Layer: system

Module: udev

Description:

Policy for udev.

Interfaces:

udev_create_kobject_uevent_socket(
	
		domain
		
	)

Summary

Allow caller to create kobject uevent socket for udev

Parameters

Parameter:	Description:
domain	Domain allowed access.

udev_domtrans(
	
		domain
		
	)

Summary

Execute udev in the udev domain.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.

udev_dontaudit_rw_dgram_sockets(
	
		domain
		
	)

Summary

Do not audit attempts to read or write to a udev unix datagram socket.

Parameters

Parameter:	Description:
domain	Domain to not audit.

udev_dontaudit_search_db(
	
		domain
		
	)

Summary

Do not audit search of udev database directories.

Parameters

Parameter:	Description:
domain	Domain to not audit.

udev_dontaudit_use_fds(
	
		domain
		
	)

Summary

Do not audit attempts to inherit a udev file descriptor.

Parameters

Parameter:	Description:
domain	Domain to not audit.

udev_exec(
	
		domain
		
	)

Summary

Execute udev in the caller domain.

Parameters

Parameter:	Description:
domain	Domain allowed access.

udev_generic_pid_filetrans_run_dirs(
	
		domain
		
			,
		
		name
		
	)

Summary

Create directories in the run location with udev_var_run_t type

Parameters

Parameter:	Description:
domain	Domain allowed access.
name	Name of the directory that is created

udev_helper_domtrans(
	
		domain
		
	)

Summary

Execute a udev helper in the udev domain.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.

udev_manage_pid_dirs(
	
		domain
		
	)

Summary

Create, read, write, and delete udev pid directories

Parameters

Parameter:	Description:
domain	Domain allowed access.

udev_manage_pid_files(
	
		domain
		
	)

Summary

Create, read, write, and delete udev pid files.

Parameters

Parameter:	Description:
domain	Domain allowed access.

udev_manage_rules_files(
	
		domain
		
	)

Summary

Manage udev rules files

Parameters

Parameter:	Description:
domain	Domain allowed access.

udev_read_db(
	
		domain
		
	)

Summary

Read the udev device table.

Description

Allow the specified domain to read the udev device table.

Parameters

Parameter:	Description:
domain	Domain allowed access.

udev_read_pid_files(
	
		domain
		
	)

Summary

Create, read, write, and delete udev pid files.

Parameters

Parameter:	Description:
domain	Domain allowed access.

udev_read_state(
	
		domain
		
	)

Summary

Allow process to read udev process state.

Parameters

Parameter:	Description:
domain	Domain allowed access.

udev_relabel_pid_sockfile(
	
		domain
		
	)

Summary

Relabel the udev sock_file.

Parameters

Parameter:	Description:
domain	Domain allowed access.

udev_relabelto_db(
	
		domain
		
	)

Summary

Allow process to modify relabelto udev database

Parameters

Parameter:	Description:
domain	Domain allowed access.

udev_run(
	
		domain
		
			,
		
		role
		
	)

Summary

Execute udev in the udev domain, and allow the specified role the udev domain.

Parameters

Parameter:	Description:
domain	Domain allowed access.
role	The role to be allowed the iptables domain.

udev_rw_db(
	
		domain
		
	)

Summary

Allow process to modify list of devices.

Parameters

Parameter:	Description:
domain	Domain allowed access.

udev_search_pids(
	
		domain
		
	)

Summary

Search through udev pid content

Parameters

Parameter:	Description:
domain	Domain allowed access.

udev_signal(
	
		domain
		
	)

Summary

Send generic signals to udev.

Parameters

Parameter:	Description:
domain	Domain allowed access.

udev_system_domain(
	
		domain
		
			,
		
		entry_point
		
	)

Summary

Create a domain for processes which can be started by udev.

Parameters

Parameter:	Description:
domain	Type to be used as a domain.
entry_point	Type of the program to be used as an entry point to this domain.

Return