|
|
Subscribe / Log in / New account

Rust 1.58.1 released

Rust 1.58.1 released

Posted Jan 25, 2022 2:01 UTC (Tue) by bmgordon (subscriber, #16077)
In reply to: Rust 1.58.1 released by jra
Parent article: Rust 1.58.1 released

> We do now. Most applications don't. I'm including some system-level security libraries in that description. It would be nice to have a sandbox where user created symlinks are disallowed in order to run such applications safely.

Does MNT_NOSYMFOLLOW do what you're asking for? A mount with that flag can still contain symlinks, but they won't be followed. Chrome OS uses this when mounting partitions that can contain user-modifiable data, since it already doesn't have a history of allowing non-root users to create symlinks.

to post comments

Rust 1.58.1 released

Posted Jan 25, 2022 2:41 UTC (Tue) by jra (subscriber, #55261) [Link] (1 responses)

I did not know about MNT_NOSYMFOLLOW ! When was that added ? This is why I love lwn :-).

Rust 1.58.1 released

Posted Jan 25, 2022 16:44 UTC (Tue) by bmgordon (subscriber, #16077) [Link]

> I did not know about MNT_NOSYMFOLLOW ! When was that added ?

I'm pretty sure it showed up in kernel 5.10 and util-linux 2.36.1.


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds