[LTP] [PATCH v4 1/2] core: add tst_selinux_enabled() utility

Wei Gao wegao@suse.com
Tue Jul 22 21:12:20 CEST 2025 

On Tue, Jul 22, 2025 at 08:55:56AM +0200, Andrea Cervesato wrote:
> From: Andrea Cervesato <andrea.cervesato@suse.com>
> 
> Add tst_selinux_enabled() utility in tst_security.h in order to verify
> if SELinux is currently up and running in the system.
> 
> Signed-off-by: Andrea Cervesato <andrea.cervesato@suse.com>
> ---
>  include/tst_security.h |  1 +
>  lib/tst_security.c     | 15 ++++++++++++++-
>  2 files changed, 15 insertions(+), 1 deletion(-)
> 
> diff --git a/include/tst_security.h b/include/tst_security.h
> index 5d91f8a98f104b0cafaaf2046bc0ceec06870606..cb5490a896f027245064abebb9d7c36270fd2e8a 100644
> --- a/include/tst_security.h
> +++ b/include/tst_security.h
> @@ -14,5 +14,6 @@ int tst_fips_enabled(void);
>  int tst_lockdown_enabled(void);
>  int tst_secureboot_enabled(void);
>  int tst_selinux_enforcing(void);
> +int tst_selinux_enabled(void);
>  
>  #endif /* TST_SECURITY_H__ */
> diff --git a/lib/tst_security.c b/lib/tst_security.c
> index 7d929fafe729058f55b921bf5cf7806b253496e0..f4669c60fbcafeddcab23835ee8c568a4aab46c3 100644
> --- a/lib/tst_security.c
> +++ b/lib/tst_security.c
> @@ -7,7 +7,8 @@
>  
>  #define PATH_FIPS	"/proc/sys/crypto/fips_enabled"
>  #define PATH_LOCKDOWN	"/sys/kernel/security/lockdown"
> -#define SELINUX_STATUS_PATH "/sys/fs/selinux/enforce"
> +#define SELINUX_PATH "/sys/fs/selinux"
> +#define SELINUX_STATUS_PATH (SELINUX_PATH "/enforce")
>  
>  #if defined(__powerpc64__) || defined(__ppc64__)
>  # define SECUREBOOT_VAR "/proc/device-tree/ibm,secure-boot"
> @@ -102,6 +103,18 @@ int tst_secureboot_enabled(void)
>  	return data[VAR_DATA_SIZE - 1];
>  }
>  
> +int tst_selinux_enabled(void)
> +{
> +	int res = 0;
> +
> +	if (tst_is_mounted(SELINUX_PATH))
> +		res = 1;
> +
> +	tst_res(TINFO, "SELinux enabled: %s", res ? "yes" : "no");
> +
> +	return res;
> +}
> +
>  int tst_selinux_enforcing(void)
>  {
>  	int res = 0;
> 
Reviewed-by: Wei Gao <wegao@suse.com>
> -- 
> 2.50.1
> 
> 
> -- 
> Mailing list info: https://lists.linux.it/listinfo/ltp

More information about the ltp mailing list