<html> <head> <title> Security Enhanced Linux Reference Policy </title> <style type="text/css" media="all">@import "style.css";</style> </head> <body> <div id="Header">Security Enhanced Linux Reference Policy</div> <div id='Menu'> <a href="admin.html">+ admin</a></br/> <div id='subitem'> </div> <a href="apps.html">+ apps</a></br/> <div id='subitem'> </div> <a href="kernel.html">+ kernel</a></br/> <div id='subitem'> </div> <a href="services.html">+ services</a></br/> <div id='subitem'> </div> <a href="system.html">+ system</a></br/> <div id='subitem'> - <a href='system_authlogin.html'> authlogin</a><br/> - <a href='system_clock.html'> clock</a><br/> - <a href='system_daemontools.html'> daemontools</a><br/> - <a href='system_fstools.html'> fstools</a><br/> - <a href='system_getty.html'> getty</a><br/> - <a href='system_hostname.html'> hostname</a><br/> - <a href='system_hotplug.html'> hotplug</a><br/> - <a href='system_init.html'> init</a><br/> - <a href='system_ipsec.html'> ipsec</a><br/> - <a href='system_iptables.html'> iptables</a><br/> - <a href='system_libraries.html'> libraries</a><br/> - <a href='system_locallogin.html'> locallogin</a><br/> - <a href='system_logging.html'> logging</a><br/> - <a href='system_lvm.html'> lvm</a><br/> - <a href='system_miscfiles.html'> miscfiles</a><br/> - <a href='system_modutils.html'> modutils</a><br/> - <a href='system_mount.html'> mount</a><br/> - <a href='system_pcmcia.html'> pcmcia</a><br/> - <a href='system_raid.html'> raid</a><br/> - <a href='system_selinuxutil.html'> selinuxutil</a><br/> - <a href='system_sysnetwork.html'> sysnetwork</a><br/> - <a href='system_udev.html'> udev</a><br/> - <a href='system_unconfined.html'> unconfined</a><br/> - <a href='system_userdomain.html'> userdomain</a><br/> </div> <br/><p/> <a href="global_booleans.html">* Global Booleans </a> <br/><p/> <a href="global_tunables.html">* Global Tunables </a> <p/><br/><p/> <a href="index.html">* Layer Index</a> <br/><p/> <a href="interfaces.html">* Interface Index</a> <br/><p/> <a href="templates.html">* Template Index</a> </div> <div id="Content"> <a name="top":></a> <h1>Layer: system</h1><p/> <h2>Module: sysnetwork</h2><p/> <h3>Description:</h3> <p><p>Policy for network configuration: ifconfig and dhcp client.</p></p> <a name="interfaces"></a> <h3>Interfaces: </h3> <a name="link_sysnet_dbus_chat_dhcpc"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_dbus_chat_dhcpc</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Send and receive messages from dhcpc over dbus. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_delete_dhcpc_pid"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_delete_dhcpc_pid</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Delete the dhcp client pid file. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The type of the process performing this action. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_dhcp_state_filetrans"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_dhcp_state_filetrans</b>( domain , file_type , object_class )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create DHCP state data. </p> <h5>Description</h5> <p> </p><p> Create DHCP state data. </p><p> </p><p> This is added for DHCP server, as the server and client put their state files in the same directory. </p><p> </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td><td> No </td></tr> <tr><td> file_type </td><td> <p> The type of the object to be created </p> </td><td> No </td></tr> <tr><td> object_class </td><td> <p> The object class. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_dns_name_resolve"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_dns_name_resolve</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Perform a DNS name resolution. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_domtrans_dhcpc"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_domtrans_dhcpc</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Execute dhcp client in dhcpc domain. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The type of the process performing this action. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_domtrans_ifconfig"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_domtrans_ifconfig</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Execute ifconfig in the ifconfig domain. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The type of the process performing this action. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_dontaudit_read_config"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_dontaudit_read_config</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Do not audit attempts to read network config files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> Domain to not audit. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_etc_filetrans_config"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_etc_filetrans_config</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create files in /etc with the type used for the network config files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The type of the process performing this action. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_exec_ifconfig"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_exec_ifconfig</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Execute ifconfig in the caller domain. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_kill_dhcpc"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_kill_dhcpc</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Send a kill signal to the dhcp client. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The domain sending the SIGKILL. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_manage_config"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_manage_config</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create, read, write, and delete network config files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The type of the process performing this action. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_read_config"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_read_config</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Allow network init to read network config files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The type of the process performing this action. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_read_dhcp_config"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_read_dhcp_config</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read the DHCP configuration files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_read_dhcpc_pid"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_read_dhcpc_pid</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read the dhcp client pid file. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The type of the process performing this action. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_read_dhcpc_state"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_read_dhcpc_state</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read dhcp client state files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The domain allowed access. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_run_dhcpc"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_run_dhcpc</b>( domain , role , terminal )<br> </div> <div id="description"> <h5>Summary</h5> <p> Execute DHCP clients in the dhcpc domain, and allow the specified role the dhcpc domain. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The type of the process performing this action. </p> </td><td> No </td></tr> <tr><td> role </td><td> <p> The role to be allowed the clock domain. </p> </td><td> No </td></tr> <tr><td> terminal </td><td> <p> The type of the terminal allow the clock domain to use. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_run_ifconfig"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_run_ifconfig</b>( domain , role , terminal )<br> </div> <div id="description"> <h5>Summary</h5> <p> Execute ifconfig in the ifconfig domain, and allow the specified role the ifconfig domain, and use the caller's terminal. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The type of the process performing this action. </p> </td><td> No </td></tr> <tr><td> role </td><td> <p> The role to be allowed the ifconfig domain. </p> </td><td> No </td></tr> <tr><td> terminal </td><td> <p> The type of the terminal allow the ifconfig domain to use. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_rw_dhcp_config"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_rw_dhcp_config</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read and write dhcp configuration files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The domain allowed access. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_search_dhcp_state"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_search_dhcp_state</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Search the DHCP state data directory. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_sigchld_dhcpc"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_sigchld_dhcpc</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Send a SIGCHLD signal to the dhcp client. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The domain sending the SIGCHLD. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_signal_dhcpc"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_signal_dhcpc</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Send a generic signal to the dhcp client. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The domain sending the signal. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_signull_dhcpc"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_signull_dhcpc</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Send a null signal to the dhcp client. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The domain sending the null signal. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_sigstop_dhcpc"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_sigstop_dhcpc</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Send a SIGSTOP signal to the dhcp client. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> The domain sending the SIGSTOP. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_use_ldap"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_use_ldap</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Connect and use a LDAP server. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td><td> No </td></tr> </table> </div> </div> <a name="link_sysnet_use_portmap"></a> <div id="interface"> <div id="codeblock"> <b>sysnet_use_portmap</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Connect and use remote port mappers. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="80%"> <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td><td> No </td></tr> </table> </div> </div> <a href=#top>Return</a> </div> </body> </html>