equal
deleted
inserted
replaced
|
1 // Copyright 2018 The Go Authors. All rights reserved. |
|
2 // Use of this source code is governed by a BSD-style |
|
3 // license that can be found in the LICENSE file. |
|
4 |
|
5 package unix |
|
6 |
|
7 import ( |
|
8 "syscall" |
|
9 "unsafe" |
|
10 ) |
|
11 |
|
12 // Unveil implements the unveil syscall. |
|
13 // For more information see unveil(2). |
|
14 // Note that the special case of blocking further |
|
15 // unveil calls is handled by UnveilBlock. |
|
16 func Unveil(path string, flags string) error { |
|
17 pathPtr, err := syscall.BytePtrFromString(path) |
|
18 if err != nil { |
|
19 return err |
|
20 } |
|
21 flagsPtr, err := syscall.BytePtrFromString(flags) |
|
22 if err != nil { |
|
23 return err |
|
24 } |
|
25 _, _, e := syscall.Syscall(SYS_UNVEIL, uintptr(unsafe.Pointer(pathPtr)), uintptr(unsafe.Pointer(flagsPtr)), 0) |
|
26 if e != 0 { |
|
27 return e |
|
28 } |
|
29 return nil |
|
30 } |
|
31 |
|
32 // UnveilBlock blocks future unveil calls. |
|
33 // For more information see unveil(2). |
|
34 func UnveilBlock() error { |
|
35 // Both pointers must be nil. |
|
36 var pathUnsafe, flagsUnsafe unsafe.Pointer |
|
37 _, _, e := syscall.Syscall(SYS_UNVEIL, uintptr(pathUnsafe), uintptr(flagsUnsafe), 0) |
|
38 if e != 0 { |
|
39 return e |
|
40 } |
|
41 return nil |
|
42 } |