projects / qemu-gpiodev / libfuse.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: cc315f5) | patch
fusermount: refuse unknown options
authorJann Horn <jannh@google.com>
Sat, 14 Jul 2018 10:47:50 +0000 (03:47 -0700)
committerNikolaus Rath <Nikolaus@rath.org>
Wed, 18 Jul 2018 19:32:28 +0000 (20:32 +0100)
commit5018a0c016495155ee598b7e0167b43d5d902414
tree6a13fbb077868e91fa36b942a88105caa8093886tree | snapshot
parentcc315f5aa7fae04e16dda419859b2995992977cdcommit | diff
fusermount: refuse unknown options

Blacklists are notoriously fragile; especially if the kernel wishes to add
some security-critical mount option at a later date, all existing systems
with older versions of fusermount installed will suddenly have a security
problem.
Additionally, if the kernel's option parsing became a tiny bit laxer, the
blacklist could probably be bypassed.

Whitelist known-harmless flags instead, even if it's slightly more
inconvenient.
util/fusermount.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.