pentacle
| Crates.io | pentacle |
| lib.rs | pentacle |
| version | 1.1.0 |
| source | src |
| created_at | 2019-11-15 23:05:44.039094 |
| updated_at | 2024-10-03 23:20:19.916178 |
| description | Executes programs as sealed anonymous files on Linux |
| homepage | |
| repository | https://github.com/haha-business/pentacle |
| max_upload_size | |
| id | 181665 |
| size | 39,949 |
iliana etaoin (iliana)
documentation
README
pentacle
pentacle is a library for executing programs as sealed anonymous files on Linux, using memfd_create(2). It also has a lower-level interface for creating and sealing anonymous files with various flags.
This is useful for executing programs that execute untrusted programs with root permissions, or ensuring a cryptographically-verified program is not tampered with after verification but before execution.
This library is based on runc's cloned_binary.c.