RubyGems - sqreen - Versions diffs - 1.18.2-java → 1.19.0-java - Mend

sqreen 1.18.2-java → 1.19.0-java

Files changed (184) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +35 -0
data/LICENSE +3 -0
data/lib/sqreen.rb +2 -0
data/lib/sqreen/actions.rb +13 -337
data/lib/sqreen/actions/actions_index.rb +16 -0
data/lib/sqreen/actions/base.rb +104 -0
data/lib/sqreen/actions/block_ip.rb +34 -0
data/lib/sqreen/actions/block_user.rb +46 -0
data/lib/sqreen/actions/ip_range_indexed_action_class.rb +16 -0
data/lib/sqreen/actions/ip_ranges_index.rb +57 -0
data/lib/sqreen/actions/redirect_ip.rb +42 -0
data/lib/sqreen/actions/redirect_user.rb +47 -0
data/lib/sqreen/actions/repository.rb +43 -0
data/lib/sqreen/actions/unknown_action_type.rb +20 -0
data/lib/sqreen/actions/user_action_class.rb +16 -0
data/lib/sqreen/actions/users_index.rb +35 -0
data/lib/sqreen/agent.rb +6 -2
data/lib/sqreen/attack_blocked.rb +19 -0
data/lib/sqreen/backport.rb +2 -0
data/lib/sqreen/backport/clock_gettime.rb +74 -0
data/lib/sqreen/backport/original_name.rb +2 -0
data/lib/sqreen/binding_accessor.rb +11 -102
data/lib/sqreen/binding_accessor/path_elem.rb +10 -0
data/lib/sqreen/binding_accessor/transforms.rb +114 -0
data/lib/sqreen/call_countable.rb +2 -0
data/lib/sqreen/capped_queue.rb +4 -0
data/lib/sqreen/{callbacks.rb → cb.rb} +3 -53
data/lib/sqreen/{callback_tree.rb → cb_tree.rb} +4 -2
data/lib/sqreen/condition_evaluator.rb +24 -5
data/lib/sqreen/conditionable.rb +2 -0
data/lib/sqreen/configuration.rb +19 -0
data/lib/sqreen/context.rb +2 -0
data/lib/sqreen/default_cb.rb +22 -0
data/lib/sqreen/deferred_logger.rb +65 -0
data/lib/sqreen/deliveries.rb +12 -0
data/lib/sqreen/deliveries/batch.rb +9 -1
data/lib/sqreen/deliveries/simple.rb +7 -0
data/lib/sqreen/dependency.rb +3 -1
data/lib/sqreen/dependency/detector.rb +22 -14
data/lib/sqreen/dependency/libsqreen.rb +32 -0
data/lib/sqreen/dependency/new_relic.rb +2 -0
data/lib/sqreen/dependency/rack.rb +10 -5
data/lib/sqreen/dependency/rails.rb +8 -0
data/lib/sqreen/dependency/sentry.rb +2 -0
data/lib/sqreen/dependency/sinatra.rb +58 -14
data/lib/sqreen/encoding_sanitizer.rb +2 -0
data/lib/sqreen/error_handling_middleware.rb +32 -0
data/lib/sqreen/event.rb +4 -0
data/lib/sqreen/events/attack.rb +4 -0
data/lib/sqreen/events/remote_exception.rb +2 -0
data/lib/sqreen/events/request_record.rb +13 -56
data/lib/sqreen/exception.rb +11 -40
data/lib/sqreen/formatter_with_tid.rb +47 -0
data/lib/sqreen/framework_cb.rb +30 -0
data/lib/sqreen/frameworks.rb +9 -0
data/lib/sqreen/frameworks/generic.rb +22 -2
data/lib/sqreen/frameworks/rails.rb +3 -0
data/lib/sqreen/frameworks/rails3.rb +2 -0
data/lib/sqreen/frameworks/request_recorder.rb +5 -0
data/lib/sqreen/frameworks/sinatra.rb +4 -0
data/lib/sqreen/frameworks/sqreen_test.rb +4 -0
data/lib/sqreen/graft.rb +12 -0
data/lib/sqreen/graft/call.rb +150 -0
data/lib/sqreen/{dependency → graft}/callback.rb +12 -4
data/lib/sqreen/graft/hook.rb +316 -0
data/lib/sqreen/{dependency → graft}/hook_point.rb +152 -33
data/lib/sqreen/graft/hook_point_error.rb +10 -0
data/lib/sqreen/invalid_signature_exception.rb +10 -0
data/lib/sqreen/js.rb +11 -0
data/lib/sqreen/js/call_context.rb +12 -0
data/lib/sqreen/js/context_pool.rb +62 -0
data/lib/sqreen/js/exec_js_runnable.rb +22 -0
data/lib/sqreen/js/execjs_adapter.rb +8 -47
data/lib/sqreen/js/executable_js.rb +14 -0
data/lib/sqreen/js/js_service.rb +4 -22
data/lib/sqreen/js/js_service_adapter.rb +20 -0
data/lib/sqreen/js/mini_racer_adapter.rb +8 -180
data/lib/sqreen/js/mini_racer_executable_js.rb +144 -0
data/lib/sqreen/js/thread_local_exec_js_runnable.rb +49 -0
data/lib/{sqreen-alt.rb → sqreen/legacy.rb} +5 -1
data/lib/sqreen/{instrumentation.rb → legacy/instrumentation.rb} +44 -15
data/lib/sqreen/log.rb +10 -188
data/lib/sqreen/log/loggable.rb +28 -0
data/lib/sqreen/logger.rb +85 -0
data/lib/sqreen/metrics.rb +2 -0
data/lib/sqreen/metrics/average.rb +2 -0
data/lib/sqreen/metrics/base.rb +2 -0
data/lib/sqreen/metrics/binning.rb +2 -0
data/lib/sqreen/metrics/collect.rb +2 -0
data/lib/sqreen/metrics/sum.rb +2 -0
data/lib/sqreen/metrics_store.rb +5 -11
data/lib/sqreen/metrics_store/already_registered_metric.rb +13 -0
data/lib/sqreen/metrics_store/unknown_metric.rb +13 -0
data/lib/sqreen/metrics_store/unregistered_metric.rb +13 -0
data/lib/sqreen/middleware.rb +2 -34
data/lib/sqreen/mono_time.rb +4 -0
data/lib/sqreen/node.rb +46 -0
data/lib/sqreen/not_implemented_yet.rb +10 -0
data/lib/sqreen/null_logger.rb +26 -0
data/lib/sqreen/payload_creator.rb +4 -19
data/lib/sqreen/payload_creator/header_section.rb +30 -0
data/lib/sqreen/performance_notifications.rb +2 -0
data/lib/sqreen/performance_notifications/binned_metrics.rb +2 -0
data/lib/sqreen/performance_notifications/log.rb +2 -0
data/lib/sqreen/performance_notifications/log_performance.rb +2 -0
data/lib/sqreen/performance_notifications/metrics.rb +2 -0
data/lib/sqreen/performance_notifications/newrelic.rb +2 -0
data/lib/sqreen/prefix.rb +35 -0
data/lib/sqreen/rails_middleware.rb +16 -0
data/lib/sqreen/remote_command.rb +3 -8
data/lib/sqreen/remote_command/failure_output.rb +16 -0
data/lib/sqreen/rules.rb +34 -2
data/lib/sqreen/{rule_attributes.rb → rules/attrs.rb} +2 -0
data/lib/sqreen/{rules_callbacks/sdk_auth_track.rb → rules/auth_track_cb.rb} +4 -2
data/lib/sqreen/{rules_callbacks/binding_accessor_matcher.rb → rules/binding_accessor_matcher_cb.rb} +6 -8
data/lib/sqreen/{rules_callbacks → rules}/binding_accessor_metrics.rb +3 -1
data/lib/sqreen/{rules_callbacks/blacklist_ips.rb → rules/blacklist_ips_cb.rb} +5 -2
data/lib/sqreen/{rules_callbacks → rules}/count_http_codes.rb +4 -2
data/lib/sqreen/{rules_callbacks/crawler_user_agent_matches.rb → rules/crawler_user_agent_matches_cb.rb} +3 -1
data/lib/sqreen/{rules_callbacks/crawler_user_agent_matches_metrics.rb → rules/crawler_user_agent_matches_metrics_cb.rb} +3 -1
data/lib/sqreen/{rules_callbacks/custom_error.rb → rules/custom_error_cb.rb} +3 -1
data/lib/sqreen/{rules_callbacks/devise_auth_track.rb → rules/devise_auth_track_cb.rb} +4 -2
data/lib/sqreen/{rules_callbacks/devise_signup_track.rb → rules/devise_signup_track_cb.rb} +4 -2
data/lib/sqreen/{rules_callbacks/execjs.rb → rules/execjs_cb.rb} +51 -50
data/lib/sqreen/{rules_callbacks/headers_insert.rb → rules/headers_insert_cb.rb} +8 -1
data/lib/sqreen/{rules_callbacks → rules}/matcher_rule.rb +4 -2
data/lib/sqreen/{rules_callbacks/not_found.rb → rules/not_found_cb.rb} +7 -2
data/lib/sqreen/{rules_callbacks/rails_parameters.rb → rules/rails_parameters_cb.rb} +3 -1
data/lib/sqreen/{rules_callbacks → rules}/record_request_context.rb +3 -1
data/lib/sqreen/{rules_callbacks/regexp_rule.rb → rules/regexp_rule_cb.rb} +3 -1
data/lib/sqreen/{rule_callback.rb → rules/rule_cb.rb} +4 -2
data/lib/sqreen/{rules_callbacks → rules}/run_req_start_actions.rb +7 -3
data/lib/sqreen/{rules_callbacks → rules}/run_user_actions.rb +4 -2
data/lib/sqreen/{rules_callbacks/shell_env.rb → rules/shell_env_cb.rb} +3 -1
data/lib/sqreen/{rules_callbacks/sdk_signup_track.rb → rules/signup_track_cb.rb} +4 -2
data/lib/sqreen/rules/update_request_context.rb +22 -0
data/lib/sqreen/{rules_callbacks/url_matches.rb → rules/url_matches_cb.rb} +3 -1
data/lib/sqreen/{rules_callbacks/user_agent_matches.rb → rules/user_agent_matches_cb.rb} +3 -1
data/lib/sqreen/{rules_callbacks/waf.rb → rules/waf_cb.rb} +41 -21
data/lib/sqreen/{rules_callbacks/reflected_xss.rb → rules/xss_cb.rb} +12 -7
data/lib/sqreen/run_when_called_cb.rb +23 -0
data/lib/sqreen/runner.rb +25 -7
data/lib/sqreen/runtime_infos.rb +4 -9
data/lib/sqreen/safe_json.rb +2 -0
data/lib/sqreen/sdk.rb +4 -0
data/lib/sqreen/sensitive_data_redactor.rb +113 -0
data/lib/sqreen/serializer.rb +2 -0
data/lib/sqreen/session.rb +2 -0
data/lib/sqreen/shared_storage.rb +2 -0
data/lib/sqreen/shared_storage23.rb +2 -0
data/lib/sqreen/shrink_wrap.rb +16 -0
data/lib/sqreen/signature_verifier.rb +22 -0
data/lib/sqreen/sinatra_middleware.rb +16 -0
data/lib/sqreen/{rules_signature.rb → sqreen_signed_verifier.rb} +7 -17
data/lib/sqreen/token_invalid_exception.rb +10 -0
data/lib/sqreen/token_not_found_exception.rb +11 -0
data/lib/sqreen/trie.rb +5 -64
data/lib/sqreen/unauthorized.rb +10 -0
data/lib/sqreen/util.rb +7 -0
data/lib/sqreen/util/capped_array.rb +35 -0
data/lib/sqreen/util/capped_hash.rb +41 -0
data/lib/sqreen/util/capped_string.rb +26 -0
data/lib/sqreen/util/capper.rb +67 -0
data/lib/sqreen/version.rb +3 -1
data/lib/sqreen/waf_error.rb +20 -0
data/lib/sqreen/weave.rb +12 -0
data/lib/sqreen/weave/hardcoded.rb +19 -0
data/lib/sqreen/weave/instrumentor.rb +48 -0
data/lib/sqreen/weave/legacy.rb +12 -0
data/lib/sqreen/weave/legacy/instrumentation.rb +406 -0
data/lib/sqreen/web_server.rb +2 -0
data/lib/sqreen/web_server/generic.rb +2 -0
data/lib/sqreen/web_server/passenger.rb +2 -0
data/lib/sqreen/web_server/puma.rb +2 -0
data/lib/sqreen/web_server/rainbows.rb +2 -0
data/lib/sqreen/web_server/thin.rb +2 -0
data/lib/sqreen/web_server/unicorn.rb +2 -0
data/lib/sqreen/web_server/webrick.rb +2 -0
data/lib/sqreen/worker.rb +2 -0
metadata +105 -39
data/lib/sqreen/dependency/hook.rb +0 -102
data/lib/sqreen/rules_callbacks.rb +0 -35
data/lib/sqreen/rules_callbacks/inspect_rule.rb +0 -25

data/lib/sqreen/{dependency → graft}/hook_point.rb RENAMED

@@ -1,12 +1,26 @@
+# typed: false
 # Copyright (c) 2015 Sqreen. All Rights Reserved.
 # Please refer to our terms for more information: https://www.sqreen.com/terms.html
 require 'sqreen/dependency'
 require 'sqreen/backport/original_name'
+require 'sqreen/graft'
+require 'sqreen/graft/hook_point_error'
 module Sqreen
-  module Dependency
-    class HookPointError < StandardError; end
+  module Graft
+    class HookSpot < Module
+      def initialize(key)
+        @key = key
+      end
+      attr_reader :key
+      def inspect
+        "#<#{self.class.name}: #{@key.inspect}>"
+      end
+    end
     class HookPoint
       def self.parse(hook_point)
@@ -22,8 +36,9 @@ module Sqreen
       attr_reader :klass_name, :method_kind, :method_name
-      def initialize(hook_point)
-        @klass_name, @method_kind, @method_name = Sqreen::Dependency::HookPoint.parse(hook_point)
+      def initialize(hook_point, strategy = :chain)
+        @klass_name, @method_kind, @method_name = Sqreen::Graft::HookPoint.parse(hook_point)
+        @strategy = strategy
       end
       def to_s
@@ -34,11 +49,12 @@ module Sqreen
         return false unless Sqreen::Dependency.const_exist?(@klass_name)
         if klass_method?
-          (klass.methods + klass.protected_methods + klass.private_methods).include?(@method_name)
+          (klass.singleton_class.public_instance_methods(false) + klass.singleton_class.protected_instance_methods(false) + klass.singleton_class.private_instance_methods(false)).include?(@method_name)
         elsif instance_method?
-          (klass.instance_methods + klass.protected_instance_methods + klass.private_instance_methods).include?(@method_name)
+          (klass.public_instance_methods(false) + klass.protected_instance_methods(false) + klass.private_instance_methods(false)).include?(@method_name)
         else
-          raise HookPointError, 'unknown hook point kind'
+          Sqreen::Graft.logger.error { "[#{Process.pid}] #{self} unknown hook point kind" }
+          raise HookPointError, "#{self} unknown hook point kind"
         end
       end
@@ -56,7 +72,8 @@ module Sqreen
         elsif instance_method?
           klass.private_instance_methods.include?(@method_name)
         else
-          raise HookPointError, 'unknown hook point kind'
+          Sqreen::Graft.logger.error { "[#{Process.pid}] #{self} unknown hook point kind" }
+          raise HookPointError, "#{self} unknown hook point kind"
         end
       end
@@ -66,7 +83,8 @@ module Sqreen
         elsif instance_method?
           klass.protected_instance_methods.include?(@method_name)
         else
-          raise HookPointError, 'unknown hook point kind'
+          Sqreen::Graft.logger.error { "[#{Process.pid}] #{self} unknown hook point kind" }
+          raise HookPointError, "#{self} unknown hook point kind"
         end
       end
@@ -74,58 +92,159 @@ module Sqreen
         @method_kind == :instance_method
       end
-      def installed?(suffix)
-        if klass_method?
-          (klass.methods + klass.protected_methods + klass.private_methods).include?(:"#{method_name}_with_#{suffix}")
-        elsif instance_method?
-          (klass.instance_methods + klass.protected_instance_methods + klass.private_instance_methods).include?(:"#{method_name}_with_#{suffix}")
-        else
-          raise HookPointError, 'unknown hook point kind'
+      def installed?(key)
+        case @strategy
+        when :chain then defined(key)
+        when :prepend then prepended?(key) && overridden?(key)
         end
       end
+      def super?
+        @strategy == :prepend
+      end
       def apply(obj, suffix, *args, &block)
+        raise 'use super' if super?
         obj.send("#{method_name}_without_#{suffix}", *args, &block)
       end
-      def install(suffix, &block)
-        if installed?(suffix)
-          Sqreen.log.debug "[#{Process.pid}] #{self} already installed"
+      def install(key, &block)
+        if installed?(key)
+          Sqreen::Graft.logger.debug { "[#{Process.pid}] #{self} already installed" }
+          return
         end
         unless exist?
-          Sqreen.log.debug "[#{Process.pid}] #{self} hook point not found"
+          Sqreen::Graft.logger.debug { "[#{Process.pid}] #{self} hook point not found" }
+          return
         end
-        define(suffix, &block)
-        enable(suffix)
+        case @strategy
+        when :chain
+          define(key, &block)
+          chain(key)
+        when :prepend
+          prepend(key)
+          override(key, &block)
+        end
       end
-      def uninstall(suffix)
-        disable(suffix)
-        remove(suffix)
+      def uninstall(key)
+        unless installed?(key)
+          Sqreen::Graft.logger.debug { "[#{Process.pid}] #{self} not installed" }
+          return
+        end
+        unless exist?
+          Sqreen::Graft.logger.debug { "[#{Process.pid}] #{self} hook point not found" }
+          return
+        end
+        case @strategy
+        when :chain
+          disable(key)
+          remove(key)
+        when :prepend
+          unoverride(key) if overridden?(key)
+        end
       end
-      def enable(suffix)
-        chain(suffix)
+      def enable(key)
+        case @strategy
+        when :chain
+          chain(key)
+        when :prepend
+          raise HookPointError, "enable called on prepend mode"
+        end
       end
-      def disable(suffix)
-        unchain(suffix)
+      def disable(key)
+        case @strategy
+        when :chain
+          unchain(key)
+        when :prepend
+          unoverride(key)
+        end
       end
-      def disabled?(suffix)
-        !chained?(suffix)
+      def disabled?(key)
+        case @strategy
+        when :chain
+          !chained?(key)
+        when :prepend
+          !overridden?(key)
+        end
       end
       private
+      def prepend(key)
+        target = klass_method? ? klass.singleton_class : klass
+        mod = target.ancestors.each { |e| break if e == target; break(e) if e.class == HookSpot && e.key == key }
+        mod ||= HookSpot.new(key)
+        target.instance_eval { prepend(mod) }
+      end
+      def prepended?(key)
+        target = klass_method? ? klass.singleton_class : klass
+        mod = target.ancestors.each { |e| break if e == target; break(e) if e.class == HookSpot && e.key == key }
+        mod != nil
+      end
+      def overridden?(key)
+        target = klass_method? ? klass.singleton_class : klass
+        mod = target.ancestors.each { |e| break if e == target; break(e) if e.class == HookSpot && e.key == key }
+        (mod.instance_methods(false) + mod.protected_instance_methods(false) + mod.private_instance_methods(false)).include?(method_name)
+      end
+      def override(key, &block)
+        hook_point = self
+        method_name = @method_name
+        target = klass_method? ? klass.singleton_class : klass
+        mod = target.ancestors.each { |e| break if e == target; break(e) if e.class == HookSpot && e.key == key }
+        mod.instance_eval do
+          if hook_point.private_method?
+            private
+          elsif hook_point.protected_method?
+            protected
+          else
+            public
+          end
+          define_method(:"#{method_name}", &block)
+        end
+      end
+      def unoverride(key)
+        method_name = @method_name
+        target = klass_method? ? klass.singleton_class : klass
+        mod = target.ancestors.each { |e| break if e == target; break(e) if e.class == HookSpot && e.key == key }
+        mod.instance_eval { remove_method(method_name) }
+      end
+      def defined(suffix)
+        if klass_method?
+          (klass.methods + klass.protected_methods + klass.private_methods).include?(:"#{method_name}_with_#{suffix}")
+        elsif instance_method?
+          (klass.instance_methods + klass.protected_instance_methods + klass.private_instance_methods).include?(:"#{method_name}_with_#{suffix}")
+        else
+          Sqreen::Graft.logger.error { "[#{Process.pid}] #{self} unknown hook point kind" }
+          raise HookPointError, "#{self} unknown hook point kind"
+        end
+      end
       def define(suffix, &block)
         hook_point = self
         method_name = @method_name
         if klass_method?
           klass.singleton_class.instance_eval do
-            if hook_point.protected_method?
+            if hook_point.private_method?
               private
             elsif hook_point.protected_method?
               protected
@@ -137,7 +256,7 @@ module Sqreen
           end
         elsif instance_method?
           klass.class_eval do
-            if hook_point.protected_method?
+            if hook_point.private_method?
               private
             elsif hook_point.protected_method?
               protected

data/lib/sqreen/graft/hook_point_error.rb ADDED

@@ -0,0 +1,10 @@
+# typed: strong
+# Copyright (c) 2015 Sqreen. All Rights Reserved.
+# Please refer to our terms for more information: https://www.sqreen.com/terms.html
+module Sqreen
+  module Graft
+    class HookPointError < StandardError; end
+  end
+end

data/lib/sqreen/invalid_signature_exception.rb ADDED

@@ -0,0 +1,10 @@
+# typed: strong
+# Copyright (c) 2015 Sqreen. All Rights Reserved.
+# Please refer to our terms for more information: https://www.sqreen.com/terms.html
+require 'sqreen/exception'
+module Sqreen
+  class InvalidSignatureException < Sqreen::Exception; end
+end

data/lib/sqreen/js.rb ADDED

@@ -0,0 +1,11 @@
+# typed: strong
+# Copyright (c) 2015 Sqreen. All Rights Reserved.
+# Please refer to our terms for more information: https://www.sqreen.com/terms.html
+# TODO: case JS/Js?
+module Sqreen
+  module Js
+  end
+end

data/lib/sqreen/js/call_context.rb ADDED

@@ -0,0 +1,12 @@
+# typed: true
+# Copyright (c) 2015 Sqreen. All Rights Reserved.
+# Please refer to our terms for more information: https://www.sqreen.com/terms.html
+# TODO: useless?
+module Sqreen
+  module Js
+    CallContext = Struct.new(:inst, :args, :rv)
+  end
+end

data/lib/sqreen/js/context_pool.rb ADDED

@@ -0,0 +1,62 @@
+# typed: ignore
+# Copyright (c) 2015 Sqreen. All Rights Reserved.
+# Please refer to our terms for more information: https://www.sqreen.com/terms.html
+# TODO: => Sqreen::JS:MiniRacer ?
+module Sqreen
+  module Js
+    class ContextPool
+      def initialize
+        @mutex = Mutex.new
+        @total_ctxs = 0
+        @contexts = []
+      end
+      def with_context(&block)
+        isolate = context
+        begin
+          block[isolate]
+        ensure
+          give_back_context isolate
+        end
+      end
+      private
+      def context
+        @mutex.synchronize do
+          if @contexts.empty?
+            @total_ctxs += 1
+            Sqreen.log.debug "Creating new V8 context (#{@total_ctxs})"
+            SqreenContext.new
+          else
+            @contexts.pop
+          end
+        end
+      end
+      def give_back_context(context)
+        context.possibly_gc
+        if context.gc_load > 30
+          if context.gc_threshold_in_bytes == DEFAULT_GC_THRESHOLD
+            context.gc_threshold_in_bytes *= 2
+            Sqreen.log.warn("Context #{context} had too many close garbage " \
+                            'collections; doubling the threshold to ' \
+                            "#{context.gc_threshold_in_bytes} bytes")
+            context.gc_load = 0
+          else
+            Sqreen.log.warn("Context #{context} had too many close garbage " \
+                            'collections; discarding it')
+            context.dispose
+            return
+          end
+        end
+        @mutex.synchronize { @contexts.push(context); }
+      end
+    end
+  end
+end

data/lib/sqreen/js/exec_js_runnable.rb ADDED

@@ -0,0 +1,22 @@
+# typed: true
+# Copyright (c) 2015 Sqreen. All Rights Reserved.
+# Please refer to our terms for more information: https://www.sqreen.com/terms.html
+# TODO: => Sqreen::JS:ExecJS
+require 'sqreen/js/executable_js'
+module Sqreen
+  module Js
+    class ExecJsRunnable < ExecutableJs
+      def initialize(compiled)
+        @compiled = compiled
+      end
+      def run_js_cb(cbname, _budget, arguments)
+        @compiled.call(cbname, *arguments)
+      end
+    end
+  end
+end

data/lib/sqreen/js/execjs_adapter.rb CHANGED

@@ -1,8 +1,16 @@
+# typed: true
 # Copyright (c) 2015 Sqreen. All Rights Reserved.
 # Please refer to our terms for more information: https://www.sqreen.com/terms.html
+# TODO: => Sqreen::JS:ExecJS
 require 'execjs'
 require 'weakref'
+require 'sqreen/js/executable_js'
+require 'sqreen/js/js_service_adapter'
+require 'sqreen/js/exec_js_runnable'
+require 'sqreen/js/thread_local_exec_js_runnable'
 module Sqreen
   module Js
@@ -25,52 +33,5 @@ module Sqreen
         ExecJS.runtime.name != 'therubyrhino (Rhino)'
       end
     end
-    class ExecJsRunnable < ExecutableJs
-      def initialize(compiled)
-        @compiled = compiled
-      end
-      def run_js_cb(cbname, _budget, arguments)
-        @compiled.call(cbname, *arguments)
-      end
-    end
-    class ThreadLocalExecJsRunnable < ExecutableJs
-      def initialize(code)
-        @code = code
-        @tl_key = "SQREEN_EXECJS_CONTEXT_#{object_id}".freeze
-        @runtimes = [] # place where to keep strong references
-        @runtimes_mutex = Mutex.new
-      end
-      def run_js_cb(cbname, _budget, arguments)
-        tl_exec_js_runnable.call(cbname, *arguments)
-      end
-      def with_runtimes_mutex
-        @runtimes_mutex.synchronize { yield }
-      end
-      private
-      def dispose_from_dead_threads
-        with_runtimes_mutex do
-          @runtimes.delete_if { |th, _runtime| !th.alive? }
-        end
-      end
-      def tl_exec_js_runnable
-        runnable = Thread.current[@tl_key]
-        return runnable if runnable && runnable.weakref_alive?
-        dispose_from_dead_threads
-        runtime = ExecJS.compile(@code)
-        with_runtimes_mutex do
-          @runtimes << [Thread.current, runtime]
-        end
-        Thread.current[@tl_key] = WeakRef.new(runtime)
-      end
-    end
   end
 end