[policycoreutils/f14/master] - Add seremote, to allow the execution of command inside the sandbox from outside the sandbox.
Daniel J Walsh
dwalsh at fedoraproject.org
Mon Sep 13 21:02:28 UTC 2010
commit 9ea5a9c2635b56fa52b480b74193b9ba11bcf4ec
Author: Dan Walsh <dwalsh at redhat.com>
Date: Mon Sep 13 17:02:13 2010 -0400
- Add seremote, to allow the execution of command inside the sandbox from outside the sandbox.
policycoreutils-rhat.patch | 9 +++++++--
policycoreutils.spec | 5 ++++-
2 files changed, 11 insertions(+), 3 deletions(-)
---
diff --git a/policycoreutils-rhat.patch b/policycoreutils-rhat.patch
index f886068..5425007 100644
--- a/policycoreutils-rhat.patch
+++ b/policycoreutils-rhat.patch
@@ -1990,8 +1990,8 @@ diff --exclude-from=exclude --exclude=sepolgen-1.0.23 --exclude=gui --exclude=po
# Source function library.
diff --exclude-from=exclude --exclude=sepolgen-1.0.23 --exclude=gui --exclude=po -N -u -r nsapolicycoreutils/sandbox/sandboxX.sh policycoreutils-2.0.83/sandbox/sandboxX.sh
--- nsapolicycoreutils/sandbox/sandboxX.sh 2010-06-16 08:03:38.000000000 -0400
-+++ policycoreutils-2.0.83/sandbox/sandboxX.sh 2010-09-07 11:21:08.000000000 -0400
-@@ -1,13 +1,21 @@
++++ policycoreutils-2.0.83/sandbox/sandboxX.sh 2010-09-13 17:00:38.000000000 -0400
+@@ -1,13 +1,26 @@
#!/bin/bash
context=`id -Z | secon -t -l -P`
export TITLE="Sandbox $context -- `grep ^#TITLE: ~/.sandboxrc | /usr/bin/cut -b8-80`"
@@ -2003,6 +2003,11 @@ diff --exclude-from=exclude --exclude=sepolgen-1.0.23 --exclude=gui --exclude=po
(/usr/bin/Xephyr -title "$TITLE" -terminate -screen $SCREENSIZE -displayfd 5 5>&1 2>/dev/null) | while read D; do
export DISPLAY=:$D
- python -c 'import gtk, os, commands; commands.getstatusoutput("%s/.sandboxrc" % os.environ["HOME"])'
++ cat > ~/seremote << __EOF
++#!/bin/sh
++DISPLAY=$DISPLAY "\$@"
++__EOF
++chmod +x ~/seremote
+ python << __EOF
+import gtk, os, commands
+rc = [-1,'']
diff --git a/policycoreutils.spec b/policycoreutils.spec
index 64127ba..0eb18ef 100644
--- a/policycoreutils.spec
+++ b/policycoreutils.spec
@@ -7,7 +7,7 @@
Summary: SELinux policy core utilities
Name: policycoreutils
Version: 2.0.83
-Release: 27%{?dist}
+Release: 28%{?dist}
License: GPLv2
Group: System Environment/Base
Source: http://www.nsa.gov/selinux/archives/policycoreutils-%{version}.tgz
@@ -315,6 +315,9 @@ fi
exit 0
%changelog
+* Mon Sep 13 2010 Dan Walsh <dwalsh at redhat.com> 2.0.83-28
+- Add seremote, to allow the execution of command inside the sandbox from outside the sandbox.
+
* Mon Sep 13 2010 Dan Walsh <dwalsh at redhat.com> 2.0.83-27
- Fix sandbox copyfile when copying a dir with a socket, print error
More information about the scm-commits
mailing list