================
@@ -620,6 +621,8 @@ CrossTranslationUnitContext::ASTLoader::loadFromSource(
auto Diags = llvm::makeIntrusiveRefCnt<DiagnosticsEngine>(DiagID, *DiagOpts,
DiagClient);
+ // This runs the driver which isn't expected to be free of sandbox
violations.
+ auto BypassSandbox = llvm::sys::sandbox::scopedDisable();
----------------
benlangmuir wrote:
I'm not really concerned about the driver itself, that is when it is parsing
arguments for and then coordinating the frontend execution, it's the
possibility of the driver being called back by the frontend specifically that
seems (potentially) problematic if it allows the frontend to indirectly depend
on unsandboxed FS access. Probably this is more of a caching issue than a
general VFS issue, and it would need special handling to cache correctly
anyway, so maybe it's fine to ignore it for now?
https://github.com/llvm/llvm-project/pull/175097
_______________________________________________
cfe-commits mailing list
[email protected]
https://lists.llvm.org/cgi-bin/mailman/listinfo/cfe-commits
