summary refs log tree commit diff
path: root/src/linux.rs
diff options
context:
space:
mode:
authorJakub Staron <jstaron@google.com>2019-06-10 14:00:07 -0700
committerCommit Bot <commit-bot@chromium.org>2019-06-21 21:47:58 +0000
commitcc91fc825241a3ac5b00693e0be79c50a9528dab (patch)
treeb1d757946c3790b58b0713bf18b07e0f9376a4c1 /src/linux.rs
parentb38bde9bd122aefa01fcc73442b3cd92f18086e9 (diff)
downloadcrosvm-cc91fc825241a3ac5b00693e0be79c50a9528dab.tar
crosvm-cc91fc825241a3ac5b00693e0be79c50a9528dab.tar.gz
crosvm-cc91fc825241a3ac5b00693e0be79c50a9528dab.tar.bz2
crosvm-cc91fc825241a3ac5b00693e0be79c50a9528dab.tar.lz
crosvm-cc91fc825241a3ac5b00693e0be79c50a9528dab.tar.xz
crosvm-cc91fc825241a3ac5b00693e0be79c50a9528dab.tar.zst
crosvm-cc91fc825241a3ac5b00693e0be79c50a9528dab.zip
devices: Add separate seccomp policy for pmem device
This change adds separate seccomp policy for pmem device. Previously,
pmem device was using block device seccomp policy.

BUG=None
TEST=Boot VM and run xfstests on pmem device

Change-Id: I3f25d64d4da6ad8f0ff22b285e1a7e958f545c55
Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/platform/crosvm/+/1652441
Reviewed-by: Stephen Barber <smbarber@chromium.org>
Reviewed-by: Zach Reizner <zachr@chromium.org>
Tested-by: kokoro <noreply+kokoro@google.com>
Commit-Queue: Jakub StaroĊ„ <jstaron@google.com>
Diffstat (limited to 'src/linux.rs')
-rw-r--r--src/linux.rs3
1 files changed, 1 insertions, 2 deletions
diff --git a/src/linux.rs b/src/linux.rs
index 9de014a..2fe1d5b 100644
--- a/src/linux.rs
+++ b/src/linux.rs
@@ -764,8 +764,7 @@ fn create_pmem_device(
 
     Ok(VirtioDeviceStub {
         dev: Box::new(dev) as Box<dyn VirtioDevice>,
-        /// TODO(jstaron) Create separate device policy for pmem_device.
-        jail: simple_jail(&cfg, "block_device.policy")?,
+        jail: simple_jail(&cfg, "pmem_device.policy")?,
     })
 }
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-05-01 05:35:11 +0000