foster/denoland-deno
0
0
Fork 0
mirror of https://github.com/denoland/deno.git synced 2024-10-31 09:14:20 -04:00
Code Issues Wiki Activity
denoland-deno/runtime/permissions.rs

3393 lines
101 KiB
Rust
Raw Normal View History

chore: update copyright to 2022 (#13306) Co-authored-by: Erfan Safari <erfanshield@outlook.com>
2022-01-07 22:09:52 -05:00
// Copyright 2018-2022 the Deno authors. All rights reserved. MIT license.
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
Remove ansi_term dependency (#4116)
2020-02-24 19:30:17 -05:00
use crate::colors;
refactor(cli): rename fs module to fs_util (#8380) This commit renames "fs" module in "cli/" to "fs_util". This is purely cosmetic change; there were a few places which aliased "crate::fs" to "deno_fs" which was very confusing with "fs" module in ops.
2020-11-16 14:48:50 -05:00
use crate::fs_util::resolve_from_cwd;
refactor: use the 'anyhow' crate instead of 'ErrBox' (#7476)
2020-09-14 12:48:57 -04:00
use deno_core::error::custom_error;
refactor(cli): use shared sys kind parser in flags.rs (#16087)
2022-09-29 06:34:16 -04:00
use deno_core::error::type_error;
refactor: use the 'anyhow' crate instead of 'ErrBox' (#7476)
2020-09-14 12:48:57 -04:00
use deno_core::error::uri_error;
use deno_core::error::AnyError;
chore: use parking_lot for synchronization primitives to align with tokio (#11289) parking_lot is already transitively used in tokio via the "full" cargo feature
2021-07-06 23:48:01 -04:00
#[cfg(test)]
use deno_core::parking_lot::Mutex;
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
use deno_core::serde::de;
chore(cli/runtime): use re-export serde from deno_core (#9599)
2021-02-25 15:18:35 -05:00
use deno_core::serde::Deserialize;
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
use deno_core::serde::Deserializer;
chore(cli/runtime): use re-export serde from deno_core (#9599)
2021-02-25 15:18:35 -05:00
use deno_core::serde::Serialize;
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
use deno_core::serde_json;
Re-export deno_core::url (#7525) Also re-exports deno_core::futures and deno_core::serde_json but these are not yet used in the CLI.
2020-09-16 14:28:07 -04:00
use deno_core::url;
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
use deno_core::ModuleSpecifier;
refactor: move timers to deno_timers op crate (#10179) Move timers out of runtime/ and into a standalone op crate.
2021-04-14 15:10:48 -04:00
use deno_core::OpState;
perf(ops): optimize permission check (#11800) * perf(ops): optimize permission check Removes the overhead of permission check on access granted (should be common case): Delta measured on `perf_now` from `deno_common` bench: - before: `528ns/op - after: `166ns/op` So ~3x faster
2021-09-22 18:45:58 -04:00
use log;
refactor: use `once_cell` instead of `lazy_static` (#13135)
2021-12-18 16:14:42 -05:00
use once_cell::sync::Lazy;
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
use std::collections::HashSet;
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
use std::fmt;
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
use std::hash::Hash;
refactor: Improve path handling in permission checks (#3714)
2020-01-20 09:45:44 -05:00
use std::path::{Path, PathBuf};
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
use std::str::FromStr;
use std::string::ToString;
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
#[cfg(test)]
use std::sync::atomic::AtomicBool;
refactor: Elevate DenoPermissions lock to top level (#3398)
2019-11-24 10:42:30 -05:00
#[cfg(test)]
use std::sync::atomic::Ordering;
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
feat: log permission access (#2518) Replaces -D/--log-debug flag with --log-level=debug --log-level=info displays permission access
2019-06-22 12:02:51 -04:00
const PERMISSION_EMOJI: &str = "⚠️";
refactor: use `once_cell` instead of `lazy_static` (#13135)
2021-12-18 16:14:42 -05:00
static DEBUG_LOG_ENABLED: Lazy<bool> =
Lazy::new(|| log::log_enabled!(log::Level::Debug));
perf(ops): optimize permission check (#11800) * perf(ops): optimize permission check Removes the overhead of permission check on access granted (should be common case): Delta measured on `perf_now` from `deno_common` bench: - before: `528ns/op - after: `166ns/op` So ~3x faster
2021-09-22 18:45:58 -04:00
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
/// Tri-state value for storing permission state
chore: fix clippy warnings (#15944) Stop allowing clippy::derive-partial-eq-without-eq and fix warnings about deriving PartialEq without also deriving Eq. In one case I removed the PartialEq because it a) wasn't necessary, and b) sketchy because it was comparing floating point numbers. IMO, that's a good argument for enforcing the lint rule, because it would most likely have been caught during review if it had been enabled.
2022-09-19 04:25:03 -04:00
#[derive(Eq, PartialEq, Debug, Clone, Copy, Deserialize, PartialOrd)]
refactor: Elevate DenoPermissions lock to top level (#3398)
2019-11-24 10:42:30 -05:00
pub enum PermissionState {
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
Granted = 0,
Prompt = 1,
Denied = 2,
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
}
refactor: Elevate DenoPermissions lock to top level (#3398)
2019-11-24 10:42:30 -05:00
impl PermissionState {
perf(runtime): optimize PermissionState::check (#9993)
2021-04-12 07:24:41 -04:00
#[inline(always)]
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
fn log_perm_access(name: &str, info: impl FnOnce() -> Option<String>) {
perf(ops): optimize permission check (#11800) * perf(ops): optimize permission check Removes the overhead of permission check on access granted (should be common case): Delta measured on `perf_now` from `deno_common` bench: - before: `528ns/op - after: `166ns/op` So ~3x faster
2021-09-22 18:45:58 -04:00
// Eliminates log overhead (when logging is disabled),
// log_enabled!(Debug) check in a hot path still has overhead
// TODO(AaronO): generalize or upstream this optimization
if *DEBUG_LOG_ENABLED {
log::debug!(
"{}",
colors::bold(&format!(
"{} Granted {}",
PERMISSION_EMOJI,
Self::fmt_access(name, info)
))
);
}
perf(runtime): optimize PermissionState::check (#9993)
2021-04-12 07:24:41 -04:00
}
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
fn fmt_access(name: &str, info: impl FnOnce() -> Option<String>) -> String {
perf(runtime): optimize PermissionState::check (#9993)
2021-04-12 07:24:41 -04:00
format!(
"{} access{}",
name,
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
info().map_or(String::new(), |info| { format!(" to {}", info) }),
perf(runtime): optimize PermissionState::check (#9993)
2021-04-12 07:24:41 -04:00
)
}
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
fn error(name: &str, info: impl FnOnce() -> Option<String>) -> AnyError {
perf(runtime): optimize PermissionState::check (#9993)
2021-04-12 07:24:41 -04:00
custom_error(
"PermissionDenied",
format!(
"Requires {}, run again with the --allow-{} flag",
Self::fmt_access(name, info),
name
),
)
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
/// Check the permission state. bool is whether a prompt was issued.
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
#[inline]
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
fn check(
self,
name: &str,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
api_name: Option<&str>,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
info: Option<&str>,
prompt: bool,
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
) -> (Result<(), AnyError>, bool) {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
self.check2(name, api_name, || info.map(|s| s.to_string()), prompt)
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
}
#[inline]
fn check2(
self,
name: &str,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
api_name: Option<&str>,
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
info: impl Fn() -> Option<String>,
prompt: bool,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
) -> (Result<(), AnyError>, bool) {
perf(runtime): optimize PermissionState::check (#9993)
2021-04-12 07:24:41 -04:00
match self {
PermissionState::Granted => {
Self::log_perm_access(name, info);
(Ok(()), false)
}
PermissionState::Prompt if prompt => {
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
let msg = format!(
"{} access{}",
name,
info().map_or(String::new(), |info| { format!(" to {}", info) }),
);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
if permission_prompt(&msg, name, api_name) {
perf(runtime): optimize PermissionState::check (#9993)
2021-04-12 07:24:41 -04:00
Self::log_perm_access(name, info);
(Ok(()), true)
} else {
(Err(Self::error(name, info)), true)
}
}
_ => (Err(Self::error(name, info)), false),
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
}
}
refactor: Elevate DenoPermissions lock to top level (#3398)
2019-11-24 10:42:30 -05:00
impl fmt::Display for PermissionState {
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
match self {
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
PermissionState::Granted => f.pad("granted"),
PermissionState::Prompt => f.pad("prompt"),
PermissionState::Denied => f.pad("denied"),
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
}
}
}
refactor: Elevate DenoPermissions lock to top level (#3398)
2019-11-24 10:42:30 -05:00
impl Default for PermissionState {
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
fn default() -> Self {
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
PermissionState::Prompt
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
}
}
Ergonomics: Prompt TTY for permission escalation (#1081)
2018-10-27 09:11:39 -04:00
chore: fix clippy warnings (#15944) Stop allowing clippy::derive-partial-eq-without-eq and fix warnings about deriving PartialEq without also deriving Eq. In one case I removed the PartialEq because it a) wasn't necessary, and b) sketchy because it was comparing floating point numbers. IMO, that's a good argument for enforcing the lint rule, because it would most likely have been caught during review if it had been enabled.
2022-09-19 04:25:03 -04:00
#[derive(Clone, Debug, Eq, PartialEq)]
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
pub struct UnitPermission {
pub name: &'static str,
pub description: &'static str,
pub state: PermissionState,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
pub prompt: bool,
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
}
impl UnitPermission {
pub fn query(&self) -> PermissionState {
self.state
}
pub fn request(&mut self) -> PermissionState {
if self.state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt(
&format!("access to {}", self.description),
self.name,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
Some("Deno.permissions.query()"),
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
) {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
self.state = PermissionState::Granted;
} else {
self.state = PermissionState::Denied;
}
}
self.state
}
pub fn revoke(&mut self) -> PermissionState {
if self.state == PermissionState::Granted {
self.state = PermissionState::Prompt;
}
self.state
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
pub fn check(&mut self) -> Result<(), AnyError> {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
let (result, prompted) =
self.state.check(self.name, None, None, self.prompt);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
if prompted {
if result.is_ok() {
self.state = PermissionState::Granted;
} else {
self.state = PermissionState::Denied;
}
}
result
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
}
}
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
/// A normalized environment variable name. On Windows this will
/// be uppercase and on other platforms it will stay as-is.
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
struct EnvVarName {
inner: String,
}
impl EnvVarName {
pub fn new(env: impl AsRef<str>) -> Self {
Self {
inner: if cfg!(windows) {
env.as_ref().to_uppercase()
} else {
env.as_ref().to_string()
},
}
}
}
impl AsRef<str> for EnvVarName {
fn as_ref(&self) -> &str {
self.inner.as_str()
}
}
chore: fix clippy warnings (#15944) Stop allowing clippy::derive-partial-eq-without-eq and fix warnings about deriving PartialEq without also deriving Eq. In one case I removed the PartialEq because it a) wasn't necessary, and b) sketchy because it was comparing floating point numbers. IMO, that's a good argument for enforcing the lint rule, because it would most likely have been caught during review if it had been enabled.
2022-09-19 04:25:03 -04:00
#[derive(Clone, Debug, Eq, PartialEq)]
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
pub struct UnaryPermission<T: Eq + Hash> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub name: &'static str,
pub description: &'static str,
refactor(cli/permissions): Cleanup Flags to Permissions conversion (#8213)
2020-10-31 18:44:42 -04:00
pub global_state: PermissionState,
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
pub granted_list: HashSet<T>,
pub denied_list: HashSet<T>,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
pub prompt: bool,
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
feat(cli): deserialize Permissions from JSON (#5779)
2020-05-29 07:00:47 -04:00
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
pub struct ReadDescriptor(pub PathBuf);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
pub struct WriteDescriptor(pub PathBuf);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
pub struct NetDescriptor(pub String, pub Option<u16>);
impl NetDescriptor {
fn new<T: AsRef<str>>(host: &&(T, Option<u16>)) -> Self {
NetDescriptor(host.0.as_ref().to_string(), host.1)
}
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
}
impl FromStr for NetDescriptor {
type Err = AnyError;
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
fn from_str(s: &str) -> Result<Self, Self::Err> {
let url = url::Url::parse(&format!("http://{s}"))?;
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
let hostname = url.host_str().unwrap().to_string();
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
Ok(NetDescriptor(hostname, url.port()))
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
}
}
impl fmt::Display for NetDescriptor {
fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
f.write_str(&match self.1 {
None => self.0.clone(),
Some(port) => format!("{}:{}", self.0, port),
})
}
}
Ergonomics: Prompt TTY for permission escalation (#1081)
2018-10-27 09:11:39 -04:00
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
pub struct EnvDescriptor(EnvVarName);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
impl EnvDescriptor {
pub fn new(env: impl AsRef<str>) -> Self {
Self(EnvVarName::new(env))
}
}
impl AsRef<str> for EnvDescriptor {
fn as_ref(&self) -> &str {
self.0.as_ref()
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
pub enum RunDescriptor {
Name(String),
Path(PathBuf),
}
impl FromStr for RunDescriptor {
type Err = ();
fn from_str(s: &str) -> Result<Self, Self::Err> {
let is_path = s.contains('/');
#[cfg(windows)]
let is_path = is_path || s.contains('\\') || Path::new(s).is_absolute();
if is_path {
Ok(Self::Path(resolve_from_cwd(Path::new(s)).unwrap()))
} else {
Ok(Self::Name(s.to_string()))
}
}
}
impl ToString for RunDescriptor {
fn to_string(&self) -> String {
match self {
RunDescriptor::Name(s) => s.clone(),
RunDescriptor::Path(p) => p.to_string_lossy().to_string(),
}
}
}
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
pub struct SysDescriptor(pub String);
refactor(cli): use shared sys kind parser in flags.rs (#16087)
2022-09-29 06:34:16 -04:00
pub fn parse_sys_kind(kind: &str) -> Result<&str, AnyError> {
match kind {
"hostname" | "osRelease" | "loadavg" | "networkInterfaces"
chore(unstable): rename Deno.getUid() and Deno.getGid() (#16432) This commit renames `Deno.getUid()` to `Deno.uid()` and renames `Deno.getGid()` to `Deno.gid()`.
2022-10-26 16:37:48 -04:00
| "systemMemoryInfo" | "uid" | "gid" => Ok(kind),
refactor(cli): use shared sys kind parser in flags.rs (#16087)
2022-09-29 06:34:16 -04:00
_ => Err(type_error(format!("unknown system info kind \"{}\"", kind))),
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[derive(Clone, Eq, PartialEq, Hash, Debug)]
pub struct FfiDescriptor(pub PathBuf);
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
impl UnaryPermission<ReadDescriptor> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn query(&self, path: Option<&Path>) -> PermissionState {
perf: fs optimizations - part 1 (#15873)
2022-09-22 05:09:25 -04:00
if self.global_state == PermissionState::Granted {
return PermissionState::Granted;
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let path = path.map(|p| resolve_from_cwd(p).unwrap());
if self.global_state == PermissionState::Denied
&& match path.as_ref() {
None => true,
Some(path) => self
.denied_list
.iter()
.any(|path_| path_.0.starts_with(path)),
}
{
PermissionState::Denied
} else if self.global_state == PermissionState::Granted
|| match path.as_ref() {
None => false,
Some(path) => self
.granted_list
.iter()
.any(|path_| path.starts_with(&path_.0)),
}
{
PermissionState::Granted
} else {
PermissionState::Prompt
}
refactor(cli/flags): change allow_read/write/net types from bool to Option<Vec<T>> (#8896) This PR refactors "cli/flags.rs" and "runtime/permissions.rs" so that "allow_read", "allow_write" and "allow_net" themselves have allowlists, instead of storing them in additional fields.
2020-12-29 13:34:35 -05:00
}
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn request(&mut self, path: Option<&Path>) -> PermissionState {
if let Some(path) = path {
let (resolved_path, display_path) = resolved_and_display_path(path);
let state = self.query(Some(&resolved_path));
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt(
&format!("read access to \"{}\"", display_path.display()),
self.name,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
Some("Deno.permissions.query()"),
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
) {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
self.granted_list.insert(ReadDescriptor(resolved_path));
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
PermissionState::Granted
} else {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
self.denied_list.insert(ReadDescriptor(resolved_path));
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
} else if state == PermissionState::Granted {
self.granted_list.insert(ReadDescriptor(resolved_path));
PermissionState::Granted
refactor(cli/permissions): Cleanup Flags to Permissions conversion (#8213)
2020-10-31 18:44:42 -04:00
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
state
refactor(cli/permissions): Cleanup Flags to Permissions conversion (#8213)
2020-10-31 18:44:42 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
} else {
let state = self.query(None);
if state == PermissionState::Prompt {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
if permission_prompt(
"read access",
self.name,
Some("Deno.permissions.query()"),
) {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.granted_list.clear();
self.global_state = PermissionState::Granted;
PermissionState::Granted
} else {
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
refactor(cli/flags): change allow_read/write/net types from bool to Option<Vec<T>> (#8896) This PR refactors "cli/flags.rs" and "runtime/permissions.rs" so that "allow_read", "allow_write" and "allow_net" themselves have allowlists, instead of storing them in additional fields.
2020-12-29 13:34:35 -05:00
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
state
refactor(cli/flags): change allow_read/write/net types from bool to Option<Vec<T>> (#8896) This PR refactors "cli/flags.rs" and "runtime/permissions.rs" so that "allow_read", "allow_write" and "allow_net" themselves have allowlists, instead of storing them in additional fields.
2020-12-29 13:34:35 -05:00
}
}
Ergonomics: Prompt TTY for permission escalation (#1081)
2018-10-27 09:11:39 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn revoke(&mut self, path: Option<&Path>) -> PermissionState {
if let Some(path) = path {
let path = resolve_from_cwd(path).unwrap();
self
.granted_list
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
.retain(|path_| !path.starts_with(&path_.0));
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.granted_list.clear();
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
}
if self.global_state == PermissionState::Granted {
self.global_state = PermissionState::Prompt;
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
self.query(path)
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
}
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
#[inline]
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
pub fn check(
&mut self,
path: &Path,
api_name: Option<&str>,
) -> Result<(), AnyError> {
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
let (result, prompted) = self.query(Some(path)).check2(
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
self.name,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
api_name,
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
|| Some(format!("\"{}\"", path.to_path_buf().display())),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
self.prompt,
);
if prompted {
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
let resolved_path = resolve_from_cwd(path).unwrap();
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
if result.is_ok() {
self.granted_list.insert(ReadDescriptor(resolved_path));
} else {
self.denied_list.insert(ReadDescriptor(resolved_path));
self.global_state = PermissionState::Denied;
}
}
result
refactor: check permissions in SourceFileFetcher (#5011) This PR hot-fixes permission escapes in dynamic imports, workers and runtime compiler APIs. "permissions" parameter was added to public APIs of SourceFileFetcher and appropriate permission checks are performed during loading of local and remote files.
2020-05-11 07:13:27 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
/// As `check()`, but permission error messages will anonymize the path
/// by replacing it with the given `display`.
pub fn check_blind(
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
&mut self,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
path: &Path,
display: &str,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
api_name: &str,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
) -> Result<(), AnyError> {
let resolved_path = resolve_from_cwd(path).unwrap();
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let (result, prompted) = self.query(Some(&resolved_path)).check(
self.name,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
Some(api_name),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
Some(&format!("<{}>", display)),
self.prompt,
);
if prompted {
if result.is_ok() {
self.granted_list.insert(ReadDescriptor(resolved_path));
} else {
self.denied_list.insert(ReadDescriptor(resolved_path));
self.global_state = PermissionState::Denied;
}
}
result
Add --allow-read (#1689) Co-authored-by: Greg Altman <g.s.altman@gmail.com>
2019-02-08 15:59:38 -05:00
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
pub fn check_all(&mut self, api_name: Option<&str>) -> Result<(), AnyError> {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
let (result, prompted) =
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
self
.query(None)
.check(self.name, api_name, Some("all"), self.prompt);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
}
result
}
}
impl Default for UnaryPermission<ReadDescriptor> {
fn default() -> Self {
UnaryPermission::<ReadDescriptor> {
name: "read",
description: "read the file system",
global_state: Default::default(),
granted_list: Default::default(),
denied_list: Default::default(),
prompt: false,
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
impl UnaryPermission<WriteDescriptor> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn query(&self, path: Option<&Path>) -> PermissionState {
perf: fs optimizations - part 1 (#15873)
2022-09-22 05:09:25 -04:00
if self.global_state == PermissionState::Granted {
return PermissionState::Granted;
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
let path = path.map(|p| resolve_from_cwd(p).unwrap());
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
if self.global_state == PermissionState::Denied
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
&& match path.as_ref() {
None => true,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
Some(path) => self
.denied_list
.iter()
.any(|path_| path_.0.starts_with(path)),
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
{
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
PermissionState::Denied
} else if self.global_state == PermissionState::Granted
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
|| match path.as_ref() {
None => false,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
Some(path) => self
.granted_list
.iter()
.any(|path_| path.starts_with(&path_.0)),
BREAKING(unstable): Use hosts for net allowlists (#8845) Allowlist checking already uses hosts but for some reason requests, revokes and the runtime permissions API use URLs. - BREAKING(lib.deno.unstable.d.ts): Change NetPermissionDescriptor::url to NetPermissionDescriptor::host - fix(runtime/permissions): Don't add whole URLs to the allowlist on request - fix(runtime/permissions): Harden strength semantics: ({ name: "net", host: "127.0.0.1" } is stronger than { name: "net", host: "127.0.0.1:8000" }) for blocklisting - refactor(runtime/permissions): Use tuples for hosts, make the host optional in Permissions::{query_net, request_net, revoke_net}()
2020-12-30 17:35:28 -05:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
{
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
PermissionState::Granted
} else {
PermissionState::Prompt
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn request(&mut self, path: Option<&Path>) -> PermissionState {
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
if let Some(path) = path {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let (resolved_path, display_path) = resolved_and_display_path(path);
let state = self.query(Some(&resolved_path));
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt(
&format!("write access to \"{}\"", display_path.display()),
self.name,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
Some("Deno.permissions.query()"),
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
) {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
self.granted_list.insert(WriteDescriptor(resolved_path));
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
PermissionState::Granted
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
} else {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
self.denied_list.insert(WriteDescriptor(resolved_path));
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.global_state = PermissionState::Denied;
PermissionState::Denied
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
} else if state == PermissionState::Granted {
self.granted_list.insert(WriteDescriptor(resolved_path));
PermissionState::Granted
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
} else {
state
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let state = self.query(None);
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
if state == PermissionState::Prompt {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
if permission_prompt(
"write access",
self.name,
Some("Deno.permissions.query()"),
) {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.granted_list.clear();
self.global_state = PermissionState::Granted;
PermissionState::Granted
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.global_state = PermissionState::Denied;
PermissionState::Denied
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
} else {
state
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn revoke(&mut self, path: Option<&Path>) -> PermissionState {
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
if let Some(path) = path {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let path = resolve_from_cwd(path).unwrap();
self
.granted_list
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
.retain(|path_| !path.starts_with(&path_.0));
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
} else {
self.granted_list.clear();
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
}
if self.global_state == PermissionState::Granted {
self.global_state = PermissionState::Prompt;
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
self.query(path)
}
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
#[inline]
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
pub fn check(
&mut self,
path: &Path,
api_name: Option<&str>,
) -> Result<(), AnyError> {
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
let (result, prompted) = self.query(Some(path)).check2(
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
self.name,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
api_name,
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
|| Some(format!("\"{}\"", path.to_path_buf().display())),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
self.prompt,
);
if prompted {
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
let resolved_path = resolve_from_cwd(path).unwrap();
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
if result.is_ok() {
self.granted_list.insert(WriteDescriptor(resolved_path));
} else {
self.denied_list.insert(WriteDescriptor(resolved_path));
self.global_state = PermissionState::Denied;
}
}
result
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
pub fn check_all(&mut self, api_name: Option<&str>) -> Result<(), AnyError> {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
let (result, prompted) =
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
self
.query(None)
.check(self.name, api_name, Some("all"), self.prompt);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
}
result
}
}
impl Default for UnaryPermission<WriteDescriptor> {
fn default() -> Self {
UnaryPermission::<WriteDescriptor> {
name: "write",
description: "write to the file system",
global_state: Default::default(),
granted_list: Default::default(),
denied_list: Default::default(),
prompt: false,
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
impl UnaryPermission<NetDescriptor> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn query<T: AsRef<str>>(
&self,
host: Option<&(T, Option<u16>)>,
) -> PermissionState {
if self.global_state == PermissionState::Denied
&& match host.as_ref() {
None => true,
Some(host) => match host.1 {
None => self
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
.denied_list
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
.iter()
.any(|host_| host.0.as_ref() == host_.0),
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
Some(_) => self.denied_list.contains(&NetDescriptor::new(host)),
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
},
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
{
PermissionState::Denied
} else if self.global_state == PermissionState::Granted
|| match host.as_ref() {
None => false,
Some(host) => {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
self.granted_list.contains(&NetDescriptor::new(&&(
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
host.0.as_ref().to_string(),
None,
)))
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
|| self.granted_list.contains(&NetDescriptor::new(host))
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
{
PermissionState::Granted
} else {
PermissionState::Prompt
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn request<T: AsRef<str>>(
refactor: Elevate DenoPermissions lock to top level (#3398)
2019-11-24 10:42:30 -05:00
&mut self,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
host: Option<&(T, Option<u16>)>,
BREAKING(unstable): Use hosts for net allowlists (#8845) Allowlist checking already uses hosts but for some reason requests, revokes and the runtime permissions API use URLs. - BREAKING(lib.deno.unstable.d.ts): Change NetPermissionDescriptor::url to NetPermissionDescriptor::host - fix(runtime/permissions): Don't add whole URLs to the allowlist on request - fix(runtime/permissions): Harden strength semantics: ({ name: "net", host: "127.0.0.1" } is stronger than { name: "net", host: "127.0.0.1:8000" }) for blocklisting - refactor(runtime/permissions): Use tuples for hosts, make the host optional in Permissions::{query_net, request_net, revoke_net}()
2020-12-30 17:35:28 -05:00
) -> PermissionState {
if let Some(host) = host {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let state = self.query(Some(host));
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
let host = NetDescriptor::new(&host);
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt(
&format!("network access to \"{}\"", host),
self.name,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
Some("Deno.permissions.query()"),
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
) {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.granted_list.insert(host);
PermissionState::Granted
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.denied_list.insert(host);
self.global_state = PermissionState::Denied;
PermissionState::Denied
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
} else if state == PermissionState::Granted {
self.granted_list.insert(host);
PermissionState::Granted
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
} else {
state
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let state = self.query::<&str>(None);
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
if state == PermissionState::Prompt {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
if permission_prompt(
"network access",
self.name,
Some("Deno.permissions.query()"),
) {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.granted_list.clear();
self.global_state = PermissionState::Granted;
PermissionState::Granted
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
} else {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.global_state = PermissionState::Denied;
PermissionState::Denied
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
} else {
state
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn revoke<T: AsRef<str>>(
&mut self,
host: Option<&(T, Option<u16>)>,
) -> PermissionState {
if let Some(host) = host {
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
if host.1.is_some() {
self
.granted_list
.remove(&NetDescriptor(host.0.as_ref().to_string(), host.1));
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
self
.granted_list
.remove(&NetDescriptor(host.0.as_ref().to_string(), None));
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
} else {
self.granted_list.clear();
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
}
if self.global_state == PermissionState::Granted {
self.global_state = PermissionState::Prompt;
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.query(host)
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn check<T: AsRef<str>>(
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
&mut self,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
host: &(T, Option<u16>),
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
api_name: Option<&str>,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
) -> Result<(), AnyError> {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let new_host = NetDescriptor::new(&host);
let (result, prompted) = self.query(Some(host)).check(
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
self.name,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
api_name,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
Some(&format!("\"{}\"", new_host)),
self.prompt,
);
if prompted {
if result.is_ok() {
self.granted_list.insert(new_host);
} else {
self.denied_list.insert(new_host);
self.global_state = PermissionState::Denied;
}
}
result
feat: log permission access (#2518) Replaces -D/--log-debug flag with --log-level=debug --log-level=info displays permission access
2019-06-22 12:02:51 -04:00
}
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
pub fn check_url(
&mut self,
url: &url::Url,
api_name: Option<&str>,
) -> Result<(), AnyError> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let hostname = url
.host_str()
.ok_or_else(|| uri_error("Missing host"))?
.to_string();
let display_host = match url.port() {
None => hostname.clone(),
Some(port) => format!("{}:{}", hostname, port),
};
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let host = &(&hostname, url.port_or_known_default());
let (result, prompted) = self.query(Some(host)).check(
self.name,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
api_name,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
Some(&format!("\"{}\"", display_host)),
self.prompt,
);
if prompted {
if result.is_ok() {
self.granted_list.insert(NetDescriptor::new(&host));
} else {
self.denied_list.insert(NetDescriptor::new(&host));
self.global_state = PermissionState::Denied;
}
}
result
feat: first pass at native plugins (#3372)
2019-12-05 15:30:20 -05:00
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub fn check_all(&mut self) -> Result<(), AnyError> {
chore(permissions): clean up duplicate arguments (#13700)
2022-02-17 09:15:29 -05:00
let (result, prompted) =
self
.query::<&str>(None)
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
.check(self.name, None, Some("all"), self.prompt);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
}
result
}
}
impl Default for UnaryPermission<NetDescriptor> {
fn default() -> Self {
UnaryPermission::<NetDescriptor> {
name: "net",
description: "network",
global_state: Default::default(),
granted_list: Default::default(),
denied_list: Default::default(),
prompt: false,
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
feat: first pass at native plugins (#3372)
2019-12-05 15:30:20 -05:00
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
impl UnaryPermission<EnvDescriptor> {
pub fn query(&self, env: Option<&str>) -> PermissionState {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
let env = env.map(EnvVarName::new);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
if self.global_state == PermissionState::Denied
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
&& match env.as_ref() {
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
None => true,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
Some(env) => self.denied_list.contains(&EnvDescriptor::new(env)),
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
}
{
PermissionState::Denied
} else if self.global_state == PermissionState::Granted
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
|| match env.as_ref() {
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
None => false,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
Some(env) => self.granted_list.contains(&EnvDescriptor::new(env)),
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
}
{
PermissionState::Granted
} else {
PermissionState::Prompt
}
}
pub fn request(&mut self, env: Option<&str>) -> PermissionState {
if let Some(env) = env {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
let state = self.query(Some(env));
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
if state == PermissionState::Prompt {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
if permission_prompt(
&format!("env access to \"{}\"", env),
self.name,
Some("Deno.permissions.query()"),
) {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
self.granted_list.insert(EnvDescriptor::new(env));
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
PermissionState::Granted
} else {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
self.denied_list.insert(EnvDescriptor::new(env));
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
} else if state == PermissionState::Granted {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
self.granted_list.insert(EnvDescriptor::new(env));
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
PermissionState::Granted
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
} else {
state
}
} else {
let state = self.query(None);
if state == PermissionState::Prompt {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
if permission_prompt(
"env access",
self.name,
Some("Deno.permissions.query()"),
) {
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
self.granted_list.clear();
self.global_state = PermissionState::Granted;
PermissionState::Granted
} else {
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
} else {
state
}
}
}
pub fn revoke(&mut self, env: Option<&str>) -> PermissionState {
if let Some(env) = env {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
self.granted_list.remove(&EnvDescriptor::new(env));
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
} else {
self.granted_list.clear();
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
}
if self.global_state == PermissionState::Granted {
self.global_state = PermissionState::Prompt;
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
}
self.query(env)
}
pub fn check(&mut self, env: &str) -> Result<(), AnyError> {
let (result, prompted) = self.query(Some(env)).check(
self.name,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
None,
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
Some(&format!("\"{}\"", env)),
self.prompt,
);
if prompted {
if result.is_ok() {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
self.granted_list.insert(EnvDescriptor::new(env));
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
} else {
fix: worker environment permissions should accept an array (#12250)
2021-09-30 15:50:59 -04:00
self.denied_list.insert(EnvDescriptor::new(env));
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
self.global_state = PermissionState::Denied;
}
}
result
}
pub fn check_all(&mut self) -> Result<(), AnyError> {
let (result, prompted) =
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
self
.query(None)
.check(self.name, None, Some("all"), self.prompt);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
}
result
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
impl Default for UnaryPermission<EnvDescriptor> {
fn default() -> Self {
UnaryPermission::<EnvDescriptor> {
name: "env",
description: "environment variables",
global_state: Default::default(),
granted_list: Default::default(),
denied_list: Default::default(),
prompt: false,
}
}
}
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
impl UnaryPermission<SysDescriptor> {
pub fn query(&self, kind: Option<&str>) -> PermissionState {
if self.global_state == PermissionState::Denied
&& match kind {
None => true,
Some(kind) => {
self.denied_list.contains(&SysDescriptor(kind.to_string()))
}
}
{
PermissionState::Denied
} else if self.global_state == PermissionState::Granted
|| match kind {
None => false,
Some(kind) => {
self.granted_list.contains(&SysDescriptor(kind.to_string()))
}
}
{
PermissionState::Granted
} else {
PermissionState::Prompt
}
}
pub fn request(&mut self, kind: Option<&str>) -> PermissionState {
let state = self.query(kind);
if state != PermissionState::Prompt {
return state;
}
if let Some(kind) = kind {
let desc = SysDescriptor(kind.to_string());
if permission_prompt(
&format!("sys access to \"{}\"", kind),
self.name,
Some("Deno.permissions.query()"),
) {
self.granted_list.insert(desc);
PermissionState::Granted
} else {
self.denied_list.insert(desc);
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
} else {
if permission_prompt(
"sys access",
self.name,
Some("Deno.permissions.query()"),
) {
self.global_state = PermissionState::Granted;
} else {
self.granted_list.clear();
self.global_state = PermissionState::Denied;
}
self.global_state
}
}
pub fn revoke(&mut self, kind: Option<&str>) -> PermissionState {
if let Some(kind) = kind {
self.granted_list.remove(&SysDescriptor(kind.to_string()));
} else {
self.granted_list.clear();
}
if self.global_state == PermissionState::Granted {
self.global_state = PermissionState::Prompt;
}
self.query(kind)
}
pub fn check(
&mut self,
kind: &str,
api_name: Option<&str>,
) -> Result<(), AnyError> {
let (result, prompted) = self.query(Some(kind)).check(
self.name,
api_name,
Some(&format!("\"{}\"", kind)),
self.prompt,
);
if prompted {
if result.is_ok() {
self.granted_list.insert(SysDescriptor(kind.to_string()));
} else {
self.denied_list.insert(SysDescriptor(kind.to_string()));
self.global_state = PermissionState::Denied;
}
}
result
}
pub fn check_all(&mut self) -> Result<(), AnyError> {
let (result, prompted) =
self
.query(None)
.check(self.name, None, Some("all"), self.prompt);
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
}
result
}
}
impl Default for UnaryPermission<SysDescriptor> {
fn default() -> Self {
UnaryPermission::<SysDescriptor> {
name: "sys",
description: "system information",
global_state: Default::default(),
granted_list: Default::default(),
denied_list: Default::default(),
prompt: false,
}
}
}
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
impl UnaryPermission<RunDescriptor> {
pub fn query(&self, cmd: Option<&str>) -> PermissionState {
if self.global_state == PermissionState::Denied
&& match cmd {
None => true,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
Some(cmd) => self
.denied_list
.contains(&RunDescriptor::from_str(cmd).unwrap()),
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
{
PermissionState::Denied
} else if self.global_state == PermissionState::Granted
|| match cmd {
None => false,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
Some(cmd) => self
.granted_list
.contains(&RunDescriptor::from_str(cmd).unwrap()),
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
{
PermissionState::Granted
} else {
PermissionState::Prompt
}
}
pub fn request(&mut self, cmd: Option<&str>) -> PermissionState {
if let Some(cmd) = cmd {
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
let state = self.query(Some(cmd));
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
if state == PermissionState::Prompt {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
if permission_prompt(
&format!("run access to \"{}\"", cmd),
self.name,
Some("Deno.permissions.query()"),
) {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self
.granted_list
.insert(RunDescriptor::from_str(cmd).unwrap());
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
PermissionState::Granted
} else {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self
.denied_list
.insert(RunDescriptor::from_str(cmd).unwrap());
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
} else if state == PermissionState::Granted {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self
.granted_list
.insert(RunDescriptor::from_str(cmd).unwrap());
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
PermissionState::Granted
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
} else {
state
}
} else {
let state = self.query(None);
if state == PermissionState::Prompt {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
if permission_prompt(
"run access",
self.name,
Some("Deno.permissions.query()"),
) {
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
self.granted_list.clear();
self.global_state = PermissionState::Granted;
PermissionState::Granted
} else {
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
} else {
state
}
}
}
pub fn revoke(&mut self, cmd: Option<&str>) -> PermissionState {
if let Some(cmd) = cmd {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self
.granted_list
.remove(&RunDescriptor::from_str(cmd).unwrap());
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
} else {
self.granted_list.clear();
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
}
if self.global_state == PermissionState::Granted {
self.global_state = PermissionState::Prompt;
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
self.query(cmd)
}
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
pub fn check(
&mut self,
cmd: &str,
api_name: Option<&str>,
) -> Result<(), AnyError> {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let (result, prompted) = self.query(Some(cmd)).check(
self.name,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
api_name,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
Some(&format!("\"{}\"", cmd)),
self.prompt,
);
if prompted {
if result.is_ok() {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self
.granted_list
.insert(RunDescriptor::from_str(cmd).unwrap());
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
} else {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self
.denied_list
.insert(RunDescriptor::from_str(cmd).unwrap());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
self.global_state = PermissionState::Denied;
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
result
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
pub fn check_all(&mut self, api_name: Option<&str>) -> Result<(), AnyError> {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let (result, prompted) =
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
self
.query(None)
.check(self.name, api_name, Some("all"), self.prompt);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
result
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
impl Default for UnaryPermission<RunDescriptor> {
fn default() -> Self {
UnaryPermission::<RunDescriptor> {
name: "run",
description: "run a subprocess",
global_state: Default::default(),
granted_list: Default::default(),
denied_list: Default::default(),
prompt: false,
}
}
}
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
impl UnaryPermission<FfiDescriptor> {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub fn query(&self, path: Option<&Path>) -> PermissionState {
let path = path.map(|p| resolve_from_cwd(p).unwrap());
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
if self.global_state == PermissionState::Denied
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
&& match path.as_ref() {
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
None => true,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
Some(path) => self.denied_list.contains(&FfiDescriptor(path.clone())),
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
}
{
PermissionState::Denied
} else if self.global_state == PermissionState::Granted
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
|| match path.as_ref() {
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
None => false,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
Some(path) => self.granted_list.contains(&FfiDescriptor(path.clone())),
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
}
{
PermissionState::Granted
} else {
PermissionState::Prompt
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub fn request(&mut self, path: Option<&Path>) -> PermissionState {
if let Some(path) = path {
let (resolved_path, display_path) = resolved_and_display_path(path);
let state = self.query(Some(&resolved_path));
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
if state == PermissionState::Prompt {
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
if permission_prompt(
&format!("ffi access to \"{}\"", display_path.display()),
self.name,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
Some("Deno.permissions.query()"),
feat: Add hint to permission prompt to display allow flag (#13695)
2022-02-16 18:14:46 -05:00
) {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self.granted_list.insert(FfiDescriptor(resolved_path));
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
PermissionState::Granted
} else {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self.denied_list.insert(FfiDescriptor(resolved_path));
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
} else if state == PermissionState::Granted {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self.granted_list.insert(FfiDescriptor(resolved_path));
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
PermissionState::Granted
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
} else {
state
}
} else {
let state = self.query(None);
if state == PermissionState::Prompt {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
if permission_prompt(
"ffi access",
self.name,
Some("Deno.permissions.query()"),
) {
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
self.granted_list.clear();
self.global_state = PermissionState::Granted;
PermissionState::Granted
} else {
self.global_state = PermissionState::Denied;
PermissionState::Denied
}
} else {
state
}
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub fn revoke(&mut self, path: Option<&Path>) -> PermissionState {
if let Some(path) = path {
let path = resolve_from_cwd(path).unwrap();
self.granted_list.remove(&FfiDescriptor(path));
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
} else {
self.granted_list.clear();
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
}
if self.global_state == PermissionState::Granted {
self.global_state = PermissionState::Prompt;
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
self.query(path)
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
}
feat(ext/ffi): implement UnsafePointer and UnsafePointerView (#12828)
2021-12-15 09:41:49 -05:00
pub fn check(&mut self, path: Option<&Path>) -> Result<(), AnyError> {
if let Some(path) = path {
let (resolved_path, display_path) = resolved_and_display_path(path);
let (result, prompted) = self.query(Some(&resolved_path)).check(
self.name,
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
None,
feat(ext/ffi): implement UnsafePointer and UnsafePointerView (#12828)
2021-12-15 09:41:49 -05:00
Some(&format!("\"{}\"", display_path.display())),
self.prompt,
);
if prompted {
if result.is_ok() {
self.granted_list.insert(FfiDescriptor(resolved_path));
} else {
self.denied_list.insert(FfiDescriptor(resolved_path));
self.global_state = PermissionState::Denied;
}
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
}
feat(ext/ffi): implement UnsafePointer and UnsafePointerView (#12828)
2021-12-15 09:41:49 -05:00
result
} else {
let (result, prompted) =
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
self.query(None).check(self.name, None, None, self.prompt);
feat(ext/ffi): implement UnsafePointer and UnsafePointerView (#12828)
2021-12-15 09:41:49 -05:00
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
}
result
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
}
}
pub fn check_all(&mut self) -> Result<(), AnyError> {
let (result, prompted) =
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
self
.query(None)
.check(self.name, None, Some("all"), self.prompt);
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
if prompted {
if result.is_ok() {
self.global_state = PermissionState::Granted;
} else {
self.global_state = PermissionState::Denied;
}
}
result
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
impl Default for UnaryPermission<FfiDescriptor> {
fn default() -> Self {
UnaryPermission::<FfiDescriptor> {
name: "ffi",
description: "load a dynamic library",
global_state: Default::default(),
granted_list: Default::default(),
denied_list: Default::default(),
prompt: false,
}
}
}
chore: fix clippy warnings (#15944) Stop allowing clippy::derive-partial-eq-without-eq and fix warnings about deriving PartialEq without also deriving Eq. In one case I removed the PartialEq because it a) wasn't necessary, and b) sketchy because it was comparing floating point numbers. IMO, that's a good argument for enforcing the lint rule, because it would most likely have been caught during review if it had been enabled.
2022-09-19 04:25:03 -04:00
#[derive(Clone, Debug, Eq, PartialEq)]
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub struct Permissions {
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
pub read: UnaryPermission<ReadDescriptor>,
pub write: UnaryPermission<WriteDescriptor>,
pub net: UnaryPermission<NetDescriptor>,
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
pub env: UnaryPermission<EnvDescriptor>,
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
pub sys: UnaryPermission<SysDescriptor>,
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
pub run: UnaryPermission<RunDescriptor>,
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
pub ffi: UnaryPermission<FfiDescriptor>,
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
pub hrtime: UnitPermission,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
impl Default for Permissions {
fn default() -> Self {
Self {
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
read: Permissions::new_read(&None, false).unwrap(),
write: Permissions::new_write(&None, false).unwrap(),
net: Permissions::new_net(&None, false).unwrap(),
env: Permissions::new_env(&None, false).unwrap(),
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: Permissions::new_sys(&None, false).unwrap(),
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
run: Permissions::new_run(&None, false).unwrap(),
ffi: Permissions::new_ffi(&None, false).unwrap(),
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
hrtime: Permissions::new_hrtime(false),
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
}
}
chore: fix clippy warnings (#15944) Stop allowing clippy::derive-partial-eq-without-eq and fix warnings about deriving PartialEq without also deriving Eq. In one case I removed the PartialEq because it a) wasn't necessary, and b) sketchy because it was comparing floating point numbers. IMO, that's a good argument for enforcing the lint rule, because it would most likely have been caught during review if it had been enabled.
2022-09-19 04:25:03 -04:00
#[derive(Clone, Debug, Eq, PartialEq, Default, Serialize, Deserialize)]
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub struct PermissionsOptions {
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
pub allow_env: Option<Vec<String>>,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub allow_hrtime: bool,
pub allow_net: Option<Vec<String>>,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub allow_ffi: Option<Vec<PathBuf>>,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub allow_read: Option<Vec<PathBuf>>,
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
pub allow_run: Option<Vec<String>>,
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
pub allow_sys: Option<Vec<String>>,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub allow_write: Option<Vec<PathBuf>>,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
pub prompt: bool,
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
impl Permissions {
pub fn new_read(
state: &Option<Vec<PathBuf>>,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt: bool,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
) -> Result<UnaryPermission<ReadDescriptor>, AnyError> {
Ok(UnaryPermission::<ReadDescriptor> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
global_state: global_state_from_option(state),
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
granted_list: resolve_read_allowlist(state)?,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Default::default()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn new_write(
state: &Option<Vec<PathBuf>>,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt: bool,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
) -> Result<UnaryPermission<WriteDescriptor>, AnyError> {
Ok(UnaryPermission::<WriteDescriptor> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
global_state: global_state_from_option(state),
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
granted_list: resolve_write_allowlist(state)?,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Default::default()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn new_net(
state: &Option<Vec<String>>,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt: bool,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
) -> Result<UnaryPermission<NetDescriptor>, AnyError> {
Ok(UnaryPermission::<NetDescriptor> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
global_state: global_state_from_option(state),
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
granted_list: state.as_ref().map_or_else(
|| Ok(HashSet::new()),
|v| {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
v.iter()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
.map(|x| NetDescriptor::from_str(x))
.collect::<Result<HashSet<NetDescriptor>, AnyError>>()
},
)?,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Default::default()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
pub fn new_env(
state: &Option<Vec<String>>,
prompt: bool,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
) -> Result<UnaryPermission<EnvDescriptor>, AnyError> {
Ok(UnaryPermission::<EnvDescriptor> {
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
global_state: global_state_from_option(state),
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
granted_list: state.as_ref().map_or_else(
|| Ok(HashSet::new()),
|v| {
v.iter()
.map(|x| {
if x.is_empty() {
Err(AnyError::msg("Empty path is not allowed"))
} else {
Ok(EnvDescriptor::new(x))
}
})
.collect()
},
)?,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Default::default()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
pub fn new_sys(
state: &Option<Vec<String>>,
prompt: bool,
) -> Result<UnaryPermission<SysDescriptor>, AnyError> {
Ok(UnaryPermission::<SysDescriptor> {
global_state: global_state_from_option(state),
granted_list: state.as_ref().map_or_else(
|| Ok(HashSet::new()),
|v| {
v.iter()
.map(|x| {
if x.is_empty() {
Err(AnyError::msg("emtpy"))
} else {
Ok(SysDescriptor(x.to_string()))
}
})
.collect()
},
)?,
prompt,
..Default::default()
})
}
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
pub fn new_run(
state: &Option<Vec<String>>,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt: bool,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
) -> Result<UnaryPermission<RunDescriptor>, AnyError> {
Ok(UnaryPermission::<RunDescriptor> {
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
global_state: global_state_from_option(state),
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
granted_list: state.as_ref().map_or_else(
|| Ok(HashSet::new()),
|v| {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
v.iter()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
.map(|x| {
if x.is_empty() {
Err(AnyError::msg("Empty path is not allowed"))
} else {
Ok(RunDescriptor::from_str(x).unwrap())
}
})
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
.collect()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
},
)?,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Default::default()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
pub fn new_ffi(
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
state: &Option<Vec<PathBuf>>,
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
prompt: bool,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
) -> Result<UnaryPermission<FfiDescriptor>, AnyError> {
Ok(UnaryPermission::<FfiDescriptor> {
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
global_state: global_state_from_option(state),
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
granted_list: resolve_ffi_allowlist(state)?,
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Default::default()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
pub fn new_hrtime(state: bool) -> UnitPermission {
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
unit_permission_from_flag_bool(
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
state,
"hrtime",
"high precision time",
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
false, // never prompt for hrtime
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
pub fn from_options(opts: &PermissionsOptions) -> Result<Self, AnyError> {
Ok(Self {
read: Permissions::new_read(&opts.allow_read, opts.prompt)?,
write: Permissions::new_write(&opts.allow_write, opts.prompt)?,
net: Permissions::new_net(&opts.allow_net, opts.prompt)?,
env: Permissions::new_env(&opts.allow_env, opts.prompt)?,
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: Permissions::new_sys(&opts.allow_sys, opts.prompt)?,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
run: Permissions::new_run(&opts.allow_run, opts.prompt)?,
ffi: Permissions::new_ffi(&opts.allow_ffi, opts.prompt)?,
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
hrtime: Permissions::new_hrtime(opts.allow_hrtime),
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn allow_all() -> Self {
Self {
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
read: Permissions::new_read(&Some(vec![]), false).unwrap(),
write: Permissions::new_write(&Some(vec![]), false).unwrap(),
net: Permissions::new_net(&Some(vec![]), false).unwrap(),
env: Permissions::new_env(&Some(vec![]), false).unwrap(),
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: Permissions::new_sys(&Some(vec![]), false).unwrap(),
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
run: Permissions::new_run(&Some(vec![]), false).unwrap(),
ffi: Permissions::new_ffi(&Some(vec![]), false).unwrap(),
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
hrtime: Permissions::new_hrtime(true),
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
/// A helper function that determines if the module specifier is a local or
/// remote, and performs a read or net check for the specifier.
pub fn check_specifier(
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
&mut self,
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
specifier: &ModuleSpecifier,
) -> Result<(), AnyError> {
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
match specifier.scheme() {
"file" => match specifier.to_file_path() {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
Ok(path) => self.read.check(&path, None),
fix: panic on invalid file:// module specifier (#8964)
2021-01-04 04:33:20 -05:00
Err(_) => Err(uri_error(format!(
"Invalid file path.\n Specifier: {}",
specifier
))),
feat(cli): support data urls (#8866) Closes: #5059 Co-authored-by: Valentin Anger <syrupthinker@gryphno.de>
2021-01-05 21:22:38 -05:00
},
"data" => Ok(()),
feat: blob URL support (#10045) This commit adds blob URL support. Blob URLs are stored in a process global storage, that can be accessed from all workers, and the module loader. Blob URLs can be created using `URL.createObjectURL` and revoked using `URL.revokeObjectURL`. This commit does not add support for `fetch`ing blob URLs. This will be added in a follow up commit.
2021-04-07 09:22:14 -04:00
"blob" => Ok(()),
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
_ => self.net.check_url(specifier, None),
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
feat(ext/flash): An optimized http/1.1 server (#15405) Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com> Co-authored-by: Ben Noordhuis <info@bnoordhuis.nl> Co-authored-by: crowlkats <crowlkats@toaxl.com> Co-authored-by: Ryan Dahl <ry@tinyclouds.org>
2022-08-18 08:05:02 -04:00
impl deno_flash::FlashPermissions for Permissions {
fn check_net<T: AsRef<str>>(
&mut self,
host: &(T, Option<u16>),
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
api_name: &str,
feat(ext/flash): An optimized http/1.1 server (#15405) Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com> Co-authored-by: Ben Noordhuis <info@bnoordhuis.nl> Co-authored-by: crowlkats <crowlkats@toaxl.com> Co-authored-by: Ryan Dahl <ry@tinyclouds.org>
2022-08-18 08:05:02 -04:00
) -> Result<(), AnyError> {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
self.net.check(host, Some(api_name))
feat(ext/flash): An optimized http/1.1 server (#15405) Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com> Co-authored-by: Ben Noordhuis <info@bnoordhuis.nl> Co-authored-by: crowlkats <crowlkats@toaxl.com> Co-authored-by: Ryan Dahl <ry@tinyclouds.org>
2022-08-18 08:05:02 -04:00
}
}
feat(unstable): add more permission checks for ext/node/ (#15581)
2022-08-24 12:07:49 -04:00
impl deno_node::NodePermissions for Permissions {
fn check_read(&mut self, path: &Path) -> Result<(), AnyError> {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
self.read.check(path, None)
feat(unstable): add more permission checks for ext/node/ (#15581)
2022-08-24 12:07:49 -04:00
}
}
feat: Add "deno_net" extension (#11150) This commits moves implementation of net related APIs available on "Deno" namespace to "deno_net" extension. Following APIs were moved: - Deno.listen() - Deno.connect() - Deno.listenTls() - Deno.serveHttp() - Deno.shutdown() - Deno.resolveDns() - Deno.listenDatagram() - Deno.startTls() - Deno.Conn - Deno.Listener - Deno.DatagramConn
2021-06-28 19:43:03 -04:00
impl deno_net::NetPermissions for Permissions {
fn check_net<T: AsRef<str>>(
&mut self,
host: &(T, Option<u16>),
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
api_name: &str,
feat: Add "deno_net" extension (#11150) This commits moves implementation of net related APIs available on "Deno" namespace to "deno_net" extension. Following APIs were moved: - Deno.listen() - Deno.connect() - Deno.listenTls() - Deno.serveHttp() - Deno.shutdown() - Deno.resolveDns() - Deno.listenDatagram() - Deno.startTls() - Deno.Conn - Deno.Listener - Deno.DatagramConn
2021-06-28 19:43:03 -04:00
) -> Result<(), AnyError> {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
self.net.check(host, Some(api_name))
feat: Add "deno_net" extension (#11150) This commits moves implementation of net related APIs available on "Deno" namespace to "deno_net" extension. Following APIs were moved: - Deno.listen() - Deno.connect() - Deno.listenTls() - Deno.serveHttp() - Deno.shutdown() - Deno.resolveDns() - Deno.listenDatagram() - Deno.startTls() - Deno.Conn - Deno.Listener - Deno.DatagramConn
2021-06-28 19:43:03 -04:00
}
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
fn check_read(
&mut self,
path: &Path,
api_name: &str,
) -> Result<(), AnyError> {
self.read.check(path, Some(api_name))
feat: Add "deno_net" extension (#11150) This commits moves implementation of net related APIs available on "Deno" namespace to "deno_net" extension. Following APIs were moved: - Deno.listen() - Deno.connect() - Deno.listenTls() - Deno.serveHttp() - Deno.shutdown() - Deno.resolveDns() - Deno.listenDatagram() - Deno.startTls() - Deno.Conn - Deno.Listener - Deno.DatagramConn
2021-06-28 19:43:03 -04:00
}
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
fn check_write(
&mut self,
path: &Path,
api_name: &str,
) -> Result<(), AnyError> {
self.write.check(path, Some(api_name))
feat: Add "deno_net" extension (#11150) This commits moves implementation of net related APIs available on "Deno" namespace to "deno_net" extension. Following APIs were moved: - Deno.listen() - Deno.connect() - Deno.listenTls() - Deno.serveHttp() - Deno.shutdown() - Deno.resolveDns() - Deno.listenDatagram() - Deno.startTls() - Deno.Conn - Deno.Listener - Deno.DatagramConn
2021-06-28 19:43:03 -04:00
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
impl deno_fetch::FetchPermissions for Permissions {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
fn check_net_url(
&mut self,
url: &url::Url,
api_name: &str,
) -> Result<(), AnyError> {
self.net.check_url(url, Some(api_name))
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
fn check_read(
&mut self,
path: &Path,
api_name: &str,
) -> Result<(), AnyError> {
self.read.check(path, Some(api_name))
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
chore(ext/timers): move ext/timers to ext/web (#13665)
2022-02-15 06:17:30 -05:00
impl deno_web::TimersPermission for Permissions {
refactor: move timers to deno_timers op crate (#10179) Move timers out of runtime/ and into a standalone op crate.
2021-04-14 15:10:48 -04:00
fn allow_hrtime(&mut self) -> bool {
self.hrtime.check().is_ok()
}
fn check_unstable(&self, state: &OpState, api_name: &'static str) {
crate::ops::check_unstable(state, api_name);
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
impl deno_websocket::WebSocketPermissions for Permissions {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
fn check_net_url(
&mut self,
url: &url::Url,
api_name: &str,
) -> Result<(), AnyError> {
self.net.check_url(url, Some(api_name))
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
feat(npm): implement Node API (#13633) This PR implements the NAPI for loading native modules into Deno. Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com> Co-authored-by: DjDeveloper <43033058+DjDeveloperr@users.noreply.github.com> Co-authored-by: Ryan Dahl <ry@tinyclouds.org>
2022-10-05 10:06:44 -04:00
// NOTE(bartlomieju): for now, NAPI uses `--allow-ffi` flag, but that might
// change in the future.
impl deno_napi::NapiPermissions for Permissions {
fn check(&mut self, path: Option<&Path>) -> Result<(), AnyError> {
self.ffi.check(path)
}
}
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
impl deno_ffi::FfiPermissions for Permissions {
feat(ext/ffi): implement UnsafePointer and UnsafePointerView (#12828)
2021-12-15 09:41:49 -05:00
fn check(&mut self, path: Option<&Path>) -> Result<(), AnyError> {
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
self.ffi.check(path)
}
}
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
fn unit_permission_from_flag_bool(
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
flag: bool,
name: &'static str,
description: &'static str,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt: bool,
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
) -> UnitPermission {
UnitPermission {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
name,
description,
state: if flag {
PermissionState::Granted
} else {
PermissionState::Prompt
},
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
prompt,
Allow high precision performance.now() (#1977)
2019-04-08 16:22:40 -04:00
}
More permissions prompt options (#1926)
2019-03-18 16:46:23 -04:00
}
Allow inspection and revocation of permissions (#1875)
2019-03-04 11:04:19 -05:00
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
fn global_state_from_option<T>(flag: &Option<Vec<T>>) -> PermissionState {
if matches!(flag, Some(v) if v.is_empty()) {
PermissionState::Granted
} else {
PermissionState::Prompt
refactor: remove CliState, use OpState, add CliModuleLoader (#7588) - remove "CliState.workers" and "CliState.next_worker_id", instead store them on "OpState" using type aliases. - remove "CliState.global_timer" and "CliState.start_time", instead store them on "OpState" using type aliases. - remove "CliState.is_internal", instead pass it to Worker::new - move "CliState::permissions" to "OpState" - move "CliState::main_module" to "OpState" - move "CliState::global_state" to "OpState" - move "CliState::check_unstable()" to "GlobalState" - change "cli_state()" to "global_state()" - change "deno_core::ModuleLoader" trait to pass "OpState" to callbacks - rename "CliState" to "CliModuleLoader"
2020-09-19 19:17:35 -04:00
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
}
refactor: remove CliState, use OpState, add CliModuleLoader (#7588) - remove "CliState.workers" and "CliState.next_worker_id", instead store them on "OpState" using type aliases. - remove "CliState.global_timer" and "CliState.start_time", instead store them on "OpState" using type aliases. - remove "CliState.is_internal", instead pass it to Worker::new - move "CliState::permissions" to "OpState" - move "CliState::main_module" to "OpState" - move "CliState::global_state" to "OpState" - move "CliState::check_unstable()" to "GlobalState" - change "cli_state()" to "global_state()" - change "deno_core::ModuleLoader" trait to pass "OpState" to callbacks - rename "CliState" to "CliModuleLoader"
2020-09-19 19:17:35 -04:00
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn resolve_read_allowlist(
allow: &Option<Vec<PathBuf>>,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
) -> Result<HashSet<ReadDescriptor>, AnyError> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
if let Some(v) = allow {
v.iter()
.map(|raw_path| {
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
if raw_path.as_os_str().is_empty() {
Err(AnyError::msg("Empty path is not allowed"))
} else {
resolve_from_cwd(Path::new(&raw_path)).map(ReadDescriptor)
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
})
.collect()
} else {
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
Ok(HashSet::new())
refactor: remove CliState, use OpState, add CliModuleLoader (#7588) - remove "CliState.workers" and "CliState.next_worker_id", instead store them on "OpState" using type aliases. - remove "CliState.global_timer" and "CliState.start_time", instead store them on "OpState" using type aliases. - remove "CliState.is_internal", instead pass it to Worker::new - move "CliState::permissions" to "OpState" - move "CliState::main_module" to "OpState" - move "CliState::global_state" to "OpState" - move "CliState::check_unstable()" to "GlobalState" - change "cli_state()" to "global_state()" - change "deno_core::ModuleLoader" trait to pass "OpState" to callbacks - rename "CliState" to "CliModuleLoader"
2020-09-19 19:17:35 -04:00
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
pub fn resolve_write_allowlist(
allow: &Option<Vec<PathBuf>>,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
) -> Result<HashSet<WriteDescriptor>, AnyError> {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
if let Some(v) = allow {
v.iter()
.map(|raw_path| {
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
if raw_path.as_os_str().is_empty() {
Err(AnyError::msg("Empty path is not allowed"))
} else {
resolve_from_cwd(Path::new(&raw_path)).map(WriteDescriptor)
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
})
.collect()
} else {
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
Ok(HashSet::new())
refactor: move WebSocket API to an op_crate (#9026)
2021-01-06 10:57:28 -05:00
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub fn resolve_ffi_allowlist(
allow: &Option<Vec<PathBuf>>,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
) -> Result<HashSet<FfiDescriptor>, AnyError> {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
if let Some(v) = allow {
v.iter()
.map(|raw_path| {
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
if raw_path.as_os_str().is_empty() {
Err(AnyError::msg("Empty path is not allowed"))
} else {
resolve_from_cwd(Path::new(&raw_path)).map(FfiDescriptor)
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
})
.collect()
} else {
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
Ok(HashSet::new())
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
/// Arbitrary helper. Resolves the path from CWD, and also gets a path that
/// can be displayed without leaking the CWD when not allowed.
perf(runtime): optimize allocations in read/write checks (#15631)
2022-08-27 11:20:05 -04:00
#[inline]
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
fn resolved_and_display_path(path: &Path) -> (PathBuf, PathBuf) {
let resolved_path = resolve_from_cwd(path).unwrap();
let display_path = path.to_path_buf();
(resolved_path, display_path)
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
fn escalation_error() -> AnyError {
custom_error(
"PermissionDenied",
"Can't escalate parent thread permissions",
)
}
chore: fix clippy warnings (#15944) Stop allowing clippy::derive-partial-eq-without-eq and fix warnings about deriving PartialEq without also deriving Eq. In one case I removed the PartialEq because it a) wasn't necessary, and b) sketchy because it was comparing floating point numbers. IMO, that's a good argument for enforcing the lint rule, because it would most likely have been caught during review if it had been enabled.
2022-09-19 04:25:03 -04:00
#[derive(Debug, Eq, PartialEq)]
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub enum ChildUnitPermissionArg {
Inherit,
Granted,
NotGranted,
}
impl<'de> Deserialize<'de> for ChildUnitPermissionArg {
fn deserialize<D>(deserializer: D) -> Result<Self, D::Error>
where
D: Deserializer<'de>,
{
struct ChildUnitPermissionArgVisitor;
impl<'de> de::Visitor<'de> for ChildUnitPermissionArgVisitor {
type Value = ChildUnitPermissionArg;
fn expecting(&self, formatter: &mut fmt::Formatter) -> fmt::Result {
formatter.write_str("\"inherit\" or boolean")
}
fn visit_unit<E>(self) -> Result<ChildUnitPermissionArg, E>
where
E: de::Error,
{
BREAKING: don't inherit permissions by default (#13668) Previously specifying permissions: {} was the same as specifying permissions: "inherit". Now it will be the same as permissions: "none". Not specifying any permissions (permissions: undefined) still means permissions: "inherit".
2022-03-15 20:43:14 -04:00
Ok(ChildUnitPermissionArg::NotGranted)
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
fn visit_str<E>(self, v: &str) -> Result<ChildUnitPermissionArg, E>
where
E: de::Error,
{
if v == "inherit" {
Ok(ChildUnitPermissionArg::Inherit)
} else {
Err(de::Error::invalid_value(de::Unexpected::Str(v), &self))
}
}
fn visit_bool<E>(self, v: bool) -> Result<ChildUnitPermissionArg, E>
where
E: de::Error,
{
match v {
true => Ok(ChildUnitPermissionArg::Granted),
false => Ok(ChildUnitPermissionArg::NotGranted),
}
}
}
deserializer.deserialize_any(ChildUnitPermissionArgVisitor)
}
}
chore: fix clippy warnings (#15944) Stop allowing clippy::derive-partial-eq-without-eq and fix warnings about deriving PartialEq without also deriving Eq. In one case I removed the PartialEq because it a) wasn't necessary, and b) sketchy because it was comparing floating point numbers. IMO, that's a good argument for enforcing the lint rule, because it would most likely have been caught during review if it had been enabled.
2022-09-19 04:25:03 -04:00
#[derive(Debug, Eq, PartialEq)]
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub enum ChildUnaryPermissionArg {
Inherit,
Granted,
NotGranted,
GrantedList(Vec<String>),
}
impl<'de> Deserialize<'de> for ChildUnaryPermissionArg {
fn deserialize<D>(deserializer: D) -> Result<Self, D::Error>
where
D: Deserializer<'de>,
{
struct ChildUnaryPermissionArgVisitor;
impl<'de> de::Visitor<'de> for ChildUnaryPermissionArgVisitor {
type Value = ChildUnaryPermissionArg;
fn expecting(&self, formatter: &mut fmt::Formatter) -> fmt::Result {
formatter.write_str("\"inherit\" or boolean or string[]")
}
fn visit_unit<E>(self) -> Result<ChildUnaryPermissionArg, E>
where
E: de::Error,
{
BREAKING: don't inherit permissions by default (#13668) Previously specifying permissions: {} was the same as specifying permissions: "inherit". Now it will be the same as permissions: "none". Not specifying any permissions (permissions: undefined) still means permissions: "inherit".
2022-03-15 20:43:14 -04:00
Ok(ChildUnaryPermissionArg::NotGranted)
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
fn visit_str<E>(self, v: &str) -> Result<ChildUnaryPermissionArg, E>
where
E: de::Error,
{
if v == "inherit" {
Ok(ChildUnaryPermissionArg::Inherit)
} else {
Err(de::Error::invalid_value(de::Unexpected::Str(v), &self))
}
}
fn visit_bool<E>(self, v: bool) -> Result<ChildUnaryPermissionArg, E>
where
E: de::Error,
{
match v {
true => Ok(ChildUnaryPermissionArg::Granted),
false => Ok(ChildUnaryPermissionArg::NotGranted),
}
}
fn visit_seq<V>(
self,
mut v: V,
) -> Result<ChildUnaryPermissionArg, V::Error>
where
V: de::SeqAccess<'de>,
{
let mut granted_list = vec![];
while let Some(value) = v.next_element::<String>()? {
granted_list.push(value);
}
Ok(ChildUnaryPermissionArg::GrantedList(granted_list))
}
}
deserializer.deserialize_any(ChildUnaryPermissionArgVisitor)
}
}
/// Directly deserializable from JS worker and test permission options.
chore: fix clippy warnings (#15944) Stop allowing clippy::derive-partial-eq-without-eq and fix warnings about deriving PartialEq without also deriving Eq. In one case I removed the PartialEq because it a) wasn't necessary, and b) sketchy because it was comparing floating point numbers. IMO, that's a good argument for enforcing the lint rule, because it would most likely have been caught during review if it had been enabled.
2022-09-19 04:25:03 -04:00
#[derive(Debug, Eq, PartialEq)]
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
pub struct ChildPermissionsArg {
env: ChildUnaryPermissionArg,
hrtime: ChildUnitPermissionArg,
net: ChildUnaryPermissionArg,
ffi: ChildUnaryPermissionArg,
read: ChildUnaryPermissionArg,
run: ChildUnaryPermissionArg,
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: ChildUnaryPermissionArg,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
write: ChildUnaryPermissionArg,
}
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
impl ChildPermissionsArg {
pub fn inherit() -> Self {
ChildPermissionsArg {
env: ChildUnaryPermissionArg::Inherit,
hrtime: ChildUnitPermissionArg::Inherit,
net: ChildUnaryPermissionArg::Inherit,
ffi: ChildUnaryPermissionArg::Inherit,
read: ChildUnaryPermissionArg::Inherit,
run: ChildUnaryPermissionArg::Inherit,
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: ChildUnaryPermissionArg::Inherit,
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
write: ChildUnaryPermissionArg::Inherit,
}
}
pub fn none() -> Self {
ChildPermissionsArg {
env: ChildUnaryPermissionArg::NotGranted,
hrtime: ChildUnitPermissionArg::NotGranted,
net: ChildUnaryPermissionArg::NotGranted,
ffi: ChildUnaryPermissionArg::NotGranted,
read: ChildUnaryPermissionArg::NotGranted,
run: ChildUnaryPermissionArg::NotGranted,
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: ChildUnaryPermissionArg::NotGranted,
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
write: ChildUnaryPermissionArg::NotGranted,
}
}
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
impl<'de> Deserialize<'de> for ChildPermissionsArg {
fn deserialize<D>(deserializer: D) -> Result<Self, D::Error>
where
D: Deserializer<'de>,
{
struct ChildPermissionsArgVisitor;
impl<'de> de::Visitor<'de> for ChildPermissionsArgVisitor {
type Value = ChildPermissionsArg;
fn expecting(&self, formatter: &mut fmt::Formatter) -> fmt::Result {
formatter.write_str("\"inherit\" or \"none\" or object")
}
fn visit_unit<E>(self) -> Result<ChildPermissionsArg, E>
where
E: de::Error,
{
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
Ok(ChildPermissionsArg::inherit())
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
fn visit_str<E>(self, v: &str) -> Result<ChildPermissionsArg, E>
where
E: de::Error,
{
if v == "inherit" {
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
Ok(ChildPermissionsArg::inherit())
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
} else if v == "none" {
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
Ok(ChildPermissionsArg::none())
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
} else {
Err(de::Error::invalid_value(de::Unexpected::Str(v), &self))
}
}
fn visit_map<V>(self, mut v: V) -> Result<ChildPermissionsArg, V::Error>
where
V: de::MapAccess<'de>,
{
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
let mut child_permissions_arg = ChildPermissionsArg::none();
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
while let Some((key, value)) =
v.next_entry::<String, serde_json::Value>()?
{
if key == "env" {
let arg = serde_json::from_value::<ChildUnaryPermissionArg>(value);
child_permissions_arg.env = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.env) {}", e))
})?;
} else if key == "hrtime" {
let arg = serde_json::from_value::<ChildUnitPermissionArg>(value);
child_permissions_arg.hrtime = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.hrtime) {}", e))
})?;
} else if key == "net" {
let arg = serde_json::from_value::<ChildUnaryPermissionArg>(value);
child_permissions_arg.net = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.net) {}", e))
})?;
} else if key == "ffi" {
let arg = serde_json::from_value::<ChildUnaryPermissionArg>(value);
child_permissions_arg.ffi = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.ffi) {}", e))
})?;
} else if key == "read" {
let arg = serde_json::from_value::<ChildUnaryPermissionArg>(value);
child_permissions_arg.read = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.read) {}", e))
})?;
} else if key == "run" {
let arg = serde_json::from_value::<ChildUnaryPermissionArg>(value);
child_permissions_arg.run = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.run) {}", e))
})?;
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
} else if key == "sys" {
let arg = serde_json::from_value::<ChildUnaryPermissionArg>(value);
child_permissions_arg.sys = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.sys) {}", e))
})?;
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
} else if key == "write" {
let arg = serde_json::from_value::<ChildUnaryPermissionArg>(value);
child_permissions_arg.write = arg.map_err(|e| {
de::Error::custom(format!("(deno.permissions.write) {}", e))
})?;
} else {
return Err(de::Error::custom("unknown permission name"));
}
}
Ok(child_permissions_arg)
}
}
deserializer.deserialize_any(ChildPermissionsArgVisitor)
}
}
pub fn create_child_permissions(
main_perms: &mut Permissions,
child_permissions_arg: ChildPermissionsArg,
) -> Result<Permissions, AnyError> {
let mut worker_perms = Permissions::default();
match child_permissions_arg.env {
ChildUnaryPermissionArg::Inherit => {
worker_perms.env = main_perms.env.clone();
}
ChildUnaryPermissionArg::Granted => {
if main_perms.env.check_all().is_err() {
return Err(escalation_error());
}
worker_perms.env.global_state = PermissionState::Granted;
}
ChildUnaryPermissionArg::NotGranted => {}
ChildUnaryPermissionArg::GrantedList(granted_list) => {
worker_perms.env.granted_list =
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
Permissions::new_env(&Some(granted_list), false)?.granted_list;
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
if !worker_perms
.env
.granted_list
.iter()
.all(|desc| main_perms.env.check(desc.as_ref()).is_ok())
{
return Err(escalation_error());
}
}
}
worker_perms.env.denied_list = main_perms.env.denied_list.clone();
if main_perms.env.global_state == PermissionState::Denied {
worker_perms.env.global_state = PermissionState::Denied;
}
worker_perms.env.prompt = main_perms.env.prompt;
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
match child_permissions_arg.sys {
ChildUnaryPermissionArg::Inherit => {
worker_perms.sys = main_perms.sys.clone();
}
ChildUnaryPermissionArg::Granted => {
if main_perms.sys.check_all().is_err() {
return Err(escalation_error());
}
worker_perms.sys.global_state = PermissionState::Granted;
}
ChildUnaryPermissionArg::NotGranted => {}
ChildUnaryPermissionArg::GrantedList(granted_list) => {
worker_perms.sys.granted_list =
Permissions::new_sys(&Some(granted_list), false)?.granted_list;
if !worker_perms
.sys
.granted_list
.iter()
.all(|desc| main_perms.sys.check(&desc.0, None).is_ok())
{
return Err(escalation_error());
}
}
}
worker_perms.sys.denied_list = main_perms.sys.denied_list.clone();
if main_perms.sys.global_state == PermissionState::Denied {
worker_perms.sys.global_state = PermissionState::Denied;
}
worker_perms.sys.prompt = main_perms.sys.prompt;
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
match child_permissions_arg.hrtime {
ChildUnitPermissionArg::Inherit => {
worker_perms.hrtime = main_perms.hrtime.clone();
}
ChildUnitPermissionArg::Granted => {
if main_perms.hrtime.check().is_err() {
return Err(escalation_error());
}
worker_perms.hrtime.state = PermissionState::Granted;
}
ChildUnitPermissionArg::NotGranted => {}
}
if main_perms.hrtime.state == PermissionState::Denied {
worker_perms.hrtime.state = PermissionState::Denied;
}
worker_perms.hrtime.prompt = main_perms.hrtime.prompt;
match child_permissions_arg.net {
ChildUnaryPermissionArg::Inherit => {
worker_perms.net = main_perms.net.clone();
}
ChildUnaryPermissionArg::Granted => {
if main_perms.net.check_all().is_err() {
return Err(escalation_error());
}
worker_perms.net.global_state = PermissionState::Granted;
}
ChildUnaryPermissionArg::NotGranted => {}
ChildUnaryPermissionArg::GrantedList(granted_list) => {
worker_perms.net.granted_list =
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
Permissions::new_net(&Some(granted_list), false)?.granted_list;
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
if !worker_perms
.net
.granted_list
.iter()
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
.all(|desc| main_perms.net.check(&(&desc.0, desc.1), None).is_ok())
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
{
return Err(escalation_error());
}
}
}
worker_perms.net.denied_list = main_perms.net.denied_list.clone();
if main_perms.net.global_state == PermissionState::Denied {
worker_perms.net.global_state = PermissionState::Denied;
}
worker_perms.net.prompt = main_perms.net.prompt;
match child_permissions_arg.ffi {
ChildUnaryPermissionArg::Inherit => {
worker_perms.ffi = main_perms.ffi.clone();
}
ChildUnaryPermissionArg::Granted => {
if main_perms.ffi.check_all().is_err() {
return Err(escalation_error());
}
worker_perms.ffi.global_state = PermissionState::Granted;
}
ChildUnaryPermissionArg::NotGranted => {}
ChildUnaryPermissionArg::GrantedList(granted_list) => {
worker_perms.ffi.granted_list = Permissions::new_ffi(
&Some(granted_list.iter().map(PathBuf::from).collect()),
false,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
)?
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
.granted_list;
if !worker_perms
.ffi
.granted_list
.iter()
feat(ext/ffi): implement UnsafePointer and UnsafePointerView (#12828)
2021-12-15 09:41:49 -05:00
.all(|desc| main_perms.ffi.check(Some(&desc.0)).is_ok())
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
{
return Err(escalation_error());
}
}
}
worker_perms.ffi.denied_list = main_perms.ffi.denied_list.clone();
if main_perms.ffi.global_state == PermissionState::Denied {
worker_perms.ffi.global_state = PermissionState::Denied;
}
worker_perms.ffi.prompt = main_perms.ffi.prompt;
match child_permissions_arg.read {
ChildUnaryPermissionArg::Inherit => {
worker_perms.read = main_perms.read.clone();
}
ChildUnaryPermissionArg::Granted => {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
if main_perms.read.check_all(None).is_err() {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
return Err(escalation_error());
}
worker_perms.read.global_state = PermissionState::Granted;
}
ChildUnaryPermissionArg::NotGranted => {}
ChildUnaryPermissionArg::GrantedList(granted_list) => {
worker_perms.read.granted_list = Permissions::new_read(
&Some(granted_list.iter().map(PathBuf::from).collect()),
false,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
)?
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
.granted_list;
if !worker_perms
.read
.granted_list
.iter()
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
.all(|desc| main_perms.read.check(&desc.0, None).is_ok())
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
{
return Err(escalation_error());
}
}
}
worker_perms.read.denied_list = main_perms.read.denied_list.clone();
if main_perms.read.global_state == PermissionState::Denied {
worker_perms.read.global_state = PermissionState::Denied;
}
worker_perms.read.prompt = main_perms.read.prompt;
match child_permissions_arg.run {
ChildUnaryPermissionArg::Inherit => {
worker_perms.run = main_perms.run.clone();
}
ChildUnaryPermissionArg::Granted => {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
if main_perms.run.check_all(None).is_err() {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
return Err(escalation_error());
}
worker_perms.run.global_state = PermissionState::Granted;
}
ChildUnaryPermissionArg::NotGranted => {}
ChildUnaryPermissionArg::GrantedList(granted_list) => {
worker_perms.run.granted_list =
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
Permissions::new_run(&Some(granted_list), false)?.granted_list;
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
if !worker_perms
.run
.granted_list
.iter()
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
.all(|desc| main_perms.run.check(&desc.to_string(), None).is_ok())
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
{
return Err(escalation_error());
}
}
}
worker_perms.run.denied_list = main_perms.run.denied_list.clone();
if main_perms.run.global_state == PermissionState::Denied {
worker_perms.run.global_state = PermissionState::Denied;
}
worker_perms.run.prompt = main_perms.run.prompt;
match child_permissions_arg.write {
ChildUnaryPermissionArg::Inherit => {
worker_perms.write = main_perms.write.clone();
}
ChildUnaryPermissionArg::Granted => {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
if main_perms.write.check_all(None).is_err() {
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
return Err(escalation_error());
}
worker_perms.write.global_state = PermissionState::Granted;
}
ChildUnaryPermissionArg::NotGranted => {}
ChildUnaryPermissionArg::GrantedList(granted_list) => {
worker_perms.write.granted_list = Permissions::new_write(
&Some(granted_list.iter().map(PathBuf::from).collect()),
false,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
)?
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
.granted_list;
if !worker_perms
.write
.granted_list
.iter()
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
.all(|desc| main_perms.write.check(&desc.0, None).is_ok())
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
{
return Err(escalation_error());
}
}
}
worker_perms.write.denied_list = main_perms.write.denied_list.clone();
if main_perms.write.global_state == PermissionState::Denied {
worker_perms.write.global_state = PermissionState::Denied;
}
worker_perms.write.prompt = main_perms.write.prompt;
Ok(worker_perms)
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
/// Shows the permission prompt and returns the answer according to the user input.
/// This loops until the user gives the proper input.
#[cfg(not(test))]
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
fn permission_prompt(
message: &str,
name: &str,
api_name: Option<&str>,
) -> bool {
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
if !atty::is(atty::Stream::Stdin) || !atty::is(atty::Stream::Stderr) {
return false;
};
fix: permission prompt stuffing (#11931) Fixes #9750
2021-09-09 08:38:47 -04:00
#[cfg(unix)]
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
fn clear_stdin() -> Result<(), AnyError> {
build: require safety comments on unsafe code (#13870) Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com> Co-authored-by: Divy Srivastava <dj.srivastava23@gmail.com>
2022-06-25 18:13:24 -04:00
// TODO(bartlomieju):
#[allow(clippy::undocumented_unsafe_blocks)]
fix: permission prompt stuffing (#11931) Fixes #9750
2021-09-09 08:38:47 -04:00
let r = unsafe { libc::tcflush(0, libc::TCIFLUSH) };
assert_eq!(r, 0);
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
Ok(())
fix: permission prompt stuffing (#11931) Fixes #9750
2021-09-09 08:38:47 -04:00
}
#[cfg(not(unix))]
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
fn clear_stdin() -> Result<(), AnyError> {
use deno_core::anyhow::bail;
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
use winapi::shared::minwindef::TRUE;
use winapi::shared::minwindef::UINT;
use winapi::shared::minwindef::WORD;
use winapi::shared::ntdef::WCHAR;
use winapi::um::processenv::GetStdHandle;
use winapi::um::winbase::STD_INPUT_HANDLE;
use winapi::um::wincon::FlushConsoleInputBuffer;
use winapi::um::wincon::PeekConsoleInputW;
use winapi::um::wincon::WriteConsoleInputW;
use winapi::um::wincontypes::INPUT_RECORD;
use winapi::um::wincontypes::KEY_EVENT;
use winapi::um::winnt::HANDLE;
use winapi::um::winuser::MapVirtualKeyW;
use winapi::um::winuser::MAPVK_VK_TO_VSC;
use winapi::um::winuser::VK_RETURN;
chore: fix Windows specific clippy errors (#15212)
2022-07-15 12:30:25 -04:00
// SAFETY: winapi calls
fix: permission prompt stuffing (#11931) Fixes #9750
2021-09-09 08:38:47 -04:00
unsafe {
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
let stdin = GetStdHandle(STD_INPUT_HANDLE);
// emulate an enter key press to clear any line buffered console characters
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
emulate_enter_key_press(stdin)?;
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
// read the buffered line or enter key press
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
read_stdin_line()?;
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
// check if our emulated key press was executed
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
if is_input_buffer_empty(stdin)? {
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
// if so, move the cursor up to prevent a blank line
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
move_cursor_up()?;
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
} else {
// the emulated key press is still pending, so a buffered line was read
// and we can flush the emulated key press
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
flush_input_buffer(stdin)?;
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
}
}
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
return Ok(());
unsafe fn flush_input_buffer(stdin: HANDLE) -> Result<(), AnyError> {
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
let success = FlushConsoleInputBuffer(stdin);
if success != TRUE {
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
bail!(
"Could not flush the console input buffer: {}",
chore: upgrade to rust 1.58 (#13377)
2022-01-15 01:10:12 -05:00
std::io::Error::last_os_error()
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
)
}
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
Ok(())
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
}
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
unsafe fn emulate_enter_key_press(stdin: HANDLE) -> Result<(), AnyError> {
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
// https://github.com/libuv/libuv/blob/a39009a5a9252a566ca0704d02df8dabc4ce328f/src/win/tty.c#L1121-L1131
let mut input_record: INPUT_RECORD = std::mem::zeroed();
input_record.EventType = KEY_EVENT;
input_record.Event.KeyEvent_mut().bKeyDown = TRUE;
input_record.Event.KeyEvent_mut().wRepeatCount = 1;
input_record.Event.KeyEvent_mut().wVirtualKeyCode = VK_RETURN as WORD;
input_record.Event.KeyEvent_mut().wVirtualScanCode =
MapVirtualKeyW(VK_RETURN as UINT, MAPVK_VK_TO_VSC) as WORD;
*input_record.Event.KeyEvent_mut().uChar.UnicodeChar_mut() =
'\r' as WCHAR;
let mut record_written = 0;
let success =
WriteConsoleInputW(stdin, &input_record, 1, &mut record_written);
if success != TRUE {
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
bail!(
"Could not emulate enter key press: {}",
chore: upgrade to rust 1.58 (#13377)
2022-01-15 01:10:12 -05:00
std::io::Error::last_os_error()
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
);
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
}
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
Ok(())
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
}
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
unsafe fn is_input_buffer_empty(stdin: HANDLE) -> Result<bool, AnyError> {
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
let mut buffer = Vec::with_capacity(1);
let mut events_read = 0;
let success =
PeekConsoleInputW(stdin, buffer.as_mut_ptr(), 1, &mut events_read);
if success != TRUE {
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
bail!(
"Could not peek the console input buffer: {}",
chore: upgrade to rust 1.58 (#13377)
2022-01-15 01:10:12 -05:00
std::io::Error::last_os_error()
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
)
}
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
Ok(events_read == 0)
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
}
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
fn move_cursor_up() -> Result<(), AnyError> {
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
use std::io::Write;
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
write!(std::io::stderr(), "\x1B[1A")?;
Ok(())
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
}
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
fn read_stdin_line() -> Result<(), AnyError> {
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
let mut input = String::new();
let stdin = std::io::stdin();
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
stdin.read_line(&mut input)?;
Ok(())
fix: permission prompt stuffing (#11931) Fixes #9750
2021-09-09 08:38:47 -04:00
}
}
feat: Refresh interactive permission prompt (#15907) Co-authored-by: David Sherret <dsherret@users.noreply.github.com>
2022-09-22 08:16:06 -04:00
// Clear n-lines in terminal and move cursor to the beginning of the line.
fn clear_n_lines(n: usize) {
eprint!("\x1B[{}A\x1B[0J", n);
}
fix: permission prompt stuffing (#11931) Fixes #9750
2021-09-09 08:38:47 -04:00
// For security reasons we must consume everything in stdin so that previously
// buffered data cannot effect the prompt.
fix(permissions): fallback to denied access if the permission prompt fails (#14235)
2022-04-18 09:00:38 -04:00
if let Err(err) = clear_stdin() {
eprintln!("Error clearing stdin for permission prompt. {:#}", err);
return false; // don't grant permission if this fails
}
fix: permission prompt stuffing (#11931) Fixes #9750
2021-09-09 08:38:47 -04:00
feat: Refresh interactive permission prompt (#15907) Co-authored-by: David Sherret <dsherret@users.noreply.github.com>
2022-09-22 08:16:06 -04:00
// print to stderr so that if stdout is piped this is still displayed.
const OPTS: &str = "[y/n] (y = yes, allow; n = no, deny)";
eprint!("{}", PERMISSION_EMOJI);
eprint!("{}", colors::bold("Deno requests "));
eprint!("{}", colors::bold(message));
eprintln!("{}", colors::bold("."));
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
if let Some(api_name) = api_name {
eprintln!(" ├ Requested by `{}` API", api_name);
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
let msg = format!(
feat: Refresh interactive permission prompt (#15907) Co-authored-by: David Sherret <dsherret@users.noreply.github.com>
2022-09-22 08:16:06 -04:00
" ├ Run again with --allow-{} to bypass this prompt.",
name
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
);
feat: Refresh interactive permission prompt (#15907) Co-authored-by: David Sherret <dsherret@users.noreply.github.com>
2022-09-22 08:16:06 -04:00
eprintln!("{}", colors::italic(&msg));
eprint!("{}", colors::bold("Allow?"));
eprint!(" {} > ", OPTS);
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
loop {
let mut input = String::new();
fix: permission prompt stuffing on Windows (#11969)
2021-09-14 08:37:27 -04:00
let stdin = std::io::stdin();
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
let result = stdin.read_line(&mut input);
if result.is_err() {
return false;
};
fix(permissions): don't panic when no input is given (#9894) Fixes #9633 Co-authored-by: Kitson Kelly <me@kitsonkelly.com>
2021-04-02 16:49:51 -04:00
let ch = match input.chars().next() {
None => return false,
Some(v) => v,
};
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
match ch.to_ascii_lowercase() {
feat: Refresh interactive permission prompt (#15907) Co-authored-by: David Sherret <dsherret@users.noreply.github.com>
2022-09-22 08:16:06 -04:00
'y' => {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
clear_n_lines(if api_name.is_some() { 4 } else { 3 });
feat: Refresh interactive permission prompt (#15907) Co-authored-by: David Sherret <dsherret@users.noreply.github.com>
2022-09-22 08:16:06 -04:00
let msg = format!("Granted {}.", message);
eprintln!("{}", colors::bold(&msg));
return true;
}
'n' => {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
clear_n_lines(if api_name.is_some() { 4 } else { 3 });
feat: Refresh interactive permission prompt (#15907) Co-authored-by: David Sherret <dsherret@users.noreply.github.com>
2022-09-22 08:16:06 -04:00
let msg = format!("Denied {}.", message);
eprintln!("{}", colors::bold(&msg));
return false;
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
_ => {
// If we don't get a recognized option try again.
feat: Refresh interactive permission prompt (#15907) Co-authored-by: David Sherret <dsherret@users.noreply.github.com>
2022-09-22 08:16:06 -04:00
clear_n_lines(1);
eprint!("{}", colors::bold("Unrecognized option. Allow?"));
eprint!(" {} > ", OPTS);
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
}
};
}
}
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
// When testing, permission prompt returns the value of STUB_PROMPT_VALUE
// which we set from the test functions.
#[cfg(test)]
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
fn permission_prompt(
_message: &str,
_flag: &str,
_api_name: Option<&str>,
) -> bool {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
STUB_PROMPT_VALUE.load(Ordering::SeqCst)
}
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
#[cfg(test)]
static STUB_PROMPT_VALUE: AtomicBool = AtomicBool::new(true);
fix: add mutex guard for permission_prompt tests (#4105) This PR introduces the mutex guard for the test cases which depends on the permission prompt mocking utility. permission_request test cases depend on the mocked (dummy) value of the permission_prompt result. The value is stored at static STUB_PROMPT_VALUE: AtomicBool and these test cases share this value. So we should lock at the start of these test cases. Before this change cargo test permission failed 6 times out of 20. After this change, 0 times out of 20 (on my mac).
2020-02-24 09:13:03 -05:00
#[cfg(test)]
refactor: use `once_cell` instead of `lazy_static` (#13135)
2021-12-18 16:14:42 -05:00
static PERMISSION_PROMPT_STUB_VALUE_SETTER: Lazy<
Mutex<PermissionPromptStubValueSetter>,
> = Lazy::new(|| Mutex::new(PermissionPromptStubValueSetter));
fix: add mutex guard for permission_prompt tests (#4105) This PR introduces the mutex guard for the test cases which depends on the permission prompt mocking utility. permission_request test cases depend on the mocked (dummy) value of the permission_prompt result. The value is stored at static STUB_PROMPT_VALUE: AtomicBool and these test cases share this value. So we should lock at the start of these test cases. Before this change cargo test permission failed 6 times out of 20. After this change, 0 times out of 20 (on my mac).
2020-02-24 09:13:03 -05:00
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
#[cfg(test)]
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
struct PermissionPromptStubValueSetter;
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
#[cfg(test)]
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
impl PermissionPromptStubValueSetter {
pub fn set(&self, value: bool) {
STUB_PROMPT_VALUE.store(value, Ordering::SeqCst);
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
}
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
#[cfg(test)]
mod tests {
use super::*;
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
use deno_core::resolve_url_or_path;
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
use deno_core::serde_json::json;
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Creates vector of strings, Vec<String>
macro_rules! svec {
($($x:expr),*) => (vec![$($x.to_string()),*]);
}
#[test]
fn check_paths() {
Move to allowlist and blocklist (#6282)
2020-06-13 13:09:39 -04:00
let allowlist = vec![
refactor: Use PathBuf for paths in flag parsing and whitelists (#3955) * Use PathBuf for DenoSubcommand::Bundle's out_file * Use PathBuf for DenoSubcommand::Format's files * Use PathBuf for DenoSubcommand::Install's dir * Use PathBuf for read/write whitelists
2020-02-11 04:29:36 -05:00
PathBuf::from("/a/specific/dir/name"),
PathBuf::from("/a/specific"),
PathBuf::from("/b/c"),
];
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let mut perms = Permissions::from_options(&PermissionsOptions {
refactor(cli/flags): change allow_read/write/net types from bool to Option<Vec<T>> (#8896) This PR refactors "cli/flags.rs" and "runtime/permissions.rs" so that "allow_read", "allow_write" and "allow_net" themselves have allowlists, instead of storing them in additional fields.
2020-12-29 13:34:35 -05:00
allow_read: Some(allowlist.clone()),
allow_write: Some(allowlist),
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
..Default::default()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
.unwrap();
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Inside of /a/specific and /a/specific/dir/name
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms
.read
.check(Path::new("/a/specific/dir/name"), None)
.is_ok());
assert!(perms
.write
.check(Path::new("/a/specific/dir/name"), None)
.is_ok());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Inside of /a/specific but outside of /a/specific/dir/name
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.read.check(Path::new("/a/specific/dir"), None).is_ok());
assert!(perms
.write
.check(Path::new("/a/specific/dir"), None)
.is_ok());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Inside of /a/specific and /a/specific/dir/name
refactor: Improve path handling in permission checks (#3714)
2020-01-20 09:45:44 -05:00
assert!(perms
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
.read
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
.check(Path::new("/a/specific/dir/name/inner"), None)
refactor: Improve path handling in permission checks (#3714)
2020-01-20 09:45:44 -05:00
.is_ok());
assert!(perms
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
.write
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
.check(Path::new("/a/specific/dir/name/inner"), None)
refactor: Improve path handling in permission checks (#3714)
2020-01-20 09:45:44 -05:00
.is_ok());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Inside of /a/specific but outside of /a/specific/dir/name
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms
.read
.check(Path::new("/a/specific/other/dir"), None)
.is_ok());
refactor: Improve path handling in permission checks (#3714)
2020-01-20 09:45:44 -05:00
assert!(perms
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
.write
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
.check(Path::new("/a/specific/other/dir"), None)
refactor: Improve path handling in permission checks (#3714)
2020-01-20 09:45:44 -05:00
.is_ok());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Exact match with /b/c
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.read.check(Path::new("/b/c"), None).is_ok());
assert!(perms.write.check(Path::new("/b/c"), None).is_ok());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Sub path within /b/c
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.read.check(Path::new("/b/c/sub/path"), None).is_ok());
assert!(perms.write.check(Path::new("/b/c/sub/path"), None).is_ok());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
// Sub path within /b/c, needs normalizing
assert!(perms
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
.read
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
.check(Path::new("/b/c/sub/path/../path/."), None)
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
.is_ok());
assert!(perms
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
.write
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
.check(Path::new("/b/c/sub/path/../path/."), None)
fix(cli/permissions): Fix CWD and exec path leaks (#5642)
2020-05-29 11:27:43 -04:00
.is_ok());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Inside of /b but outside of /b/c
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.read.check(Path::new("/b/e"), None).is_err());
assert!(perms.write.check(Path::new("/b/e"), None).is_err());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
// Inside of /a but outside of /a/specific
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.read.check(Path::new("/a/b"), None).is_err());
assert!(perms.write.check(Path::new("/a/b"), None).is_err());
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
}
#[test]
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
fn test_check_net_with_values() {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let mut perms = Permissions::from_options(&PermissionsOptions {
refactor(cli/flags): change allow_read/write/net types from bool to Option<Vec<T>> (#8896) This PR refactors "cli/flags.rs" and "runtime/permissions.rs" so that "allow_read", "allow_write" and "allow_net" themselves have allowlists, instead of storing them in additional fields.
2020-12-29 13:34:35 -05:00
allow_net: Some(svec![
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
"localhost",
"deno.land",
"github.com:3000",
"127.0.0.1",
fix: net permissions didn't account for default ports (#6606)
2020-07-02 10:16:41 -04:00
"172.16.0.2:8000",
"www.github.com:443"
refactor(cli/flags): change allow_read/write/net types from bool to Option<Vec<T>> (#8896) This PR refactors "cli/flags.rs" and "runtime/permissions.rs" so that "allow_read", "allow_write" and "allow_net" themselves have allowlists, instead of storing them in additional fields.
2020-12-29 13:34:35 -05:00
]),
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
..Default::default()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
.unwrap();
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
simplify check_net test
2019-06-24 19:30:11 -04:00
let domain_tests = vec![
refactor DenoPermissions.check_net & resolve_addr (#3182)
2019-10-23 10:19:27 -04:00
("localhost", 1234, true),
("deno.land", 0, true),
("deno.land", 3000, true),
("deno.lands", 0, false),
("deno.lands", 3000, false),
("github.com", 3000, true),
("github.com", 0, false),
("github.com", 2000, false),
("github.net", 3000, false),
("127.0.0.1", 0, true),
("127.0.0.1", 3000, true),
("127.0.0.2", 0, false),
("127.0.0.2", 3000, false),
("172.16.0.2", 8000, true),
("172.16.0.2", 0, false),
("172.16.0.2", 6000, false),
("172.16.0.1", 8000, false),
simplify check_net test
2019-06-24 19:30:11 -04:00
// Just some random hosts that should err
refactor DenoPermissions.check_net & resolve_addr (#3182)
2019-10-23 10:19:27 -04:00
("somedomain", 0, false),
("192.168.0.1", 0, false),
simplify check_net test
2019-06-24 19:30:11 -04:00
];
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
for (host, port, is_ok) in domain_tests {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert_eq!(is_ok, perms.net.check(&(host, Some(port)), None).is_ok());
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
}
}
#[test]
fn test_check_net_only_flag() {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let mut perms = Permissions::from_options(&PermissionsOptions {
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
allow_net: Some(svec![]), // this means `--allow-net` is present without values following `=` sign
..Default::default()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
.unwrap();
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
let domain_tests = vec![
("localhost", 1234),
("deno.land", 0),
("deno.land", 3000),
("deno.lands", 0),
("deno.lands", 3000),
("github.com", 3000),
("github.com", 0),
("github.com", 2000),
("github.net", 3000),
("127.0.0.1", 0),
("127.0.0.1", 3000),
("127.0.0.2", 0),
("127.0.0.2", 3000),
("172.16.0.2", 8000),
("172.16.0.2", 0),
("172.16.0.2", 6000),
("172.16.0.1", 8000),
("somedomain", 0),
("192.168.0.1", 0),
];
for (host, port) in domain_tests {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.net.check(&(host, Some(port)), None).is_ok());
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
}
}
#[test]
fn test_check_net_no_flag() {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let mut perms = Permissions::from_options(&PermissionsOptions {
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
allow_net: None,
..Default::default()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
.unwrap();
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
let domain_tests = vec![
("localhost", 1234),
("deno.land", 0),
("deno.land", 3000),
("deno.lands", 0),
("deno.lands", 3000),
("github.com", 3000),
("github.com", 0),
("github.com", 2000),
("github.net", 3000),
("127.0.0.1", 0),
("127.0.0.1", 3000),
("127.0.0.2", 0),
("127.0.0.2", 3000),
("172.16.0.2", 8000),
("172.16.0.2", 0),
("172.16.0.2", 6000),
("172.16.0.1", 8000),
("somedomain", 0),
("192.168.0.1", 0),
];
for (host, port) in domain_tests {
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.net.check(&(host, Some(port)), None).is_err());
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
}
}
#[test]
fn test_check_net_url() {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let mut perms = Permissions::from_options(&PermissionsOptions {
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
allow_net: Some(svec![
"localhost",
"deno.land",
"github.com:3000",
"127.0.0.1",
"172.16.0.2:8000",
"www.github.com:443"
]),
..Default::default()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
.unwrap();
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
simplify check_net test
2019-06-24 19:30:11 -04:00
let url_tests = vec![
// Any protocol + port for localhost should be ok, since we don't specify
("http://localhost", true),
("https://localhost", true),
("https://localhost:4443", true),
("tcp://localhost:5000", true),
("udp://localhost:6000", true),
// Correct domain + any port and protocol should be ok incorrect shouldn't
("https://deno.land/std/example/welcome.ts", true),
("https://deno.land:3000/std/example/welcome.ts", true),
("https://deno.lands/std/example/welcome.ts", false),
("https://deno.lands:3000/std/example/welcome.ts", false),
// Correct domain + port should be ok all other combinations should err
("https://github.com:3000/denoland/deno", true),
("https://github.com/denoland/deno", false),
("https://github.com:2000/denoland/deno", false),
("https://github.net:3000/denoland/deno", false),
// Correct ipv4 address + any port should be ok others should err
("tcp://127.0.0.1", true),
("https://127.0.0.1", true),
("tcp://127.0.0.1:3000", true),
("https://127.0.0.1:3000", true),
("tcp://127.0.0.2", false),
("https://127.0.0.2", false),
("tcp://127.0.0.2:3000", false),
("https://127.0.0.2:3000", false),
// Correct address + port should be ok all other combinations should err
("tcp://172.16.0.2:8000", true),
("https://172.16.0.2:8000", true),
("tcp://172.16.0.2", false),
("https://172.16.0.2", false),
("tcp://172.16.0.2:6000", false),
("https://172.16.0.2:6000", false),
("tcp://172.16.0.1:8000", false),
("https://172.16.0.1:8000", false),
fix: net permissions didn't account for default ports (#6606)
2020-07-02 10:16:41 -04:00
// Testing issue #6531 (Network permissions check doesn't account for well-known default ports) so we dont regress
("https://www.github.com:443/robots.txt", true),
simplify check_net test
2019-06-24 19:30:11 -04:00
];
feat(unstable): add Deno.resolveDns API (#8790)
2021-01-19 09:39:04 -05:00
for (url_str, is_ok) in url_tests {
simplify check_net test
2019-06-24 19:30:11 -04:00
let u = url::Url::parse(url_str).unwrap();
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert_eq!(is_ok, perms.net.check_url(&u, None).is_ok());
simplify check_net test
2019-06-24 19:30:11 -04:00
}
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
}
Add permissions.request (#3296)
2019-11-11 10:33:29 -05:00
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
#[test]
fn check_specifiers() {
let read_allowlist = if cfg!(target_os = "windows") {
vec![PathBuf::from("C:\\a")]
} else {
vec![PathBuf::from("/a")]
};
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let mut perms = Permissions::from_options(&PermissionsOptions {
refactor(cli/flags): change allow_read/write/net types from bool to Option<Vec<T>> (#8896) This PR refactors "cli/flags.rs" and "runtime/permissions.rs" so that "allow_read", "allow_write" and "allow_net" themselves have allowlists, instead of storing them in additional fields.
2020-12-29 13:34:35 -05:00
allow_read: Some(read_allowlist),
allow_net: Some(svec!["localhost"]),
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
..Default::default()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
.unwrap();
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
let mut fixtures = vec![
(
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
resolve_url_or_path("http://localhost:4545/mod.ts").unwrap(),
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
true,
),
(
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
resolve_url_or_path("http://deno.land/x/mod.ts").unwrap(),
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
false,
),
feat(cli): support data urls (#8866) Closes: #5059 Co-authored-by: Valentin Anger <syrupthinker@gryphno.de>
2021-01-05 21:22:38 -05:00
(
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
resolve_url_or_path("data:text/plain,Hello%2C%20Deno!").unwrap(),
feat(cli): support data urls (#8866) Closes: #5059 Co-authored-by: Valentin Anger <syrupthinker@gryphno.de>
2021-01-05 21:22:38 -05:00
true,
),
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
];
if cfg!(target_os = "windows") {
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
fixtures
.push((resolve_url_or_path("file:///C:/a/mod.ts").unwrap(), true));
fixtures
.push((resolve_url_or_path("file:///C:/b/mod.ts").unwrap(), false));
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
} else {
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
fixtures.push((resolve_url_or_path("file:///a/mod.ts").unwrap(), true));
fixtures.push((resolve_url_or_path("file:///b/mod.ts").unwrap(), false));
fix(cli): restore permission check on workers (#8123) Fixes #8120
2020-10-26 15:56:00 -04:00
}
for (specifier, expected) in fixtures {
assert_eq!(perms.check_specifier(&specifier).is_ok(), expected);
}
}
fix: panic on invalid file:// module specifier (#8964)
2021-01-04 04:33:20 -05:00
#[test]
fn check_invalid_specifiers() {
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
let mut perms = Permissions::allow_all();
fix: panic on invalid file:// module specifier (#8964)
2021-01-04 04:33:20 -05:00
let mut test_cases = vec![];
if cfg!(target_os = "windows") {
test_cases.push("file://");
test_cases.push("file:///");
} else {
test_cases.push("file://remotehost/");
}
for url in test_cases {
assert!(perms
Make ModuleSpecifier a type alias, not wrapper struct (#9531)
2021-02-17 13:47:18 -05:00
.check_specifier(&resolve_url_or_path(url).unwrap())
fix: panic on invalid file:// module specifier (#8964)
2021-01-04 04:33:20 -05:00
.is_err());
}
}
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
#[test]
fn test_query() {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let perms1 = Permissions::allow_all();
let perms2 = Permissions {
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
read: UnaryPermission {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
global_state: PermissionState::Prompt,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
..Permissions::new_read(&Some(vec![PathBuf::from("/foo")]), false)
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
.unwrap()
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
write: UnaryPermission {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
global_state: PermissionState::Prompt,
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
..Permissions::new_write(&Some(vec![PathBuf::from("/foo")]), false)
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
.unwrap()
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
net: UnaryPermission {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
global_state: PermissionState::Prompt,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
..Permissions::new_net(&Some(svec!["127.0.0.1:8000"]), false).unwrap()
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
},
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
env: UnaryPermission {
global_state: PermissionState::Prompt,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
..Permissions::new_env(&Some(svec!["HOME"]), false).unwrap()
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: UnaryPermission {
global_state: PermissionState::Prompt,
..Permissions::new_sys(&Some(svec!["hostname"]), false).unwrap()
},
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
run: UnaryPermission {
global_state: PermissionState::Prompt,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
..Permissions::new_run(&Some(svec!["deno"]), false).unwrap()
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
ffi: UnaryPermission {
global_state: PermissionState::Prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Permissions::new_ffi(&Some(vec![PathBuf::from("deno")]), false)
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
.unwrap()
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
hrtime: UnitPermission {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
state: PermissionState::Prompt,
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
..Permissions::new_hrtime(false)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
};
#[rustfmt::skip]
{
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms1.read.query(None), PermissionState::Granted);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert_eq!(perms1.read.query(Some(Path::new("/foo"))), PermissionState::Granted);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms2.read.query(None), PermissionState::Prompt);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert_eq!(perms2.read.query(Some(Path::new("/foo"))), PermissionState::Granted);
assert_eq!(perms2.read.query(Some(Path::new("/foo/bar"))), PermissionState::Granted);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms1.write.query(None), PermissionState::Granted);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert_eq!(perms1.write.query(Some(Path::new("/foo"))), PermissionState::Granted);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms2.write.query(None), PermissionState::Prompt);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert_eq!(perms2.write.query(Some(Path::new("/foo"))), PermissionState::Granted);
assert_eq!(perms2.write.query(Some(Path::new("/foo/bar"))), PermissionState::Granted);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms1.net.query::<&str>(None), PermissionState::Granted);
assert_eq!(perms1.net.query(Some(&("127.0.0.1", None))), PermissionState::Granted);
assert_eq!(perms2.net.query::<&str>(None), PermissionState::Prompt);
assert_eq!(perms2.net.query(Some(&("127.0.0.1", Some(8000)))), PermissionState::Granted);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert_eq!(perms1.env.query(None), PermissionState::Granted);
chore: upgrade to Rust 1.59 (#13767)
2022-02-24 20:03:12 -05:00
assert_eq!(perms1.env.query(Some("HOME")), PermissionState::Granted);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert_eq!(perms2.env.query(None), PermissionState::Prompt);
chore: upgrade to Rust 1.59 (#13767)
2022-02-24 20:03:12 -05:00
assert_eq!(perms2.env.query(Some("HOME")), PermissionState::Granted);
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
assert_eq!(perms1.sys.query(None), PermissionState::Granted);
assert_eq!(perms1.sys.query(Some("HOME")), PermissionState::Granted);
assert_eq!(perms2.env.query(None), PermissionState::Prompt);
assert_eq!(perms2.sys.query(Some("hostname")), PermissionState::Granted);
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
assert_eq!(perms1.run.query(None), PermissionState::Granted);
chore: upgrade to Rust 1.59 (#13767)
2022-02-24 20:03:12 -05:00
assert_eq!(perms1.run.query(Some("deno")), PermissionState::Granted);
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
assert_eq!(perms2.run.query(None), PermissionState::Prompt);
chore: upgrade to Rust 1.59 (#13767)
2022-02-24 20:03:12 -05:00
assert_eq!(perms2.run.query(Some("deno")), PermissionState::Granted);
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
assert_eq!(perms1.ffi.query(None), PermissionState::Granted);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
assert_eq!(perms1.ffi.query(Some(Path::new("deno"))), PermissionState::Granted);
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
assert_eq!(perms2.ffi.query(None), PermissionState::Prompt);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
assert_eq!(perms2.ffi.query(Some(Path::new("deno"))), PermissionState::Granted);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms1.hrtime.query(), PermissionState::Granted);
assert_eq!(perms2.hrtime.query(), PermissionState::Prompt);
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
};
}
#[test]
fn test_request() {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
let mut perms: Permissions = Default::default();
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
#[rustfmt::skip]
{
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
let prompt_value = PERMISSION_PROMPT_STUB_VALUE_SETTER.lock();
prompt_value.set(true);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert_eq!(perms.read.request(Some(Path::new("/foo"))), PermissionState::Granted);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms.read.query(None), PermissionState::Prompt);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert_eq!(perms.read.request(Some(Path::new("/foo/bar"))), PermissionState::Granted);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
chore: upgrade Rust to 1.54.0 (#11554)
2021-07-30 09:03:41 -04:00
assert_eq!(perms.write.request(Some(Path::new("/foo"))), PermissionState::Denied);
assert_eq!(perms.write.query(Some(Path::new("/foo/bar"))), PermissionState::Prompt);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms.write.request(None), PermissionState::Denied);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms.net.request(Some(&("127.0.0.1", None))), PermissionState::Granted);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms.net.request(Some(&("127.0.0.1", Some(8000)))), PermissionState::Granted);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
chore: upgrade to Rust 1.59 (#13767)
2022-02-24 20:03:12 -05:00
assert_eq!(perms.env.request(Some("HOME")), PermissionState::Granted);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert_eq!(perms.env.query(None), PermissionState::Prompt);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
chore: upgrade to Rust 1.59 (#13767)
2022-02-24 20:03:12 -05:00
assert_eq!(perms.env.request(Some("HOME")), PermissionState::Granted);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
assert_eq!(perms.sys.request(Some("hostname")), PermissionState::Granted);
assert_eq!(perms.sys.query(None), PermissionState::Prompt);
prompt_value.set(false);
assert_eq!(perms.sys.request(Some("hostname")), PermissionState::Granted);
prompt_value.set(true);
chore: upgrade to Rust 1.59 (#13767)
2022-02-24 20:03:12 -05:00
assert_eq!(perms.run.request(Some("deno")), PermissionState::Granted);
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
assert_eq!(perms.run.query(None), PermissionState::Prompt);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
chore: upgrade to Rust 1.59 (#13767)
2022-02-24 20:03:12 -05:00
assert_eq!(perms.run.request(Some("deno")), PermissionState::Granted);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
assert_eq!(perms.ffi.request(Some(Path::new("deno"))), PermissionState::Granted);
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
assert_eq!(perms.ffi.query(None), PermissionState::Prompt);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
assert_eq!(perms.ffi.request(Some(Path::new("deno"))), PermissionState::Granted);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms.hrtime.request(), PermissionState::Denied);
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms.hrtime.request(), PermissionState::Denied);
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
};
}
#[test]
fn test_revoke() {
let mut perms = Permissions {
read: UnaryPermission {
refactor(cli/permissions): Cleanup Flags to Permissions conversion (#8213)
2020-10-31 18:44:42 -04:00
global_state: PermissionState::Prompt,
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
..Permissions::new_read(
&Some(vec![PathBuf::from("/foo"), PathBuf::from("/foo/baz")]),
false,
)
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
.unwrap()
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
write: UnaryPermission {
refactor(cli/permissions): Cleanup Flags to Permissions conversion (#8213)
2020-10-31 18:44:42 -04:00
global_state: PermissionState::Prompt,
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
..Permissions::new_write(
&Some(vec![PathBuf::from("/foo"), PathBuf::from("/foo/baz")]),
false,
)
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
.unwrap()
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
net: UnaryPermission {
BREAKING(unstable): Use hosts for net allowlists (#8845) Allowlist checking already uses hosts but for some reason requests, revokes and the runtime permissions API use URLs. - BREAKING(lib.deno.unstable.d.ts): Change NetPermissionDescriptor::url to NetPermissionDescriptor::host - fix(runtime/permissions): Don't add whole URLs to the allowlist on request - fix(runtime/permissions): Harden strength semantics: ({ name: "net", host: "127.0.0.1" } is stronger than { name: "net", host: "127.0.0.1:8000" }) for blocklisting - refactor(runtime/permissions): Use tuples for hosts, make the host optional in Permissions::{query_net, request_net, revoke_net}()
2020-12-30 17:35:28 -05:00
global_state: PermissionState::Prompt,
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
..Permissions::new_net(
&Some(svec!["127.0.0.1", "127.0.0.1:8000"]),
false,
)
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
.unwrap()
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
},
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
env: UnaryPermission {
global_state: PermissionState::Prompt,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
..Permissions::new_env(&Some(svec!["HOME"]), false).unwrap()
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
},
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: UnaryPermission {
global_state: PermissionState::Prompt,
..Permissions::new_sys(&Some(svec!["hostname"]), false).unwrap()
},
feat(permissions): allow run permission to take values (#9833) This commit adds allowlist support to `--allow-run` flag. Additionally `Deno.permissions.query()` allows to query for specific programs within allowlist.
2021-04-09 18:12:00 -04:00
run: UnaryPermission {
global_state: PermissionState::Prompt,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
..Permissions::new_run(&Some(svec!["deno"]), false).unwrap()
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
},
feat: ffi to replace plugins (#11152) This commit removes implementation of "native plugins" and replaces it with FFI API. Effectively "Deno.openPlugin" API was replaced with "Deno.dlopen" API.
2021-08-06 17:28:10 -04:00
ffi: UnaryPermission {
global_state: PermissionState::Prompt,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Permissions::new_ffi(&Some(vec![PathBuf::from("deno")]), false)
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
.unwrap()
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
},
refactor(runtime/permissions): Rename permission structs (#9841)
2021-03-21 08:49:58 -04:00
hrtime: UnitPermission {
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
state: PermissionState::Denied,
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
..Permissions::new_hrtime(false)
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
},
};
#[rustfmt::skip]
{
fix(cli/permissions): ensure revoked permissions are no longer granted (#12159) Fixes #12153
2021-09-24 01:48:15 -04:00
assert_eq!(perms.read.revoke(Some(Path::new("/foo/bar"))), PermissionState::Prompt);
assert_eq!(perms.read.query(Some(Path::new("/foo"))), PermissionState::Prompt);
assert_eq!(perms.read.query(Some(Path::new("/foo/baz"))), PermissionState::Granted);
assert_eq!(perms.write.revoke(Some(Path::new("/foo/bar"))), PermissionState::Prompt);
assert_eq!(perms.write.query(Some(Path::new("/foo"))), PermissionState::Prompt);
assert_eq!(perms.write.query(Some(Path::new("/foo/baz"))), PermissionState::Granted);
assert_eq!(perms.net.revoke(Some(&("127.0.0.1", Some(9000)))), PermissionState::Prompt);
assert_eq!(perms.net.query(Some(&("127.0.0.1", None))), PermissionState::Prompt);
assert_eq!(perms.net.query(Some(&("127.0.0.1", Some(8000)))), PermissionState::Granted);
chore: upgrade to Rust 1.59 (#13767)
2022-02-24 20:03:12 -05:00
assert_eq!(perms.env.revoke(Some("HOME")), PermissionState::Prompt);
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
assert_eq!(perms.env.revoke(Some("hostname")), PermissionState::Prompt);
chore: upgrade to Rust 1.59 (#13767)
2022-02-24 20:03:12 -05:00
assert_eq!(perms.run.revoke(Some("deno")), PermissionState::Prompt);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
assert_eq!(perms.ffi.revoke(Some(Path::new("deno"))), PermissionState::Prompt);
refactor: clean up permission handling (#9367)
2021-03-17 17:45:12 -04:00
assert_eq!(perms.hrtime.revoke(), PermissionState::Denied);
refactor: permissions (#7074)
2020-08-18 16:29:32 -04:00
};
Add "fork" method on DenoPermissions, PermissionState (#5693)
2020-06-06 10:56:21 -04:00
}
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
#[test]
fn test_check() {
let mut perms = Permissions {
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
read: Permissions::new_read(&None, true).unwrap(),
write: Permissions::new_write(&None, true).unwrap(),
net: Permissions::new_net(&None, true).unwrap(),
env: Permissions::new_env(&None, true).unwrap(),
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: Permissions::new_sys(&None, true).unwrap(),
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
run: Permissions::new_run(&None, true).unwrap(),
ffi: Permissions::new_ffi(&None, true).unwrap(),
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
hrtime: Permissions::new_hrtime(false),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
};
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
let prompt_value = PERMISSION_PROMPT_STUB_VALUE_SETTER.lock();
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.read.check(Path::new("/foo"), None).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.read.check(Path::new("/foo"), None).is_ok());
assert!(perms.read.check(Path::new("/bar"), None).is_err());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.write.check(Path::new("/foo"), None).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.write.check(Path::new("/foo"), None).is_ok());
assert!(perms.write.check(Path::new("/bar"), None).is_err());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.net.check(&("127.0.0.1", Some(8000)), None).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.net.check(&("127.0.0.1", Some(8000)), None).is_ok());
assert!(perms.net.check(&("127.0.0.1", Some(8001)), None).is_err());
assert!(perms.net.check(&("127.0.0.1", None), None).is_err());
assert!(perms.net.check(&("deno.land", Some(8000)), None).is_err());
assert!(perms.net.check(&("deno.land", None), None).is_err());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.run.check("cat", None).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.run.check("cat", None).is_ok());
assert!(perms.run.check("ls", None).is_err());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert!(perms.env.check("HOME").is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert!(perms.env.check("HOME").is_ok());
assert!(perms.env.check("PATH").is_err());
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
prompt_value.set(true);
assert!(perms.env.check("hostname").is_ok());
prompt_value.set(false);
assert!(perms.env.check("hostname").is_ok());
assert!(perms.env.check("osRelease").is_err());
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
assert!(perms.hrtime.check().is_err());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
}
#[test]
fn test_check_fail() {
let mut perms = Permissions {
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
read: Permissions::new_read(&None, true).unwrap(),
write: Permissions::new_write(&None, true).unwrap(),
net: Permissions::new_net(&None, true).unwrap(),
env: Permissions::new_env(&None, true).unwrap(),
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: Permissions::new_sys(&None, true).unwrap(),
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
run: Permissions::new_run(&None, true).unwrap(),
ffi: Permissions::new_ffi(&None, true).unwrap(),
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
hrtime: Permissions::new_hrtime(false),
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
};
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
let prompt_value = PERMISSION_PROMPT_STUB_VALUE_SETTER.lock();
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.read.check(Path::new("/foo"), None).is_err());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.read.check(Path::new("/foo"), None).is_err());
assert!(perms.read.check(Path::new("/bar"), None).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.read.check(Path::new("/bar"), None).is_ok());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.write.check(Path::new("/foo"), None).is_err());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.write.check(Path::new("/foo"), None).is_err());
assert!(perms.write.check(Path::new("/bar"), None).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.write.check(Path::new("/bar"), None).is_ok());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.net.check(&("127.0.0.1", Some(8000)), None).is_err());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.net.check(&("127.0.0.1", Some(8000)), None).is_err());
assert!(perms.net.check(&("127.0.0.1", Some(8001)), None).is_ok());
assert!(perms.net.check(&("deno.land", Some(8000)), None).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.net.check(&("127.0.0.1", Some(8001)), None).is_ok());
assert!(perms.net.check(&("deno.land", Some(8000)), None).is_ok());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.run.check("cat", None).is_err());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.run.check("cat", None).is_err());
assert!(perms.run.check("ls", None).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(perms.run.check("ls", None).is_ok());
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert!(perms.env.check("HOME").is_err());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert!(perms.env.check("HOME").is_err());
assert!(perms.env.check("PATH").is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert!(perms.env.check("PATH").is_ok());
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
prompt_value.set(false);
assert!(perms.sys.check("hostname", None).is_err());
prompt_value.set(true);
assert!(perms.sys.check("hostname", None).is_err());
assert!(perms.sys.check("osRelease", None).is_ok());
prompt_value.set(false);
assert!(perms.sys.check("osRelease", None).is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
assert!(perms.hrtime.check().is_err());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat(runtime/permissions): prompt fallback (#9376) Co-authored-by: Yoshiya Hinosawa <stibium121@gmail.com> Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
2021-04-11 22:15:43 -04:00
assert!(perms.hrtime.check().is_err());
}
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
#[test]
#[cfg(windows)]
fn test_env_windows() {
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
let prompt_value = PERMISSION_PROMPT_STUB_VALUE_SETTER.lock();
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
let mut perms = Permissions::allow_all();
perms.env = UnaryPermission {
global_state: PermissionState::Prompt,
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
..Permissions::new_env(&Some(svec!["HOME"]), false).unwrap()
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
};
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert!(perms.env.check("HOME").is_ok());
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
assert!(perms.env.check("HOME").is_ok());
assert!(perms.env.check("hOmE").is_ok());
chore: upgrade to Rust 1.59 (#13767)
2022-02-24 20:03:12 -05:00
assert_eq!(perms.env.revoke(Some("HomE")), PermissionState::Prompt);
feat(permissions): allow env permission to take values (#9825)
2021-04-13 07:25:21 -04:00
}
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
#[test]
fn test_deserialize_child_permissions_arg() {
assert_eq!(
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
ChildPermissionsArg::inherit(),
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
ChildPermissionsArg {
env: ChildUnaryPermissionArg::Inherit,
hrtime: ChildUnitPermissionArg::Inherit,
net: ChildUnaryPermissionArg::Inherit,
ffi: ChildUnaryPermissionArg::Inherit,
read: ChildUnaryPermissionArg::Inherit,
run: ChildUnaryPermissionArg::Inherit,
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: ChildUnaryPermissionArg::Inherit,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
write: ChildUnaryPermissionArg::Inherit,
}
);
assert_eq!(
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
ChildPermissionsArg::none(),
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
ChildPermissionsArg {
env: ChildUnaryPermissionArg::NotGranted,
hrtime: ChildUnitPermissionArg::NotGranted,
net: ChildUnaryPermissionArg::NotGranted,
ffi: ChildUnaryPermissionArg::NotGranted,
read: ChildUnaryPermissionArg::NotGranted,
run: ChildUnaryPermissionArg::NotGranted,
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: ChildUnaryPermissionArg::NotGranted,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
write: ChildUnaryPermissionArg::NotGranted,
}
);
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!("inherit")).unwrap(),
ChildPermissionsArg::inherit()
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!("none")).unwrap(),
ChildPermissionsArg::none()
);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!({})).unwrap(),
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
ChildPermissionsArg::none()
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!({
"env": ["foo", "bar"],
}))
.unwrap(),
ChildPermissionsArg {
env: ChildUnaryPermissionArg::GrantedList(svec!["foo", "bar"]),
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
..ChildPermissionsArg::none()
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!({
"hrtime": true,
}))
.unwrap(),
ChildPermissionsArg {
hrtime: ChildUnitPermissionArg::Granted,
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
..ChildPermissionsArg::none()
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!({
"hrtime": false,
}))
.unwrap(),
ChildPermissionsArg {
hrtime: ChildUnitPermissionArg::NotGranted,
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
..ChildPermissionsArg::none()
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!({
"env": true,
"net": true,
"ffi": true,
"read": true,
"run": true,
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
"sys": true,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
"write": true,
}))
.unwrap(),
ChildPermissionsArg {
env: ChildUnaryPermissionArg::Granted,
net: ChildUnaryPermissionArg::Granted,
ffi: ChildUnaryPermissionArg::Granted,
read: ChildUnaryPermissionArg::Granted,
run: ChildUnaryPermissionArg::Granted,
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: ChildUnaryPermissionArg::Granted,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
write: ChildUnaryPermissionArg::Granted,
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
..ChildPermissionsArg::none()
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!({
"env": false,
"net": false,
"ffi": false,
"read": false,
"run": false,
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
"sys": false,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
"write": false,
}))
.unwrap(),
ChildPermissionsArg {
env: ChildUnaryPermissionArg::NotGranted,
net: ChildUnaryPermissionArg::NotGranted,
ffi: ChildUnaryPermissionArg::NotGranted,
read: ChildUnaryPermissionArg::NotGranted,
run: ChildUnaryPermissionArg::NotGranted,
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: ChildUnaryPermissionArg::NotGranted,
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
write: ChildUnaryPermissionArg::NotGranted,
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
..ChildPermissionsArg::none()
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
);
assert_eq!(
serde_json::from_value::<ChildPermissionsArg>(json!({
"env": ["foo", "bar"],
"net": ["foo", "bar:8000"],
"ffi": ["foo", "file:///bar/baz"],
"read": ["foo", "file:///bar/baz"],
"run": ["foo", "file:///bar/baz", "./qux"],
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
"sys": ["hostname", "osRelease"],
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
"write": ["foo", "file:///bar/baz"],
}))
.unwrap(),
ChildPermissionsArg {
env: ChildUnaryPermissionArg::GrantedList(svec!["foo", "bar"]),
net: ChildUnaryPermissionArg::GrantedList(svec!["foo", "bar:8000"]),
ffi: ChildUnaryPermissionArg::GrantedList(svec![
"foo",
"file:///bar/baz"
]),
read: ChildUnaryPermissionArg::GrantedList(svec![
"foo",
"file:///bar/baz"
]),
run: ChildUnaryPermissionArg::GrantedList(svec![
"foo",
"file:///bar/baz",
"./qux"
]),
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
sys: ChildUnaryPermissionArg::GrantedList(svec![
"hostname",
"osRelease"
]),
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
write: ChildUnaryPermissionArg::GrantedList(svec![
"foo",
"file:///bar/baz"
]),
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
..ChildPermissionsArg::none()
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
);
}
#[test]
fn test_create_child_permissions() {
let mut main_perms = Permissions {
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
env: Permissions::new_env(&Some(vec![]), false).unwrap(),
feat: never prompt for hrtime permission (#13696)
2022-02-16 18:17:24 -05:00
hrtime: Permissions::new_hrtime(true),
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
net: Permissions::new_net(&Some(svec!["foo", "bar"]), false).unwrap(),
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Default::default()
};
assert_eq!(
create_child_permissions(
&mut main_perms.clone(),
ChildPermissionsArg {
env: ChildUnaryPermissionArg::Inherit,
hrtime: ChildUnitPermissionArg::NotGranted,
net: ChildUnaryPermissionArg::GrantedList(svec!["foo"]),
ffi: ChildUnaryPermissionArg::NotGranted,
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
..ChildPermissionsArg::none()
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
)
.unwrap(),
Permissions {
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
env: Permissions::new_env(&Some(vec![]), false).unwrap(),
net: Permissions::new_net(&Some(svec!["foo"]), false).unwrap(),
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
..Default::default()
}
);
assert!(create_child_permissions(
&mut main_perms.clone(),
ChildPermissionsArg {
net: ChildUnaryPermissionArg::Granted,
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
..ChildPermissionsArg::none()
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
)
.is_err());
assert!(create_child_permissions(
&mut main_perms.clone(),
ChildPermissionsArg {
net: ChildUnaryPermissionArg::GrantedList(svec!["foo", "bar", "baz"]),
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
..ChildPermissionsArg::none()
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
)
.is_err());
assert!(create_child_permissions(
&mut main_perms,
ChildPermissionsArg {
ffi: ChildUnaryPermissionArg::GrantedList(svec!["foo"]),
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
..ChildPermissionsArg::none()
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
}
)
.is_err());
}
#[test]
fn test_create_child_permissions_with_prompt() {
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
let prompt_value = PERMISSION_PROMPT_STUB_VALUE_SETTER.lock();
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
let mut main_perms = Permissions::from_options(&PermissionsOptions {
prompt: true,
..Default::default()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
.unwrap();
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(true);
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
let worker_perms = create_child_permissions(
&mut main_perms,
ChildPermissionsArg {
read: ChildUnaryPermissionArg::Granted,
run: ChildUnaryPermissionArg::GrantedList(svec!["foo", "bar"]),
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
..ChildPermissionsArg::none()
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
},
)
.unwrap();
assert_eq!(main_perms, worker_perms);
}
#[test]
fn test_create_child_permissions_with_inherited_denied_list() {
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
let prompt_value = PERMISSION_PROMPT_STUB_VALUE_SETTER.lock();
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
let mut main_perms = Permissions::from_options(&PermissionsOptions {
prompt: true,
..Default::default()
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
})
.unwrap();
chore: fix flaky permissions tests on windows (#12552)
2021-10-26 11:49:07 -04:00
prompt_value.set(false);
feat: Add requesting API name to permission prompt (#15936) Co-authored-by: Leo Kettmeir <crowlkats@toaxl.com>
2022-09-27 16:36:33 -04:00
assert!(main_perms.write.check(&PathBuf::from("foo"), None).is_err());
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
let worker_perms = create_child_permissions(
&mut main_perms.clone(),
fix: actually don't inherit runtime permissions (#14024)
2022-03-20 17:46:39 -04:00
ChildPermissionsArg::none(),
fix(runtime/ops/worker_host): move permission arg parsing to Rust (#12297)
2021-10-13 13:04:44 -04:00
)
.unwrap();
assert_eq!(worker_perms.write.denied_list, main_perms.write.denied_list);
}
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
#[test]
fn test_handle_empty_value() {
assert!(Permissions::new_read(&Some(vec![PathBuf::new()]), false).is_err());
assert!(Permissions::new_env(&Some(vec![String::new()]), false).is_err());
feat: add --allow-sys permission flag (#16028)
2022-09-28 08:46:50 -04:00
assert!(Permissions::new_sys(&Some(vec![String::new()]), false).is_err());
fix(permissions): ignore empty values (#15447)
2022-08-10 15:13:53 -04:00
assert!(Permissions::new_run(&Some(vec![String::new()]), false).is_err());
assert!(Permissions::new_ffi(&Some(vec![PathBuf::new()]), false).is_err());
assert!(Permissions::new_net(&Some(svec![String::new()]), false).is_err());
assert!(Permissions::new_write(&Some(vec![PathBuf::new()]), false).is_err());
}
First pass at permissions whitelist (#2129)
2019-05-08 19:20:30 -04:00
}
Copy permalink