Policy for kernel security interface, in particular, selinuxfs.
Allows caller to compute an access vector.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain | The process type allowed to compute an access vector. | No |
| Parameter: | Description: | Optional: |
|---|---|---|
| domain | No |
| Parameter: | Description: | Optional: |
|---|---|---|
| domain | The process type to | No |
Allows caller to compute possible contexts for a user.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain | The process type allowed to compute user contexts. | No |
Allows the caller to get the mode of policy enforcement (enforcing or permissive mode).
| Parameter: | Description: | Optional: |
|---|---|---|
| domain | The process type to allow to get the enforcing mode. | No |
Gets the caller the mountpoint of the selinuxfs filesystem.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain | The process type requesting the selinuxfs mountpoint. | No |
Allow caller to load the policy into the kernel.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain | The process type that will load the policy. | No |
Allow caller to set the state of Booleans to enable or disable conditional portions of the policy.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain | The process type allowed to set the Boolean. | No |
| booltype | The type of Booleans the caller is allowed to set. | yes |
Allow caller to set the mode of policy enforcement (enforcing or permissive mode).
| Parameter: | Description: | Optional: |
|---|---|---|
| domain | The process type to allow to set the enforcement mode. | No |
Allow caller to set selinux security parameters.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain | The process type to allow to set security parameters. | No |
Allows caller to validate security contexts.
| Parameter: | Description: | Optional: |
|---|---|---|
| domain | The process type permitted to validate contexts. | No |