configs/busybox: indicate that the busybox must be statically compiled

diff --git a/configs/busybox-with-execveat.cfg b/configs/static-busybox-with-execveat.cfg
similarity index 74%
rename from configs/busybox-with-execveat.cfg
rename to configs/static-busybox-with-execveat.cfg
index af2402f..56b7cf1 100644 (file)
--- a/configs/busybox-with-execveat.cfg
+++ b/configs/static-busybox-with-execveat.cfg
@@ -1,6 +1,6 @@
-name: "busybox-with-execveat"
-description: "An example/demo policy which allows to execute /bin/busybox in an empty (only /proc) "
-description: "mount namespace which doesn't even include busybox itself."
+name: "static-busybox-with-execveat"
+description: "An example/demo policy which allows to execute /bin/busybox-static in an "
+description: "empty (only /proc) mount namespace which doesn't even include busybox itself"
 
 mode: ONCE
 hostname: "BUSYBOX"
@@ -39,7 +39,7 @@ mount {
 seccomp_string: "POLICY example {                              "
 seccomp_string:        "       ERRNO(0) { ptrace }             "
 seccomp_string:        "}                                                              "
-seccomp_string:        "USE example DEFAULT ALLOW"
+seccomp_string:        "USE example DEFAULT ALLOW              "
 
 exec_bin {
        path: "/bin/busybox"