Skip to content
This repository has been archived by the owner on Jan 4, 2021. It is now read-only.

xmc-dev/isowrap

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

37 Commits

test_src

test_src

 
 

.gitignore

.gitignore

 
 

.travis.yml

.travis.yml

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

box.go

box.go

 
 

boxrunner_freebsd.go

boxrunner_freebsd.go

 
 

boxrunner_linux.go

boxrunner_linux.go

 
 

isowrap_test.go

isowrap_test.go

 
 

util.go

util.go

 
 

Repository files navigation

Isowrap

Build Status Coverage Status GoDoc

Isowrap is a library used to execute programs isolated from the rest of the system.

It is a wrapper around Linux Containers (using isolate) and FreeBSD jails (WIP).

This is probably alpha quality software.

To do:

  • Linux isolate runner
    • Full env
  • FreeBSD jail runner
    • DOES NOT COMPILE - breaking changes
    • Implement "proper" wall time limit.
    • Stack limit
    • Maximum number of processes
    • Enable/Disable networking
    • Environment variables

Platform specific requirements

Linux (isolate)

See the INSTALLATION part of the isolate manual. Control groups are required, make sure that they are enabled and cgroupfs is mounted.

FreeBSD (jail)

Enable kernel racct support by adding the following line to /etc/loader.conf:

kern.racct.enable=1

About

Library for running programs safely isolated from the rest of the system

Topics

linux golang freebsd containers isolate jails

Resources

Readme

License

ISC license
Activity
Custom properties

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages