Struct selinux::context_restore::RestoreFlags[][src]

pub struct RestoreFlags { /* fields omitted */ }
Expand description

Flags controlling relabeling operations.

Implementations

Force the checking of labels even if the stored SHA1 digest matches the specfile entries SHA1 digest.

The specfile entries digest will be written to the security.sehash extended attribute once relabeling has been completed successfully provided the NO_CHANGE flag has not been set.

Don’t change any file labels (passive check) or update the digest in the security.sehash extended attribute.

If set, reset the files label to match the default spec file context. If not set only reset the files “type” component of the context to match the default spec file context.

Change file and directory labels recursively (descend directories) and if successful write an SHA1 digest of the spec file entries to an extended attribute.

Log file label changes.

Note that if VERBOSE and PROGRESS flags are set, then PROGRESS will take precedence.

Show progress by outputting the number of files in 1k blocks processed to stdout.

If the MASS_RELABEL flag is also set then the approximate percentage complete will be shown.

Convert passed-in path name to the canonical path name using realpath().

Prevent descending into directories that have a different device number than the path name entry from which the descent began.

Attempt to add an association between an inode and a specification. If there is already an association for the inode and it conflicts with the specification, then use the last matching specification.

Abort on errors during the file tree walk.

Log any label changes to syslog().

Log what spec file context matched each file.

[src]

pub const IGNORE_NO_ENTRY: RestoreFlags

Ignore files that do not exist.

Do not read /proc/mounts to obtain a list of non-seclabel mounts to be excluded from relabeling checks.

Setting IGNORE_MOUNTS is useful where there is a non-seclabel fs mounted with a seclabel fs mounted on a directory below this.

Generally set when relabeling the entire OS, that will then show the approximate percentage complete.

The PROGRESS flag must also be set.

Do not check or update any extended attribute security.sehash entries.

This flag is supported only by libselinux version 3.0 or later.

Treat conflicting specifications, such as where two hardlinks for the same inode have different contexts, as errors.

This flag is supported only by libselinux version 3.1 or later.

Returns an empty set of flags

Returns the set containing all flags.

Returns the raw value of the flags currently stored.

Convert from underlying bit representation, unless that representation contains bits that do not correspond to a flag.

Convert from underlying bit representation, dropping any bits that do not correspond to flags.

Convert from underlying bit representation, preserving all bits (even those not corresponding to a defined flag).

Returns true if no flags are currently stored.

Returns true if all flags are currently set.

Returns true if there are flags common to both self and other.

Returns true all of the flags in other are contained within self.

Inserts the specified flags in-place.

Removes the specified flags in-place.

Toggles the specified flags in-place.

Inserts or removes the specified flags depending on the passed value.

Trait Implementations

Formats the value using the given formatter.

Returns the intersection between the two sets of flags.

The resulting type after applying the & operator.

Disables all flags disabled in the set.

Returns the union of the two sets of flags.

The resulting type after applying the | operator.

Adds the set of flags.

Returns the left flags, but with all the right flags toggled.

The resulting type after applying the ^ operator.

Toggles the set of flags.

Returns a copy of the value. Read more

Performs copy-assignment from source. Read more

Formats the value using the given formatter. Read more

Extends a collection with the contents of an iterator. Read more

🔬 This is a nightly-only experimental API. (extend_one)

Extends a collection with exactly one element.

🔬 This is a nightly-only experimental API. (extend_one)

Reserves capacity in a collection for the given number of additional elements. Read more

Creates a value from an iterator. Read more

Feeds this value into the given Hasher. Read more

Feeds a slice of this type into the given Hasher. Read more

Formats the value using the given formatter.

Returns the complement of this set of flags.

The resulting type after applying the ! operator.

Formats the value using the given formatter.

This method returns an Ordering between self and other. Read more

Compares and returns the maximum of two values. Read more

Compares and returns the minimum of two values. Read more

Restrict a value to a certain interval. Read more

This method tests for self and other values to be equal, and is used by ==. Read more

This method tests for !=.

This method returns an ordering between self and other values if one exists. Read more

This method tests less than (for self and other) and is used by the < operator. Read more

This method tests less than or equal to (for self and other) and is used by the <= operator. Read more

This method tests greater than (for self and other) and is used by the > operator. Read more

This method tests greater than or equal to (for self and other) and is used by the >= operator. Read more

Returns the set difference of the two sets of flags.

The resulting type after applying the - operator.

Disables all flags enabled in the set.

Formats the value using the given formatter.

Auto Trait Implementations

Blanket Implementations

Gets the TypeId of self. Read more

Immutably borrows from an owned value. Read more

Mutably borrows from an owned value. Read more

Performs the conversion.

Performs the conversion.

The resulting type after obtaining ownership.

Creates owned data from borrowed data, usually by cloning. Read more

🔬 This is a nightly-only experimental API. (toowned_clone_into)

recently added

Uses borrowed data to replace owned data, usually by cloning. Read more

The type returned in the event of a conversion error.

Performs the conversion.

The type returned in the event of a conversion error.

Performs the conversion.