Is your criticism here that there's no point in invoking bwrap directly when you could instead implement the same things that bwrap implements?
replyI'd much rather a system call bwrap than re-implement bwrap, because bwrap has already been extensively tested.
That was my thinking, too. The only other option would be reimplement it in Rust (never researched what exists though).
replyThanks for sharing this, I read your comment multiple times. What would be the alternative though? It is true that the program being written in Rust doesn't solve the problem of spawning subprocesses, but what's the alternative in that case?
reply