Layer: kernel

Module: bootloader

Description:

Policy for the kernel modules, kernel image, and bootloader.

Interfaces:

bootloader_create_kernel_img( domain )
Summary

Install a kernel into the /boot directory.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_create_kernel_symbol_table( domain )
Summary

Install a system.map into the /boot directory.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_create_runtime_file( domain )
Summary

Read and write the bootloader temporary data in /tmp.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_delete_kernel( domain )
Summary

Delete a kernel from /boot.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_delete_kernel_symbol_table( domain )
Summary

Delete a system.map in the /boot directory.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_domtrans( domain )
Summary

Execute bootloader in the bootloader domain.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_dontaudit_getattr_boot_dir( domain )
Summary

Do not audit attempts to get attributes of the /boot directory.

Parameters
Parameter:Description:Optional:
domain Domain to not audit. No
bootloader_dontaudit_search_boot( domain )
Summary

Do not audit attempts to search the /boot directory.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_filetrans_modules( ? )
Summary

Summary is missing!

Parameters
Parameter:Description:Optional:
? Parameter descriptions are missing! No
bootloader_getattr_boot_dir( domain )
Summary

Get attributes of the /boot directory.

Parameters
Parameter:Description:Optional:
domain Domain to not audit. No
bootloader_getattr_kernel_modules( domain )
Summary

Get the attributes of kernel module files.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_list_kernel_modules( domain )
Summary

List the contents of the kernel module directories.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_manage_kernel_modules( domain )
Summary

Create, read, write, and delete kernel module files.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_read_config( domain )
Summary

Read the bootloader configuration file.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_read_kernel_modules( domain )
Summary

Read kernel module files.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_read_kernel_symbol_table( domain )
Summary

Read system.map in the /boot directory.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_run( domain , role , terminal )
Summary

Execute bootloader interactively and do a domain transition to the bootloader domain.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
role The role to be allowed the bootloader domain. No
terminal The type of the terminal allow the bootloader domain to use. No
bootloader_rw_boot_symlinks( domain )
Summary

Read and write symbolic links in the /boot directory.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_rw_config( domain )
Summary

Read and write the bootloader configuration file.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_rw_tmp_file( domain )
Summary

Read and write the bootloader temporary data in /tmp.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_search_boot( domain )
Summary

Search the /boot directory.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_search_kernel_modules( domain )
Summary

Search the contents of the kernel module directories.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
bootloader_write_kernel_modules( domain )
Summary

Write kernel module files.

Parameters
Parameter:Description:Optional:
domain The type of the process performing this action. No
Return