admin/brew
1
0
Fork 0
Code Issues Packages Projects Releases 6 Wiki Activity

sandbox: record log

Browse Source 
Closes Homebrew/homebrew#38711.

Signed-off-by: Xu Cheng <xucheng@me.com>
This commit is contained in:
Xu Cheng 2015-04-16 21:41:59 +08:00
parent c2dcd91bd1
commit adedbb86f1
4 changed files with 26 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
Library/Homebrew/cmd/postinstall.rb
View File

@ -18,6 +18,9 @@ module Homebrew
Utils.safe_fork do Utils.safe_fork do
if Sandbox.available? && ARGV.sandbox? if Sandbox.available? && ARGV.sandbox?
sandbox = Sandbox.new sandbox = Sandbox.new
logd = HOMEBREW_LOGS/formula.name
logd.mkpath
sandbox.record_log(logd/"sandbox.postinstall.log")
sandbox.allow_write_temp_and_cache sandbox.allow_write_temp_and_cache
sandbox.allow_write_log(formula) sandbox.allow_write_log(formula)
sandbox.allow_write_cellar(formula) sandbox.allow_write_cellar(formula)

3
Library/Homebrew/cmd/test.rb
View File

@ -37,6 +37,9 @@ module Homebrew
Utils.safe_fork do Utils.safe_fork do
if Sandbox.available? && ARGV.sandbox? if Sandbox.available? && ARGV.sandbox?
sandbox = Sandbox.new sandbox = Sandbox.new
logd = HOMEBREW_LOGS/f.name
logd.mkpath
sandbox.record_log(logd/"sandbox.test.log")
sandbox.allow_write_temp_and_cache sandbox.allow_write_temp_and_cache
sandbox.allow_write_log(f) sandbox.allow_write_log(f)
sandbox.exec(*args) sandbox.exec(*args)

3
Library/Homebrew/formula_installer.rb
View File

@ -481,6 +481,9 @@ class FormulaInstaller
Utils.safe_fork do Utils.safe_fork do
if Sandbox.available? && ARGV.sandbox? if Sandbox.available? && ARGV.sandbox?
sandbox = Sandbox.new sandbox = Sandbox.new
logd = HOMEBREW_LOGS/formula.name
logd.mkpath
sandbox.record_log(logd/"sandbox.build.log")
sandbox.allow_write_temp_and_cache sandbox.allow_write_temp_and_cache
sandbox.allow_write_log(formula) sandbox.allow_write_log(formula)
sandbox.allow_write_cellar(formula) sandbox.allow_write_cellar(formula)

17
Library/Homebrew/sandbox.rb
View File

@ -12,6 +12,10 @@ class Sandbox
@profile = SandboxProfile.new @profile = SandboxProfile.new
end end
def record_log(file)
@log = file
end
def add_rule(rule) def add_rule(rule)
@profile.add_rule(rule) @profile.add_rule(rule)
end end
@ -54,6 +58,7 @@ class Sandbox
seatbelt = Tempfile.new(["homebrew", ".sb"], HOMEBREW_TEMP) seatbelt = Tempfile.new(["homebrew", ".sb"], HOMEBREW_TEMP)
seatbelt.write(@profile.dump) seatbelt.write(@profile.dump)
seatbelt.close seatbelt.close
@start = Time.now
safe_system SANDBOX_EXEC, "-f", seatbelt.path, *args safe_system SANDBOX_EXEC, "-f", seatbelt.path, *args
rescue rescue
if ARGV.verbose? if ARGV.verbose?
@ -63,6 +68,18 @@ class Sandbox
raise raise
ensure ensure
seatbelt.unlink seatbelt.unlink
unless @log.nil?
sleep 0.1 # wait for a bit to let syslog catch up the latest events.
syslog_args = %W[
-F '$((Time)(local))\ $(Sender)[$(PID)]:\ $Message'
-k Time ge #{@start.to_i.to_s}
-k Sender kernel
-o
-k Time ge #{@start.to_i.to_s}
-k Sender sandboxd
]
quiet_system "syslog #{syslog_args * " "} | grep deny > #{@log}"
end
end end
end end