diff options
| author | Mike Frysinger <vapier@google.com> | 2020-02-03 12:34:14 -0500 |
|---|---|---|
| committer | Treehugger Robot <treehugger-gerrit@google.com> | 2020-02-06 00:53:30 +0000 |
| commit | cc5917c757d80e36cacf8b9ceb52617c33911b33 (patch) | |
| tree | fc80a999c3ca5014a36190f7804c5cf3e4ac6770 /system_unittest.cc | |
| parent | 0a0514ca8e054b0d6bb0c9aa5f8d9a2f419225b6 (diff) | |
| download | minijail-cc5917c757d80e36cacf8b9ceb52617c33911b33.tar.gz | |
minijail0: add minimalistic-mountns-nodev profile
We have a decent number of situations where people want access to
some /dev nodes, but are unable to bind specific nodes/dirs because
the names are dynamic/flexible, or are hotplugged (and mignt not
exist at startup). The current solution for them is to copy the
full command line that minimalistic-mountns uses but drop the /dev
related settings.
Lets create a minimalistic-mountns-nodev profile that is equivalent
to minimalistic-mountns but doesn't set up /dev at all. This lets
callers -b/dev or do whatever else they like instead.
Bug: None
Test: `make check` passes
Test: `minijail0 --profile=minimalistic-mountns-nodev /bin/ls -l /dev/` works
Change-Id: I4b8b2a9e5cfaa84d5911b91bb46349b51c5589a6
Diffstat (limited to 'system_unittest.cc')
0 files changed, 0 insertions, 0 deletions