Layer: contrib

Module: sandboxX

Description:

policy for sandboxX

Interfaces:

sandbox_delete_dirs(
	
		domain
		
	)

Summary

Delete sandbox directories

Parameters

Parameter:	Description:
domain	Domain allowed access

sandbox_delete_files(
	
		domain
		
	)

Summary

Delete sandbox files

Parameters

Parameter:	Description:
domain	Domain allowed access

sandbox_delete_lnk_files(
	
		domain
		
	)

Summary

Delete sandbox symbolic links

Parameters

Parameter:	Description:
domain	Domain allowed access

sandbox_delete_pipes(
	
		domain
		
	)

Summary

Delete sandbox fifo files

Parameters

Parameter:	Description:
domain	Domain allowed access

sandbox_delete_sock_files(
	
		domain
		
	)

Summary

Delete sandbox sock files

Parameters

Parameter:	Description:
domain	Domain allowed access

sandbox_dontaudit_mounton(
	
		domain
		
	)

Summary

Allow domain to execute sandbox_file_t in the caller domain.

Parameters

Parameter:	Description:
domain	Domain allowed access.

sandbox_exec_file(
	
		domain
		
	)

Summary

Allow domain to execute sandbox_file_t in the caller domain.

Parameters

Parameter:	Description:
domain	Domain allowed access.

sandbox_list(
	
		domain
		
	)

Summary

allow domain to list sandbox dirs

Parameters

Parameter:	Description:
domain	Domain allowed access

sandbox_manage_content(
	
		domain
		
	)

Summary

Manage sandbox content

Parameters

Parameter:	Description:
domain	Domain allowed access

sandbox_manage_tmpfs_files(
	
		domain
		
	)

Summary

allow domain to manage sandbox tmpfs files

Parameters

Parameter:	Description:
domain	Domain allowed access

sandbox_read_tmpfs_files(
	
		domain
		
	)

Summary

allow domain to read sandbox tmpfs files

Parameters

Parameter:	Description:
domain	Domain allowed access

sandbox_rw_xserver_tmpfs_files(
	
		domain
		
	)

Summary

allow domain to read, write sandbox_xserver tmp files

Parameters

Parameter:	Description:
domain	Domain allowed access

sandbox_setattr_dirs(
	
		domain
		
	)

Summary

Allow domain to set the attributes of the sandbox directory.

Parameters

Parameter:	Description:
domain	Domain allowed access

sandbox_use_ptys(
	
		domain
		
	)

Summary

Read and write a sandbox domain pty.

Parameters

Parameter:	Description:
domain	Domain allowed access.

sandbox_x_transition(
	
		domain
		
			,
		
		role
		
	)

Summary

Execute sandbox in the sandbox domain, and allow the specified role the sandbox domain.

Parameters

Parameter:	Description:
domain	Domain allowed access
role	The role to be allowed the sandbox domain.

Return

Templates:

sandbox_x_domain_template(
	
		prefix
		
	)

Summary

Creates types and rules for a basic sandbox process domain.

Parameters

Parameter:	Description:
prefix	Prefix for the domain.

Return