mirror of
https://github.com/denoland/deno.git
synced 2025-01-18 03:44:05 -05:00
386d5c8310
Also removes permissions being passed in for node resolution. It was completely useless because we only checked it for reading package.json files, but Deno reading package.json files for resolution is perfectly fine. My guess is this is also a perf improvement because Deno is doing less work.
259 lines
6.3 KiB
Rust
259 lines
6.3 KiB
Rust
// Copyright 2018-2024 the Deno authors. All rights reserved. MIT license.
|
|
|
|
mod in_memory_fs;
|
|
mod interface;
|
|
mod ops;
|
|
mod std_fs;
|
|
pub mod sync;
|
|
|
|
pub use crate::in_memory_fs::InMemoryFs;
|
|
pub use crate::interface::AccessCheckCb;
|
|
pub use crate::interface::AccessCheckFn;
|
|
pub use crate::interface::FileSystem;
|
|
pub use crate::interface::FileSystemRc;
|
|
pub use crate::interface::FsDirEntry;
|
|
pub use crate::interface::FsFileType;
|
|
pub use crate::interface::OpenOptions;
|
|
pub use crate::std_fs::RealFs;
|
|
pub use crate::sync::MaybeSend;
|
|
pub use crate::sync::MaybeSync;
|
|
|
|
use crate::ops::*;
|
|
|
|
use deno_core::error::AnyError;
|
|
use deno_core::OpState;
|
|
use deno_io::fs::FsError;
|
|
use std::borrow::Cow;
|
|
use std::path::Path;
|
|
|
|
pub trait FsPermissions {
|
|
fn check_open<'a>(
|
|
&mut self,
|
|
resolved: bool,
|
|
read: bool,
|
|
write: bool,
|
|
path: &'a Path,
|
|
api_name: &str,
|
|
) -> Result<std::borrow::Cow<'a, Path>, FsError>;
|
|
fn check_read(&mut self, path: &Path, api_name: &str)
|
|
-> Result<(), AnyError>;
|
|
fn check_read_all(&mut self, api_name: &str) -> Result<(), AnyError>;
|
|
fn check_read_blind(
|
|
&mut self,
|
|
p: &Path,
|
|
display: &str,
|
|
api_name: &str,
|
|
) -> Result<(), AnyError>;
|
|
fn check_write(
|
|
&mut self,
|
|
path: &Path,
|
|
api_name: &str,
|
|
) -> Result<(), AnyError>;
|
|
fn check_write_partial(
|
|
&mut self,
|
|
path: &Path,
|
|
api_name: &str,
|
|
) -> Result<(), AnyError>;
|
|
fn check_write_all(&mut self, api_name: &str) -> Result<(), AnyError>;
|
|
fn check_write_blind(
|
|
&mut self,
|
|
p: &Path,
|
|
display: &str,
|
|
api_name: &str,
|
|
) -> Result<(), AnyError>;
|
|
|
|
fn check<'a>(
|
|
&mut self,
|
|
resolved: bool,
|
|
open_options: &OpenOptions,
|
|
path: &'a Path,
|
|
api_name: &str,
|
|
) -> Result<std::borrow::Cow<'a, Path>, FsError> {
|
|
self.check_open(
|
|
resolved,
|
|
open_options.read,
|
|
open_options.write || open_options.append,
|
|
path,
|
|
api_name,
|
|
)
|
|
}
|
|
}
|
|
|
|
impl FsPermissions for deno_permissions::PermissionsContainer {
|
|
fn check_open<'a>(
|
|
&mut self,
|
|
resolved: bool,
|
|
read: bool,
|
|
write: bool,
|
|
path: &'a Path,
|
|
api_name: &str,
|
|
) -> Result<Cow<'a, Path>, FsError> {
|
|
if resolved {
|
|
self.check_special_file(path, api_name).map_err(|_| {
|
|
std::io::Error::from(std::io::ErrorKind::PermissionDenied)
|
|
})?;
|
|
return Ok(Cow::Borrowed(path));
|
|
}
|
|
|
|
// If somehow read or write aren't specified, use read
|
|
let read = read || !write;
|
|
if read {
|
|
FsPermissions::check_read(self, path, api_name)
|
|
.map_err(|_| FsError::PermissionDenied("read"))?;
|
|
}
|
|
if write {
|
|
FsPermissions::check_write(self, path, api_name)
|
|
.map_err(|_| FsError::PermissionDenied("write"))?;
|
|
}
|
|
Ok(Cow::Borrowed(path))
|
|
}
|
|
|
|
fn check_read(
|
|
&mut self,
|
|
path: &Path,
|
|
api_name: &str,
|
|
) -> Result<(), AnyError> {
|
|
deno_permissions::PermissionsContainer::check_read(self, path, api_name)
|
|
}
|
|
|
|
fn check_read_blind(
|
|
&mut self,
|
|
path: &Path,
|
|
display: &str,
|
|
api_name: &str,
|
|
) -> Result<(), AnyError> {
|
|
deno_permissions::PermissionsContainer::check_read_blind(
|
|
self, path, display, api_name,
|
|
)
|
|
}
|
|
|
|
fn check_write(
|
|
&mut self,
|
|
path: &Path,
|
|
api_name: &str,
|
|
) -> Result<(), AnyError> {
|
|
deno_permissions::PermissionsContainer::check_write(self, path, api_name)
|
|
}
|
|
|
|
fn check_write_partial(
|
|
&mut self,
|
|
path: &Path,
|
|
api_name: &str,
|
|
) -> Result<(), AnyError> {
|
|
deno_permissions::PermissionsContainer::check_write_partial(
|
|
self, path, api_name,
|
|
)
|
|
}
|
|
|
|
fn check_write_blind(
|
|
&mut self,
|
|
p: &Path,
|
|
display: &str,
|
|
api_name: &str,
|
|
) -> Result<(), AnyError> {
|
|
deno_permissions::PermissionsContainer::check_write_blind(
|
|
self, p, display, api_name,
|
|
)
|
|
}
|
|
|
|
fn check_read_all(&mut self, api_name: &str) -> Result<(), AnyError> {
|
|
deno_permissions::PermissionsContainer::check_read_all(self, api_name)
|
|
}
|
|
|
|
fn check_write_all(&mut self, api_name: &str) -> Result<(), AnyError> {
|
|
deno_permissions::PermissionsContainer::check_write_all(self, api_name)
|
|
}
|
|
}
|
|
|
|
pub const UNSTABLE_FEATURE_NAME: &str = "fs";
|
|
|
|
/// Helper for checking unstable features. Used for sync ops.
|
|
fn check_unstable(state: &OpState, api_name: &str) {
|
|
// TODO(bartlomieju): replace with `state.feature_checker.check_or_exit`
|
|
// once we phase out `check_or_exit_with_legacy_fallback`
|
|
state
|
|
.feature_checker
|
|
.check_or_exit_with_legacy_fallback(UNSTABLE_FEATURE_NAME, api_name);
|
|
}
|
|
|
|
deno_core::extension!(deno_fs,
|
|
deps = [ deno_web ],
|
|
parameters = [P: FsPermissions],
|
|
ops = [
|
|
op_fs_cwd<P>,
|
|
op_fs_umask,
|
|
op_fs_chdir<P>,
|
|
|
|
op_fs_open_sync<P>,
|
|
op_fs_open_async<P>,
|
|
op_fs_mkdir_sync<P>,
|
|
op_fs_mkdir_async<P>,
|
|
op_fs_chmod_sync<P>,
|
|
op_fs_chmod_async<P>,
|
|
op_fs_chown_sync<P>,
|
|
op_fs_chown_async<P>,
|
|
op_fs_remove_sync<P>,
|
|
op_fs_remove_async<P>,
|
|
op_fs_copy_file_sync<P>,
|
|
op_fs_copy_file_async<P>,
|
|
op_fs_stat_sync<P>,
|
|
op_fs_stat_async<P>,
|
|
op_fs_lstat_sync<P>,
|
|
op_fs_lstat_async<P>,
|
|
op_fs_realpath_sync<P>,
|
|
op_fs_realpath_async<P>,
|
|
op_fs_read_dir_sync<P>,
|
|
op_fs_read_dir_async<P>,
|
|
op_fs_rename_sync<P>,
|
|
op_fs_rename_async<P>,
|
|
op_fs_link_sync<P>,
|
|
op_fs_link_async<P>,
|
|
op_fs_symlink_sync<P>,
|
|
op_fs_symlink_async<P>,
|
|
op_fs_read_link_sync<P>,
|
|
op_fs_read_link_async<P>,
|
|
op_fs_truncate_sync<P>,
|
|
op_fs_truncate_async<P>,
|
|
op_fs_utime_sync<P>,
|
|
op_fs_utime_async<P>,
|
|
op_fs_make_temp_dir_sync<P>,
|
|
op_fs_make_temp_dir_async<P>,
|
|
op_fs_make_temp_file_sync<P>,
|
|
op_fs_make_temp_file_async<P>,
|
|
op_fs_write_file_sync<P>,
|
|
op_fs_write_file_async<P>,
|
|
op_fs_read_file_sync<P>,
|
|
op_fs_read_file_async<P>,
|
|
op_fs_read_file_text_sync<P>,
|
|
op_fs_read_file_text_async<P>,
|
|
|
|
op_fs_seek_sync,
|
|
op_fs_seek_async,
|
|
op_fs_fdatasync_sync,
|
|
op_fs_fdatasync_async,
|
|
op_fs_fsync_sync,
|
|
op_fs_fsync_async,
|
|
op_fs_file_stat_sync,
|
|
op_fs_file_stat_async,
|
|
op_fs_flock_sync_unstable,
|
|
op_fs_flock_async_unstable,
|
|
op_fs_funlock_sync_unstable,
|
|
op_fs_funlock_async_unstable,
|
|
op_fs_flock_async,
|
|
op_fs_flock_sync,
|
|
op_fs_funlock_async,
|
|
op_fs_funlock_sync,
|
|
op_fs_ftruncate_sync,
|
|
op_fs_ftruncate_async,
|
|
op_fs_futime_sync,
|
|
op_fs_futime_async,
|
|
|
|
],
|
|
esm = [ "30_fs.js" ],
|
|
options = {
|
|
fs: FileSystemRc,
|
|
},
|
|
state = |state, options| {
|
|
state.put(options.fs);
|
|
},
|
|
);
|