Layer: system

Module: unconfined

Description:

The unconfined domain.

Interfaces:

unconfined_alias_domain(
	
		domain
		
	)

Summary

Add an alias type to the unconfined domain.

Description

Add an alias type to the unconfined domain.

This is added to support targeted policy. Its use should be limited. It has no effect on the strict policy.

Parameters

Parameter:	Description:	Optional:
domain	New alias of the unconfined domain.	No

unconfined_dbus_send(
	
		domain
		
	)

Summary

Send messages to the unconfined domain over dbus.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

unconfined_domain(
	
		domain
		
	)

Summary

Make the specified domain unconfined and audit executable memory and executable heap usage.

Parameters

Parameter:	Description:	Optional:
domain	Domain to make unconfined.	No

unconfined_domain_noaudit(
	
		domain
		
	)

Summary

Make the specified domain unconfined.

Parameters

Parameter:	Description:	Optional:
domain	Domain to make unconfined.	No

unconfined_domtrans(
	
		domain
		
	)

Summary

Transition to the unconfined domain.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

unconfined_dontaudit_read_pipes(
	
		domain
		
	)

Summary

Do not audit attempts to read unconfined domain unnamed pipes.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

unconfined_dontaudit_rw_tcp_sockets(
	
		domain
		
	)

Summary

Do not audit attempts to read or write unconfined domain tcp sockets.

Description

Do not audit attempts to read or write unconfined domain tcp sockets.

This interface was added due to a broken symptom in ldconfig.

Parameters

Parameter:	Description:	Optional:
domain	Domain to not audit.	No

unconfined_read_pipes(
	
		domain
		
	)

Summary

Read unconfined domain unnamed pipes.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

unconfined_run(
	
		domain
		
			,
		
		role
		
			,
		
		terminal
		
	)

Summary

Execute specified programs in the unconfined domain.

Parameters

Parameter:	Description:	Optional:
domain	The type of the process performing this action.	No
role	The role to allow the unconfined domain.	No
terminal	The type of the terminal allow the unconfined domain to use.	No

unconfined_rw_pipes(
	
		domain
		
	)

Summary

Read and write unconfined domain unnamed pipes.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

unconfined_shell_domtrans(
	
		domain
		
	)

Summary

Transition to the unconfined domain by executing a shell.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

unconfined_sigchld(
	
		domain
		
	)

Summary

Send a SIGCHLD signal to the unconfined domain.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

unconfined_signal(
	
		domain
		
	)

Summary

Send generic signals to the unconfined domain.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

unconfined_use_fds(
	
		domain
		
	)

Summary

Inherit file descriptors from the unconfined domain.

Parameters

Parameter:	Description:	Optional:
domain	Domain allowed access.	No

Return