Home Explore Help
Sign In
ProjectNagae
/
toybox-clone
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: cd4c2da20a
Branches Tags
toybox-clone
/
toys
/
android
/
setenforce.c

setenforce.c 862 B
History Raw

1234567891011121314151617181920212223242526272829303132 
  1. /* setenforce.c - Set the current SELinux mode
    2. 

  2.  *
    3. 

  3.  * Copyright 2014 The Android Open Source Project
    4. 

  4. 

  5. USE_SETENFORCE(NEWTOY(setenforce, "<1>1", TOYFLAG_USR|TOYFLAG_SBIN))
    6. 

  6. 

  7. config SETENFORCE
    8. 

  8.   bool "setenforce"
    9. 

  9.   default y
    10. 

  10.   depends on TOYBOX_SELINUX
    11. 

  11.   help
    12. 

  12.     usage: setenforce [enforcing|permissive|1|0]
    13. 

  13. 

  14.     Sets whether SELinux is enforcing (1) or permissive (0).
    15. 

  15. */
    16. 

  16. 

  17. #define FOR_setenforce
    18. 

  18. #include "toys.h"
    19. 

  19. 

  20. void setenforce_main(void)
    21. 

  21. {
    22. 

  22.   char *new = *toys.optargs;
    23. 

  23.   int state, ret;
    24. 

  24. 

  25.   if (!is_selinux_enabled()) error_exit("SELinux is disabled");
    26. 

  26.   else if (!strcmp(new, "1") || !strcasecmp(new, "enforcing")) state = 1;
    27. 

  27.   else if (!strcmp(new, "0") || !strcasecmp(new, "permissive")) state = 0;
    28. 

  28.   else error_exit("Invalid state: %s", new);
    29. 

  29. 

  30.   ret = security_setenforce(state);
    31. 

  31.   if (ret == -1) perror_msg("Couldn't set enforcing status to '%s'", new);
    32. 

  32. }
    33.