1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
|
-- Copyright (C) 2007 Lauri Leukkunen <lle@rahina.org>
-- Licensed under MIT license.
--
-- "simple" mode, to be used for software development & building
-- (as the name says, this is the simple solution; See/use the "devel"
-- mode when a more full-featured environment is needed)
-- Rule file interface version, mandatory.
--
rule_file_interface_version = "19"
----------------------------------
tools = tools_root
if (not tools) then
tools = "/"
end
simple_chain = {
next_chain = nil,
binary = nil,
rules = {
-- -----------------------------------------------
-- 2. Development environment special destinations:
{prefix = "/sb2/wrappers",
replace_by = sbox_dir.."/share/scratchbox2/wrappers",
readonly = true},
{prefix = "/sb2/scripts",
replace_by = sbox_dir.."/share/scratchbox2/scripts",
readonly = true},
{prefix = sbox_user_home_dir, use_orig_path = true},
{prefix = sbox_dir .. "/share/scratchbox2",
use_orig_path = true},
{path = "/usr/bin/sb2-show",
use_orig_path = true, readonly = true},
-- -----------------------------------------------
-- 99. Other rules.
{prefix = "/lib", map_to = target_root},
{prefix = "/usr/share/osso", map_to = target_root},
{prefix = "/usr/lib/perl", map_to = tools},
{prefix = "/usr/lib/dpkg", map_to = tools},
{prefix = "/usr/lib/apt", map_to = tools},
{prefix = "/usr/lib/cdbs", map_to = tools},
{prefix = "/usr/lib/libfakeroot", map_to = tools},
{prefix = "/usr/lib", map_to = target_root},
{prefix = "/usr/include", map_to = target_root},
{prefix = "/var/lib/apt", map_to = target_root},
{prefix = "/var/cache/apt", map_to = target_root},
{prefix = "/var/lib/dpkg", map_to = target_root},
{prefix = "/var/cache/dpkg", map_to = target_root},
{prefix = "/home/user", map_to = target_root},
{prefix = "/home", use_orig_path = true},
{prefix = "/host_usr", map_to = target_root},
{prefix = session_dir, use_orig_path = true},
{prefix = "/tmp", map_to = session_dir},
{prefix = "/dev", use_orig_path = true},
{prefix = "/proc", custom_map_funct = sb2_procfs_mapper,
virtual_path = true},
{prefix = "/sys", use_orig_path = true},
{prefix = "/etc/resolv.conf", use_orig_path = true},
{prefix = "/etc/apt", map_to = target_root},
{prefix = tools, use_orig_path = true},
{path = "/", use_orig_path = true},
{prefix = "/", map_to = tools}
}
}
qemu_chain = {
next_chain = nil,
binary = basename(sbox_cputransparency_method),
rules = {
{prefix = "/lib", map_to = target_root},
{prefix = "/usr/lib", map_to = target_root},
{prefix = "/usr/local/lib", map_to = target_root},
{prefix = session_dir, use_orig_path = true},
{prefix = "/tmp", map_to = session_dir},
{prefix = "/dev", use_orig_path = true},
{dir = "/proc", custom_map_funct = sb2_procfs_mapper,
virtual_path = true},
{prefix = "/sys", use_orig_path = true},
{prefix = "/etc/resolv.conf", use_orig_path = true},
{prefix = tools, use_orig_path = true},
{path = "/", use_orig_path = true},
{prefix = "/", map_to = tools}
}
}
export_chains = {
qemu_chain,
simple_chain
}
-- Exec policy rules.
default_exec_policy = {
name = "Default"
}
-- Note that the real path (mapped path) is used when looking up rules!
all_exec_policies_chain = {
next_chain = nil,
binary = nil,
rules = {
-- DEFAULT RULE (must exist):
{prefix = "/", exec_policy = default_exec_policy}
}
}
exec_policy_chains = {
all_exec_policies_chain
}
-- This table lists all exec policies - this is used when the current
-- process wants to locate the currently active policy
all_exec_policies = {
default_exec_policy,
}
|