| Joshua Brindle | 13cd4c8 | 2008-08-19 15:30:36 -0400 | [diff] [blame^] | 1 | .TH "getexeccon" "3" "1 January 2004" "russell@coker.com.au" "SELinux API documentation" |
| 2 | .SH "NAME" |
| 3 | getexeccon, setexeccon \- get or set the SELinux security context used for executing a new process. |
| 4 | |
| 5 | rpm_execcon \- run a helper for rpm in an appropriate security context |
| 6 | |
| 7 | .SH "SYNOPSIS" |
| 8 | .B #include <selinux/selinux.h> |
| 9 | .sp |
| 10 | .BI "int getexeccon(security_context_t *" context ); |
| 11 | |
| 12 | .BI "int setexeccon(security_context_t "context ); |
| 13 | |
| 14 | .BI "int rpm_execcon(unsigned int " verified ", const char *" filename ", char *const " argv "[] , char *const " envp "[]); |
| 15 | |
| 16 | .SH "DESCRIPTION" |
| 17 | .B getexeccon |
| 18 | retrieves the context used for executing a new process. |
| 19 | This returned context should be freed with freecon if non-NULL. |
| 20 | getexeccon sets *con to NULL if no exec context has been explicitly |
| 21 | set by the program (i.e. using the default policy behavior). |
| 22 | |
| 23 | .B setexeccon |
| 24 | sets the context used for the next execve call. |
| 25 | NULL can be passed to |
| 26 | setexeccon to reset to the default policy behavior. |
| 27 | The exec context is automatically reset after the next execve, so a |
| 28 | program doesn't need to explicitly sanitize it upon startup. |
| 29 | |
| 30 | |
| 31 | setexeccon can be applied prior to library |
| 32 | functions that internally perform an execve, e.g. execl*, execv*, popen, |
| 33 | in order to set an exec context for that operation. |
| 34 | |
| 35 | |
| 36 | Note: Signal handlers that perform an execve must take care to |
| 37 | save, reset, and restore the exec context to avoid unexpected behavior. |
| 38 | |
| 39 | |
| 40 | .B rpm_execcon |
| 41 | runs a helper for rpm in an appropriate security context. The |
| 42 | verified parameter should contain the return code from the signature |
| 43 | verification (0 == ok, 1 == notfound, 2 == verifyfail, 3 == |
| 44 | nottrusted, 4 == nokey), although this information is not yet used by |
| 45 | the function. The function determines the proper security context for |
| 46 | the helper based on policy, sets the exec context accordingly, and |
| 47 | then executes the specified filename with the provided argument and |
| 48 | environment arrays. |
| 49 | |
| 50 | |
| 51 | .SH "RETURN VALUE" |
| 52 | On error -1 is returned. |
| 53 | |
| 54 | On success getexeccon and setexeccon returns 0. |
| 55 | rpm_execcon only returns upon errors, as it calls execve(2). |
| 56 | |
| 57 | .SH "SEE ALSO" |
| 58 | .BR selinux "(8), " freecon "(3), " getcon "(3)" |
| 59 | |
| 60 | |