sandlock-core 0.7.0

Lightweight process sandbox using Landlock, seccomp-bpf, and seccomp user notification
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13

//! NETLINK_ROUTE virtualization for sandboxed processes.
//!
//! Presents a synthetic network view (one loopback interface) without
//! exposing real host netlink.  See `state.rs` for the fd registry and
//! `handlers.rs` for seccomp-notify integration.

pub mod handlers;
pub mod proto;
pub mod proxy;
pub mod state;
pub mod synth;

pub use state::NetlinkState;