Layer: apps

Module: qemu

Interfaces Templates

Description:

QEMU machine emulator and virtualizer

Interfaces:

qemu_domtrans( domain )
Summary

Execute a domain transition to run qemu.

Parameters
Parameter:Description:Optional:
domain

Domain allowed to transition.

No
qemu_domtrans_unconfined( domain )
Summary

Execute a domain transition to run qemu unconfined.

Parameters
Parameter:Description:Optional:
domain

Domain allowed to transition.

No
qemu_kill( domain )
Summary

Send a sigill to qemu

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
qemu_manage_tmp_dirs( domain )
Summary

Manage qemu temporary dirs.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
qemu_manage_tmp_files( domain )
Summary

Manage qemu temporary files.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
qemu_read_state( domain )
Summary

Allow the domain to read state files in /proc.

Parameters
Parameter:Description:Optional:
domain

Domain to allow access.

No
qemu_role_notrans( user_role )
Summary

The per role template for the qemu module.

Description

This template creates a derived domains which are used for qemu web browser.

This template is invoked automatically for each user, and generally does not need to be invoked directly by policy writers.

Parameters
Parameter:Description:Optional:
user_role

The role associated with the user domain.

No
qemu_run( domain , role )
Summary

Execute qemu in the qemu domain.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
role

The role to allow the qemu domain.

No
qemu_setsched( domain )
Summary

Set the schedule on qemu.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
qemu_signal( domain )
Summary

Send a signal to qemu.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
qemu_spec_domtrans( domain , target_domain )
Summary

Execute qemu_exec_t in the specified domain but do not do it automatically. This is an explicit transition, requiring the caller to use setexeccon().

Description

Execute qemu_exec_t in the specified domain. This allows the specified domain to qemu programs on these filesystems in the specified domain.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
target_domain

The type of the new process.

No
qemu_unconfined_role( role )
Summary

Execute qemu unconfined programs in the role.

Parameters
Parameter:Description:Optional:
role

The role to allow the PAM domain.

No
Return

Templates:

qemu_domain_template( prefix )
Summary

Creates types and rules for a basic qemu process domain.

Parameters
Parameter:Description:Optional:
prefix

Prefix for the domain.

No
qemu_role( userdomain_prefix , user_role , user_domain )
Summary

The per role template for the qemu module.

Description

This template creates a derived domains which are used for qemu web browser.

This template is invoked automatically for each user, and generally does not need to be invoked directly by policy writers.

Parameters
Parameter:Description:Optional:
userdomain_prefix

The prefix of the user domain (e.g., user is the prefix for user_t).

No
user_role

The role associated with the user domain.

No
user_domain

The type of the user domain.

No
Return