sh-layer2 1.0.0

Continuum Layer 2: Core Engine
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310

//! # Permission Policy
//!
//! Security policy configuration for the permission system.

use serde::{Deserialize, Serialize};
use std::collections::HashSet;

/// Security level for permission policies
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize, Default)]
pub enum SecurityLevel {
    /// Trust everything - no permission prompts
    Trusted,
    /// Default - prompt for potentially dangerous actions
    #[default]
    Standard,
    /// Strict - prompt for all actions
    Strict,
    /// Paranoid - prompt for all actions and log everything
    Paranoid,
}

/// Rule for allowing or denying actions
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct PermissionRule {
    /// Pattern to match (glob pattern)
    pub pattern: String,
    /// Whether to allow or deny
    pub allow: bool,
    /// Optional description
    pub description: Option<String>,
}

impl PermissionRule {
    /// Create an allow rule
    pub fn allow(pattern: impl Into<String>) -> Self {
        Self {
            pattern: pattern.into(),
            allow: true,
            description: None,
        }
    }

    /// Create a deny rule
    pub fn deny(pattern: impl Into<String>) -> Self {
        Self {
            pattern: pattern.into(),
            allow: false,
            description: None,
        }
    }

    /// Add description
    pub fn with_description(mut self, description: impl Into<String>) -> Self {
        self.description = Some(description.into());
        self
    }

    /// Check if a value matches this rule's pattern
    pub fn matches(&self, value: &str) -> bool {
        // Simple glob matching: * matches anything, ? matches single char
        let pattern_parts: Vec<&str> = self.pattern.split('*').collect();
        if pattern_parts.len() == 1 {
            return value == self.pattern;
        }

        // Check prefix and suffix
        if !value.starts_with(pattern_parts[0]) {
            return false;
        }
        if !value.ends_with(pattern_parts.last().unwrap()) {
            return false;
        }

        // Check middle parts in order
        let mut search_start = pattern_parts[0].len();
        for part in pattern_parts.iter().skip(1).take(pattern_parts.len() - 2) {
            if let Some(pos) = value[search_start..].find(part) {
                search_start += pos + part.len();
            } else {
                return false;
            }
        }

        true
    }
}

/// Permission policy configuration
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct PermissionPolicy {
    /// Security level
    pub level: SecurityLevel,
    /// List of allowed rules
    pub allow_rules: Vec<PermissionRule>,
    /// List of denied rules
    pub deny_rules: Vec<PermissionRule>,
    /// Categories that are always allowed
    pub trusted_categories: HashSet<String>,
    /// Categories that are always denied
    pub blocked_categories: HashSet<String>,
    /// Paths that are trusted (read/write without prompts)
    pub trusted_paths: HashSet<String>,
    /// Paths that are blocked (never allowed)
    pub blocked_paths: HashSet<String>,
    /// URLs that are trusted (network requests without prompts)
    pub trusted_urls: HashSet<String>,
    /// URLs that are blocked
    pub blocked_urls: HashSet<String>,
    /// Commands that are trusted
    pub trusted_commands: HashSet<String>,
    /// Commands that are blocked
    pub blocked_commands: HashSet<String>,
    /// Whether to cache permission decisions
    pub enable_cache: bool,
    /// Cache expiration time in seconds
    pub cache_expire_seconds: u64,
    /// Whether to audit log all decisions
    pub audit_enabled: bool,
    /// Maximum audit entries to keep
    pub max_audit_entries: usize,
}

impl Default for PermissionPolicy {
    fn default() -> Self {
        Self {
            level: SecurityLevel::Standard,
            allow_rules: Vec::new(),
            deny_rules: Vec::new(),
            trusted_categories: HashSet::new(),
            blocked_categories: HashSet::new(),
            trusted_paths: HashSet::new(),
            blocked_paths: Self::default_blocked_paths(),
            trusted_urls: HashSet::new(),
            blocked_urls: HashSet::new(),
            trusted_commands: HashSet::new(),
            blocked_commands: Self::default_blocked_commands(),
            enable_cache: true,
            cache_expire_seconds: 3600, // 1 hour
            audit_enabled: true,
            max_audit_entries: 10000,
        }
    }
}

impl PermissionPolicy {
    /// Create a trusted policy (no prompts)
    pub fn trusted() -> Self {
        Self {
            level: SecurityLevel::Trusted,
            ..Self::default()
        }
    }

    /// Create a strict policy (prompt for everything)
    pub fn strict() -> Self {
        Self {
            level: SecurityLevel::Strict,
            ..Self::default()
        }
    }

    /// Create a paranoid policy (prompt for everything, log everything)
    pub fn paranoid() -> Self {
        Self {
            level: SecurityLevel::Paranoid,
            audit_enabled: true,
            ..Self::strict()
        }
    }

    /// Default blocked paths (sensitive files)
    fn default_blocked_paths() -> HashSet<String> {
        let mut paths = HashSet::new();
        // Environment files
        paths.insert(".env".to_string());
        paths.insert(".env.local".to_string());
        paths.insert(".env.*.local".to_string());
        // Credentials
        paths.insert("**/credentials.json".to_string());
        paths.insert("**/secrets.json".to_string());
        paths.insert("**/api_keys.json".to_string());
        // SSH keys
        paths.insert("~/.ssh/id_rsa".to_string());
        paths.insert("~/.ssh/id_ed25519".to_string());
        // System sensitive files
        paths.insert("/etc/shadow".to_string());
        paths.insert("/etc/passwd".to_string());
        paths
    }

    /// Default blocked commands
    fn default_blocked_commands() -> HashSet<String> {
        let mut commands = HashSet::new();
        // Dangerous commands
        commands.insert("rm -rf /".to_string());
        commands.insert("rm -rf ~".to_string());
        commands.insert("mkfs".to_string());
        commands.insert("dd if=/dev/zero".to_string());
        commands.insert(":(){ :|:& };:".to_string()); // Fork bomb
        commands.insert("chmod 777".to_string());
        commands
    }

    /// Add a trusted path
    pub fn add_trusted_path(mut self, path: impl Into<String>) -> Self {
        self.trusted_paths.insert(path.into());
        self
    }

    /// Add a blocked path
    pub fn add_blocked_path(mut self, path: impl Into<String>) -> Self {
        self.blocked_paths.insert(path.into());
        self
    }

    /// Add a trusted URL
    pub fn add_trusted_url(mut self, url: impl Into<String>) -> Self {
        self.trusted_urls.insert(url.into());
        self
    }

    /// Add a blocked URL
    pub fn add_blocked_url(mut self, url: impl Into<String>) -> Self {
        self.blocked_urls.insert(url.into());
        self
    }

    /// Add a trusted command
    pub fn add_trusted_command(mut self, command: impl Into<String>) -> Self {
        self.trusted_commands.insert(command.into());
        self
    }

    /// Add a blocked command
    pub fn add_blocked_command(mut self, command: impl Into<String>) -> Self {
        self.blocked_commands.insert(command.into());
        self
    }

    /// Check if a path is trusted
    pub fn is_path_trusted(&self, path: &str) -> bool {
        self.trusted_paths
            .iter()
            .any(|p| path.starts_with(p) || PermissionRule::allow(p.clone()).matches(path))
    }

    /// Check if a path is blocked
    pub fn is_path_blocked(&self, path: &str) -> bool {
        self.blocked_paths
            .iter()
            .any(|p| path.starts_with(p) || PermissionRule::deny(p.clone()).matches(path))
    }

    /// Check if an action should be auto-approved based on security level
    pub fn should_auto_approve(&self, action_category: &str) -> bool {
        match self.level {
            SecurityLevel::Trusted => true,
            SecurityLevel::Standard => self.trusted_categories.contains(action_category),
            SecurityLevel::Strict | SecurityLevel::Paranoid => false,
        }
    }

    /// Check if a category is blocked
    pub fn is_category_blocked(&self, category: &str) -> bool {
        self.blocked_categories.contains(category)
    }

    /// Load policy from a TOML file
    pub fn load_from_file(path: &std::path::Path) -> anyhow::Result<Self> {
        let content = std::fs::read_to_string(path)?;
        let policy: Self = toml::from_str(&content)?;
        Ok(policy)
    }

    /// Save policy to a TOML file
    pub fn save_to_file(&self, path: &std::path::Path) -> anyhow::Result<()> {
        let content = toml::to_string_pretty(self)?;
        std::fs::write(path, content)?;
        Ok(())
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_permission_rule_matching() {
        let rule = PermissionRule::allow("/home/user/*.txt");
        assert!(rule.matches("/home/user/test.txt"));
        assert!(rule.matches("/home/user/another.txt"));
        assert!(!rule.matches("/home/other/test.txt"));
    }

    #[test]
    fn test_default_blocked_paths() {
        let policy = PermissionPolicy::default();
        assert!(policy.is_path_blocked(".env"));
        assert!(policy.is_path_blocked("/etc/shadow"));
    }

    #[test]
    fn test_security_level_auto_approve() {
        let trusted_policy = PermissionPolicy::trusted();
        assert!(trusted_policy.should_auto_approve("file_read"));

        let strict_policy = PermissionPolicy::strict();
        assert!(!strict_policy.should_auto_approve("file_read"));
    }
}