fgetfilecon_raw - Linux


fgetfilecon_raw is a powerful utility that allows you to retrieve the security context of a file by reading it directly from the file system. It is commonly used for security auditing, file system analysis, and troubleshooting.


fgetfilecon_raw [OPTIONS] PATH


  • -Q, –quote-same: Do not print the quotes around the security context.
  • -v, –verbose: Enable verbose output, providing additional details about the retrieved security context.
  • -z, –null-terminated: Print the security context terminated by a null byte.
  • –version: Display the command’s version information.
  • -h, –help: Show a brief help message.


Retrieve the security context of a file without quotes:

fgetfilecon_raw -Q /etc/passwd

Display the detailed context information:

fgetfilecon_raw -v /home/user/file.txt

Print the context terminated by a null byte:

fgetfilecon_raw -z /bin/bash > context.txt

Common Issues

  • Permission Denied: Ensure you have adequate file permissions to read the target file.
  • File Not Found: Verify that the specified file path exists.
  • Empty Context: The file may not have a security context assigned to it.


Integrate with grep: Filter the retrieved context:

fgetfilecon_raw /tmp/ | grep user:

Combine with xargs: Execute subcommands on multiple files:

find /tmp -type f | xargs -n1 fgetfilecon_raw

Related Commands

  • getfacl: Modify file access control lists
  • ls -lZ: Display file permissions with security context
  • securityfs: Explore the in-memory security file system