diff options
Diffstat (limited to 'release/src/router/busybox/selinux/setenforce.c')
-rw-r--r-- | release/src/router/busybox/selinux/setenforce.c | 43 |
1 files changed, 43 insertions, 0 deletions
diff --git a/release/src/router/busybox/selinux/setenforce.c b/release/src/router/busybox/selinux/setenforce.c new file mode 100644 index 00000000..a2d04288 --- /dev/null +++ b/release/src/router/busybox/selinux/setenforce.c @@ -0,0 +1,43 @@ +/* + * setenforce + * + * Based on libselinux 1.33.1 + * Port to BusyBox Hiroshi Shinji <shiroshi@my.email.ne.jp> + * + * Licensed under GPLv2, see file LICENSE in this tarball for details. + */ + +#include "libbb.h" + +/* These strings are arranged so that odd ones + * result in security_setenforce(1) being done, + * the rest will do security_setenforce(0) */ +static const char *const setenforce_cmd[] = { + "0", + "1", + "permissive", + "enforcing", + NULL, +}; + +int setenforce_main(int argc, char **argv) MAIN_EXTERNALLY_VISIBLE; +int setenforce_main(int argc, char **argv) +{ + int i, rc; + + if (argc != 2) + bb_show_usage(); + + selinux_or_die(); + + for (i = 0; setenforce_cmd[i]; i++) { + if (strcasecmp(argv[1], setenforce_cmd[i]) != 0) + continue; + rc = security_setenforce(i & 1); + if (rc < 0) + bb_perror_msg_and_die("setenforce() failed"); + return 0; + } + + bb_show_usage(); +} |