/* * Copyright (c) 2018-2020, Andreas Kling * * SPDX-License-Identifier: BSD-2-Clause */ #include #include #include #include #include #include #include #include #include #include #include #include ErrorOr serenity_main(Main::Arguments) { if constexpr (TLS_SSL_KEYLOG_DEBUG) TRY(Core::System::pledge("stdio inet accept unix cpath wpath rpath sendfd recvfd sigaction")); else TRY(Core::System::pledge("stdio inet accept unix rpath sendfd recvfd sigaction")); #ifdef SIGINFO signal(SIGINFO, [](int) { RequestServer::ConnectionCache::dump_jobs(); }); #endif if constexpr (TLS_SSL_KEYLOG_DEBUG) TRY(Core::System::pledge("stdio inet accept unix cpath wpath rpath sendfd recvfd")); else TRY(Core::System::pledge("stdio inet accept unix rpath sendfd recvfd")); // Ensure the certificates are read out here. // FIXME: Allow specifying extra certificates on the command line, or in other configuration. [[maybe_unused]] auto& certs = DefaultRootCACertificates::the(); Core::EventLoop event_loop; // FIXME: Establish a connection to LookupServer and then drop "unix"? TRY(Core::System::unveil("/tmp/portal/lookup", "rw")); TRY(Core::System::unveil("/etc/timezone", "r")); if constexpr (TLS_SSL_KEYLOG_DEBUG) TRY(Core::System::unveil("/home/anon", "rwc")); TRY(Core::System::unveil(nullptr, nullptr)); RequestServer::GeminiProtocol::install(); RequestServer::HttpProtocol::install(); RequestServer::HttpsProtocol::install(); auto client = TRY(IPC::take_over_accepted_client_from_system_server()); return event_loop.exec(); }