Proof of concept: PandocSandboxed.sandbox3

So far all this does is raise an error when liftIO is called.
author: John MacFarlane <[email protected]> 2021-08-22 22:30:11 -0700
committer: John MacFarlane <[email protected]> 2021-08-22 22:30:11 -0700
commit: 54b1619fad2fe1b7e8addcd6e3c1bff8eb4bfd56 (patch)
tree: 72536240e9010fcc19112399070cd52661f96145
parent: 66874b49a629fd03c78e070cdcf493e3c0c715f7 (diff)
2 files changed, 29 insertions, 24 deletions
diff --git a/src/Text/Pandoc/App/OutputSettings.hs b/src/Text/Pandoc/App/OutputSettings.hs
index 3f83f4b21..0fd06a671 100644
--- a/src/Text/Pandoc/App/OutputSettings.hs
+++ b/src/Text/Pandoc/App/OutputSettings.hs
@@ -23,7 +23,7 @@ import qualified Data.Text as T
 import Text.DocTemplates (toVal, Context(..), Val(..))
 import qualified Control.Exception as E
 import Control.Monad
-import Control.Monad.Except (throwError)
+import Control.Monad.Except (throwError, catchError)
 import Control.Monad.Trans
 import Data.Char (toLower)
 import Data.List (find)
@@ -128,7 +128,7 @@ optToOutputSettings opts = do
         xs <- mapM getTextContents fps
         setListVariableM k xs ctx
 
-  curdir <- liftIO getCurrentDirectory
+  curdir <- catchError (liftIO getCurrentDirectory) (const $ return "")
 
   variables <-
     return (optVariables opts)
diff --git a/src/Text/Pandoc/Class/PandocSandboxed.hs b/src/Text/Pandoc/Class/PandocSandboxed.hs
index 68ed572a8..5f3fd7d89 100644
--- a/src/Text/Pandoc/Class/PandocSandboxed.hs
+++ b/src/Text/Pandoc/Class/PandocSandboxed.hs
@@ -1,3 +1,4 @@
+{-# LANGUAGE OverloadedStrings #-}
 {-# LANGUAGE DeriveFunctor #-}
 {-# LANGUAGE GeneralizedNewtypeDeriving #-}
 {- |
@@ -19,8 +20,8 @@ module Text.Pandoc.Class.PandocSandboxed
   , runSandboxed
  ) where
 
-import Control.Monad.Except (ExceptT, MonadError, runExceptT)
-import Control.Monad.IO.Class (MonadIO)
+import Control.Monad.Except (ExceptT, MonadError, runExceptT, throwError)
+import Control.Monad.IO.Class (MonadIO(liftIO))
 import Control.Monad.State (StateT, evalStateT, lift, get, put)
 import Data.Default (Default (def))
 import Text.Pandoc.Class.CommonState (CommonState (..))
@@ -28,16 +29,16 @@ import Text.Pandoc.Class.PandocMonad
 import Text.Pandoc.Definition
 import Text.Pandoc.Error
 import qualified Text.Pandoc.Class.IO as IO
+import Text.Pandoc.Class.PandocIO (PandocIO, runIO)
 import Control.Monad.Catch (MonadCatch, MonadMask, MonadThrow)
 
 -- | Evaluate a 'PandocSandboxed' operation.
 runSandboxed :: PandocSandboxed a -> IO (Either PandocError a)
-runSandboxed ma = flip evalStateT def $ runExceptT $ unPandocSandboxed ma
+runSandboxed = runIO . unPandocSandboxed
 
 newtype PandocSandboxed a = PandocSandboxed {
-  unPandocSandboxed :: ExceptT PandocError (StateT CommonState IO) a
-  } deriving ( MonadIO
-             , Functor
+  unPandocSandboxed :: PandocIO a
+  } deriving ( Functor
              , Applicative
              , Monad
              , MonadCatch
@@ -46,25 +47,29 @@ newtype PandocSandboxed a = PandocSandboxed {
              , MonadError PandocError
              )
 
+instance MonadIO PandocSandboxed where
+  liftIO act = PandocSandboxed $ throwError $
+                 PandocSandboxError "IO action"
+
 instance PandocMonad PandocSandboxed where
-  lookupEnv = IO.lookupEnv
-  getCurrentTime = IO.getCurrentTime
-  getCurrentTimeZone = IO.getCurrentTimeZone
-  newStdGen = IO.newStdGen
-  newUniqueHash = IO.newUniqueHash
+  lookupEnv = PandocSandboxed . lookupEnv
+  getCurrentTime = PandocSandboxed getCurrentTime
+  getCurrentTimeZone = PandocSandboxed getCurrentTimeZone
+  newStdGen = PandocSandboxed newStdGen
+  newUniqueHash = PandocSandboxed newUniqueHash
 
-  openURL = IO.openURL
-  readFileLazy = IO.readFileLazy
-  readFileStrict = IO.readFileStrict
-  readStdinStrict = IO.readStdinStrict
+  openURL = PandocSandboxed . openURL
+  readFileLazy = PandocSandboxed . readFileLazy
+  readFileStrict = PandocSandboxed . readFileStrict
+  readStdinStrict = PandocSandboxed readStdinStrict
 
-  glob = IO.glob
-  fileExists = IO.fileExists
-  getDataFileName = IO.getDataFileName
-  getModificationTime = IO.getModificationTime
+  glob = PandocSandboxed . glob
+  fileExists = PandocSandboxed . fileExists
+  getDataFileName = PandocSandboxed . getDataFileName
+  getModificationTime = PandocSandboxed . getModificationTime
 
-  getCommonState = PandocSandboxed $ lift get
-  putCommonState = PandocSandboxed . lift . put
+  getCommonState = PandocSandboxed getCommonState
+  putCommonState = PandocSandboxed . putCommonState
 
-  logOutput = IO.logOutput
+  logOutput = PandocSandboxed . logOutput
author	John MacFarlane <[email protected]>	2021-08-22 22:30:11 -0700
committer	John MacFarlane <[email protected]>	2021-08-22 22:30:11 -0700
commit	54b1619fad2fe1b7e8addcd6e3c1bff8eb4bfd56 (patch)
tree	72536240e9010fcc19112399070cd52661f96145
parent	66874b49a629fd03c78e070cdcf493e3c0c715f7 (diff)