X Window Managers.
false
Grant the window manager domains write access to xdg data
Create a domain for applications that are launched by the window manager.
Create a domain for applications that are launched by the window manager (implying a domain transition). Typically these are graphical applications that are run interactively.
The types will be made usable as a domain and file, making calls to domain_type() and files_type() redundant.
| Parameter: | Description: |
|---|---|
| target_domain |
Type to be used in the domain transition as the application domain. |
| entry_point |
Type of the program to be used as an entry point to this domain. |
| source_domain |
Type to be used as the source window manager domain. |
Do not audit attempts to execute files in temporary directories.
| Parameter: | Description: |
|---|---|
| domain |
Domain to not audit. |
Do not audit attempts to execute files in temporary filesystems.
| Parameter: | Description: |
|---|---|
| domain |
Domain to not audit. |
Execute wm in the caller domain.
| Parameter: | Description: |
|---|---|
| domain |
Domain allowed access. |
Send and receive messages from specified wm over dbus.
| Parameter: | Description: |
|---|---|
| role_prefix |
The prefix of the user domain (e.g., user is the prefix for user_t). |
| domain |
Domain allowed access. |
The role template for the wm module.
This template creates a derived domains which are used for window manager applications.
| Parameter: | Description: |
|---|---|
| role_prefix |
The prefix of the user role (e.g., user is the prefix for user_r). |
| user_domain |
User domain for the role. |
| user_exec_domain |
User exec domain for execute and transition access. |
| role |
Role allowed access |
Write wm unnamed pipes.
| Parameter: | Description: |
|---|---|
| role_prefix |
The prefix of the user domain (e.g., user is the prefix for user_t). |
| domain |
Domain allowed access. |