A lightweight Linux process sandbox written in Rust.
Run untrusted applications in an isolated environment — without affecting your system.
Capsule runs a target process in a sandboxed environment using Linux kernel isolation primitives. The sandboxed process gets its own identity, filesystem view, and process tree, completely separated from the host system.
Capsule builds isolation in layers, using native Linux features:
The rootless model is built on user namespaces, namespace-local root maps to your unprivileged host account, so the sandboxed process never gains real host privileges.
src/
├── main.rs — entry point and execution flow
├── errors.rs — shared error types
├── namespaces.rs — namespace isolation logic
├── capsule.rs — high-level sandbox API (in progress)
└── utils.rs — utility functions
The user namespace layer is fully working:
- Creates a new user namespace via
unshare(CLONE_NEWUSER) - Configures
uid_mapandgid_mapfor rootless identity mapping - Verified that the sandboxed process moves into a new isolated namespace
The typical UID/GID mapping looks like this:
0 1000 1
Namespace-local UID 0 → host UID 1000. Root inside, unprivileged outside.
- User namespace + UID/GID mapping
- Switch to namespace-local root via
setuid(0)/setgid(0) - PID namespace isolation
- Mount namespace + filesystem view control
- Seccomp BPF syscall filter profile
- cgroup v2 memory and CPU limits
- High-level
capsule run <binary>CLI
- Linux kernel 5.x+
- Rust 1.70+
- No root privileges required
cargo build
cargo runMIT