foster/denoland-deno
0
0
Fork 0
mirror of https://github.com/denoland/deno.git synced 2024-11-01 09:24:20 -04:00
Code Issues Wiki Activity
denoland-deno/runtime/permissions.rs

2902 lines
86 KiB
Rust
Raw Normal View History

chore: update copyright to 2022 (#13306) Co-authored-by: Erfan Safari <erfanshield@outlook.com>
2022-01-07 22:09:52 -05:00
// Copyright 2018-2022 the Deno authors. All rights reserved. MIT license.
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
Remove ansi_term dependency (#4116)
2020-02-24 19:30:17 -05:00
use crate::colors;
refactor(cli): rename fs module to fs_util (#8380) This commit renames "fs" module in "cli/" to "fs_util". This is purely cosmetic change; there were a few places which aliased "crate::fs" to "deno_fs" which was very confusing with "fs" module in ops.
2020-11-16 14:48:50 -05:00
use crate::fs_util::resolve_from_cwd;
refactor: use the 'anyhow' crate instead of 'ErrBox' (#7476)
2020-09-14 12:48:57 -04:00
use deno_core::error::custom_error;
use deno_core::error::uri_error;
use deno_core::error::AnyError;
chore: use parking_lot for synchronization primitives to align with tokio (#11289) parking_lot is already transitively used in tokio via the "full" cargo feature
2021-07-06 23:48:01 -04:00
#[cfg(test)]
use deno_core::parking_lot::Mutex;
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
use deno_core::serde::de;
chore(cli/runtime): use re-export serde from deno_core (#9599)
2021-02-25 15:18:35 -05:00
use deno_core::serde::Deserialize;
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
use deno_core::serde::Deserializer;
chore(cli/runtime): use re-export serde from deno_core (#9599)
2021-02-25 15:18:35 -05:00
use deno_core::serde::Serialize;
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
use deno_core::serde_json;
Re-export deno_core::url (#7525) Also re-exports deno_core::futures and deno_core::serde_json but these are not yet used in the CLI.
2020-09-16 14:28:07 -04:00
use deno_core::url;
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
use deno_core::ModuleSpecifier;
refactor: move timers to deno_timers op crate (#10179) Move timers out of runtime/ and into a standalone op crate.
2021-04-14 15:10:48 -04:00
use deno_core::OpState;
perf(ops): optimize permission check (#11800) * perf(ops): optimize permission check Removes the overhead of permission check on access granted (should be common case): Delta measured on `perf_now` from `deno_common` bench: - before: `528ns/op - after: `166ns/op` So ~3x faster
2021-09-22 18:45:58 -04:00
use log;
refactor: use `once_cell` instead of `lazy_static` (#13135)
2021-12-18 16:14:42 -05:00
use once_cell::sync::Lazy;
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
use std::collections::HashSet;
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
use std::fmt;
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
use std::hash::Hash;
refactor: Improve path handling in permission checks (#3714)
2020-01-20 09:45:44 -05:00
use std::path::{Path, PathBuf};
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
use std::str::FromStr;
use std::string::ToString;
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
#[cfg(test)]
use std::sync::atomic::AtomicBool;
refactor: Elevate DenoPermissions lock to top level (#3398)
2019-11-24 10:42:30 -05:00
#[cfg(test)]
use std::sync::atomic::Ordering;
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
feat: log permission access (#2518) Replaces -D/--log-debug flag with --log-level=debug --log-level=info displays permission access
2019-06-22 12:02:51 -04:00
const PERMISSION_EMOJI: &str = "⚠️";
refactor: use `once_cell` instead of `lazy_static` (#13135)
2021-12-18 16:14:42 -05:00
static DEBUG_LOG_ENABLED: Lazy<bool> =
Lazy::new(|| log::log_enabled!(log::Level::Debug));
perf(ops): optimize permission check (#11800) * perf(ops): optimize permission check Removes the overhead of permission check on access granted (should be common case): Delta measured on `perf_now` from `deno_common` bench: - before: `528ns/op - after: `166ns/op` So ~3x faster
2021-09-22 18:45:58 -04:00
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
/// Tri-state value for storing permission state
refactor(runtime/ops/worker_host): simplify worker perms handling (#9835)
2021-03-19 13:27:41 -04:00
#[derive(PartialEq, Debug, Clone, Copy, Deserialize, PartialOrd)]
refactor: Elevate DenoPermissions lock to top level (#3398)
2019-11-24 10:42:30 -05:00
pub enum PermissionState {
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
Granted = 0,
Prompt = 1,
Denied = 2,
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
}
refactor: Elevate DenoPermissions lock to top level (#3398)
2019-11-24 10:42:30 -05:00
impl PermissionState {
perf(runtime): optimize PermissionState::check (#9993)
2021-04-12 07:24:41 -04:00
#[inline(always)]
fn log_perm_access(name: &str, info: Option<&str>) {
perf(ops): optimize permission check (#11800) * perf(ops): optimize permission check Removes the overhead of permission check on access granted (should be common case): Delta measured on `perf_now` from `deno_common` bench: - before: `528ns/op - after: `166ns/op` So ~3x faster
2021-09-22 18:45:58 -04:00
// Eliminates log overhead (when logging is disabled),
// log_enabled!(Debug) check in a hot path still has overhead
// TODO(AaronO): generalize or upstream this optimization
if *DEBUG_LOG_ENABLED {
log::debug!(
"{}",
colors::bold(&format!(
"{} Granted {}",
PERMISSION_EMOJI,
Self::fmt_access(name, info)
))
);
}
perf(runtime): optimize PermissionState::check (#9993)
2021-04-12 07:24:41 -04:00
}
fn fmt_access(name: &str, info: Option<&str>) -> String {
format!(
"{} access{}",
name,
info.map_or(String::new(), |info| { format!(" to {}", info) }),
)
}
fn error(name: &str, info: Option<&str>) -> AnyError {
custom_error(
"PermissionDenied",
format!(
"Requires {}, run again with the --allow-{} flag",
Self::fmt_access(name, info),
name
),
)
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
/// Check the permission state. bool is whether a prompt was issued.
fn check(
self,
name: &str,
info: Option<&str>,
prompt: bool,
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
flag: &str,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
) -> (Result<(), AnyError>, bool) {
perf(runtime): optimize PermissionState::check (#9993)
2021-04-12 07:24:41 -04:00
match self {
PermissionState::Granted => {
Self::log_perm_access(name, info);
(Ok(()), false)
}
PermissionState::Prompt if prompt => {
let msg = Self::fmt_access(name, info);
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt(&msg, flag) {
perf(runtime): optimize PermissionState::check (#9993)
2021-04-12 07:24:41 -04:00
Self::log_perm_access(name, info);
(Ok(()), true)
} else {
(Err(Self::error(name, info)), true)
}
}
_ => (Err(Self::error(name, info)), false),
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
}
}
refactor: Elevate DenoPermissions lock to top level (#3398)
2019-11-24 10:42:30 -05:00
impl fmt::Display for PermissionState {
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
match self {
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
PermissionState::Granted => f.pad("granted"),
PermissionState::Prompt => f.pad("prompt"),
PermissionState::Denied => f.pad("denied"),
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
}
}
}
refactor: Elevate DenoPermissions lock to top level (#3398)
2019-11-24 10:42:30 -05:00
impl Default for PermissionState {
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
fn default() -> Self {
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
PermissionState::Prompt
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
}
}
Ergonomics: Prompt TTY for permission escalation (#1081)
2018-10-27 09:11:39 -04:00
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Debug, PartialEq)]
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
pub struct UnitPermission {
pub name: &'static str,
pub description: &'static str,
pub state: PermissionState,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
pub prompt: bool,
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
}
impl UnitPermission {
pub fn query(&self) -> PermissionState {
self.state
}
pub fn request(&mut self) -> PermissionState {
if self.state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt(
&format!("access to {}", self.description),
self.name,
) {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
self.state = PermissionState::Granted;
} else {
self.state = PermissionState::Denied;
}
}
self.state
}
pub fn revoke(&mut self) -> PermissionState {
if self.state == PermissionState::Granted {
self.state = PermissionState::Prompt;
}
self.state
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
pub fn check(&mut self) -> Result<(), AnyError> {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
let (result, prompted) =
self.state.check(self.name, None, self.prompt, self.name);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
if prompted {
if result.is_ok() {
self.state = PermissionState::Granted;
} else {
self.state = PermissionState::Denied;
}
}
result
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
}
}
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
/// A normalized environment variable name. On Windows this will
/// be uppercase and on other platforms it will stay as-is.
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
struct EnvVarName {
inner: String,
}
impl EnvVarName {
pub fn new(env: impl AsRef<str>) -> Self {
Self {
inner: if cfg!(windows) {
env.as_ref().to_uppercase()
} else {
env.as_ref().to_string()
},
}
}
}
impl AsRef<str> for EnvVarName {
fn as_ref(&self) -> &str {
self.inner.as_str()
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Debug, PartialEq)]
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
pub struct UnaryPermission<T: Eq + Hash> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub name: &'static str,
pub description: &'static str,
refactor(cli/permissions): Cleanup Flags to Permissions conversion (#8213)
2020-10-31 18:44:42 -04:00
pub global_state: PermissionState,
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
pub granted_list: HashSet<T>,
pub denied_list: HashSet<T>,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
pub prompt: bool,
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
feat(cli): deserialize Permissions from JSON (#5779)
2020-05-29 07:00:47 -04:00
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
pub struct ReadDescriptor(pub PathBuf);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
pub struct WriteDescriptor(pub PathBuf);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
pub struct NetDescriptor(pub String, pub Option<u16>);
impl NetDescriptor {
fn new<T: AsRef<str>>(host: &&(T, Option<u16>)) -> Self {
NetDescriptor(host.0.as_ref().to_string(), host.1)
}
pub fn from_string(host: String) -> Self {
let url = url::Url::parse(&format!("http://{}", host)).unwrap();
let hostname = url.host_str().unwrap().to_string();
NetDescriptor(hostname, url.port())
}
}
impl fmt::Display for NetDescriptor {
fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
f.write_str(&match self.1 {
None => self.0.clone(),
Some(port) => format!("{}:{}", self.0, port),
})
}
}
Ergonomics: Prompt TTY for permission escalation (#1081)
2018-10-27 09:11:39 -04:00
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
pub struct EnvDescriptor(EnvVarName);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
impl EnvDescriptor {
pub fn new(env: impl AsRef<str>) -> Self {
Self(EnvVarName::new(env))
}
}
impl AsRef<str> for EnvDescriptor {
fn as_ref(&self) -> &str {
self.0.as_ref()
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
pub enum RunDescriptor {
Name(String),
Path(PathBuf),
}
impl FromStr for RunDescriptor {
type Err = ();
fn from_str(s: &str) -> Result<Self, Self::Err> {
let is_path = s.contains('/');
#[cfg(windows)]
let is_path = is_path || s.contains('\\') || Path::new(s).is_absolute();
if is_path {
Ok(Self::Path(resolve_from_cwd(Path::new(s)).unwrap()))
} else {
Ok(Self::Name(s.to_string()))
}
}
}
impl ToString for RunDescriptor {
fn to_string(&self) -> String {
match self {
RunDescriptor::Name(s) => s.clone(),
RunDescriptor::Path(p) => p.to_string_lossy().to_string(),
}
}
}
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
pub struct FfiDescriptor(pub PathBuf);
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
impl UnaryPermission<ReadDescriptor> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn query(&self, path: Option<&Path>) -> PermissionState {
let path = path.map(|p| resolve_from_cwd(p).unwrap());
if self.global_state == PermissionState::Denied
&& match path.as_ref() {
None => true,
Some(path) => self
.denied_list
.iter()
.any(|path_| path_.0.starts_with(path)),
}
{
PermissionState::Denied
} else if self.global_state == PermissionState::Granted
|| match path.as_ref() {
None => false,
Some(path) => self
.granted_list
.iter()
.any(|path_| path.starts_with(&path_.0)),
}
{
PermissionState::Granted
} else {
PermissionState::Prompt
}
refactor(cli/flags): change allow_read/write/net types from bool to Option<Vec<T>> (#8896) This PR refactors "cli/flags.rs" and "runtime/permissions.rs" so that "allow_read", "allow_write" and "allow_net" themselves have allowlists, instead of storing them in additional fields.
2020-12-29 13:34:35 -05:00
}
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn request(&mut self, path: Option<&Path>) -> PermissionState {
if let Some(path) = path {
let (resolved_path, display_path) = resolved_and_display_path(path);
let state = self.query(Some(&resolved_path));
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt(
&format!("read access to \"{}\"", display_path.display()),
self.name,
) {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
self.granted_list.insert(ReadDescriptor(resolved_path));
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
PermissionState::Granted
} else {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
self.denied_list.insert(ReadDescriptor(resolved_path));
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
} else if state == PermissionState::Granted {
self.granted_list.insert(ReadDescriptor(resolved_path));
PermissionState::Granted
refactor(cli/permissions): Cleanup Flags to Permissions conversion (#8213)
2020-10-31 18:44:42 -04:00
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
state
refactor(cli/permissions): Cleanup Flags to Permissions conversion (#8213)
2020-10-31 18:44:42 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
} else {
let state = self.query(None);
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt("read access", self.name) {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.granted_list.clear();
self.global_state = PermissionState::Granted;
PermissionState::Granted
} else {
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
refactor(cli/flags): change allow_read/write/net types from bool to Option<Vec<T>> (#8896) This PR refactors "cli/flags.rs" and "runtime/permissions.rs" so that "allow_read", "allow_write" and "allow_net" themselves have allowlists, instead of storing them in additional fields.
2020-12-29 13:34:35 -05:00
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
state
refactor(cli/flags): change allow_read/write/net types from bool to Option<Vec<T>> (#8896) This PR refactors "cli/flags.rs" and "runtime/permissions.rs" so that "allow_read", "allow_write" and "allow_net" themselves have allowlists, instead of storing them in additional fields.
2020-12-29 13:34:35 -05:00
}
}
Ergonomics: Prompt TTY for permission escalation (#1081)
2018-10-27 09:11:39 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn revoke(&mut self, path: Option<&Path>) -> PermissionState {
if let Some(path) = path {
let path = resolve_from_cwd(path).unwrap();
self
.granted_list
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
.retain(|path_| !path.starts_with(&path_.0));
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.granted_list.clear();
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
}
if self.global_state == PermissionState::Granted {
self.global_state = PermissionState::Prompt;
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
self.query(path)
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
pub fn check(&mut self, path: &Path) -> Result<(), AnyError> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let (resolved_path, display_path) = resolved_and_display_path(path);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let (result, prompted) = self.query(Some(&resolved_path)).check(
self.name,
Some(&format!("\"{}\"", display_path.display())),
self.prompt,
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
self.name,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
);
if prompted {
if result.is_ok() {
self.granted_list.insert(ReadDescriptor(resolved_path));
} else {
self.denied_list.insert(ReadDescriptor(resolved_path));
self.global_state = PermissionState::Denied;
}
}
result
refactor: check permissions in SourceFileFetcher (#5011) This PR hot-fixes permission escapes in dynamic imports, workers and runtime compiler APIs. "permissions" parameter was added to public APIs of SourceFileFetcher and appropriate permission checks are performed during loading of local and remote files.
2020-05-11 07:13:27 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
/// As `check()`, but permission error messages will anonymize the path
/// by replacing it with the given `display`.
pub fn check_blind(
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
&mut self,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
path: &Path,
display: &str,
) -> Result<(), AnyError> {
let resolved_path = resolve_from_cwd(path).unwrap();
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let (result, prompted) = self.query(Some(&resolved_path)).check(
self.name,
Some(&format!("<{}>", display)),
self.prompt,
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
self.name,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
);
if prompted {
if result.is_ok() {
self.granted_list.insert(ReadDescriptor(resolved_path));
} else {
self.denied_list.insert(ReadDescriptor(resolved_path));
self.global_state = PermissionState::Denied;
}
}
result
Add --allow-read (#1689) Co-authored-by: Greg Altman <g.s.altman@gmail.com>
2019-02-08 15:59:38 -05:00
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub fn check_all(&mut self) -> Result<(), AnyError> {
let (result, prompted) =
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
self
.query(None)
.check(self.name, Some("all"), self.prompt, self.name);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
}
result
}
}
impl Default for UnaryPermission<ReadDescriptor> {
fn default() -> Self {
UnaryPermission::<ReadDescriptor> {
name: "read",
description: "read the file system",
global_state: Default::default(),
granted_list: Default::default(),
denied_list: Default::default(),
prompt: false,
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
impl UnaryPermission<WriteDescriptor> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn query(&self, path: Option<&Path>) -> PermissionState {
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
let path = path.map(|p| resolve_from_cwd(p).unwrap());
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
if self.global_state == PermissionState::Denied
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
&& match path.as_ref() {
None => true,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
Some(path) => self
.denied_list
.iter()
.any(|path_| path_.0.starts_with(path)),
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
{
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
PermissionState::Denied
} else if self.global_state == PermissionState::Granted
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
|| match path.as_ref() {
None => false,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
Some(path) => self
.granted_list
.iter()
.any(|path_| path.starts_with(&path_.0)),
BREAKING(unstable): Use hosts for net allowlists (#8845) Allowlist checking already uses hosts but for some reason requests, revokes and the runtime permissions API use URLs. - BREAKING(lib.deno.unstable.d.ts): Change NetPermissionDescriptor::url to NetPermissionDescriptor::host - fix(runtime/permissions): Don't add whole URLs to the allowlist on request - fix(runtime/permissions): Harden strength semantics: ({ name: "net", host: "127.0.0.1" } is stronger than { name: "net", host: "127.0.0.1:8000" }) for blocklisting - refactor(runtime/permissions): Use tuples for hosts, make the host optional in Permissions::{query_net, request_net, revoke_net}()
2020-12-30 17:35:28 -05:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
{
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
PermissionState::Granted
} else {
PermissionState::Prompt
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn request(&mut self, path: Option<&Path>) -> PermissionState {
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
if let Some(path) = path {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let (resolved_path, display_path) = resolved_and_display_path(path);
let state = self.query(Some(&resolved_path));
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt(
&format!("write access to \"{}\"", display_path.display()),
self.name,
) {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
self.granted_list.insert(WriteDescriptor(resolved_path));
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
PermissionState::Granted
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
} else {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
self.denied_list.insert(WriteDescriptor(resolved_path));
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.global_state = PermissionState::Denied;
PermissionState::Denied
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
} else if state == PermissionState::Granted {
self.granted_list.insert(WriteDescriptor(resolved_path));
PermissionState::Granted
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
} else {
state
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let state = self.query(None);
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt("write access", self.name) {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.granted_list.clear();
self.global_state = PermissionState::Granted;
PermissionState::Granted
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.global_state = PermissionState::Denied;
PermissionState::Denied
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
} else {
state
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn revoke(&mut self, path: Option<&Path>) -> PermissionState {
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
if let Some(path) = path {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let path = resolve_from_cwd(path).unwrap();
self
.granted_list
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
.retain(|path_| !path.starts_with(&path_.0));
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
} else {
self.granted_list.clear();
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
}
if self.global_state == PermissionState::Granted {
self.global_state = PermissionState::Prompt;
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
self.query(path)
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
pub fn check(&mut self, path: &Path) -> Result<(), AnyError> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let (resolved_path, display_path) = resolved_and_display_path(path);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let (result, prompted) = self.query(Some(&resolved_path)).check(
self.name,
Some(&format!("\"{}\"", display_path.display())),
self.prompt,
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
self.name,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
);
if prompted {
if result.is_ok() {
self.granted_list.insert(WriteDescriptor(resolved_path));
} else {
self.denied_list.insert(WriteDescriptor(resolved_path));
self.global_state = PermissionState::Denied;
}
}
result
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub fn check_all(&mut self) -> Result<(), AnyError> {
let (result, prompted) =
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
self
.query(None)
.check(self.name, Some("all"), self.prompt, self.name);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
}
result
}
}
impl Default for UnaryPermission<WriteDescriptor> {
fn default() -> Self {
UnaryPermission::<WriteDescriptor> {
name: "write",
description: "write to the file system",
global_state: Default::default(),
granted_list: Default::default(),
denied_list: Default::default(),
prompt: false,
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
impl UnaryPermission<NetDescriptor> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn query<T: AsRef<str>>(
&self,
host: Option<&(T, Option<u16>)>,
) -> PermissionState {
if self.global_state == PermissionState::Denied
&& match host.as_ref() {
None => true,
Some(host) => match host.1 {
None => self
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
.denied_list
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
.iter()
.any(|host_| host.0.as_ref() == host_.0),
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
Some(_) => self.denied_list.contains(&NetDescriptor::new(host)),
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
},
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
{
PermissionState::Denied
} else if self.global_state == PermissionState::Granted
|| match host.as_ref() {
None => false,
Some(host) => {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
self.granted_list.contains(&NetDescriptor::new(&&(
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
host.0.as_ref().to_string(),
None,
)))
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
|| self.granted_list.contains(&NetDescriptor::new(host))
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
{
PermissionState::Granted
} else {
PermissionState::Prompt
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn request<T: AsRef<str>>(
refactor: Elevate DenoPermissions lock to top level (#3398)
2019-11-24 10:42:30 -05:00
&mut self,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
host: Option<&(T, Option<u16>)>,
BREAKING(unstable): Use hosts for net allowlists (#8845) Allowlist checking already uses hosts but for some reason requests, revokes and the runtime permissions API use URLs. - BREAKING(lib.deno.unstable.d.ts): Change NetPermissionDescriptor::url to NetPermissionDescriptor::host - fix(runtime/permissions): Don't add whole URLs to the allowlist on request - fix(runtime/permissions): Harden strength semantics: ({ name: "net", host: "127.0.0.1" } is stronger than { name: "net", host: "127.0.0.1:8000" }) for blocklisting - refactor(runtime/permissions): Use tuples for hosts, make the host optional in Permissions::{query_net, request_net, revoke_net}()
2020-12-30 17:35:28 -05:00
) -> PermissionState {
if let Some(host) = host {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let state = self.query(Some(host));
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
let host = NetDescriptor::new(&host);
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt(
&format!("network access to \"{}\"", host),
self.name,
) {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.granted_list.insert(host);
PermissionState::Granted
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.denied_list.insert(host);
self.global_state = PermissionState::Denied;
PermissionState::Denied
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
} else if state == PermissionState::Granted {
self.granted_list.insert(host);
PermissionState::Granted
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
} else {
state
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let state = self.query::<&str>(None);
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt("network access", self.name) {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.granted_list.clear();
self.global_state = PermissionState::Granted;
PermissionState::Granted
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.global_state = PermissionState::Denied;
PermissionState::Denied
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
} else {
state
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn revoke<T: AsRef<str>>(
&mut self,
host: Option<&(T, Option<u16>)>,
) -> PermissionState {
if let Some(host) = host {
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
if host.1.is_some() {
self
.granted_list
.remove(&NetDescriptor(host.0.as_ref().to_string(), host.1));
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
self
.granted_list
.remove(&NetDescriptor(host.0.as_ref().to_string(), None));
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
} else {
self.granted_list.clear();
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
}
if self.global_state == PermissionState::Granted {
self.global_state = PermissionState::Prompt;
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.query(host)
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn check<T: AsRef<str>>(
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
&mut self,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
host: &(T, Option<u16>),
) -> Result<(), AnyError> {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let new_host = NetDescriptor::new(&host);
let (result, prompted) = self.query(Some(host)).check(
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.name,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
Some(&format!("\"{}\"", new_host)),
self.prompt,
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
self.name,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
);
if prompted {
if result.is_ok() {
self.granted_list.insert(new_host);
} else {
self.denied_list.insert(new_host);
self.global_state = PermissionState::Denied;
}
}
result
feat: log permission access (#2518) Replaces -D/--log-debug flag with --log-level=debug --log-level=info displays permission access
2019-06-22 12:02:51 -04:00
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
pub fn check_url(&mut self, url: &url::Url) -> Result<(), AnyError> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let hostname = url
.host_str()
.ok_or_else(|| uri_error("Missing host"))?
.to_string();
let display_host = match url.port() {
None => hostname.clone(),
Some(port) => format!("{}:{}", hostname, port),
};
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let host = &(&hostname, url.port_or_known_default());
let (result, prompted) = self.query(Some(host)).check(
self.name,
Some(&format!("\"{}\"", display_host)),
self.prompt,
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
self.name,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
);
if prompted {
if result.is_ok() {
self.granted_list.insert(NetDescriptor::new(&host));
} else {
self.denied_list.insert(NetDescriptor::new(&host));
self.global_state = PermissionState::Denied;
}
}
result
feat: first pass at native plugins (#3372)
2019-12-05 15:30:20 -05:00
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub fn check_all(&mut self) -> Result<(), AnyError> {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
let (result, prompted) = self.query::<&str>(None).check(
self.name,
Some("all"),
self.prompt,
self.name,
);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
}
result
}
}
impl Default for UnaryPermission<NetDescriptor> {
fn default() -> Self {
UnaryPermission::<NetDescriptor> {
name: "net",
description: "network",
global_state: Default::default(),
granted_list: Default::default(),
denied_list: Default::default(),
prompt: false,
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
feat: first pass at native plugins (#3372)
2019-12-05 15:30:20 -05:00
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
impl UnaryPermission<EnvDescriptor> {
pub fn query(&self, env: Option<&str>) -> PermissionState {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
let env = env.map(EnvVarName::new);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
if self.global_state == PermissionState::Denied
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
&& match env.as_ref() {
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
None => true,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
Some(env) => self.denied_list.contains(&EnvDescriptor::new(env)),
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
}
{
PermissionState::Denied
} else if self.global_state == PermissionState::Granted
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
|| match env.as_ref() {
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
None => false,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
Some(env) => self.granted_list.contains(&EnvDescriptor::new(env)),
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
}
{
PermissionState::Granted
} else {
PermissionState::Prompt
}
}
pub fn request(&mut self, env: Option<&str>) -> PermissionState {
if let Some(env) = env {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
let state = self.query(Some(env));
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt(&format!("env access to \"{}\"", env), self.name) {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
self.granted_list.insert(EnvDescriptor::new(env));
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
PermissionState::Granted
} else {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
self.denied_list.insert(EnvDescriptor::new(env));
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
} else if state == PermissionState::Granted {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
self.granted_list.insert(EnvDescriptor::new(env));
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
PermissionState::Granted
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
} else {
state
}
} else {
let state = self.query(None);
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt("env access", self.name) {
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
self.granted_list.clear();
self.global_state = PermissionState::Granted;
PermissionState::Granted
} else {
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
} else {
state
}
}
}
pub fn revoke(&mut self, env: Option<&str>) -> PermissionState {
if let Some(env) = env {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
self.granted_list.remove(&EnvDescriptor::new(env));
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
} else {
self.granted_list.clear();
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
}
if self.global_state == PermissionState::Granted {
self.global_state = PermissionState::Prompt;
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
}
self.query(env)
}
pub fn check(&mut self, env: &str) -> Result<(), AnyError> {
let (result, prompted) = self.query(Some(env)).check(
self.name,
Some(&format!("\"{}\"", env)),
self.prompt,
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
self.name,
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
);
if prompted {
if result.is_ok() {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
self.granted_list.insert(EnvDescriptor::new(env));
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
} else {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
self.denied_list.insert(EnvDescriptor::new(env));
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
self.global_state = PermissionState::Denied;
}
}
result
}
pub fn check_all(&mut self) -> Result<(), AnyError> {
let (result, prompted) =
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
self
.query(None)
.check(self.name, Some("all"), self.prompt, self.name);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
}
result
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
impl Default for UnaryPermission<EnvDescriptor> {
fn default() -> Self {
UnaryPermission::<EnvDescriptor> {
name: "env",
description: "environment variables",
global_state: Default::default(),
granted_list: Default::default(),
denied_list: Default::default(),
prompt: false,
}
}
}
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
impl UnaryPermission<RunDescriptor> {
pub fn query(&self, cmd: Option<&str>) -> PermissionState {
if self.global_state == PermissionState::Denied
&& match cmd {
None => true,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
Some(cmd) => self
.denied_list
.contains(&RunDescriptor::from_str(cmd).unwrap()),
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
{
PermissionState::Denied
} else if self.global_state == PermissionState::Granted
|| match cmd {
None => false,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
Some(cmd) => self
.granted_list
.contains(&RunDescriptor::from_str(cmd).unwrap()),
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
{
PermissionState::Granted
} else {
PermissionState::Prompt
}
}
pub fn request(&mut self, cmd: Option<&str>) -> PermissionState {
if let Some(cmd) = cmd {
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
let state = self.query(Some(cmd));
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt(&format!("run access to \"{}\"", cmd), self.name) {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self
.granted_list
.insert(RunDescriptor::from_str(cmd).unwrap());
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
PermissionState::Granted
} else {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self
.denied_list
.insert(RunDescriptor::from_str(cmd).unwrap());
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
} else if state == PermissionState::Granted {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self
.granted_list
.insert(RunDescriptor::from_str(cmd).unwrap());
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
PermissionState::Granted
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
} else {
state
}
} else {
let state = self.query(None);
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt("run access", self.name) {
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
self.granted_list.clear();
self.global_state = PermissionState::Granted;
PermissionState::Granted
} else {
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
} else {
state
}
}
}
pub fn revoke(&mut self, cmd: Option<&str>) -> PermissionState {
if let Some(cmd) = cmd {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self
.granted_list
.remove(&RunDescriptor::from_str(cmd).unwrap());
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
} else {
self.granted_list.clear();
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
}
if self.global_state == PermissionState::Granted {
self.global_state = PermissionState::Prompt;
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
self.query(cmd)
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
pub fn check(&mut self, cmd: &str) -> Result<(), AnyError> {
let (result, prompted) = self.query(Some(cmd)).check(
self.name,
Some(&format!("\"{}\"", cmd)),
self.prompt,
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
self.name,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
);
if prompted {
if result.is_ok() {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self
.granted_list
.insert(RunDescriptor::from_str(cmd).unwrap());
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
} else {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self
.denied_list
.insert(RunDescriptor::from_str(cmd).unwrap());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
self.global_state = PermissionState::Denied;
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
result
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
pub fn check_all(&mut self) -> Result<(), AnyError> {
let (result, prompted) =
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
self
.query(None)
.check(self.name, Some("all"), self.prompt, self.name);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
result
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
impl Default for UnaryPermission<RunDescriptor> {
fn default() -> Self {
UnaryPermission::<RunDescriptor> {
name: "run",
description: "run a subprocess",
global_state: Default::default(),
granted_list: Default::default(),
denied_list: Default::default(),
prompt: false,
}
}
}
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
impl UnaryPermission<FfiDescriptor> {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub fn query(&self, path: Option<&Path>) -> PermissionState {
let path = path.map(|p| resolve_from_cwd(p).unwrap());
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
if self.global_state == PermissionState::Denied
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
&& match path.as_ref() {
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
None => true,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
Some(path) => self.denied_list.contains(&FfiDescriptor(path.clone())),
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
}
{
PermissionState::Denied
} else if self.global_state == PermissionState::Granted
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
|| match path.as_ref() {
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
None => false,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
Some(path) => self.granted_list.contains(&FfiDescriptor(path.clone())),
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
}
{
PermissionState::Granted
} else {
PermissionState::Prompt
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub fn request(&mut self, path: Option<&Path>) -> PermissionState {
if let Some(path) = path {
let (resolved_path, display_path) = resolved_and_display_path(path);
let state = self.query(Some(&resolved_path));
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt(
&format!("ffi access to \"{}\"", display_path.display()),
self.name,
) {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self.granted_list.insert(FfiDescriptor(resolved_path));
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
PermissionState::Granted
} else {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self.denied_list.insert(FfiDescriptor(resolved_path));
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
} else if state == PermissionState::Granted {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self.granted_list.insert(FfiDescriptor(resolved_path));
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
PermissionState::Granted
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
} else {
state
}
} else {
let state = self.query(None);
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt("ffi access", self.name) {
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
self.granted_list.clear();
self.global_state = PermissionState::Granted;
PermissionState::Granted
} else {
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
} else {
state
}
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub fn revoke(&mut self, path: Option<&Path>) -> PermissionState {
if let Some(path) = path {
let path = resolve_from_cwd(path).unwrap();
self.granted_list.remove(&FfiDescriptor(path));
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
} else {
self.granted_list.clear();
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
}
if self.global_state == PermissionState::Granted {
self.global_state = PermissionState::Prompt;
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self.query(path)
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
}
feat(ext/ffi): implement UnsafePointer and UnsafePointerView (#12828)
2021-12-15 09:41:49 -05:00
pub fn check(&mut self, path: Option<&Path>) -> Result<(), AnyError> {
if let Some(path) = path {
let (resolved_path, display_path) = resolved_and_display_path(path);
let (result, prompted) = self.query(Some(&resolved_path)).check(
self.name,
Some(&format!("\"{}\"", display_path.display())),
self.prompt,
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
self.name,
feat(ext/ffi): implement UnsafePointer and UnsafePointerView (#12828)
2021-12-15 09:41:49 -05:00
);
if prompted {
if result.is_ok() {
self.granted_list.insert(FfiDescriptor(resolved_path));
} else {
self.denied_list.insert(FfiDescriptor(resolved_path));
self.global_state = PermissionState::Denied;
}
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
}
feat(ext/ffi): implement UnsafePointer and UnsafePointerView (#12828)
2021-12-15 09:41:49 -05:00
result
} else {
let (result, prompted) =
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
self
.query(None)
.check(self.name, None, self.prompt, self.name);
feat(ext/ffi): implement UnsafePointer and UnsafePointerView (#12828)
2021-12-15 09:41:49 -05:00
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
}
result
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
}
}
pub fn check_all(&mut self) -> Result<(), AnyError> {
let (result, prompted) =
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
self
.query(None)
.check(self.name, Some("all"), self.prompt, self.name);
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
}
result
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
impl Default for UnaryPermission<FfiDescriptor> {
fn default() -> Self {
UnaryPermission::<FfiDescriptor> {
name: "ffi",
description: "load a dynamic library",
global_state: Default::default(),
granted_list: Default::default(),
denied_list: Default::default(),
prompt: false,
}
}
}
#[derive(Clone, Debug, PartialEq)]
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub struct Permissions {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
pub read: UnaryPermission<ReadDescriptor>,
pub write: UnaryPermission<WriteDescriptor>,
pub net: UnaryPermission<NetDescriptor>,
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
pub env: UnaryPermission<EnvDescriptor>,
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
pub run: UnaryPermission<RunDescriptor>,
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
pub ffi: UnaryPermission<FfiDescriptor>,
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
pub hrtime: UnitPermission,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
impl Default for Permissions {
fn default() -> Self {
Self {
read: Permissions::new_read(&None, false),
write: Permissions::new_write(&None, false),
net: Permissions::new_net(&None, false),
env: Permissions::new_env(&None, false),
run: Permissions::new_run(&None, false),
ffi: Permissions::new_ffi(&None, false),
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
hrtime: Permissions::new_hrtime(false),
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
#[derive(Clone, Debug, PartialEq, Default, Serialize, Deserialize)]
pub struct PermissionsOptions {
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
pub allow_env: Option<Vec<String>>,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub allow_hrtime: bool,
pub allow_net: Option<Vec<String>>,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub allow_ffi: Option<Vec<PathBuf>>,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub allow_read: Option<Vec<PathBuf>>,
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
pub allow_run: Option<Vec<String>>,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub allow_write: Option<Vec<PathBuf>>,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
pub prompt: bool,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
impl Permissions {
pub fn new_read(
state: &Option<Vec<PathBuf>>,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt: bool,
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
) -> UnaryPermission<ReadDescriptor> {
UnaryPermission::<ReadDescriptor> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
global_state: global_state_from_option(state),
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
granted_list: resolve_read_allowlist(state),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Default::default()
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn new_write(
state: &Option<Vec<PathBuf>>,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt: bool,
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
) -> UnaryPermission<WriteDescriptor> {
UnaryPermission::<WriteDescriptor> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
global_state: global_state_from_option(state),
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
granted_list: resolve_write_allowlist(state),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Default::default()
Use web standard Permissions API (#3200)
2019-10-27 11:22:53 -04:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn new_net(
state: &Option<Vec<String>>,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt: bool,
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
) -> UnaryPermission<NetDescriptor> {
UnaryPermission::<NetDescriptor> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
global_state: global_state_from_option(state),
granted_list: state
.as_ref()
.map(|v| {
v.iter()
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
.map(|x| NetDescriptor::from_string(x.clone()))
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
.collect()
})
.unwrap_or_else(HashSet::new),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Default::default()
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
}
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
pub fn new_env(
state: &Option<Vec<String>>,
prompt: bool,
) -> UnaryPermission<EnvDescriptor> {
UnaryPermission::<EnvDescriptor> {
global_state: global_state_from_option(state),
granted_list: state
.as_ref()
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
.map(|v| v.iter().map(EnvDescriptor::new).collect())
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
.unwrap_or_else(HashSet::new),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Default::default()
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
pub fn new_run(
state: &Option<Vec<String>>,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt: bool,
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
) -> UnaryPermission<RunDescriptor> {
UnaryPermission::<RunDescriptor> {
global_state: global_state_from_option(state),
granted_list: state
.as_ref()
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
.map(|v| {
v.iter()
.map(|x| RunDescriptor::from_str(x).unwrap())
.collect()
})
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
.unwrap_or_else(HashSet::new),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Default::default()
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
pub fn new_ffi(
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
state: &Option<Vec<PathBuf>>,
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
prompt: bool,
) -> UnaryPermission<FfiDescriptor> {
UnaryPermission::<FfiDescriptor> {
global_state: global_state_from_option(state),
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
granted_list: resolve_ffi_allowlist(state),
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Default::default()
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
pub fn new_hrtime(state: bool) -> UnitPermission {
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
unit_permission_from_flag_bool(
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
state,
"hrtime",
"high precision time",
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
false, // never prompt for hrtime
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn from_options(opts: &PermissionsOptions) -> Self {
Self {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
read: Permissions::new_read(&opts.allow_read, opts.prompt),
write: Permissions::new_write(&opts.allow_write, opts.prompt),
net: Permissions::new_net(&opts.allow_net, opts.prompt),
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
env: Permissions::new_env(&opts.allow_env, opts.prompt),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
run: Permissions::new_run(&opts.allow_run, opts.prompt),
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
ffi: Permissions::new_ffi(&opts.allow_ffi, opts.prompt),
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
hrtime: Permissions::new_hrtime(opts.allow_hrtime),
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn allow_all() -> Self {
Self {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
read: Permissions::new_read(&Some(vec![]), false),
write: Permissions::new_write(&Some(vec![]), false),
net: Permissions::new_net(&Some(vec![]), false),
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
env: Permissions::new_env(&Some(vec![]), false),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
run: Permissions::new_run(&Some(vec![]), false),
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
ffi: Permissions::new_ffi(&Some(vec![]), false),
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
hrtime: Permissions::new_hrtime(true),
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
/// A helper function that determines if the module specifier is a local or
/// remote, and performs a read or net check for the specifier.
pub fn check_specifier(
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
&mut self,
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
specifier: &ModuleSpecifier,
) -> Result<(), AnyError> {
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
match specifier.scheme() {
"file" => match specifier.to_file_path() {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
Ok(path) => self.read.check(&path),
fix: panic on invalid file:// module specifier (#8964)
2021-01-04 04:33:20 -05:00
Err(_) => Err(uri_error(format!(
"Invalid file path.\n Specifier: {}",
specifier
))),
feat(cli): support data urls (#8866) Closes: #5059 Co-authored-by: Valentin Anger <syrupthinker@gryphno.de>
2021-01-05 21:22:38 -05:00
},
"data" => Ok(()),
feat: blob URL support (#10045) This commit adds blob URL support. Blob URLs are stored in a process global storage, that can be accessed from all workers, and the module loader. Blob URLs can be created using `URL.createObjectURL` and revoked using `URL.revokeObjectURL`. This commit does not add support for `fetch`ing blob URLs. This will be added in a follow up commit.
2021-04-07 09:22:14 -04:00
"blob" => Ok(()),
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
_ => self.net.check_url(specifier),
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
feat: Add "deno_net" extension (#11150) This commits moves implementation of net related APIs available on "Deno" namespace to "deno_net" extension. Following APIs were moved: - Deno.listen() - Deno.connect() - Deno.listenTls() - Deno.serveHttp() - Deno.shutdown() - Deno.resolveDns() - Deno.listenDatagram() - Deno.startTls() - Deno.Conn - Deno.Listener - Deno.DatagramConn
2021-06-28 19:43:03 -04:00
impl deno_net::NetPermissions for Permissions {
fn check_net<T: AsRef<str>>(
&mut self,
host: &(T, Option<u16>),
) -> Result<(), AnyError> {
self.net.check(host)
}
fn check_read(&mut self, path: &Path) -> Result<(), AnyError> {
self.read.check(path)
}
fn check_write(&mut self, path: &Path) -> Result<(), AnyError> {
self.write.check(path)
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
impl deno_fetch::FetchPermissions for Permissions {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
fn check_net_url(&mut self, url: &url::Url) -> Result<(), AnyError> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.net.check_url(url)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
fn check_read(&mut self, path: &Path) -> Result<(), AnyError> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.read.check(path)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
chore(ext/timers): move ext/timers to ext/web (#13665)
2022-02-15 06:17:30 -05:00
impl deno_web::TimersPermission for Permissions {
refactor: move timers to deno_timers op crate (#10179) Move timers out of runtime/ and into a standalone op crate.
2021-04-14 15:10:48 -04:00
fn allow_hrtime(&mut self) -> bool {
self.hrtime.check().is_ok()
}
fn check_unstable(&self, state: &OpState, api_name: &'static str) {
crate::ops::check_unstable(state, api_name);
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
impl deno_websocket::WebSocketPermissions for Permissions {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
fn check_net_url(&mut self, url: &url::Url) -> Result<(), AnyError> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.net.check_url(url)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
impl deno_ffi::FfiPermissions for Permissions {
feat(ext/ffi): implement UnsafePointer and UnsafePointerView (#12828)
2021-12-15 09:41:49 -05:00
fn check(&mut self, path: Option<&Path>) -> Result<(), AnyError> {
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
self.ffi.check(path)
}
}
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
fn unit_permission_from_flag_bool(
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
flag: bool,
name: &'static str,
description: &'static str,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt: bool,
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
) -> UnitPermission {
UnitPermission {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
name,
description,
state: if flag {
PermissionState::Granted
} else {
PermissionState::Prompt
},
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt,
Allow high precision performance.now() (#1977)
2019-04-08 16:22:40 -04:00
}
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
}
Allow inspection and revocation of permissions (#1875)
2019-03-04 11:04:19 -05:00
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
fn global_state_from_option<T>(flag: &Option<Vec<T>>) -> PermissionState {
if matches!(flag, Some(v) if v.is_empty()) {
PermissionState::Granted
} else {
PermissionState::Prompt
refactor: remove CliState, use OpState, add CliModuleLoader (#7588) - remove "CliState.workers" and "CliState.next_worker_id", instead store them on "OpState" using type aliases. - remove "CliState.global_timer" and "CliState.start_time", instead store them on "OpState" using type aliases. - remove "CliState.is_internal", instead pass it to Worker::new - move "CliState::permissions" to "OpState" - move "CliState::main_module" to "OpState" - move "CliState::global_state" to "OpState" - move "CliState::check_unstable()" to "GlobalState" - change "cli_state()" to "global_state()" - change "deno_core::ModuleLoader" trait to pass "OpState" to callbacks - rename "CliState" to "CliModuleLoader"
2020-09-19 19:17:35 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
refactor: remove CliState, use OpState, add CliModuleLoader (#7588) - remove "CliState.workers" and "CliState.next_worker_id", instead store them on "OpState" using type aliases. - remove "CliState.global_timer" and "CliState.start_time", instead store them on "OpState" using type aliases. - remove "CliState.is_internal", instead pass it to Worker::new - move "CliState::permissions" to "OpState" - move "CliState::main_module" to "OpState" - move "CliState::global_state" to "OpState" - move "CliState::check_unstable()" to "GlobalState" - change "cli_state()" to "global_state()" - change "deno_core::ModuleLoader" trait to pass "OpState" to callbacks - rename "CliState" to "CliModuleLoader"
2020-09-19 19:17:35 -04:00
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn resolve_read_allowlist(
allow: &Option<Vec<PathBuf>>,
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
) -> HashSet<ReadDescriptor> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
if let Some(v) = allow {
v.iter()
.map(|raw_path| {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
ReadDescriptor(resolve_from_cwd(Path::new(&raw_path)).unwrap())
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
})
.collect()
} else {
HashSet::new()
refactor: remove CliState, use OpState, add CliModuleLoader (#7588) - remove "CliState.workers" and "CliState.next_worker_id", instead store them on "OpState" using type aliases. - remove "CliState.global_timer" and "CliState.start_time", instead store them on "OpState" using type aliases. - remove "CliState.is_internal", instead pass it to Worker::new - move "CliState::permissions" to "OpState" - move "CliState::main_module" to "OpState" - move "CliState::global_state" to "OpState" - move "CliState::check_unstable()" to "GlobalState" - change "cli_state()" to "global_state()" - change "deno_core::ModuleLoader" trait to pass "OpState" to callbacks - rename "CliState" to "CliModuleLoader"
2020-09-19 19:17:35 -04:00
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn resolve_write_allowlist(
allow: &Option<Vec<PathBuf>>,
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
) -> HashSet<WriteDescriptor> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
if let Some(v) = allow {
v.iter()
.map(|raw_path| {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
WriteDescriptor(resolve_from_cwd(Path::new(&raw_path)).unwrap())
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
})
.collect()
} else {
HashSet::new()
refactor: move WebSocket API to an op_crate (#9026)
2021-01-06 10:57:28 -05:00
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub fn resolve_ffi_allowlist(
allow: &Option<Vec<PathBuf>>,
) -> HashSet<FfiDescriptor> {
if let Some(v) = allow {
v.iter()
.map(|raw_path| {
FfiDescriptor(resolve_from_cwd(Path::new(&raw_path)).unwrap())
})
.collect()
} else {
HashSet::new()
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
/// Arbitrary helper. Resolves the path from CWD, and also gets a path that
/// can be displayed without leaking the CWD when not allowed.
fn resolved_and_display_path(path: &Path) -> (PathBuf, PathBuf) {
let resolved_path = resolve_from_cwd(path).unwrap();
let display_path = path.to_path_buf();
(resolved_path, display_path)
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
fn escalation_error() -> AnyError {
custom_error(
"PermissionDenied",
"Can't escalate parent thread permissions",
)
}
#[derive(Debug, PartialEq)]
pub enum ChildUnitPermissionArg {
Inherit,
Granted,
NotGranted,
}
impl Default for ChildUnitPermissionArg {
fn default() -> Self {
ChildUnitPermissionArg::Inherit
}
}
impl<'de> Deserialize<'de> for ChildUnitPermissionArg {
fn deserialize<D>(deserializer: D) -> Result<Self, D::Error>
where
D: Deserializer<'de>,
{
struct ChildUnitPermissionArgVisitor;
impl<'de> de::Visitor<'de> for ChildUnitPermissionArgVisitor {
type Value = ChildUnitPermissionArg;
fn expecting(&self, formatter: &mut fmt::Formatter) -> fmt::Result {
formatter.write_str("\"inherit\" or boolean")
}
fn visit_unit<E>(self) -> Result<ChildUnitPermissionArg, E>
where
E: de::Error,
{
Ok(ChildUnitPermissionArg::Inherit)
}
fn visit_str<E>(self, v: &str) -> Result<ChildUnitPermissionArg, E>
where
E: de::Error,
{
if v == "inherit" {
Ok(ChildUnitPermissionArg::Inherit)
} else {
Err(de::Error::invalid_value(de::Unexpected::Str(v), &self))
}
}
fn visit_bool<E>(self, v: bool) -> Result<ChildUnitPermissionArg, E>
where
E: de::Error,
{
match v {
true => Ok(ChildUnitPermissionArg::Granted),
false => Ok(ChildUnitPermissionArg::NotGranted),
}
}
}
deserializer.deserialize_any(ChildUnitPermissionArgVisitor)
}
}
#[derive(Debug, PartialEq)]
pub enum ChildUnaryPermissionArg {
Inherit,
Granted,
NotGranted,
GrantedList(Vec<String>),
}
impl Default for ChildUnaryPermissionArg {
fn default() -> Self {
ChildUnaryPermissionArg::Inherit
}
}
impl<'de> Deserialize<'de> for ChildUnaryPermissionArg {
fn deserialize<D>(deserializer: D) -> Result<Self, D::Error>
where
D: Deserializer<'de>,
{
struct ChildUnaryPermissionArgVisitor;
impl<'de> de::Visitor<'de> for ChildUnaryPermissionArgVisitor {
type Value = ChildUnaryPermissionArg;
fn expecting(&self, formatter: &mut fmt::Formatter) -> fmt::Result {
formatter.write_str("\"inherit\" or boolean or string[]")
}
fn visit_unit<E>(self) -> Result<ChildUnaryPermissionArg, E>
where
E: de::Error,
{
Ok(ChildUnaryPermissionArg::Inherit)
}
fn visit_str<E>(self, v: &str) -> Result<ChildUnaryPermissionArg, E>
where
E: de::Error,
{
if v == "inherit" {
Ok(ChildUnaryPermissionArg::Inherit)
} else {
Err(de::Error::invalid_value(de::Unexpected::Str(v), &self))
}
}
fn visit_bool<E>(self, v: bool) -> Result<ChildUnaryPermissionArg, E>
where
E: de::Error,
{
match v {
true => Ok(ChildUnaryPermissionArg::Granted),
false => Ok(ChildUnaryPermissionArg::NotGranted),
}
}
fn visit_seq<V>(
self,
mut v: V,
) -> Result<ChildUnaryPermissionArg, V::Error>
where
V: de::SeqAccess<'de>,
{
let mut granted_list = vec![];
while let Some(value) = v.next_element::<String>()? {
granted_list.push(value);
}
Ok(ChildUnaryPermissionArg::GrantedList(granted_list))
}
}
deserializer.deserialize_any(ChildUnaryPermissionArgVisitor)
}
}
/// Directly deserializable from JS worker and test permission options.
#[derive(Debug, Default, PartialEq)]
pub struct ChildPermissionsArg {
env: ChildUnaryPermissionArg,
hrtime: ChildUnitPermissionArg,
net: ChildUnaryPermissionArg,
ffi: ChildUnaryPermissionArg,
read: ChildUnaryPermissionArg,
run: ChildUnaryPermissionArg,
write: ChildUnaryPermissionArg,
}
impl<'de> Deserialize<'de> for ChildPermissionsArg {
fn deserialize<D>(deserializer: D) -> Result<Self, D::Error>
where
D: Deserializer<'de>,
{
struct ChildPermissionsArgVisitor;
impl<'de> de::Visitor<'de> for ChildPermissionsArgVisitor {
type Value = ChildPermissionsArg;
fn expecting(&self, formatter: &mut fmt::Formatter) -> fmt::Result {
formatter.write_str("\"inherit\" or \"none\" or object")
}
fn visit_unit<E>(self) -> Result<ChildPermissionsArg, E>
where
E: de::Error,
{
Ok(ChildPermissionsArg::default())
}
fn visit_str<E>(self, v: &str) -> Result<ChildPermissionsArg, E>
where
E: de::Error,
{
if v == "inherit" {
Ok(ChildPermissionsArg::default())
} else if v == "none" {
Ok(ChildPermissionsArg {
env: ChildUnaryPermissionArg::NotGranted,
hrtime: ChildUnitPermissionArg::NotGranted,
net: ChildUnaryPermissionArg::NotGranted,
ffi: ChildUnaryPermissionArg::NotGranted,
read: ChildUnaryPermissionArg::NotGranted,
run: ChildUnaryPermissionArg::NotGranted,
write: ChildUnaryPermissionArg::NotGranted,
})
} else {
Err(de::Error::invalid_value(de::Unexpected::Str(v), &self))
}
}
fn visit_map<V>(self, mut v: V) -> Result<ChildPermissionsArg, V::Error>
where
V: de::MapAccess<'de>,
{
let mut child_permissions_arg = ChildPermissionsArg::default();
while let Some((key, value)) =
v.next_entry::<String, serde_json::Value>()?
{
if key == "env" {
let arg = serde_json::from_value::<ChildUnaryPermissionArg>(value);
child_permissions_arg.env = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.env) {}", e))
})?;
} else if key == "hrtime" {
let arg = serde_json::from_value::<ChildUnitPermissionArg>(value);
child_permissions_arg.hrtime = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.hrtime) {}", e))
})?;
} else if key == "net" {
let arg = serde_json::from_value::<ChildUnaryPermissionArg>(value);
child_permissions_arg.net = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.net) {}", e))
})?;
} else if key == "ffi" {
let arg = serde_json::from_value::<ChildUnaryPermissionArg>(value);
child_permissions_arg.ffi = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.ffi) {}", e))
})?;
} else if key == "read" {
let arg = serde_json::from_value::<ChildUnaryPermissionArg>(value);
child_permissions_arg.read = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.read) {}", e))
})?;
} else if key == "run" {
let arg = serde_json::from_value::<ChildUnaryPermissionArg>(value);
child_permissions_arg.run = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.run) {}", e))
})?;
} else if key == "write" {
let arg = serde_json::from_value::<ChildUnaryPermissionArg>(value);
child_permissions_arg.write = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.write) {}", e))
})?;
} else {
return Err(de::Error::custom("unknown permission name"));
}
}
Ok(child_permissions_arg)
}
}
deserializer.deserialize_any(ChildPermissionsArgVisitor)
}
}
pub fn create_child_permissions(
main_perms: &mut Permissions,
child_permissions_arg: ChildPermissionsArg,
) -> Result<Permissions, AnyError> {
let mut worker_perms = Permissions::default();
match child_permissions_arg.env {
ChildUnaryPermissionArg::Inherit => {
worker_perms.env = main_perms.env.clone();
}
ChildUnaryPermissionArg::Granted => {
if main_perms.env.check_all().is_err() {
return Err(escalation_error());
}
worker_perms.env.global_state = PermissionState::Granted;
}
ChildUnaryPermissionArg::NotGranted => {}
ChildUnaryPermissionArg::GrantedList(granted_list) => {
worker_perms.env.granted_list =
Permissions::new_env(&Some(granted_list), false).granted_list;
if !worker_perms
.env
.granted_list
.iter()
.all(|desc| main_perms.env.check(desc.as_ref()).is_ok())
{
return Err(escalation_error());
}
}
}
worker_perms.env.denied_list = main_perms.env.denied_list.clone();
if main_perms.env.global_state == PermissionState::Denied {
worker_perms.env.global_state = PermissionState::Denied;
}
worker_perms.env.prompt = main_perms.env.prompt;
match child_permissions_arg.hrtime {
ChildUnitPermissionArg::Inherit => {
worker_perms.hrtime = main_perms.hrtime.clone();
}
ChildUnitPermissionArg::Granted => {
if main_perms.hrtime.check().is_err() {
return Err(escalation_error());
}
worker_perms.hrtime.state = PermissionState::Granted;
}
ChildUnitPermissionArg::NotGranted => {}
}
if main_perms.hrtime.state == PermissionState::Denied {
worker_perms.hrtime.state = PermissionState::Denied;
}
worker_perms.hrtime.prompt = main_perms.hrtime.prompt;
match child_permissions_arg.net {
ChildUnaryPermissionArg::Inherit => {
worker_perms.net = main_perms.net.clone();
}
ChildUnaryPermissionArg::Granted => {
if main_perms.net.check_all().is_err() {
return Err(escalation_error());
}
worker_perms.net.global_state = PermissionState::Granted;
}
ChildUnaryPermissionArg::NotGranted => {}
ChildUnaryPermissionArg::GrantedList(granted_list) => {
worker_perms.net.granted_list =
Permissions::new_net(&Some(granted_list), false).granted_list;
if !worker_perms
.net
.granted_list
.iter()
.all(|desc| main_perms.net.check(&(&desc.0, desc.1)).is_ok())
{
return Err(escalation_error());
}
}
}
worker_perms.net.denied_list = main_perms.net.denied_list.clone();
if main_perms.net.global_state == PermissionState::Denied {
worker_perms.net.global_state = PermissionState::Denied;
}
worker_perms.net.prompt = main_perms.net.prompt;
match child_permissions_arg.ffi {
ChildUnaryPermissionArg::Inherit => {
worker_perms.ffi = main_perms.ffi.clone();
}
ChildUnaryPermissionArg::Granted => {
if main_perms.ffi.check_all().is_err() {
return Err(escalation_error());
}
worker_perms.ffi.global_state = PermissionState::Granted;
}
ChildUnaryPermissionArg::NotGranted => {}
ChildUnaryPermissionArg::GrantedList(granted_list) => {
worker_perms.ffi.granted_list = Permissions::new_ffi(
&Some(granted_list.iter().map(PathBuf::from).collect()),
false,
)
.granted_list;
if !worker_perms
.ffi
.granted_list
.iter()
feat(ext/ffi): implement UnsafePointer and UnsafePointerView (#12828)
2021-12-15 09:41:49 -05:00
.all(|desc| main_perms.ffi.check(Some(&desc.0)).is_ok())
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
{
return Err(escalation_error());
}
}
}
worker_perms.ffi.denied_list = main_perms.ffi.denied_list.clone();
if main_perms.ffi.global_state == PermissionState::Denied {
worker_perms.ffi.global_state = PermissionState::Denied;
}
worker_perms.ffi.prompt = main_perms.ffi.prompt;
match child_permissions_arg.read {
ChildUnaryPermissionArg::Inherit => {
worker_perms.read = main_perms.read.clone();
}
ChildUnaryPermissionArg::Granted => {
if main_perms.read.check_all().is_err() {
return Err(escalation_error());
}
worker_perms.read.global_state = PermissionState::Granted;
}
ChildUnaryPermissionArg::NotGranted => {}
ChildUnaryPermissionArg::GrantedList(granted_list) => {
worker_perms.read.granted_list = Permissions::new_read(
&Some(granted_list.iter().map(PathBuf::from).collect()),
false,
)
.granted_list;
if !worker_perms
.read
.granted_list
.iter()
.all(|desc| main_perms.read.check(&desc.0).is_ok())
{
return Err(escalation_error());
}
}
}
worker_perms.read.denied_list = main_perms.read.denied_list.clone();
if main_perms.read.global_state == PermissionState::Denied {
worker_perms.read.global_state = PermissionState::Denied;
}
worker_perms.read.prompt = main_perms.read.prompt;
match child_permissions_arg.run {
ChildUnaryPermissionArg::Inherit => {
worker_perms.run = main_perms.run.clone();
}
ChildUnaryPermissionArg::Granted => {
if main_perms.run.check_all().is_err() {
return Err(escalation_error());
}
worker_perms.run.global_state = PermissionState::Granted;
}
ChildUnaryPermissionArg::NotGranted => {}
ChildUnaryPermissionArg::GrantedList(granted_list) => {
worker_perms.run.granted_list =
Permissions::new_run(&Some(granted_list), false).granted_list;
if !worker_perms
.run
.granted_list
.iter()
.all(|desc| main_perms.run.check(&desc.to_string()).is_ok())
{
return Err(escalation_error());
}
}
}
worker_perms.run.denied_list = main_perms.run.denied_list.clone();
if main_perms.run.global_state == PermissionState::Denied {
worker_perms.run.global_state = PermissionState::Denied;
}
worker_perms.run.prompt = main_perms.run.prompt;
match child_permissions_arg.write {
ChildUnaryPermissionArg::Inherit => {
worker_perms.write = main_perms.write.clone();
}
ChildUnaryPermissionArg::Granted => {
if main_perms.write.check_all().is_err() {
return Err(escalation_error());
}
worker_perms.write.global_state = PermissionState::Granted;
}
ChildUnaryPermissionArg::NotGranted => {}
ChildUnaryPermissionArg::GrantedList(granted_list) => {
worker_perms.write.granted_list = Permissions::new_write(
&Some(granted_list.iter().map(PathBuf::from).collect()),
false,
)
.granted_list;
if !worker_perms
.write
.granted_list
.iter()
.all(|desc| main_perms.write.check(&desc.0).is_ok())
{
return Err(escalation_error());
}
}
}
worker_perms.write.denied_list = main_perms.write.denied_list.clone();
if main_perms.write.global_state == PermissionState::Denied {
worker_perms.write.global_state = PermissionState::Denied;
}
worker_perms.write.prompt = main_perms.write.prompt;
Ok(worker_perms)
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
/// Shows the permission prompt and returns the answer according to the user input.
/// This loops until the user gives the proper input.
#[cfg(not(test))]
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
fn permission_prompt(message: &str, name: &str) -> bool {
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
if !atty::is(atty::Stream::Stdin) || !atty::is(atty::Stream::Stderr) {
return false;
};
fix: permission prompt stuffing (#11931) Fixes #9750
2021-09-09 08:38:47 -04:00
#[cfg(unix)]
fn clear_stdin() {
let r = unsafe { libc::tcflush(0, libc::TCIFLUSH) };
assert_eq!(r, 0);
}
#[cfg(not(unix))]
fn clear_stdin() {
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
use winapi::shared::minwindef::TRUE;
use winapi::shared::minwindef::UINT;
use winapi::shared::minwindef::WORD;
use winapi::shared::ntdef::WCHAR;
use winapi::um::processenv::GetStdHandle;
use winapi::um::winbase::STD_INPUT_HANDLE;
use winapi::um::wincon::FlushConsoleInputBuffer;
use winapi::um::wincon::PeekConsoleInputW;
use winapi::um::wincon::WriteConsoleInputW;
use winapi::um::wincontypes::INPUT_RECORD;
use winapi::um::wincontypes::KEY_EVENT;
use winapi::um::winnt::HANDLE;
use winapi::um::winuser::MapVirtualKeyW;
use winapi::um::winuser::MAPVK_VK_TO_VSC;
use winapi::um::winuser::VK_RETURN;
fix: permission prompt stuffing (#11931) Fixes #9750
2021-09-09 08:38:47 -04:00
unsafe {
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
let stdin = GetStdHandle(STD_INPUT_HANDLE);
// emulate an enter key press to clear any line buffered console characters
emulate_enter_key_press(stdin);
// read the buffered line or enter key press
read_stdin_line();
// check if our emulated key press was executed
if is_input_buffer_empty(stdin) {
// if so, move the cursor up to prevent a blank line
move_cursor_up();
} else {
// the emulated key press is still pending, so a buffered line was read
// and we can flush the emulated key press
flush_input_buffer(stdin);
}
}
unsafe fn flush_input_buffer(stdin: HANDLE) {
let success = FlushConsoleInputBuffer(stdin);
if success != TRUE {
panic!(
"Error flushing console input buffer: {}",
chore: upgrade to rust 1.58 (#13377)
2022-01-15 01:10:12 -05:00
std::io::Error::last_os_error()
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
)
}
}
unsafe fn emulate_enter_key_press(stdin: HANDLE) {
// https://github.com/libuv/libuv/blob/a39009a5a9252a566ca0704d02df8dabc4ce328f/src/win/tty.c#L1121-L1131
let mut input_record: INPUT_RECORD = std::mem::zeroed();
input_record.EventType = KEY_EVENT;
input_record.Event.KeyEvent_mut().bKeyDown = TRUE;
input_record.Event.KeyEvent_mut().wRepeatCount = 1;
input_record.Event.KeyEvent_mut().wVirtualKeyCode = VK_RETURN as WORD;
input_record.Event.KeyEvent_mut().wVirtualScanCode =
MapVirtualKeyW(VK_RETURN as UINT, MAPVK_VK_TO_VSC) as WORD;
*input_record.Event.KeyEvent_mut().uChar.UnicodeChar_mut() =
'\r' as WCHAR;
let mut record_written = 0;
let success =
WriteConsoleInputW(stdin, &input_record, 1, &mut record_written);
if success != TRUE {
panic!(
"Error emulating enter key press: {}",
chore: upgrade to rust 1.58 (#13377)
2022-01-15 01:10:12 -05:00
std::io::Error::last_os_error()
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
)
}
}
unsafe fn is_input_buffer_empty(stdin: HANDLE) -> bool {
let mut buffer = Vec::with_capacity(1);
let mut events_read = 0;
let success =
PeekConsoleInputW(stdin, buffer.as_mut_ptr(), 1, &mut events_read);
if success != TRUE {
panic!(
"Error peeking console input buffer: {}",
chore: upgrade to rust 1.58 (#13377)
2022-01-15 01:10:12 -05:00
std::io::Error::last_os_error()
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
)
}
events_read == 0
}
fn move_cursor_up() {
use std::io::Write;
write!(std::io::stderr(), "\x1B[1A").expect("expected to move cursor up");
}
fn read_stdin_line() {
let mut input = String::new();
let stdin = std::io::stdin();
stdin.read_line(&mut input).expect("expected to read line");
fix: permission prompt stuffing (#11931) Fixes #9750
2021-09-09 08:38:47 -04:00
}
}
// For security reasons we must consume everything in stdin so that previously
// buffered data cannot effect the prompt.
clear_stdin();
Switch grant/deny prompt to yes/no (#10547)
2021-05-10 07:11:34 -04:00
let opts = "[y/n (y = yes allow, n = no deny)] ";
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
let msg = format!(
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
"{} Deno requests {}. Run again with --allow-{} to bypass this prompt.\n Allow? {} ",
PERMISSION_EMOJI, message, name, opts
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
);
// print to stderr so that if deno is > to a file this is still displayed.
refactor: util functions take slices instead of heap values (#6547)
2020-06-29 08:17:37 -04:00
eprint!("{}", colors::bold(&msg));
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
loop {
let mut input = String::new();
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
let stdin = std::io::stdin();
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
let result = stdin.read_line(&mut input);
if result.is_err() {
return false;
};
fix(permissions): don't panic when no input is given (#9894) Fixes #9633 Co-authored-by: Kitson Kelly <me@kitsonkelly.com>
2021-04-02 16:49:51 -04:00
let ch = match input.chars().next() {
None => return false,
Some(v) => v,
};
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
match ch.to_ascii_lowercase() {
Switch grant/deny prompt to yes/no (#10547)
2021-05-10 07:11:34 -04:00
'y' => return true,
'n' => return false,
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
_ => {
// If we don't get a recognized option try again.
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let msg_again = format!("Unrecognized option '{}' {}", ch, opts);
refactor: util functions take slices instead of heap values (#6547)
2020-06-29 08:17:37 -04:00
eprint!("{}", colors::bold(&msg_again));
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
}
};
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
// When testing, permission prompt returns the value of STUB_PROMPT_VALUE
// which we set from the test functions.
#[cfg(test)]
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
fn permission_prompt(_message: &str, _flag: &str) -> bool {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
STUB_PROMPT_VALUE.load(Ordering::SeqCst)
}
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
#[cfg(test)]
static STUB_PROMPT_VALUE: AtomicBool = AtomicBool::new(true);
fix: add mutex guard for permission_prompt tests (#4105) This PR introduces the mutex guard for the test cases which depends on the permission prompt mocking utility. permission_request test cases depend on the mocked (dummy) value of the permission_prompt result. The value is stored at static STUB_PROMPT_VALUE: AtomicBool and these test cases share this value. So we should lock at the start of these test cases. Before this change cargo test permission failed 6 times out of 20. After this change, 0 times out of 20 (on my mac).
2020-02-24 09:13:03 -05:00
#[cfg(test)]
refactor: use `once_cell` instead of `lazy_static` (#13135)
2021-12-18 16:14:42 -05:00
static PERMISSION_PROMPT_STUB_VALUE_SETTER: Lazy<
Mutex<PermissionPromptStubValueSetter>,
> = Lazy::new(|| Mutex::new(PermissionPromptStubValueSetter));
fix: add mutex guard for permission_prompt tests (#4105) This PR introduces the mutex guard for the test cases which depends on the permission prompt mocking utility. permission_request test cases depend on the mocked (dummy) value of the permission_prompt result. The value is stored at static STUB_PROMPT_VALUE: AtomicBool and these test cases share this value. So we should lock at the start of these test cases. Before this change cargo test permission failed 6 times out of 20. After this change, 0 times out of 20 (on my mac).
2020-02-24 09:13:03 -05:00
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
#[cfg(test)]
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
struct PermissionPromptStubValueSetter;
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
#[cfg(test)]
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
impl PermissionPromptStubValueSetter {
pub fn set(&self, value: bool) {
STUB_PROMPT_VALUE.store(value, Ordering::SeqCst);
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
}
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
#[cfg(test)]
mod tests {
use super::*;
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
use deno_core::resolve_url_or_path;
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
use deno_core::serde_json::json;
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Creates vector of strings, Vec<String>
macro_rules! svec {
($($x:expr),*) => (vec![$($x.to_string()),*]);
}
#[test]
fn check_paths() {
Move to allowlist and blocklist (#6282)
2020-06-13 13:09:39 -04:00
let allowlist = vec![
refactor: Use PathBuf for paths in flag parsing and whitelists (#3955) * Use PathBuf for DenoSubcommand::Bundle's out_file * Use PathBuf for DenoSubcommand::Format's files * Use PathBuf for DenoSubcommand::Install's dir * Use PathBuf for read/write whitelists
2020-02-11 04:29:36 -05:00
PathBuf::from("/a/specific/dir/name"),
PathBuf::from("/a/specific"),
PathBuf::from("/b/c"),
];
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let mut perms = Permissions::from_options(&PermissionsOptions {
refactor(cli/flags): change allow_read/write/net types from bool to Option<Vec<T>> (#8896) This PR refactors "cli/flags.rs" and "runtime/permissions.rs" so that "allow_read", "allow_write" and "allow_net" themselves have allowlists, instead of storing them in additional fields.
2020-12-29 13:34:35 -05:00
allow_read: Some(allowlist.clone()),
allow_write: Some(allowlist),
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
..Default::default()
});
// Inside of /a/specific and /a/specific/dir/name
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert!(perms.read.check(Path::new("/a/specific/dir/name")).is_ok());
assert!(perms.write.check(Path::new("/a/specific/dir/name")).is_ok());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Inside of /a/specific but outside of /a/specific/dir/name
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert!(perms.read.check(Path::new("/a/specific/dir")).is_ok());
assert!(perms.write.check(Path::new("/a/specific/dir")).is_ok());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Inside of /a/specific and /a/specific/dir/name
refactor: Improve path handling in permission checks (#3714)
2020-01-20 09:45:44 -05:00
assert!(perms
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
.read
.check(Path::new("/a/specific/dir/name/inner"))
refactor: Improve path handling in permission checks (#3714)
2020-01-20 09:45:44 -05:00
.is_ok());
assert!(perms
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
.write
.check(Path::new("/a/specific/dir/name/inner"))
refactor: Improve path handling in permission checks (#3714)
2020-01-20 09:45:44 -05:00
.is_ok());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Inside of /a/specific but outside of /a/specific/dir/name
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert!(perms.read.check(Path::new("/a/specific/other/dir")).is_ok());
refactor: Improve path handling in permission checks (#3714)
2020-01-20 09:45:44 -05:00
assert!(perms
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
.write
.check(Path::new("/a/specific/other/dir"))
refactor: Improve path handling in permission checks (#3714)
2020-01-20 09:45:44 -05:00
.is_ok());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Exact match with /b/c
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert!(perms.read.check(Path::new("/b/c")).is_ok());
assert!(perms.write.check(Path::new("/b/c")).is_ok());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Sub path within /b/c
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert!(perms.read.check(Path::new("/b/c/sub/path")).is_ok());
assert!(perms.write.check(Path::new("/b/c/sub/path")).is_ok());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
// Sub path within /b/c, needs normalizing
assert!(perms
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
.read
.check(Path::new("/b/c/sub/path/../path/."))
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
.is_ok());
assert!(perms
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
.write
.check(Path::new("/b/c/sub/path/../path/."))
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
.is_ok());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Inside of /b but outside of /b/c
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert!(perms.read.check(Path::new("/b/e")).is_err());
assert!(perms.write.check(Path::new("/b/e")).is_err());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Inside of /a but outside of /a/specific
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert!(perms.read.check(Path::new("/a/b")).is_err());
assert!(perms.write.check(Path::new("/a/b")).is_err());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
}
#[test]
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
fn test_check_net_with_values() {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let mut perms = Permissions::from_options(&PermissionsOptions {
refactor(cli/flags): change allow_read/write/net types from bool to Option<Vec<T>> (#8896) This PR refactors "cli/flags.rs" and "runtime/permissions.rs" so that "allow_read", "allow_write" and "allow_net" themselves have allowlists, instead of storing them in additional fields.
2020-12-29 13:34:35 -05:00
allow_net: Some(svec![
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
"localhost",
"deno.land",
"github.com:3000",
"127.0.0.1",
fix: net permissions didn't account for default ports (#6606)
2020-07-02 10:16:41 -04:00
"172.16.0.2:8000",
"www.github.com:443"
refactor(cli/flags): change allow_read/write/net types from bool to Option<Vec<T>> (#8896) This PR refactors "cli/flags.rs" and "runtime/permissions.rs" so that "allow_read", "allow_write" and "allow_net" themselves have allowlists, instead of storing them in additional fields.
2020-12-29 13:34:35 -05:00
]),
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
..Default::default()
});
simplify check_net test
2019-06-24 19:30:11 -04:00
let domain_tests = vec![
refactor DenoPermissions.check_net & resolve_addr (#3182)
2019-10-23 10:19:27 -04:00
("localhost", 1234, true),
("deno.land", 0, true),
("deno.land", 3000, true),
("deno.lands", 0, false),
("deno.lands", 3000, false),
("github.com", 3000, true),
("github.com", 0, false),
("github.com", 2000, false),
("github.net", 3000, false),
("127.0.0.1", 0, true),
("127.0.0.1", 3000, true),
("127.0.0.2", 0, false),
("127.0.0.2", 3000, false),
("172.16.0.2", 8000, true),
("172.16.0.2", 0, false),
("172.16.0.2", 6000, false),
("172.16.0.1", 8000, false),
simplify check_net test
2019-06-24 19:30:11 -04:00
// Just some random hosts that should err
refactor DenoPermissions.check_net & resolve_addr (#3182)
2019-10-23 10:19:27 -04:00
("somedomain", 0, false),
("192.168.0.1", 0, false),
simplify check_net test
2019-06-24 19:30:11 -04:00
];
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
for (host, port, is_ok) in domain_tests {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(is_ok, perms.net.check(&(host, Some(port))).is_ok());
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
}
}
#[test]
fn test_check_net_only_flag() {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let mut perms = Permissions::from_options(&PermissionsOptions {
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
allow_net: Some(svec![]), // this means `--allow-net` is present without values following `=` sign
..Default::default()
});
let domain_tests = vec![
("localhost", 1234),
("deno.land", 0),
("deno.land", 3000),
("deno.lands", 0),
("deno.lands", 3000),
("github.com", 3000),
("github.com", 0),
("github.com", 2000),
("github.net", 3000),
("127.0.0.1", 0),
("127.0.0.1", 3000),
("127.0.0.2", 0),
("127.0.0.2", 3000),
("172.16.0.2", 8000),
("172.16.0.2", 0),
("172.16.0.2", 6000),
("172.16.0.1", 8000),
("somedomain", 0),
("192.168.0.1", 0),
];
for (host, port) in domain_tests {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert!(perms.net.check(&(host, Some(port))).is_ok());
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
}
}
#[test]
fn test_check_net_no_flag() {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let mut perms = Permissions::from_options(&PermissionsOptions {
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
allow_net: None,
..Default::default()
});
let domain_tests = vec![
("localhost", 1234),
("deno.land", 0),
("deno.land", 3000),
("deno.lands", 0),
("deno.lands", 3000),
("github.com", 3000),
("github.com", 0),
("github.com", 2000),
("github.net", 3000),
("127.0.0.1", 0),
("127.0.0.1", 3000),
("127.0.0.2", 0),
("127.0.0.2", 3000),
("172.16.0.2", 8000),
("172.16.0.2", 0),
("172.16.0.2", 6000),
("172.16.0.1", 8000),
("somedomain", 0),
("192.168.0.1", 0),
];
for (host, port) in domain_tests {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert!(!perms.net.check(&(host, Some(port))).is_ok());
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
}
}
#[test]
fn test_check_net_url() {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let mut perms = Permissions::from_options(&PermissionsOptions {
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
allow_net: Some(svec![
"localhost",
"deno.land",
"github.com:3000",
"127.0.0.1",
"172.16.0.2:8000",
"www.github.com:443"
]),
..Default::default()
});
simplify check_net test
2019-06-24 19:30:11 -04:00
let url_tests = vec![
// Any protocol + port for localhost should be ok, since we don't specify
("http://localhost", true),
("https://localhost", true),
("https://localhost:4443", true),
("tcp://localhost:5000", true),
("udp://localhost:6000", true),
// Correct domain + any port and protocol should be ok incorrect shouldn't
("https://deno.land/std/example/welcome.ts", true),
("https://deno.land:3000/std/example/welcome.ts", true),
("https://deno.lands/std/example/welcome.ts", false),
("https://deno.lands:3000/std/example/welcome.ts", false),
// Correct domain + port should be ok all other combinations should err
("https://github.com:3000/denoland/deno", true),
("https://github.com/denoland/deno", false),
("https://github.com:2000/denoland/deno", false),
("https://github.net:3000/denoland/deno", false),
// Correct ipv4 address + any port should be ok others should err
("tcp://127.0.0.1", true),
("https://127.0.0.1", true),
("tcp://127.0.0.1:3000", true),
("https://127.0.0.1:3000", true),
("tcp://127.0.0.2", false),
("https://127.0.0.2", false),
("tcp://127.0.0.2:3000", false),
("https://127.0.0.2:3000", false),
// Correct address + port should be ok all other combinations should err
("tcp://172.16.0.2:8000", true),
("https://172.16.0.2:8000", true),
("tcp://172.16.0.2", false),
("https://172.16.0.2", false),
("tcp://172.16.0.2:6000", false),
("https://172.16.0.2:6000", false),
("tcp://172.16.0.1:8000", false),
("https://172.16.0.1:8000", false),
fix: net permissions didn't account for default ports (#6606)
2020-07-02 10:16:41 -04:00
// Testing issue #6531 (Network permissions check doesn't account for well-known default ports) so we dont regress
("https://www.github.com:443/robots.txt", true),
simplify check_net test
2019-06-24 19:30:11 -04:00
];
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
for (url_str, is_ok) in url_tests {
simplify check_net test
2019-06-24 19:30:11 -04:00
let u = url::Url::parse(url_str).unwrap();
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(is_ok, perms.net.check_url(&u).is_ok());
simplify check_net test
2019-06-24 19:30:11 -04:00
}
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
#[test]
fn check_specifiers() {
let read_allowlist = if cfg!(target_os = "windows") {
vec![PathBuf::from("C:\\a")]
} else {
vec![PathBuf::from("/a")]
};
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let mut perms = Permissions::from_options(&PermissionsOptions {
refactor(cli/flags): change allow_read/write/net types from bool to Option<Vec<T>> (#8896) This PR refactors "cli/flags.rs" and "runtime/permissions.rs" so that "allow_read", "allow_write" and "allow_net" themselves have allowlists, instead of storing them in additional fields.
2020-12-29 13:34:35 -05:00
allow_read: Some(read_allowlist),
allow_net: Some(svec!["localhost"]),
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
..Default::default()
});
let mut fixtures = vec![
(
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
resolve_url_or_path("http://localhost:4545/mod.ts").unwrap(),
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
true,
),
(
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
resolve_url_or_path("http://deno.land/x/mod.ts").unwrap(),
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
false,
),
feat(cli): support data urls (#8866) Closes: #5059 Co-authored-by: Valentin Anger <syrupthinker@gryphno.de>
2021-01-05 21:22:38 -05:00
(
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
resolve_url_or_path("data:text/plain,Hello%2C%20Deno!").unwrap(),
feat(cli): support data urls (#8866) Closes: #5059 Co-authored-by: Valentin Anger <syrupthinker@gryphno.de>
2021-01-05 21:22:38 -05:00
true,
),
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
];
if cfg!(target_os = "windows") {
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
fixtures
.push((resolve_url_or_path("file:///C:/a/mod.ts").unwrap(), true));
fixtures
.push((resolve_url_or_path("file:///C:/b/mod.ts").unwrap(), false));
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
} else {
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
fixtures.push((resolve_url_or_path("file:///a/mod.ts").unwrap(), true));
fixtures.push((resolve_url_or_path("file:///b/mod.ts").unwrap(), false));
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
}
for (specifier, expected) in fixtures {
assert_eq!(perms.check_specifier(&specifier).is_ok(), expected);
}
}
fix: panic on invalid file:// module specifier (#8964)
2021-01-04 04:33:20 -05:00
#[test]
fn check_invalid_specifiers() {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let mut perms = Permissions::allow_all();
fix: panic on invalid file:// module specifier (#8964)
2021-01-04 04:33:20 -05:00
let mut test_cases = vec![];
if cfg!(target_os = "windows") {
test_cases.push("file://");
test_cases.push("file:///");
} else {
test_cases.push("file://remotehost/");
}
for url in test_cases {
assert!(perms
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
.check_specifier(&resolve_url_or_path(url).unwrap())
fix: panic on invalid file:// module specifier (#8964)
2021-01-04 04:33:20 -05:00
.is_err());
}
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
#[test]
fn test_query() {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let perms1 = Permissions::allow_all();
let perms2 = Permissions {
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
read: UnaryPermission {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
global_state: PermissionState::Prompt,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
..Permissions::new_read(&Some(vec![PathBuf::from("/foo")]), false)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
write: UnaryPermission {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
global_state: PermissionState::Prompt,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
..Permissions::new_write(&Some(vec![PathBuf::from("/foo")]), false)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
net: UnaryPermission {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
global_state: PermissionState::Prompt,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
..Permissions::new_net(&Some(svec!["127.0.0.1:8000"]), false)
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
},
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
env: UnaryPermission {
global_state: PermissionState::Prompt,
..Permissions::new_env(&Some(svec!["HOME"]), false)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
run: UnaryPermission {
global_state: PermissionState::Prompt,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
..Permissions::new_run(&Some(svec!["deno"]), false)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
ffi: UnaryPermission {
global_state: PermissionState::Prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Permissions::new_ffi(&Some(vec![PathBuf::from("deno")]), false)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
hrtime: UnitPermission {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
state: PermissionState::Prompt,
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
..Permissions::new_hrtime(false)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
};
#[rustfmt::skip]
{
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms1.read.query(None), PermissionState::Granted);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert_eq!(perms1.read.query(Some(Path::new("/foo"))), PermissionState::Granted);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms2.read.query(None), PermissionState::Prompt);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert_eq!(perms2.read.query(Some(Path::new("/foo"))), PermissionState::Granted);
assert_eq!(perms2.read.query(Some(Path::new("/foo/bar"))), PermissionState::Granted);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms1.write.query(None), PermissionState::Granted);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert_eq!(perms1.write.query(Some(Path::new("/foo"))), PermissionState::Granted);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms2.write.query(None), PermissionState::Prompt);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert_eq!(perms2.write.query(Some(Path::new("/foo"))), PermissionState::Granted);
assert_eq!(perms2.write.query(Some(Path::new("/foo/bar"))), PermissionState::Granted);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms1.net.query::<&str>(None), PermissionState::Granted);
assert_eq!(perms1.net.query(Some(&("127.0.0.1", None))), PermissionState::Granted);
assert_eq!(perms2.net.query::<&str>(None), PermissionState::Prompt);
assert_eq!(perms2.net.query(Some(&("127.0.0.1", Some(8000)))), PermissionState::Granted);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert_eq!(perms1.env.query(None), PermissionState::Granted);
assert_eq!(perms1.env.query(Some(&"HOME".to_string())), PermissionState::Granted);
assert_eq!(perms2.env.query(None), PermissionState::Prompt);
assert_eq!(perms2.env.query(Some(&"HOME".to_string())), PermissionState::Granted);
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
assert_eq!(perms1.run.query(None), PermissionState::Granted);
assert_eq!(perms1.run.query(Some(&"deno".to_string())), PermissionState::Granted);
assert_eq!(perms2.run.query(None), PermissionState::Prompt);
assert_eq!(perms2.run.query(Some(&"deno".to_string())), PermissionState::Granted);
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
assert_eq!(perms1.ffi.query(None), PermissionState::Granted);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
assert_eq!(perms1.ffi.query(Some(Path::new("deno"))), PermissionState::Granted);
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
assert_eq!(perms2.ffi.query(None), PermissionState::Prompt);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
assert_eq!(perms2.ffi.query(Some(Path::new("deno"))), PermissionState::Granted);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms1.hrtime.query(), PermissionState::Granted);
assert_eq!(perms2.hrtime.query(), PermissionState::Prompt);
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
};
}
#[test]
fn test_request() {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let mut perms: Permissions = Default::default();
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
#[rustfmt::skip]
{
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
let prompt_value = PERMISSION_PROMPT_STUB_VALUE_SETTER.lock();
prompt_value.set(true);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert_eq!(perms.read.request(Some(Path::new("/foo"))), PermissionState::Granted);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms.read.query(None), PermissionState::Prompt);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert_eq!(perms.read.request(Some(Path::new("/foo/bar"))), PermissionState::Granted);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert_eq!(perms.write.request(Some(Path::new("/foo"))), PermissionState::Denied);
assert_eq!(perms.write.query(Some(Path::new("/foo/bar"))), PermissionState::Prompt);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms.write.request(None), PermissionState::Denied);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms.net.request(Some(&("127.0.0.1", None))), PermissionState::Granted);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms.net.request(Some(&("127.0.0.1", Some(8000)))), PermissionState::Granted);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert_eq!(perms.env.request(Some(&"HOME".to_string())), PermissionState::Granted);
assert_eq!(perms.env.query(None), PermissionState::Prompt);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert_eq!(perms.env.request(Some(&"HOME".to_string())), PermissionState::Granted);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
assert_eq!(perms.run.request(Some(&"deno".to_string())), PermissionState::Granted);
assert_eq!(perms.run.query(None), PermissionState::Prompt);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
assert_eq!(perms.run.request(Some(&"deno".to_string())), PermissionState::Granted);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
assert_eq!(perms.ffi.request(Some(Path::new("deno"))), PermissionState::Granted);
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
assert_eq!(perms.ffi.query(None), PermissionState::Prompt);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
assert_eq!(perms.ffi.request(Some(Path::new("deno"))), PermissionState::Granted);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms.hrtime.request(), PermissionState::Denied);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms.hrtime.request(), PermissionState::Denied);
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
};
}
#[test]
fn test_revoke() {
let mut perms = Permissions {
read: UnaryPermission {
refactor(cli/permissions): Cleanup Flags to Permissions conversion (#8213)
2020-10-31 18:44:42 -04:00
global_state: PermissionState::Prompt,
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
..Permissions::new_read(
&Some(vec![PathBuf::from("/foo"), PathBuf::from("/foo/baz")]),
false,
)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
write: UnaryPermission {
refactor(cli/permissions): Cleanup Flags to Permissions conversion (#8213)
2020-10-31 18:44:42 -04:00
global_state: PermissionState::Prompt,
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
..Permissions::new_write(
&Some(vec![PathBuf::from("/foo"), PathBuf::from("/foo/baz")]),
false,
)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
net: UnaryPermission {
BREAKING(unstable): Use hosts for net allowlists (#8845) Allowlist checking already uses hosts but for some reason requests, revokes and the runtime permissions API use URLs. - BREAKING(lib.deno.unstable.d.ts): Change NetPermissionDescriptor::url to NetPermissionDescriptor::host - fix(runtime/permissions): Don't add whole URLs to the allowlist on request - fix(runtime/permissions): Harden strength semantics: ({ name: "net", host: "127.0.0.1" } is stronger than { name: "net", host: "127.0.0.1:8000" }) for blocklisting - refactor(runtime/permissions): Use tuples for hosts, make the host optional in Permissions::{query_net, request_net, revoke_net}()
2020-12-30 17:35:28 -05:00
global_state: PermissionState::Prompt,
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
..Permissions::new_net(
&Some(svec!["127.0.0.1", "127.0.0.1:8000"]),
false,
)
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
},
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
env: UnaryPermission {
global_state: PermissionState::Prompt,
..Permissions::new_env(&Some(svec!["HOME"]), false)
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
},
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
run: UnaryPermission {
global_state: PermissionState::Prompt,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
..Permissions::new_run(&Some(svec!["deno"]), false)
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
},
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
ffi: UnaryPermission {
global_state: PermissionState::Prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Permissions::new_ffi(&Some(vec![PathBuf::from("deno")]), false)
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
},
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
hrtime: UnitPermission {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
state: PermissionState::Denied,
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
..Permissions::new_hrtime(false)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
};
#[rustfmt::skip]
{
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
assert_eq!(perms.read.revoke(Some(Path::new("/foo/bar"))), PermissionState::Prompt);
assert_eq!(perms.read.query(Some(Path::new("/foo"))), PermissionState::Prompt);
assert_eq!(perms.read.query(Some(Path::new("/foo/baz"))), PermissionState::Granted);
assert_eq!(perms.write.revoke(Some(Path::new("/foo/bar"))), PermissionState::Prompt);
assert_eq!(perms.write.query(Some(Path::new("/foo"))), PermissionState::Prompt);
assert_eq!(perms.write.query(Some(Path::new("/foo/baz"))), PermissionState::Granted);
assert_eq!(perms.net.revoke(Some(&("127.0.0.1", Some(9000)))), PermissionState::Prompt);
assert_eq!(perms.net.query(Some(&("127.0.0.1", None))), PermissionState::Prompt);
assert_eq!(perms.net.query(Some(&("127.0.0.1", Some(8000)))), PermissionState::Granted);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert_eq!(perms.env.revoke(Some(&"HOME".to_string())), PermissionState::Prompt);
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
assert_eq!(perms.run.revoke(Some(&"deno".to_string())), PermissionState::Prompt);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
assert_eq!(perms.ffi.revoke(Some(Path::new("deno"))), PermissionState::Prompt);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms.hrtime.revoke(), PermissionState::Denied);
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
};
Add "fork" method on DenoPermissions, PermissionState (#5693)
2020-06-06 10:56:21 -04:00
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
#[test]
fn test_check() {
let mut perms = Permissions {
read: Permissions::new_read(&None, true),
write: Permissions::new_write(&None, true),
net: Permissions::new_net(&None, true),
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
env: Permissions::new_env(&None, true),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
run: Permissions::new_run(&None, true),
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
ffi: Permissions::new_ffi(&None, true),
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
hrtime: Permissions::new_hrtime(false),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
};
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
let prompt_value = PERMISSION_PROMPT_STUB_VALUE_SETTER.lock();
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert!(perms.read.check(Path::new("/foo")).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert!(perms.read.check(Path::new("/foo")).is_ok());
assert!(perms.read.check(Path::new("/bar")).is_err());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert!(perms.write.check(Path::new("/foo")).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert!(perms.write.check(Path::new("/foo")).is_ok());
assert!(perms.write.check(Path::new("/bar")).is_err());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
assert!(perms.net.check(&("127.0.0.1", Some(8000))).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
assert!(perms.net.check(&("127.0.0.1", Some(8000))).is_ok());
assert!(perms.net.check(&("127.0.0.1", Some(8001))).is_err());
assert!(perms.net.check(&("127.0.0.1", None)).is_err());
assert!(perms.net.check(&("deno.land", Some(8000))).is_err());
assert!(perms.net.check(&("deno.land", None)).is_err());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
assert!(perms.run.check("cat").is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
assert!(perms.run.check("cat").is_ok());
assert!(perms.run.check("ls").is_err());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert!(perms.env.check("HOME").is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert!(perms.env.check("HOME").is_ok());
assert!(perms.env.check("PATH").is_err());
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
assert!(perms.hrtime.check().is_err());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
}
#[test]
fn test_check_fail() {
let mut perms = Permissions {
read: Permissions::new_read(&None, true),
write: Permissions::new_write(&None, true),
net: Permissions::new_net(&None, true),
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
env: Permissions::new_env(&None, true),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
run: Permissions::new_run(&None, true),
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
ffi: Permissions::new_ffi(&None, true),
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
hrtime: Permissions::new_hrtime(false),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
};
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
let prompt_value = PERMISSION_PROMPT_STUB_VALUE_SETTER.lock();
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert!(perms.read.check(Path::new("/foo")).is_err());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert!(perms.read.check(Path::new("/foo")).is_err());
assert!(perms.read.check(Path::new("/bar")).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert!(perms.read.check(Path::new("/bar")).is_ok());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert!(perms.write.check(Path::new("/foo")).is_err());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert!(perms.write.check(Path::new("/foo")).is_err());
assert!(perms.write.check(Path::new("/bar")).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert!(perms.write.check(Path::new("/bar")).is_ok());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
assert!(perms.net.check(&("127.0.0.1", Some(8000))).is_err());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
assert!(perms.net.check(&("127.0.0.1", Some(8000))).is_err());
assert!(perms.net.check(&("127.0.0.1", Some(8001))).is_ok());
assert!(perms.net.check(&("deno.land", Some(8000))).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
assert!(perms.net.check(&("127.0.0.1", Some(8001))).is_ok());
assert!(perms.net.check(&("deno.land", Some(8000))).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
assert!(perms.run.check("cat").is_err());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
assert!(perms.run.check("cat").is_err());
assert!(perms.run.check("ls").is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
assert!(perms.run.check("ls").is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert!(perms.env.check("HOME").is_err());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert!(perms.env.check("HOME").is_err());
assert!(perms.env.check("PATH").is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert!(perms.env.check("PATH").is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
assert!(perms.hrtime.check().is_err());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
assert!(perms.hrtime.check().is_err());
}
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
#[test]
#[cfg(windows)]
fn test_env_windows() {
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
let prompt_value = PERMISSION_PROMPT_STUB_VALUE_SETTER.lock();
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
let mut perms = Permissions::allow_all();
perms.env = UnaryPermission {
global_state: PermissionState::Prompt,
..Permissions::new_env(&Some(svec!["HOME"]), false)
};
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert!(perms.env.check("HOME").is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert!(perms.env.check("HOME").is_ok());
assert!(perms.env.check("hOmE").is_ok());
assert_eq!(
perms.env.revoke(Some(&"HomE".to_string())),
PermissionState::Prompt
);
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[test]
fn test_deserialize_child_permissions_arg() {
assert_eq!(
ChildPermissionsArg::default(),
ChildPermissionsArg {
env: ChildUnaryPermissionArg::Inherit,
hrtime: ChildUnitPermissionArg::Inherit,
net: ChildUnaryPermissionArg::Inherit,
ffi: ChildUnaryPermissionArg::Inherit,
read: ChildUnaryPermissionArg::Inherit,
run: ChildUnaryPermissionArg::Inherit,
write: ChildUnaryPermissionArg::Inherit,
}
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!("inherit")).unwrap(),
ChildPermissionsArg::default()
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!("none")).unwrap(),
ChildPermissionsArg {
env: ChildUnaryPermissionArg::NotGranted,
hrtime: ChildUnitPermissionArg::NotGranted,
net: ChildUnaryPermissionArg::NotGranted,
ffi: ChildUnaryPermissionArg::NotGranted,
read: ChildUnaryPermissionArg::NotGranted,
run: ChildUnaryPermissionArg::NotGranted,
write: ChildUnaryPermissionArg::NotGranted,
}
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!({})).unwrap(),
ChildPermissionsArg::default()
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!({
"env": ["foo", "bar"],
}))
.unwrap(),
ChildPermissionsArg {
env: ChildUnaryPermissionArg::GrantedList(svec!["foo", "bar"]),
..Default::default()
}
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!({
"hrtime": true,
}))
.unwrap(),
ChildPermissionsArg {
hrtime: ChildUnitPermissionArg::Granted,
..Default::default()
}
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!({
"hrtime": false,
}))
.unwrap(),
ChildPermissionsArg {
hrtime: ChildUnitPermissionArg::NotGranted,
..Default::default()
}
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!({
"env": true,
"net": true,
"ffi": true,
"read": true,
"run": true,
"write": true,
}))
.unwrap(),
ChildPermissionsArg {
env: ChildUnaryPermissionArg::Granted,
net: ChildUnaryPermissionArg::Granted,
ffi: ChildUnaryPermissionArg::Granted,
read: ChildUnaryPermissionArg::Granted,
run: ChildUnaryPermissionArg::Granted,
write: ChildUnaryPermissionArg::Granted,
..Default::default()
}
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!({
"env": false,
"net": false,
"ffi": false,
"read": false,
"run": false,
"write": false,
}))
.unwrap(),
ChildPermissionsArg {
env: ChildUnaryPermissionArg::NotGranted,
net: ChildUnaryPermissionArg::NotGranted,
ffi: ChildUnaryPermissionArg::NotGranted,
read: ChildUnaryPermissionArg::NotGranted,
run: ChildUnaryPermissionArg::NotGranted,
write: ChildUnaryPermissionArg::NotGranted,
..Default::default()
}
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!({
"env": ["foo", "bar"],
"net": ["foo", "bar:8000"],
"ffi": ["foo", "file:///bar/baz"],
"read": ["foo", "file:///bar/baz"],
"run": ["foo", "file:///bar/baz", "./qux"],
"write": ["foo", "file:///bar/baz"],
}))
.unwrap(),
ChildPermissionsArg {
env: ChildUnaryPermissionArg::GrantedList(svec!["foo", "bar"]),
net: ChildUnaryPermissionArg::GrantedList(svec!["foo", "bar:8000"]),
ffi: ChildUnaryPermissionArg::GrantedList(svec![
"foo",
"file:///bar/baz"
]),
read: ChildUnaryPermissionArg::GrantedList(svec![
"foo",
"file:///bar/baz"
]),
run: ChildUnaryPermissionArg::GrantedList(svec![
"foo",
"file:///bar/baz",
"./qux"
]),
write: ChildUnaryPermissionArg::GrantedList(svec![
"foo",
"file:///bar/baz"
]),
..Default::default()
}
);
}
#[test]
fn test_create_child_permissions() {
let mut main_perms = Permissions {
env: Permissions::new_env(&Some(vec![]), false),
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
hrtime: Permissions::new_hrtime(true),
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
net: Permissions::new_net(&Some(svec!["foo", "bar"]), false),
..Default::default()
};
assert_eq!(
create_child_permissions(
&mut main_perms.clone(),
ChildPermissionsArg {
env: ChildUnaryPermissionArg::Inherit,
hrtime: ChildUnitPermissionArg::NotGranted,
net: ChildUnaryPermissionArg::GrantedList(svec!["foo"]),
ffi: ChildUnaryPermissionArg::NotGranted,
..Default::default()
}
)
.unwrap(),
Permissions {
env: Permissions::new_env(&Some(vec![]), false),
net: Permissions::new_net(&Some(svec!["foo"]), false),
..Default::default()
}
);
assert!(create_child_permissions(
&mut main_perms.clone(),
ChildPermissionsArg {
net: ChildUnaryPermissionArg::Granted,
..Default::default()
}
)
.is_err());
assert!(create_child_permissions(
&mut main_perms.clone(),
ChildPermissionsArg {
net: ChildUnaryPermissionArg::GrantedList(svec!["foo", "bar", "baz"]),
..Default::default()
}
)
.is_err());
assert!(create_child_permissions(
&mut main_perms,
ChildPermissionsArg {
ffi: ChildUnaryPermissionArg::GrantedList(svec!["foo"]),
..Default::default()
}
)
.is_err());
}
#[test]
fn test_create_child_permissions_with_prompt() {
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
let prompt_value = PERMISSION_PROMPT_STUB_VALUE_SETTER.lock();
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
let mut main_perms = Permissions::from_options(&PermissionsOptions {
prompt: true,
..Default::default()
});
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
let worker_perms = create_child_permissions(
&mut main_perms,
ChildPermissionsArg {
read: ChildUnaryPermissionArg::Granted,
run: ChildUnaryPermissionArg::GrantedList(svec!["foo", "bar"]),
..Default::default()
},
)
.unwrap();
assert_eq!(main_perms, worker_perms);
}
#[test]
fn test_create_child_permissions_with_inherited_denied_list() {
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
let prompt_value = PERMISSION_PROMPT_STUB_VALUE_SETTER.lock();
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
let mut main_perms = Permissions::from_options(&PermissionsOptions {
prompt: true,
..Default::default()
});
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
assert!(main_perms.write.check(&PathBuf::from("foo")).is_err());
let worker_perms = create_child_permissions(
&mut main_perms.clone(),
ChildPermissionsArg::default(),
)
.unwrap();
assert_eq!(worker_perms.write.denied_list, main_perms.write.denied_list);
}
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
}
Copy permalink