Node.js sandbox is broken

Question

Node.js sandbox is broken

Ginden opened this issue 8 years ago · comments

start.js file:

var jailed = require('../../../lib/jailed.js');
var api = {};
var plugin = new jailed.Plugin(__dirname + '/plugin.js', api);

plugin.js file:

var require = application.whenConnected.constructor('return process.mainModule.require')();
// do anything with true "require" here

Dmitry Prokashev · Answer 1 · Mon Jun 13 2016 20:09:45 GMT+0800 (China Standard Time)

wow, thanks. will investigate

Dmitry Prokashev · Answer 2 · Mon Jun 13 2016 20:11:29 GMT+0800 (China Standard Time)

What can one do here with the require() by the way? The point of the sandbox is to protect the main application.

Michał Wadas · Answer 3 · Mon Jun 13 2016 20:17:27 GMT+0800 (China Standard Time)

You can require('fs') or require('child_process') and do anything with full user permission (including dumping memory of application).
You can require('http') and overwrite prototypes to track requests.
Or anything else.

Guillem Pascual Guinovart · Answer 4 · Sun Jul 03 2016 08:27:13 GMT+0800 (China Standard Time)

@Ginden Could you test #37 and see if any other method of breaking it exist?
@asvd You could also do constructor('return global') and would have much more than require alone. Let me know if I can do something else on the PR ;)

Dmitry Prokashev · Answer 5 · Sun Jul 03 2016 08:41:59 GMT+0800 (China Standard Time)

Actually I was thinking about running a subprocess in a chrooted environment, and use an OS-level communication channel to avoid shared objects between parent and child processes :-)

Guillem Pascual Guinovart · Answer 6 · Sun Jul 03 2016 08:51:54 GMT+0800 (China Standard Time)

If that subprocess was NodeJS, you would still have access to require, and that basically means to the complete system. The application itself would be safe, of couse, but it would still leave the system open I believe.

Btw, the proposed solution might have some perfomance impact, as it is creating Proxies at each call, Maybe keeping them in a dictionary or something alike would be best (I don't have the time now to do it, maybe in a few days).

Dmitry Prokashev · Answer 7 · Sun Jul 03 2016 08:56:48 GMT+0800 (China Standard Time)

On my opinion the performance impact is secondary as long as the sandbox is protected.

On security, I am only in doubt about getPrototypeOf() method which returns the prototype of an original object. Will need to check this.

Guillem Pascual Guinovart · Answer 8 · Sun Jul 03 2016 08:59:14 GMT+0800 (China Standard Time)

Yes, I indeed haven't had time to test it. I barely tested the constructor based exploit. Some more extensive tests should be done. I might be able to do them in 1-2 weeks.

Michał Wadas · Answer 9 · Mon Jul 04 2016 18:37:00 GMT+0800 (China Standard Time)

Maybe you should reuse/fork Google Caja for this?

Dmitry Prokashev · Answer 10 · Mon Jul 04 2016 18:40:09 GMT+0800 (China Standard Time)

Caja is a separate project which works very differently (parses and evaluates code by itself). Users may choose it instead of Jailed of course.

Tom Yaxley · Answer 11 · Fri Sep 23 2016 15:15:17 GMT+0800 (China Standard Time)

Any potential solution to this issue been discovered?

Denis Y. · Answer 12 · Sun Oct 30 2016 22:13:15 GMT+0800 (China Standard Time)

There's this library:
https://www.npmjs.com/package/vm2

They seem to resolve this issue through usage of proxies

Guillem Pascual Guinovart · Answer 13 · Sun Oct 30 2016 22:43:47 GMT+0800 (China Standard Time)

@lu4 that's basically what I did here: #37
It simply needs some exhaustive testing, which I sadly had no time to do (I checked the basic cases, ie. constructor, and it seemed to work).

Zain Shaikh · Answer 14 · Fri Dec 27 2019 02:15:20 GMT+0800 (China Standard Time)

is there any update on this issue?