mirrors/cosmopolitan
1
0
Fork 0
mirror of https://github.com/jart/cosmopolitan.git synced 2025-03-30 04:18:45 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
cosmopolitan/libc/sysv
History
Justine Tunney 7cf66bc161 Prevent Make from talking to public Internet 
This change introduces the nointernet() function which may be called to
prevent a process and its descendants from communicating with publicly
routable Internet addresses. GNU Make has been modified to always call
this function. In the future Landlock Make will have a way to whitelist
subnets to override this behavior, or disable it entirely. Support is
available for Linux only. Our firewall does not require root access.

Calling nointernet() will return control to the caller inside a new
process that has a SECCOMP BPF filter installed, which traps network
related system calls. Your original process then becomes a permanent
ptrace() supervisor that monitors all processes and threads descending
from the returned child. Whenever a networking system call happens the
kernel will stop the process and wakes up the monitor, which then peeks
into the child memory to read the sockaddr_in to determine if it's ok.

The downside to doing this is that there can be only one supervisor at a
time using ptrace() on a process. So this firewall won't be enabled if
you run make under strace or inside gdb. It also makes testing tricky.
2022-08-12 21:51:39 -07:00
..
calls Prevent Make from talking to public Internet 2022-08-12 21:51:39 -07:00
consts Unbloat the build 2022-08-11 00:15:29 -07:00
errfuns Make improvements 2022-05-28 00:28:09 -07:00
consts.sh Unbloat the build 2022-08-11 00:15:29 -07:00
describeos.greg.c Remove malloc() dependency on pledge() / unveil() 2022-07-24 21:51:37 -07:00
errfun.S Make improvements 2022-05-28 00:28:09 -07:00
errfuns.h Make improvements 2022-05-24 10:58:48 -07:00
errfuns.sh Change license 2020-12-27 17:18:44 -08:00
errno.c Fix stdio regression 2022-05-19 00:51:15 -07:00
errno_location.greg.c Simplify TLS and reduce startup latency 2022-07-18 04:10:54 -07:00
gen.sh Make improvements 2022-05-28 00:28:09 -07:00
macros.internal.h Support thread local storage 2022-05-16 13:20:08 -07:00
README.md Initial import 2020-06-15 07:18:57 -07:00
restorert.S Improve pledge() usability and consistency 2022-08-07 16:18:33 -07:00
strace.greg.c Make some systemic improvements 2022-05-18 16:52:36 -07:00
syscall.S Add MODE=optlinux build mode (#141) 2021-10-14 19:36:49 -07:00
syscalls.sh Prevent Make from talking to public Internet 2022-08-12 21:51:39 -07:00
syscount.S Make some systemic improvements 2022-05-18 16:52:36 -07:00
systemfive.S Show crash reports on SIGSYS 2022-06-23 13:01:01 -07:00
sysv.mk Prove that Makefile is fully defined 2022-08-06 04:05:08 -07:00

README.md

SYNOPSIS

System Five Import Libraries

OVERVIEW

Bell System Five is the umbrella term we use to describe Linux, FreeBSD, OpenBSD, and Mac OS X which all have nearly-identical application binary interfaces that stood the test of time, having definitions nearly the same as those of AT&T back in the 1980's.

Cosmopolitan aims to help you build apps that can endure over the course of decades, just like these systems have: without needing to lift a finger for maintenance churn, broken builds, broken hearts.

The challenge to System V binary compatibility basically boils down to numbers. All these systems agree on what services are provided, but tend to grant them wildly different numbers.

We address this by putting all the numbers in a couple big shell scripts, ask the GNU Assembler to encode them into binaries using an efficient LEB128 encoding, unpacked by _init(), and ref'd via extern const. It gives us good debuggability, and any costs are gained back by fewer branches in wrapper functions.z