Skip to main content

DirScope

capsec_core::attenuate

Struct DirScope 

Source 
pub struct DirScope { /* private fields */ }
Expand description

Restricts filesystem operations to a directory subtree.

Paths are canonicalized before comparison to prevent ../ traversal attacks. If the target path cannot be canonicalized (e.g., it doesn’t exist yet), the check fails conservatively.

§Example

let scope = DirScope::new("/tmp").unwrap();
// Note: check will fail if /tmp/data.txt doesn't exist (canonicalization)

Implementations§

Source§

impl DirScope

Source

pub fn new(root: impl AsRef<Path>) -> Result<Self, CapSecError>

Creates a new directory scope rooted at the given path.

The root path is canonicalized to prevent bypass via symlinks or .. components. Returns an error if the root path does not exist or cannot be resolved.

Trait Implementations§

Source§

impl Scope for DirScope

Source§

fn check(&self, target: &str) -> Result<(), CapSecError>

Checks whether target is within this scope. Read more

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.