zerobox_linux_sandbox/
lib.rs

1//! Linux sandbox helper entry point.
2//!
3//! On Linux, `zerobox-linux-sandbox` applies:
4//! - in-process restrictions (`no_new_privs` + seccomp), and
5//! - bubblewrap for filesystem isolation.
6#[cfg(target_os = "linux")]
7mod bazel_bwrap;
8#[cfg(target_os = "linux")]
9mod bundled_bwrap;
10#[cfg(target_os = "linux")]
11mod bwrap;
12#[cfg(target_os = "linux")]
13pub mod error;
14#[cfg(target_os = "linux")]
15mod exec_util;
16#[cfg(target_os = "linux")]
17mod landlock;
18#[cfg(target_os = "linux")]
19mod launcher;
20#[cfg(target_os = "linux")]
21mod linux_run_main;
22#[cfg(target_os = "linux")]
23mod proxy_routing;
24
25#[cfg(target_os = "linux")]
26pub fn run_main() -> ! {
27    linux_run_main::run_main();
28}
29
30#[cfg(not(target_os = "linux"))]
31pub fn run_main() -> ! {
32    panic!("zerobox-linux-sandbox is only supported on Linux");
33}
zerobox_linux_sandbox/lib.rs

zerobox_linux_sandbox/
lib.rs
