Skip to content

laudominik/sandbox

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
scripts
scripts
 
 
src
src
 
 
.gitignore
.gitignore
 
 
CMakeLists.txt
CMakeLists.txt
 
 
README.md
README.md
 
 

Repository files navigation

Description

A simple container runtime made as a final project for OS software course. Features:

  • running containerized processes in premade rootfs
  • overlayfs
  • capabilities dropping
  • dns/network setup
  • basic seccomp configuration

Dependencies:

  • libseccomp

Building

mkdir build

cmake -DCMAKE_BUILD_TYPE=Debug -B./build -G Ninja
 
cmake --build build/ --config Debug --target sandboxer_poc

Running

example:

sudo build/sandboxer_poc --exec /bin/bash --rootfs images/ubuntu --name jammy --container_dir containers/jammy --seccomp

About

A simple container runtime

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages