Systrace

Systrace offers fine-grained confinement for multiple applications with multiple policies.

Systrace intercepts system calls:
Allows or denies their execution.
Rewrites system call arguments.

Policy determines which system calls are allowed.

Specifying correct policy is difficult.
Different policies for different binaries.
Policy requirements may change for single application depending on its use.