Module: Dia::Profiles

Extended by:

FFI::Library

Defined in:

lib/dia/profiles.rb

Overview

The Profiles module provides a list of profiles which can be passed to the constructor of Dia::Application or Dia::RubyBlock to create sandboxes with different kinds of restrictions.

Constant Summary

NO_INTERNET =

The NO_INTERNET profile restricts access to the internet.

Returns:

• (String)

attach_variable(:kSBXProfileNoInternet,
:string).read_string

NO_NETWORKING =

The NO_NETWORKING profile restricts all kinds of networking.

Returns:

• (String)

attach_variable(:kSBXProfileNoNetwork,
:string).read_string

NO_FILESYSTEM_WRITE =

The NO_FILESYSTEM_WRITE profile restricts any attempt to write to the filesystem.

Returns:

• (String)

attach_variable(:kSBXProfileNoWrite, 
:string).read_string

NO_FILESYSTEM_WRITE_EXCEPT_TMP =

The NO_FILESYSTEM_WRITE_EXCEPT_TMP profile restricts any attempt to write to the filesystem, excluding writes to /var/tmp and the directory specified by _CS_DARWIN_USER_TEMP_DIR.

Returns:

• (String)

attach_variable(:kSBXProfileNoWriteExceptTemporary,
:string).read_string

NO_OS_SERVICES =

The NO_OS_SERVICES is the most restrictive profile, and denies access to all operating system resources(Internet, Networking, FileSystem writes, etc).

Returns:

• (String)

attach_variable(:kSBXProfilePureComputation,
:string).read_string