Layer: admin

Module: rpm

Interfaces

Description:

Policy for the RPM package manager.


Interfaces:

rpm_dbus_chat( domain )
Summary

Send and receive messages from rpm over dbus.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
rpm_domtrans( domain )
Summary

Execute rpm programs in the rpm domain.

Parameters
Parameter:Description:Optional:
domain

The type of the process performing this action.

No
rpm_domtrans_script( domain )
Summary

Execute rpm_script programs in the rpm_script domain.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
rpm_dontaudit_dbus_chat( domain )
Summary

dontaudit attempts to Send and receive messages from rpm over dbus.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
rpm_dontaudit_manage_db( domain )
Summary

Do not audit attempts to create, read, write, and delete the RPM package database.

Parameters
Parameter:Description:Optional:
domain

Domain to not audit.

No
rpm_dontaudit_rw_pipes( domain )
Summary

dontaudit read and write an unnamed RPM pipe.

Parameters
Parameter:Description:Optional:
domain

The type of the process performing this action.

No
rpm_dontaudit_rw_shm( domain )
Summary

Do not audit attempts to read, write RPM shm

Parameters
Parameter:Description:Optional:
domain

Domain to not audit.

No
rpm_dontaudit_rw_tmp_files( domain )
Summary

Do not audit attempts to read, write RPM tmp files

Parameters
Parameter:Description:Optional:
domain

Domain to not audit.

No
rpm_dontaudit_use_script_fds( domain )
Summary

dontaudit and use file descriptors from RPM scripts.

Parameters
Parameter:Description:Optional:
domain

The type of the process performing this action.

No
rpm_dontaudit_write_pid_files( domain )
Summary

Do not audit attempts to write, and delete the RPM var run files

Parameters
Parameter:Description:Optional:
domain

Domain to not audit.

No
rpm_exec( domain )
Summary

Execute the rpm client in the caller domain.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
rpm_manage_db( domain )
Summary

Create, read, write, and delete the RPM package database.

Parameters
Parameter:Description:Optional:
domain

The type of the process performing this action.

No
rpm_manage_log( domain )
Summary

Create, read, write, and delete the RPM log.

Parameters
Parameter:Description:Optional:
domain

The type of the process performing this action.

No
rpm_manage_script_tmp_files( domain )
Summary

Create, read, write, and delete RPM script temporary files.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
rpm_read_db( domain )
Summary

Read the RPM package database.

Parameters
Parameter:Description:Optional:
domain

The type of the process performing this action.

No
rpm_read_pipes( domain )
Summary

Read from an unnamed RPM pipe.

Parameters
Parameter:Description:Optional:
domain

The type of the process performing this action.

No
rpm_read_script_tmp_files( domain )
Summary

read, RPM script temporary files.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
rpm_role_transition( source_role )
Summary

Transition to system_r when execute an rpm script

Description

Execute rpm script in a specified role

No interprocess communication (signals, pipes, etc.) is provided by this interface since the domains are not owned by this module.

Parameters
Parameter:Description:Optional:
source_role

Role to transition from.

No
rpm_run( domain , role , terminal )
Summary

Execute RPM programs in the RPM domain.

Parameters
Parameter:Description:Optional:
domain

The type of the process performing this action.

No
role

The role to allow the RPM domain.

No
terminal

The type of the terminal allow the RPM domain to use.

No
rpm_rw_pipes( domain )
Summary

Read and write an unnamed RPM pipe.

Parameters
Parameter:Description:Optional:
domain

The type of the process performing this action.

No
rpm_rw_tmp_files( domain )
Summary

allow domain to read, write RPM tmp files

Parameters
Parameter:Description:Optional:
domain

Domain to not audit.

No
rpm_rw_tmpfs_files( domain )
Summary

Read/write rpm tmpfs files.

Description

Read/write rpm tmpfs files.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
rpm_script_dbus_chat( domain )
Summary

Send and receive messages from rpm_script over dbus.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
rpm_transition_script( domain )
Summary

Allow application to transition to rpm_script domain.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
rpm_use_fds( domain )
Summary

Inherit and use file descriptors from RPM.

Parameters
Parameter:Description:Optional:
domain

The type of the process performing this action.

No
rpm_use_script_fds( domain )
Summary

Inherit and use file descriptors from RPM scripts.

Parameters
Parameter:Description:Optional:
domain

The type of the process performing this action.

No
Return