Privilege Separation for Rust

This crate is experimental and WIP.

TODO

Many things, including:

• Improve documentation and rustdoc.
• net / imsg:
  • Fix reading writing of partial messages (async loop until done).
• process:
  • Handle stdin/stdout and add logging.
  • Setup child to child channels.
  • Allow to spawn multiple processes of a same child (not really needed with tokio).
  • Improve naming of structs.
  • Add support for OS-specific sandboxing (e.g. OpenBSD pledge)
  • Add support for running privileged operations in a child before privdrop.
  • Help to get ancillary into stable, add suppport for nightly..
• sample:
  • Write an actual reference implementation.

Copyright and license

Licensed under an OpenBSD-ISC-style license, see LICENSE for details.