<html> <head> <title> Security Enhanced Linux Reference Policy </title> <style type="text/css" media="all">@import "style.css";</style> </head> <body> <div id="Header">Security Enhanced Linux Reference Policy</div> <div id='Menu'> <a href="admin.html">+ admin</a></br/> <div id='subitem'> </div> <a href="apps.html">+ apps</a></br/> <div id='subitem'> </div> <a href="contrib.html">+ contrib</a></br/> <div id='subitem'> </div> <a href="kernel.html">+ kernel</a></br/> <div id='subitem'> </div> <a href="roles.html">+ roles</a></br/> <div id='subitem'> </div> <a href="services.html">+ services</a></br/> <div id='subitem'> - <a href='services_postgresql.html'> postgresql</a><br/> - <a href='services_ssh.html'> ssh</a><br/> - <a href='services_xserver.html'> xserver</a><br/> </div> <a href="system.html">+ system</a></br/> <div id='subitem'> </div> <br/><p/> <a href="global_booleans.html">* Global Booleans </a> <br/><p/> <a href="global_tunables.html">* Global Tunables </a> <p/><br/><p/> <a href="index.html">* Layer Index</a> <br/><p/> <a href="booleans.html">* Boolean Index</a> <br/><p/> <a href="tunables.html">* Tunable Index</a> <br/><p/> <a href="interfaces.html">* Interface Index</a> <br/><p/> <a href="templates.html">* Template Index</a> </div> <div id="Content"> <a name="top":></a> <h1>Layer: services</h1><p/> <h2>Module: xserver</h2><p/> <a href=#tunables>Tunables</a> <a href=#interfaces>Interfaces</a> <a href=#templates>Templates</a> <h3>Description:</h3> <p><p>X Windows Server</p></p> <hr> <a name="tunables"></a> <h3>Tunables: </h3> <a name="link_selinuxuser_direct_dri_enabled"></a> <div id="interface"> <div id="codeblock">selinuxuser_direct_dri_enabled</div> <div id="description"> <h5>Default value</h5> <p>false</p> <h5>Description</h5> <p> </p><p> Allow regular users direct dri device access </p><p> </p> </div></div> <a name="link_xdm_bind_vnc_tcp_port"></a> <div id="interface"> <div id="codeblock">xdm_bind_vnc_tcp_port</div> <div id="description"> <h5>Default value</h5> <p>false</p> <h5>Description</h5> <p> </p><p> Allows xdm_t to bind on vnc_port_t(5910) </p><p> </p> </div></div> <a name="link_xdm_exec_bootloader"></a> <div id="interface"> <div id="codeblock">xdm_exec_bootloader</div> <div id="description"> <h5>Default value</h5> <p>false</p> <h5>Description</h5> <p> </p><p> Allow the graphical login program to execute bootloader </p><p> </p> </div></div> <a name="link_xdm_sysadm_login"></a> <div id="interface"> <div id="codeblock">xdm_sysadm_login</div> <div id="description"> <h5>Default value</h5> <p>false</p> <h5>Description</h5> <p> </p><p> Allow the graphical login program to login directly as sysadm_r:sysadm_t </p><p> </p> </div></div> <a name="link_xdm_write_home"></a> <div id="interface"> <div id="codeblock">xdm_write_home</div> <div id="description"> <h5>Default value</h5> <p>false</p> <h5>Description</h5> <p> </p><p> Allow the graphical login program to create files in HOME dirs as xdm_home_t. </p><p> </p> </div></div> <a name="link_xserver_clients_write_xshm"></a> <div id="interface"> <div id="codeblock">xserver_clients_write_xshm</div> <div id="description"> <h5>Default value</h5> <p>false</p> <h5>Description</h5> <p> </p><p> Allows clients to write to the X server shared memory segments. </p><p> </p> </div></div> <a name="link_xserver_execmem"></a> <div id="interface"> <div id="codeblock">xserver_execmem</div> <div id="description"> <h5>Default value</h5> <p>false</p> <h5>Description</h5> <p> </p><p> Allows XServer to execute writable memory </p><p> </p> </div></div> <a name="link_xserver_object_manager"></a> <div id="interface"> <div id="codeblock">xserver_object_manager</div> <div id="description"> <h5>Default value</h5> <p>false</p> <h5>Description</h5> <p> </p><p> Support X userspace object manager </p><p> </p> </div></div> <a href=#top>Return</a> <a name="interfaces"></a> <h3>Interfaces: </h3> <a name="link_xserver_admin_home_dir_filetrans_xauth"></a> <div id="interface"> <div id="codeblock"> <b>xserver_admin_home_dir_filetrans_xauth</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create a Xauthority file in the admin home directory. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_append_xdm_home_files"></a> <div id="interface"> <div id="codeblock"> <b>xserver_append_xdm_home_files</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> append to .xsession-errors file </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit </p> </td></tr> </table> </div> </div> <a name="link_xserver_append_xdm_stream_socket"></a> <div id="interface"> <div id="codeblock"> <b>xserver_append_xdm_stream_socket</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Allow domain to append XDM unix domain stream socket. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_append_xdm_tmp_files"></a> <div id="interface"> <div id="codeblock"> <b>xserver_append_xdm_tmp_files</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Allow append the xdm tmp files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit </p> </td></tr> </table> </div> </div> <a name="link_xserver_create_xdm_tmp_sockets"></a> <div id="interface"> <div id="codeblock"> <b>xserver_create_xdm_tmp_sockets</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create a named socket in a XDM temporary directory. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dbus_chat"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dbus_chat</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Send and receive messages from xdm over dbus. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dbus_chat_xdm"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dbus_chat_xdm</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Send and receive messages from xdm over dbus. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_delete_log"></a> <div id="interface"> <div id="codeblock"> <b>xserver_delete_log</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Delete X server log files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_domtrans"></a> <div id="interface"> <div id="codeblock"> <b>xserver_domtrans</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Execute the X server in the X server domain. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed to transition. </p> </td></tr> </table> </div> </div> <a name="link_xserver_domtrans_xauth"></a> <div id="interface"> <div id="codeblock"> <b>xserver_domtrans_xauth</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Transition to the Xauthority domain. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed to transition. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_append_xdm_home_files"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_append_xdm_home_files</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Dontaudit append to .xsession-errors file </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_exec_xauth"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_exec_xauth</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Dontaudit exec of Xauthority program. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_getattr_xdm_tmp_sockets"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_getattr_xdm_tmp_sockets</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Do not audit attempts to get the attributes of xdm temporary named sockets. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_read_xdm_pid"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_read_xdm_pid</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Dontaudit Read XDM pid files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_read_xdm_tmp_files"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_read_xdm_tmp_files</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Do not audit attempts to read xdm temporary files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_rw_stream_sockets"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_rw_stream_sockets</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Do not audit attempts to read and write X server unix domain stream sockets. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_rw_tcp_sockets"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_rw_tcp_sockets</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Do not audit attempts to read and write to X server sockets. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_rw_xdm_pipes"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_rw_xdm_pipes</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Do not audit attempts to read and write XDM unnamed pipes. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_search_log"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_search_log</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Dontaudit search ssh home directory </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_stream_connect"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_stream_connect</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Dontaudit attempts to connect to xserver over a unix stream socket. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_use_xdm_fds"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_use_xdm_fds</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Do not audit attempts to inherit XDM file descriptors. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_write_log"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_write_log</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Do not audit attempts to write the X server log files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_xdm_rw_stream_sockets"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_xdm_rw_stream_sockets</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Do not audit attempts to read and write xdm unix domain stream sockets. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_xdm_tmp_dirs"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_xdm_tmp_dirs</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Dont audit attempts to set the attributes of XDM temporary directories. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dontaudit_xkb_libs_access"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dontaudit_xkb_libs_access</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> dontaudit access checks X keyboard extension libraries. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_dri_domain"></a> <div id="interface"> <div id="codeblock"> <b>xserver_dri_domain</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Domain wants to use direct io devices </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_entry_type"></a> <div id="interface"> <div id="codeblock"> <b>xserver_entry_type</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Make an X executable an entrypoint for the specified domain. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> The domain for which the shell is an entrypoint. </p> </td></tr> </table> </div> </div> <a name="link_xserver_exec"></a> <div id="interface"> <div id="codeblock"> <b>xserver_exec</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Allow execute the X server. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed to transition. </p> </td></tr> </table> </div> </div> <a name="link_xserver_exec_pid"></a> <div id="interface"> <div id="codeblock"> <b>xserver_exec_pid</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Execute xserver files created in /var/run </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_exec_xauth"></a> <div id="interface"> <div id="codeblock"> <b>xserver_exec_xauth</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Allow exec of Xauthority program.. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed to transition. </p> </td></tr> </table> </div> </div> <a name="link_xserver_filetrans_admin_home_content"></a> <div id="interface"> <div id="codeblock"> <b>xserver_filetrans_admin_home_content</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create xserver content in admin home directory with a named file transition. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_filetrans_fonts_cache_home_content"></a> <div id="interface"> <div id="codeblock"> <b>xserver_filetrans_fonts_cache_home_content</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Transition to xserver .fontconfig named content </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_filetrans_home_content"></a> <div id="interface"> <div id="codeblock"> <b>xserver_filetrans_home_content</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Transition to xserver named content </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_getattr_log"></a> <div id="interface"> <div id="codeblock"> <b>xserver_getattr_log</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Get the attributes of X server logs. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_kill"></a> <div id="interface"> <div id="codeblock"> <b>xserver_kill</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Kill X servers </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_manage_config"></a> <div id="interface"> <div id="codeblock"> <b>xserver_manage_config</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Manage xserver configuration files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_manage_core_devices"></a> <div id="interface"> <div id="codeblock"> <b>xserver_manage_core_devices</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Interface to provide X object permissions on a given X server to an X client domain. Gives the domain permission to read the virtual core keyboard and virtual core pointer devices. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_manage_home_fonts"></a> <div id="interface"> <div id="codeblock"> <b>xserver_manage_home_fonts</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Manage user homedir fonts. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_manage_user_fonts_dir"></a> <div id="interface"> <div id="codeblock"> <b>xserver_manage_user_fonts_dir</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Manage user fonts dir. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_manage_user_xauth"></a> <div id="interface"> <div id="codeblock"> <b>xserver_manage_user_xauth</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Manage all users .Xauthority. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_manage_xdm_etc_files"></a> <div id="interface"> <div id="codeblock"> <b>xserver_manage_xdm_etc_files</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Manage xdm config files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit </p> </td></tr> </table> </div> </div> <a name="link_xserver_manage_xdm_spool_files"></a> <div id="interface"> <div id="codeblock"> <b>xserver_manage_xdm_spool_files</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create, read, write, and delete xdm_spool files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_manage_xdm_tmp_dirs"></a> <div id="interface"> <div id="codeblock"> <b>xserver_manage_xdm_tmp_dirs</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create, read, write, and delete xdm temporary dirs. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_manage_xdm_tmp_files"></a> <div id="interface"> <div id="codeblock"> <b>xserver_manage_xdm_tmp_files</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create, read, write, and delete xdm temporary files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_manage_xkb_libs"></a> <div id="interface"> <div id="codeblock"> <b>xserver_manage_xkb_libs</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Manage X keyboard extension libraries. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_non_drawing_client"></a> <div id="interface"> <div id="codeblock"> <b>xserver_non_drawing_client</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create non-drawing client sessions on an X server. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_config"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_config</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read xserver configuration files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_home_fonts"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_home_fonts</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read user homedir fonts. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_inherited_xdm_lib_files"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_inherited_xdm_lib_files</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read inherited XDM var lib files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_log"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_log</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Allow domain to read X server logs. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_pid"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_pid</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read xserver files created in /var/run </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_state_xdm"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_state_xdm</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read XDM state files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_tmp_files"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_tmp_files</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read X server temporary files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_user_iceauth"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_user_iceauth</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read a user Iceauthority domain. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_user_xauth"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_user_xauth</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read all users .Xauthority. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_xdm_etc_files"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_xdm_etc_files</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read xdm config files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_xdm_home_files"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_xdm_home_files</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read XDM files in user home directories. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_xdm_lib_files"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_xdm_lib_files</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read XDM var lib files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_xdm_pid"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_xdm_pid</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read XDM pid files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_xdm_rw_config"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_xdm_rw_config</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read xdm-writable configuration files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_xdm_state"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_xdm_state</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read xdm process state files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_xdm_tmp_files"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_xdm_tmp_files</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read xdm temporary files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_read_xkb_libs"></a> <div id="interface"> <div id="codeblock"> <b>xserver_read_xkb_libs</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read X keyboard extension libraries. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_relabel_xdm_tmp_dirs"></a> <div id="interface"> <div id="codeblock"> <b>xserver_relabel_xdm_tmp_dirs</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create, read, write, and delete xdm temporary dirs. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_restricted_role"></a> <div id="interface"> <div id="codeblock"> <b>xserver_restricted_role</b>( role , domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Rules required for using the X Windows server and environment, for restricted users. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> role </td><td> <p> Role allowed access. </p> </td></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_ro_session"></a> <div id="interface"> <div id="codeblock"> <b>xserver_ro_session</b>( domain , tmpfs_type )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create sessions on the X server, with read-only access to the X server shared memory segments. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> <tr><td> tmpfs_type </td><td> <p> The type of the domain SYSV tmpfs files. </p> </td></tr> </table> </div> </div> <a name="link_xserver_role"></a> <div id="interface"> <div id="codeblock"> <b>xserver_role</b>( role , domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Rules required for using the X Windows server and environment. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> role </td><td> <p> Role allowed access. </p> </td></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_run"></a> <div id="interface"> <div id="codeblock"> <b>xserver_run</b>( domain , role )<br> </div> <div id="description"> <h5>Summary</h5> <p> Execute xsever in the xserver domain, and allow the specified role the xserver domain. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> <tr><td> role </td><td> <p> The role to be allowed the xserver domain. </p> </td></tr> </table> </div> </div> <a name="link_xserver_run_xauth"></a> <div id="interface"> <div id="codeblock"> <b>xserver_run_xauth</b>( domain , role )<br> </div> <div id="description"> <h5>Summary</h5> <p> Execute xsever in the xserver domain, and allow the specified role the xserver domain. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> <tr><td> role </td><td> <p> The role to be allowed the xserver domain. </p> </td></tr> </table> </div> </div> <a name="link_xserver_rw_console"></a> <div id="interface"> <div id="codeblock"> <b>xserver_rw_console</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read and write the X windows console named pipe. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_rw_inherited_user_fonts"></a> <div id="interface"> <div id="codeblock"> <b>xserver_rw_inherited_user_fonts</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read/write inherited user homedir fonts. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_rw_session"></a> <div id="interface"> <div id="codeblock"> <b>xserver_rw_session</b>( domain , tmpfs_type )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create sessions on the X server, with read and write access to the X server shared memory segments. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> <tr><td> tmpfs_type </td><td> <p> The type of the domain SYSV tmpfs files. </p> </td></tr> </table> </div> </div> <a name="link_xserver_rw_shm"></a> <div id="interface"> <div id="codeblock"> <b>xserver_rw_shm</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read and write X server Sys V Shared memory segments. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_rw_xdm_keys"></a> <div id="interface"> <div id="codeblock"> <b>xserver_rw_xdm_keys</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Manage keys for xdm. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_rw_xdm_pipes"></a> <div id="interface"> <div id="codeblock"> <b>xserver_rw_xdm_pipes</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read and write XDM unnamed pipes. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_rw_xdm_tmp_files"></a> <div id="interface"> <div id="codeblock"> <b>xserver_rw_xdm_tmp_files</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read write xdm temporary files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_search_xdm_lib"></a> <div id="interface"> <div id="codeblock"> <b>xserver_search_xdm_lib</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Search XDM var lib dirs. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_search_xdm_tmp_dirs"></a> <div id="interface"> <div id="codeblock"> <b>xserver_search_xdm_tmp_dirs</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Search XDM temporary directories. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_setattr_console_pipes"></a> <div id="interface"> <div id="codeblock"> <b>xserver_setattr_console_pipes</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Set the attributes of the X windows console named pipes. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_setattr_xdm_tmp_dirs"></a> <div id="interface"> <div id="codeblock"> <b>xserver_setattr_xdm_tmp_dirs</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Set the attributes of XDM temporary directories. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_signal"></a> <div id="interface"> <div id="codeblock"> <b>xserver_signal</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Signal X servers </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_stream_connect"></a> <div id="interface"> <div id="codeblock"> <b>xserver_stream_connect</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Connect to the X server over a unix domain stream socket. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_stream_connect_xdm"></a> <div id="interface"> <div id="codeblock"> <b>xserver_stream_connect_xdm</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Connect to XDM over a unix domain stream socket. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_unconfined"></a> <div id="interface"> <div id="codeblock"> <b>xserver_unconfined</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Interface to provide X object permissions on a given X server to an X client domain. Gives the domain complete control over the display. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_use_all_users_fonts"></a> <div id="interface"> <div id="codeblock"> <b>xserver_use_all_users_fonts</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read all users fonts, user font configurations, and manage all users font caches. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_use_user_fonts"></a> <div id="interface"> <div id="codeblock"> <b>xserver_use_user_fonts</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Read user fonts, user font configuration, and manage the user font cache. </p> <h5>Description</h5> <p> </p><p> Read user fonts, user font configuration, and manage the user font cache. </p><p> </p><p> This is a templated interface, and should only be called from a per-userdomain template. </p><p> </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_use_xdm_fds"></a> <div id="interface"> <div id="codeblock"> <b>xserver_use_xdm_fds</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Use file descriptors for xdm. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_user_client"></a> <div id="interface"> <div id="codeblock"> <b>xserver_user_client</b>( domain , tmpfs_type )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create full client sessions on a user X server. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> <tr><td> tmpfs_type </td><td> <p> The type of the domain SYSV tmpfs files. </p> </td></tr> </table> </div> </div> <a name="link_xserver_user_home_dir_filetrans_user_xauth"></a> <div id="interface"> <div id="codeblock"> <b>xserver_user_home_dir_filetrans_user_xauth</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create a Xauthority file in the user home directory. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_write_pid"></a> <div id="interface"> <div id="codeblock"> <b>xserver_write_pid</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Write xserver files created in /var/run </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_xdm_append_log"></a> <div id="interface"> <div id="codeblock"> <b>xserver_xdm_append_log</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Allow append the xdm log files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit </p> </td></tr> </table> </div> </div> <a name="link_xserver_xdm_ioctl_log"></a> <div id="interface"> <div id="codeblock"> <b>xserver_xdm_ioctl_log</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Allow ioctl the xdm log files. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain to not audit </p> </td></tr> </table> </div> </div> <a name="link_xserver_xdm_manage_spool"></a> <div id="interface"> <div id="codeblock"> <b>xserver_xdm_manage_spool</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Manage the xdm_spool files </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_xdm_read_spool"></a> <div id="interface"> <div id="codeblock"> <b>xserver_xdm_read_spool</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Allow read the xdm_spool files </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_xdm_search_spool"></a> <div id="interface"> <div id="codeblock"> <b>xserver_xdm_search_spool</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Allow search the xdm_spool files </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_xdm_tmp_filetrans"></a> <div id="interface"> <div id="codeblock"> <b>xserver_xdm_tmp_filetrans</b>( domain , private_type , object_class , name )<br> </div> <div id="description"> <h5>Summary</h5> <p> Create objects in a xdm temporary directory with an automatic type transition to a specified private type. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed access. </p> </td></tr> <tr><td> private_type </td><td> <p> The type of the object to create. </p> </td></tr> <tr><td> object_class </td><td> <p> The class of the object to be created. </p> </td></tr> <tr><td> name </td><td> <p> The name of the object being created. </p> </td></tr> </table> </div> </div> <a name="link_xserver_xsession_entry_type"></a> <div id="interface"> <div id="codeblock"> <b>xserver_xsession_entry_type</b>( domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Make an X session script an entrypoint for the specified domain. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> The domain for which the shell is an entrypoint. </p> </td></tr> </table> </div> </div> <a name="link_xserver_xsession_spec_domtrans"></a> <div id="interface"> <div id="codeblock"> <b>xserver_xsession_spec_domtrans</b>( domain , target_domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Execute an X session in the target domain. This is an explicit transition, requiring the caller to use setexeccon(). </p> <h5>Description</h5> <p> </p><p> Execute an Xsession in the target domain. This is an explicit transition, requiring the caller to use setexeccon(). </p><p> </p><p> No interprocess communication (signals, pipes, etc.) is provided by this interface since the domains are not owned by this module. </p><p> </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> domain </td><td> <p> Domain allowed to transition. </p> </td></tr> <tr><td> target_domain </td><td> <p> The type of the shell process. </p> </td></tr> </table> </div> </div> <a href=#top>Return</a> <a name="templates"></a> <h3>Templates: </h3> <a name="link_xserver_common_x_domain_template"></a> <div id="template"> <div id="codeblock"> <b>xserver_common_x_domain_template</b>( prefix , domain )<br> </div> <div id="description"> <h5>Summary</h5> <p> Interface to provide X object permissions on a given X server to an X client domain. Provides the minimal set required by a basic X client application. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> prefix </td><td> <p> The prefix of the X client domain (e.g., user is the prefix for user_t). </p> </td></tr> <tr><td> domain </td><td> <p> Client domain allowed access. </p> </td></tr> </table> </div> </div> <a name="link_xserver_object_types_template"></a> <div id="template"> <div id="codeblock"> <b>xserver_object_types_template</b>( prefix )<br> </div> <div id="description"> <h5>Summary</h5> <p> Template for creating the set of types used in an X windows domain. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> prefix </td><td> <p> The prefix of the X client domain (e.g., user is the prefix for user_t). </p> </td></tr> </table> </div> </div> <a name="link_xserver_user_x_domain_template"></a> <div id="template"> <div id="codeblock"> <b>xserver_user_x_domain_template</b>( prefix , domain , tmpfs_type )<br> </div> <div id="description"> <h5>Summary</h5> <p> Interface to provide X object permissions on a given X server to an X client domain. Provides the minimal set required by a basic X client application. </p> <h5>Parameters</h5> <table border="1" cellspacing="0" cellpadding="3" width="65%"> <tr><th >Parameter:</th><th >Description:</th></tr> <tr><td> prefix </td><td> <p> The prefix of the X client domain (e.g., user is the prefix for user_t). </p> </td></tr> <tr><td> domain </td><td> <p> Client domain allowed access. </p> </td></tr> <tr><td> tmpfs_type </td><td> <p> The type of the domain SYSV tmpfs files. </p> </td></tr> </table> </div> </div> <a href=#top>Return</a> </div> </body> </html>
