tags:

views:

106

answers:

2
+2  Q: 

Using ptrace to write a program supervisor in userspace.

I'll looking for advice/resources to write a program that can intercept system calls from a programm to supervise it's filesystem, network, etc access.

The aim of this is to write an online judge, so that untrusted code can be run safely on a server.

This is on linux, and I would prefer to write C++ or a scripting langauge (ruby, python, etc), and a library would be great!

Thanks.

+3  A: 

This looks like a good place to start. http://www.linuxjournal.com/article/6100

Ganesh  2010-09-04 13:09:14
This seems to be an interesting guide, however I'm more interested in a library that would do all the heavy-lifting behind the scenes. And prefreably let me write in a scripting language.
thomasfedb  2010-09-04 13:48:43
+1  A: 

You can't safely use ptrace() to sandbox a hostile application.

The application can always use multiple threads with deliberate race conditions to alter syscall arguments passed via pointers (eg. a filename) after you've inspected them but before the kernel looks at them.

caf  2010-09-04 14:04:22
Couldn't this be addressed by preventing the child from forking, this happens to be something we want to restrict anyway.
thomasfedb  2010-09-04 16:44:49
While its good to know of caveats, its always best to give positive advice i feel.
thomasfedb  2010-09-04 17:40:50
@thomasfedb: Sure, if you stop both `fork()` and `clone()` that should get you most of the way there (of course, it means people can't submit multithreaded code to your online judge). You will also want to stop access to shared memory segments too. You might still be better off at alternative approaches to the problem - eg. using SELinux for sandboxing.
caf  2010-09-05 02:24:28
@caf thanks. I want to restrict users to one thread anyway, put people on an even footing. And the problems wont benifit from multithreading anyway.
thomasfedb  2010-09-05 03:39:46

related questions

Of Memory Management, Heap Corruption, and C++
How do I make a GUI?
Alpha blending sprites in Nintendo DS Homebrew
Thread safe lazy contruction of a singleton in C++
Interview Programming Questions - In house Exam
Link issues (VC6)
What are the barriers to understanding pointers and what can be done to overcome them?
Why are professors or schools picking Java over C++ to teach to students?
What is the best way to create a sparse array in C++
C/C++ library for reading MIDI signals from a USB MIDI device
How do you pack a visual studio c++ project for release?
How to set up unit testing for Visual Studio C++
How do I configure and communicate with a serial port?
Lightweight IDE for Linux
Mapping Stream data to data structures in C#
CPU throttling in C++
Asynchronous multi-direction server-client communication over the same open socket?
Exceptions in C++
Heap corruption under Win32; how to locate?
Build for Windows NT 4.0 using Visual Studio 2005?
C++: Should I use nested classes in this case?
BerkeleyDB Concurrency
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
How to use the C socket API in C++ on z/OS