summaryrefslogtreecommitdiff
path: root/release/src/router/busybox/selinux/setenforce.c
diff options
context:
space:
mode:
Diffstat (limited to 'release/src/router/busybox/selinux/setenforce.c')
-rw-r--r--release/src/router/busybox/selinux/setenforce.c43
1 files changed, 43 insertions, 0 deletions
diff --git a/release/src/router/busybox/selinux/setenforce.c b/release/src/router/busybox/selinux/setenforce.c
new file mode 100644
index 00000000..a2d04288
--- /dev/null
+++ b/release/src/router/busybox/selinux/setenforce.c
@@ -0,0 +1,43 @@
+/*
+ * setenforce
+ *
+ * Based on libselinux 1.33.1
+ * Port to BusyBox Hiroshi Shinji <shiroshi@my.email.ne.jp>
+ *
+ * Licensed under GPLv2, see file LICENSE in this tarball for details.
+ */
+
+#include "libbb.h"
+
+/* These strings are arranged so that odd ones
+ * result in security_setenforce(1) being done,
+ * the rest will do security_setenforce(0) */
+static const char *const setenforce_cmd[] = {
+ "0",
+ "1",
+ "permissive",
+ "enforcing",
+ NULL,
+};
+
+int setenforce_main(int argc, char **argv) MAIN_EXTERNALLY_VISIBLE;
+int setenforce_main(int argc, char **argv)
+{
+ int i, rc;
+
+ if (argc != 2)
+ bb_show_usage();
+
+ selinux_or_die();
+
+ for (i = 0; setenforce_cmd[i]; i++) {
+ if (strcasecmp(argv[1], setenforce_cmd[i]) != 0)
+ continue;
+ rc = security_setenforce(i & 1);
+ if (rc < 0)
+ bb_perror_msg_and_die("setenforce() failed");
+ return 0;
+ }
+
+ bb_show_usage();
+}
generated by cgit v1.2.3-54-g00ecf (git 2.44.0) at 2024-04-18 04:08:14 +0000