selinux_file_context_cmp (3) - Linux Manuals

selinux_file_context_cmp: Compare two SELinux security contexts excluding the 'user' component

NAME

selinux_file_context_cmp - Compare two SELinux security contexts excluding the 'user' component

SYNOPSIS

#include <selinux/selinux.h>

int selinux_file_context_cmp(const char *a,

const char *b);

DESCRIPTION

selinux_file_context_cmp() compares two context strings excluding the user component with strcmp(3) as shown in the EXAMPLE section.

This is useful as for most object contexts, the user component is not relevant.

RETURN VALUE

The return values follow the strcmp(3) function, where:
0 if they are equal.
1 if a is greater than b
-1 if a is less than b

ERRORS

None.

NOTES

The contexts being compared do not specifically need to be file contexts.

EXAMPLE

If context a is:
user_u:user_r:user_t:s0

and context b is:

root:user_r:user_t:s0

then the actual strings compared are:

:user_r:user_t:s0 and :user_r:user_t:s0

Therefore they will match and selinux_file_context_cmp() will return zero.

SEE ALSO

selinux(8)

Pages related to selinux_file_context_cmp