mirror of
https://github.com/denoland/deno.git
synced 2025-01-13 09:32:24 -05:00
82f9216610
Fixes #24241 * Support "statfs", "username", "getPriority" and "setPriority" kinds for `--allow-sys`. * Check individual permissions in `node:os.userInfo()` instead of a single "userInfo" permission. * Check for "uid" permission in `node:process.geteuid()` instead of "geteuid". * Add missing "homedir" to `SysPermissionDescriptor.kind` union Co-authored-by: Bartek Iwańczuk <biwanczuk@gmail.com>
123 lines
2.5 KiB
Rust
123 lines
2.5 KiB
Rust
// Copyright 2018-2024 the Deno authors. All rights reserved. MIT license.
|
|
|
|
use crate::NodePermissions;
|
|
use deno_core::error::type_error;
|
|
use deno_core::error::AnyError;
|
|
use deno_core::op2;
|
|
use deno_core::OpState;
|
|
|
|
mod cpus;
|
|
mod priority;
|
|
|
|
#[op2(fast)]
|
|
pub fn op_node_os_get_priority<P>(
|
|
state: &mut OpState,
|
|
pid: u32,
|
|
) -> Result<i32, AnyError>
|
|
where
|
|
P: NodePermissions + 'static,
|
|
{
|
|
{
|
|
let permissions = state.borrow_mut::<P>();
|
|
permissions.check_sys("getPriority", "node:os.getPriority()")?;
|
|
}
|
|
|
|
priority::get_priority(pid)
|
|
}
|
|
|
|
#[op2(fast)]
|
|
pub fn op_node_os_set_priority<P>(
|
|
state: &mut OpState,
|
|
pid: u32,
|
|
priority: i32,
|
|
) -> Result<(), AnyError>
|
|
where
|
|
P: NodePermissions + 'static,
|
|
{
|
|
{
|
|
let permissions = state.borrow_mut::<P>();
|
|
permissions.check_sys("setPriority", "node:os.setPriority()")?;
|
|
}
|
|
|
|
priority::set_priority(pid, priority)
|
|
}
|
|
|
|
#[op2]
|
|
#[string]
|
|
pub fn op_node_os_username<P>(state: &mut OpState) -> Result<String, AnyError>
|
|
where
|
|
P: NodePermissions + 'static,
|
|
{
|
|
{
|
|
let permissions = state.borrow_mut::<P>();
|
|
permissions.check_sys("username", "node:os.userInfo()")?;
|
|
}
|
|
|
|
Ok(deno_whoami::username())
|
|
}
|
|
|
|
#[op2(fast)]
|
|
pub fn op_geteuid<P>(state: &mut OpState) -> Result<u32, AnyError>
|
|
where
|
|
P: NodePermissions + 'static,
|
|
{
|
|
{
|
|
let permissions = state.borrow_mut::<P>();
|
|
permissions.check_sys("uid", "node:os.geteuid()")?;
|
|
}
|
|
|
|
#[cfg(windows)]
|
|
let euid = 0;
|
|
#[cfg(unix)]
|
|
// SAFETY: Call to libc geteuid.
|
|
let euid = unsafe { libc::geteuid() };
|
|
|
|
Ok(euid)
|
|
}
|
|
|
|
#[op2(fast)]
|
|
pub fn op_getegid<P>(state: &mut OpState) -> Result<u32, AnyError>
|
|
where
|
|
P: NodePermissions + 'static,
|
|
{
|
|
{
|
|
let permissions = state.borrow_mut::<P>();
|
|
permissions.check_sys("getegid", "node:os.getegid()")?;
|
|
}
|
|
|
|
#[cfg(windows)]
|
|
let egid = 0;
|
|
#[cfg(unix)]
|
|
// SAFETY: Call to libc getegid.
|
|
let egid = unsafe { libc::getegid() };
|
|
|
|
Ok(egid)
|
|
}
|
|
|
|
#[op2]
|
|
#[serde]
|
|
pub fn op_cpus<P>(state: &mut OpState) -> Result<Vec<cpus::CpuInfo>, AnyError>
|
|
where
|
|
P: NodePermissions + 'static,
|
|
{
|
|
{
|
|
let permissions = state.borrow_mut::<P>();
|
|
permissions.check_sys("cpus", "node:os.cpus()")?;
|
|
}
|
|
|
|
cpus::cpu_info().ok_or_else(|| type_error("Failed to get cpu info"))
|
|
}
|
|
|
|
#[op2]
|
|
#[string]
|
|
pub fn op_homedir<P>(state: &mut OpState) -> Result<Option<String>, AnyError>
|
|
where
|
|
P: NodePermissions + 'static,
|
|
{
|
|
{
|
|
let permissions = state.borrow_mut::<P>();
|
|
permissions.check_sys("homedir", "node:os.homedir()")?;
|
|
}
|
|
|
|
Ok(home::home_dir().map(|path| path.to_string_lossy().to_string()))
|
|
}
|