Summary: | Enhance BinpkgFetcher to support SELinux | ||
---|---|---|---|
Product: | Portage Development | Reporter: | Sven Vermeulen <sven.vermeulen> |
Component: | Enhancement/Feature Requests | Assignee: | Portage team <dev-portage> |
Status: | RESOLVED FIXED | ||
Severity: | enhancement | CC: | selinux |
Priority: | Normal | Keywords: | InVCS |
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 373933 | ||
Attachments: |
Support transition to portage_fetch_t
support selinux PORTAGE_FETCH_T in BinpkgFetcher |
Description
Sven Vermeulen
2011-07-21 07:44:08 UTC
Created attachment 280507 [details, diff]
Support transition to portage_fetch_t
This patch introduces a working solution, although it is not as flexible as what is used in fetch.py. If the solution used in fetch.py is not worth it for the binary package support (i.e. support for userfetch and the like) then this could be a solution.
Created attachment 280541 [details, diff]
support selinux PORTAGE_FETCH_T in BinpkgFetcher
This moves the bulk of the support into SpawnProcess, and uses portage.selinux.spawn_wrapper() to ensure that the exec context it reverted back to normal as soon as possible.
I can also confirm that this patch works Thanks for testing. This is fixed in 2.2.0_alpha47, but I'll leave this bug open until it's in an unmasked release. This is fixed in 2.1.10.8 and 2.2.0_alpha48. |