selinux_file_context_verify - Online Linux Manual PageSection : 3
Updated : 08 March 2011
Source : SELinux API documentation
NAMEselinux_file_context_verify − Compare the SELinux security context on disk to the default security context required by the policy file contexts file
SYNOPSIS#include <selinux/selinux.h> int selinux_file_context_verify(const char *path, mode_t mode);
DESCRIPTIONselinux_file_context_verify() compares the context of the specified path that is held on disk (in the extended attribute), to the system default entry held in the file contexts series of files. The mode may be zero. Note that the two contexts are compared for "significant" differences (i.e. the user component of the contexts are ignored) as shown in the EXAMPLE section.
RETURN VALUEIf the contexts significantly match, 1 (one) is returned. If the contexts do not match 0 (zero) is returned and errno is set to either ENOENT or EINVAL for the reasons listed in the ERRORS section, or if errno = 0 then the contexts did not match. On failure −1 is returned and errno set appropriately.
ERRORSENOTSUP if extended attributes are not supported by the file system. ENOENT if there is no entry in the file contexts series of files or path does not exist. EINVAL if the entry in the file contexts series of files or path are invalid, or the returned context fails validation. ENOMEM if attempt to allocate memory failed.
FILESThe following configuration files (the file contexts series of files) supporting the active policy will be used (should they exist) to determine the path default context: contexts/files/file_contexts - This file must exist. contexts/files/file_contexts.local - If exists has local customizations. contexts/files/file_contexts.homedirs - If exists has users home directory customizations. contexts/files/file_contexts.subs - If exists has substitutions that are then applied to the 'in memory' version of the file contexts files.
EXAMPLEIf the files context is: unconfined_u:object_r:admin_home_t:s0 and the default context defined in the file contexts file is: system_u:object_r:admin_home_t:s0 then the actual strings compared are: :object_r:admin_home_t:s0 and :object_r:admin_home_t:s0 Therefore they will match and selinux_file_context_verify() will return 1.
SEE ALSOselinux(8)" 0
Johanes Gumabo
Data Size : 7,808 byte
man-selinux_file_context_verify.3Build : 2024-12-29, 07:25 :
Visitor Screen : x
Visitor Counter ( page / site ) : 3 / 259,707
Visitor ID : :
Visitor IP : 18.216.146.89 :
Visitor Provider : AMAZON-02 :
Provider Position ( lat x lon ) : 39.962500 x -83.006100 : x
Provider Accuracy Radius ( km ) : 1000 :
Provider City : Columbus :
Provider Province : Ohio , : ,
Provider Country : United States :
Provider Continent : North America :
Visitor Recorder : Version :
Visitor Recorder : Library :
Online Linux Manual Page : Version : Online Linux Manual Page - Fedora.40 - march=x86-64 - mtune=generic - 24.12.29
Online Linux Manual Page : Library : lib_c - 24.10.03 - march=x86-64 - mtune=generic - Fedora.40
Online Linux Manual Page : Library : lib_m - 24.10.03 - march=x86-64 - mtune=generic - Fedora.40
Data Base : Version : Online Linux Manual Page Database - 24.04.13 - march=x86-64 - mtune=generic - fedora-38
Data Base : Library : lib_c - 23.02.07 - march=x86-64 - mtune=generic - fedora.36
Very long time ago, I have the best tutor, Wenzel Svojanovsky . If someone knows the email address of Wenzel Svojanovsky , please send an email to johanes_gumabo@yahoo.co.id .
If error, please print screen and send to johanes_gumabo@yahoo.co.id
Under development. Support me via PayPal.