serenity/Kernel/FileSystem
Liav A 718ae68621 Kernel+LibCore+LibC: Implement support for forcing unveil on exec
To accomplish this, we add another VeilState which is called
LockedInherited. The idea is to apply exec unveil data, similar to
execpromises of the pledge syscall, on the current exec'ed program
during the execve sequence. When applying the forced unveil data, the
veil state is set to be locked but the special state of LockedInherited
ensures that if the new program tries to unveil paths, the request will
silently be ignored, so the program will continue running without
receiving an error, but is still can only use the paths that were
unveiled before the exec syscall. This in turn, allows us to use the
unveil syscall with a special utility to sandbox other userland programs
in terms of what is visible to them on the filesystem, and is usable on
both programs that use or don't use the unveil syscall in their code.
2022-11-26 12:42:15 -07:00
..
DevPtsFS Kernel: Update the ".." inode for directories after a rename 2022-11-25 17:33:05 +01:00
Ext2FS Kernel: Update the ".." inode for directories after a rename 2022-11-25 17:33:05 +01:00
FATFS Kernel: Update the ".." inode for directories after a rename 2022-11-25 17:33:05 +01:00
ISO9660FS Kernel: Update the ".." inode for directories after a rename 2022-11-25 17:33:05 +01:00
Plan9FS Kernel: Update the ".." inode for directories after a rename 2022-11-25 17:33:05 +01:00
ProcFS Kernel: Update the ".." inode for directories after a rename 2022-11-25 17:33:05 +01:00
SysFS Kernel+LibCore+LibC: Implement support for forcing unveil on exec 2022-11-26 12:42:15 -07:00
TmpFS Kernel: Update the ".." inode for directories after a rename 2022-11-25 17:33:05 +01:00
AnonymousFile.cpp
AnonymousFile.h
BlockBasedFileSystem.cpp Kernel/FileSystem: Discard safely filesystems when unmounted last time 2022-10-22 16:57:52 -04:00
BlockBasedFileSystem.h Kernel/FileSystem: Discard safely filesystems when unmounted last time 2022-10-22 16:57:52 -04:00
Custody.cpp
Custody.h
DeviceFileTypes.h
FIFO.cpp Kernel: Add support for MSG_NOSIGNAL and properly send SIGPIPE 2022-10-24 15:49:39 +02:00
FIFO.h
File.cpp
File.h
FileBackedFileSystem.cpp Kernel: Introduce support for using FileSystem object in multiple mounts 2022-10-22 16:57:52 -04:00
FileBackedFileSystem.h Kernel: Introduce support for using FileSystem object in multiple mounts 2022-10-22 16:57:52 -04:00
FileSystem.cpp Kernel/FileSystem: Discard safely filesystems when unmounted last time 2022-10-22 16:57:52 -04:00
FileSystem.h Kernel/FileSystem: Discard safely filesystems when unmounted last time 2022-10-22 16:57:52 -04:00
Inode.cpp Kernel: Use AK::Time for InodeMetadata timestamps instead of time_t 2022-11-24 16:56:27 +01:00
Inode.h Kernel: Update the ".." inode for directories after a rename 2022-11-25 17:33:05 +01:00
InodeFile.cpp Kernel: Use AK::Time for InodeMetadata timestamps instead of time_t 2022-11-24 16:56:27 +01:00
InodeFile.h
InodeIdentifier.h
InodeMetadata.cpp
InodeMetadata.h Kernel: Use AK::Time for InodeMetadata timestamps instead of time_t 2022-11-24 16:56:27 +01:00
InodeWatcher.cpp
InodeWatcher.h
Mount.cpp
Mount.h Kernel: Add missing includes for Mount.h file 2022-11-11 10:25:54 +01:00
OpenFileDescription.cpp Kernel/FileSystem: Add a few missing includes 2022-10-22 16:57:52 -04:00
OpenFileDescription.h Kernel/FileSystem: Add a few missing includes 2022-10-22 16:57:52 -04:00
UnveilNode.h
VirtualFileSystem.cpp Kernel: Update the ".." inode for directories after a rename 2022-11-25 17:33:05 +01:00
VirtualFileSystem.h Kernel/FileSystem: Discard safely filesystems when unmounted last time 2022-10-22 16:57:52 -04:00