tags:

views:

66

answers:

1
+1  Q: 

Threads permission

Server creates new thread in a threadpool. This thread reads some stuff into buffer and so on and after that, some code executes. I'd want to secure myself by changing permission of thread to lower, before this code which could be unsafe (or it's behavior could be changed ... by hacking and so on...)

I am going (ha... but have nearly no knowledge) to create a kind of "sandbox" for this unsafe code in thread. (Probably for UNIX-like OS, because I have no ideas, how to do that for Windows).

Any ideas how to change threads permission? (I use Boost library). And it would be really great, if there is an ability to define boundaries of memory usage? (Something like - if thread tries use more than 1Mb of stack\heap - something is wrong - kill it).

And one more thing :) - if I use chroot inside thread, I change root dir. for the whole application?

Thanks beforehead.

+5  A: 

There is no way to control permissions on threads of native code in either Unix or Windows -- at least not without kernel hacking. The 'ring' mechanism of the hardware (at least x86) was designed to do something like this -- you would kick the thread into a less privileged ring. However, none of the operating systems has any user-mode support for this. chroot in a thread chroots the entire process.

The only thing you can do, if you have to use native code, is to create a process, not a thread. You can then share memory with mmap, and by using read-only on the mappings you can control the sharing. However, if you have malicious code concerns, the process has to run under a different access identity.

bmargulies  2009-12-27 13:00:29
Thanks. I'll use only chroot after running DB and configs, than.
MInner  2009-12-27 20:30:38
you might want to check on the 'accept' box, if you're planning to ask other questions in the future.
bmargulies  2009-12-27 22:36:10
Probably I've understood something wrong, but it seems to be something like this.4.1.2.2 jail(2) system callfromhttp://www.freebsd.org/doc/en/books/arch-handbook/jail.html ?
MInner  2009-12-28 20:01:18
jail is for processes, not threads.
bmargulies  2009-12-28 20:42:38
okay... I've just looked throgh it and found word "thread" in constructor of jail :)
MInner  2009-12-28 20:45:26
well, I'll look again. It seemed to me to be about processes. But I'm not an expert, and it's a freebsd-only thing. If you can use freebsd, you could try it.
bmargulies  2009-12-28 20:50:59

related questions

Of Memory Management, Heap Corruption, and C++
How do I make a GUI?
Alpha blending sprites in Nintendo DS Homebrew
Thread safe lazy contruction of a singleton in C++
Interview Programming Questions - In house Exam
Link issues (VC6)
What are the barriers to understanding pointers and what can be done to overcome them?
Why are professors or schools picking Java over C++ to teach to students?
What is the best way to create a sparse array in C++
C/C++ library for reading MIDI signals from a USB MIDI device
How do you pack a visual studio c++ project for release?
How to set up unit testing for Visual Studio C++
How do I configure and communicate with a serial port?
Lightweight IDE for Linux
Mapping Stream data to data structures in C#
CPU throttling in C++
Asynchronous multi-direction server-client communication over the same open socket?
Exceptions in C++
Heap corruption under Win32; how to locate?
Build for Windows NT 4.0 using Visual Studio 2005?
C++: Should I use nested classes in this case?
BerkeleyDB Concurrency
GTK implementation of MessageBox
Is gettimeofday() guaranteed to be of microsecond resolution?
How to use the C socket API in C++ on z/OS