Section: SELinux API Documentation (3)
Updated: 15 November 2004
security_get_boolean_pending - routines for manipulating SELinux boolean values
int security_get_boolean_names(char ***names, int *len);
int security_get_boolean_pending(const char *name);
int security_get_boolean_active(const char *name);
int security_set_boolean(const char *name, int value);
int security_set_boolean_list(size_t boolcnt, SELboolean *boollist, int permanent);
The SELinux policy can include conditional rules that are enabled or
disabled based on the current values of a set of policy booleans.
These policy booleans allow runtime modification of the security
policy without having to load a new policy.
The SELinux API allows for a transaction based update. So you can
set several boolean values and then commit them all at once.
provides a list of boolean names, currently supported by the loaded policy.
returns the pending value for boolean or -1 on failure.
returns the active value for boolean or -1 on failure.
sets the pending value for boolean
saves a list of booleans in a single transaction. Note that the
flag is deprecated and should be set to zero.
commits all pending values for the booleans.
Where not otherwise stated, functions described in this manual page return
zero on success or -1 on error.
This manual page was written by Dan Walsh <email@example.com