41 lines
1.1 KiB
Go
41 lines
1.1 KiB
Go
// +build openbsd
|
|
|
|
// Package lynx is a simple unveil & pledge wrapper.
|
|
package lynx
|
|
|
|
import "golang.org/x/sys/unix"
|
|
|
|
// UnveilPaths takes a map of path, permission & unveils them one by
|
|
// one, it will return an error if unveil fails at any step. "no such
|
|
// file or directory" error is ignored.
|
|
func UnveilPaths(paths map[string]string) error {
|
|
for k, v := range paths {
|
|
err := unix.Unveil(k, v)
|
|
|
|
// "no such file or directory" error is ignored.
|
|
if err != nil && err.Error() != "no such file or directory" {
|
|
// Better error message could be returned like
|
|
// one that includes the path on which unveil
|
|
// failed.
|
|
return err
|
|
}
|
|
}
|
|
// Returning nil because err can be "no such file or
|
|
// directory" which needs to be ignored.
|
|
return nil
|
|
}
|
|
|
|
// UnveilPathsStrict takes a map of path, permission & unveils them
|
|
// one by one, it will return an error if unveil fails at any steop.
|
|
// No error is ignored.
|
|
func UnveilPathsStrict(paths map[string]string) (err error) {
|
|
for k, v := range paths {
|
|
err = unix.Unveil(k, v)
|
|
|
|
if err != nil {
|
|
return
|
|
}
|
|
}
|
|
return
|
|
}
|