contrast-agent 6.3.0 → 6.4.0

data/proto/rpc.proto

@@ -0,0 +1,71 @@
+// Copyright (c) 2009 Shardul Deo
+//
+// Permission is hereby granted, free of charge, to any person obtaining a copy
+// of this software and associated documentation files (the "Software"), to deal
+// in the Software without restriction, including without limitation the rights
+// to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+// copies of the Software, and to permit persons to whom the Software is
+// furnished to do so, subject to the following conditions:
+//
+// The above copyright notice and this permission notice shall be included in
+// all copies or substantial portions of the Software.
+//
+// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+// THE SOFTWARE.
+
+// Authors: Shardul Deo, BJ Neilsen
+//
+// Protobufs needed for socket rpcs.
+
+syntax = "proto2";
+
+package protobuf.socketrpc;
+
+message Request
+{
+  required string service_name = 1;             // Fully- qualified Service class name
+  required string method_name = 2;              // Service method to invoke
+  optional bytes request_proto = 3;             // Serialized request bytes
+  optional string caller = 4;                   // Calling hostname or address
+  repeated Header headers = 5;                  // General purpose request headers
+}
+
+message Response
+{
+  optional bytes response_proto = 1;            // Serialized response
+  optional string error = 2;                    // Error message, if any
+  optional bool callback = 3 [default = false]; // Was callback invoked (not sure what this is for)
+  optional ErrorReason error_reason = 4;        // Error Reason
+  optional string server = 5;                   // Server hostname or address
+}
+
+message Header {
+  required string key = 1;
+  optional string value = 2;
+}
+
+// Possible error reasons
+// The server-side errors are returned in the response from the server.
+// The client-side errors are returned by the client-side code when it doesn't
+// have a response from the server.
+enum ErrorReason
+{
+  // Server-side errors
+  BAD_REQUEST_DATA = 0;                         // Server received bad request data
+  BAD_REQUEST_PROTO = 1;                        // Server received bad request proto
+  SERVICE_NOT_FOUND = 2;                        // Service not found on server
+  METHOD_NOT_FOUND = 3;                         // Method not found on server
+  RPC_ERROR = 4;                                // Rpc threw exception on server
+  RPC_FAILED = 5;                               // Rpc failed on server
+
+  // Client-side errors (these are returned by the client-side code)
+  INVALID_REQUEST_PROTO = 6;                    // Rpc was called with invalid request proto
+  BAD_RESPONSE_PROTO = 7;                       // Server returned a bad response proto
+  UNKNOWN_HOST = 8;                             // Could not find supplied host
+  IO_ERROR = 9;                                 // I/O error while communicating with server
+}

data/ruby-agent.gemspec

@@ -114,8 +114,8 @@ end
 # corresponding update to the fake gem server data in TeamServer.
 def self.add_dependencies spec
   spec.add_dependency 'ougai', '>= 1.8', '< 3.0.0'
-  spec.add_dependency 'protobuf', '~> 3.10'
   spec.add_dependency 'rack', '~> 2.0'
+  spec.add_dependency 'activesupport', '>= 3.2' # TODO: RUBY-1438 remove w/ protobuf code
 end
 
 # Enumerate the files required to build the Agent.

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: contrast-agent
 version: !ruby/object:Gem::Version
-  version: 6.3.0
+  version: 6.4.0
 platform: ruby
 authors:
 - galen.palmer@contrastsecurity.com
@@ -13,7 +13,7 @@ authors:
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2022-06-06 00:00:00.000000000 Z
+date: 2022-06-08 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -602,33 +602,33 @@ dependencies:
       - !ruby/object:Gem::Version
         version: 3.0.0
 - !ruby/object:Gem::Dependency
-  name: protobuf
+  name: rack
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.10'
+        version: '2.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.10'
+        version: '2.0'
 - !ruby/object:Gem::Dependency
-  name: rack
+  name: activesupport
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '2.0'
+        version: '3.2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
-        version: '2.0'
+        version: '3.2'
 description: This gem instantiates a Rack middleware for rack-based web applications
   in order to provide Interactive Application Security Testing and Protection.
 email:
@@ -1273,6 +1273,67 @@ files:
 - lib/contrast/utils/telemetry_identifier.rb
 - lib/contrast/utils/thread_tracker.rb
 - lib/contrast/utils/timer.rb
+- lib/protobuf.rb
+- lib/protobuf/code_generator.rb
+- lib/protobuf/decoder.rb
+- lib/protobuf/deprecation.rb
+- lib/protobuf/descriptors.rb
+- lib/protobuf/descriptors/google/protobuf/compiler/plugin.pb.rb
+- lib/protobuf/descriptors/google/protobuf/descriptor.pb.rb
+- lib/protobuf/encoder.rb
+- lib/protobuf/enum.rb
+- lib/protobuf/exceptions.rb
+- lib/protobuf/field.rb
+- lib/protobuf/field/base_field.rb
+- lib/protobuf/field/base_field_object_definitions.rb
+- lib/protobuf/field/bool_field.rb
+- lib/protobuf/field/bytes_field.rb
+- lib/protobuf/field/double_field.rb
+- lib/protobuf/field/enum_field.rb
+- lib/protobuf/field/field_array.rb
+- lib/protobuf/field/field_hash.rb
+- lib/protobuf/field/fixed32_field.rb
+- lib/protobuf/field/fixed64_field.rb
+- lib/protobuf/field/float_field.rb
+- lib/protobuf/field/int32_field.rb
+- lib/protobuf/field/int64_field.rb
+- lib/protobuf/field/integer_field.rb
+- lib/protobuf/field/message_field.rb
+- lib/protobuf/field/sfixed32_field.rb
+- lib/protobuf/field/sfixed64_field.rb
+- lib/protobuf/field/signed_integer_field.rb
+- lib/protobuf/field/sint32_field.rb
+- lib/protobuf/field/sint64_field.rb
+- lib/protobuf/field/string_field.rb
+- lib/protobuf/field/uint32_field.rb
+- lib/protobuf/field/uint64_field.rb
+- lib/protobuf/field/varint_field.rb
+- lib/protobuf/generators/base.rb
+- lib/protobuf/generators/enum_generator.rb
+- lib/protobuf/generators/extension_generator.rb
+- lib/protobuf/generators/field_generator.rb
+- lib/protobuf/generators/file_generator.rb
+- lib/protobuf/generators/group_generator.rb
+- lib/protobuf/generators/message_generator.rb
+- lib/protobuf/generators/option_generator.rb
+- lib/protobuf/generators/printable.rb
+- lib/protobuf/generators/service_generator.rb
+- lib/protobuf/lifecycle.rb
+- lib/protobuf/logging.rb
+- lib/protobuf/message.rb
+- lib/protobuf/message/fields.rb
+- lib/protobuf/message/serialization.rb
+- lib/protobuf/optionable.rb
+- lib/protobuf/tasks.rb
+- lib/protobuf/tasks/compile.rake
+- lib/protobuf/varint.rb
+- lib/protobuf/varint_pure.rb
+- lib/protobuf/version.rb
+- lib/protobuf/wire_type.rb
+- proto/dynamic_discovery.proto
+- proto/google/protobuf/compiler/plugin.proto
+- proto/google/protobuf/descriptor.proto
+- proto/rpc.proto
 - resources/assess/policy.json
 - resources/deadzone/policy.json
 - resources/inventory/policy.json