Making WebWorkers a safe environment

by

The current code (listed below) has been now in use in the Stackoverflow javascript chat room for a while
and so far the toughest problem was Array(5000000000).join("adasdadadasd") instantly crashing some
browser tabs for me when I was running the code executor bot. Monkeypatching Array.prototype.join seems to have fixed this and the maximum
execution time of 50ms has worked for any other attempt to hog memory or crash the browser.

var global = this;

/* Could possibly create some helper functions here so they are always available when executing code in chat?*/

/* Most extra functions could be possibly unsafe */

var wl = {
    "self": 1,
    "onmessage": 1,
    "postMessage": 1,
    "global": 1,
    "wl": 1,
    "eval": 1,
    "Array": 1,
    "Boolean": 1,
    "Date": 1,
    "Function": 1,
    "Number" : 1,
    "Object": 1,
    "RegExp": 1,
    "String": 1,
    "Error": 1,
    "EvalError": 1,
    "RangeError": 1,
    "ReferenceError": 1,
    "SyntaxError": 1,
    "TypeError": 1,
    "URIError": 1,
    "decodeURI": 1,
    "decodeURIComponent": 1,
    "encodeURI": 1,
    "encodeURIComponent": 1,
    "isFinite": 1,
    "isNaN": 1,
    "parseFloat": 1,
    "parseInt": 1,
    "Infinity": 1,
    "JSON": 1,
    "Math": 1,
    "NaN": 1,
    "undefined": 1
};

Object.getOwnPropertyNames( global ).forEach( function( prop ) {
    if( !wl.hasOwnProperty( prop ) ) {
        Object.defineProperty( global, prop, {
            get : function() {
                throw "Security Exception: cannot access "+prop;
                return 1;
            }, 
            configurable : false
        });    
    }
});

Object.getOwnPropertyNames( global.__proto__ ).forEach( function( prop ) {
    if( !wl.hasOwnProperty( prop ) ) {
        Object.defineProperty( global.__proto__, prop, {
            get : function() {
                throw "Security Exception: cannot access "+prop;
                return 1;
            }, 
            configurable : false
        });    
    }
});

Object.defineProperty( Array.prototype, "join", {

    writable: false,
    configurable: false,
    enumerable: false,

    value: function(old){
        return function(arg){
            if( this.length > 500 || (arg && arg.length > 500 ) ) {
                throw "Exception: too many items";
            }

            return old.apply( this, arguments );
        };
    }(Array.prototype.join)

});


(function(){
    var cvalues = [];

    var console = {
        log: function(){
            cvalues = cvalues.concat( [].slice.call( arguments ) );
        }
    };

    function objToResult( obj ) {
        var result = obj;
        switch( typeof result ) {
            case "string":
                return '"' + result + '"';
                break;
            case "number":
            case "boolean":
            case "undefined":
            case "null":
            case "function":
                return result + "";
                break;
            case "object":
                if( !result ) {
                    return "null";
                }
                else if( result.constructor === Object || result.constructor === Array ) {
                    var type = ({}).toString.call( result );
                    var stringified;
                    try {
                        stringified = JSON.stringify(result);
                    }
                    catch(e) {
                        return ""+e;
                    }
                    return type + " " + stringified;
                }
                else {
                    return ({}).toString.call( result );
                }
                break;

        }

    }

    onmessage = function( event ) {
        "use strict";
        var code = event.data.code;
        var result;
        try {
            result = eval( '"use strict";\n'+code );
        }
        catch(e) {
            postMessage( e.toString() );
            return;
        }
        result = objToResult( result );
        if( cvalues && cvalues.length ) {
            result = result + cvalues.map( function( value, index ) {
                return "Console log "+(index+1)+":" + objToResult(value);
            }).join(" ");
        }
        postMessage( (""+result).substr(0,400) );
    };

})();

More Related Contents:

  1. Web workers without a separate Javascript file?
  2. How to create a Web Worker from a string
  3. Chrome can’t load web worker
  4. Is there a way to create out of DOM elements in Web Worker?
  5. Web Workers and Canvas
  6. Accessing localStorage from a webWorker
  7. Passing objects to a web worker
  8. Is there a faster way to yield to Javascript event loop than setTimeout(0)?
  9. Execute web worker from different origin
  10. How to allow Web Workers to receive new data while it still performing computation?
  11. Web Workers – How To Import Modules
  12. Sharing websocket across browser tabs?
  13. Do Shared Web Workers persist across a single page reload, link navigation
  14. createImageBitmap alternative on Safari
  15. Node.js and CPU intensive requests
  16. how to pass large data to web workers
  17. JavaScript multithreading
  18. How to access jQuery in HTML 5 web worker
  19. Opinion about synchronous requests in web workers
  20. What can service workers do that web workers cannot?
  21. How to append something to an array?
  22. Graph visualization library in JavaScript
  23. How to implement authenticated routes in React Router 4?
  24. Copy image to clipboard
  25. Can I install a NPM package from javascript running in Node.js?
  26. How can I specify the base for Math.log() in JavaScript?
  27. ES2017 – Async vs. Yield
  28. Why is “forEach not a function” for this object?
  29. How do I manipulate the SVG DOM and create elements?
  30. How to return an array from an AJAX call?

Leave a Comment