Skip to content

ikeydoherty/app-concepts

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

33 Commits
src
src
 
 
Makefile.am
Makefile.am
 
 
README.md
README.md
 
 
configure.ac
configure.ac
 
 

Repository files navigation

Testing concepts required for deployable Linux Desktop Apps

NOTE:

isandbox is used to launch idemoapp in a read only bind-mounted root file system (via pivot_root) and drops privileges back to the calling user, taking advantage of the setuid bits to accomplish its mission.

The app will use a GtkFileChooser within its own process to choose files, and also open an out of process file chooser to open a file from the host using IPortal, with the IPortal framework having the appropriate IPortalProvider.

Note that nasty double-forkers may bomb the sandbox right now, but they die and so does the sandbox. Just ensure that everything in jail/ is umount'ed correctly if this happens.

Build Instructions

autoreconf -vfi
./configure --prefix=/usr
make
sudo make install
iportald &
mkdir jail
isandbox

Authors

About

Testing App Concepts

Resources

Readme
Activity

Stars

2 stars

Watchers

5 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages