Merge pull request #200 from exexute/main

Enhancement: fix dubbo vul check

Author: Nizernizer

.github/workflows/code-check.yml

@@ -94,71 +94,10 @@ jobs:
           password: test
 
       - name: OpenRASP-Vulns-Test
-        run: |
-          cd ..
-
-          echo "download apache-tomcat-8.5.0..."
-          wget https://github.com/exexute/github_action_samples/releases/download/1.0.0/apache-tomcat-8.5.40.zip 1>/dev/null
-          unzip apache-tomcat-8.5.40.zip 1>/dev/null
-
-          echo "copy dongtai agent java to tomcat..."
-          cp DongTai-agent-java/release/iast-agent.jar apache-tomcat-8.5.40/iast/agent.jar
-          cp DongTai-agent-java/release/lib/*.jar apache-tomcat-8.5.40/temp/
-          cd apache-tomcat-8.5.40
-
-          echo "init mysql"
-          mysql -uroot -pyuhjnbGYUI -h127.0.0.1 -e "DROP DATABASE IF EXISTS test;"
-          mysql -uroot -pyuhjnbGYUI -h127.0.0.1 -e "CREATE DATABASE test;"
-          mysql -uroot -pyuhjnbGYUI -h127.0.0.1 -e "CREATE USER 'test'@'%' IDENTIFIED BY 'test';"
-          mysql -uroot -pyuhjnbGYUI -h127.0.0.1 -e "GRANT ALL PRIVILEGES ON *.* TO 'test'@'%' WITH GRANT OPTION;"
-          mysql -uroot -pyuhjnbGYUI -h127.0.0.1 -e "FLUSH PRIVILEGES;"
-          mysql -uroot -pyuhjnbGYUI -h127.0.0.1 -e 'show DATABASES;'
-
-          echo "start catalina and waitting 30s..."
-          export JAVA_TOOL_OPTIONS="-Dproject.create=true -Dproject.version=${{ github.event_name }}-${{ github.run_number }}"
-          ./bin/startup.sh 2>/dev/null
-          sleep 30
-
-          echo "start vulns spider..."
-          ./spider.sh
-
-          echo "waitting for send vuls data"
-          sleep 120
-
-          echo "shutdown tomcat"
-          PID=$(ps aux|grep "org.apache.catalina.startup.Bootstrap start"|grep -v grep |awk '{print $2}')
-          echo "tomcat pid is: $PID"
-          kill $PID
-          ps aux
+        run: bash .github/workflows/scripts/openrasp-test.sh
 
       - name: Benchmark-Vulns-Test
-        run: |
-          cd ..
-          git clone https://github.com/exexute/BenchmarkJava.git
-          cd BenchmarkJava
-          mvn clean package cargo:start -Pdeploywdongtai
-
-          cp ../DongTai-agent-java/release/iast-agent.jar tools/DongTai/dongtai.jar
-          cp ../DongTai-agent-java/release/lib/*.jar target/cargo/installs/apache-tomcat-8.5.70/apache-tomcat-8.5.70/temp
-
-          echo "run benchmark in backend"
-          export JAVA_TOOL_OPTIONS="-Dproject.create=true -Dproject.version=${{ github.event_name }}-${{ github.run_number }}"
-          nohup mvn package cargo:run -Pdeploywdongtai &
-
-          echo "wait for benchmark start..."          
-          sleep 60
-
-          echo "build Crawler"
-          git clone https://github.com/OWASP-Benchmark/BenchmarkUtils.git
-          cd BenchmarkUtils
-          mvn install
-
-          echo "run Crawler.sh"
-          cd ..
-          bash runCrawler.sh
-
-          echo "waiting for report upload..."          
-          sleep 3000
+        run: bash .github/workflows/scripts/benchmark-test.sh
 
 
   Upload-To-OSS:

.github/workflows/scripts/benchmark-test.sh

@@ -0,0 +1,32 @@
+#!/bin/bash
+
+echo "download benchmark source code"
+cd ..
+git clone https://github.com/exexute/BenchmarkJava.git
+cd BenchmarkJava
+
+echo "build benchmark with dongtai"
+mvn clean package cargo:start -Pdeploywdongtai
+
+echo "copy local package to temp directory"
+cp ../DongTai-agent-java/release/iast-agent.jar tools/DongTai/dongtai.jar
+cp ../DongTai-agent-java/release/lib/*.jar target/cargo/installs/apache-tomcat-8.5.70/apache-tomcat-8.5.70/temp
+
+echo "run benchmark in backend"
+export JAVA_TOOL_OPTIONS="-Dproject.create=true -Dproject.version=${{ github.event_name }}-${{ github.run_number }}"
+nohup mvn package cargo:run -Pdeploywdongtai &
+
+echo "wait for benchmark start..."
+sleep 60
+
+echo "build Crawler"
+git clone https://github.com/OWASP-Benchmark/BenchmarkUtils.git
+cd BenchmarkUtils
+mvn install
+
+echo "run Crawler.sh"
+cd ..
+bash runCrawler.sh
+
+echo "waiting for report upload..."
+sleep 3000

.github/workflows/scripts/openrasp-test.sh

@@ -0,0 +1,50 @@
+#!/bin/bash
+cd ..
+
+echo "download apache-tomcat-8.5.0..."
+wget https://github.com/exexute/github_action_samples/releases/download/1.0.0/apache-tomcat-8.5.40.zip 1>/dev/null
+unzip apache-tomcat-8.5.40.zip 1>/dev/null
+
+echo "copy dongtai agent java to tomcat..."
+cp DongTai-agent-java/release/iast-agent.jar apache-tomcat-8.5.40/iast/agent.jar
+cp DongTai-agent-java/release/lib/*.jar apache-tomcat-8.5.40/temp/
+cd apache-tomcat-8.5.40
+
+echo "init mysql"
+mysql -uroot -pyuhjnbGYUI -h127.0.0.1 -e "DROP DATABASE IF EXISTS test;"
+mysql -uroot -pyuhjnbGYUI -h127.0.0.1 -e "CREATE DATABASE test;"
+mysql -uroot -pyuhjnbGYUI -h127.0.0.1 -e "CREATE USER 'test'@'%' IDENTIFIED BY 'test';"
+mysql -uroot -pyuhjnbGYUI -h127.0.0.1 -e "GRANT ALL PRIVILEGES ON *.* TO 'test'@'%' WITH GRANT OPTION;"
+mysql -uroot -pyuhjnbGYUI -h127.0.0.1 -e "FLUSH PRIVILEGES;"
+mysql -uroot -pyuhjnbGYUI -h127.0.0.1 -e 'show DATABASES;'
+
+echo "start catalina and waitting 30s..."
+export JAVA_TOOL_OPTIONS="-Dproject.create=true -Dproject.version=${{ github.event_name }}-${{ github.run_number }}"
+./bin/startup.sh 2>/dev/null
+
+check_times=0
+while [ $check_times -lt 30 ];
+do
+	echo 'checking openrasp api status'
+	curl http://localhost:8080/vulns
+	if [ "$?" == "0" ];then
+		break
+	else
+		let check_times++
+		echo "api status is down, retry $check_times times after 10s..."
+		sleep 10
+	fi
+done
+
+
+echo "start vulns spider..."
+./spider.sh
+
+echo "waitting for send vuls data"
+sleep 120
+
+echo "shutdown tomcat"
+PID=$(ps aux|grep "org.apache.catalina.startup.Bootstrap start"|grep -v grep |awk '{print $2}')
+echo "tomcat pid is: $PID"
+kill $PID
+ps aux

docs/index.md

@@ -30,7 +30,7 @@ For more details see [Basic writing and formatting syntax](https://docs.github.c
 
 ### Jekyll Themes
 
-Your Pages site will use the layout and styles from the Jekyll theme you have selected in your [repository settings](https://github.com/HXSecurity/DongTai-agent-java/settings/pages). The name of this theme is saved in the Jekyll `_config.yml` configuration file.
+Your Pages site will use the layout and styles from the Jekyll theme. The name of this theme is saved in the Jekyll `_config.yml` configuration file.
 
 ### Support or Contact
 

iast-core/src/main/java/com/secnium/iast/core/EngineManager.java

@@ -4,9 +4,7 @@
 import com.secnium.iast.core.handler.IastClassLoader;
 import com.secnium.iast.core.handler.models.IastReplayModel;
 import com.secnium.iast.core.handler.models.MethodEvent;
-import com.secnium.iast.core.middlewarerecognition.IastServer;
-import com.secnium.iast.core.middlewarerecognition.ServerDetect;
-import com.secnium.iast.core.threadlocalpool.BooleanTheadLocal;
+import com.secnium.iast.core.threadlocalpool.BooleanThreadLocal;
 import com.secnium.iast.core.threadlocalpool.IastScopeTracker;
 import com.secnium.iast.core.threadlocalpool.IastServerPort;
 import com.secnium.iast.core.threadlocalpool.IastTaintHashCodes;
@@ -37,16 +35,16 @@ public class EngineManager {
     public static Integer AGENT_ID;
     public static String AGENT_PATH;
 
-    private static final BooleanTheadLocal AGENT_STATUS = new BooleanTheadLocal(false);
-    private static final BooleanTheadLocal TRANSFORM_STATE = new BooleanTheadLocal(false);
-    private static final BooleanTheadLocal ENTER_HTTP_ENTRYPOINT = new BooleanTheadLocal(false);
+    private static final BooleanThreadLocal AGENT_STATUS = new BooleanThreadLocal(false);
+    private static final BooleanThreadLocal TRANSFORM_STATE = new BooleanThreadLocal(false);
+    private static final BooleanThreadLocal ENTER_HTTP_ENTRYPOINT = new BooleanThreadLocal(false);
     public static final RequestContext REQUEST_CONTEXT = new RequestContext();
     public static final IastTrackMap TRACK_MAP = new IastTrackMap();
     public static final IastTaintPool TAINT_POOL = new IastTaintPool();
     public static final IastTaintHashCodes TAINT_HASH_CODES = new IastTaintHashCodes();
     public static final IastScopeTracker SCOPE_TRACKER = new IastScopeTracker();
     private static final IastServerPort LOGIN_LOGIC_WEIGHT = new IastServerPort();
-    private static final BooleanTheadLocal LINGZHI_RUNNING = new BooleanTheadLocal(false);
+    private static final BooleanThreadLocal LINGZHI_RUNNING = new BooleanThreadLocal(false);
     public static IastServer SERVER;
 
     private static final ArrayBlockingQueue<IastReplayModel> REPLAY_QUEUE = new ArrayBlockingQueue<IastReplayModel>(
@@ -82,7 +80,8 @@ public static void turnOffLingzhi() {
      * @return
      */
     public static Boolean isLingzhiRunning() {
-        return LINGZHI_RUNNING.get() != null && LINGZHI_RUNNING.get();
+        Boolean status = LINGZHI_RUNNING.get();
+        return status != null && status;
     }
 
     public static EngineManager getInstance() {
@@ -106,12 +105,6 @@ public static void setInstance() {
     private EngineManager(final PropertyUtils cfg,
             final Instrumentation inst) {
         this.cfg = cfg;
-
-        ServerDetect serverDetect = ServerDetect.getInstance();
-        if (serverDetect.getWebserver() != null) {
-            logger.info("WebServer [ name={}, path={} ]", serverDetect.getWebserver().getName(),
-                    serverDetect.getWebServerPath());
-        }
     }
 
     /**
@@ -263,45 +256,85 @@ public static void enterHttpEntry(Map<String, Object> requestMeta) {
             String newTraceId = ContextManager.getOrCreateGlobalTraceId(null, EngineManager.getAgentId());
             headers.put("dt-traceid", newTraceId);
         }
-        ENTER_HTTP_ENTRYPOINT.enterHttpEntryPoint();
+        ENTER_HTTP_ENTRYPOINT.enterEntry();
         REQUEST_CONTEXT.set(requestMeta);
         TRACK_MAP.set(new HashMap<Integer, MethodEvent>(1024));
         TAINT_POOL.set(new HashSet<Object>());
         TAINT_HASH_CODES.set(new HashSet<Integer>());
     }
 
     /**
-     *
      * @param dubboService
      * @param attachments
-     * @since 1.1.4
+     * @since 1.2.0
      */
     public static void enterDubboEntry(String dubboService, Map<String, String> attachments) {
         if (attachments != null) {
             if (attachments.containsKey(ContextManager.getHeaderKey())) {
-                ContextManager.getOrCreateGlobalTraceId(attachments.get(ContextManager.getHeaderKey()), EngineManager.getAgentId());
+                ContextManager.getOrCreateGlobalTraceId(attachments.get(ContextManager.getHeaderKey()),
+                        EngineManager.getAgentId());
             } else {
                 attachments.put(ContextManager.getHeaderKey(), ContextManager.getSegmentId());
             }
         }
-        if(ENTER_HTTP_ENTRYPOINT.isEnterHttp()){
+        if (ENTER_HTTP_ENTRYPOINT.isEnterEntry()) {
             return;
         }
+
         // todo: register server
-        ENTER_HTTP_ENTRYPOINT.enterHttpEntryPoint();
-        // fixme: 保存请求信息
-        //REQUEST_CONTEXT.set(attachments);
+        if (attachments != null) {
+            Map<String, String> requestHeaders = new HashMap<String, String>(attachments.size());
+            for (Map.Entry<String, String> entry : attachments.entrySet()) {
+                requestHeaders.put(entry.getKey(), entry.getValue());
+            }
+            Map<String, Object> requestMeta = new HashMap<String, Object>(12);
+            requestMeta.put("protocol", "dubbo/" + requestHeaders.get("dubbo"));
+            requestMeta.put("scheme", "dubbo");
+            requestMeta.put("method", "RPC");
+            requestMeta.put("secure", "true");
+            requestMeta.put("requestURL", dubboService.split("\\?")[0]);
+            requestMeta.put("requestURI", requestHeaders.get("path"));
+            requestMeta.put("remoteAddr", "");
+            requestMeta.put("queryString", "");
+            requestMeta.put("headers", requestHeaders);
+            requestMeta.put("body", "");
+            requestMeta.put("contextPath", "");
+            requestMeta.put("replay-request", false);
+
+            REQUEST_CONTEXT.set(requestMeta);
+        }
+
         TRACK_MAP.set(new HashMap<Integer, MethodEvent>(1024));
         TAINT_POOL.set(new HashSet<Object>());
         TAINT_HASH_CODES.set(new HashSet<Integer>());
     }
 
     /**
-     *
      * @return
-     * @since 1.1.4
+     * @since 1.2.0
+     */
+    public static boolean isEnterHttp() {
+        return ENTER_HTTP_ENTRYPOINT.isEnterEntry();
+    }
+
+    /**
+     * @since 1.2.0
+     */
+    public static void leaveDubbo() {
+        SCOPE_TRACKER.leaveDubbo();
+    }
+
+    /**
+     * @since 1.2.0
+     */
+    public static boolean isExitedDubbo() {
+        return SCOPE_TRACKER.isExitedDubbo();
+    }
+
+    /**
+     * @since 1.2.0
      */
-    public static boolean isEnterHttp(){
-        return ENTER_HTTP_ENTRYPOINT.isEnterHttp();
+    public static boolean isFirstLevelDubbo() {
+        return SCOPE_TRACKER.isFirstLevelDubbo();
     }
 }

iast-core/src/main/java/com/secnium/iast/core/middlewarerecognition/IastServer.java renamed to iast-core/src/main/java/com/secnium/iast/core/IastServer.java

@@ -1,4 +1,4 @@
-package com.secnium.iast.core.middlewarerecognition;
+package com.secnium.iast.core;
 
 public class IastServer {
     private String serverAddr;

iast-core/src/main/java/com/secnium/iast/core/PropertyUtils.java

@@ -247,7 +247,7 @@ public boolean isNormalMode() {
     }
 
     /**
-     * After version 1.1.4, change the default server mode to local.
+     * After version 1.2.0, change the default server mode to local.
      * @return server mode
      */
     private String getServerMode() {

iast-core/src/main/java/com/secnium/iast/core/enhance/asm/AsmMethods.java

@@ -197,7 +197,7 @@ static Method getAsmMethod(final Class<?> clazz,
     /**
      * asm method of {@link Injecter#enterDubbo(String)}
      *
-     * @since 1.1.4
+     * @since 1.2.0
      */
     Method ASM_METHOD_Spy$enterDubbo = InnerHelper.getAsmMethod(
             Injecter.class,
@@ -208,7 +208,7 @@ static Method getAsmMethod(final Class<?> clazz,
     /**
      * asm method of {@link Injecter#leaveDubbo(String)}
      *
-     * @since 1.1.4
+     * @since 1.2.0
      */
     Method ASM_METHOD_Spy$leaveDubbo = InnerHelper.getAsmMethod(
             Injecter.class,
@@ -219,7 +219,7 @@ static Method getAsmMethod(final Class<?> clazz,
     /**
      * asm method of {@link Injecter#isFirstLevelDubbo(String)}
      *
-     * @since 1.1.4
+     * @since 1.2.0
      */
     Method ASM_METHOD_Spy$isFirstLevelDubbo = InnerHelper.getAsmMethod(
             Injecter.class,

iast-core/src/main/java/com/secnium/iast/core/enhance/plugins/framework/dubbo/DubboAdapter.java

@@ -34,8 +34,6 @@ public MethodVisitor visitMethod(final int access, final String name, final Stri
 
             mv = new DubboAdviceAdapter(mv, access, name, desc, signCode, context);
             transformed = true;
-        }
-        if (transformed) {
             if (logger.isDebugEnabled()) {
                 logger.debug("rewrite method {}.{} for listener[match={}]", context.getClassName(), name, context.getMatchClassName());
             }