Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
security
compartm
compartment-1.1.diff
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File compartment-1.1.diff of Package compartm
--- compartment-1.1/compartment.c +++ compartment-1.1/compartment.c 2008/04/29 13:59:03 @@ -29,6 +29,7 @@ #include <string.h> #include <stdlib.h> #include <sys/stat.h> +#define _LINUX_STRING_H_ #include <linux/capability.h> #include <stdarg.h> #include <syslog.h> @@ -74,18 +75,18 @@ void help() { fprintf(stderr, "%s %s %s %s\n\n", PROGRAM_NAME, VERSION, AUTHOR, POINTER); fprintf(stderr, "Syntax: %s [options] /full/path/to/program\n", prg); - fprintf(stderr, "Options: -\t --chroot path\t chroot to path -\t --user user\t change uid to this user -\t --group group\t change gid to this group -\t --init program\t execute this program/script before doing anything -\t --cap capset\t set capset name. This option can be used several times. -\t --verbose\t be verbose -\t --quiet\t do no logging (to syslog) -\t --fork\t\t fork (if everything is fine) -\nHints: always try to chroot; use --user&group if possible; chroot and chown all -files to another user than root if you use capabilties. Read the README file! -\nKnown capset names: none"); + fprintf(stderr, "Options:\n" +"\t --chroot path\t chroot to path\n" +"\t --user user\t change uid to this user\n" +"\t --group group\t change gid to this group\n" +"\t --init program\t execute this program/script before doing anything\n" +"\t --cap capset\t set capset name. This option can be used several times.\n" +"\t --verbose\t be verbose\n" +"\t --quiet\t do no logging (to syslog)\n" +"\t --fork\t\t fork (if everything is fine)\n" +"\nHints: always try to chroot; use --user&group if possible; chroot and chown all\n" +"files to another user than root if you use capabilties. Read the README file!\n" +"\nKnown capset names: none"); tmp = 0; while(strlen(cap_set_names[tmp])>0) fprintf(stderr," %s",cap_set_names[tmp++]); @@ -175,9 +176,9 @@ my_secure(); openlog("SuSEcompartment", LOG_PID, LOG_DAEMON); if (sizeof(uid_t) == 4) { - (unsigned long int) uidrange = 65535; + uidrange = 65535; } else { if (sizeof(uid_t) == 8) { - (unsigned long int) uidrange = (unsigned long int) 2147483646; //4294967295; + uidrange = (unsigned long int) 2147483646; //4294967295; } else fprintf(stderr, "Warning: weird uid size: %d\n", sizeof(uid_t)); } @@ -418,11 +419,11 @@ if (access(_argv[0], X_OK) < 0) print_msg("Execute bit missing, or no permissions to execute %s\n", _argv[0]); else - print_msg("Could not properly execute %s - the chroot environment might not be -set up correctly: -Create the directories /etc and /lib in chroot_dir and run \"ldd %s\" -to see which libraries are needed. Copy these to chroot_dir/lib, then chdir to -chroot_dir and execute \"ldconfig -X -r .\"\n", _argv[0], _argv[0]); + print_msg("Could not properly execute %s - the chroot environment might not be\n" +"set up correctly:\n" +"Create the directories /etc and /lib in chroot_dir and run \"ldd %s\"\n" +"to see which libraries are needed. Copy these to chroot_dir/lib, then chdir to\n" +"chroot_dir and execute \"ldconfig -X -r .\"\n", _argv[0], _argv[0]); } return 1; --- compartment-1.1/Makefile +++ compartment-1.1/Makefile 2008/04/29 13:59:03 @@ -1,24 +1,40 @@ -CC=gcc -OPTS=-Wall -O2 -BIN_DIR=/usr/sbin +# Makefile for compartment + +OPTS=$(RPM_OPT_FLAGS) +ROOT=$(RPM_BUILD_ROOT) + +ifeq ($(CC),) + CC=gcc +endif +ifeq ($(RPM_OPT_FLAGS),) + OPTS=-Wall -O2 +endif +ifeq ($(RPM_BUILD_ROOT),) + ROOT=/ +endif + +BIN_DIR=$(ROOT)/usr/sbin +MAN_DIR=$(ROOT)/usr/share/man/man1 +DOC_DIR=$(ROOT)/usr/doc/packages/compartment + BIN_LIST=compartment -DOC_DIR=/usr/doc/packages/compartment DOC_LIST=README LICENCE CHANGES TODO -MAN_DIR=/usr/share/man/man1 MAN_LIST=compartment.1 all: compartment compartment: compartment.c ${CC} ${OPTS} -o ${BIN_LIST} compartment.c - strip ${BIN_LIST} clean: rm -f ${BIN_LIST} core *~ -install: compartment +install: ${BIN_LIST} install -o root -g root -m 751 ${BIN_LIST} ${BIN_DIR} - install -d -o root -g root -m 755 ${DOC_DIR} - install -o root -g root -m 644 ${DOC_LIST} ${DOC_DIR} install -d -o root -g root -m 755 ${MAN_DIR} install -o root -g root -m 644 ${MAN_LIST} ${MAN_DIR} + +install.doc: ${DOC_LIST} + install -d -o root -g root -m 755 ${DOC_DIR} + install -o root -g root -m 644 ${DOC_LIST} ${DOC_DIR} +
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor