selinux January 2010 archive
Main Archive Page > Month Archives  > selinux archives
selinux: access decision API

access decision API

From: michel m <michel.mcgregor_at_nospam>
Date: Tue Jan 26 2010 - 21:20:44 GMT
To: selinux <selinux@tycho.nsa.gov>


Hi,
I have some data in userspace that I am keeping its security context.but as I want to write this data on some file in OS, I need to consult with security server if such data is allowed to be written on the file. I would like to know if there is any API that let me do such a scenario, that is input source and destination security context (both of them security context,not a domain context) and returns access decision. I am familiar with avc_has_perm(3), but seems to be not correct solution because it gets domain context as the first argument.

Best regards. -- This message was distributed to subscribers of the selinux mailing list. If you no longer wish to subscribe, send mail to majordomo@tycho.nsa.gov with the words "unsubscribe selinux" without quotes as the message.