From 738a37784f707f7e0ee10d3eca7d03f7ae4063a5 Mon Sep 17 00:00:00 2001
From: David Carlier <devnexen@gmail.com>
Date: Sun, 6 Jan 2019 17:07:53 +0000
Subject: Proposal of sandboxing feature.

For now only used by the TLS server.
---
 src/cli/tls_server.cpp | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'src/cli')

diff --git a/src/cli/tls_server.cpp b/src/cli/tls_server.cpp
index c8e6c58f3..7259c091b 100644
--- a/src/cli/tls_server.cpp
+++ b/src/cli/tls_server.cpp
@@ -87,6 +87,12 @@ class TLS_Server final : public Command, public Botan::TLS::Callbacks
 
          output() << "Listening for new connections on " << transport << " port " << port << std::endl;
 
+	 if(!Botan::OS::sandbox_start())
+            {
+            error_output() << "Failed sandboxing\n";
+	    return;
+	    }
+
          int server_fd = make_server_socket(port);
          size_t clients_served = 0;
 
-- 
cgit v1.2.3