Add UtSettings option to disable sandbox

Author: dtim

utbot-framework-api/src/main/kotlin/org/utbot/framework/UtSettings.kt

@@ -406,6 +406,11 @@ object UtSettings {
      */
     var ignoreStaticsFromTrustedLibraries by getBooleanProperty(true)
 
+    /**
+     * Disable sandbox in the concrete executor. All unsafe/dangerous calls will be permitted.
+     */
+    var disableSandbox by getBooleanProperty(false)
+
     override fun toString(): String =
         settingsValues
             .mapKeys { it.key.name }

utbot-framework/src/test/kotlin/org/utbot/examples/UtValueTestCaseChecker.kt

@@ -2890,3 +2890,16 @@ inline fun <reified T> withUsingReflectionForMaximizingCoverage(maximizeCoverage
         UtSettings.maximizeCoverageUsingReflection = prev
     }
 }
+
+/**
+ * Run [block] with disabled sandbox in the concrete executor
+ */
+inline fun <reified T> withoutSandbox(block: () -> T): T {
+    val prev = UtSettings.disableSandbox
+    UtSettings.disableSandbox = true
+    try {
+        return block()
+    } finally {
+        UtSettings.disableSandbox = prev
+    }
+}

utbot-instrumentation/src/main/kotlin/org/utbot/instrumentation/process/ChildProcess.kt

@@ -48,14 +48,21 @@ private fun log(any: Any?) {
 
 private val kryoHelper: KryoHelper = KryoHelper(System.`in`, System.`out`)
 
+/**
+ * Command-line option do disable the sandbox
+ */
+const val DISABLE_SANDBOX_OPTION = "--disable-sandbox"
+
 /**
  * It should be compiled into separate jar file (child_process.jar) and be run with an agent (agent.jar) option.
  */
-fun main() {
-    permissions {
-        // Enable all permissions for instrumentation.
-        // SecurityKt.sandbox() is used to restrict these permissions.
-        + AllPermission()
+fun main(args: Array<String>) {
+    if (!args.contains(DISABLE_SANDBOX_OPTION)) {
+        permissions {
+            // Enable all permissions for instrumentation.
+            // SecurityKt.sandbox() is used to restrict these permissions.
+            +AllPermission()
+        }
     }
 
     // We don't want user code to litter the standard output, so we redirect it.

utbot-instrumentation/src/main/kotlin/org/utbot/instrumentation/process/ChildProcessRunner.kt

@@ -30,10 +30,16 @@ class ChildProcessRunner {
 
         val pathToJava = JdkInfoService.provide().path
 
+        val disableSandboxCmd = if (UtSettings.disableSandbox)
+            listOf(DISABLE_SANDBOX_OPTION)
+        else
+            emptyList()
+
         listOf(pathToJava.resolve("bin${File.separatorChar}java").toString()) +
             debugCmd +
             javaVersionSpecificArguments +
-            listOf("-javaagent:$jarFile", "-ea", "-jar", "$jarFile")
+            listOf("-javaagent:$jarFile", "-ea", "-jar", "$jarFile") +
+            disableSandboxCmd
     }
 
     var errorLogFile: File = NULL_FILE