gaol 0.2.1

OS-level application sandboxing library
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60

// Copyright 2015 The Rust Project Developers. See the COPYRIGHT
// file at the top-level directory of this distribution and at
// http://rust-lang.org/COPYRIGHT.
//
// Licensed under the Apache License, Version 2.0 <LICENSE-APACHE or
// http://www.apache.org/licenses/LICENSE-2.0> or the MIT license
// <LICENSE-MIT or http://opensource.org/licenses/MIT>, at your
// option. This file may not be copied, modified, or distributed
// except according to those terms.

extern crate gaol;

use gaol::profile::{AddressPattern, Operation, OperationSupport, OperationSupportLevel};
use gaol::profile::{PathPattern, Profile};
use gaol::sandbox::{ChildSandbox, ChildSandboxMethods, Command, Sandbox, SandboxMethods};
use std::env;
use std::fs::File;
use std::path::PathBuf;

// Create the sandbox profile.
fn profile() -> Profile {
    // Set up the list of desired operations.
    let mut operations = vec![
        Operation::FileReadAll(PathPattern::Subpath(PathBuf::from("/lib"))),
        Operation::FileReadAll(PathPattern::Literal(PathBuf::from("/etc"))),
        Operation::NetworkOutbound(AddressPattern::All),
        Operation::SystemInfoRead,
    ];

    // Remove operations not supported by this OS. (Otherwise the creation of the profile will
    // fail.)
    operations.retain(|operation| {
        println!("{:?}: {:?}", operation, operation.support());
        match operation.support() {
            OperationSupportLevel::NeverAllowed | OperationSupportLevel::CanBeAllowed => true,
            _ => false,
        }
    });

    Profile::new(operations).unwrap()
}

fn main() {
    match env::args().skip(1).next() {
        Some(ref arg) if arg == "child" => {
            // This is the child process.
            ChildSandbox::new(profile()).activate().unwrap();
            match File::open(&PathBuf::from("/bin/sh")) {
                Err(error) => println!("{:?}", error),
                Ok(_) => panic!("could access /bin/sh"),
            }
        }
        _ => {
            // This is the parent process.
            let mut command = Command::me().unwrap();
            Sandbox::new(profile()).start(command.arg("child")).unwrap().wait().unwrap();
        }
    }
}