Layer: contrib

Module: container

Tunables Interfaces

Description:

The open-source application container engine.

Tunables:

container_connect_any

Default value

false

Description

Determine whether container can connect to all TCP ports.

Return

Interfaces:

container_admin(
	
		domain
		
	)

Summary

All of the rules required to administrate an container environment

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_auth_domtrans(
	
		domain
		
	)

Summary

Execute container_auth_exec_t in the container_auth domain.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.

container_auth_exec(
	
		domain
		
	)

Summary

Execute container_auth in the caller domain.

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_auth_stream_connect(
	
		domain
		
	)

Summary

Connect to container_auth over a unix stream socket.

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_exec_lib(
	
		domain
		
	)

Summary

Execute container lib directories.

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_exec_share_files(
	
		domain
		
	)

Summary

Allow the specified domain to execute container shared files in the caller domain.

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_filetrans_named_content(
	
		domain
		
	)

Summary

Allow domain to create container content

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_lib_filetrans(
	
		domain
		
			,
		
		private_type
		
			,
		
		object_class
		
			,
		
		name
		
	)

Summary

Create objects in a container var lib directory with an automatic type transition to a specified private type.

Parameters

Parameter:	Description:
domain	Domain allowed access.
private_type	The type of the object to create.
object_class	The class of the object to be created.
name	The name of the object being created.

container_manage_lib_dirs(
	
		domain
		
	)

Summary

Manage container lib directories.

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_manage_lib_files(
	
		domain
		
	)

Summary

Manage container lib files.

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_read_lib_files(
	
		domain
		
	)

Summary

Read container lib files.

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_read_pid_files(
	
		domain
		
	)

Summary

Read container PID files.

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_read_share_files(
	
		domain
		
	)

Summary

Read container share files.

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_runtime_domtrans(
	
		domain
		
	)

Summary

Execute container in the container domain.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.

container_runtime_entrypoint(
	
		domain
		
	)

Summary

Allow any container_runtime_exec_t to be an entrypoint of this domain

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_runtime_exec(
	
		domain
		
	)

Summary

Execute container in the caller domain.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.

container_runtime_typebounds(
	
		domain
		
	)

Summary

container domain typebounds calling domain.

Parameters

Parameter:	Description:
domain	Domain to be typebound.

container_rw_sem(
	
		domain
		
	)

Summary

Read and write container shared memory.

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_search_lib(
	
		domain
		
	)

Summary

Search container lib directories.

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_spc_read_state(
	
		domain
		
	)

Summary

Read the process state of spc containers

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_spc_stream_connect(
	
		domain
		
	)

Summary

Connect to SPC containers over a unix stream socket.

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_stream_connect(
	
		domain
		
	)

Summary

Connect to container over a unix stream socket.

Parameters

Parameter:	Description:
domain	Domain allowed access.

container_systemctl(
	
		domain
		
	)

Summary

Execute container server in the container domain.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.

container_use_ptys(
	
		domain
		
	)

Summary

Read and write the container pty type.

Parameters

Parameter:	Description:
domain	Domain allowed access.

docker_exec_lib(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:
?	Parameter descriptions are missing!

docker_exec_share_files(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:
?	Parameter descriptions are missing!

docker_lib_filetrans(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:
?	Parameter descriptions are missing!

docker_manage_lib_dirs(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:
?	Parameter descriptions are missing!

docker_manage_lib_files(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:
?	Parameter descriptions are missing!

docker_read_pid_files(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:
?	Parameter descriptions are missing!

docker_read_share_files(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:
?	Parameter descriptions are missing!

docker_spc_stream_connect(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:
?	Parameter descriptions are missing!

docker_stream_connect(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:
?	Parameter descriptions are missing!

docker_systemctl(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:
?	Parameter descriptions are missing!

docker_use_ptys(
	
		?
		
	)

Summary

Summary is missing!

Parameters

Parameter:	Description:
?	Parameter descriptions are missing!

Return