Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/openedx/codejail
Secure code execution
https://github.com/openedx/codejail
Last synced: about 11 hours ago
JSON representation
Secure code execution
- Host: GitHub
- URL: https://github.com/openedx/codejail
- Owner: openedx
- License: apache-2.0
- Created: 2013-04-26T20:48:06.000Z (over 11 years ago)
- Default Branch: master
- Last Pushed: 2024-08-05T00:01:22.000Z (5 months ago)
- Last Synced: 2024-08-05T01:07:27.523Z (5 months ago)
- Language: Python
- Size: 324 KB
- Stars: 371
- Watchers: 159
- Forks: 74
- Open Issues: 18
-
Metadata Files:
- Readme: README.rst
- License: LICENSE.txt
Awesome Lists containing this project
README
CodeJail
========CodeJail manages execution of untrusted code in secure sandboxes. It is
designed primarily for Python execution, but can be used for other languages as
well.Security is enforced with AppArmor. If your operating system doesn't support
AppArmor, then CodeJail won't protect the execution.CodeJail is designed to be configurable, and will auto-configure itself for
Python execution if you install it properly. The configuration is designed to
be flexible: it can run in safe mode or unsafe mode. This helps support large
development groups where only some of the developers are involved enough with
secure execution to configure AppArmor on their development machines.If CodeJail is not configured for safe execution, it will execution Python
using the same API, but will not guard against malicious code. This allows the
same code to be used on safe-configured or non-safe-configured developer's
machines.A CodeJail sandbox consists of several pieces:
#) Sandbox environment. For a Python setup, this would be Python and
associated core packages. This is denoted throughout this document
as ****. This is read-only.#) Sandbox packages. These are additional packages needed for a given
run. For example, this might be a grader written by an instructor
to run over a student's code, or data that a student's code might
need to access. This is denoted throughout this document as
****. This is read-only.#) Untrusted packages. This is typically the code submitted by the
student to be tested on the server, as well as any data the code
may need to modify. This is denoted throughout this document as
****. This is currently read-only, but may need to
be read-write for some applications.#) OS packages. These are standard system libraries needed to run
Python (e.g. things in /lib). This is denoted throughout this
document as ****. This is read-only, and is specified by
Ubuntu's AppArmor profile.To run, CodeJail requires two user accounts. One account is the main
account under which the code runs, which has access to create
sandboxes. This will be referred to as ****. The
second account is the account under which the sandbox runs. This is
typically the account 'sandbox.'Supported Versions
------------------This library currently is tested to work with the following versions
Python:
* 3.11
Ubuntu:
* 20.04
* 22.04
* 24.04Installation
------------These instructions detail how to configure your operating system so that
CodeJail can execute Python code safely. You can run CodeJail without these
steps, and you will have an unsafe CodeJail. This is fine for developers'
machines who are unconcerned with security, and simplifies the integration of
CodeJail into your project.To secure Python execution, you'll be creating a new virtualenv. This means
you'll have two: the main virtualenv for your project, and the new one for
sandboxed Python code.Choose a place for the new virtualenv, call it ****. It will be
automatically detected and used if you put it right alongside your existing
virtualenv, but with ``-sandbox`` appended. So if your existing virtualenv is in
``/home/chris/ve/myproj``, make **** be ``/home/chris/ve/myproj-sandbox``.The user running the LMS is ****, for example, you on
your dev machine, or ``www-data`` on a server.Other details here that depend on your configuration:
1. Create the new virtualenv, using ``--copies`` so that there's a distinct Python executable to limit::
$ sudo python3.8 -m venv --copies
By default, the virtualenv would just symlink against the system Python, and apparmor's default configuration on some operating systems may prevent confinement from being appled to that.
2. (Optional) If you have particular packages you want available to your
sandboxed code, install them by activating the sandbox virtual env, and
using pip to install them::$ /bin/pip install -r requirements/sandbox.txt
3. Add a sandbox user::
$ sudo addgroup sandbox
$ sudo adduser --disabled-login sandbox --ingroup sandbox4. Let the web server run the sandboxed Python as sandbox. Create the file
``/etc/sudoers.d/01-sandbox``::$ sudo visudo -f /etc/sudoers.d/01-sandbox
ALL=(sandbox) SETENV:NOPASSWD:/bin/python
ALL=(sandbox) SETENV:NOPASSWD:/usr/bin/find
ALL=(ALL) NOPASSWD:/usr/bin/pkill(Note that the ``find`` binary can run arbitrary code, so this is not a safe sudoers file for non-codejail purposes.)
5. Edit an AppArmor profile. This is a text file specifying the limits on the
sandboxed Python executable. The file must be in ``/etc/apparmor.d`` and must
be named based on the executable, with slashes replaced by dots. For
example, if your sandboxed Python is at ``/home/chris/ve/myproj-sandbox/bin/python``,
then your AppArmor profile must be ``/etc/apparmor.d/home.chris.ve.myproj-sandbox.bin.python``::$ sudo vim /etc/apparmor.d/home.chris.ve.myproj-sandbox.bin.python
#include
/bin/python {
#include
#include/** mr,
/** mr,
# If you have code that the sandbox must be able to access, add lines
# pointing to those directories:
/the/path/to/your/sandbox-packages/** r,/tmp/codejail-*/ rix,
/tmp/codejail-*/** wrix,
}Depending on your OS and AppArmor version you may need to specify a policy
ABI to ensure the restrictions are being correctly applied. Modern ubuntu
versions using AppArmor V3 should use the 3.0 ABI in order to enable
network confinment rules. A profile using the ABI 3.0 would look as
follows::$ sudo vim /etc/apparmor.d/home.chris.ve.myproj-sandbox.bin.python
abi ,
#include/bin/python {
#include
#include/** mr,
/** mr,
# If you have code that the sandbox must be able to access, add lines
# pointing to those directories:
/the/path/to/your/sandbox-packages/** r,/tmp/codejail-*/ rix,
/tmp/codejail-*/** wrix,
}You can also look at the
``apparmor-profiles/home.sandbox.codejail_sandbox-python3.bin.python-abi3``
file which is used for testing for a full profile example.6. Parse the profiles::
$ sudo apparmor_parser
7. Reactivate your project's main virtualenv again.
8. Disable using PAM to set rlimits::
sed -i '/pam_limits.so/d' /etc/pam.d/sudo
Using CodeJail
--------------If your CodeJail is properly configured to use safe_exec, try these
commands at your Python terminal::import codejail.jail_code
codejail.jail_code.configure('python', '/bin/python', user='sandbox')
import codejail.safe_exec
jailed_globals = {}
codejail.safe_exec.safe_exec("output=open('/etc/passwd').read()", jailed_globals)
print(jailed_globals) # should be unreachable if codejail is working properlyThis should fail with an exception.
If you need to change the packages installed into your sandbox's virtualenv,
you'll need to disable AppArmor, because your sandboxed Python doesn't have
the rights to modify the files in its site-packages directory.1. Disable AppArmor for your sandbox::
$ sudo apt-get install apparmor-utils # if you haven't already
$ sudo aa-complain /etc/apparmor.d/home.chris.ve.myproj-sandbox.bin.python2. Install or otherwise change the packages installed::
$ pip install -r requirements/sandbox.txt
3. Re-enable AppArmor for your sandbox::
$ sudo aa-enforce /etc/apparmor.d/home.chris.ve.myproj-sandbox.bin.python
Tests
-----In order to target the sandboxed Python environment(s) you have created on your
system, you must set the following environment variables for testing::$ export CODEJAIL_TEST_USER=
$ export CODEJAIL_TEST_VENV=Run the tests with the Makefile::
$ make tests
If CodeJail is running unsafely, many of the tests will be automatically
skipped, or will fail, depending on whether CodeJail thinks it should be in
safe mode or not.Design
------CodeJail is general-purpose enough that it can be used in a variety of projects
to run untrusted code. It provides two layers:* ``jail_code.py`` offers secure execution of subprocesses. It does this by
running the program in a subprocess managed by AppArmor.* ``safe_exec.py`` offers specialized handling of Python execution, using
jail_code to provide the semantics of Python's exec statement.CodeJail runs programs under AppArmor. AppArmor is an OS-provided feature to
limit the resources programs can access. To run Python code with limited access
to resources, we make a new virtualenv, then name that Python executable in an
AppArmor profile, and restrict resources in that profile. CodeJail will
execute the provided Python program with that executable, and AppArmor will
automatically limit the resources it can access. CodeJail also uses setrlimit
to limit the amount of CPU time and/or memory available to the process.``CodeJail.jail_code`` takes a program to run, files to copy into its
environment, command-line arguments, and a stdin stream. It creates a
temporary directory, creates or copies the needed files, spawns a subprocess to
run the code, and returns the output and exit status of the process.``CodeJail.safe_exec`` emulates Python's exec statement. It takes a chunk of
Python code, and runs it using jail_code, modifying the globals dictionary as a
side-effect. safe_exec does this by serializing the globals into and out of
the subprocess as JSON.Reporting Security Issues
-------------------------Please do not report security issues in public. Please email [email protected].