public StagingTask(StagingStartMessageRequest message)
{
UhuruSection uhuruSection = (UhuruSection)ConfigurationManager.GetSection("uhuru");
this.TaskId = message.TaskID;
this.Message = message;
this.workspace = new StagingWorkspace(Path.Combine(uhuruSection.DEA.BaseDir, "staging"), message.TaskID);
this.buildpacksDir = Path.GetFullPath(uhuruSection.DEA.Staging.BuildpacksDirectory);
this.stagingTimeout = uhuruSection.DEA.Staging.StagingTimeoutMs;
this.gitExe = Path.GetFullPath(uhuruSection.DEA.Staging.GitExecutable);
var prisonInfo = new ProcessPrisonCreateInfo();
prisonInfo.Id = this.TaskId;
prisonInfo.TotalPrivateMemoryLimit = (long)this.Message.Properties.Resources.MemoryMbytes * 1024 * 1024;
if (uhuruSection.DEA.UseDiskQuota)
{
prisonInfo.DiskQuotaBytes = (long)this.Message.Properties.Resources.DiskMbytes * 1024 * 1024;
prisonInfo.DiskQuotaPath = this.workspace.BaseDir;
}
if (uhuruSection.DEA.UploadThrottleBitsps > 0)
{
prisonInfo.NetworkOutboundRateLimitBitsPerSecond = uhuruSection.DEA.UploadThrottleBitsps;
}
this.prison = new ProcessPrison();
prison.Create(prisonInfo);
}
public void CreatePrison()
{
if (this.Prison.Created)
{
this.Prison.Destroy();
}
this.Lock.EnterWriteLock();
var prisonInfo = new ProcessPrisonCreateInfo();
prisonInfo.TotalPrivateMemoryLimitBytes = this.Properties.MemoryQuotaBytes;
if (this.Properties.UseDiskQuota)
{
prisonInfo.DiskQuotaBytes = this.Properties.DiskQuotaBytes;
prisonInfo.DiskQuotaPath = this.Properties.Directory;
}
if (this.Properties.UploadThrottleBitsps > 0)
{
prisonInfo.NetworkOutboundRateLimitBitsPerSecond = this.Properties.UploadThrottleBitsps;
}
Logger.Info("Creating Process Prisson: {0}", prisonInfo.Id);
this.Prison.Create(prisonInfo);
this.Properties.WindowsPassword = this.Prison.WindowsPassword;
this.Properties.WindowsUserName = this.Prison.WindowsUsername;
this.Properties.InstanceId = this.Prison.Id;
this.Lock.ExitWriteLock();
// Explode the app into its directory and optionally bind its local runtime.
Directory.CreateDirectory(this.Properties.Directory);
DirectoryInfo deploymentDirInfo = new DirectoryInfo(this.Properties.Directory);
DirectorySecurity deploymentDirSecurity = deploymentDirInfo.GetAccessControl();
// Owner is important to account for disk quota
deploymentDirSecurity.SetOwner(new NTAccount(this.Properties.WindowsUserName));
deploymentDirSecurity.SetAccessRule(
new FileSystemAccessRule(
this.Properties.WindowsUserName,
FileSystemRights.Write | FileSystemRights.Read | FileSystemRights.Delete | FileSystemRights.Modify | FileSystemRights.FullControl,
InheritanceFlags.ContainerInherit | InheritanceFlags.ObjectInherit,
PropagationFlags.None | PropagationFlags.InheritOnly,
AccessControlType.Allow));
using (new ProcessPrivileges.PrivilegeEnabler(Process.GetCurrentProcess(), ProcessPrivileges.Privilege.Restore))
{
deploymentDirInfo.SetAccessControl(deploymentDirSecurity);
}
}
static void Main(string[] args)
{
Console.WriteLine("--- PrisonProcess REPL ---\n");
Console.WriteLine("Use the following keys:");
Console.WriteLine("\tc: Create a new cmd prison");
Console.WriteLine("\tn: Create a new notepad prison");
Console.WriteLine("\td: Destroy all prissons");
Console.WriteLine("\tq: Quit");
List <ProcessPrison> prisonss = new List <ProcessPrison>();
DiskQuotaManager.StartQuotaInitialization();
while (!DiskQuotaManager.IsQuotaInitialized())
{
Thread.Sleep(100);
}
var usersDesc = WindowsUsersAndGroups.GetUsersDescription();
foreach (var desc in usersDesc.Values)
{
try
{
var id = ProcessPrison.GetIdFromUserDescription(desc);
var ppci = new ProcessPrisonCreateInfo();
ppci.Id = id;
ppci.TotalPrivateMemoryLimitBytes = 128 * 1024 * 1024;
ppci.DiskQuotaBytes = 128 * 1024 * 1024;
ppci.DiskQuotaPath = @"C:\Users\Public";
// Cannot impersonate the user to create new processes or access the user's env.
ppci.WindowsPassword = "******";
var pp = new ProcessPrison();
pp.Attach(ppci);
prisonss.Add(pp);
}
catch (ArgumentException)
{
}
}
while (true)
{
var key = Console.ReadKey();
if (key.Key == ConsoleKey.Q && key.Modifiers == ConsoleModifiers.Shift)
{
break;
}
switch (key.Key)
{
case ConsoleKey.C:
{
var ppci = new ProcessPrisonCreateInfo();
ppci.TotalPrivateMemoryLimitBytes = 128 * 1000 * 1000;
ppci.DiskQuotaBytes = 128 * 1024 * 1024;
ppci.DiskQuotaPath = @"C:\Users\Public";
ppci.NetworkOutboundRateLimitBitsPerSecond = 80 * 1000;
var pp = new ProcessPrison();
pp.Create(ppci);
pp.SetUsersEnvironmentVariable("prison", pp.Id);
var ri = new ProcessPrisonRunInfo();
ri.Interactive = true;
ri.FileName = @"C:\Windows\System32\cmd.exe";
ri.Arguments = String.Format(" /k title {1} & echo Wedcome to prisson {0}. & echo Running under user {1} & echo Private virtual memory limit: {2} B", pp.Id, pp.WindowsUsername, ppci.TotalPrivateMemoryLimitBytes);
ri.Arguments += " & echo. & echo Cmd bomb for memory test: & echo 'set loop=cmd /k ^%loop^%' & echo 'cmd /k %loop%'";
ri.Arguments += " & echo. & echo Ruby file server for network test: & echo 'rackup -b 'run Rack::Directory.new(\"\")''";
pp.RunProcess(ri);
prisonss.Add(pp);
}
break;
case ConsoleKey.N:
{
var ppci = new ProcessPrisonCreateInfo();
ppci.TotalPrivateMemoryLimitBytes = 128 * 1024 * 1024;
ppci.DiskQuotaBytes = 128 * 1024 * 1024;
ppci.DiskQuotaPath = @"C:\Users\Public";
var pp = new ProcessPrison();
pp.Create(ppci);
pp.SetUsersEnvironmentVariable("prison", pp.Id);
var ri = new ProcessPrisonRunInfo();
ri.Interactive = true;
ri.FileName = @"C:\Windows\System32\notepad.exe";
pp.RunProcess(ri);
prisonss.Add(pp);
}
break;
case ConsoleKey.D:
foreach (var prison in prisonss)
{
prison.Destroy();
}
prisonss.Clear();
break;
case ConsoleKey.Q:
return;
}
}
var createInfo = new ProcessPrisonCreateInfo();
var p = new ProcessPrison();
p.Create(createInfo);
var envs = p.GetUsersEnvironmentVariables();
var runInfo = new ProcessPrisonRunInfo();
runInfo.Interactive = false;
runInfo.FileName = @"C:\Windows\System32\cmd.exe";
runInfo.FileName = @"C:\Windows\System32\PING.EXE";
// runInfo.Arguments = @"/c echo %PATH% & ping 10.0.0.10" ;
runInfo.Arguments = @" /k rackup -b ""run lambda {|env| [200, {'Content-Type'=>'text/html'}, 'Hello World']}"" -P 2345";
runInfo.Arguments = " 10.0.0.10 -t";
runInfo.WorkingDirectory = @"C:\Users\Public";
runInfo.FileName = @"C:\Windows\System32\mspaint.exe";
runInfo.Arguments = "";
p.RunProcess(runInfo);
//p.RunProcess(@"C:\Windows\System32\mspaint.exe");
Console.ReadKey();
p.Destroy();
}
