set_matchpathcon_flags(3) — Linux manual page

NAME | SYNOPSIS | DESCRIPTION | RETURN VALUE | SEE ALSO | COLOPHON

set_matc...on_flags(3)  SELinux API documentation set_matc...on_flags(3)

NAME         top

       set_matchpathcon_flags, set_matchpathcon_invalidcon,
       set_matchpathcon_printf - set flags controlling the operation of
       matchpathcon or matchpathcon_index and configure the behaviour of
       validity checking and error displaying

SYNOPSIS         top

       #include <selinux/selinux.h>

       void set_matchpathcon_flags(unsigned int flags);

       void set_matchpathcon_invalidcon(int (*f)(const char *path,
       unsigned lineno, char *context));

       void set_matchpathcon_printf(void (*f)(const char *fmt, ...));

DESCRIPTION         top

       set_matchpathcon_flags() sets the flags controlling the operation
       of matchpathcon_init(3) and subsequently matchpathcon_index(3) or
       matchpathcon(3).  If the MATCHPATHCON_BASEONLY flag is set, then
       only the base file contexts configuration file will be processed,
       not any dynamically generated entries or local customizations.

       set_matchpathcon_invalidcon() sets the function used by
       matchpathcon_init(3) when checking the validity of a context in
       the file contexts configuration.  If not set, then this defaults
       to a test based on security_check_context(3), which checks
       validity against the active policy on a SELinux system.  This can
       be set to instead perform checking based on a binary policy file,
       e.g. using sepol_check_context(3), as is done by setfiles -c.
       The function is also responsible for reporting any such error,
       and may include the path and lineno in such error messages.

       set_matchpathcon_printf() sets the function used by
       matchpathcon_init(3) when displaying errors about the file
       contexts configuration.  If not set, then this defaults to
       fprintf(stderr, fmt, ...).  This can be set to redirect error
       reporting to a different destination.

RETURN VALUE         top

       Returns zero on success or -1 otherwise.

SEE ALSO         top

       selinux(8), matchpathcon(3), matchpathcon_index(3),
       set_matchpathcon_invalidcon(3), set_matchpathcon_printf(3),
       freecon(3), setfilecon(3), setfscreatecon(3)

COLOPHON         top

       This page is part of the selinux (Security-Enhanced Linux user-
       space libraries and tools) project.  Information about the
       project can be found at 
       ⟨https://github.com/SELinuxProject/selinux/wiki⟩.  If you have a
       bug report for this manual page, see
       ⟨https://github.com/SELinuxProject/selinux/wiki/Contributing⟩.
       This page was obtained from the project's upstream Git repository
       ⟨https://github.com/SELinuxProject/selinux⟩ on 2024-06-14.  (At
       that time, the date of the most recent commit that was found in
       the repository was 2023-05-11.)  If you discover any rendering
       problems in this HTML version of the page, or you believe there
       is a better or more up-to-date source for the page, or you have
       corrections or improvements to the information in this COLOPHON
       (which is not part of the original manual page), send a mail to
       man-pages@man7.org

sds@tycho.nsa.gov           21 November 2009      set_matc...on_flags(3)

Pages that refer to this page: matchpathcon(3)set_matchpathcon_flags(3)