proposed fix for follow-up issue/regression after implementing #7113 for #6874
should be reviewed by someone having the big-picture of the code
该提问来源于开源项目:Icinga/icinga2
use current frame scope for permission filter function calls
- 写回答
- 好问题 0 提建议
- 关注问题
分享- 邀请回答
-
3条回答 默认 最新
- weixin_39781186 2020-11-29 10:06关注
I think technically the functions would be able to use locals as every function-wrapper creates a locals dict in the frame dedicated to the function-run on each execution of function anyway (within function wrapper encapsulated in a Callback / std::function).
The permissionFrame (or the frame passed to the DoEvaluate) is anyway not the frame the function Executes in. There is one more frame created in VMOps::FunctionCall -> Function::InvokeThis for calling the call Method/Function of Function (having no Locals and the Function Object as Self) and within call-method-function the Function to execute itself is taken from that frame and again Function::InvokeThis is called, again creating a ScriptFrame (having no Locals but setting Self to the Value of Arg0 wich is the one we specify in FilterUtility::CheckPermission). The Locals are then populated by the wrapper around the parsed function (which initializes the Locals with ClosedVars and Arguments for each execution). That means it is effectively no difference for the permissons check function.
The thing that locals assignments are never allowed in sanboxed frames is more a shortcoming or a bug instead of expected behaviour from my point of view. (It wouldn't change any persistent state if the assignment affects only locals as the locals are thrown away at end of function execution...)
解决 无用评论 打赏举报 分享
- 2018-03-27 23:02yangjia_cheng的博客 www.it-ebooks.infoPraise for OpenGL ® ES ™ 3.0 Programming Guide,Second Edition“As a graphics technologist and intense OpenGL ES developer, Ican honestly say that if you buy only one book on OpenGL...
- 2022-07-23 08:26lqonlylove的博客 禁用程序停止时显示的某些表达式 disable frame-filter -- GDB command to disable the specified frame-filter # GDB 命令禁用指定的帧过滤器 disable mem -- Disable memory region # 禁用内存区域 disable pretty...
- 2025-12-16 08:34Miraitowa²的博客 命令行操作门槛 核心工具操作复杂度分析: 工具名称 必学参数 典型命令示例 Metasploit 20+模块 use exploit/multi/handler Nmap 50+扫描类型 -sV -O -T4 192.168.1.0/24 学习曲线陡峭: 基础命令掌握需40+小时 高级...
- 2024-11-25 11:39@OuYang的博客 hardware keys) check for current user // so we handle user restrictions correctly. if (uid == android.os.Process.SYSTEM_UID) { uid = UserHandle.getUid(getCurrentUserId(), UserHandle.getAppId(uid)); }...
- 2025-06-22 23:49香蕉割草机的博客 @txqs: the number of TX subqueues to allocate * @rxqs: the number of RX subqueues to allocate * * Allocates a struct net_device with private data area for driver use * and performs basic ...
- 2023-10-17 19:39longji的博客 chromium111 Features:19 Add “window-management” as an alias for permission and permission policy “window-placement” Adds “window-management” as an alias for “window-placement” permission and ...
- 2022-02-21 18:55繁华哟的博客 Allows processing of input before a frame has been committed. TODO(schenney): crbug.com/987626. Used by headless. Look for a way not involving a command line switch. ? --allow-profiles-outside-user-...
- 2022-07-13 08:35百口可乐__的博客 fno-enforce-eh-specs -ffor-scope -fno-for-scope -fno-gnu-keywords -fno-implicit-templates -fno-implicit-inline-templates -fno-implement-inlines -fms-extensions -fno-nonansi-builtins -fnothrow-opt -fno...
- 2022-10-11 16:01biji10011的博客 jQuery.fn = jQuery.prototype = { // The current version of jQuery being used jquery: core_version, constructor: jQuery, init: function( selector, context, rootjQuery ) { var match, elem; // HANDLE: $...
- 2024-04-10 17:36小黄同学LL的博客 11 conspire interactive 16-n mindset classify diagnose instantaneous instant scope on the spot reward 翻译模板: https://mp.weixin.qq.com/s/smH3gofZt7r5u8DGJ-7ahg subscriptable devastate accuracy 传统...
- 2022-02-17 21:12MC仁.光谷啊姆小新新的博客 One corollary of this principle is that information in the public domain is free for all to use. In this context, data is more or less presumed to be public; it is a significant burden to prove that ...
- 2021-12-10 22:30haodada1226的博客 } else if (request.mPhysicalCameraSettings.size() > 1) { ALOGE("%s: Camera %s: reprocess requests not supported for " "multiple physical cameras.", __FUNCTION__, mCameraIdStr.string()); return STATUS...
- 2014-07-07 00:07翱翔天地的博客 // See test/unit/core.js for details concerning isFunction. // Since version 1.3, DOM methods and functions like alert // aren't supported. They return false on IE (#2968). isFunction: function( ...
- 2018-11-19 22:38mqingo的博客 // For internal use only. // Behaves like an Array's method, not like a jQuery method. push: push, sort: deletedIds.sort, splice: deletedIds.splice }; jQuery.extend = jQuery.fn.extend = function...
- 2021-02-26 16:10www.bajins.com的博客 if 如果 常用 else 否则 常用 switch 多路分支 常用 case 与常值匹配 常用 break 终止 常用 while 当到循环 常用 do 直到循环 常用 for 已知次数循环 常用 continue 结束本次循环进行下次跌代 常用 length 获取数组...
- 2018-11-12 19:41Hemy08的博客 disable frame-filter -- GDB command to disable the specified frame-filter disable mem -- Disable memory region disable pretty-printer -- GDB command to disable the specified pretty-printer disable ...
- 2020-01-18 20:35写文章的思考者的博客 This flag can reduce the security of the sandboxed processes and allow them to do certain API calls like shut down Windows or access the clipboard. Also we lose the chance to kill some processes ...
- 2019-05-30 19:47lyglostangel的博客 Android Q features and ...Android Q introduces great new features and capabilities for users and developers. This document highlights what's new for developers. To learn about the new APIs, read t...
- 没有解决我的问题, 去提问
