RubyGems - libddwaf - Versions diffs - 1.7.0.0.0-aarch64-linux → 1.8.2.0.0-aarch64-linux - Mend

libddwaf 1.7.0.0.0-aarch64-linux → 1.8.2.0.0-aarch64-linux

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +7 -0
data/lib/datadog/appsec/waf/version.rb +1 -1
data/lib/datadog/appsec/waf.rb +24 -31
data/vendor/libddwaf/{libddwaf-1.7.0-linux-aarch64 → libddwaf-1.8.2-linux-aarch64}/lib/libddwaf.so +0 -0
metadata +3 -3

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: '0879136025596a905f82dbcaf22a6b3c09ad9d9b7dea1ed49ab7e9b14bfefad2'
-  data.tar.gz: 2b54253c18c9b522685936daa6eebdf57e13e59006bc902beaa4af8efd28119a
+  metadata.gz: cb7937e1315eaa2f2f7133a0278fe8284aa3862566b6b58597a3e42d5700ead5
+  data.tar.gz: f65955292f406d2bd62a4b67f6482b81ab2b6c86d72fdad8942ef08fec0dd9fa
 SHA512:
-  metadata.gz: 493c4412b53886a7a71d8a4188ff6d0b84a95e3cdae5b10501fca26927081f96e434c63dc48bb422b7eedcfd7b4eb453628e1baee09a52a6604532a882c90e22
-  data.tar.gz: edfc34aa12fd7b325ebc07e8544b3dfdd5ed55e0554648a25042d3d9cb64641fe3013654b7f4147455be2234dded84bdd9ab472ea75e61844863d3f3e04dd930
+  metadata.gz: b2e83f6faad45458d9ea6812b7151760d19e6916415823b2f365c74345754d6f61c3d53c7549fd89e6eddac4e8170cf6221aaea0dc70c07680c040a44c8e839d
+  data.tar.gz: 1d4cea5c6f7beebee36fbf32340ed85c91b1b9d28051b61fa56479fc0e34822cd5206b4e5d3e0bfe9034b85d7f12580c1eb02012feee328fc9b997c03aabc1b6

data/CHANGELOG.md CHANGED Viewed

@@ -1,3 +1,10 @@
+# 2023-03-03 v1.8.2.0.0
+- Update to libddwaf 1.8.2
+- Added Waf::Handle#merge method
+- Remove Waf::Handle#update_rule_data and Waf::Handle#toggle_rules methods
+- Remove WAF::LibDDWAF.ddwaf_required_rule_data_ids method
 # 2023-02-03 v1.7.0.0.0
 - Update to libddwaf 1.7.0

data/lib/datadog/appsec/waf/version.rb CHANGED Viewed

@@ -2,7 +2,7 @@ module Datadog
   module AppSec
     module WAF
       module VERSION
-        BASE_STRING = '1.7.0'
+        BASE_STRING = '1.8.2'
         STRING = "#{BASE_STRING}.0.0"
         MINIMUM_RUBY_VERSION = '2.1'
       end

data/lib/datadog/appsec/waf.rb CHANGED Viewed

@@ -228,10 +228,10 @@ module Datadog
         attach_function :ddwaf_ruleset_info_free, [:ddwaf_ruleset_info], :void
         attach_function :ddwaf_init, [:ddwaf_rule, :ddwaf_config, :ddwaf_ruleset_info], :ddwaf_handle
+        attach_function :ddwaf_update, [:ddwaf_handle, :ddwaf_object, :ddwaf_ruleset_info], :ddwaf_handle
         attach_function :ddwaf_destroy, [:ddwaf_handle], :void
         attach_function :ddwaf_required_addresses, [:ddwaf_handle, UInt32Ptr], :charptrptr
-        attach_function :ddwaf_required_rule_data_ids, [:ddwaf_handle, UInt32Ptr], :charptrptr
         # updating
@@ -242,9 +242,6 @@ module Datadog
                               :ddwaf_match,                 1
         typedef DDWAF_RET_CODE, :ddwaf_ret_code
-        attach_function :ddwaf_update_rule_data, [:ddwaf_handle, :ddwaf_object], :ddwaf_ret_code
-        attach_function :ddwaf_toggle_rules, [:ddwaf_handle, :ddwaf_object], :ddwaf_ret_code
         # running
         typedef :pointer, :ddwaf_context
@@ -478,9 +475,7 @@ module Datadog
       }
       class Handle
-        attr_reader :handle_obj
-        attr_reader :ruleset_info
+        attr_reader :handle_obj, :ruleset_info, :config
         def initialize(rule, limits: {}, obfuscator: {})
           rule_obj = Datadog::AppSec::WAF.ruby_to_object(rule)
@@ -492,7 +487,6 @@ module Datadog
           if config_obj.null?
             fail LibDDWAF::Error, 'Could not create config struct'
           end
-          retain(config_obj)
           config_obj[:limits][:max_container_size]  = limits[:max_container_size]  || LibDDWAF::DEFAULT_MAX_CONTAINER_SIZE
           config_obj[:limits][:max_container_depth] = limits[:max_container_depth] || LibDDWAF::DEFAULT_MAX_CONTAINER_DEPTH
@@ -501,6 +495,8 @@ module Datadog
           config_obj[:obfuscator][:value_regex]     = FFI::MemoryPointer.from_string(obfuscator[:value_regex]) if obfuscator[:value_regex]
           config_obj[:free_fn] = Datadog::AppSec::WAF::LibDDWAF::ObjectNoFree
+          @config = config_obj
           ruleset_info = LibDDWAF::RuleSetInfo.new
           @handle_obj = Datadog::AppSec::WAF::LibDDWAF.ddwaf_init(rule_obj, config_obj, ruleset_info)
@@ -539,26 +535,35 @@ module Datadog
           list.get_array_of_string(0, count[:value])
         end
-        def update_rule_data(data)
+        def merge(data)
           data_obj = Datadog::AppSec::WAF.ruby_to_object(data, coerce: false)
-          res = Datadog::AppSec::WAF::LibDDWAF.ddwaf_update_rule_data(@handle_obj, data_obj)
+          ruleset_info = LibDDWAF::RuleSetInfo.new
+          new_handle = Datadog::AppSec::WAF::LibDDWAF.ddwaf_update(handle_obj, data_obj, ruleset_info)
-          RESULT_CODE[res]
+          return if new_handle.null?
+          info = {
+            loaded: ruleset_info[:loaded],
+            failed: ruleset_info[:failed],
+            errors: WAF.object_to_ruby(ruleset_info[:errors]),
+            version: ruleset_info[:version],
+          }
+          new_from_handle(new_handle, info, config)
         ensure
           Datadog::AppSec::WAF::LibDDWAF.ddwaf_object_free(data_obj) if data_obj
+          Datadog::AppSec::WAF::LibDDWAF.ddwaf_ruleset_info_free(ruleset_info) if ruleset_info
         end
-        def toggle_rules(map)
-          map_obj = Datadog::AppSec::WAF.ruby_to_object(map, coerce: false)
-          res = Datadog::AppSec::WAF::LibDDWAF.ddwaf_toggle_rules(@handle_obj, map_obj)
+        private
-          RESULT_CODE[res]
-        ensure
-          Datadog::AppSec::WAF::LibDDWAF.ddwaf_object_free(map_obj) if map_obj
+        def new_from_handle(handle_object, info, config)
+          obj = self.class.allocate
+          obj.instance_variable_set(:@handle_obj, handle_object)
+          obj.instance_variable_set(:@ruleset_info, info)
+          obj.instance_variable_set(:@config, config)
+          obj
         end
-        private
         def validate!
           @valid = true
         end
@@ -576,18 +581,6 @@ module Datadog
           fail LibDDWAF::Error, "Attempt to use an invalid instance: #{inspect}"
         end
-        def retained
-          @retained ||= []
-        end
-        def retain(object)
-          retained << object
-        end
-        def release(object)
-          retained.delete(object)
-        end
       end
       class Result

data/vendor/libddwaf/{libddwaf-1.7.0-linux-aarch64 → libddwaf-1.8.2-linux-aarch64}/lib/libddwaf.so RENAMED Viewed

Binary file

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: libddwaf
 version: !ruby/object:Gem::Version
-  version: 1.7.0.0.0
+  version: 1.8.2.0.0
 platform: aarch64-linux
 authors:
 - Datadog, Inc.
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-03-02 00:00:00.000000000 Z
+date: 2023-03-06 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: ffi
@@ -42,7 +42,7 @@ files:
 - lib/datadog/appsec/waf.rb
 - lib/datadog/appsec/waf/version.rb
 - lib/libddwaf.rb
-- vendor/libddwaf/libddwaf-1.7.0-linux-aarch64/lib/libddwaf.so
+- vendor/libddwaf/libddwaf-1.8.2-linux-aarch64/lib/libddwaf.so
 homepage: https://github.com/DataDog/libddwaf-rb
 licenses:
 - BSD-3-Clause