Skip to content

Replace bubblewrap with unshare + chroot#2

Open
kernc wants to merge 43 commits into
masterfrom
unshare
Open

Replace bubblewrap with unshare + chroot#2
kernc wants to merge 43 commits into
masterfrom
unshare

Conversation

@kernc
Copy link
Copy Markdown
Member

@kernc kernc commented Mar 9, 2026

Reimplementation based on unshare from util-linux package. Drops bwrap as a dependency.

@kernc kernc force-pushed the unshare branch 14 times, most recently from 2523e48 to 281d5c3 Compare March 9, 2026 17:17
@keturn
Copy link
Copy Markdown

keturn commented Mar 10, 2026

I just stumbled across sandbox-run and it looks quite useful!

Of course, running random scripts off GitHub can be as much a problem as running scary-binary itself, so I was happy to find the source is short and straightforward use of bwrap.

The implementation in this PR makes for a different first impression.

It's still very good for shell code, backed by rigorous application of shellcheck and a test suite. I just can't help but ask: what did bubblewrap do wrong that made you decide you'd rather maintain hundreds of lines of shell script?

@kernc kernc force-pushed the unshare branch 3 times, most recently from 8923c51 to ad9c6a9 Compare March 10, 2026 21:24
@kernc
Copy link
Copy Markdown
Member Author

kernc commented Mar 10, 2026
edited
Loading

@keturn Hey! Thanks for the kind words. Indeed, the recent proliferation of installation steps comprising curl ... | bash has led me to figuring this out. Bubblewrap works and I'm happy with it so far.

Then somebody hinted at unshare. I figured I would only need a few more lines to achieve filesystem isolation, and I'd be all set! Well, this is what came out. 😅 It's now hefty 500-ish lines (~100 lines went for seccomp syscalls enumeration), but consider these are mere 500 lines of POSIX Linux Shell that replicate now nearly the whole of Bubblewrap (and, with support for its config profiles*, Firejail as well). That is with no extra dependencies (util-linux and mount are preassumed) and without a build step or the associated machinery. 🤷

Considering the two versions functionally equivalent (a huge assumption as I'm a real kernel noob), I now like this one somewhat better. But you too are right, as the length and ordering of the commit log in this PR confirms, shell certainly is full of biting gremlins.

I thought of putting the old version in a branch/tag, but your unexpected comment raises legitimate questions whether the two versions can be maintained side by side ...

The implementation in this PR makes for a different first impression.

Would appreciate a more thorough review! 😝

* New additional features in this PR:

  • support for Firejail profiles,
  • non-shared network namespace,
  • seccomp filtering active by default.

kernc added 12 commits March 13, 2026 08:59
@kernc
Fix reading from /dev/fd/0 when /dev/tty not available
4515925 
For whatever reason, this doesn't run bash interactive:

	unshare bash <&0 &

https://en.wikipedia.org/wiki/SIGTTIN
@kernc
Add port forwarding via PORTS=
333476f
@kernc
Fix working under sudo !
2c5ed08
@kernc
TST: Simplify test suite
11e0a8a
@kernc
DOC: Update readme
748a563
@kernc
CI: Fix unshare --mount-binfmt switch not available on ubuntu-latest
538bb2c
@kernc
CI: Avoid --time namespace negative offset
083a5d7
@kernc
CI: sysctl kernel.apparmor_restrict_unprivileged_userns=0
a674c66 
https://discourse.ubuntu.com/t/spec-unprivileged-user-namespace-restrictions-via-apparmor-in-ubuntu-23-10/37626
@kernc
CI: Debug failing test
0e622ed
@kernc
Seccomp: Merge syscall list from Docker project
6e5a870 
https://docs.docker.com/engine/security/seccomp/
@kernc
Use slirp4netns's resolv.conf nameserver if not the host's
49986e4
@kernc
Fix test with RO_BIND glob wildcards
7074801
@kernc kernc force-pushed the unshare branch 3 times, most recently from 1de1afd to 41ff71c Compare March 13, 2026 08:13
kernc added 14 commits March 15, 2026 03:07
@kernc
Print important warning even when not VERBOSE=
e2e1a52
@kernc
BUG: Fix rigorous test suite 😅
a27dc58
@kernc
DOC: Update readme
94faab7
@kernc
DOC, TST: Legacy sandbox-run.bwrap-related docs & test
e6e742c
@kernc
sandbox-run.bwrap: Remove non-portable /proc/$PPID/environ
822217f 
This only worked in Bash and Zsh, but not dash, POSIX or fish.

Fixes #1
@kernc
REF: Let seccomp syscalls enumeration take fewer lines
7871cb6
@kernc
Don't mount $PWD when equal to $HOME
f0e2d0e
@kernc
CI: Re-install bubblewrap lost in b56a078, fix test_bwrap.sh
903ab4b
@kernc
CI: Workflow commands / Grouping log lines per test
d582a2c
@kernc
Minor changes
e892db7
@kernc
Add DEBUG= debugging with PS4
07cba97
@kernc
Clear trap in the cleanup routine so as to not reenter
d5abc21
@kernc
PERF: verbose mode as composable function, rather than stream filter
aea4d5e 
"30% faster too!"
@kernc
PERF: Parallelize everything, 2x faster on /usr/bin/true
045c790
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@kernc @keturn