| lh | 758261d | 2023-07-13 05:52:04 -0700 | [diff] [blame^] | 1 | SUMMARY = "Run cmd under an SELinux sandbox" |
| 2 | DESCRIPTION = "\ |
| 3 | Run application within a tightly confined SELinux domain. The default \ |
| 4 | sandbox domain only allows applications the ability to read and write \ |
| 5 | stdin, stdout and any other file descriptors handed to it." |
| 6 | |
| 7 | SECTION = "base" |
| 8 | LICENSE = "GPLv2+" |
| 9 | |
| 10 | SRC_URI += "file://sandbox-de-bashify.patch \ |
| 11 | " |
| 12 | |
| 13 | DEPENDS += "libcap-ng libselinux" |
| 14 | |
| 15 | RDEPENDS_${PN} += "\ |
| 16 | python3-core \ |
| 17 | python3-math \ |
| 18 | python3-shell \ |
| 19 | python3-unixadmin \ |
| 20 | libselinux-python \ |
| 21 | selinux-python \ |
| 22 | " |
| 23 | |
| 24 | FILES_${PN} += "\ |
| 25 | ${datadir}/sandbox/sandboxX.sh \ |
| 26 | ${datadir}/sandbox/start \ |
| 27 | " |