HTML rendering created 2025-09-06 byMichael Kerrisk, author ofThe Linux Programming Interface. For details of in-depthLinux/UNIX system programming training courses that I teach, lookhere. Hosting byjambit GmbH. |  |
NAME |SYNOPSIS |DESCRIPTION |RETURN VALUE |ERRORS |AUTHOR |SEE ALSO |COLOPHON | |
avc_compute_create(3) SELinux API documentationavc_compute_create(3)avc_compute_create, avc_compute_member - obtain SELinux label for new object
#include <selinux/selinux.h>#include <selinux/avc.h>int avc_compute_create(security_id_tssid, security_id_ttsid,security_class_ttclass, security_id_t*newsid);int avc_compute_member(security_id_tssid, security_id_ttsid,security_class_ttclass, security_id_t*newsid);
avc_compute_create() is used to compute a SID to use for labeling a new object in a particular class based on a SID pair. This call is identical tosecurity_compute_create(), but does not require converting from userspace SID's to contexts and back again.avc_compute_member() is used to compute a SID to use for labeling a polyinstantiated object instance of a particular class based on a SID pair. This call is identical tosecurity_compute_member(), but does not require converting from userspace SID's to contexts and back again. These functions return a SID for the computed context in the memory referenced bysid.
On success, zero is returned. On error, -1 is returned anderrno is set appropriately.
EINVALThetclass and/or the security contexts referenced byssid andtsid are not recognized by the currently loaded policy.ENOMEMAn attempt to allocate memory failed.
Eamon Walsh <ewalsh@tycho.nsa.gov>
avc_init(3),avc_context_to_sid(3),security_compute_create(3),selinux(8)
This page is part of theselinux (Security-Enhanced Linux user- space libraries and tools) project. Information about the project can be found at ⟨https://github.com/SELinuxProject/selinux/wiki⟩. If you have a bug report for this manual page, see ⟨https://github.com/SELinuxProject/selinux/wiki/Contributing⟩. This page was obtained from the project's upstream Git repository ⟨https://github.com/SELinuxProject/selinux⟩ on 2025-08-11. (At that time, the date of the most recent commit that was found in the repository was 2025-08-04.) If you discover any rendering problems in this HTML version of the page, or you believe there is a better or more up-to-date source for the page, or you have corrections or improvements to the information in this COLOPHON (which isnot part of the original manual page), send a mail to man-pages@man7.org 30 Mar 2007avc_compute_create(3)HTML rendering created 2025-09-06 byMichael Kerrisk, author ofThe Linux Programming Interface. For details of in-depthLinux/UNIX system programming training courses that I teach, lookhere. Hosting byjambit GmbH. | |