Issue 895892 link

Starred by 1 user

Issue metadata

Status:	Untriaged
Owner:	----
Cc:	vapier@chromium.org
Components:	OS>Systems>Minijail
EstimatedDays:	----
NextAction:	----
OS:	Chrome
Pri:	3
Type:	Feature

minijail: Allow to skip non-existing bind-mount sources

Project Member Reported by emaxx@chromium.org, Oct 16

Issue description

Currently, when a non-existing source path is passed via the "-b" option, the minijail0 will immediately exit with code 254.
This is fragile in situations when we don't know for sure whether the source directory is present or not, but our sandboxed program is able to gracefully survive the missing directory.

The request is to add a parameter that allows the "-b" option to ignore invalid paths.

Comment 1 by vapier@google.com, Oct 16

i'm not sure about this.  usually for people who want this, they write a small shell script to do the [ -d ] checks and then add the optional -b flags as they think is OK.  we tend to prefer code to fail explicitly rather than warn & keep running.

►

Issue 895892 link

Issue metadata

minijail: Allow to skip non-existing bind-mount sources

Issue description

Comment 1 by vapier@google.com, Oct 16

Comment 1 Deleted

Sign in to add a comment