selinux-policy/www/api-docs/kernel_corecommands.html

<html>
<head>
<title>
 Security Enhanced Linux Reference Policy
 </title>
<style type="text/css" media="all">@import "style.css";</style>
</head>
<body>
<div id="Header">Security Enhanced Linux Reference Policy</div>
<div id='Menu'>
	
		<a href="admin.html">+&nbsp;
		admin</a></br/>
		<div id='subitem'>
		
		</div>
	
		<a href="apps.html">+&nbsp;
		apps</a></br/>
		<div id='subitem'>
		
		</div>
	
		<a href="kernel.html">+&nbsp;
		kernel</a></br/>
		<div id='subitem'>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_corecommands.html'>
			corecommands</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_corenetwork.html'>
			corenetwork</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_devices.html'>
			devices</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_domain.html'>
			domain</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_files.html'>
			files</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_filesystem.html'>
			filesystem</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_kernel.html'>
			kernel</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_mcs.html'>
			mcs</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_mls.html'>
			mls</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_selinux.html'>
			selinux</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_storage.html'>
			storage</a><br/>
		
			&nbsp;&nbsp;&nbsp;-&nbsp;<a href='kernel_terminal.html'>
			terminal</a><br/>
		
		</div>
	
		<a href="services.html">+&nbsp;
		services</a></br/>
		<div id='subitem'>
		
		</div>
	
		<a href="system.html">+&nbsp;
		system</a></br/>
		<div id='subitem'>
		
		</div>
	
	<br/><p/>
	<a href="global_booleans.html">*&nbsp;Global&nbsp;Booleans&nbsp;</a>
	<br/><p/>
	<a href="global_tunables.html">*&nbsp;Global&nbsp;Tunables&nbsp;</a>
	<p/><br/><p/>
	<a href="index.html">*&nbsp;Layer Index</a>
	<br/><p/>
	<a href="interfaces.html">*&nbsp;Interface&nbsp;Index</a>
	<br/><p/>
	<a href="templates.html">*&nbsp;Template&nbsp;Index</a>
</div>

<div id="Content">
<a name="top":></a>
<h1>Layer: kernel</h1><p/>
<h2>Module: corecommands</h2><p/>

<h3>Description:</h3>

<p><p>
Core policy for shells, and generic programs
in /bin, /sbin, /usr/bin, and /usr/sbin.
</p></p>


<p>This module is required to be included in all policies.</p>


<a name="interfaces"></a>
<h3>Interfaces: </h3>

<a name="link_corecmd_bin_alias"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_bin_alias</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Create a aliased type to generic bin files.
</p>


<h5>Description</h5>
<p>
</p><p>
Create a aliased type to generic bin files.
</p><p>
</p><p>
This is added to support targeted policy.  Its
use should be limited.  It has no effect
on the strict policy.
</p><p>
</p>

<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Alias type for bin_t.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_bin_domtrans"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_bin_domtrans</b>(
	
		
		
		
		domain
		
	
		
			,
		
		
		
		target_domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Execute a file in a bin directory
in the specified domain.
</p>


<h5>Description</h5>
<p>
</p><p>
Execute a file in a bin directory
in the specified domain.  This allows
the specified domain to execute any file
on these filesystems in the specified
domain.  This is not suggested.
</p><p>
</p><p>
No interprocess communication (signals, pipes,
etc.) is provided by this interface since
the domains are not owned by this module.
</p><p>
</p><p>
This interface was added to handle
the ssh-agent policy.
</p><p>
</p>

<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

<tr><td>
target_domain
</td><td>
<p>
The type of the new process.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_bin_spec_domtrans"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_bin_spec_domtrans</b>(
	
		
		
		
		domain
		
	
		
			,
		
		
		
		target_domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Execute a file in a bin directory
in the specified domain but do not
do it automatically. This is an explicit
transition, requiring the caller to use setexeccon().
</p>


<h5>Description</h5>
<p>
</p><p>
Execute a file in a bin directory
in the specified domain.  This allows
the specified domain to execute any file
on these filesystems in the specified
domain.  This is not suggested.
</p><p>
</p><p>
No interprocess communication (signals, pipes,
etc.) is provided by this interface since
the domains are not owned by this module.
</p><p>
</p><p>
This interface was added to handle
the userhelper policy.
</p><p>
</p>

<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

<tr><td>
target_domain
</td><td>
<p>
The type of the new process.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_check_exec_shell"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_check_exec_shell</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Check if a shell is executable (DAC-wise).
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_dontaudit_getattr_sbin_files"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_dontaudit_getattr_sbin_files</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>
<p>
Parameter descriptions are missing!
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_dontaudit_search_sbin"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_dontaudit_search_sbin</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Do not audit attempts to search
sbin directories.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain to not audit.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_exec_bin"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_exec_bin</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>
<p>
Parameter descriptions are missing!
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_exec_chroot"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_exec_chroot</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>
<p>
Parameter descriptions are missing!
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_exec_ls"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_exec_ls</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>
<p>
Parameter descriptions are missing!
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_exec_sbin"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_exec_sbin</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>
<p>
Parameter descriptions are missing!
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_exec_shell"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_exec_shell</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>
<p>
Parameter descriptions are missing!
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_getattr_bin_files"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_getattr_bin_files</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Get the attributes of files in bin directories.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_getattr_sbin_files"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_getattr_sbin_files</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>
<p>
Parameter descriptions are missing!
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_list_bin"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_list_bin</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>
<p>
Parameter descriptions are missing!
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_list_sbin"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_list_sbin</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>
<p>
Parameter descriptions are missing!
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_manage_bin_files"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_manage_bin_files</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Create, read, write, and delete bin files.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_manage_sbin_files"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_manage_sbin_files</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Create, read, write, and delete sbin files.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_mmap_bin_files"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_mmap_bin_files</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Mmap a bin file as executable.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_mmap_sbin_files"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_mmap_sbin_files</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Mmap a sbin file as executable.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_read_bin_files"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_read_bin_files</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Read files in bin directories.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_read_bin_pipes"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_read_bin_pipes</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Read pipes in bin directories.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_read_bin_sockets"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_read_bin_sockets</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Read named sockets in bin directories.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_read_bin_symlinks"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_read_bin_symlinks</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Read symbolic links in bin directories.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_read_sbin_files"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_read_sbin_files</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Read files in sbin directories.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_read_sbin_pipes"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_read_sbin_pipes</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Read named pipes in sbin directories.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_read_sbin_sockets"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_read_sbin_sockets</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Read named sockets in sbin directories.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_read_sbin_symlinks"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_read_sbin_symlinks</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Read symbolic links in sbin directories.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_relabel_bin_files"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_relabel_bin_files</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Relabel to and from the bin type.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_relabel_sbin_files"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_relabel_sbin_files</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Relabel to and from the sbin type.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_sbin_domtrans"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_sbin_domtrans</b>(
	
		
		
		
		domain
		
	
		
			,
		
		
		
		target_domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Execute a file in a sbin directory
in the specified domain.
</p>


<h5>Description</h5>
<p>
</p><p>
Execute a file in a sbin directory
in the specified domain.  This allows
the specified domain to execute any file
on these filesystems in the specified
domain.  This is not suggested.
</p><p>
</p><p>
No interprocess communication (signals, pipes,
etc.) is provided by this interface since
the domains are not owned by this module.
</p><p>
</p><p>
This interface was added to handle
the ssh-agent policy.
</p><p>
</p>

<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

<tr><td>
target_domain
</td><td>
<p>
The type of the new process.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_sbin_spec_domtrans"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_sbin_spec_domtrans</b>(
	
		
		
		
		domain
		
	
		
			,
		
		
		
		target_domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Execute a file in a sbin directory
in the specified domain but do not
do it automatically. This is an explicit
transition, requiring the caller to use setexeccon().
</p>


<h5>Description</h5>
<p>
</p><p>
Execute a file in a sbin directory
in the specified domain.  This allows
the specified domain to execute any file
on these filesystems in the specified
domain.  This is not suggested.
</p><p>
</p><p>
No interprocess communication (signals, pipes,
etc.) is provided by this interface since
the domains are not owned by this module.
</p><p>
</p><p>
This interface was added to handle
the userhelper policy.
</p><p>
</p>

<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

<tr><td>
target_domain
</td><td>
<p>
The type of the new process.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_search_bin"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_search_bin</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>
<p>
Parameter descriptions are missing!
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_search_sbin"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_search_sbin</b>(
	
		
		
		
		?
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Summary is missing!
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
?
</td><td>
<p>
Parameter descriptions are missing!
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_shell_domtrans"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_shell_domtrans</b>(
	
		
		
		
		domain
		
	
		
			,
		
		
		
		target_domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Execute a shell in the specified domain.
</p>


<h5>Description</h5>
<p>
</p><p>
Execute a shell in the specified domain.
</p><p>
</p><p>
No interprocess communication (signals, pipes,
etc.) is provided by this interface since
the domains are not owned by this module.
</p><p>
</p>

<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

<tr><td>
target_domain
</td><td>
<p>
The type of the shell process.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_shell_entry_type"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_shell_entry_type</b>(
	
		
		
		
		domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Make the shell an entrypoint for the specified domain.
</p>


<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
The domain for which the shell is an entrypoint.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>

<a name="link_corecmd_shell_spec_domtrans"></a>
<div id="interface">


<div id="codeblock">

<b>corecmd_shell_spec_domtrans</b>(
	
		
		
		
		domain
		
	
		
			,
		
		
		
		target_domain
		
	
	)<br>
</div>
<div id="description">

<h5>Summary</h5>
<p>
Execute a shell in the target domain.  This
is an explicit transition, requiring the
caller to use setexeccon().
</p>


<h5>Description</h5>
<p>
</p><p>
Execute a shell in the target domain.  This
is an explicit transition, requiring the
caller to use setexeccon().
</p><p>
</p><p>
No interprocess communication (signals, pipes,
etc.) is provided by this interface since
the domains are not owned by this module.
</p><p>
</p>

<h5>Parameters</h5>
<table border="1" cellspacing="0" cellpadding="3" width="80%">
<tr><th >Parameter:</td><th >Description:</td><th >Optional:</td></tr>

<tr><td>
domain
</td><td>
<p>
Domain allowed access.
</p>
</td><td>
No
</td></tr>

<tr><td>
target_domain
</td><td>
<p>
The type of the shell process.
</p>
</td><td>
No
</td></tr>

</table>
</div>
</div>


<a href=#top>Return</a>




</div>
</body>
</html>