unofficial mirror of bug-gnu-emacs@gnu.org 
 help / color / mirror / code / Atom feed
blob feba9739b5f5c803b3f33ccee1c81b37cc2007ff 2254 bytes (raw)
name: lisp/darwin-fns.el 	 # note: path name is non-authoritative(*)
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56

 
;;; darwin-fns.el --- Darwin-specific functions  -*- lexical-binding: t -*-

;; Copyright (C) 2021 Free Software Foundation, Inc.

;; This file is part of GNU Emacs.

;; GNU Emacs is free software: you can redistribute it and/or modify
;; it under the terms of the GNU General Public License as published by
;; the Free Software Foundation, either version 3 of the License, or
;; (at your option) any later version.

;; GNU Emacs is distributed in the hope that it will be useful,
;; but WITHOUT ANY WARRANTY; without even the implied warranty of
;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
;; GNU General Public License for more details.

;; You should have received a copy of the GNU General Public License
;; along with GNU Emacs.  If not, see <https://www.gnu.org/licenses/>.

;;; Code:

(defun darwin--sandbox-enter (spec)
  "Enter a sandbox only permitting actions described by SPEC.
SPEC is a plist allowing the keys:
`:read-dirs'  -- value is a list of directories in which reading is allowed.
`:write-dirs' -- value is a list of directories in which writing is allowed.
`:exec-dirs'  -- value is a list of directories from which executables
                 can be run as subprocesses.
Most other operations such as network access are disallowed.
Existing open descriptors can still be used freely.

This is not a supported interface and is for internal use only."
  (let ((read-dirs (plist-get spec :read-dirs))
        (write-dirs (plist-get spec :write-dirs))
        (exec-dirs (plist-get spec :exec-dirs)))
    (darwin-sandbox-init
     (concat
      "(version 1)\n"
      "(deny default)\n"
      ;; Emacs seems to need /dev/null; allowing it does no harm.
      "(allow file-read* (path \"/dev/null\"))\n"
      (mapconcat (lambda (dir)
                   (format "(allow file-read* (subpath %S))\n" dir))
                 read-dirs "")
      (mapconcat (lambda (dir)
                   (format "(allow file-write* (subpath %S))\n" dir))
                 write-dirs "")
      (mapconcat (lambda (dir)
                   (format "(allow process-exec (subpath %S))\n" dir))
                 exec-dirs "")
      (and exec-dirs
           "(allow process-fork)\n")))))

(provide 'darwin-fns)

;;; darwin-fns.el ends here

debug log:

solving feba9739b5 ...
found feba9739b5 in https://yhetil.org/emacs-bugs/8355EDD1-FF78-43B1-8F96-4EB3316E8FEB@acm.org/

applying [1/1] https://yhetil.org/emacs-bugs/8355EDD1-FF78-43B1-8F96-4EB3316E8FEB@acm.org/
diff --git a/lisp/darwin-fns.el b/lisp/darwin-fns.el
new file mode 100644
index 0000000000..feba9739b5

Checking patch lisp/darwin-fns.el...
Applied patch lisp/darwin-fns.el cleanly.

index at:
100644 feba9739b5f5c803b3f33ccee1c81b37cc2007ff	lisp/darwin-fns.el

(*) Git path names are given by the tree(s) the blob belongs to.
    Blobs themselves have no identifier aside from the hash of its contents.^
Code repositories for project(s) associated with this public inbox

	https://git.savannah.gnu.org/cgit/emacs.git

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).