platform_system_core/toolbox/getenforce.c

#include <unistd.h>
#include <stdio.h>
#include <stdlib.h>
#include <errno.h>
#include <selinux/selinux.h>

int getenforce_main(int argc, char **argv)
{
    int rc;

    rc = is_selinux_enabled();
    if (rc <= 0) {
        printf("Disabled\n");
        return 0;
    }

    rc = security_getenforce();
    if (rc < 0) {
        fprintf(stderr, "Could not get enforcing status:  %s\n",
                strerror(errno));
        return 2;
    }

    if (rc)
        printf("Enforcing\n");
    else
        printf("Permissive\n");

    return 0;
}