security/hakurei
6
3
Fork 0
Code Issues 10 Pull Requests Actions Packages Projects Releases 11 Wiki Activity

helper/bwrap: integrate seccomp into helper interface
All checks were successful
Build / Create distribution (push) Successful in 1m36s
Details
Test / Run NixOS test (push) Successful in 3m40s
Details

Browse Source 
This makes API usage much cleaner, and encapsulates all bwrap arguments in argsWt.

Signed-off-by: Ophestra <cat@gensokyo.uk>
This commit is contained in:
Ophestra
2025-01-22 01:51:10 +09:00
parent 82029948e6
commit 9a239fa1a5
21 changed files with 224 additions and 187 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
internal/proc/priv/shim/payload.go
View File

@@ -1,7 +1,6 @@
package shim
import (
"git.gensokyo.uk/security/fortify/fst"
"git.gensokyo.uk/security/fortify/helper/bwrap"
)
@@ -18,8 +17,6 @@ type Payload struct {
Home string
// sync fd
Sync *uintptr
// seccomp opts pass through
Syscall *fst.SyscallConfig
// verbosity pass through
Verbose bool