summaryrefslogtreecommitdiff
path: root/i/pc104/initrd/conf/busybox/selinux/setenforce.c
diff options
context:
space:
mode:
Diffstat (limited to 'i/pc104/initrd/conf/busybox/selinux/setenforce.c')
-rw-r--r--i/pc104/initrd/conf/busybox/selinux/setenforce.c42
1 files changed, 42 insertions, 0 deletions
diff --git a/i/pc104/initrd/conf/busybox/selinux/setenforce.c b/i/pc104/initrd/conf/busybox/selinux/setenforce.c
new file mode 100644
index 0000000..9204fcc
--- /dev/null
+++ b/i/pc104/initrd/conf/busybox/selinux/setenforce.c
@@ -0,0 +1,42 @@
+/*
+ * setenforce
+ *
+ * Based on libselinux 1.33.1
+ * Port to BusyBox Hiroshi Shinji <shiroshi@my.email.ne.jp>
+ *
+ */
+
+#include "busybox.h"
+
+/* These strings are arranged so that odd ones
+ * result in security_setenforce(1) being done,
+ * the rest will do security_setenforce(0) */
+static const char *const setenforce_cmd[] = {
+ "0",
+ "1",
+ "permissive",
+ "enforcing",
+ NULL,
+};
+
+int setenforce_main(int argc, char **argv);
+int setenforce_main(int argc, char **argv)
+{
+ int i, rc;
+
+ if (argc != 2)
+ bb_show_usage();
+
+ selinux_or_die();
+
+ for (i = 0; setenforce_cmd[i]; i++) {
+ if (strcasecmp(argv[1], setenforce_cmd[i]) != 0)
+ continue;
+ rc = security_setenforce(i & 1);
+ if (rc < 0)
+ bb_perror_msg_and_die("setenforce() failed");
+ return 0;
+ }
+
+ bb_show_usage();
+}