Skip to main content

evalbox_sandbox/notify/
mod.rs

1//! Seccomp user notification support.
2//!
3//! This module provides the supervisor side of seccomp user notification,
4//! enabling syscall interception without Linux user namespaces.
5//!
6//! ## Modules
7//!
8//! - **supervisor** - Main notification loop that handles intercepted syscalls
9//! - **`virtual_fs`** - Path translation for filesystem virtualization
10//! - **`scm_rights`** - Unix socket fd passing (child → parent listener fd transfer)
11
12pub mod scm_rights;
13pub mod supervisor;
14pub mod virtual_fs;
15
16pub use supervisor::{NotifyEvent, Supervisor};
17pub use virtual_fs::VirtualFs;