mirrors/cosmopolitan
1
0
Fork 0
mirror of https://github.com/jart/cosmopolitan.git synced 2025-08-08 10:50:28 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Add anet pledge for inet without connect

Browse source 
This is useful for configurations where it's desirable to start redbean
under these restrictions, but not to allow `connect` socket calls.
This commit is contained in:
Paul Kulchenko 2023-06-01 17:26:34 -07:00
parent 72f8bd10b7
commit c36417db9d
4 changed files with 27 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

17
libc/calls/pledge-linux.c
View file

@ -811,6 +811,22 @@ static const uint16_t kPledgeInet[] = {
__NR_linux_getsockname, // __NR_linux_getsockname, //
}; };
// anet is similar to init, but without connect;
// this allows to accept, but not initiate socket connections
static const uint16_t kPledgeAnet[] = {
__NR_linux_socket | INET, //
__NR_linux_listen, //
__NR_linux_bind, //
__NR_linux_sendto, //
__NR_linux_accept, //
__NR_linux_accept4, //
__NR_linux_ioctl | INET, //
__NR_linux_getsockopt | RESTRICT, //
__NR_linux_setsockopt | RESTRICT, //
__NR_linux_getpeername, //
__NR_linux_getsockname, //
};
static const uint16_t kPledgeUnix[] = { static const uint16_t kPledgeUnix[] = {
__NR_linux_socket | UNIX, // __NR_linux_socket | UNIX, //
__NR_linux_listen, // __NR_linux_listen, //
@ -955,6 +971,7 @@ const struct Pledges kPledge[PROMISE_LEN_] = {
[PROMISE_FLOCK] = {"flock", PLEDGE(kPledgeFlock)}, // [PROMISE_FLOCK] = {"flock", PLEDGE(kPledgeFlock)}, //
[PROMISE_FATTR] = {"fattr", PLEDGE(kPledgeFattr)}, // [PROMISE_FATTR] = {"fattr", PLEDGE(kPledgeFattr)}, //
[PROMISE_INET] = {"inet", PLEDGE(kPledgeInet)}, // [PROMISE_INET] = {"inet", PLEDGE(kPledgeInet)}, //
[PROMISE_ANET] = {"anet", PLEDGE(kPledgeAnet)}, //
[PROMISE_UNIX] = {"unix", PLEDGE(kPledgeUnix)}, // [PROMISE_UNIX] = {"unix", PLEDGE(kPledgeUnix)}, //
[PROMISE_DNS] = {"dns", PLEDGE(kPledgeDns)}, // [PROMISE_DNS] = {"dns", PLEDGE(kPledgeDns)}, //
[PROMISE_TTY] = {"tty", PLEDGE(kPledgeTty)}, // [PROMISE_TTY] = {"tty", PLEDGE(kPledgeTty)}, //

3
libc/calls/pledge.c
View file

@ -143,6 +143,9 @@
* - "inet" allows socket(AF_INET), listen, bind, connect, accept, * - "inet" allows socket(AF_INET), listen, bind, connect, accept,
* accept4, getpeername, getsockname, setsockopt, getsockopt, sendto. * accept4, getpeername, getsockname, setsockopt, getsockopt, sendto.
* *
* - "anet" allows socket(AF_INET), listen, bind, accept,
* accept4, getpeername, getsockname, setsockopt, getsockopt, sendto.
*
* - "unix" allows socket(AF_UNIX), listen, bind, connect, accept, * - "unix" allows socket(AF_UNIX), listen, bind, connect, accept,
* accept4, getpeername, getsockname, setsockopt, getsockopt. * accept4, getpeername, getsockname, setsockopt, getsockopt.
* *

3
libc/intrin/promises.internal.h
View file

@ -23,7 +23,8 @@
#define PROMISE_VMINFO 19 #define PROMISE_VMINFO 19
#define PROMISE_TMPPATH 20 #define PROMISE_TMPPATH 20
#define PROMISE_CHOWN 21 #define PROMISE_CHOWN 21
#define PROMISE_LEN_ 22 #define PROMISE_ANET 22
#define PROMISE_LEN_ 23
#define PLEDGED(x) ((~__promises >> PROMISE_##x) & 1) #define PLEDGED(x) ((~__promises >> PROMISE_##x) & 1)

5
tool/net/help.txt
View file

@ -4347,6 +4347,11 @@ UNIX MODULE
Allows socket (AF_INET), listen, bind, connect, accept, Allows socket (AF_INET), listen, bind, connect, accept,
getpeername, getsockname, setsockopt, getsockopt. getpeername, getsockname, setsockopt, getsockopt.
anet
Allows socket (AF_INET), listen, bind, accept,
getpeername, getsockname, setsockopt, getsockopt.
unix unix
Allows socket (AF_UNIX), listen, bind, connect, accept, Allows socket (AF_UNIX), listen, bind, connect, accept,