The domains subdirectory contains several subdirectories with a separate file containing the declarations and rules for each domain. Related domains are grouped together into each subdirectory, e.g. all domain definitions for system processes are in the domains/system subdirectory. The domains/every.te file contains rules that apply to every domain.
This section describes each domain defined in the configuration. This section begins by discussing rules that are applied to every domain. It then describes the domains defined for system processes. Domains for user programs are then discussed. The section then describes domains for user login sessions.