restrict 0.2.1

A crate to allow, deny, or trace Linux syscalls with an ergonomic, auto-generated enum customized for your system architecture.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265

pub use crate::{error::SeccompError, syscall::Syscall, wrapper::Action};
use crate::{
    filter::{
        intercept::{InterceptorFilter, InterceptorMap},
        seccomp::{self, SeccompFilter},
        tracer::{TracerFilter, TracerMap},
        RestrictFilter,
    },
    interceptor::Interceptor,
    restrict_counter, restrict_info, restrict_warn,
    tracer::TracingHandle,
    wrapper::{PtraceWrapper, SeccompWrapper, TraceAction},
};
use libc::{raise, SIGSTOP};

#[cfg(feature = "logging")]
use tracing_subscriber::fmt;

/// Restrict policy
pub struct Policy {
    context: Option<SeccompWrapper>,
    pub(crate) seccomp_rules: Vec<SeccompFilter>,
    pub(crate) trace_rules: Vec<TracerFilter>,
    pub(crate) pre_intercept: Vec<InterceptorFilter>,
    pub(crate) post_intercept: Vec<InterceptorFilter>,
    trace: bool,
    verbose: bool,
}
/// Policy implementation
impl Policy {
    /// decclare a new filter with default policy
    fn new(default: Action) -> Result<Self, SeccompError> {
        restrict_info!("Declaring a new policy with the default: {default:?}");
        Ok(Self {
            context: Some(SeccompWrapper::init_context(default)?),
            seccomp_rules: Vec::new(),
            trace_rules: Vec::new(),
            pre_intercept: Vec::new(),
            post_intercept: Vec::new(),
            trace: false,
            verbose: false,
        })
    }

    /// Allow all syscall by default.
    pub fn allow_all() -> Result<Self, SeccompError> {
        restrict_counter!("restrict.policy.default.allow", 1);
        Self::new(Action::Allow)
    }

    /// Deny all syscalls by default.
    pub fn deny_all() -> Result<Self, SeccompError> {
        restrict_counter!("restrict.policy.default.deny", 1);
        Self::new(Action::Kill)
    }

    /// Syscall fail with a custom error no
    pub fn fail_with(&mut self, syscall: Syscall, errno: u16) -> &mut Self {
        restrict_counter!("restrict.policy.rule.fail", 1,
                 "syscall_name" => format!("{:#?}",syscall), 
                 "errno" => errno.to_string());
        restrict_info!("Fail syscall: {syscall:?} with code: {errno}");
        self.seccomp_rules
            .push(seccomp::SeccompFilter::new(syscall, Action::Errno(errno)));
        self
    }

    /// tracing syscalls
    pub fn trace<T>(&mut self, syscall: Syscall, tracer: T) -> &mut Self
    where
        T: Fn(Syscall) -> TraceAction + 'static,
    {
        restrict_counter!("restrict.policy.rule.trace", 1,
                 "syscall_name" => format!("{:#?}",syscall));
        restrict_info!("Trace syscall: {syscall:?}");
        self.trace_rules.push(TracerFilter::new(syscall, tracer));
        self.trace = true;
        self
    }

    /// Intercept syscalls and modify their registers at entry and at entry
    pub fn entry_intercept<T>(&mut self, syscall: Syscall, interceptor: T) -> &mut Self
    where
        T: Fn(Interceptor) -> TraceAction + 'static,
    {
        restrict_counter!("restrict.policy.rule.entry_intercept", 1,
                 "syscall_name" => format!("{:#?}",syscall));
        restrict_info!("intercept syscall: {syscall:?} at entry");
        self.pre_intercept
            .push(InterceptorFilter::new(syscall, interceptor));
        self.trace = true;
        self
    }

    /// Intercept syscall at the exit to modify their return register
    pub fn exit_intercept<T>(&mut self, syscall: Syscall, interceptor: T) -> &mut Self
    where
        T: Fn(Interceptor) -> TraceAction + 'static,
    {
        restrict_counter!("restrict.policy.rule.exit_intercept", 1,
                 "syscall_name" => format!("{:#?}",syscall));
        restrict_info!("Intercept syscall: {syscall:?} at exit");
        self.post_intercept
            .push(InterceptorFilter::new(syscall, interceptor));
        self.trace = true;
        self
    }
    /// allow a syscall
    pub fn allow(&mut self, syscall: Syscall) -> &mut Self {
        restrict_counter!("restrict.policy.rule.allow", 1,
                 "syscall_name" => format!("{:#?}",syscall));
        restrict_info!("Allow syscall: {syscall:?}");
        self.seccomp_rules
            .push(seccomp::SeccompFilter::new(syscall, Action::Allow));
        self
    }

    /// deny a syscall
    pub fn deny(&mut self, syscall: Syscall) -> &mut Self {
        restrict_counter!("restrict.policy.rule.deny", 1,
                 "syscall_name" => format!("{:#?}",syscall));
        self.seccomp_rules
            .push(seccomp::SeccompFilter::new(syscall, Action::Kill));
        self
    }
    ///// disable io-uring bypass
    //pub fn disable_iouring_bypass(&mut self) -> &mut Self {
    //    restrict_counter!("restrict.policy.disaable.iouring", 1);
    //    restrict_warn!("Disable IoUring bypass");
    //    self.deny(Syscall::IoUringEnter)
    //        .deny(Syscall::IoUringSetup)
    //        .deny(Syscall::IoUringRegister)
    //}
    /// apply
    pub fn apply(&mut self) -> Result<(), SeccompError> {
        let mut context = self.context.take().ok_or(SeccompError::Fork)?;
        // in bpf the order of filters is important
        // but we shouldn't care because we ensure no conflicts happen

        // apply seccomp rules
        for filter in self.seccomp_rules.iter() {
            restrict_info!(format!(
                "Applying {:?} filter for {:?}",
                filter.action(),
                filter.syscall()
            ));
            filter.apply(&mut context)?;
        }

        if self.trace {
            // Fork the current process:
            // - The parent enters an event loop to trace system calls made by the child.
            // - The child sets ptrace options and installs the seccomp filter,
            //   then returns immediately to avoid blocking the parent.
            //
            // Important notes:
            // - If the child crashes or receives an unexpected signal, it exits
            //   immediately to prevent leaving behind a zombie process.

            restrict_info!("[+] Forking the current process");

            restrict_counter!("restrict.policy.action.fork", 1);
            let spawned = self.spawn_traced().unwrap();
            match spawned {
                TracingHandle::Child => {
                    // apply seccomp TRACE rule specificallt
                    for filter in self.trace_rules.iter() {
                        restrict_info!(format!(
                            "[+] Applying Traceing filter for {:?}",
                            filter.syscall()
                        ));
                        filter.apply(&mut context)?;
                    }
                    for filter in self.post_intercept.iter() {
                        restrict_info!(format!(
                            "[+] Applying post Intercept filter for {:?}",
                            filter.syscall()
                        ));
                        filter.apply(&mut context)?;
                    }
                    for filter in self.pre_intercept.iter() {
                        restrict_info!(format!(
                            "[+] Applying Pre Intercept filter for {:?}",
                            filter.syscall()
                        ));
                        filter.apply(&mut context)?;
                    }
                    restrict_info!("[Child-process]: tracing is enabled(PTRACE_TRACEME)");
                    restrict_info!(
                        "[Child-process]: Raising SIGSTOP signal to sync with the parent process"
                    );
                    // here tracing is already enabled
                    //
                    //loading the context in the child(only)

                    // - The child raises a SIGSTOP to sync with the parent
                    unsafe { raise(SIGSTOP) };

                    restrict_counter!("restrict.policy.action.child_process.sigstop", 1);
                    // After this point the parent and the child are in sync so we
                    // load the accumulated filters and start tracing
                    context.load()?;

                    restrict_info!("[Child-process]: Synced, LOADING filters succeded");
                }
                TracingHandle::Parent {
                    child_pid,
                    // filters: _,
                } => {
                    // this is more 'verbosy' atm.
                    // here goes the event loop //
                    // wait for sync signal from the child

                    restrict_info!("[Parent-process]: Waiting for sync signal");
                    PtraceWrapper::with_pid(child_pid).wait_for_signal(SIGSTOP)?;
                    PtraceWrapper::with_pid(child_pid).set_traceseccomp_option()?;
                    PtraceWrapper::with_pid(child_pid).syscall_trace()?;

                    restrict_counter!("restrict.policy.action.install_seccompfilters", 1);

                    restrict_info!("[Parent-process]: Synced successfully");
                    // now its finally time for the loop

                    let trace_r = std::mem::take(&mut self.trace_rules);
                    let intercept_r = std::mem::take(&mut self.pre_intercept);
                    let post_intercept_r = std::mem::take(&mut self.post_intercept);

                    let mapped_tracers = TracerMap::from(trace_r);
                    let mapped_intercepters = InterceptorMap::from(intercept_r);
                    let mapped_post_intercepters = InterceptorMap::from(post_intercept_r);

                    restrict_info!("[Parent-process]: Listening to incoming syscalls from child process: {child_pid}");
                    PtraceWrapper::with_pid(child_pid).event_loop(
                        mapped_tracers,
                        mapped_intercepters,
                        mapped_post_intercepters,
                    )?;

                    restrict_counter!("restrict.policy.action.parent.exit", 1);
                    std::process::exit(0);
                }
            }
        } else {
            restrict_info!("[+] Loading Seccomp Context");
            // if there is no tracing just load the filters directly
            context.load()?;
        }
        Ok(())
    }
    /// verbose mode
    pub fn verbose(mut self, enable: bool) -> Self {
        self.verbose = enable;
        #[cfg(not(feature = "logging"))]
        eprintln!("'loading' feature is not enabled for verbose() to work");
        #[cfg(feature = "logging")]
        if enable {
            let _subscriber = fmt::Subscriber::builder()
                .with_writer(std::io::stderr)
                .with_thread_ids(true)
                .compact()
                .init();
        }
        self
    }
}