ToroV allows user's applications to run as VMs and to communicate with the host OS by relying on a POSIX hypercall interface.
GNU General Public License v3.0
10
stars
1
forks
source link
Add seccomp mode to only allows exit(), read() and write() to already-open file descriptors #10
Open
MatiasVara opened 2 years ago
In general, any syscall that involves a path should be avoided. However, the vmm runs in a containerized process with its own rootfs.