Add UtSettings option to disable sandbox

Author: dtim

utbot-framework-api/src/main/kotlin/org/utbot/framework/UtSettings.kt

@@ -406,6 +406,11 @@ object UtSettings {
      */
     var ignoreStaticsFromTrustedLibraries by getBooleanProperty(true)
 
+    /**
+     * Disable sandbox in the concrete executor. All unsafe/dangerous calls will be permitted.
+     */
+    var disableSandbox by getBooleanProperty(false)
+
     override fun toString(): String =
         settingsValues
             .mapKeys { it.key.name }

utbot-framework/src/test/kotlin/org/utbot/examples/UtValueTestCaseChecker.kt

@@ -2890,3 +2890,16 @@ inline fun <reified T> withUsingReflectionForMaximizingCoverage(maximizeCoverage
         UtSettings.maximizeCoverageUsingReflection = prev
     }
 }
+
+/**
+ * Run [block] with disabled sandbox in the concrete executor
+ */
+inline fun <reified T> withoutSandbox(block: () -> T): T {
+    val prev = UtSettings.disableSandbox
+    UtSettings.disableSandbox = true
+    try {
+        return block()
+    } finally {
+        UtSettings.disableSandbox = prev
+    }
+}

utbot-instrumentation/src/main/kotlin/org/utbot/instrumentation/process/ChildProcess.kt

@@ -48,14 +48,21 @@ private fun log(any: Any?) {
 
 private val kryoHelper: KryoHelper = KryoHelper(System.`in`, System.`out`)
 
+/**
+ * Command-line option do disable the sandbox
+ */
+const val DISABLE_SANDBOX_OPTION = "--disable-sandbox"
+
 /**
  * It should be compiled into separate jar file (child_process.jar) and be run with an agent (agent.jar) option.
  */
-fun main() {
-    permissions {
-        // Enable all permissions for instrumentation.
-        // SecurityKt.sandbox() is used to restrict these permissions.
-        + AllPermission()
+fun main(args: Array<String>) {
+    if (!args.contains(DISABLE_SANDBOX_OPTION)) {
+        permissions {
+            // Enable all permissions for instrumentation.
+            // SecurityKt.sandbox() is used to restrict these permissions.
+            +AllPermission()
+        }
     }
 
     // We don't want user code to litter the standard output, so we redirect it.

utbot-instrumentation/src/main/kotlin/org/utbot/instrumentation/process/ChildProcessRunner.kt

@@ -49,7 +49,14 @@ class ChildProcessRunner {
 
         val directory = WorkingDirService.provide().toFile()
 
-        val processBuilder = ProcessBuilder(cmds)
+        val commandsWithOptions = buildList {
+            addAll(cmds)
+            if (UtSettings.disableSandbox) {
+                add(DISABLE_SANDBOX_OPTION)
+            }
+        }
+
+        val processBuilder = ProcessBuilder(commandsWithOptions)
             .redirectError(errorLogFile)
             .directory(directory)