Layer: contrib

Module: nsplugin

Tunables Interfaces

Description:

policy for nsplugin

Tunables:

nsplugin_can_network

Default value

true

Description

Allow nsplugin code to connect to unreserved ports

nsplugin_execmem

Default value

false

Description

Allow nsplugin code to execmem/execstack

Return

Interfaces:

nsplugin_domtrans(
	
		user_domain
		
	)

Summary

The per role template for the nsplugin module.

Parameters

Parameter:	Description:
user_domain	The type of the user domain.

nsplugin_domtrans_config(
	
		user_domain
		
	)

Summary

The per role template for the nsplugin module.

Parameters

Parameter:	Description:
user_domain	The type of the user domain.

nsplugin_exec_domtrans(
	
		domain
		
			,
		
		target_domain
		
	)

Summary

Execute nsplugin_exec_t in the specified domain.

Description

Execute a nsplugin_exec_t in the specified domain.

No interprocess communication (signals, pipes, etc.) is provided by this interface since the domains are not owned by this module.

Parameters

Parameter:	Description:
domain	Domain allowed access.
target_domain	The type of the new process.

nsplugin_manage_home_dirs(
	
		domain
		
	)

Summary

manage nnsplugin home dirs.

Parameters

Parameter:	Description:
domain	Domain allowed access.

nsplugin_manage_home_files(
	
		domain
		
	)

Summary

Create, read, write, and delete nsplugin home files.

Parameters

Parameter:	Description:
domain	Domain allowed access.

nsplugin_manage_rw(
	
		domain
		
	)

Summary

Manage nsplugin rw files.

Parameters

Parameter:	Description:
domain	Domain allowed access.

nsplugin_manage_rw_files(
	
		domain
		
	)

Summary

Create, read, write, and delete nsplugin rw files.

Parameters

Parameter:	Description:
domain	Domain allowed access.

nsplugin_read_home(
	
		domain
		
	)

Summary

Read nsplugin home files.

Parameters

Parameter:	Description:
domain	Domain allowed access.

nsplugin_read_rw_files(
	
		domain
		
	)

Summary

Read nsplugin rw files.

Parameters

Parameter:	Description:
domain	Domain allowed access.

nsplugin_role(
	
		user_role
		
			,
		
		user_domain
		
	)

Summary

Role access for nsplugin

Parameters

Parameter:	Description:
user_role	The role associated with the user domain.
user_domain	The type of the user domain.

nsplugin_role_notrans(
	
		user_role
		
			,
		
		user_domain
		
	)

Summary

The per role template for the nsplugin module.

Parameters

Parameter:	Description:
user_role	The role associated with the user domain.
user_domain	The type of the user domain.

nsplugin_rw_exec(
	
		domain
		
	)

Summary

Exec nsplugin rw files.

Parameters

Parameter:	Description:
domain	Domain allowed access.

nsplugin_rw_pipes(
	
		domain
		
	)

Summary

Allow attempts to read and write to nsplugin named pipes.

Parameters

Parameter:	Description:
domain	Domain to not audit.

nsplugin_rw_semaphores(
	
		domain
		
	)

Summary

Allow read and write access to nsplugin semaphores.

Parameters

Parameter:	Description:
domain	Domain allowed access.

nsplugin_rw_shm(
	
		domain
		
	)

Summary

Read and write to nsplugin shared memory.

Parameters

Parameter:	Description:
domain	Domain allowed access.

nsplugin_search_rw_dir(
	
		domain
		
	)

Summary

Search nsplugin rw directories.

Parameters

Parameter:	Description:
domain	Domain allowed access.

nsplugin_signal(
	
		domain
		
	)

Summary

Send generic signals to user nsplugin processes.

Parameters

Parameter:	Description:
domain	Domain allowed access.

nsplugin_signull(
	
		domain
		
	)

Summary

Send signull signal to nsplugin processes.

Parameters

Parameter:	Description:
domain	Domain allowed access.

nsplugin_user_home_dir_filetrans(
	
		domain
		
			,
		
		object_class
		
	)

Summary

Create objects in a user home directory with an automatic type transition to the nsplugin home file type.

Parameters

Parameter:	Description:
domain	Domain allowed access.
object_class	The class of the object to be created.

nsplugin_user_home_filetrans(
	
		domain
		
			,
		
		object_class
		
	)

Summary

Create objects in a user home directory with an automatic type transition to the nsplugin home file type.

Parameters

Parameter:	Description:
domain	Domain allowed access.
object_class	The class of the object to be created.

Return