LinuxGuruz
  • Last 5 Forum Topics
    Replies
    Views
    Last post


The Web Only This Site
  • BOOKMARK

  • ADD TO FAVORITES

  • REFERENCES


  • MARC

    Mailing list ARChives
    - Search by -
     Subjects
     Authors
     Bodies





    FOLDOC

    Computing Dictionary




  • Text Link Ads






  • LINUX man pages
  • Linux Man Page Viewer


    The following form allows you to view linux man pages.

    Command:

    avc_open

    
    
    
    

    SYNOPSIS

           #include <selinux/selinux.h>
    
           #include <selinux/avc.h>
    
           int avc_open(struct selinux_opt *options, unsigned nopt);
    
           void avc_destroy(void);
    
           int avc_reset(void);
    
           void avc_cleanup(void);
    
    
    

    DESCRIPTION

           avc_open initializes the userspace AVC and must be  called  before  any
           other AVC operation can be performed.
    
           avc_destroy  destroys  the  userspace  AVC, freeing all internal memory
           structures.  After this call has been made,  avc_open  must  be  called
           again before any AVC operations can be performed.
    
           avc_reset  flushes  the  userspace AVC, causing it to forget any cached
           access decisions.  The userspace AVC normally calls this function auto-
           matically when needed, see NETLINK NOTIFICATION below.
    
           avc_cleanup  attempts  to  free unused memory within the userspace AVC,
           but does not flush any cached access decisions.   Under  normal  opera-
           tion, calling this function should not be necessary.
    
    
    

    OPTIONS

           The  userspace  AVC obeys callbacks set via selinux_set_callback(3), in
           particular the logging and audit callbacks.
    
           The options which may be passed to avc_open include the following:
    
           AVC_OPT_SETENFORCE
                  This option forces the userspace AVC into enforcing mode if  the
                  option value is non-NULL; permissive mode otherwise.  The system
                  enforcing mode will be ignored.
    
    
    

    NETLINK NOTIFICATION

           Beginning with version 2.6.4, the Linux kernel supports SELinux  status
           change  notification  via  netlink.   Two  message  types are currently
           implemented, indicating changes to the enforcing mode and to the loaded
           policy  in  the  kernel,  respectively.   The userspace AVC listens for
           these messages and takes the appropriate action, modifying the behavior
           of  avc_has_perm(3)  to reflect the current enforcing mode and flushing
           the cache on receipt of a policy load notification.  Audit messages are
           avc_add_callback(3), selinux_set_callback(3), security_compute_av(3)
    
                                      12 Jun 2008                      avc_open(3)
    
  • MORE RESOURCE


  • Linux

    The Distributions





    Linux

    The Software





    Linux

    The News



  • MARKETING






  • Toll Free

webmaster@linuxguruz.com
Copyright © 1999 - 2016 by LinuxGuruz