New issue
Advanced search Search tips

Issue 915517 link

Starred by 2 users

Issue metadata

Status: Unconfirmed
Owner: ----
Components:
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: 3
Type: Bug



Sign in to add a comment

crosvm: use environment variable for seccomp policy directory

Reported by adni.onl...@gmail.com, Dec 16

Issue description

Not every deployment of crosvm may have access to `/usr/share/policy/crosvm`, and requiring the user to specify the directory containing the seccomp policy file directory isn't very friendly to them.
I propose adding the capability to read the value from an environment variable, which can be set once for repeated invocations and by different tools independent of the actual invocation.

Concretely, this is triggered by my packaging of crosvm for Nix, where every instance of a program is made to refer to its dependent files in a store instead of making them universally visible.

Attached is a patch that achieves the functionality.
 
seccomp-policy-dir_env-var.patch
1.5 KB Download
Sorry about associating this with an unrelated component, turns out that contrary to the indication given in the bug creation page, it is not just a template (of which I did not find a fitting one) but also a category. :/

Sign in to add a comment