3.1 Integrated permissions for file allow

Table 10: Option:s

Object class	Permission	Domain	Type
dir	read	domain	type
	search

Table 11: Option:r

Object class	Permission	Domain	Type
fifo_file	ioctl	domain	type
file	lock
lnk_file	read
sock_file
dir	ioctl	domain	type
	lock

Table 12: Option:x

Object class	Permission	Domain	Type
dir	execute	domain	type
fifo_file
file
lnk_file
sock_file
file	execute_no_trans	domain	type

Table 13: Option:w

Object class	Permission	Domain	Type
dir	append	domain	type
fifo_file	create
file	link
lnk_file	rename
sock_file	setattr
	unlink
	write
dir	reparent	domain	type
	rmdir

Table 14: Option:o

Object class	Permission	Domain	Type
fifo_file	write	domain	type
file
lnk_file
sock_file

Table 15: Option:a

Object class	Permission	Domain	Type
fifo_file	append	domain	type
file
lnk_file
sock_file

Table 16: Option:e

Object class	Permission	Domain	Type
dir	rename	domain	type
	reparent
	rmdir
	unlink
	write
fifo_file	rename	domain	type
file	unlink
lnk_file
sock_file

Table 17: Option:c

Object class	Permission	Domain	Type
dir	append	domain	type
	create
	link
	write
fifo_file	create	domain	type
file	link
lnk_file
sock_file

Table 18: Option:t

Object class	Permission	Domain	Type
dir	setattr	domain	type
fifo_file
file
lnk_file
sock_file

Table 19: Option:relabel,This is used intenally in allowpriv part_relabel

Object class	Permission	Domain	Type
blk_file	relabelfrom	domain	type
chr_file	relabelto
dir
fifo_file
file
lnk_file
sock_file

Table 20: Option:devcreate,This is used internally in allowpriv devcreate

Object class	Permission	Domain	Type
blk_file	create	domain	type
chr_file	link
	rename
	unlink

Table 21: Option:setattr,This is used internally in allowpriv setattr

Object class	Permission	Domain	Type
blk_file	setattr	domain	type
chr_file
dir
fifo_file
file
lnk_file
sock_file