Путеводитель по Руководству Linux

  User  |  Syst  |  Libr  |  Device  |  Files  |  Other  |  Admin  |  Head  |



   avc_context_to_sid    ( 3 )

получать и управлять идентификаторами безопасности SELinux (obtain and manipulate SELinux security ID's)

Имя (Name)

avc_context_to_sid, avc_sid_to_context, avc_get_initial_sid - obtain and manipulate SELinux security ID's


Синопсис (Synopsis)

#include <selinux/selinux.h> #include <selinux/avc.h>

int avc_context_to_sid(char *ctx, security_id_t *sid);

int avc_sid_to_context(security_id_t sid, char **ctx);

int avc_get_initial_sid(const char *name, security_id_t *sid);


Описание (Description)

Security ID's (SID's) are opaque representations of security contexts, managed by the userspace AVC.

avc_context_to_sid() returns a SID for the given context in the memory referenced by sid.

avc_sid_to_context() returns a copy of the context represented by sid in the memory referenced by ctx. The user must free the copy with freecon(3).

avc_get_initial_sid() returns a SID for the kernel initial security identifier specified by name.


Возвращаемое значение (Return value)

avc_context_to_sid() and avc_sid_to_context() return zero on success. On error, -1 is returned and errno is set appropriately.


Ошибки (Error)

ENOMEM An attempt to allocate memory failed.


Примечание (Note)

As of libselinux version 2.0.86, SID's are no longer reference counted. A SID will be valid from the time it is first obtained until the next call to avc_destroy(3). The sidget(3) and sidput(3) functions, formerly used to adjust the reference count, are no-ops and are deprecated.