QEMU machine emulator and virtualizer
Execute a domain transition to run qemu.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed to transition. | No |
Execute a domain transition to run qemu unconfined.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed to transition. | No |
Send a sigill to qemu
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Manage qemu temporary dirs.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Manage qemu temporary files.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Allow the domain to read state files in /proc.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain to allow access. | No |
The per role template for the qemu module.
This template creates a derived domains which are used for qemu web browser.
This template is invoked automatically for each user, and generally does not need to be invoked directly by policy writers.
Parameter: | Description: | Optional: |
---|---|---|
user_role |
The role associated with the user domain. | No |
Execute qemu in the qemu domain.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
role |
The role to allow the qemu domain. | No |
Set the schedule on qemu.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Send a signal to qemu.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
Execute qemu_exec_t in the specified domain but do not do it automatically. This is an explicit transition, requiring the caller to use setexeccon().
Execute qemu_exec_t in the specified domain. This allows the specified domain to qemu programs on these filesystems in the specified domain.
Parameter: | Description: | Optional: |
---|---|---|
domain |
Domain allowed access. | No |
target_domain |
The type of the new process. | No |
Execute qemu unconfined programs in the role.
Parameter: | Description: | Optional: |
---|---|---|
role |
The role to allow the PAM domain. | No |
Creates types and rules for a basic qemu process domain.
Parameter: | Description: | Optional: |
---|---|---|
prefix |
Prefix for the domain. | No |
The per role template for the qemu module.
This template creates a derived domains which are used for qemu web browser.
This template is invoked automatically for each user, and generally does not need to be invoked directly by policy writers.
Parameter: | Description: | Optional: |
---|---|---|
userdomain_prefix |
The prefix of the user domain (e.g., user is the prefix for user_t). | No |
user_role |
The role associated with the user domain. | No |
user_domain |
The type of the user domain. | No |