[REF] base: safe_eval rewrite using AST #138611
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
|
C3POdoo
requested review from
a team,
clbr-odoo,
HydrionBurst and
ryv-odoo
and removed request for
a team
ghost
marked this pull request as draft
ghost
force-pushed
the
master-safe_eval_redo-joda
branch
2 times, most recently
from
eedba39
to
cda00a6
Compare
ghost
deleted a comment from
ghost
force-pushed
the
master-safe_eval_redo-joda
branch
5 times, most recently
from
c413563
to
5bd7a60
Compare
std-odoo
reviewed
Oct 18, 2023
std-odoo
reviewed
Oct 19, 2023
odoo/tools/safe_eval.py
Outdated
Comment on lines
103
to
108
| def __getitem__(self, item): | ||
| self.__type_checker(item) | ||
| return self.__type_checker(self.__obj.__getitem__(item)) | ||
|
|
||
| def __setitem__(self, key, value): | ||
| self.__type_checker(key) |
There was a problem hiding this comment.
SafeWrapper is not used for standad dict, for which types is it useful so ? (__setitem__)
Can't we just don't allow those operation ?
There was a problem hiding this comment.
same, list is in allowed_type, so it won't be encapsulated in SafeWrapper isn't it ?
fn = lambda: [1, 2, 3]
safe_eval('print(fn())', {'fn': fn, 'print': print}
There was a problem hiding this comment.
Edit: nevermind, explore_Subscript always encapsulate in a CheckerWrapper (even if the type is in allowed_type)
There was a problem hiding this comment.
if isinstance(key, str) and "__" in key:
raise NameError(f"Forbidden name '{key}'.")but that part is still useless, because you can call the update method
odoo/tools/safe_eval.py
Outdated
|
|
||
| d = new_dict | ||
|
|
||
| def safe_eval(expr, globals_dict=None, locals_dict=None, mode="eval", |
There was a problem hiding this comment.
If you give in the context
test = [__import__('os')]This will crash, which is good
test[0]
but you can just do that to bypass the check
a, = test
is there anything you can do ?
same for dict if you do list(dict.values()))[0]
Either we fix that issue, or there's no point for explore_Subscript (the less code the better, so we know excatly what is checked and what is not, and we don't think something if safe while there's a way to bypass it)
beledouxdenis
force-pushed
the
master-safe_eval_redo-joda
branch
3 times, most recently
from
8a1652b
to
6213d34
Compare
ghost
force-pushed
the
master-safe_eval_redo-joda
branch
2 times, most recently
from
960b060
to
256d96b
Compare
ghost
marked this pull request as ready for review
C3POdoo
requested review from
a team and
Julien00859
and removed request for
a team
ghost
force-pushed
the
master-safe_eval_redo-joda
branch
from
256d96b
to
95c3bd9
Compare
ghost
force-pushed
the
master-safe_eval_redo-joda
branch
10 times, most recently
from
7ba40bb
to
a7fe9f9
Compare
ghost
force-pushed
the
master-safe_eval_redo-joda
branch
2 times, most recently
from
f8f43ef
to
a4a700f
Compare
added 4 commits
May 14, 2024 08:49
Context
=======
`safe_eval` is Odoo's sandbox, this mechanism allows users and
developpers to write templates, server actions, and more without
worrying about the security risks associated with arbitrary code execution.
The current version of the sandbox heavily relies on Python's bytecodes
and compile-time verifications. This causes 2 major problems:
1) In every release of Python, its bytecodes are updated or modified.
Which makes Odoo unusable until the security / framework team updates the
whitelist of bytecode.
2) Most sandboxing issues we have faced for the last years was due to a
lack of runtime checks (functions inputs (arguments) and outputs
(return values)). All most every times those kind of issues were
fixed with "dirty" hacks such as adding a list of
"unsafe attribute" or adding a wrapper for modules that are exposing
unsafe objects (such as the `sys` module)
Goal of the change
==================
During this rewrite we had a few goals:
1) Retain compatibility with the original version:
* Find a way to keep the old checks (deny dunders, attribute storing
and deleting)
* Keep the same exposed API, limiting the amount of code that needs
to be rewritten as much as possible
2) Add runtime checks to verify that every types passed and returns are
safe by checking their type. The way that the sandbox does it is by
using two set of types. One for the types we allow to instanciate
(the ones that we have absolute trust, most of them are primitive
types such as `str` and `int`) and the ones that we only allow as
instance, this means that you CANNOT instanciate them inside of the
sandbox (for example the sql cursor or the Odoo environement).
3) Eliminate the issues with the `.format` and `.format_map`.
This is a well known issue within the Python security community, if
you want more info : https://lucumr.pocoo.org/2016/12/29/careful-with-str-format/
str.format are now denied in the new safe_eval
ghost
force-pushed
the
master-safe_eval_redo-joda
branch
from
a4a700f
to
2dad991
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Context
safe_evalis Odoo's sandbox, this mechanism allows users and developpers to write templates, server actions, and more without worrying about the security risks associated with arbitrary code execution.The current version of the sandbox heavily relies on Python's bytecodes and compile-time verifications. This causes 2 major problems:
In every release of Python, its bytecodes are updated or modified.
Which makes Odoo unusable until the security / framework team updates the
whitelist of bytecode.
Most sandboxing issues we have faced for the last years was due to a
lack of runtime checks (functions inputs (arguments) and outputs
(return values)). All most every times those kind of issues were
fixed with "dirty" hacks such as adding a list of
"unsafe attribute" or adding a wrapper for modules that are exposing
unsafe objects (such as the
sysmodule)Goal of the change
During this rewrite we had a few goals:
Retain compatibility with the original version:
and deleting)
to be rewritten as much as possible
Add runtime checks to verify that every types passed and returns are
safe by checking their type. The way that the sandbox does it is by
using two set of types. One for the types we allow to instanciate
(the ones that we have absolute trust, most of them are primitive
types such as
strandint) and the ones that we only allow asinstance, this means that you CANNOT instanciate them inside of the
sandbox (for example the sql cursor or the Odoo environement).
Eliminate the issues with the
.formatand.format_map.This is a well known issue within the Python security community, if
you want more info : https://lucumr.pocoo.org/2016/12/29/careful-with-str-format/
Linked with https://github.com/odoo/enterprise/pull/48919