Comment 1 for bug 1408073

So if I understand correctly, the issue you report is that the current setup (with a single config file) forces us to have rootwrap Kilo code work with Juno default config. If we separated default values in /usr/share from user customization in /etc, we could make backward-incompatible changes to the config and have them pass the Grenade test.

The problem is, how do you point rootwrap to that /usr/share location ? Currently the location of the unique config file in /etc is passed on the command line, and added in a sudoers entry. You can't hardcode the /usr/share location in code since every distro has a different idea of where that should be.

I guess we could encode some common location search, but that would be more brittle and weaken the simple security model (you just have one file location to secure right now).

Overall, since we don't plan to do backward-incompatible changes to the rootwrap config, the cost/benefit tradeoff just doesn't seem to be worth it...

Did I miss something ?