diff options
Diffstat (limited to 'selinux/setenforce.c')
-rw-r--r-- | selinux/setenforce.c | 42 |
1 files changed, 42 insertions, 0 deletions
diff --git a/selinux/setenforce.c b/selinux/setenforce.c new file mode 100644 index 0000000..198324c --- /dev/null +++ b/selinux/setenforce.c @@ -0,0 +1,42 @@ +/* + * setenforce + * + * Based on libselinux 1.33.1 + * Port to BusyBox Hiroshi Shinji <shiroshi@my.email.ne.jp> + * + */ + +#include "libbb.h" + +/* These strings are arranged so that odd ones + * result in security_setenforce(1) being done, + * the rest will do security_setenforce(0) */ +static const char *const setenforce_cmd[] = { + "0", + "1", + "permissive", + "enforcing", + NULL, +}; + +int setenforce_main(int argc, char **argv) MAIN_EXTERNALLY_VISIBLE; +int setenforce_main(int argc, char **argv) +{ + int i, rc; + + if (argc != 2) + bb_show_usage(); + + selinux_or_die(); + + for (i = 0; setenforce_cmd[i]; i++) { + if (strcasecmp(argv[1], setenforce_cmd[i]) != 0) + continue; + rc = security_setenforce(i & 1); + if (rc < 0) + bb_perror_msg_and_die("setenforce() failed"); + return 0; + } + + bb_show_usage(); +} |