Home Man
Search
Today's Posts
Register

Linux & Unix Commands - Search Man Pages

CentOS 7.0 - man page for getkeycreatecon (centos section 3)

getkeycreatecon(3)			      SELinux API documentation 			   getkeycreatecon(3)

NAME
getkeycreatecon, setkeycreatecon - get or set the SELinux security context used for creating a new kernel keyrings
SYNOPSIS
#include <selinux/selinux.h> int getkeycreatecon(security_context_t *con); int getkeycreatecon_raw(security_context_t *con); int setkeycreatecon(security_context_t context); int setkeycreatecon_raw(security_context_t context);
DESCRIPTION
getkeycreatecon() retrieves the context used for creating a new kernel keyring. This returned context should be freed with freecon(3) if non-NULL. getkeycreatecon() sets *con to NULL if no keycreate context has been explicitly set by the program (i.e. using the default policy behavior). setkeycreatecon() sets the context used for creating a new kernel keyring. NULL can be passed to setkeycre- atecon() to reset to the default policy behavior. The keycreate context is automatically reset after the next execve(2), so a program doesn't need to explicitly sanitize it upon startup. setkeycreatecon() can be applied prior to library functions that internally perform an file creation, in order to set an file context on the objects. getkeycreatecon_raw() and setkeycreatecon_raw() behave identically to their non-raw counterparts but do not perform context translation. Note: Signal handlers that perform a setkeycreatecon() must take care to save, reset, and restore the keycre- ate context to avoid unexpected behavior. Note: Contexts are thread specific.
RETURN VALUE
On error -1 is returned. On success 0 is returned.
SEE ALSO
selinux(8), freecon(3), getcon(3), getexeccon(3) dwalsh@redhat.com 9 September 2008 getkeycreatecon(3)


All times are GMT -4. The time now is 06:52 PM.

Unix & Linux Forums Content Copyrightę1993-2018. All Rights Reserved.
UNIX.COM Login
Username:
Password:  
Show Password