From c2cac572e9e51fc91296e0aa86ed3e165a75dd2d Mon Sep 17 00:00:00 2001
From: grunfink
Date: Wed, 4 Jun 2025 06:35:39 +0200
Subject: Don't enable unveil() and pledge() for sendmail spawn if "smtp_url"
 is set.

---
 sandbox.c | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'sandbox.c')

diff --git a/sandbox.c b/sandbox.c
index 9e06155..a172f46 100644
--- a/sandbox.c
+++ b/sandbox.c
@@ -15,6 +15,11 @@ void sbox_enter(const char *basedir)
 
     int smail = !xs_is_true(xs_dict_get(srv_config, "disable_email_notifications"));
 
+    const char *url = xs_dict_get(srv_config, "smtp_url");
+
+    if (xs_is_string(url) && *url)
+        smail = 0;
+
     srv_debug(1, xs_fmt("Calling unveil()"));
     unveil(basedir,                "rwc");
     unveil("/tmp",                 "rwc");
-- 
cgit v1.2.3