An nsjail Docker image for CTF pwnables. Easily create secure, isolated xinetd/inetd-style services.
BSD 3-Clause "New" or "Revised" License
172
stars
13
forks
source link
patch nsjail to use multiarch libseccomp #12
Closed
ginkoid closed 3 years ago
NsJail uses Kafel for seccomp, which does not support multiple architectures: https://github.com/google/kafel/blob/f29b07503d911965ebe6303efcc90426254419b5/src/codegen.c#L716
This PR forks NsJail to use libseccomp instead. This means we fully support both amd64 and i386 binaries.
Reported in #11