Paper/patches/unapplied/server/0669-Add-root-admin-user-detection.patch

From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001
From: egg82 <eggys82@gmail.com>
Date: Sat, 11 Sep 2021 22:55:14 +0200
Subject: [PATCH] Add root/admin user detection

This patch detects whether or not the server is currently executing as a privileged user and spits out a warning.
The warning serves as a sort-of PSA for newer server admins who don't understand the risks of running as root.
We've seen plenty of bad/malicious plugins hit markets, and there's been a few close-calls with exploits in the past.
Hopefully this helps mitigate some potential damage to servers, even if it is just a warning.

Co-authored-by: Noah van der Aa <ndvdaa@gmail.com>

diff --git a/src/main/java/io/papermc/paper/util/ServerEnvironment.java b/src/main/java/io/papermc/paper/util/ServerEnvironment.java
new file mode 100644
index 0000000000000000000000000000000000000000..6bd0afddbcc461149dfe9a5c7a86fff6ea13a5f1
--- /dev/null
+++ b/src/main/java/io/papermc/paper/util/ServerEnvironment.java
@@ -0,0 +1,40 @@
+package io.papermc.paper.util;
+
+import com.sun.security.auth.module.NTSystem;
+import com.sun.security.auth.module.UnixSystem;
+import org.apache.commons.lang.SystemUtils;
+
+import java.io.IOException;
+import java.io.InputStream;
+import java.util.Set;
+
+public class ServerEnvironment {
+    private static final boolean RUNNING_AS_ROOT_OR_ADMIN;
+    private static final String WINDOWS_HIGH_INTEGRITY_LEVEL = "S-1-16-12288";
+
+    static {
+        if (SystemUtils.IS_OS_WINDOWS) {
+            RUNNING_AS_ROOT_OR_ADMIN = Set.of(new NTSystem().getGroupIDs()).contains(WINDOWS_HIGH_INTEGRITY_LEVEL);
+        } else {
+            boolean isRunningAsRoot = false;
+            if (new UnixSystem().getUid() == 0) {
+                // Due to an OpenJDK bug (https://bugs.openjdk.java.net/browse/JDK-8274721), UnixSystem#getUid incorrectly
+                // returns 0 when the user doesn't have a username. Because of this, we'll have to double-check if the user ID is
+                // actually 0 by running the id -u command.
+                try {
+                    Process process = new ProcessBuilder("id", "-u").start();
+                    process.waitFor();
+                    InputStream inputStream = process.getInputStream();
+                    isRunningAsRoot = new String(inputStream.readAllBytes()).trim().equals("0");
+                } catch (InterruptedException | IOException ignored) {
+                    isRunningAsRoot = false;
+                }
+            }
+            RUNNING_AS_ROOT_OR_ADMIN = isRunningAsRoot;
+        }
+    }
+
+    public static boolean userIsRootOrAdmin() {
+        return RUNNING_AS_ROOT_OR_ADMIN;
+    }
+}
diff --git a/src/main/java/net/minecraft/server/dedicated/DedicatedServer.java b/src/main/java/net/minecraft/server/dedicated/DedicatedServer.java
index 6b4c9ef02931491dd048646ead494892f06504c5..608d860b940dee870a3df3d52efaed5e9eab17cf 100644
--- a/src/main/java/net/minecraft/server/dedicated/DedicatedServer.java
+++ b/src/main/java/net/minecraft/server/dedicated/DedicatedServer.java
@@ -179,6 +179,16 @@ public class DedicatedServer extends MinecraftServer implements ServerInterface
             DedicatedServer.LOGGER.warn("To start the server with more ram, launch it as \"java -Xmx1024M -Xms1024M -jar minecraft_server.jar\"");
         }
 
+        // Paper start - detect running as root
+        if (io.papermc.paper.util.ServerEnvironment.userIsRootOrAdmin()) {
+            DedicatedServer.LOGGER.warn("****************************");
+            DedicatedServer.LOGGER.warn("YOU ARE RUNNING THIS SERVER AS AN ADMINISTRATIVE OR ROOT USER. THIS IS NOT ADVISED.");
+            DedicatedServer.LOGGER.warn("YOU ARE OPENING YOURSELF UP TO POTENTIAL RISKS WHEN DOING THIS.");
+            DedicatedServer.LOGGER.warn("FOR MORE INFORMATION, SEE https://madelinemiller.dev/blog/root-minecraft-server/");
+            DedicatedServer.LOGGER.warn("****************************");
+        }
+        // Paper end - detect running as root
+
         DedicatedServer.LOGGER.info("Loading properties");
         DedicatedServerProperties dedicatedserverproperties = this.settings.getProperties();
Re-readd root/admin user detection (#6703) * Re-readd root/admin user detection * I am dum * Only run id command if needed * Use ProcessBuilder * Link to issue * Rebase Co-authored-by: Madeline Miller <mnmiller1@me.com> 2021-10-09 11:29:05 +02:00			`From 0000000000000000000000000000000000000000 Mon Sep 17 00:00:00 2001`
			`From: egg82 <eggys82@gmail.com>`
			`Date: Sat, 11 Sep 2021 22:55:14 +0200`
			`Subject: [PATCH] Add root/admin user detection`

			`This patch detects whether or not the server is currently executing as a privileged user and spits out a warning.`
			`The warning serves as a sort-of PSA for newer server admins who don't understand the risks of running as root.`
			`We've seen plenty of bad/malicious plugins hit markets, and there's been a few close-calls with exploits in the past.`
			`Hopefully this helps mitigate some potential damage to servers, even if it is just a warning.`

			`Co-authored-by: Noah van der Aa <ndvdaa@gmail.com>`

			`diff --git a/src/main/java/io/papermc/paper/util/ServerEnvironment.java b/src/main/java/io/papermc/paper/util/ServerEnvironment.java`
			`new file mode 100644`
			`index 0000000000000000000000000000000000000000..6bd0afddbcc461149dfe9a5c7a86fff6ea13a5f1`
			`--- /dev/null`
			`+++ b/src/main/java/io/papermc/paper/util/ServerEnvironment.java`
			`@@ -0,0 +1,40 @@`
			`+package io.papermc.paper.util;`
			`+`
			`+import com.sun.security.auth.module.NTSystem;`
			`+import com.sun.security.auth.module.UnixSystem;`
			`+import org.apache.commons.lang.SystemUtils;`
			`+`
			`+import java.io.IOException;`
			`+import java.io.InputStream;`
			`+import java.util.Set;`
			`+`
			`+public class ServerEnvironment {`
			`+ private static final boolean RUNNING_AS_ROOT_OR_ADMIN;`
			`+ private static final String WINDOWS_HIGH_INTEGRITY_LEVEL = "S-1-16-12288";`
			`+`
			`+ static {`
			`+ if (SystemUtils.IS_OS_WINDOWS) {`
			`+ RUNNING_AS_ROOT_OR_ADMIN = Set.of(new NTSystem().getGroupIDs()).contains(WINDOWS_HIGH_INTEGRITY_LEVEL);`
			`+ } else {`
			`+ boolean isRunningAsRoot = false;`
			`+ if (new UnixSystem().getUid() == 0) {`
			`+ // Due to an OpenJDK bug (https://bugs.openjdk.java.net/browse/JDK-8274721), UnixSystem#getUid incorrectly`
			`+ // returns 0 when the user doesn't have a username. Because of this, we'll have to double-check if the user ID is`
			`+ // actually 0 by running the id -u command.`
			`+ try {`
			`+ Process process = new ProcessBuilder("id", "-u").start();`
			`+ process.waitFor();`
			`+ InputStream inputStream = process.getInputStream();`
			`+ isRunningAsRoot = new String(inputStream.readAllBytes()).trim().equals("0");`
			`+ } catch (InterruptedException \| IOException ignored) {`
			`+ isRunningAsRoot = false;`
			`+ }`
			`+ }`
			`+ RUNNING_AS_ROOT_OR_ADMIN = isRunningAsRoot;`
			`+ }`
			`+ }`
			`+`
			`+ public static boolean userIsRootOrAdmin() {`
			`+ return RUNNING_AS_ROOT_OR_ADMIN;`
			`+ }`
			`+}`
			`diff --git a/src/main/java/net/minecraft/server/dedicated/DedicatedServer.java b/src/main/java/net/minecraft/server/dedicated/DedicatedServer.java`
Updated Upstream (Bukkit/CraftBukkit) (#10242) * Updated Upstream (Bukkit/CraftBukkit) Upstream has released updates that appear to apply and compile correctly. This update has not been tested by PaperMC and as with ANY update, please do your own testing Bukkit Changes: a6a9d2a4 Remove some old ApiStatus.Experimental annotations be72314c SPIGOT-7300, PR-829: Add new DamageSource API providing enhanced information about entity damage b252cf05 SPIGOT-7576, PR-970: Add methods in MushroomCow to change stew effects b1c689bd PR-902: Add Server#isLoggingIPs to get log-ips configuration 08f86d1c PR-971: Add Player methods for client-side potion effects 2e3024a9 PR-963: Add API for in-world structures a23292a7 SPIGOT-7530, PR-948: Improve Resource Pack API with new 1.20.3 functionality 1851857b SPIGOT-3071, PR-969: Add entity spawn method with spawn reason cde4c52a SPIGOT-5553, PR-964: Add EntityKnockbackEvent CraftBukkit Changes: 38fd4bd50 Fix accidentally renamed internal damage method 80f0ce4be SPIGOT-7300, PR-1180: Add new DamageSource API providing enhanced information about entity damage 7e43f3b16 SPIGOT-7581: Fix typo in BlockMushroom ea14b7d90 SPIGOT-7576, PR-1347: Add methods in MushroomCow to change stew effects 4c687f243 PR-1259: Add Server#isLoggingIPs to get log-ips configuration 22a541a29 Improve support for per-world game rules cb7dccce2 PR-1348: Add Player methods for client-side potion effects b8d6109f0 PR-1335: Add API for in-world structures 4398a1b5b SPIGOT-7577: Make CraftWindCharge#explode discard the entity e74107678 Fix Crafter maximum stack size 0bb0f4f6a SPIGOT-7530, PR-1314: Improve Resource Pack API with new 1.20.3 functionality 4949f556d SPIGOT-3071, PR-1345: Add entity spawn method with spawn reason 20ac73ca2 PR-1353: Fix Structure#place not working as documented with 0 palette 3c1b77871 SPIGOT-6911, PR-1349: Change max book length in CraftMetaBook 333701839 SPIGOT-7572: Bee nests generated without bees f48f4174c SPIGOT-5553, PR-1336: Add EntityKnockbackEvent 2024-02-11 22:28:00 +01:00			`index 6b4c9ef02931491dd048646ead494892f06504c5..608d860b940dee870a3df3d52efaed5e9eab17cf 100644`
Re-readd root/admin user detection (#6703) * Re-readd root/admin user detection * I am dum * Only run id command if needed * Use ProcessBuilder * Link to issue * Rebase Co-authored-by: Madeline Miller <mnmiller1@me.com> 2021-10-09 11:29:05 +02:00			`--- a/src/main/java/net/minecraft/server/dedicated/DedicatedServer.java`
			`+++ b/src/main/java/net/minecraft/server/dedicated/DedicatedServer.java`
More patchy patched patches 2022-12-07 22:05:01 +01:00			`@@ -179,6 +179,16 @@ public class DedicatedServer extends MinecraftServer implements ServerInterface`
Re-readd root/admin user detection (#6703) * Re-readd root/admin user detection * I am dum * Only run id command if needed * Use ProcessBuilder * Link to issue * Rebase Co-authored-by: Madeline Miller <mnmiller1@me.com> 2021-10-09 11:29:05 +02:00			`DedicatedServer.LOGGER.warn("To start the server with more ram, launch it as \"java -Xmx1024M -Xms1024M -jar minecraft_server.jar\"");`
			`}`

			`+ // Paper start - detect running as root`
			`+ if (io.papermc.paper.util.ServerEnvironment.userIsRootOrAdmin()) {`
			`+ DedicatedServer.LOGGER.warn("****************************");`
			`+ DedicatedServer.LOGGER.warn("YOU ARE RUNNING THIS SERVER AS AN ADMINISTRATIVE OR ROOT USER. THIS IS NOT ADVISED.");`
			`+ DedicatedServer.LOGGER.warn("YOU ARE OPENING YOURSELF UP TO POTENTIAL RISKS WHEN DOING THIS.");`
			`+ DedicatedServer.LOGGER.warn("FOR MORE INFORMATION, SEE https://madelinemiller.dev/blog/root-minecraft-server/");`
			`+ DedicatedServer.LOGGER.warn("****************************");`
			`+ }`
[ci skip] Add more identifying patch comments, merge related patches 2024-01-19 12:30:04 +01:00			`+ // Paper end - detect running as root`
Re-readd root/admin user detection (#6703) * Re-readd root/admin user detection * I am dum * Only run id command if needed * Use ProcessBuilder * Link to issue * Rebase Co-authored-by: Madeline Miller <mnmiller1@me.com> 2021-10-09 11:29:05 +02:00			`+`
			`DedicatedServer.LOGGER.info("Loading properties");`
			`DedicatedServerProperties dedicatedserverproperties = this.settings.getProperties();`