all files on the filesystem, except - the listed exceptions. +Do not audit attempts to ioctl daemon runtime data files.

    Parameters
    @@ -520,21 +664,51 @@ yes domain
    - The type of the domain perfoming this action. +The type of the process performing this action. No
    +
    + + +
    + + +
    + +files_dontaudit_read_root_file( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + +
    Parameter:Description:Optional:
    -exception_types +? - The types to be excluded. Each type or attribute - must be negated by the caller. +Parameter descriptions are missing! -yes +No
    @@ -546,34 +720,33 @@ yes
    -files_tmpfs_file( +files_dontaudit_rw_root_chr_dev( - type + ? )
    - -
    Description
    +
    Summary

    - Transform the type into a file, for use on a - virtual memory filesystem (tmpfs). +Summary is missing!

    +
    Parameters
    + +
    Parameter:Description:Optional:
    -type +? - The type to be transformed. +Parameter descriptions are missing! No @@ -583,6 +756,2691 @@ No +
    + + +
    + +files_dontaudit_rw_root_file( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_dontaudit_search_all_dirs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_dontaudit_search_isid_type_dir( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Do not audit attempts to search directories on new filesystems +that have not yet been labeled. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_dontaudit_search_pids( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_dontaudit_search_var( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_dontaudit_write_all_pids( + + + + + domain + + + )
    +
    +
    + + +
    Description
    +

    +Do not audit attempts to write to daemon runtime data files. +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_exec_etc_files( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_exec_usr_files( + + + + + domain + + + )
    +
    +
    + + +
    Description
    +

    +Execute programs in /usr/src in the caller domain. +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_getattr_all_files( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_getattr_generic_locks( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_list_all_dirs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_list_etc( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_list_home( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Get listing of home directories. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_list_mnt( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_list_pids( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_list_root( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_list_spool( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_lock_file( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_manage_all_files( + + + + + domain + + + + , + + + + [ + + exception_types + + ] + + + )
    +
    +
    + + +
    Description
    +

    +Manage all files on the filesystem, except +the listed exceptions. +

    + +
    Parameters
    + + + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the domain perfoming this action. + + +No +
    +exception_types + + +The types to be excluded. Each type or attribute +must be negated by the caller. + + +yes +
    +
    +
    + +
    + + +
    + +files_manage_etc_files( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_manage_etc_runtime_files( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_manage_generic_locks( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_manage_generic_spool_dirs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_manage_generic_spools( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_manage_isid_type_blk_node( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Create, read, write, and delete block device nodes +on new filesystems that have not yet been labeled. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_manage_isid_type_chr_node( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Create, read, write, and delete character device nodes +on new filesystems that have not yet been labeled. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_manage_isid_type_dir( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Create, read, write, and delete directories +on new filesystems that have not yet been labeled. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_manage_isid_type_file( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Create, read, write, and delete files +on new filesystems that have not yet been labeled. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_manage_isid_type_symlink( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Create, read, write, and delete symbolic links +on new filesystems that have not yet been labeled. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_manage_lost_found( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Create, read, write, and delete objects in +lost+found directories. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_manage_urandom_seed( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_mount_all_file_type_fs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_mounton_all_mountpoints( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_mountpoint( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_pid_file( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_read_all_pids( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_read_etc_files( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_read_etc_runtime_files( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_read_generic_spools( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_read_usr_files( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_read_usr_src_files( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_read_var_files( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Read files in the /var directory. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_relabel_all_files( + + + + + domain + + + + , + + + + [ + + exception_types + + ] + + + )
    +
    +
    + + +
    Description
    +

    +Relabel all files on the filesystem, except +the listed exceptions. +

    + +
    Parameters
    + + + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the domain perfoming this action. + + +No +
    +exception_types + + +The types to be excluded. Each type or attribute +must be negated by the caller. + + +yes +
    +
    +
    + +
    + + +
    + +files_relabelto_all_file_type_fs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_rw_etc_files( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_rw_generic_pids( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_rw_isid_type_blk_node( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Read and write block device nodes on new filesystems +that have not yet been labeled. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_rw_isid_type_dir( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Read and write directories on new filesystems +that have not yet been labeled. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_search_all_dirs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_search_etc( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_search_generic_locks( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_search_home( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Search home directories. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_search_mnt( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_search_pids( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_search_spool( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_search_tmp( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Search the tmp directory (/tmp) +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_search_usr( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_search_var( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_search_var_lib( + + + + + domain + + + )
    +
    +
    + + +
    Description
    +

    +Search the /var/lib directory. +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +files_tmp_file( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_tmpfs_file( + + + + + type + + + )
    +
    +
    + + +
    Description
    +

    +Transform the type into a file, for use on a +virtual memory filesystem (tmpfs). +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +type + + +The type to be transformed. + + +No +
    +
    +
    + +
    + + +
    + +files_type( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_unmount_all_file_type_fs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +files_unmount_rootfs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + + +Return + diff --git a/www/api-docs/system_fstools.html b/www/api-docs/system_fstools.html new file mode 100644 index 0000000..6475699 --- /dev/null +++ b/www/api-docs/system_fstools.html @@ -0,0 +1,296 @@ + + + + Security Enhanced Linux Reference Policy + + + + + + + +
    + +

    Layer: system

    +

    Module: fstools

    + + + +

    Description:

    + +

    Tools for filesystem management, such as mkfs and fsck.

    + + + +

    Interfaces:

    + +
    + + +
    + +fstools_domtrans( + + + + + domain + + + )
    +
    +
    + + +
    Description
    +

    +Execute fs tools in the fstools domain. +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +fstools_exec( + + + + + domain + + + )
    +
    +
    + + +
    Description
    +

    + Execute fsadm in the caller domain. +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + + The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +fstools_run( + + + + + domain + + + + , + + + + role + + + + , + + + + terminal + + + )
    +
    +
    + + +
    Description
    +

    +Execute fs tools in the fstools domain, and +allow the specified role the fs tools domain. +

    + +
    Parameters
    + + + + + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +role + + +The role to be allowed the fs tools domain. + + +No +
    +terminal + + +The type of the terminal allow the fs tools domain to use. + + +No +
    +
    +
    + + +Return + + + +
    + + diff --git a/www/api-docs/system_getty.html b/www/api-docs/system_getty.html index ab6ddf5..eb97234 100644 --- a/www/api-docs/system_getty.html +++ b/www/api-docs/system_getty.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,15 +107,23 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: getty

    + + +

    Description:

    Policy for getty.

    + +

    Interfaces:

    @@ -274,6 +291,9 @@ No
    +Return + +
    diff --git a/www/api-docs/system_hostname.html b/www/api-docs/system_hostname.html index 75d7a53..a45d686 100644 --- a/www/api-docs/system_hostname.html +++ b/www/api-docs/system_hostname.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,15 +107,23 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: hostname

    + + +

    Description:

    Policy for changing the system host name.

    + +

    Interfaces:

    @@ -129,7 +146,7 @@
    Description

    - Execute hostname in the hostname domain. +Execute hostname in the hostname domain.

    Parameters
    @@ -140,8 +157,8 @@ domain
    - The type of the process performing this action. - Has a sigchld signal backchannel. +The type of the process performing this action. +Has a sigchld signal backchannel. No @@ -229,9 +246,9 @@ No
    Description

    - Execute hostname in the hostname domain, and - allow the specified role the hostname domain. - Has a sigchld signal backchannel. +Execute hostname in the hostname domain, and +allow the specified role the hostname domain. +Has a sigchld signal backchannel.

    Parameters
    @@ -242,7 +259,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -252,7 +269,7 @@ No role - The role to be allowed the hostname domain. +The role to be allowed the hostname domain. No @@ -262,7 +279,7 @@ No terminal - The type of the terminal allow the hostname domain to use. +The type of the terminal allow the hostname domain to use. No @@ -273,6 +290,9 @@ No +Return + + diff --git a/www/api-docs/system_hotplug.html b/www/api-docs/system_hotplug.html index 2c50044..c517d4b 100644 --- a/www/api-docs/system_hotplug.html +++ b/www/api-docs/system_hotplug.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,11 +107,17 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: hotplug

    + + +

    Description:

    @@ -110,6 +125,8 @@ Policy for hotplug system, for supporting the connection and disconnection of devices at runtime.

    + +

    Interfaces:

    @@ -117,6 +134,170 @@ connection and disconnection of devices at runtime.
    +hotplug_domtrans( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +hotplug_dontaudit_search_config( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +hotplug_dontaudit_use_fd( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +hotplug_exec( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + hotplug_read_config( @@ -132,7 +313,7 @@ connection and disconnection of devices at runtime.
    Description

    - Read the configuration files for hotplug. +Read the configuration files for hotplug.

    Parameters
    @@ -143,7 +324,48 @@ connection and disconnection of devices at runtime. domain
    - The type of the process performing this action. +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +hotplug_use_fd( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! No @@ -154,6 +376,9 @@ No +Return + + diff --git a/www/api-docs/system_init.html b/www/api-docs/system_init.html index 843f34c..6c086fc 100644 --- a/www/api-docs/system_init.html +++ b/www/api-docs/system_init.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,15 +107,23 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: init

    + + +

    Description:

    System initialization programs (init and init scripts).

    + +

    Interfaces:

    @@ -114,33 +131,74 @@
    -init_read_script_process_state( +init_daemon_domain( - domain + ? )
    +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_domain( + + + + + ? + + + )
    +
    +
    -
    Description
    +
    Summary

    - Read the process state (/proc/pid) of the init scripts. +Summary is missing!

    +
    Parameters
    Parameter:Description:Optional:
    -domain +? - The type of the process performing this action. +Parameter descriptions are missing! No @@ -155,33 +213,238 @@ No
    -init_rw_script_tmp_files( +init_domtrans( - domain + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    + + +
    + + +
    + +init_domtrans_script( + + + + + ? )
    +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! -
    Description
    +
    +No +
    +
    +
    + +
    + + +
    + +init_dontaudit_getattr_initctl( + + + + + ? + + + )
    +
    +
    + +
    Summary

    - Read and write init script temporary data. +Summary is missing!

    +
    Parameters
    + +
    Parameter:Description:Optional:
    -domain +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_dontaudit_rw_script_pid( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_dontaudit_use_fd( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_dontaudit_use_initctl( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + +
    Parameter:Description:Optional:
    +? - The type of the process performing this action. +Parameter descriptions are missing! No @@ -191,6 +454,829 @@ No +
    + + +
    + +init_dontaudit_use_script_fd( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_dontaudit_use_script_pty( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_dontaudit_write_script_pid( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_exec_script( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_get_process_group( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_get_script_process_group( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_getattr_initctl( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_read_script_pid( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_read_script_process_state( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Read the process state (/proc/pid) of the init scripts. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +init_rw_script_pid( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_rw_script_pipe( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Read and write init script unnamed pipes. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +init_rw_script_tmp_files( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Read and write init script temporary data. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +init_sigchld( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_system_domain( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_udp_sendto_script( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Send UDP network traffic to init scripts. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +init_use_fd( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_use_initctl( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_use_script_fd( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_use_script_pty( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +init_write_initctl( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + + +Return + diff --git a/www/api-docs/system_iptables.html b/www/api-docs/system_iptables.html index 43ffa91..d0cff12 100644 --- a/www/api-docs/system_iptables.html +++ b/www/api-docs/system_iptables.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,15 +107,23 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: iptables

    + + +

    Description:

    Policy for iptables.

    + +

    Interfaces:

    @@ -129,7 +146,7 @@
    Description

    - Execute iptables in the iptables domain. +Execute iptables in the iptables domain.

    Parameters
    @@ -140,7 +157,7 @@ domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -170,7 +187,7 @@ No
    Description

    - Execute iptables in the caller domain. +Execute iptables in the caller domain.

    Parameters
    @@ -181,7 +198,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -227,8 +244,8 @@ No
    Description

    - Execute iptables in the iptables domain, and - allow the specified role the iptables domain. +Execute iptables in the iptables domain, and +allow the specified role the iptables domain.

    Parameters
    @@ -239,7 +256,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -249,7 +266,7 @@ No role - The role to be allowed the iptables domain. +The role to be allowed the iptables domain. No @@ -259,7 +276,7 @@ No terminal - The type of the terminal allow the iptables domain to use. +The type of the terminal allow the iptables domain to use. No @@ -270,6 +287,9 @@ No +Return + + diff --git a/www/api-docs/system_libraries.html b/www/api-docs/system_libraries.html index 5a1cf56..73686d5 100644 --- a/www/api-docs/system_libraries.html +++ b/www/api-docs/system_libraries.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,15 +107,23 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: libraries

    + + +

    Description:

    Policy for system libraries.

    + +

    Interfaces:

    @@ -126,12 +143,12 @@
    - -
    Description
    +
    Summary

    - Execute ldconfig in the ldconfig domain. +Execute ldconfig in the ldconfig domain.

    +
    Parameters
    @@ -140,7 +157,7 @@ domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -167,17 +184,12 @@ No
    - -
    Description
    +
    Summary

    - Execute the dynamic link/loader in the caller's - domain. This is commonly needed for the - /usr/bin/ldd program. Note: this can be used - to execute any binary that the caller can - read, even if the caller does not have execute - permissions. +Execute the dynamic link/loader in the caller's domain.

    +
    Parameters
    @@ -186,7 +198,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -213,12 +225,12 @@ No
    - -
    Description
    +
    Summary

    - Execute library scripts in the caller domain. +Execute library scripts in the caller domain.

    +
    Parameters
    @@ -227,7 +239,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -254,13 +266,13 @@ No
    - -
    Description
    +
    Summary

    - Use the dynamic link/loader for automatic loading - of shared libraries with legacy support. +Use the dynamic link/loader for automatic loading +of shared libraries with legacy support.

    +
    Parameters
    @@ -269,7 +281,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -296,13 +308,13 @@ No
    - -
    Description
    +
    Summary

    - Load and execute functions from shared libraries, - with legacy support. +Load and execute functions from shared libraries, +with legacy support.

    +
    Parameters
    @@ -311,7 +323,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -338,13 +350,13 @@ No
    - -
    Description
    +
    Summary

    - Read files in the library directories, such - as static libraries. +Read files in the library directories, such +as static libraries.

    +
    Parameters
    @@ -353,7 +365,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -396,12 +408,12 @@ No
    - -
    Description
    +
    Summary

    - Execute ldconfig in the ldconfig domain. +Execute ldconfig in the ldconfig domain.

    +
    Parameters
    @@ -410,7 +422,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -420,7 +432,7 @@ No role - The role to allow the ldconfig domain. +The role to allow the ldconfig domain. No @@ -430,7 +442,7 @@ No terminal - The type of the terminal allow the ldconfig domain to use. +The type of the terminal allow the ldconfig domain to use. No @@ -457,13 +469,54 @@ No
    +
    Summary
    +

    +Modify the dynamic link/loader's cached listing +of shared libraries. +

    -
    Description
    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    + + +
    + + +
    + +libs_search_lib( + + + + + domain + + + )
    +
    +
    + +
    Summary

    - Modify the dynamic link/loader's cached listing - of shared libraries. +Search lib directories.

    +
    Parameters
    @@ -472,7 +525,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -499,13 +552,13 @@ No
    - -
    Description
    +
    Summary

    - Use the dynamic link/loader for automatic loading - of shared libraries. +Use the dynamic link/loader for automatic loading +of shared libraries.

    +
    Parameters
    @@ -514,7 +567,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -541,12 +594,12 @@ No
    - -
    Description
    +
    Summary

    - Load and execute functions from shared libraries. +Load and execute functions from shared libraries.

    +
    Parameters
    @@ -555,7 +608,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -566,6 +619,9 @@ No +Return + + diff --git a/www/api-docs/system_locallogin.html b/www/api-docs/system_locallogin.html index 18fe3b4..248f982 100644 --- a/www/api-docs/system_locallogin.html +++ b/www/api-docs/system_locallogin.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,15 +107,23 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: locallogin

    + + +

    Description:

    Policy for local logins.

    + +

    Interfaces:

    @@ -126,11 +143,52 @@
    +
    Summary
    +

    +Execute local logins in the local login domain. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +locallogin_signull( + + + + + domain + + + )
    +
    +
    -
    Description
    +
    Summary

    - Execute local logins in the locallogin domain. -

    +Send a null signal to local login processes. +

    +
    Parameters
    @@ -140,8 +198,8 @@ domain @@ -167,11 +225,11 @@ No
    - -
    Description
    +
    Summary

    - Allow processes to inherit local login file descriptors -

    +Allow processes to inherit local login file descriptors +

    +
    Parameters
    - The type of the process performing this action. - +Domain allowed access. + No
    @@ -181,8 +239,8 @@ No domain @@ -192,6 +250,9 @@ No +Return + + diff --git a/www/api-docs/system_logging.html b/www/api-docs/system_logging.html index 76eae64..4554b10 100644 --- a/www/api-docs/system_logging.html +++ b/www/api-docs/system_logging.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,15 +107,23 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: logging

    + + +

    Description:

    Policy for the kernel message logger and system logging daemon.

    + +

    Interfaces:

    @@ -114,6 +131,416 @@
    +logging_append_all_logs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    +
    - The type of the process performing this action. - +The type of the process performing this action. + No
    + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +logging_create_log( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +logging_dontaudit_getattr_all_logs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +logging_exec_all_logs( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Execute all log files in the caller domain. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +logging_log_file( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +logging_manage_all_logs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +logging_read_all_logs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +logging_read_generic_logs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +logging_rw_generic_logs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +logging_rw_log_dir( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Read and write the generic log directory (/var/log). +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + logging_search_logs( @@ -129,9 +556,9 @@
    Description

    - Allows the domain to open a file in the - log directory, but does not allow the listing - of the contents of the log directory. +Allows the domain to open a file in the +log directory, but does not allow the listing +of the contents of the log directory.

    Parameters
    @@ -142,7 +569,7 @@ domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -152,6 +579,91 @@ No +
    + + +
    + +logging_send_syslog_msg( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +logging_write_generic_logs( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + + +Return + diff --git a/www/api-docs/system_lvm.html b/www/api-docs/system_lvm.html index 52a4560..0da71a8 100644 --- a/www/api-docs/system_lvm.html +++ b/www/api-docs/system_lvm.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,15 +107,23 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: lvm

    + + +

    Description:

    Policy for logical volume management programs.

    + +

    Interfaces:

    @@ -129,7 +146,7 @@
    Description

    - Execute lvm programs in the lvm domain. +Execute lvm programs in the lvm domain.

    Parameters
    @@ -140,7 +157,7 @@ domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -170,7 +187,7 @@ No
    Description

    - Read LVM configuration files. +Read LVM configuration files.

    Parameters
    @@ -181,7 +198,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -227,7 +244,7 @@ No
    Description

    - Execute lvm programs in the lvm domain. +Execute lvm programs in the lvm domain.

    Parameters
    @@ -238,7 +255,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -248,7 +265,7 @@ No role - The role to allow the LVM domain. +The role to allow the LVM domain. No @@ -258,7 +275,7 @@ No terminal - The type of the terminal allow the LVM domain to use. +The type of the terminal allow the LVM domain to use. No @@ -269,6 +286,9 @@ No +Return + + diff --git a/www/api-docs/system_miscfiles.html b/www/api-docs/system_miscfiles.html index 11bb2cf..be5525b 100644 --- a/www/api-docs/system_miscfiles.html +++ b/www/api-docs/system_miscfiles.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,15 +107,23 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: miscfiles

    + + +

    Description:

    Miscelaneous files.

    + +

    Interfaces:

    @@ -316,6 +333,9 @@ No
    +Return + +
    diff --git a/www/api-docs/system_modutils.html b/www/api-docs/system_modutils.html index 623c3d8..3684975 100644 --- a/www/api-docs/system_modutils.html +++ b/www/api-docs/system_modutils.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,15 +107,23 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: modutils

    + + +

    Description:

    Policy for kernel module utilities

    + +

    Interfaces:

    @@ -129,7 +146,7 @@
    Description

    - Execute depmod in the depmod domain. +Execute depmod in the depmod domain.

    Parameters
    @@ -140,7 +157,7 @@ domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -170,8 +187,7 @@ No
    Description

    - Execute insmod in the insmod domain. Has a - sigchld backchannel. +Execute insmod in the insmod domain.

    Parameters
    @@ -182,7 +198,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -212,7 +228,7 @@ No
    Description

    - Execute depmod in the depmod domain. +Execute depmod in the depmod domain.

    Parameters
    @@ -223,7 +239,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -238,7 +254,130 @@ No
    -modutils_read_kernel_module_dependencies( +modutils_exec_depmod( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    + + +
    + + +
    + +modutils_exec_insmod( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +modutils_exec_update_mods( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +modutils_read_mods_deps( @@ -253,7 +392,7 @@ No
    Description

    - Read the dependencies of kernel modules. +Read the dependencies of kernel modules.

    Parameters
    @@ -264,7 +403,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -294,8 +433,8 @@ No
    Description

    - Read the configuration options used when - loading modules. +Read the configuration options used when +loading modules.

    Parameters
    @@ -306,7 +445,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -352,7 +491,7 @@ No
    Description

    - Execute depmod in the depmod domain. +Execute depmod in the depmod domain.

    Parameters
    @@ -363,7 +502,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -373,7 +512,7 @@ No role - The role to be allowed the depmod domain. +The role to be allowed the depmod domain. No @@ -383,7 +522,7 @@ No terminal - The type of the terminal allow the depmod domain to use. +The type of the terminal allow the depmod domain to use. No @@ -429,10 +568,10 @@ No
    Description

    - Execute insmod in the insmod domain, and - allow the specified role the insmod domain, - and use the caller's terminal. Has a sigchld - backchannel. +Execute insmod in the insmod domain, and +allow the specified role the insmod domain, +and use the caller's terminal. Has a sigchld +backchannel.

    Parameters
    @@ -443,7 +582,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -453,7 +592,7 @@ No role - The role to be allowed the insmod domain. +The role to be allowed the insmod domain. No @@ -463,7 +602,7 @@ No terminal - The type of the terminal allow the insmod domain to use. +The type of the terminal allow the insmod domain to use. No @@ -509,7 +648,7 @@ No
    Description

    - Execute update_modules in the update_modules domain. +Execute update_modules in the update_modules domain.

    Parameters
    @@ -520,7 +659,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -530,7 +669,7 @@ No role - The role to be allowed the update_modules domain. +The role to be allowed the update_modules domain. No @@ -540,7 +679,7 @@ No terminal - The type of the terminal allow the update_modules domain to use. +The type of the terminal allow the update_modules domain to use. No @@ -551,6 +690,9 @@ No +Return + + diff --git a/www/api-docs/system_mount.html b/www/api-docs/system_mount.html index ea322fb..7f61be8 100644 --- a/www/api-docs/system_mount.html +++ b/www/api-docs/system_mount.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,15 +107,23 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: mount

    + + +

    Description:

    Policy for mount.

    + +

    Interfaces:

    @@ -129,7 +146,7 @@
    Description

    - Execute mount in the mount domain. +Execute mount in the mount domain.

    Parameters
    @@ -140,7 +157,7 @@ domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -186,9 +203,9 @@ No
    Description

    - Execute mount in the mount domain, and - allow the specified role the mount domain, - and use the caller's terminal. +Execute mount in the mount domain, and +allow the specified role the mount domain, +and use the caller's terminal.

    Parameters
    @@ -199,7 +216,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -209,7 +226,7 @@ No role - The role to be allowed the mount domain. +The role to be allowed the mount domain. No @@ -219,7 +236,7 @@ No terminal - The type of the terminal allow the mount domain to use. +The type of the terminal allow the mount domain to use. No @@ -313,6 +330,9 @@ No +Return + + diff --git a/www/api-docs/system_selinuxutil.html b/www/api-docs/system_selinuxutil.html index e158ce3..ad54f25 100644 --- a/www/api-docs/system_selinuxutil.html +++ b/www/api-docs/system_selinuxutil.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -76,71 +85,654 @@    -  miscfiles
    -    -  - modutils
    +    -  + modutils
    + +    -  + mount
    + +    -  + selinuxutil
    + +    -  + sysnetwork
    + +    -  + udev
    + +    -  + userdomain
    + +
    + +

    + * Interface Index +

    + * Template Index + + +

    + +

    Layer: system

    +

    Module: selinuxutil

    + + + +

    Description:

    + +

    Policy for SELinux policy and userland applications.

    + + + +

    Interfaces:

    + +
    + + +
    + +seutil_create_binary_pol( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +seutil_domtrans_checkpol( + + + + + domain + + + )
    +
    +
    + + +
    Description
    +

    +Execute checkpolicy in the checkpolicy domain. +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +seutil_domtrans_loadpol( + + + + + domain + + + )
    +
    +
    + + +
    Description
    +

    +Execute load_policy in the load_policy domain. +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +seutil_domtrans_newrole( + + + + + domain + + + )
    +
    +
    + + +
    Description
    +

    +Execute newrole in the load_policy domain. +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +seutil_domtrans_restorecon( + + + + + domain + + + )
    +
    +
    + + +
    Description
    +

    +Execute restorecon in the restorecon domain. +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +seutil_domtrans_runinit( + + + + + domain + + + )
    +
    +
    + + +
    Description
    +

    +Execute run_init in the run_init domain. +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +seutil_domtrans_setfiles( + + + + + domain + + + )
    +
    +
    + + +
    Description
    +

    +Execute setfiles in the setfiles domain. +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +seutil_dontaudit_signal_newrole( + + + + + domain + + + )
    +
    +
    + + +
    Description
    +

    +Do not audit the caller attempts to send +a signal to newrole. +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +seutil_exec_checkpol( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +seutil_exec_loadpol( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +seutil_exec_newrole( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +seutil_exec_restorecon( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +seutil_exec_setfiles( + + + -    -  - mount
    + ? -    -  - selinuxutil
    + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +seutil_manage_binary_pol( + -    -  - sysnetwork
    -    -  - udev
    -    -  - userdomain
    + ? -
    -

    - * Interface Index + )

    +
    -
    -

    Layer: system

    -

    Module: selinuxutil

    -

    Description:

    +
    Summary
    +

    +Summary is missing! +

    -

    Policy for SELinux policy and userland applications.

    -

    Interfaces:

    +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    -seutil_domtrans_checkpol( +seutil_manage_src_pol( - domain + ? )
    - -
    Description
    +
    Summary

    - Execute checkpolicy in the checkpolicy domain. +Summary is missing!

    +
    Parameters
    Parameter:Description:Optional:
    -domain +? - The type of the process performing this action. +Parameter descriptions are missing! No @@ -155,33 +747,33 @@ No
    -seutil_domtrans_loadpol( +seutil_read_binary_pol( - domain + ? )
    - -
    Description
    +
    Summary

    - Execute load_policy in the load_policy domain. +Summary is missing!

    +
    Parameters
    Parameter:Description:Optional:
    -domain +? - The type of the process performing this action. +Parameter descriptions are missing! No @@ -196,33 +788,33 @@ No
    -seutil_domtrans_newrole( +seutil_read_config( - domain + ? )
    - -
    Description
    +
    Summary

    - Execute newrole in the load_policy domain. +Summary is missing!

    +
    Parameters
    Parameter:Description:Optional:
    -domain +? - The type of the process performing this action. +Parameter descriptions are missing! No @@ -237,33 +829,33 @@ No
    -seutil_domtrans_restorecon( +seutil_read_default_contexts( - domain + ? )
    - -
    Description
    +
    Summary

    - Execute restorecon in the restorecon domain. +Summary is missing!

    +
    Parameters
    Parameter:Description:Optional:
    -domain +? - The type of the process performing this action. +Parameter descriptions are missing! No @@ -278,33 +870,33 @@ No
    -seutil_domtrans_runinit( +seutil_read_file_contexts( - domain + ? )
    - -
    Description
    +
    Summary

    - Execute run_init in the run_init domain. +Summary is missing!

    +
    Parameters
    Parameter:Description:Optional:
    -domain +? - The type of the process performing this action. +Parameter descriptions are missing! No @@ -319,33 +911,33 @@ No
    -seutil_domtrans_setfiles( +seutil_read_loadpol( - domain + ? )
    - -
    Description
    +
    Summary

    - Execute setfiles in the setfiles domain. +Summary is missing!

    +
    Parameters
    Parameter:Description:Optional:
    -domain +? - The type of the process performing this action. +Parameter descriptions are missing! No @@ -360,34 +952,33 @@ No
    -seutil_dontaudit_newrole_signal( +seutil_read_src_pol( - domain + ? )
    - -
    Description
    +
    Summary

    - Do not audit the caller attempts to send - a signal to newrole. +Summary is missing!

    +
    Parameters
    + +
    Parameter:Description:Optional:
    -domain +? - The type of the process performing this action. +Parameter descriptions are missing! No @@ -417,7 +1008,7 @@ No
    Description

    - Allow the caller to relabel a file to the binary policy type. +Allow the caller to relabel a file to the binary policy type.

    Parameters
    @@ -428,7 +1019,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -474,10 +1065,10 @@ No
    Description

    - Execute checkpolicy in the checkpolicy domain, and - allow the specified role the checkpolicy domain, - and use the caller's terminal. - Has a SIGCHLD signal backchannel. +Execute checkpolicy in the checkpolicy domain, and +allow the specified role the checkpolicy domain, +and use the caller's terminal. +Has a SIGCHLD signal backchannel.

    Parameters
    @@ -488,7 +1079,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -498,7 +1089,7 @@ No role - The role to be allowed the checkpolicy domain. +The role to be allowed the checkpolicy domain. No @@ -508,7 +1099,7 @@ No terminal - The type of the terminal allow the checkpolicy domain to use. +The type of the terminal allow the checkpolicy domain to use. No @@ -554,10 +1145,10 @@ No
    Description

    - Execute load_policy in the load_policy domain, and - allow the specified role the load_policy domain, - and use the caller's terminal. - Has a SIGCHLD signal backchannel. +Execute load_policy in the load_policy domain, and +allow the specified role the load_policy domain, +and use the caller's terminal. +Has a SIGCHLD signal backchannel.

    Parameters
    @@ -568,7 +1159,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -578,7 +1169,7 @@ No role - The role to be allowed the load_policy domain. +The role to be allowed the load_policy domain. No @@ -588,7 +1179,7 @@ No terminal - The type of the terminal allow the load_policy domain to use. +The type of the terminal allow the load_policy domain to use. No @@ -634,9 +1225,9 @@ No
    Description

    - Execute newrole in the newrole domain, and - allow the specified role the newrole domain, - and use the caller's terminal. +Execute newrole in the newrole domain, and +allow the specified role the newrole domain, +and use the caller's terminal.

    Parameters
    @@ -647,7 +1238,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -657,7 +1248,7 @@ No role - The role to be allowed the newrole domain. +The role to be allowed the newrole domain. No @@ -667,7 +1258,7 @@ No terminal - The type of the terminal allow the newrole domain to use. +The type of the terminal allow the newrole domain to use. No @@ -713,9 +1304,9 @@ No
    Description

    - Execute restorecon in the restorecon domain, and - allow the specified role the restorecon domain, - and use the caller's terminal. +Execute restorecon in the restorecon domain, and +allow the specified role the restorecon domain, +and use the caller's terminal.

    Parameters
    @@ -726,7 +1317,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -736,7 +1327,7 @@ No role - The role to be allowed the restorecon domain. +The role to be allowed the restorecon domain. No @@ -746,7 +1337,7 @@ No terminal - The type of the terminal allow the restorecon domain to use. +The type of the terminal allow the restorecon domain to use. No @@ -792,9 +1383,9 @@ No
    Description

    - Execute run_init in the run_init domain, and - allow the specified role the run_init domain, - and use the caller's terminal. +Execute run_init in the run_init domain, and +allow the specified role the run_init domain, +and use the caller's terminal.

    Parameters
    @@ -805,7 +1396,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -815,7 +1406,7 @@ No role - The role to be allowed the run_init domain. +The role to be allowed the run_init domain. No @@ -825,7 +1416,7 @@ No terminal - The type of the terminal allow the run_init domain to use. +The type of the terminal allow the run_init domain to use. No @@ -871,9 +1462,9 @@ No
    Description

    - Execute setfiles in the setfiles domain, and - allow the specified role the setfiles domain, - and use the caller's terminal. +Execute setfiles in the setfiles domain, and +allow the specified role the setfiles domain, +and use the caller's terminal.

    Parameters
    @@ -884,7 +1475,7 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. No @@ -894,7 +1485,7 @@ No role - The role to be allowed the setfiles domain. +The role to be allowed the setfiles domain. No @@ -904,7 +1495,171 @@ No terminal - The type of the terminal allow the setfiles domain to use. +The type of the terminal allow the setfiles domain to use. + + +No +
    +
    + + +
    + + +
    + +seutil_search_default_contexts( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Search the policy directory with default_context files. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +seutil_sigchld_newrole( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +seutil_use_newrole_fd( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! + + +No +
    +
    +
    + +
    + + +
    + +seutil_use_runinit_fd( + + + + + ? + + + )
    +
    +
    + +
    Summary
    +

    +Summary is missing! +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +? + + +Parameter descriptions are missing! No @@ -915,6 +1670,9 @@ No +Return + + diff --git a/www/api-docs/system_sysnetwork.html b/www/api-docs/system_sysnetwork.html index 3632780..7fcfd26 100644 --- a/www/api-docs/system_sysnetwork.html +++ b/www/api-docs/system_sysnetwork.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,15 +107,23 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: sysnetwork

    + + +

    Description:

    Policy for network configuration: ifconfig and dhcp client.

    + +

    Interfaces:

    @@ -170,7 +187,7 @@ No
    Description

    - Execute ifconfig in the ifconfig domain. +Execute ifconfig in the ifconfig domain.

    Parameters
    @@ -181,7 +198,48 @@ No domain
    - The type of the process performing this action. +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +sysnet_kill_dhcpc( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Send a kill signal to the dhcp client. +

    + + +
    Parameters
    + + + +
    Parameter:Description:Optional:
    +domain + + +The domain sending the SIGKILL. No @@ -208,11 +266,52 @@ No
    +
    Summary
    +

    +Allow network init to read network config files. +

    -
    Description
    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    + + +
    + + +
    + +sysnet_read_dhcpc_pid( + + + + + domain + + + )
    +
    +
    + +
    Summary

    - Allow network init to read network config files. -

    +Read the dhcp client pid file. +

    +
    Parameters
    @@ -222,8 +321,49 @@ No domain + +
    - The type of the process performing this action. - +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +sysnet_read_dhcpc_state( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Read dhcp client state files. +

    + + +
    Parameters
    + + + + @@ -268,9 +408,9 @@ No
    Description

    - Execute ifconfig in the ifconfig domain, and - allow the specified role the ifconfig domain, - and use the caller's terminal. +Execute ifconfig in the ifconfig domain, and +allow the specified role the ifconfig domain, +and use the caller's terminal.

    Parameters
    @@ -281,7 +421,7 @@ No domain + +
    Parameter:Description:Optional:
    +domain + + +The domain allowed access. + No
    - The type of the process performing this action. +The type of the process performing this action. No @@ -291,7 +431,7 @@ No role - The role to be allowed the ifconfig domain. +The role to be allowed the ifconfig domain. No @@ -301,7 +441,48 @@ No terminal - The type of the terminal allow the ifconfig domain to use. +The type of the terminal allow the ifconfig domain to use. + + +No +
    +
    +
    + +
    + + +
    + +sysnet_rw_dhcp_config( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Read and write dhcp configuration files. +

    + + +
    Parameters
    + + + +
    Parameter:Description:Optional:
    +domain + + +The domain allowed access. No @@ -311,6 +492,173 @@ No +
    + + +
    + +sysnet_sigchld_dhcpc( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Send a SIGCHLD signal to the dhcp client. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The domain sending the SIGCHLD. + + +No +
    +
    +
    + +
    + + +
    + +sysnet_signal_dhcpc( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Send a generic signal to the dhcp client. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The domain sending the signal. + + +No +
    +
    +
    + +
    + + +
    + +sysnet_signull_dhcpc( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Send a null signal to the dhcp client. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The domain sending the null signal. + + +No +
    +
    +
    + +
    + + +
    + +sysnet_sigstop_dhcpc( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Send a SIGSTOP signal to the dhcp client. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The domain sending the SIGSTOP. + + +No +
    +
    +
    + + +Return + diff --git a/www/api-docs/system_udev.html b/www/api-docs/system_udev.html index 4ca1680..d25f12e 100644 --- a/www/api-docs/system_udev.html +++ b/www/api-docs/system_udev.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,15 +107,23 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: udev

    + + +

    Description:

    Policy for udev.

    + +

    Interfaces:

    @@ -233,6 +250,9 @@ No
    +Return + +
    diff --git a/www/api-docs/system_userdomain.html b/www/api-docs/system_userdomain.html index f15d42c..e428af7 100644 --- a/www/api-docs/system_userdomain.html +++ b/www/api-docs/system_userdomain.html @@ -15,6 +15,12 @@ + +  + apps
    +
    + +
    + +  kernel
    @@ -46,6 +52,9 @@    -  files
    +    -  + fstools
    +    -  getty
    @@ -98,15 +107,26 @@

    * Interface Index +

    + * Template Index

    +

    Layer: system

    Module: userdomain

    + + +Interfaces +Templates + +

    Description:

    Policy for user domains

    + +

    Interfaces:

    @@ -126,12 +146,12 @@
    - -
    Description
    +
    Summary

    - Do not audit attempts to use admin ttys and ptys. +Do not audit attempts to use admin ttys and ptys.

    +
    Parameters
    @@ -140,7 +160,7 @@ domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -167,13 +187,55 @@ No
    +
    Summary
    +

    +Do not audit attempts to inherit the +file descriptors from all user domains. +

    + -
    Description
    +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    + + +
    + + +
    + +userdom_dontaudit_use_unpriv_user_tty( + + + + + domain + + + )
    +
    +
    + +
    Summary

    - Do not audit attempts to inherit the - file descriptors from all user domains. +Do not audit attempts to use unprivileged +user ttys.

    +
    Parameters
    @@ -182,7 +244,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -197,7 +259,7 @@ No
    -userdom_read_all_user_data( +userdom_read_all_user_files( @@ -209,12 +271,53 @@ No
    +
    Summary
    +

    +Read all files in all users home directories. +

    -
    Description
    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    + + +
    + + +
    + +userdom_read_staff_home_files( + + + + + domain + + + )
    +
    +
    + +
    Summary

    - Read all files in all users home directories. +Read files in the staff users home directory.

    +
    Parameters
    @@ -223,7 +326,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -238,7 +341,7 @@ No
    -userdom_search_all_users_home( +userdom_read_sysadm_home_files( @@ -250,12 +353,53 @@ No
    +
    Summary
    +

    +Read files in the sysadm users home directory. +

    + -
    Description
    +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    + + +
    + + +
    + +userdom_rw_sysadm_pipe( + + + + + domain + + + )
    +
    +
    + +
    Summary

    - Search all users home directories. +Read and write sysadm user unnamed pipes.

    +
    Parameters
    @@ -264,7 +408,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -279,7 +423,7 @@ No
    -userdom_shell_domtrans_sysadm( +userdom_search_all_users_home( @@ -291,12 +435,53 @@ No
    +
    Summary
    +

    +Search all users home directories. +

    + -
    Description
    +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    + + +
    + + +
    + +userdom_shell_domtrans_sysadm( + + + + + domain + + + )
    +
    +
    + +
    Summary

    - Execute a shell in the sysadm domain. +Execute a shell in the sysadm domain.

    +
    Parameters
    @@ -305,7 +490,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -332,12 +517,53 @@ No
    +
    Summary
    +

    +Send general signals to all user domains. +

    + -
    Description
    +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    + + +
    + + +
    + +userdom_signal_unpriv_users( + + + + + domain + + + )
    +
    +
    + +
    Summary

    - Send general signals to all user domains. +Send general signals to unprivileged user domains.

    +
    Parameters
    @@ -346,7 +572,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -373,14 +599,14 @@ No
    - -
    Description
    +
    Summary

    - Execute a shell in all user domains. This - is an explicit transition, requiring the - caller to use setexeccon(). +Execute a shell in all user domains. This +is an explicit transition, requiring the +caller to use setexeccon().

    +
    Parameters
    @@ -389,7 +615,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -404,7 +630,7 @@ No
    -userdom_use_all_user_fd( +userdom_spec_domtrans_unpriv_users( @@ -416,12 +642,14 @@ No
    - -
    Description
    +
    Summary

    - Inherit the file descriptors from all user domains +Execute a shell in all unprivileged user domains. This +is an explicit transition, requiring the +caller to use setexeccon().

    +
    Parameters
    @@ -430,7 +658,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -445,7 +673,7 @@ No
    -userdom_use_sysadm_terms( +userdom_use_all_user_fd( @@ -457,13 +685,12 @@ No
    - -
    Description
    +
    Summary

    - Read and write administrative users - physical and pseudo terminals. +Inherit the file descriptors from all user domains

    +
    Parameters
    @@ -472,7 +699,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -487,7 +714,7 @@ No
    -userdom_use_unpriv_users_fd( +userdom_use_sysadm_fd( @@ -499,12 +726,12 @@ No
    - -
    Description
    +
    Summary

    - Inherit the file descriptors from all user domains. +Inherit and use sysadm file descriptors

    +
    Parameters
    @@ -513,7 +740,7 @@ No domain
    Parameter:Description:Optional:
    - The type of the process performing this action. +The type of the process performing this action. No @@ -523,6 +750,379 @@ No +
    + + +
    + +userdom_use_sysadm_pty( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Read and write sysadm ptys. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +userdom_use_sysadm_terms( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Read and write sysadm ttys and ptys. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +userdom_use_sysadm_tty( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Read and write sysadm ttys. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +userdom_use_unpriv_users_fd( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Inherit the file descriptors from unprivileged user domains. +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + +
    + + +
    + +userdom_write_unpriv_user_tmp( + + + + + domain + + + )
    +
    +
    + +
    Summary
    +

    +Write all unprivileged users files in /tmp +

    + + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +domain + + +The type of the process performing this action. + + +No +
    +
    +
    + + +Return + + + +

    Templates:

    + +
    + + +
    + +admin_user_template( + + + + + userdomain_prefix + + + )
    +
    +
    + +
    Summary
    +

    +The template for creating an administrative user. +

    + + +
    Description
    +

    +

    +This template creates a user domain, types, and +rules for the user's tty, pty, home directories, +tmp, and tmpfs files. +

    +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +userdomain_prefix + + +The prefix of the user domain (e.g., sysadm +is the prefix for sysadm_t). + + +No +
    +
    +
    + +
    + + +
    + +base_user_template( + + + + + userdomain_prefix + + + )
    +
    +
    + +
    Summary
    +

    +The template containing rules common to unprivileged +users and administrative users. +

    + + +
    Description
    +

    +

    +This template creates a user domain, types, and +rules for the user's tty, pty, home directories, +tmp, and tmpfs files. +

    +

    +This generally should not be used, rather the +unpriv_user_template or admin_user_template should +be used. +

    +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +userdomain_prefix + + +The prefix of the user domain (e.g., user +is the prefix for user_t). + + +No +
    +
    +
    + +
    + + +
    + +unpriv_user_template( + + + + + userdomain_prefix + + + )
    +
    +
    + +
    Summary
    +

    +The template for creating a unprivileged user. +

    + + +
    Description
    +

    +

    +This template creates a user domain, types, and +rules for the user's tty, pty, home directories, +tmp, and tmpfs files. +

    +

    + +
    Parameters
    + + + + + +
    Parameter:Description:Optional:
    +userdomain_prefix + + +The prefix of the user domain (e.g., user +is the prefix for user_t). + + +No +
    +
    +
    + + +Return diff --git a/www/api-docs/templates.html b/www/api-docs/templates.html new file mode 100644 index 0000000..38289ba --- /dev/null +++ b/www/api-docs/templates.html @@ -0,0 +1,503 @@ + + + + Security Enhanced Linux Reference Policy + + + + + + + +
    +

    Master template index:

    + + +
    +Module: +userdomain

    +Layer: +system

    +

    + +admin_user_template( + + + + + userdomain_prefix + + + )
    +
    + +
    +

    +The template for creating an administrative user. +

    +
    + +
    + +
    +Module: +authlogin

    +Layer: +system

    +

    + +authlogin_per_userdomain_template( + + + + + userdomain_prefix + + + )
    +
    + +
    +

    +The per user domain template for the authlogin module. +

    +
    + +
    + +
    +Module: +userdomain

    +Layer: +system

    +

    + +base_user_template( + + + + + userdomain_prefix + + + )
    +
    + +
    +

    +The template containing rules common to unprivileged +users and administrative users. +

    +
    + +
    + +
    +Module: +cron

    +Layer: +services

    +

    + +cron_admin_template( + + + + + userdomain_prefix + + + )
    +
    + +
    +

    +The administrative functions template for the cron module. +

    +
    + +
    + +
    +Module: +cron

    +Layer: +services

    +

    + +cron_per_userdomain_template( + + + + + userdomain_prefix + + + )
    +
    + +
    +

    +The per user domain template for the cron module. +

    +
    + +
    + +
    +Module: +domain

    +Layer: +system

    +

    + +domain_auto_trans( + + + + + ? + + + )
    +
    + +
    +

    +Summary is missing! +

    +
    + +
    + +
    +Module: +domain

    +Layer: +system

    +

    + +domain_trans( + + + + + ? + + + )
    +
    + +
    +

    +Summary is missing! +

    +
    + +
    + +
    +Module: +gpg

    +Layer: +apps

    +

    + +gpg_per_userdomain_template( + + + + + userdomain_prefix + + + )
    +
    + +
    +

    +The per user domain template for the gpg module. +

    +
    + +
    + +
    +Module: +mta

    +Layer: +services

    +

    + +mta_per_userdomain_template( + + + + + ? + + + )
    +
    + +
    +

    +Summary is missing! +

    +
    + +
    + +
    +Module: +ssh

    +Layer: +services

    +

    + +ssh_per_userdomain_template( + + + + + userdomain_prefix + + + )
    +
    + +
    +

    +The per user domain template for the ssh module. +

    +
    + +
    + +
    +Module: +ssh

    +Layer: +services

    +

    + +ssh_server_template( + + + + + userdomain_prefix + + + )
    +
    + +
    +

    +The template to define a ssh server. +

    +
    + +
    + +
    +Module: +userdomain

    +Layer: +system

    +

    + +unpriv_user_template( + + + + + userdomain_prefix + + + )
    +
    + +
    +

    +The template for creating a unprivileged user. +

    +
    + +
    + + +
    + +