From 4aca87515a5083ae0e31ce3177189fd43b6d05ac Mon Sep 17 00:00:00 2001
From: Andreas Baumann <mail@andreasbaumann.cc>
Date: Sat, 3 Jan 2015 13:58:15 +0100
Subject: patch to Vanilla Tomato 1.28

---
 release/src/router/busybox/selinux/setenforce.c | 43 +++++++++++++++++++++++++
 1 file changed, 43 insertions(+)
 create mode 100644 release/src/router/busybox/selinux/setenforce.c

(limited to 'release/src/router/busybox/selinux/setenforce.c')

diff --git a/release/src/router/busybox/selinux/setenforce.c b/release/src/router/busybox/selinux/setenforce.c
new file mode 100644
index 00000000..a2d04288
--- /dev/null
+++ b/release/src/router/busybox/selinux/setenforce.c
@@ -0,0 +1,43 @@
+/*
+ * setenforce
+ *
+ * Based on libselinux 1.33.1
+ * Port to BusyBox  Hiroshi Shinji <shiroshi@my.email.ne.jp>
+ *
+ * Licensed under GPLv2, see file LICENSE in this tarball for details.
+ */
+
+#include "libbb.h"
+
+/* These strings are arranged so that odd ones
+ * result in security_setenforce(1) being done,
+ * the rest will do security_setenforce(0) */
+static const char *const setenforce_cmd[] = {
+	"0",
+	"1",
+	"permissive",
+	"enforcing",
+	NULL,
+};
+
+int setenforce_main(int argc, char **argv) MAIN_EXTERNALLY_VISIBLE;
+int setenforce_main(int argc, char **argv)
+{
+	int i, rc;
+
+	if (argc != 2)
+		bb_show_usage();
+
+	selinux_or_die();
+
+	for (i = 0; setenforce_cmd[i]; i++) {
+		if (strcasecmp(argv[1], setenforce_cmd[i]) != 0)
+			continue;
+		rc = security_setenforce(i & 1);
+		if (rc < 0)
+			bb_perror_msg_and_die("setenforce() failed");
+		return 0;
+	}
+
+	bb_show_usage();
+}
-- 
cgit v1.2.3-54-g00ecf