1 #ifndef _SEPOL_HANDLE_H_ 2 #define _SEPOL_HANDLE_H_ 3 4 struct sepol_handle; 5 typedef struct sepol_handle sepol_handle_t; 6 7 /* Create and return a sepol handle. */ 8 sepol_handle_t *sepol_handle_create(void); 9 10 /* Get whether or not dontaudits will be disabled, same values as 11 * specified by set_disable_dontaudit. This value reflects the state 12 * your system will be set to upon commit, not necessarily its 13 * current state.*/ 14 int sepol_get_disable_dontaudit(sepol_handle_t * sh); 15 16 /* Set whether or not to disable dontaudits, 0 is default and does 17 * not disable dontaudits, 1 disables them */ 18 void sepol_set_disable_dontaudit(sepol_handle_t * sh, int disable_dontaudit); 19 20 /* Set whether module_expand() should consume the base policy passed in. 21 * This should reduce the amount of memory required to expand the policy. */ 22 void sepol_set_expand_consume_base(sepol_handle_t * sh, int consume_base); 23 24 /* Destroy a sepol handle. */ 25 void sepol_handle_destroy(sepol_handle_t *); 26 27 /* Get whether or not needless unused branch of tunables would be preserved */ 28 int sepol_get_preserve_tunables(sepol_handle_t * sh); 29 30 /* Set whether or not to preserve the needless unused branch of tunables, 31 * 0 is default and discard such branch, 1 preserves them */ 32 void sepol_set_preserve_tunables(sepol_handle_t * sh, int preserve_tunables); 33 34 #endif 35