Layer: apps

Module: userhelper

Interfaces Templates

Description:

SELinux utility to run a shell with a new role

Interfaces:

userhelper_dontaudit_search_config( domain )
Summary

Do not audit attempts to search the userhelper configuration directory.

Parameters
Parameter:Description:Optional:
domain

Domain to not audit.

No
userhelper_exec( domain )
Summary

Execute the userhelper program in the caller domain.

Parameters
Parameter:Description:Optional:
domain

The type of the process performing this action.

No
userhelper_search_config( domain )
Summary

Search the userhelper configuration directory.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
Return

Templates:

userhelper_per_role_template( userdomain_prefix , user_domain , user_role )
Summary

The per role template for the userhelper module.

Description

This template creates a derived domains which are used for userhelper.

This template is invoked automatically for each user, and generally does not need to be invoked directly by policy writers.

Parameters
Parameter:Description:Optional:
userdomain_prefix

The prefix of the user domain (e.g., user is the prefix for user_t).

No
user_domain

The type of the user domain.

No
user_role

The role associated with the user domain.

No
userhelper_sigchld_user( prefix , domain )
Summary

Allow domain to send sigchld to userhelper.

Parameters
Parameter:Description:Optional:
prefix

The prefix of the domain, example user is the prefix of user_t.

No
domain

Domain allowed access.

No
userhelper_use_user_fd( prefix , domain )
Summary

Allow domain to use userhelper file descriptor.

Parameters
Parameter:Description:Optional:
prefix

The prefix of the domain, example user is the prefix of user_t.

No
domain

Domain allowed access.

No
Return