permission: add initial environment permission (!48077) · Merge requests · Rodrigo Test / Test Group-nodejs / node

Rodrigo Muino Tomonari requested to merge github/fork/daeyeon/main.feat/permission-env-2 into main May 19, 2023

Add initial environment permission support. This restricts permission to access environment variables through process.env by using --allow-env flag.

usages

Proposed basic usages are as follows:

--allow-env : All environment variables are allowed.
--allow-env=HOST : HOST is allowed.
--allow-env=HOST,PORT : HOST and PORT are allowed.
~~--allow-env=DB_* : Env vars starting with DB_ are allowed.~~
~~--allow-env=DB_*,-DB_PASSWORD : All env vars starting with DB_ except DB_PASSWORD are allowed.~~
~~--allow-env=*,-DB_PASSWORD : All env vars except DB_PASSWORD are allowed.~~

process[env_private_symbol]

This is based on the idea of using a new privileged API for builtins to access the environment variables instead of process.env. It preserves current behaviors of process.env on the child processes and the worker threads by leveraging the existing native traps. This approach required manual changes to all internal uses of it.

WIP:

Removing code parsing patterns related to wildcard and -.
Adding flags to enable full access to envvars.
Updating TCs.
Updating documents.
Seeking possible ways to safely enumeration/cloning of the env object.

Refs: https://github.com/nodejs/security-wg/issues/993

Signed-off-by: Daeyeon Jeong daeyeon.dev@gmail.com

Admin message

Admin message

permission: add initial environment permission

usages

process[env_private_symbol]

Merge request reports