sqreen 1.18.2-java → 1.19.0-java

data/lib/sqreen/agent.rb

@@ -1,14 +1,18 @@
+# typed: ignore
+
 # Copyright (c) 2015 Sqreen. All Rights Reserved.
 # Please refer to our terms for more information: https://www.sqreen.com/terms.html
 
 require 'sqreen/version'
-require 'sqreen/instrumentation'
 require 'sqreen/session'
 require 'sqreen/runner'
-require 'sqreen/callbacks'
 require 'sqreen/log'
 require 'sqreen/exception'
 require 'sqreen/configuration'
+require 'sqreen/cb'
+require 'sqreen/default_cb'
+require 'sqreen/run_when_called_cb'
+require 'sqreen/framework_cb'
 require 'sqreen/events/attack'
 require 'sqreen/sdk'
 require 'sqreen/dependency/detector'

data/lib/sqreen/attack_blocked.rb

@@ -0,0 +1,19 @@
+# typed: true
+
+# Copyright (c) 2015 Sqreen. All Rights Reserved.
+# Please refer to our terms for more information: https://www.sqreen.com/terms.html
+
+require 'sqreen/exception'
+
+module Sqreen
+  # This exception name is particularly important since it is often seen by
+  # Sqreen users when watching their logs. It should not raise any concern to
+  # them.
+  class AttackBlocked < Sqreen::Exception
+    attr_accessor :redirect_url
+
+    def log_message(msg)
+      Sqreen.log.warn(msg)
+    end
+  end
+end

data/lib/sqreen/backport.rb

@@ -1,3 +1,5 @@
+# typed: strong
+
 # Copyright (c) 2015 Sqreen. All Rights Reserved.
 # Please refer to our terms for more information: https://www.sqreen.com/terms.html
 

data/lib/sqreen/backport/clock_gettime.rb

@@ -0,0 +1,74 @@
+# typed: ignore
+
+# Copyright (c) 2015 Sqreen. All Rights Reserved.
+# Please refer to our terms for more information: https://www.sqreen.com/terms.html
+
+require 'sqreen/backport'
+
+module Sqreen
+  module Backport
+    module ClockGettime
+      class << self
+        def supported?
+          Process.respond_to?(:clock_gettime)
+        end
+      end
+
+      unless supported?
+        require 'ffi'
+
+        class Timespec < FFI::Struct
+          layout :tv_sec => :time_t, :tv_nsec => :long
+        end
+
+        module LibC
+          extend FFI::Library
+          ffi_lib FFI::Library::LIBC
+
+          # TODO: FFI::NotFoundError
+
+          if RUBY_PLATFORM =~ /darwin/
+            attach_function :mach_absolute_time, [], :uint64
+          end
+
+          attach_function :clock_gettime, [:int, :pointer], :int
+        end
+
+        module Constants
+          case RUBY_PLATFORM
+          when /darwin/
+            CLOCK_REALTIME = 0
+            CLOCK_MONOTONIC = 6
+            CLOCK_PROCESS_CPUTIME_ID = 12
+            CLOCK_THERAD_CPUTIME_ID = 16
+          when /linux/
+            CLOCK_REALTIME = 0
+            CLOCK_MONOTONIC = 1
+            CLOCK_PROCESS_CPUTIME_ID = 2
+            CLOCK_THREAD_CPUTIME_ID = 3
+          end
+        end
+
+        def clock_gettime(clock_id, unit = :float_second)
+          unless unit == :float_second
+            raise "Process.clock_gettime: unsupported unit #{unit.inspect}"
+          end
+
+          t = Timespec.new
+          ret = LibC.clock_gettime(clock_id, t.pointer)
+
+          raise SystemCallError, "Errno #{FFI.errno}" if ret == -1
+
+          t[:tv_sec].to_f + t[:tv_nsec].to_f / 1_000_000_000
+        end
+      end
+    end
+  end
+end
+
+unless Sqreen::Backport::ClockGettime.supported?
+  Process.instance_eval do
+    extend Sqreen::Backport::ClockGettime
+    include Sqreen::Backport::ClockGettime::Constants
+  end
+end

data/lib/sqreen/backport/original_name.rb

@@ -1,3 +1,5 @@
+# typed: false
+
 # Copyright (c) 2015 Sqreen. All Rights Reserved.
 # Please refer to our terms for more information: https://www.sqreen.com/terms.html
 

data/lib/sqreen/binding_accessor.rb

@@ -1,14 +1,17 @@
+# typed: false
+
 # Copyright (c) 2015 Sqreen. All Rights Reserved.
 # Please refer to our terms for more information: https://www.sqreen.com/terms.html
 
 require 'strscan'
 require 'sqreen/exception'
-require 'set'
+
+require 'sqreen/binding_accessor/path_elem'
+require 'sqreen/binding_accessor/transforms'
 
 module Sqreen
   # the value located at the given binding
   class BindingAccessor
-    PathElem = Struct.new(:kind, :value)
     attr_reader :path, :expression, :final_transform, :transform_args
 
     # Expression to be accessed
@@ -67,6 +70,7 @@ module Sqreen
     CONSTANT_KIND = 'constant'.freeze
     METHOD_KIND = 'method'.freeze
     INDEX_KIND = 'index'.freeze
+    NIL_KIND = 'nil'.freeze
     SQREEN_VAR_KIND = 'sqreen-variable'.freeze
 
     if binding.respond_to?(:local_variable_get)
@@ -101,6 +105,8 @@ module Sqreen
         current_value.send(component[:value])
       when INDEX_KIND
         current_value[component[:value]]
+      when NIL_KIND
+        current_value
       when SQREEN_VAR_KIND
         resolve_sqreen_variable(component[:value], *env)
       else
@@ -176,6 +182,8 @@ module Sqreen
         PathElem.new(SYMBOL_KIND, @scan[1].to_sym)
       elsif @scan.scan(/'((?:\\.|[^\\'])*)'/)
         PathElem.new(STRING_KIND, @scan[1])
+      elsif @scan.scan(/nil/)
+        PathElem.new(NIL_KIND, nil)
       end
     end
 
@@ -248,110 +256,11 @@ module Sqreen
       end
     end
 
-    # Available final transformations
-    module Transforms
-      def flat_keys(value, max_iter = 1000)
-        return nil if value.nil?
-        seen = Set.new
-        look_into = [value]
-        keys = []
-        idx = 0
-        until look_into.empty? || max_iter <= idx
-          idx += 1
-          val = look_into.pop
-          next unless seen.add?(val.object_id)
-          case val
-          when Hash
-            keys.concat(val.keys)
-            look_into.concat(val.values)
-          when Array
-            look_into.concat(val)
-          else
-            next if val.respond_to?(:seek)
-            val.each { |v| look_into << v } if val.respond_to?(:each)
-          end
-        end
-        keys
-      end
-
-      def flat_values(value, max_iter = 1000)
-        return nil if value.nil?
-        seen = Set.new
-        look_into = [value]
-        values = []
-        idx = 0
-        until look_into.empty? || max_iter <= idx
-          idx += 1
-          val = look_into.shift
-          next unless seen.add?(val.object_id)
-          case val
-          when Hash
-            look_into.concat(val.values)
-          when Array
-            look_into.concat(val)
-          else
-            next if val.respond_to?(:seek)
-            if val.respond_to?(:each)
-              val.each { |v| look_into << v }
-            else
-              values << val
-            end
-          end
-        end
-        values
-      end
-
-      def concat_keys_and_values(value, max_size = nil)
-        return nil if value.nil?
-        values = Set.new
-        max_size = max_size.to_i if max_size
-        res = ''
-        descend(value) do |x|
-          next unless values.add?(x)
-          x = x.to_s
-          return res if max_size && res.size + x.size + 1 > max_size
-          res << "\n" unless res.empty?
-          res << x
-        end
-        res
-      end
-
-      private
-
-      def descend(value, max_iter = 1000)
-        seen = Set.new
-        look_into = [value]
-        idx = 0
-        until look_into.empty? || max_iter <= idx
-          idx += 1
-          val = look_into.pop
-
-          case val
-          when Hash
-            next unless seen.add?(val.object_id)
-            look_into.concat(val.keys)
-            look_into.concat(val.values)
-          when Array
-            next unless seen.add?(val.object_id)
-            look_into.concat(val)
-          else
-            next if val.respond_to?(:seek)
-            if val.respond_to?(:each)
-              next unless seen.add?(val.object_id)
-              val.each { |v| look_into << v }
-            else
-              yield val
-            end
-          end
-        end
-      end
-    end # end module Transforms
-
     include Transforms
     KNOWN_TRANSFORMS = Transforms.public_instance_methods.map(&:to_s)
 
     def transform(value)
       send(@final_transform, value, *@transform_args) if @final_transform
     end
-  end # end class BindingAccessor
+  end
 end

data/lib/sqreen/binding_accessor/path_elem.rb

@@ -0,0 +1,10 @@
+# typed: true
+
+# Copyright (c) 2015 Sqreen. All Rights Reserved.
+# Please refer to our terms for more information: https://www.sqreen.com/terms.html
+
+module Sqreen
+  class BindingAccessor
+    PathElem = Struct.new(:kind, :value)
+  end
+end

data/lib/sqreen/binding_accessor/transforms.rb

@@ -0,0 +1,114 @@
+# typed: true
+
+# Copyright (c) 2015 Sqreen. All Rights Reserved.
+# Please refer to our terms for more information: https://www.sqreen.com/terms.html
+
+require 'set'
+
+module Sqreen
+  class BindingAccessor
+    # Available final transformations
+    module Transforms
+      def flat_keys(value, max_iter = 1000)
+        return nil if value.nil?
+        seen = Set.new
+        look_into = [value]
+        keys = []
+        idx = 0
+        until look_into.empty? || max_iter <= idx
+          idx += 1
+          val = look_into.pop
+          next unless seen.add?(val.object_id)
+          case val
+          when Hash
+            # convert symbols are converted to strings (ARB-60)
+            keys.concat(val.keys.map { |x| sym_to_s(x) })
+            look_into.concat(val.values)
+          when Array
+            look_into.concat(val)
+          else
+            next if val.respond_to?(:seek)
+            val.each { |v| look_into << v } if val.respond_to?(:each)
+          end
+        end
+        keys
+      end
+
+      def flat_values(value, max_iter = 1000)
+        return nil if value.nil?
+        seen = Set.new
+        look_into = [value]
+        values = []
+        idx = 0
+        until look_into.empty? || max_iter <= idx
+          idx += 1
+          val = look_into.shift
+          next unless seen.add?(val.object_id)
+          case val
+          when Hash
+            look_into.concat(val.values)
+          when Array
+            look_into.concat(val)
+          else
+            next if val.respond_to?(:seek)
+            if val.respond_to?(:each)
+              val.each { |v| look_into << v }
+            else
+              values << val
+            end
+          end
+        end
+        values
+      end
+
+      def concat_keys_and_values(value, max_size = nil)
+        return nil if value.nil?
+        values = Set.new
+        max_size = max_size.to_i if max_size
+        res = ''
+        descend(value) do |x|
+          next unless values.add?(x)
+          x = x.to_s
+          return res if max_size && res.size + x.size + 1 > max_size
+          res << "\n" unless res.empty?
+          res << x
+        end
+        res
+      end
+
+      private
+
+      def sym_to_s(value)
+        value.is_a?(Symbol) ? value.to_s : value
+      end
+
+      def descend(value, max_iter = 1000)
+        seen = Set.new
+        look_into = [value]
+        idx = 0
+        until look_into.empty? || max_iter <= idx
+          idx += 1
+          val = look_into.pop
+
+          case val
+          when Hash
+            next unless seen.add?(val.object_id)
+            look_into.concat(val.keys)
+            look_into.concat(val.values)
+          when Array
+            next unless seen.add?(val.object_id)
+            look_into.concat(val)
+          else
+            next if val.respond_to?(:seek)
+            if val.respond_to?(:each)
+              next unless seen.add?(val.object_id)
+              val.each { |v| look_into << v }
+            else
+              yield val
+            end
+          end
+        end
+      end
+    end
+  end
+end

data/lib/sqreen/call_countable.rb

@@ -1,3 +1,5 @@
+# typed: false
+
 # Copyright (c) 2015 Sqreen. All Rights Reserved.
 # Please refer to our terms for more information: https://www.sqreen.com/terms.html
 

data/lib/sqreen/capped_queue.rb

@@ -1,6 +1,10 @@
+# typed: true
+
 # Copyright (c) 2015 Sqreen. All Rights Reserved.
 # Please refer to our terms for more information: https://www.sqreen.com/terms.html
 
+require 'sqreen/log'
+
 module Sqreen
   # A simple size limited queue.
   # When trying to enqueue more than the capacity

data/lib/sqreen/{callbacks.rb → cb.rb}

@@ -1,12 +1,12 @@
+# typed: true
+
 # Copyright (c) 2015 Sqreen. All Rights Reserved.
 # Please refer to our terms for more information: https://www.sqreen.com/terms.html
 
-require 'set'
-require 'sqreen/shared_storage'
+require 'sqreen/exception'
 require 'sqreen/log'
 
 module Sqreen
-
   class CB
     # Callback class.
     #
@@ -87,54 +87,4 @@ module Sqreen
       nil
     end
   end
-  # target_method, position, callback, callback class
-
-  class DefaultCB < CB
-    def pre(_inst, args, _budget = nil, &_block)
-      Sqreen.log.debug "<< #{@klass} #{@method} #{Thread.current}"
-      Sqreen.log.debug args.join ' '
-      # log params
-    end
-
-    def post(_rv, _inst, _args, _budget = nil, &_block)
-      # log "#{rv}"
-      Sqreen.log.debug ">> #{@klass} #{@method} #{Thread.current}"
-    end
-  end
-
-  class RunWhenCalledCB < CB
-    def initialize(klass, method, &block)
-      super(klass, method)
-
-      raise 'missing block' unless block_given?
-      @block = block
-    end
-
-    def pre(_inst, _args, _budget = nil, &_block)
-      # FIXME: implement this removal
-      @remove_me = true
-      @block.call
-    end
-  end
-
-  # Framework-aware callback
-  class FrameworkCB < CB
-    attr_accessor :framework
-
-    def whitelisted?
-      whitelisted = SharedStorage.get(:whitelisted)
-      return whitelisted unless whitelisted.nil?
-      framework && !framework.whitelisted_match.nil?
-    end
-
-    # Record a metric observation
-    # @param category [String] Name of the metric observed
-    # @param key [String] aggregation key
-    # @param observation [Object] data observed
-    # @param at [Time] time when observation was made
-    def record_observation(category, key, observation, at = Time.now.utc)
-      return unless framework
-      framework.observe(:observations, [category, key, observation, at], [], false)
-    end
-  end
 end