Permissions bypass exploit

[afinch7]

I found a direct bypass of the file system permissions checks.

The compiler code is currently designed around a privileged operation op_fetch_module_meta_data that can be used to read any file on the host file system or make almost any GET http/https request you want with the hosts connection. The libdeno.send function required to send the request to run said operation is available in the global scope of any code executed in the same context.

Proof of concept

[ry]

Thanks for reporting - makes sense. Only the "compiler" isolate should have access fetch_module_meta_data.

We don't have a great way to decide which Isolate an op request is coming from at the moment. But I'm refactoring this now, and I will add something so we can branch on it.

[afinch7]

After a little thought I decided that It would be a good idea to assign permissions on a per-isolate basis. I already have some working code for this refactor, and it should be beneficial for more than just solving this problem.

[ry]

Fixed in 8c310d3