Next: About this document ...
Up: 3 Integrated permissions by
Previous: 3.8 Integrated permissions for
Contents
Table 127:
Option:Normal domain transition,This is allowed in domain_trans rule
| Object class |
Permission |
Domain |
Type |
| process |
transition |
from |
to |
| file |
entrypoint |
to |
entry |
| process |
sigchld |
to |
from |
| fifo_file |
append |
to |
from |
| |
getattr |
|
|
| |
ioctl |
|
|
| |
lock |
|
|
| |
read |
|
|
| |
write |
|
|
Table 128:
Option:Dynamic domain transition,This is allowed in domain_trans rule when entry point is not specified.
| Object class |
Permission |
Domain |
Type |
| process |
dyntransition |
from |
to |
| process |
setcurrent |
from |
self |
Table 129:
Option:File type transition,This is allowed in allow exclusive rule
| Object class |
Permission |
Domain |
Type |
| dir |
getattr |
from |
entry |
| |
ioctl |
|
|
| |
lock |
|
|
| |
read |
|
|
| |
search |
|
|
| |
write |
|
|
Next: About this document ...
Up: 3 Integrated permissions by
Previous: 3.8 Integrated permissions for
Contents
Yuichi Nakamura
2006-11-13