sepol_genbools(3) SE Linux binary policy API documentation sepol_genbools(3)NAME
sepol_genbools - Rewrite a binary policy with different boolean settings
SYNOPSIS
#include <sepol/sepol.h>
int sepol_genbools(void *data, size_t len, char *boolpath);
int sepol_genbools_array(void *data, size_t len, char **names, int *values, int nel);
DESCRIPTION
sepol_genbools rewrites a binary policy stored in the memory region described by (data, len) to use the boolean settings specified in the
file named by boolpath. The boolean settings are specified by name=value lines where value may be 0 or false to disable or 1 or true to
enable. The binary policy is rewritten in place in memory.
sepol_genbools_array does likewise, but obtains the boolean settings from the parallel arrays (names, values) with nel elements each.
RETURN VALUE
Returns 0 on success or -1 otherwise, with errno set appropriately. An errno of ENOENT indicates that the boolean file did not exist. An
errno of EINVAL indicates that one or more booleans listed in the boolean file was undefined in the policy or had an invalid value speci-
fied; in this case, the binary policy is still rewritten but any invalid boolean settings are ignored.
sds@epoch.ncsc.mil 11 August 2004 sepol_genbools(3)
Check Out this Related Man Page
security_get_boolean_names(3) SELinux API Documentation security_get_boolean_names(3)NAME
security_load_booleans, security_set_boolean, security_commit_booleans, security_get_boolean_names, security_get_boolean_active, secu-
rity_get_boolean_pending - routines for manipulating SELinux boolean values
SYNOPSIS
#include <selinux/selinux.h>
int security_load_booleans(char *path);
int security_get_boolean_names(char ***names, int *len);
int security_get_boolean_pending(const char *name);
int security_get_boolean_active(const char *name);
int security_set_boolean(const char *name, int value);
int security_set_boolean_list(size_t boolcnt, SELboolean *boollist, int permanent);
int security_commit_booleans(void);
DESCRIPTION
The SELinux policy can include conditional rules that are enabled or disabled based on the current values of a set of policy booleans.
These policy booleans allow runtime modification of the security policy without having to load a new policy.
The SELinux API allows for a transaction based update. So you can set several boolean values and then commit them all at once.
security_load_booleans
loads policy boolean settings. Path may be NULL, in which case the booleans are loaded from the active policy boolean configuration file.
security_get_boolean_names
provides a list of boolean names, currently supported by the loaded policy.
security_get_boolean_pending
returns the pending value for boolean or -1 on failure.
security_get_boolean_active
returns the active value for boolean or -1 on failure.
security_set_boolean
sets the pending value for boolean
security_set_boolean_list
saves a list of booleans in a single transaction.
security_commit_booleans
commits all pending values for the booleans.
RETURN VALUE
Where not otherwise stated, functions described in this manual page return zero on success or -1 on error.
AUTHOR
This manual page was written by Dan Walsh <dwalsh@redhat.com>.
SEE ALSO selinux(8), getsebool(8), booleans(8), togglesebool(8)dwalsh@redhat.com 15 November 2004 security_get_boolean_names(3)
I have a huge matrix file containing some 1.5 million rows and 6000 columns. The matrix looks something like this:
1 2 3
4 5 6
7 8 9
3 4 5
I want to add all the numbers in the columns of this matrix and display the result to my stdout. This means that the numbers in the first column are:
... (2 Replies)
Hi,
Just trying to get to grips with sed and awk for some reporting for work and I need some assistance:
I have a file that lists policy names on the first line and then on the second line whether the policy is active or not.
Policy Name: Policy1
Active: yes
Policy... (8 Replies)
version info :
vi availabe with RHEL 5.4
I have a text file with 10,000 lines. I want to copy lines from 5000th line to 7000th and redirect to a file. Any idea how I can do this?
Note:
The above scenario is just an example. In my actual requirement, the file has 14 million lines and I want... (9 Replies)
Hi everyone,
I know the following questions are noobish questions but I am asking them because I am confused about the basics of history behind UNIX and LINUX.
Ok onto business, my questions are-:
Was/Is UNIX ever an open source operating system ?
If UNIX was... (21 Replies)
Hello,
I couldn't find an actual introduction thread, so I decided to just put this here.
I go by d0wngrade online. I have been programming in multiple languages for about 15+ years. I started with standard web design languages like HTML and CSS, but I then advanced from design to development... (2 Replies)
Hi guys...
The first active code line in AudioScope.sh is set -u .
This causes a complete exit if a variable is used/found but has not been allocated at the start of the program.
However, apart from writing code to do the task, is there a switch to to check which variables have been... (17 Replies)
Hi.
In thread https://www.unix.com/shell-programming-and-scripting/267833-grouping-counting.html rovf and I had a mini-discussion on grep and awk.
Here is a demo script that compares the awk and grep approaches for this single problem:
#!/usr/bin/env bash
# @(#) s2 Demonstrate group... (1 Reply)
Hello,
I have to fish out some specific columns from a file based on the header value. I have the list of columns I need in a different file. I thought I could read in the list of headers I need,
# file with header names of required columns in required order
headers_file=$2
# read contents... (11 Replies)
For those interested in installing dash shell on OSX Lion to help test POSIX compliancy of shell scripts, it is quite easy. I did it like this:
If you don't have gcc on your system:
0. Download and install the Command Line Tools for Xcode package from Sign In - Apple *
1. Download the dash... (2 Replies)
Hello and thanks in advance for any help anyone can offer me
I'm trying to learn the find command and thought I was understanding it... Apparently I was wrong. I was doing compound searches and I started getting weird results with the -size test. I was trying to do a search on a 1G file owned by... (14 Replies)
I have data of an excel files as given below,
file1
org1_1 1 1 2.5 100
org1_2 1 2 5.5 98
org1_3 1 3 7.2 88
file2
org2_1 1 1 2.5 100
org2_2 1 2 5.5 56
org2_3 1 3 7.2 70
I have multiple excel files as above shown.
I have to copy column 1, column 4 and paste into a new excel file as... (26 Replies)
Dear All,
Taking a break from Vue.js coding for the site, SEO and YT videos; and hopefully addressing some well deserved criticism from some here that I have been too focused on the visual aspects of the forums versus the substance and the community....
While the "current generation... (9 Replies)
Hi all...
Well guys and gals, I jumped in at the deep end and found things that PERL cannot do by default.
Many tricky terminal escape codes are not catered for so I had to create workarounds.
One thing I searched for was this:
Passing perl variable to shell command
AND, @Neo this was... (15 Replies)