DynamicContentPostList: Ignore invisible entries

Makefile: Build dynamic content generators, adjust for exile update
sandbox-linux: include exile.hpp
2022-03-27 20:03:28 +02:00 · 2022-03-27 20:00:21 +02:00 · 2022-03-27 19:59:52 +02:00 · 2022-03-27 19:54:07 +02:00 · 2022-03-27 19:53:48 +02:00
--- a/13
+++ b/13
@@ -14,6 +14,7 @@ SOURCES+=$(wildcard handlers/*.cpp)
 SOURCES+=$(wildcard database/*.cpp)
 SOURCES+=$(wildcard cache/*.cpp)
 SOURCES+=$(wildcard sandbox/*.cpp)
+SOURCES+=$(wildcard dynamic/*.cpp)

 HEADERS=$(wildcard *.h)
 HEADERS+=$(wildcard gateway/*.h)
@@ -21,7 +22,7 @@ HEADERS+=$(wildcard handlers/*.h)
 HEADERS+=$(wildcard database/*.h)
 HEADERS+=$(wildcard cache/*.h)
 HEADERS+=$(wildcard sandbox/*.h)
-
+HEADERS+=$(wildcard dynamic/*.h)

 OBJECTS=$(patsubst %.cpp, %.o, $(SOURCES))
 WIKIOBJECTS=$(filter-out test.o, $(OBJECTS))
@@ -48,8 +49,12 @@ profile: LDFLAGS+= -pg
 release: qswiki
 profile: qswiki

-qswiki: $(WIKIOBJECTS)
-	$(CXX) $(WIKIOBJECTS) ${LDFLAGS} ${INCLUDEFLAGS}  -o qswiki
+
+exile.o: submodules/exile.h/exile.c
+	$(CC) -std=c99 -DHAVE_LANDLOCK=0 -c submodules/exile.h/exile.c -o exile.o
+
+qswiki: $(WIKIOBJECTS) exile.o
+	$(CXX) $(WIKIOBJECTS) exile.o ${LDFLAGS} ${INCLUDEFLAGS}  -o qswiki

 test: $(TESTOBJECTS)
 	$(CXX) $(TESTOBJECTS) ${LDFLAGS} -o test
@@ -63,6 +68,6 @@ gtest: $(GTESTS_TESTDIR)/*.cpp $(GTEST_OBJECTS)
 version.o:version.cpp
 	$(CXX) ${CXXFLAGS} ${INCLUDEFLAGS} -DGITCOMMIT=\"$(shell git rev-parse --short HEAD)\" -c -o $@ $<
 clean:
-	rm -f $(OBJECTS) $(DEPENDS)
+	rm -f exile.o $(OBJECTS) $(DEPENDS)


--- a/dynamic/dynamiccontentpostlist.cpp
+++ b/dynamic/dynamiccontentpostlist.cpp
@@ -12,6 +12,7 @@ std::string DynamicContentPostList::render()
 	auto pageDao = this->database->createPageDao();
 	auto revisionDao = this->database->createRevisionDao();
 	QueryOption option;
+	option.includeInvisible = false;
 	auto members = categoryDao->fetchMembers(this->catname, option);
 	std::vector<std::pair<std::string, time_t>> pageList;
 	for(std::string &member : members)
--- a/sandbox/sandbox-linux.cpp
+++ b/sandbox/sandbox-linux.cpp
@@ -12,18 +12,13 @@
 #include <filesystem>
 #include <sys/mount.h>
 #include <sys/capability.h>
-#define HAVE_LANDLOCK 0
-#include <exile.h>
+#include <exile.hpp>
 #include "../logger.h"
 #include "../utils.h"
 #include "../random.h"

 #include "sandbox-linux.h"

-/* TODO: make a whitelist approach. So far we simply blacklist
- * obvious systemcalls. To whitelist, we need to analyse our
- * dependencies (http library, sqlite wrapper, sqlite lib etc.) */
-
 bool SandboxLinux::supported()
 {
 	std::fstream stream;
@@ -54,19 +49,19 @@ bool SandboxLinux::enable(std::vector<std::string> fsPaths)
 	}
 	for(unsigned int i = 0; i < fsPaths.size(); i++)
 	{
-		exile_append_path_policy(policy, EXILE_FS_ALLOW_ALL_READ | EXILE_FS_ALLOW_ALL_WRITE, fsPaths[i].c_str());
+		exile_append_path_policies(policy, EXILE_FS_ALLOW_ALL_READ | EXILE_FS_ALLOW_ALL_WRITE, fsPaths[i].c_str());
 	}
 	policy->drop_caps = 1;
 	policy->not_dumpable = 1;
 	policy->no_new_privs = 1;
 	policy->mount_path_policies_to_chroot = 1;
 	policy->vow_promises = EXILE_SYSCALL_VOW_STDIO | EXILE_SYSCALL_VOW_WPATH | EXILE_SYSCALL_VOW_CPATH |
-							  EXILE_SYSCALL_VOW_RPATH | EXILE_SYSCALL_VOW_INET | EXILE_SYSCALL_VOW_UNIX |
-							  EXILE_SYSCALL_VOW_THREAD;
+						   EXILE_SYSCALL_VOW_RPATH | EXILE_SYSCALL_VOW_INET | EXILE_SYSCALL_VOW_UNIX |
+						   EXILE_SYSCALL_VOW_THREAD;

 	if(exile_enable_policy(policy) != 0)
 	{
-		Logger::error() << "Sandbox: Activation of seccomp blacklist failed!";
+		Logger::error() << "Sandbox: Activation of exile failed!";
 		exile_free_policy(policy);
 		return false;
 	}
--- a/submodules/exile.h
+++ b/submodules/exile.h
--- a/template/quitesimple/dynamic/postlistbegin
+++ b/template/quitesimple/dynamic/postlistbegin
@@ -0,0 +1 @@
+<ul>
--- a/template/quitesimple/dynamic/postlistend
+++ b/template/quitesimple/dynamic/postlistend
@@ -0,0 +1 @@
+</ul>
--- a/template/quitesimple/dynamic/postlistlink
+++ b/template/quitesimple/dynamic/postlistlink
@@ -0,0 +1 @@
+<li>{date}: <a href="{url}">{title}</a></li>
--- a/template/quitesimple/feeds/atomentry
+++ b/template/quitesimple/feeds/atomentry
@@ -0,0 +1,7 @@
+<entry>
+    <title>{qswiki:var:entrytitle}</title>
+    <link href="{qswiki:var:entryurl}"/>
+    <id>{qswiki:var:entryid}</id>
+    <published>{qswiki:var:entrypublished}</published>
+    <content type="html">{qswiki:var:entrycontent}</content>
+</entry>
--- a/template/quitesimple/feeds/atomfooter
+++ b/template/quitesimple/feeds/atomfooter
@@ -0,0 +1 @@
+</feed>
--- a/template/quitesimple/feeds/atomheader
+++ b/template/quitesimple/feeds/atomheader
@@ -0,0 +1,8 @@
+<?xml version="1.0" encoding="utf-8"?>
+<feed xmlns="http://www.w3.org/2005/Atom">
+  <author>
+    <name>{qswiki:config:wikiownername}</name>
+  </author>
+  <title>{qswiki:config:wikiname} - {qswiki:var:subtitle}</title>
+  <id>{qswiki:var:atomfeeduniqueid}</id>
+  <updated>{qswiki:var:atomfeedupdate}</updated>
作者	SHA1	備註	提交日期
Albert S	f5eb36e7bb	DynamicContentPostList: Ignore invisible entries	2022-03-27 20:03:28 +02:00
Albert S	c891b36339	Makefile: Build dynamic content generators, adjust for exile update	2022-03-27 20:00:21 +02:00
Albert S	d17e596563	sandbox-linux: include exile.hpp	2022-03-27 19:59:52 +02:00
Albert S	761471f243	template: Add template for atom feed	2022-03-27 19:54:07 +02:00
Albert S	9ac0ad0ccd	template: Add template for dynamic postlist	2022-03-27 19:53:48 +02:00
				`@@ -0,0 +1 @@`
				`<li>{date}: <a href="{url}">{title}</a></li>`