From patchwork Sun Sep 18 22:32:26 2016
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Laurent Bigonville <bigon@debian.org>
X-Patchwork-Id: 9338383
Return-Path: <selinux-bounces@tycho.nsa.gov>
Received: from mail.wl.linuxfoundation.org (pdx-wl-mail.web.codeaurora.org
	[172.30.200.125])
	by pdx-korg-patchwork.web.codeaurora.org (Postfix) with ESMTP id
	68993607D0 for <patchwork-selinux@patchwork.kernel.org>;
	Sun, 18 Sep 2016 22:35:32 +0000 (UTC)
Received: from mail.wl.linuxfoundation.org (localhost [127.0.0.1])
	by mail.wl.linuxfoundation.org (Postfix) with ESMTP id 5A1BD28795
	for <patchwork-selinux@patchwork.kernel.org>;
	Sun, 18 Sep 2016 22:35:32 +0000 (UTC)
Received: by mail.wl.linuxfoundation.org (Postfix, from userid 486)
	id 376C7288C1; Sun, 18 Sep 2016 22:35:32 +0000 (UTC)
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
	pdx-wl-mail.web.codeaurora.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.1 required=2.0 tests=BAYES_00,DKIM_SIGNED,
	RCVD_IN_DNSWL_MED, T_DKIM_INVALID,
	UNPARSEABLE_RELAY autolearn=ham version=3.3.1
Received: from emsm-gh1-uea11.nsa.gov (smtp.nsa.gov [8.44.101.9])
	(using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by mail.wl.linuxfoundation.org (Postfix) with ESMTPS id 2B60028795
	for <patchwork-selinux@patchwork.kernel.org>;
	Sun, 18 Sep 2016 22:35:30 +0000 (UTC)
X-IronPort-AV: E=Sophos;i="5.30,359,1470700800"; d="scan'208";a="19339417"
IronPort-PHdr: =?us-ascii?q?9a23=3AttDi0hZUkqfANVhAUZH9OiL/LSx+4OfEezUN459i?=
	=?us-ascii?q?sYplN5qZpcu/bnLW6fgltlLVR4KTs6sC0LuP9fC6EjVaqdbZ6TZZIcQKD0dEwe?=
	=?us-ascii?q?wt3CUYSPafDkP6KPO4JwcbJ+9lEGFfwnegLEJOE9z/bVCB6le77DoVBwmtfVEt?=
	=?us-ascii?q?fre9JIfegoyN2vyo/NWLOkMT1WP7Mek5dU/+7V2I8JJH2c06cud54yCKi0MAQ/?=
	=?us-ascii?q?5Ry2JsKADbtDfHzeD0wqRe9T9Nsekq7c9KXPayVa05SbtFEGZuaDhtt4XWrx2L?=
	=?us-ascii?q?cS+jrjtZCz1XwVJ0BF3e4RX7WIrhmjfrvep6ni+BNIv5Sq5ndy6l6vJPQQLyhS?=
	=?us-ascii?q?EbfxQ4/2bRlM10iK8T9BigqBt564LZaoCcMrx5ZKyLLoBSfnZIQssED38JOYi7?=
	=?us-ascii?q?dYZaSrNZMA=3D=3D?=
X-IPAS-Result: =?us-ascii?q?A2FgBwAwFt9X/wHyM5BdHAYMGgEFAQsBgn0SAQEBAQEeV3y?=
	=?us-ascii?q?jLQUBAwEBBpcrIwuBcIVATAEBAQEBAQEBAgECWyeCMgQDEwUFOTsBAQEBAQEBI?=
	=?us-ascii?q?wINIkQCNwYBAQwgDAIDCQIXCCEICAMBLQsKHwsFGASIKQEDAQm0e4UwAQEFh10?=
	=?us-ascii?q?BHAMFhW2JMgIRAWiFEJl0hiaJLAqJfIVsApBdAlSEbHABhHwPF2GBJwEBAQ?=
Received: from unknown (HELO tarius.tycho.ncsc.mil) ([144.51.242.1])
	by emsm-gh1-uea11.nsa.gov with ESMTP; 18 Sep 2016 22:35:28 +0000
Received: from prometheus.infosec.tycho.ncsc.mil (prometheus [192.168.25.40])
	by tarius.tycho.ncsc.mil (8.14.4/8.14.4) with ESMTP id u8IMWYFL000503;
	Sun, 18 Sep 2016 18:32:45 -0400
Received: from tarius.tycho.ncsc.mil (tarius.infosec.tycho.ncsc.mil
	[144.51.242.1])
	by prometheus.infosec.tycho.ncsc.mil (8.15.2/8.15.2) with ESMTP id
	u8IMWWcq019696 for <selinux@prometheus.infosec.tycho.ncsc.mil>;
	Sun, 18 Sep 2016 18:32:32 -0400
Received: from goalie.tycho.ncsc.mil (goalie [144.51.242.250])
	by tarius.tycho.ncsc.mil (8.14.4/8.14.4) with ESMTP id u8IMWWBU000501
	for <selinux@tycho.nsa.gov>; Sun, 18 Sep 2016 18:32:32 -0400
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: 
 A1CVCgADFd9X/2OteVtdg1gSAQEBAQEeVzVHoy0LBpMjhCYQhzBMAQIBAQEBAQJeJ4UoAQE4L200iEsDAQm0eoUwAQEFh3oDBYVtiTJ8hRCZdIYmiSwKj2gCkF0CVIIwDIIwcAGEfIIuAQEB
X-IPAS-Result: 
 A1CVCgADFd9X/2OteVtdg1gSAQEBAQEeVzVHoy0LBpMjhCYQhzBMAQIBAQEBAQJeJ4UoAQE4L200iEsDAQm0eoUwAQEFh3oDBYVtiTJ8hRCZdIYmiSwKj2gCkF0CVIIwDIIwcAGEfIIuAQEB
X-IronPort-AV: E=Sophos;i="5.30,359,1470715200"; d="scan'208";a="5712630"
Received: from emsm-gh1-uea11.corp.nsa.gov (HELO emsm-gh1-uea11.nsa.gov)
	([10.208.41.37])
	by goalie.tycho.ncsc.mil with ESMTP; 18 Sep 2016 18:32:31 -0400
IronPort-PHdr: =?us-ascii?q?9a23=3AyWZh4BKS9SBl9/byZtmcpTZWNBhigK39O0sv0rFi?=
	=?us-ascii?q?tYgULPzxwZ3uMQTl6Ol3ixeRBMOAuqsC27Cd6vqoGTRZp83Q6DZaKN0EfiRGoP?=
	=?us-ascii?q?1epxYnDs+BBB+zB9/RRAt+Iv5/UkR49WqwK0lfFZW2TVTTpnqv8WxaQU2nZkJL?=
	=?us-ascii?q?L+j4UrTfk96wn7jrvcaCOkMY3nHkO/sydEzw9lSJ8JFOwMNLEeUY8lPxuHxGeu?=
	=?us-ascii?q?BblytDBGm4uFLC3Pq254Np6C9KuvgspIZqWKT+eLkkH/QDVGx1ezN92Mq+rhTH?=
	=?us-ascii?q?TA2S9lMAQ24WlVxOGAGD4xbkDbnrtS6vkuNgwiScIYXcTL8zXyqj66NmAEviiS?=
	=?us-ascii?q?gAMRY1/WvWg8o2i7hU9kHy7ydjypLZNdnGfMF1ebnQKIsX?=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0FcCQADFd9X/2OteVtdRwEBFgEBBQEBB?=
	=?us-ascii?q?QGCahIBAQEBAR5XNUejLQUBAwEBBpMjhCYQgXCFQEwBAQEBAQEBAQIBAlsngjI?=
	=?us-ascii?q?YDDk7AQEBAQEBASMCDSKBAwEBOC9tNIhLAwEJtHqFMAEBBYd6AwWFbYkyfIUQm?=
	=?us-ascii?q?XSGJoksCo9oApBdAlSCMAyCMHABhHyCLgEBAQ?=
X-IPAS-Result: =?us-ascii?q?A0FcCQADFd9X/2OteVtdRwEBFgEBBQEBBQGCahIBAQEBAR5?=
	=?us-ascii?q?XNUejLQUBAwEBBpMjhCYQgXCFQEwBAQEBAQEBAQIBAlsngjIYDDk7AQEBAQEBA?=
	=?us-ascii?q?SMCDSKBAwEBOC9tNIhLAwEJtHqFMAEBBYd6AwWFbYkyfIUQmXSGJoksCo9oApB?=
	=?us-ascii?q?dAlSCMAyCMHABhHyCLgEBAQ?=
X-IronPort-AV: E=Sophos;i="5.30,359,1470700800"; d="scan'208";a="19339401"
Received: from anor.bigon.be ([91.121.173.99])
	by emsm-gh1-uea11.nsa.gov with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384;
	18 Sep 2016 22:32:30 +0000
Received: from anor.bigon.be (localhost.localdomain [127.0.0.1])
	by anor.bigon.be (Postfix) with ESMTP id 001F61A1A8
	for <selinux@tycho.nsa.gov>; Mon, 19 Sep 2016 00:32:28 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=bigon.be; h=
	x-mailer:message-id:date:date:subject:subject:from:from:received
	:received:received; s=key1; t=1474237947; x=1476052348; bh=f6wx1
	Xb1k4QwEeQ5ajZG2vFWicUZr2vsGH8S4PEnMMw=; b=LrsZ6GcepUweujZu5gyfh
	HoJcqJS9YcnOO18hXmpb7oW22mF4X0yMfXgBJruZguvjksV5zfQwozAZPfEZTuTc
	7v8u1Rs5ENudZxig+nwJ4K55RiBfeCqUe7lnoVp4o/LEVBAu7nYmln84Kl2Q30Cd
	VfXbA8mGz/vpofT0IqQo7s=
X-Virus-Scanned: Debian amavisd-new at bigon.be
Received: from anor.bigon.be ([127.0.0.1])
	by anor.bigon.be (anor.bigon.be [127.0.0.1]) (amavisd-new, port 10026)
	with ESMTP id R8e3MutIdEIH for <selinux@tycho.nsa.gov>;
	Mon, 19 Sep 2016 00:32:27 +0200 (CEST)
Received: from fornost.bigon.be (unknown
	[IPv6:2a02:a03f:d9:8b00:faa3:456b:4d88:6dc7])
	(using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits))
	(Client did not present a certificate) (Authenticated sender: bigon)
	by anor.bigon.be (Postfix) with ESMTPSA id D30DA1A06E
	for <selinux@tycho.nsa.gov>; Mon, 19 Sep 2016 00:32:26 +0200 (CEST)
Received: from bigon (uid 1000) (envelope-from bigon@bigon.be) id 3fb2a
	by fornost.bigon.be (DragonFly Mail Agent v0.11);
	Mon, 19 Sep 2016 00:32:26 +0200
From: Laurent Bigonville <bigon@debian.org>
To: selinux@tycho.nsa.gov
Subject: [PATCH] sandbox: Use dbus-launch instead of dbus-run-session
Date: Mon, 19 Sep 2016 00:32:26 +0200
Message-Id: <20160918223226.23000-1-bigon@debian.org>
X-Mailer: git-send-email 2.9.3
X-BeenThere: selinux@tycho.nsa.gov
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: "Security-Enhanced Linux \(SELinux\) mailing list"
	<selinux.tycho.nsa.gov>
List-Post: <mailto:selinux@tycho.nsa.gov>
List-Help: <mailto:selinux-request@tycho.nsa.gov?subject=help>
MIME-Version: 1.0
Errors-To: selinux-bounces@tycho.nsa.gov
Sender: "Selinux" <selinux-bounces@tycho.nsa.gov>
X-Virus-Scanned: ClamAV using ClamSMTP

From: Laurent Bigonville <bigon@bigon.be>

According to dbus upstream: "dbus-launch is fairly horrible code,
complicated by the historical need for it to support X11 autolaunching,
so the D-Bus maintainers would like to move it out of the critical path
and minimize its use."

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=836289
---
 policycoreutils/sandbox/sandbox | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/policycoreutils/sandbox/sandbox b/policycoreutils/sandbox/sandbox
index 726ba9b..f537dc6 100644
--- a/policycoreutils/sandbox/sandbox
+++ b/policycoreutils/sandbox/sandbox
@@ -285,7 +285,7 @@ class Sandbox:
 /usr/bin/test -r ~/.xmodmap && /usr/bin/xmodmap ~/.xmodmap
 %s &
 WM_PID=$!
-dbus-launch --exit-with-session %s
+dbus-run-session -- %s
 kill -TERM $WM_PID  2> /dev/null
 """ % (command, wm, command))
         fd.close()