Hi,
http://koji.fedoraproject.org/koji/packageinfo?packageID=7917
Now the "php-pecl-selinux" package got approved in Fedora Project.
Some days later, it will be delivered to mirrors.
KaiGai Kohei wrote:
> Now it in PECL repository:
> http://pecl.php.net/package/selinux
> http://cvs.php.net/viewvc.cgi/pecl/selinux/
BTW, I still mark its state as "devel". It means we have a possibility
to change APIs. If you found anything to be improved, please tell me.
The following example is just a toy, which implements
Paul's "getpeercon_server.c" example in PHP.
--------------
#!/usr/bin/php -q
<?
if (count($argv) < 2) {
echo "usage: ".$argv[0]." <port>\n";
return 1;
}
$conn_url = sprintf("tcp://0.0.0.0:%u", $argv[1]);
$server = stream_socket_server($conn_url, $errno, $errmsg);
if (!$server) {
echo "error: $errmsg ($errno)\n";
return 1;
}
while (($client = stream_socket_accept($server))) {
$ipaddr = stream_socket_get_name($client, true);
$peercon = selinux_getpeercon($client);
printf("connect %s => %s\n", $ipaddr, !$peercon ? "null" : $peercon);
fclose($client);
}
fclose($server);
?>
--------------
[kaigai@saba ~]$ ./peersock.php 1234
connect 10.19.71.82:4643 => user_u:user_r:user_t:s0
connect 127.0.0.1:36277 => staff_u:staff_r:staff_t:s0
connect 10.19.71.81:48902 => null
I guess it also can be used for education purpose because it enables
to observe the behavior of SELinux with quick try-and-error steps. :-)
Thanks,
It is necessary the package to be reviewed whether the specfile
correctly follows Fedora packaging guideline [1] [2], or not.
I would like folks to help reviewing it.
In addition, Fedora Project requires all the new packages
to be approved by core maintainers called as "sponsor" [3].
Could you introduce me an appropriate person to recommend
the package?
Thanks,
[1] http://fedoraproject.org/wiki/Packaging/Guidelines
[2] http://fedoraproject.org/wiki/Packaging/PHP
[3]
https://admin.fedoraproject.org/accounts/group/members/packager/*/sponsor
Daniel J Walsh wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
KaiGai Kohei wrote:
Joshua Brindle wrote:
-----Original Message-----
From: Daniel J Walsh [mailto:dwalsh@xxxxxxxxxx]
I would rather package this up as part of libselinux, perhaps
libselinux-php, rather then make a new package.
The last time I used PHP (admittedly years ago) most if not all
bindings
were included in the upstream PHP distribution.
At least, most of PHP extensions has php-* naming convension, like:
php-mysql, php-mbstring, php-ldap, ...
Most of major extensions are distributed as subpackages of php itself,
but some of extensions are not distributed as separated package.
(Please find php-* on the list of Fedora SRPMs.)
I don't think we need to wait for it get merged into the core PHP,
to release php-selinux package.
Thanks,
Ok then fine leave it as a separate package.
--
OSS Platform Development Division, NEC
KaiGai Kohei <kaigai@xxxxxxxxxxxxx>
--
This message was distributed to subscribers of the selinux mailing list.
If you no longer wish to subscribe, send mail to majordomo@xxxxxxxxxxxxx with
the words "unsubscribe selinux" without quotes as the message.
