362 lines
		
	
	
		
			5.7 KiB
		
	
	
	
		
			HTML
		
	
	
	
	
	
			
		
		
	
	
			362 lines
		
	
	
		
			5.7 KiB
		
	
	
	
		
			HTML
		
	
	
	
	
	
| <html>
 | |
| <head>
 | |
| <title>
 | |
|  Security Enhanced Linux Reference Policy
 | |
|  </title>
 | |
| <style type="text/css" media="all">@import "style.css";</style>
 | |
| </head>
 | |
| <body>
 | |
| <div id="Header">Security Enhanced Linux Reference Policy</div>
 | |
| <div id='Menu'>
 | |
| 	
 | |
| 		<a href="admin.html">+ 
 | |
| 		admin</a></br/>
 | |
| 		<div id='subitem'>
 | |
| 		
 | |
| 		</div>
 | |
| 	
 | |
| 		<a href="apps.html">+ 
 | |
| 		apps</a></br/>
 | |
| 		<div id='subitem'>
 | |
| 		
 | |
| 		</div>
 | |
| 	
 | |
| 		<a href="kernel.html">+ 
 | |
| 		kernel</a></br/>
 | |
| 		<div id='subitem'>
 | |
| 		
 | |
| 		</div>
 | |
| 	
 | |
| 		<a href="services.html">+ 
 | |
| 		services</a></br/>
 | |
| 		<div id='subitem'>
 | |
| 		
 | |
| 		</div>
 | |
| 	
 | |
| 		<a href="system.html">+ 
 | |
| 		system</a></br/>
 | |
| 		<div id='subitem'>
 | |
| 		
 | |
| 			   - <a href='system_authlogin.html'>
 | |
| 			authlogin</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_clock.html'>
 | |
| 			clock</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_corecommands.html'>
 | |
| 			corecommands</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_domain.html'>
 | |
| 			domain</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_files.html'>
 | |
| 			files</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_fstools.html'>
 | |
| 			fstools</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_getty.html'>
 | |
| 			getty</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_hostname.html'>
 | |
| 			hostname</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_hotplug.html'>
 | |
| 			hotplug</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_init.html'>
 | |
| 			init</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_ipsec.html'>
 | |
| 			ipsec</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_iptables.html'>
 | |
| 			iptables</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_libraries.html'>
 | |
| 			libraries</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_locallogin.html'>
 | |
| 			locallogin</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_logging.html'>
 | |
| 			logging</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_lvm.html'>
 | |
| 			lvm</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_miscfiles.html'>
 | |
| 			miscfiles</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_modutils.html'>
 | |
| 			modutils</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_mount.html'>
 | |
| 			mount</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_pcmcia.html'>
 | |
| 			pcmcia</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_raid.html'>
 | |
| 			raid</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_selinuxutil.html'>
 | |
| 			selinuxutil</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_sysnetwork.html'>
 | |
| 			sysnetwork</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_udev.html'>
 | |
| 			udev</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_unconfined.html'>
 | |
| 			unconfined</a><br/>
 | |
| 		
 | |
| 			   - <a href='system_userdomain.html'>
 | |
| 			userdomain</a><br/>
 | |
| 		
 | |
| 		</div>
 | |
| 	
 | |
| 	<br/><p/>
 | |
| 	<a href="global_booleans.html">* Global Booleans </a>
 | |
| 	<br/><p/>
 | |
| 	<a href="global_tunables.html">* Global Tunables </a>
 | |
| 	<p/><br/><p/>
 | |
| 	<a href="index.html">* Layer Index</a>
 | |
| 	<br/><p/>
 | |
| 	<a href="interfaces.html">* Interface Index</a>
 | |
| 	<br/><p/>
 | |
| 	<a href="templates.html">* Template Index</a>
 | |
| </div>
 | |
| 
 | |
| <div id="Content">
 | |
| <a name="top":></a>
 | |
| <h1>Layer: system</h1><p/>
 | |
| <h2>Module: mount</h2><p/>
 | |
| 
 | |
| <h3>Description:</h3>
 | |
| 
 | |
| <p><p>Policy for mount.</p></p>
 | |
| 
 | |
| 
 | |
| 
 | |
| <a name="interfaces"></a>
 | |
| <h3>Interfaces: </h3>
 | |
| 
 | |
| <a name="link_mount_domtrans"></a>
 | |
| <div id="interface">
 | |
| 
 | |
| 
 | |
| <div id="codeblock">
 | |
| 
 | |
| <b>mount_domtrans</b>(
 | |
| 	
 | |
| 		
 | |
| 		
 | |
| 		
 | |
| 		domain
 | |
| 		
 | |
| 	
 | |
| 	)<br>
 | |
| </div>
 | |
| <div id="description">
 | |
| 
 | |
| <h5>Summary</h5>
 | |
| <p>
 | |
| Execute mount in the mount domain.
 | |
| </p>
 | |
| 
 | |
| 
 | |
| <h5>Parameters</h5>
 | |
| <table border="1" cellspacing="0" cellpadding="3" width="80%">
 | |
| <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
 | |
| 
 | |
| <tr><td>
 | |
| domain
 | |
| </td><td>
 | |
| 
 | |
| The type of the process performing this action.
 | |
| 
 | |
| </td><td>
 | |
| No
 | |
| </td></tr>
 | |
| 
 | |
| </table>
 | |
| </div>
 | |
| </div>
 | |
| 
 | |
| <a name="link_mount_run"></a>
 | |
| <div id="interface">
 | |
| 
 | |
| 
 | |
| <div id="codeblock">
 | |
| 
 | |
| <b>mount_run</b>(
 | |
| 	
 | |
| 		
 | |
| 		
 | |
| 		
 | |
| 		domain
 | |
| 		
 | |
| 	
 | |
| 		
 | |
| 			,
 | |
| 		
 | |
| 		
 | |
| 		
 | |
| 		role
 | |
| 		
 | |
| 	
 | |
| 		
 | |
| 			,
 | |
| 		
 | |
| 		
 | |
| 		
 | |
| 		terminal
 | |
| 		
 | |
| 	
 | |
| 	)<br>
 | |
| </div>
 | |
| <div id="description">
 | |
| 
 | |
| <h5>Summary</h5>
 | |
| <p>
 | |
| Execute mount in the mount domain, and
 | |
| allow the specified role the mount domain,
 | |
| and use the caller's terminal.
 | |
| </p>
 | |
| 
 | |
| 
 | |
| <h5>Parameters</h5>
 | |
| <table border="1" cellspacing="0" cellpadding="3" width="80%">
 | |
| <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
 | |
| 
 | |
| <tr><td>
 | |
| domain
 | |
| </td><td>
 | |
| 
 | |
| The type of the process performing this action.
 | |
| 
 | |
| </td><td>
 | |
| No
 | |
| </td></tr>
 | |
| 
 | |
| <tr><td>
 | |
| role
 | |
| </td><td>
 | |
| 
 | |
| The role to be allowed the mount domain.
 | |
| 
 | |
| </td><td>
 | |
| No
 | |
| </td></tr>
 | |
| 
 | |
| <tr><td>
 | |
| terminal
 | |
| </td><td>
 | |
| 
 | |
| The type of the terminal allow the mount domain to use.
 | |
| 
 | |
| </td><td>
 | |
| No
 | |
| </td></tr>
 | |
| 
 | |
| </table>
 | |
| </div>
 | |
| </div>
 | |
| 
 | |
| <a name="link_mount_send_nfs_client_request"></a>
 | |
| <div id="interface">
 | |
| 
 | |
| 
 | |
| <div id="codeblock">
 | |
| 
 | |
| <b>mount_send_nfs_client_request</b>(
 | |
| 	
 | |
| 		
 | |
| 		
 | |
| 		
 | |
| 		domain
 | |
| 		
 | |
| 	
 | |
| 	)<br>
 | |
| </div>
 | |
| <div id="description">
 | |
| 
 | |
| <h5>Summary</h5>
 | |
| <p>
 | |
| Allow the mount domain to send nfs requests for mounting
 | |
| network drives
 | |
| </p>
 | |
| 
 | |
| 
 | |
| <h5>Parameters</h5>
 | |
| <table border="1" cellspacing="0" cellpadding="3" width="80%">
 | |
| <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
 | |
| 
 | |
| <tr><td>
 | |
| domain
 | |
| </td><td>
 | |
| 
 | |
| The type of the process performing this action.
 | |
| 
 | |
| </td><td>
 | |
| No
 | |
| </td></tr>
 | |
| 
 | |
| </table>
 | |
| </div>
 | |
| </div>
 | |
| 
 | |
| <a name="link_mount_use_fd"></a>
 | |
| <div id="interface">
 | |
| 
 | |
| 
 | |
| <div id="codeblock">
 | |
| 
 | |
| <b>mount_use_fd</b>(
 | |
| 	
 | |
| 		
 | |
| 		
 | |
| 		
 | |
| 		domain
 | |
| 		
 | |
| 	
 | |
| 	)<br>
 | |
| </div>
 | |
| <div id="description">
 | |
| 
 | |
| <h5>Summary</h5>
 | |
| <p>
 | |
| Use file descriptors for mount.
 | |
| </p>
 | |
| 
 | |
| 
 | |
| <h5>Parameters</h5>
 | |
| <table border="1" cellspacing="0" cellpadding="3" width="80%">
 | |
| <tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>
 | |
| 
 | |
| <tr><td>
 | |
| domain
 | |
| </td><td>
 | |
| 
 | |
| The type of the process performing this action.
 | |
| 
 | |
| </td><td>
 | |
| No
 | |
| </td></tr>
 | |
| 
 | |
| </table>
 | |
| </div>
 | |
| </div>
 | |
| 
 | |
| 
 | |
| <a href=#top>Return</a>
 | |
| 
 | |
| 
 | |
| 
 | |
| 
 | |
| </div>
 | |
| </body>
 | |
| </html>
 |