Overview
| Comment: | ofhttp: Use OFSandbox's new unveiling |
|---|---|
| Downloads: | Tarball | ZIP archive | SQL archive |
| Timelines: | family | ancestors | descendants | both | trunk |
| Files: | files | file ages | folders |
| SHA3-256: |
c554cd71dab5a61a4620406ac9875631 |
| User & Date: | js on 2018-11-04 20:46:15 |
| Other Links: | manifest | tags |
Context
|
2018-11-10
| ||
| 10:01 | OFHTTPServer: Add support for TLS check-in: f6d9264de0 user: js tags: trunk | |
|
2018-11-04
| ||
| 20:46 | ofhttp: Use OFSandbox's new unveiling check-in: c554cd71da user: js tags: trunk | |
| 20:28 | ofhash: Use OFSandbox's new unveiling check-in: 0fd8ab483c user: js tags: trunk | |
Changes
Modified utils/ofarc/OFArc.m from [b7dd938e02] to [5901ca9a12].
| ︙ | ︙ | |||
172 173 174 175 176 177 178 | of_unichar_t option, mode = '\0'; of_string_encoding_t encoding = OF_STRING_ENCODING_AUTODETECT; OFArray OF_GENERIC(OFString *) *remainingArguments, *files; id <Archive> archive; #ifdef OF_HAVE_SANDBOX OFSandbox *sandbox = [OFSandbox sandbox]; | < | 172 173 174 175 176 177 178 179 180 181 182 183 184 185 | of_unichar_t option, mode = '\0'; of_string_encoding_t encoding = OF_STRING_ENCODING_AUTODETECT; OFArray OF_GENERIC(OFString *) *remainingArguments, *files; id <Archive> archive; #ifdef OF_HAVE_SANDBOX OFSandbox *sandbox = [OFSandbox sandbox]; [sandbox setAllowsStdIO: true]; [sandbox setAllowsReadingFiles: true]; [sandbox setAllowsWritingFiles: true]; [sandbox setAllowsCreatingFiles: true]; [sandbox setAllowsChangingFileAttributes: true]; [sandbox setAllowsUserDatabaseReading: true]; /* Dropped after parsing options */ |
| ︙ | ︙ |
Modified utils/ofhttp/OFHTTP.m from [43dea22caf] to [661d5ad21b].
| ︙ | ︙ | |||
22 23 24 25 26 27 28 29 30 31 32 33 34 | #import "OFData.h" #import "OFDictionary.h" #import "OFFile.h" #import "OFFileManager.h" #import "OFHTTPClient.h" #import "OFHTTPRequest.h" #import "OFHTTPResponse.h" #import "OFOptionsParser.h" #import "OFStdIOStream.h" #import "OFSystemInfo.h" #import "OFTCPSocket.h" #import "OFTLSSocket.h" #import "OFURL.h" | > > < < | 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 | #import "OFData.h" #import "OFDictionary.h" #import "OFFile.h" #import "OFFileManager.h" #import "OFHTTPClient.h" #import "OFHTTPRequest.h" #import "OFHTTPResponse.h" #import "OFLocale.h" #import "OFOptionsParser.h" #import "OFSandbox.h" #import "OFStdIOStream.h" #import "OFSystemInfo.h" #import "OFTCPSocket.h" #import "OFTLSSocket.h" #import "OFURL.h" #import "OFConnectionFailedException.h" #import "OFHTTPRequestFailedException.h" #import "OFInvalidFormatException.h" #import "OFInvalidServerReplyException.h" #import "OFOpenItemFailedException.h" #import "OFOutOfRangeException.h" |
| ︙ | ︙ | |||
375 376 377 378 379 380 381 |
{ '\0', @"insecure", 0, &_insecure, NULL },
{ '\0', nil, 0, NULL, NULL }
};
OFOptionsParser *optionsParser;
of_unichar_t option;
#ifdef OF_HAVE_SANDBOX
| | < | | | | | | | | > > | < < < | 375 376 377 378 379 380 381 382 383 384 385 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 |
{ '\0', @"insecure", 0, &_insecure, NULL },
{ '\0', nil, 0, NULL, NULL }
};
OFOptionsParser *optionsParser;
of_unichar_t option;
#ifdef OF_HAVE_SANDBOX
OFSandbox *sandbox = [OFSandbox sandbox];
[sandbox setAllowsStdIO: true];
[sandbox setAllowsReadingFiles: true];
[sandbox setAllowsWritingFiles: true];
[sandbox setAllowsCreatingFiles: true];
[sandbox setAllowsIPSockets: true];
[sandbox setAllowsDNS: true];
[sandbox setAllowsUserDatabaseReading: true];
[sandbox setAllowsTTY: true];
/* Dropped after parsing options */
[sandbox setAllowsUnveil: true];
[OFApplication activateSandbox: sandbox];
#endif
#ifndef OF_AMIGAOS
[OFLocale addLanguageDirectory: @LANGUAGE_DIR];
#else
[OFLocale addLanguageDirectory: @"PROGDIR:/share/ofhttp/lang"];
#endif
|
| ︙ | ︙ | |||
469 470 471 472 473 474 475 476 477 478 479 480 481 482 | @"opt", optStr)]; } [OFApplication terminateWithStatus: 1]; break; } } _outputPath = [outputPath copy]; _URLs = [[optionsParser remainingArguments] retain]; if ([_URLs count] < 1) help(of_stderr, false, 1); | > > > > > > > > > | 467 468 469 470 471 472 473 474 475 476 477 478 479 480 481 482 483 484 485 486 487 488 489 | @"opt", optStr)]; } [OFApplication terminateWithStatus: 1]; break; } } #ifdef OF_HAVE_SANDBOX [sandbox unveilPath: (outputPath != nil ? outputPath : OF_PATH_CURRENT_DIRECTORY) permissions: @"wc"]; [sandbox setAllowsUnveil: false]; [OFApplication activateSandbox: sandbox]; #endif _outputPath = [outputPath copy]; _URLs = [[optionsParser remainingArguments] retain]; if ([_URLs count] < 1) help(of_stderr, false, 1); |
| ︙ | ︙ |