Skip to content
/ pentacle Public

Executes programs as sealed anonymous files on Linux

docs.rs/pentacle

License

MIT license
44 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

haha-business/pentacle

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

49 Commits
.github/workflows
.github/workflows
 
 
src
src
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
CHANGELOG.md
CHANGELOG.md
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

pentacle

pentacle is a library for executing programs as sealed anonymous files on Linux, using memfd_create(2). It also has a lower-level interface for creating and sealing anonymous files with various flags.

This is useful for executing programs that execute untrusted programs with root permissions, or ensuring a cryptographically-verified program is not tampered with after verification but before execution.

This library is based on runc's cloned_binary.c.

About

Executes programs as sealed anonymous files on Linux

docs.rs/pentacle

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

44 stars

Watchers

3 watching

Forks

3 forks
Report repository

Releases 2

v1.1.0 Latest
Oct 3, 2024
+ 1 release

Sponsor this project

 
Learn more about GitHub Sponsors

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages