Sandbox Phase 2 - Java Container Feature#568h #592

danidiazd · 2024-09-20T17:49:29Z

Description

- Implemented a Chain of Responsibility with the following filters:

UnescapeJava: Replaces escaped characters that the Frontend must use to send the code to the Backend.
ASCIIFilter: Verifies that the code contains only valid ASCII characters (0-127).
HTMLSanitizer: Sanitizes the code to prevent possible HTML injection attacks.
KeywordFilter: Checks that the code does not contain reserved keywords that could pose a risk during execution.
SecurityFilter: Ensures that the code does not use libraries or modules that could be dangerous for execution.

- Created the DockerExecutor class
The DockerExecutor is responsible for launching a Docker container with a Java image to execute the user's code. It includes a method to terminate the container in case of issues such as infinite loops, and implements AutoCloseable to ensure proper resource management.
Used a openjdk:11-slim and apply a restrictive.policy to more security.

- Created the CodeProcessingManager class
The CodeProcessingManager manages the entire flow of processing user code. It first applies the chain of filters to validate the code, and if the filters pass, it invokes DockerExecutor to execute the code within a container. After execution, it performs the following steps to calculate the score:

Compilation Check: Verifies if the code compiled successfully.
Execution Check: Verifies if the code executed without errors.
Result Comparison: Compares the execution result with the expected output. The scoring logic handles different levels of accuracy:

Exact match with the expected result.
Partial match (i.e., the result contains the expected output).
No match (i.e., the result does not contain the expected output).
Don't compile the code.
Code compile but no execute.

Finally, it generates a ScoreResponse based on these checks and returns it to the controller.

# Conflicts: # itachallenge-score/src/main/java/com/itachallenge/score/controller/ScoreController.java # itachallenge-score/src/main/java/com/itachallenge/score/document/Score.java # itachallenge-score/src/test/java/com/itachallenge/score/controller/ScoreControllerTest.java # itachallenge-score/src/test/java/com/itachallenge/score/repository/IScoreRepositoryTest.java

… mds to refactor image used in the sandbox and explain, restrictive.policy

sonarcloud · 2024-10-07T09:40:58Z

Quality Gate passed

Issues
1 New issue
0 Accepted issues

Measures
0 Security Hotspots
81.1% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

albertocstll70 and others added 30 commits December 13, 2023 11:25

305

3461131

305

2c1a43c

first commit

621770f

delete unused files

04b5cfc

clean imports

31f06d4

clean notes

fded6fd

clean code and cleaned tests

51bce06

Merge branch 'develop' into Feature#305b

d33650e

README_COMPILADOR añadido

abc205e

Clean code

60e2749

Add code explanation

8c1d010

Added name and github to contributors.md

7949ada

Added Auth micro

808000a

Adding endpoint validation to Auth

c9bc6ee

Fix: delete {

578c272

Some improvements0

c4387c5

Merge branch 'develop' into Feature#305b

f90f4da

Tuning code

71b9f65

Added logger

3015927

fixed CodeExecutionService

43e4344

compileAndRunCode Split in methods

4178c7e

Merge branch 'develop' into Feature#305b

964099e

Add String[] args

6172f55

Merge branch 'develop' into Feature#305b

c5b7ad1

Add test for args injection

be757c3

Tests added

449a306

Some modifs at Challenge test load

3c8355f

Small changes readme and challenges.json

15061d5

Add String[] args cast

fce527a

Merge branch 'develop' into Feature#305b

e3c0e7f

danidiazd added 22 commits October 2, 2024 12:08

test

f0effad

Docker integration done

e5c88d5

Docker integration done

953ff3c

test

a00a303

Try to fix

7ff1cf3

Use a default image to testcontainers

7f2a340

Try fix a image default to test

a4ab9d1

Fix a image default to test in CodeProcessingManagerTest

e6bd9e0

Refactor DockerExecutor

6ad45d8

Added more filters and test

de7b998

Added path to security hotspot

cfb01de

Added more test and refactor to clean issues

24ecbd8

fix

07b601a

Refactor logs to clean issues in sonar

a8098f4

Added GlobalHandlerException

e781f29

Fix try with resources

beb1eb1

Added Autocloseable clases to ensure process

04db9c4

Remove useless imports

8328ae9

Change postman_collection, now had a code to execute

0497465

Añadidos md ES y EN para la explicación del Sandbox y su uso.

65c8068

Añadido tambien ejemplo para el postman

1a2e99b

danidiazd requested a review from jonatanvicente October 5, 2024 19:20

danidiazd unassigned audiochemist Oct 5, 2024

danidiazd added 5 commits October 6, 2024 20:59

Added a restrictive.policy, and modify command to apply

7526e75

Refactor test to use openjdk 11 slim

b416c41

Added more parametrized values in DockerExecutor and fix test. Change…

b0e8f05

… mds to refactor image used in the sandbox and explain, restrictive.policy

Refactor application.yml to application-test.yml

a9a3036

refactor policy

e96017c

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Sandbox Phase 2 - Java Container Feature#568h #592

Sandbox Phase 2 - Java Container Feature#568h #592

danidiazd commented Sep 20, 2024 •

edited

Loading

sonarcloud bot commented Oct 7, 2024

Sandbox Phase 2 - Java Container Feature#568h #592

Are you sure you want to change the base?

Sandbox Phase 2 - Java Container Feature#568h #592

Conversation

danidiazd commented Sep 20, 2024 • edited Loading

Description

sonarcloud bot commented Oct 7, 2024

Quality Gate passed

danidiazd commented Sep 20, 2024 •

edited

Loading