- Add seremote, to allow the execution of command inside the sandbox from outside the sandbox.

policycoreutils-rhat.patch

@@ -1990,8 +1990,8 @@ diff --exclude-from=exclude --exclude=sepolgen-1.0.23 --exclude=gui --exclude=po
  # Source function library.
 diff --exclude-from=exclude --exclude=sepolgen-1.0.23 --exclude=gui --exclude=po -N -u -r nsapolicycoreutils/sandbox/sandboxX.sh policycoreutils-2.0.83/sandbox/sandboxX.sh
 --- nsapolicycoreutils/sandbox/sandboxX.sh	2010-06-16 08:03:38.000000000 -0400
-+++ policycoreutils-2.0.83/sandbox/sandboxX.sh	2010-09-07 11:21:08.000000000 -0400
-@@ -1,13 +1,21 @@
++++ policycoreutils-2.0.83/sandbox/sandboxX.sh	2010-09-13 17:00:38.000000000 -0400
+@@ -1,13 +1,26 @@
  #!/bin/bash 
  context=`id -Z | secon -t -l -P`
  export TITLE="Sandbox $context -- `grep ^#TITLE: ~/.sandboxrc | /usr/bin/cut -b8-80`"
@@ -2003,6 +2003,11 @@ diff --exclude-from=exclude --exclude=sepolgen-1.0.23 --exclude=gui --exclude=po
  (/usr/bin/Xephyr -title "$TITLE" -terminate -screen $SCREENSIZE -displayfd 5 5>&1 2>/dev/null) | while read D; do 
      export DISPLAY=:$D
 -    python -c 'import gtk, os, commands; commands.getstatusoutput("%s/.sandboxrc" % os.environ["HOME"])'
++    cat > ~/seremote << __EOF
++#!/bin/sh
++DISPLAY=$DISPLAY "\$@"
++__EOF
++chmod +x ~/seremote
 +    python << __EOF
 +import gtk, os, commands
 +rc = [-1,'']

policycoreutils.spec

@@ -7,7 +7,7 @@
 Summary: SELinux policy core utilities
 Name:	 policycoreutils
 Version: 2.0.83
-Release: 27%{?dist}
+Release: 28%{?dist}
 License: GPLv2
 Group:	 System Environment/Base
 Source:  http://www.nsa.gov/selinux/archives/policycoreutils-%{version}.tgz
@@ -315,6 +315,9 @@ fi
 exit 0
 
 %changelog
+* Mon Sep 13 2010 Dan Walsh <dwalsh@redhat.com> 2.0.83-28
+- Add seremote, to allow the execution of command inside the sandbox from outside the sandbox.
+
 * Mon Sep 13 2010 Dan Walsh <dwalsh@redhat.com> 2.0.83-27
 - Fix sandbox copyfile when copying a dir with a socket, print error