crosvm

mirror of https://chromium.googlesource.com/crosvm/crosvm synced 2024-11-25 05:03:05 +00:00

History

Zihan Chen a78f92cdb2 crosvm: Embed seccomp filters into binary Seccomp policy files will now pre-compile to bpf bytecode for target architecture and embedded in the crosvm binary. When minijail is not checked out in crosvm tree as a submodule, MINIJAIL_DIR environment variable needs to be specified for the policy compiler to run. TEST=all tests passed, vm runs fine with sandbox on and no separate policy files present. BUG=b:235858187 Change-Id: Ia801966df0a8adfdc4a80f5899e33121fe45e5f9 Reviewed-on: https://chromium-review.googlesource.com/c/crosvm/crosvm/+/3774318 Reviewed-by: Dennis Kempin <denniskempin@google.com> Commit-Queue: Zihan Chen <zihanchen@google.com> Tested-by: Zihan Chen <zihanchen@google.com>	2022-08-05 00:26:41 +00:00
..
book	crosvm: Embed seccomp filters into binary	2022-08-05 00:26:41 +00:00

Zihan Chen a78f92cdb2 crosvm: Embed seccomp filters into binary

Seccomp policy files will now pre-compile to bpf bytecode for
target architecture and embedded in the crosvm binary.
When minijail is not checked out in crosvm tree as a submodule,
MINIJAIL_DIR environment variable needs to be specified for the
policy compiler to run.

TEST=all tests passed, vm runs fine with sandbox on and no separate
policy files present.
BUG=b:235858187

Change-Id: Ia801966df0a8adfdc4a80f5899e33121fe45e5f9
Reviewed-on: https://chromium-review.googlesource.com/c/crosvm/crosvm/+/3774318
Reviewed-by: Dennis Kempin <denniskempin@google.com>
Commit-Queue: Zihan Chen <zihanchen@google.com>
Tested-by: Zihan Chen <zihanchen@google.com>

2022-08-05 00:26:41 +00:00

book

crosvm: Embed seccomp filters into binary

2022-08-05 00:26:41 +00:00