/* * Copyright (c) 2008-2024 Jonathan Schleifer * * All rights reserved. * * This program is free software: you can redistribute it and/or modify it * under the terms of the GNU Lesser General Public License version 3.0 only, * as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but WITHOUT * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or * FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License * version 3.0 for more details. * * You should have received a copy of the GNU Lesser General Public License * version 3.0 along with this program. If not, see * . */ #include "config.h" #import "OFSandbox.h" #import "OFArray.h" #import "OFPair.h" #import "OFString.h" @implementation OFSandbox @synthesize unveiledPaths = _unveiledPaths; + (instancetype)sandbox { return [[[self alloc] init] autorelease]; } - (instancetype)init { self = [super init]; @try { _unveiledPaths = [[OFMutableArray alloc] init]; } @catch (id e) { [self release]; @throw e; } return self; } - (void)dealloc { [_unveiledPaths release]; [super dealloc]; } - (void)setAllowsStdIO: (bool)allowsStdIO { _allowsStdIO = allowsStdIO; } - (bool)allowsStdIO { return _allowsStdIO; } - (void)setAllowsReadingFiles: (bool)allowsReadingFiles { _allowsReadingFiles = allowsReadingFiles; } - (bool)allowsReadingFiles { return _allowsReadingFiles; } - (void)setAllowsWritingFiles: (bool)allowsWritingFiles { _allowsWritingFiles = allowsWritingFiles; } - (bool)allowsWritingFiles { return _allowsWritingFiles; } - (void)setAllowsCreatingFiles: (bool)allowsCreatingFiles { _allowsCreatingFiles = allowsCreatingFiles; } - (bool)allowsCreatingFiles { return _allowsCreatingFiles; } - (void)setAllowsCreatingSpecialFiles: (bool)allowsCreatingSpecialFiles { _allowsCreatingSpecialFiles = allowsCreatingSpecialFiles; } - (bool)allowsCreatingSpecialFiles { return _allowsCreatingSpecialFiles; } - (void)setAllowsTemporaryFiles: (bool)allowsTemporaryFiles { _allowsTemporaryFiles = allowsTemporaryFiles; } - (bool)allowsTemporaryFiles { return _allowsTemporaryFiles; } - (void)setAllowsIPSockets: (bool)allowsIPSockets { _allowsIPSockets = allowsIPSockets; } - (bool)allowsIPSockets { return _allowsIPSockets; } - (void)setAllowsMulticastSockets: (bool)allowsMulticastSockets { _allowsMulticastSockets = allowsMulticastSockets; } - (bool)allowsMulticastSockets { return _allowsMulticastSockets; } - (void)setAllowsChangingFileAttributes: (bool)allowsChangingFileAttributes { _allowsChangingFileAttributes = allowsChangingFileAttributes; } - (bool)allowsChangingFileAttributes { return _allowsChangingFileAttributes; } - (void)setAllowsFileOwnerChanges: (bool)allowsFileOwnerChanges { _allowsFileOwnerChanges = allowsFileOwnerChanges; } - (bool)allowsFileOwnerChanges { return _allowsFileOwnerChanges; } - (void)setAllowsFileLocks: (bool)allowsFileLocks { _allowsFileLocks = allowsFileLocks; } - (bool)allowsFileLocks { return _allowsFileLocks; } - (void)setAllowsUNIXSockets: (bool)allowsUNIXSockets { _allowsUNIXSockets = allowsUNIXSockets; } - (bool)allowsUNIXSockets { return _allowsUNIXSockets; } - (void)setAllowsDNS: (bool)allowsDNS { _allowsDNS = allowsDNS; } - (bool)allowsDNS { return _allowsDNS; } - (void)setAllowsUserDatabaseReading: (bool)allowsUserDatabaseReading { _allowsUserDatabaseReading = allowsUserDatabaseReading; } - (bool)allowsUserDatabaseReading { return _allowsUserDatabaseReading; } - (void)setAllowsFileDescriptorSending: (bool)allowsFileDescriptorSending { _allowsFileDescriptorSending = allowsFileDescriptorSending; } - (bool)allowsFileDescriptorSending { return _allowsFileDescriptorSending; } - (void)setAllowsFileDescriptorReceiving: (bool)allowsFileDescriptorReceiving { _allowsFileDescriptorReceiving = allowsFileDescriptorReceiving; } - (bool)allowsFileDescriptorReceiving { return _allowsFileDescriptorReceiving; } - (void)setAllowsTape: (bool)allowsTape { _allowsTape = allowsTape; } - (bool)allowsTape { return _allowsTape; } - (void)setAllowsTTY: (bool)allowsTTY { _allowsTTY = allowsTTY; } - (bool)allowsTTY { return _allowsTTY; } - (void)setAllowsProcessOperations: (bool)allowsProcessOperations { _allowsProcessOperations = allowsProcessOperations; } - (bool)allowsProcessOperations { return _allowsProcessOperations; } - (void)setAllowsExec: (bool)allowsExec { _allowsExec = allowsExec; } - (bool)allowsExec { return _allowsExec; } - (void)setAllowsProtExec: (bool)allowsProtExec { _allowsProtExec = allowsProtExec; } - (bool)allowsProtExec { return _allowsProtExec; } - (void)setAllowsSetTime: (bool)allowsSetTime { _allowsSetTime = allowsSetTime; } - (bool)allowsSetTime { return _allowsSetTime; } - (void)setAllowsPS: (bool)allowsPS { _allowsPS = allowsPS; } - (bool)allowsPS { return _allowsPS; } - (void)setAllowsVMInfo: (bool)allowsVMInfo { _allowsVMInfo = allowsVMInfo; } - (bool)allowsVMInfo { return _allowsVMInfo; } - (void)setAllowsChangingProcessRights: (bool)allowsChangingProcessRights { _allowsChangingProcessRights = allowsChangingProcessRights; } - (bool)allowsChangingProcessRights { return _allowsChangingProcessRights; } - (void)setAllowsPF: (bool)allowsPF { _allowsPF = allowsPF; } - (bool)allowsPF { return _allowsPF; } - (void)setAllowsAudio: (bool)allowsAudio { _allowsAudio = allowsAudio; } - (bool)allowsAudio { return _allowsAudio; } - (void)setAllowsBPF: (bool)allowsBPF { _allowsBPF = allowsBPF; } - (bool)allowsBPF { return _allowsBPF; } - (void)setAllowsUnveil: (bool)allowsUnveil { _allowsUnveil = allowsUnveil; } - (bool)allowsUnveil { return _allowsUnveil; } - (void)setReturnsErrors: (bool)returnsErrors { _returnsErrors = returnsErrors; } - (bool)returnsErrors { return _returnsErrors; } - (id)copy { OFSandbox *copy = [[OFSandbox alloc] init]; copy->_allowsStdIO = _allowsStdIO; copy->_allowsReadingFiles = _allowsReadingFiles; copy->_allowsWritingFiles = _allowsWritingFiles; copy->_allowsCreatingFiles = _allowsCreatingFiles; copy->_allowsCreatingSpecialFiles = _allowsCreatingSpecialFiles; copy->_allowsTemporaryFiles = _allowsTemporaryFiles; copy->_allowsIPSockets = _allowsIPSockets; copy->_allowsMulticastSockets = _allowsMulticastSockets; copy->_allowsChangingFileAttributes = _allowsChangingFileAttributes; copy->_allowsFileOwnerChanges = _allowsFileOwnerChanges; copy->_allowsFileLocks = _allowsFileLocks; copy->_allowsUNIXSockets = _allowsUNIXSockets; copy->_allowsDNS = _allowsDNS; copy->_allowsUserDatabaseReading = _allowsUserDatabaseReading; copy->_allowsFileDescriptorSending = _allowsFileDescriptorSending; copy->_allowsFileDescriptorReceiving = _allowsFileDescriptorReceiving; copy->_allowsTape = _allowsTape; copy->_allowsTTY = _allowsTTY; copy->_allowsProcessOperations = _allowsProcessOperations; copy->_allowsExec = _allowsExec; copy->_allowsProtExec = _allowsProtExec; copy->_allowsSetTime = _allowsSetTime; copy->_allowsPS = _allowsPS; copy->_allowsVMInfo = _allowsVMInfo; copy->_allowsChangingProcessRights = _allowsChangingProcessRights; copy->_allowsPF = _allowsPF; copy->_allowsAudio = _allowsAudio; copy->_allowsBPF = _allowsBPF; copy->_allowsUnveil = _allowsUnveil; copy->_returnsErrors = _returnsErrors; return copy; } - (bool)isEqual: (id)object { OFSandbox *sandbox; if (object == self) return true; if (![object isKindOfClass: [OFSandbox class]]) return false; sandbox = object; if (sandbox->_allowsStdIO != _allowsStdIO) return false; if (sandbox->_allowsReadingFiles != _allowsReadingFiles) return false; if (sandbox->_allowsWritingFiles != _allowsWritingFiles) return false; if (sandbox->_allowsCreatingFiles != _allowsCreatingFiles) return false; if (sandbox->_allowsCreatingSpecialFiles != _allowsCreatingSpecialFiles) return false; if (sandbox->_allowsTemporaryFiles != _allowsTemporaryFiles) return false; if (sandbox->_allowsIPSockets != _allowsIPSockets) return false; if (sandbox->_allowsMulticastSockets != _allowsMulticastSockets) return false; if (sandbox->_allowsChangingFileAttributes != _allowsChangingFileAttributes) return false; if (sandbox->_allowsFileOwnerChanges != _allowsFileOwnerChanges) return false; if (sandbox->_allowsFileLocks != _allowsFileLocks) return false; if (sandbox->_allowsUNIXSockets != _allowsUNIXSockets) return false; if (sandbox->_allowsDNS != _allowsDNS) return false; if (sandbox->_allowsUserDatabaseReading != _allowsUserDatabaseReading) return false; if (sandbox->_allowsFileDescriptorSending != _allowsFileDescriptorSending) return false; if (sandbox->_allowsFileDescriptorReceiving != _allowsFileDescriptorReceiving) return false; if (sandbox->_allowsTape != _allowsTape) return false; if (sandbox->_allowsTTY != _allowsTTY) return false; if (sandbox->_allowsProcessOperations != _allowsProcessOperations) return false; if (sandbox->_allowsExec != _allowsExec) return false; if (sandbox->_allowsProtExec != _allowsProtExec) return false; if (sandbox->_allowsSetTime != _allowsSetTime) return false; if (sandbox->_allowsPS != _allowsPS) return false; if (sandbox->_allowsVMInfo != _allowsVMInfo) return false; if (sandbox->_allowsChangingProcessRights != _allowsChangingProcessRights) return false; if (sandbox->_allowsPF != _allowsPF) return false; if (sandbox->_allowsAudio != _allowsAudio) return false; if (sandbox->_allowsBPF != _allowsBPF) return false; if (sandbox->_allowsUnveil != _allowsUnveil) return false; if (sandbox->_returnsErrors != _returnsErrors) return false; return true; } - (unsigned long)hash { unsigned long hash; OFHashInit(&hash); OFHashAddByte(&hash, _allowsStdIO); OFHashAddByte(&hash, _allowsReadingFiles); OFHashAddByte(&hash, _allowsWritingFiles); OFHashAddByte(&hash, _allowsCreatingFiles); OFHashAddByte(&hash, _allowsCreatingSpecialFiles); OFHashAddByte(&hash, _allowsTemporaryFiles); OFHashAddByte(&hash, _allowsIPSockets); OFHashAddByte(&hash, _allowsMulticastSockets); OFHashAddByte(&hash, _allowsChangingFileAttributes); OFHashAddByte(&hash, _allowsFileOwnerChanges); OFHashAddByte(&hash, _allowsFileLocks); OFHashAddByte(&hash, _allowsUNIXSockets); OFHashAddByte(&hash, _allowsDNS); OFHashAddByte(&hash, _allowsUserDatabaseReading); OFHashAddByte(&hash, _allowsFileDescriptorSending); OFHashAddByte(&hash, _allowsFileDescriptorReceiving); OFHashAddByte(&hash, _allowsTape); OFHashAddByte(&hash, _allowsTTY); OFHashAddByte(&hash, _allowsProcessOperations); OFHashAddByte(&hash, _allowsExec); OFHashAddByte(&hash, _allowsProtExec); OFHashAddByte(&hash, _allowsSetTime); OFHashAddByte(&hash, _allowsPS); OFHashAddByte(&hash, _allowsVMInfo); OFHashAddByte(&hash, _allowsChangingProcessRights); OFHashAddByte(&hash, _allowsPF); OFHashAddByte(&hash, _allowsAudio); OFHashAddByte(&hash, _allowsBPF); OFHashAddByte(&hash, _allowsUnveil); OFHashAddByte(&hash, _returnsErrors); OFHashFinalize(&hash); return hash; } #ifdef OF_HAVE_PLEDGE - (OFString *)pledgeString { void *pool = objc_autoreleasePoolPush(); OFMutableArray *pledges = [OFMutableArray array]; OFString *ret; if (_allowsStdIO) [pledges addObject: @"stdio"]; if (_allowsReadingFiles) [pledges addObject: @"rpath"]; if (_allowsWritingFiles) [pledges addObject: @"wpath"]; if (_allowsCreatingFiles) [pledges addObject: @"cpath"]; if (_allowsCreatingSpecialFiles) [pledges addObject: @"dpath"]; if (_allowsTemporaryFiles) [pledges addObject: @"tmppath"]; if (_allowsIPSockets) [pledges addObject: @"inet"]; if (_allowsMulticastSockets) [pledges addObject: @"mcast"]; if (_allowsChangingFileAttributes) [pledges addObject: @"fattr"]; if (_allowsFileOwnerChanges) [pledges addObject: @"chown"]; if (_allowsFileLocks) [pledges addObject: @"flock"]; if (_allowsUNIXSockets) [pledges addObject: @"unix"]; if (_allowsDNS) [pledges addObject: @"dns"]; if (_allowsUserDatabaseReading) [pledges addObject: @"getpw"]; if (_allowsFileDescriptorSending) [pledges addObject: @"sendfd"]; if (_allowsFileDescriptorReceiving) [pledges addObject: @"recvfd"]; if (_allowsTape) [pledges addObject: @"tape"]; if (_allowsTTY) [pledges addObject: @"tty"]; if (_allowsProcessOperations) [pledges addObject: @"proc"]; if (_allowsExec) [pledges addObject: @"exec"]; if (_allowsProtExec) [pledges addObject: @"prot_exec"]; if (_allowsSetTime) [pledges addObject: @"settime"]; if (_allowsPS) [pledges addObject: @"ps"]; if (_allowsVMInfo) [pledges addObject: @"vminfo"]; if (_allowsChangingProcessRights) [pledges addObject: @"id"]; if (_allowsPF) [pledges addObject: @"pf"]; if (_allowsAudio) [pledges addObject: @"audio"]; if (_allowsBPF) [pledges addObject: @"bpf"]; if (_allowsUnveil) [pledges addObject: @"unveil"]; if (_returnsErrors) [pledges addObject: @"error"]; ret = [pledges componentsJoinedByString: @" "]; [ret retain]; objc_autoreleasePoolPop(pool); return [ret autorelease]; } #endif - (void)unveilPath: (OFString *)path permissions: (OFString *)permissions { void *pool = objc_autoreleasePoolPush(); [_unveiledPaths addObject: [OFPair pairWithFirstObject: path secondObject: permissions]]; objc_autoreleasePoolPop(pool); } - (OFArray OF_GENERIC(OFSandboxUnveilPath) *)unveiledPaths { return [[_unveiledPaths copy] autorelease]; } @end