libsandbox
Sandboxing, simple.
|
libsandbox presents a simple interface for starting sandboxed code. More...
Data Structures | |
struct | sandbox |
A parent's representation of a sandbox. More... | |
struct | sandbox_code |
Code that can be run inside a sandbox (a function). More... |
Typedefs | |
typedef int(* | sandbox_init )(char **, struct channel *) |
Signature of a sandbox initialization function ('main' for sandboxes). |
Functions | |
struct sandbox_code * | sandbox_define_fd (int fd, const char *name) |
Define sandbox code from a file descriptor (executable or library) and a function name. | |
struct sandbox * | sandbox_spawn (struct sandbox_code *code, char **args, struct channel *talkback) |
Spawn a sandbox with a set of arguments and a channel for the sandbox to call back on if necessary. |
libsandbox presents a simple interface for starting sandboxed code.
At the moment, the only supported backend is Capsicum, but it is designed to be portable to other operating systems, too.
|
read |
Spawn a sandbox with a set of arguments and a channel for the sandbox to call back on if necessary.
code | the code to run |
args | arguments to provide to the sandbox's init function |
talkback | a channel for the sandbox to talk to: could be the sandbox's parent, a name resolver (eg Casper) or even NULL |
Definition at line 54 of file libsandbox.c.