Albert S 1e63fa75ef Introduce exile_launch*(): Simplifies launching functions protected by policy ...

Those functions clone(), then activate the specified policy.
They then jump to the supplied function and pass an argument to it.

exile_launch() returns a read file descriptor, that can be
used by the parent process to get the data.

exile_launch_get() is a convenience wrapper, return a buffer
containing everything read from the sandboxed function.

2022-01-16 21:46:11 +01:00

62 KiB

Raw Blame History

View Raw