Open innocent_app in VSCode*, and the
contents of your .ssh/id_rsa file will be sent over TCP to
localhost:8080. You don't even need to open any files in the project!
*This assumes you have the rust toolchain available on your machine, and the rust-analyzer VSCode plugin.
This is a proof-of-concept of exfiltrating secrets from a developer's machine. Originally, the target was exfiltrate at compile-time, but it became apparent it was possible even before that step, i.e. during pre-processing.
When innocent_app is opened in VSCode, the editor runs enough of the Rust
toolchain to expand the nefarious make_answer! macro, which opens
.ssh/id_rsa and sends its contents to localhost:8080.
- Clone this repo:
git clone https://github.com/lucky/bad_actor_poc.git - Listen on port 8080 locally, for example with
nc -lk 8080 - Open up the
innocent_appin VSCode with rust-analyzer plugin
Once open, VSCode will analyze and index the code, including the expansion of
macros, then you should see the contents of your .ssh/id_rsa private key in
the nc window.
You can trigger the same behavior at compile-time by running cargo build
in the innocent_app directory.
This may affect other editors. VSCode and rust-analyzer were used to confirm the attack vector, but are not exactly responsible for them. Any editor that expands a proc macro can do this.
There may be similar attacks for other languages. For example, it may be possible to attack Java annotation processing.