Differences From Artifact [642e0af7b3]:
- File
src/OFSandbox.h
— part of check-in
[40cf53506a]
at
2017-04-09 18:22:14
on branch trunk
— Add OFSandbox
Only OpenBSD's pledge() is supported so far. (user: js, size: 4242) [annotate] [blame] [check-ins using]
To Artifact [68c11f76c6]:
- File src/OFSandbox.h — part of check-in [0fc70a4510] at 2017-04-13 12:57:59 on branch trunk — OFSandbox: Don't waste memory on bools (user: js, size: 4326) [annotate] [blame] [check-ins using]
| ︙ | ︙ | |||
25 26 27 28 29 30 31 |
/*!
* @class OFSandbox OFSandbox.h ObjFW/OFSandbox.h
*
* @brief A class which describes a sandbox for the application.
*/
@interface OFSandbox: OFObject <OFCopying>
{
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 |
/*!
* @class OFSandbox OFSandbox.h ObjFW/OFSandbox.h
*
* @brief A class which describes a sandbox for the application.
*/
@interface OFSandbox: OFObject <OFCopying>
{
bool _allowsStdIO: 1;
bool _allowsReadingFiles: 1;
bool _allowsWritingFiles: 1;
bool _allowsCreatingFiles: 1;
bool _allowsCreatingSpecialFiles: 1;
bool _allowsTemporaryFiles: 1;
bool _allowsIPSockets: 1;
bool _allowsMulticastSockets: 1;
bool _allowsChangingFileAttributes: 1;
bool _allowsFileOwnerChanges: 1;
bool _allowsFileLocks: 1;
bool _allowsUNIXSockets: 1;
bool _allowsDNS: 1;
bool _allowsUserDatabaseReading: 1;
bool _allowsFileDescriptorSending: 1;
bool _allowsFileDescriptorReceiving: 1;
bool _allowsTape: 1;
bool _allowsTTY: 1;
bool _allowsProcessOperations: 1;
bool _allowsExec: 1;
bool _allowsProtExec: 1;
bool _allowsSetTime: 1;
bool _allowsPS: 1;
bool _allowsVMInfo: 1;
bool _allowsChangingProcessRights: 1;
bool _allowsPF: 1;
bool _allowsAudio: 1;
bool _allowsBPF: 1;
}
/*! Allows IO operations on previously allocated file descriptors. */
@property bool allowsStdIO;
/*! Allows read access to the file system. */
@property bool allowsReadingFiles;
|
| ︙ | ︙ |