libddwaf 1.24.1.0.3-x86_64-darwin → 1.24.1.2.0-x86_64-darwin

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (15) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.md +19 -1
  3. data/lib/datadog/appsec/waf/context.rb +7 -1
  4. data/lib/datadog/appsec/waf/converter.rb +30 -9
  5. data/lib/datadog/appsec/waf/handle.rb +3 -1
  6. data/lib/datadog/appsec/waf/lib_ddwaf.rb +8 -0
  7. data/lib/datadog/appsec/waf/result.rb +9 -0
  8. data/lib/datadog/appsec/waf/version.rb +1 -1
  9. data/lib/libddwaf.rb +2 -0
  10. data/sig/datadog/appsec/waf/converter.rbs +1 -1
  11. data/sig/datadog/appsec/waf/handle.rbs +1 -1
  12. data/sig/datadog/appsec/waf/lib_ddwaf.rbs +3 -0
  13. data/sig/datadog/appsec/waf/result.rbs +6 -0
  14. data/sig/datadog/appsec/waf.rbs +2 -0
  15. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 4b6086f8024bce863cbf2a9eeb02cd3551c219f529193236d4b991f802c49484
4
- data.tar.gz: d14f7abf62b00ffbd0ccdf914f6b60518d29cee11485148d3ad61df672408e07
3
+ metadata.gz: c307d3853359633c27951b5b01851ff85bcf573e49651877d944eaf6e4d69be6
4
+ data.tar.gz: 368c663258d6f4645195fce8329986d9db27ff3a8a609dca6e1c9c4e02826a06
5
5
  SHA512:
6
- metadata.gz: f0d8bd86adb320a3ce6751de9c05d99bacb7cf46c88e0a07bddf70f6a27e8cbb0233de20c0e99262e27f4f2ad82287ac1a40f093bc33eb3c459a62ecaa0195a9
7
- data.tar.gz: 7c21be204e222420df8c73dfe35a8c30d63f108fc9c7dde8405af57c5c351b0333d8fb59388a9287d6bcfa84ff4936bacef6f117c6e6917e39895f5963cfbdda
6
+ metadata.gz: 8e3f47f9e0ce640144c86411db27a6c0390d6a5194da34b182e328307f689532f1d5527815596ebda5028f44a3296f07033f8b33430bc2eb98a1e64ff83acd6c
7
+ data.tar.gz: d49b9b18b00930368827eedf1db22949857935555bc9bd8a6e3a090d9376ce11f8005451c8f8c03e41556388418f384b92fb138e05fe6dc2fcf96030c30bd839
data/CHANGELOG.md CHANGED
@@ -1,4 +1,22 @@
1
- # Unreleased v1.23.0.0.0
1
+ # Unreleased
2
+
3
+ # 2025-09-02 v1.24.1.2.0
4
+
5
+ ## Added
6
+
7
+ - Add `WAF::Result#input_truncated?` method that indicates that result is based on truncated input objects (see `LibDDWAF::Object#input_truncated?`)
8
+
9
+ # 2025-08-15 v1.24.1.1.0
10
+
11
+ ## Added
12
+
13
+ - Add `LibDDWAF::Object#input_truncated?` method that returns true if the input object was truncated during conversion to libddwaf object
14
+
15
+ ## Changed
16
+
17
+ - Change `Handle#known_addresses` to cache the result
18
+
19
+ # 2025-05-20 v1.24.1.0.0
2
20
 
3
21
  ## Added
4
22
 
data/lib/datadog/appsec/waf/context.rb CHANGED
@@ -74,7 +74,7 @@ module Datadog
74
74
 
75
75
  code = LibDDWAF.ddwaf_run(@context_ptr, persistent_data_obj, ephemeral_data_obj, result_obj, timeout)
76
76
 
77
- Result.new(
77
+ result = Result.new(
78
78
  RESULT_CODE[code],
79
79
  Converter.object_to_ruby(result_obj[:events]),
80
80
  result_obj[:total_runtime],
@@ -82,6 +82,12 @@ module Datadog
82
82
  Converter.object_to_ruby(result_obj[:actions]),
83
83
  Converter.object_to_ruby(result_obj[:derivatives])
84
84
  )
85
+
86
+ if persistent_data_obj.input_truncated? || ephemeral_data_obj.input_truncated?
87
+ result.mark_input_truncated!
88
+ end
89
+
90
+ result
85
91
  ensure
86
92
  LibDDWAF.ddwaf_result_free(result_obj) if result_obj
87
93
  LibDDWAF.ddwaf_object_free(ephemeral_data_obj) if ephemeral_data_obj
data/lib/datadog/appsec/waf/converter.rb CHANGED
@@ -8,7 +8,7 @@ module Datadog
8
8
  module_function
9
9
 
10
10
  # standard:disable Metrics/MethodLength,Metrics/CyclomaticComplexity
11
- def ruby_to_object(val, max_container_size: nil, max_container_depth: nil, max_string_length: nil, coerce: true)
11
+ def ruby_to_object(val, max_container_size: nil, max_container_depth: nil, max_string_length: nil, top_obj: nil, coerce: true)
12
12
  case val
13
13
  when Array
14
14
  obj = LibDDWAF::Object.new
@@ -16,19 +16,25 @@ module Datadog
16
16
  raise ConversionError, "Could not convert into object: #{val}" if res.null?
17
17
 
18
18
  max_index = max_container_size - 1 if max_container_size
19
- unless max_container_depth == 0
19
+ if max_container_depth == 0
20
+ top_obj&.mark_as_input_truncated!
21
+ else
20
22
  val.each.with_index do |e, i|
21
23
  member = Converter.ruby_to_object(
22
24
  e,
23
25
  max_container_size: max_container_size,
24
26
  max_container_depth: (max_container_depth - 1 if max_container_depth),
25
27
  max_string_length: max_string_length,
28
+ top_obj: top_obj || obj,
26
29
  coerce: coerce
27
30
  )
28
31
  e_res = LibDDWAF.ddwaf_object_array_add(obj, member)
29
32
  raise ConversionError, "Could not add to array object: #{e.inspect}" unless e_res
30
33
 
31
- break val if max_index && i >= max_index
34
+ if max_index && i >= max_index
35
+ (top_obj || obj).mark_as_input_truncated!
36
+ break val
37
+ end
32
38
  end
33
39
  end
34
40
 
@@ -39,24 +45,33 @@ module Datadog
39
45
  raise ConversionError, "Could not convert into object: #{val}" if res.null?
40
46
 
41
47
  max_index = max_container_size - 1 if max_container_size
42
- unless max_container_depth == 0
48
+ if max_container_depth == 0
49
+ top_obj&.mark_as_input_truncated!
50
+ else
43
51
  val.each.with_index do |e, i|
44
52
  # for Steep, which doesn't handle |(k, v), i|
45
53
  k = e[0]
46
54
  v = e[1]
47
55
 
48
- k = k.to_s[0, max_string_length] if max_string_length
56
+ if max_string_length && k.length > max_string_length
57
+ k = k.to_s[0, max_string_length]
58
+ (top_obj || obj).mark_as_input_truncated!
59
+ end
49
60
  member = Converter.ruby_to_object(
50
61
  v,
51
62
  max_container_size: max_container_size,
52
63
  max_container_depth: (max_container_depth - 1 if max_container_depth),
53
64
  max_string_length: max_string_length,
65
+ top_obj: top_obj || obj,
54
66
  coerce: coerce
55
67
  )
56
68
  kv_res = LibDDWAF.ddwaf_object_map_addl(obj, k.to_s, k.to_s.bytesize, member)
57
69
  raise ConversionError, "Could not add to map object: #{k.inspect} => #{v.inspect}" unless kv_res
58
70
 
59
- break val if max_index && i >= max_index
71
+ if max_index && i >= max_index
72
+ (top_obj || obj).mark_as_input_truncated!
73
+ break val
74
+ end
60
75
  end
61
76
  end
62
77
 
@@ -64,15 +79,21 @@ module Datadog
64
79
  when String
65
80
  obj = LibDDWAF::Object.new
66
81
  encoded_val = val.to_s.encode(Encoding::UTF_8, invalid: :replace, undef: :replace)
67
- val = encoded_val[0, max_string_length] if max_string_length
68
- str = val.to_s
82
+ if max_string_length && encoded_val.length > max_string_length
83
+ encoded_val = encoded_val[0, max_string_length]
84
+ (top_obj || obj).mark_as_input_truncated!
85
+ end
86
+ str = encoded_val.to_s
69
87
  res = LibDDWAF.ddwaf_object_stringl(obj, str, str.bytesize)
70
88
  raise ConversionError, "Could not convert into object: #{val.inspect}" if res.null?
71
89
 
72
90
  obj
73
91
  when Symbol
74
92
  obj = LibDDWAF::Object.new
75
- val = val.to_s[0, max_string_length] if max_string_length
93
+ if max_string_length
94
+ val = val.to_s[0, max_string_length]
95
+ (top_obj || obj).mark_as_input_truncated!
96
+ end
76
97
  str = val.to_s
77
98
  res = LibDDWAF.ddwaf_object_stringl(obj, str, str.bytesize)
78
99
  raise ConversionError, "Could not convert into object: #{val.inspect}" if res.null?
data/lib/datadog/appsec/waf/handle.rb CHANGED
@@ -37,6 +37,8 @@ module Datadog
37
37
  #
38
38
  # @return [Array<String>] the list of known addresses
39
39
  def known_addresses
40
+ return @known_addresses if defined?(@known_addresses)
41
+
40
42
  ensure_pointer_presence!
41
43
 
42
44
  count = LibDDWAF::UInt32Ptr.new
@@ -44,7 +46,7 @@ module Datadog
44
46
 
45
47
  return [] if count == 0 # list is null
46
48
 
47
- list.get_array_of_string(0, count[:value])
49
+ @known_addresses = list.get_array_of_string(0, count[:value]).compact
48
50
  end
49
51
 
50
52
  private
data/lib/datadog/appsec/waf/lib_ddwaf.rb CHANGED
@@ -136,6 +136,14 @@ module Datadog
136
136
  :valueUnion, ObjectValueUnion,
137
137
  :nbEntries, :uint64,
138
138
  :type, :ddwaf_obj_type
139
+
140
+ def input_truncated?
141
+ @input_truncated == true
142
+ end
143
+
144
+ def mark_as_input_truncated!
145
+ @input_truncated = true
146
+ end
139
147
  end
140
148
 
141
149
  typedef Object.by_ref, :ddwaf_object
data/lib/datadog/appsec/waf/result.rb CHANGED
@@ -15,6 +15,15 @@ module Datadog
15
15
  @timeout = timeout
16
16
  @actions = actions
17
17
  @derivatives = derivatives
18
+ @input_truncated = false
19
+ end
20
+
21
+ def mark_input_truncated!
22
+ @input_truncated = true
23
+ end
24
+
25
+ def input_truncated?
26
+ @input_truncated
18
27
  end
19
28
 
20
29
  def to_h
data/lib/datadog/appsec/waf/version.rb CHANGED
@@ -5,7 +5,7 @@ module Datadog
5
5
  BASE_STRING = "1.24.1"
6
6
  # NOTE: Every change to the `BASE_STRING` should be accompanied
7
7
  # by a reset of the patch version in the `STRING` below.
8
- STRING = "#{BASE_STRING}.0.3"
8
+ STRING = "#{BASE_STRING}.2.0"
9
9
  MINIMUM_RUBY_VERSION = "2.5"
10
10
  end
11
11
  end
data/lib/libddwaf.rb CHANGED
@@ -1 +1,3 @@
1
+ # frozen_string_literal: true
2
+
1
3
  require "datadog/appsec/waf"
data/sig/datadog/appsec/waf/converter.rbs CHANGED
@@ -2,7 +2,7 @@ module Datadog
2
2
  module AppSec
3
3
  module WAF
4
4
  module Converter
5
- def self.ruby_to_object: (top val, ?max_container_size: ::Integer?, ?max_container_depth: ::Integer?, ?max_string_length: ::Integer?, ?coerce: bool?) -> LibDDWAF::Object
5
+ def self.ruby_to_object: (top val, ?max_container_size: ::Integer?, ?max_container_depth: ::Integer?, ?max_string_length: ::Integer?, ?top_obj: LibDDWAF::Object?, ?coerce: bool?) -> LibDDWAF::Object
6
6
 
7
7
  def self.object_to_ruby: (LibDDWAF::Object obj) -> WAF::data
8
8
  end
data/sig/datadog/appsec/waf/handle.rbs CHANGED
@@ -10,7 +10,7 @@ module Datadog
10
10
 
11
11
  def build_context: () -> Context
12
12
 
13
- def known_addresses: () -> ::Array[::String?]
13
+ def known_addresses: () -> known_addresses
14
14
 
15
15
  private
16
16
 
data/sig/datadog/appsec/waf/lib_ddwaf.rbs CHANGED
@@ -58,6 +58,9 @@ module Datadog
58
58
  end
59
59
 
60
60
  class Object < ::FFI::Struct[::FFI::AbstractMemory, untyped]
61
+ def input_truncated?: () -> bool
62
+
63
+ def mark_as_input_truncated!: () -> bool
61
64
  end
62
65
 
63
66
  # setters
data/sig/datadog/appsec/waf/result.rbs CHANGED
@@ -14,6 +14,8 @@ module Datadog
14
14
 
15
15
  @derivatives: WAF::data
16
16
 
17
+ @input_truncated: bool
18
+
17
19
  attr_reader status: ::Symbol
18
20
 
19
21
  attr_reader events: WAF::data
@@ -27,6 +29,10 @@ module Datadog
27
29
  attr_reader derivatives: WAF::data
28
30
 
29
31
  def initialize: (::Symbol status, WAF::data events, ::Float total_runtime, bool timeout, WAF::data actions, WAF::data derivatives) -> void
32
+
33
+ def mark_input_truncated!: () -> bool
34
+
35
+ def input_truncated?: () -> bool
30
36
  end
31
37
  end
32
38
  end
data/sig/datadog/appsec/waf.rbs CHANGED
@@ -2,6 +2,8 @@ module Datadog
2
2
  module AppSec
3
3
  module WAF
4
4
  type data = String | Symbol | Integer | Float | TrueClass | FalseClass | Array[data] | Hash[(String | Symbol | nil), data] | nil
5
+ type known_addresses = ::Array[::String]
6
+ type diagnostics = ::Hash[::String, untyped]
5
7
 
6
8
  def self.version: () -> ::String
7
9
 
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: libddwaf
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.24.1.0.3
4
+ version: 1.24.1.2.0
5
5
  platform: x86_64-darwin
6
6
  authors:
7
7
  - Datadog, Inc.
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2025-07-23 00:00:00.000000000 Z
11
+ date: 2025-09-02 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: ffi