windows-exe-decompiler-mcp-server 0.1.0

package/dist/tools/sample-ingest.js

@@ -0,0 +1,327 @@
+/**
+ * sample.ingest tool implementation
+ * Uploads and registers new samples to the system
+ * Requirements: 1.1, 1.2, 1.3, 1.4, 1.5
+ */
+import { z } from 'zod';
+import fs from 'fs';
+import crypto from 'crypto';
+import { withLogging, logError, logWarning } from '../logger.js';
+// ============================================================================
+// Constants
+// ============================================================================
+const MAX_SAMPLE_SIZE = 500 * 1024 * 1024; // 500MB
+// ============================================================================
+// Input/Output Schemas
+// ============================================================================
+/**
+ * Input schema for sample.ingest tool
+ * Requirements: 1.1
+ */
+export const SampleIngestInputSchema = z
+    .object({
+    path: z
+        .string()
+        .trim()
+        .min(1)
+        .optional()
+        .describe('Preferred for local files. Pass an absolute local file path when the MCP client can access the file system.'),
+    bytes_b64: z
+        .string()
+        .trim()
+        .min(1)
+        .optional()
+        .describe('Fallback only. Use Base64 file bytes when the MCP client cannot access the local file path. Ignored when `path` is provided.'),
+    filename: z.string().optional().describe('Optional display/original filename'),
+    source: z.string().optional().describe('Optional source tag, e.g. upload/email/sandbox'),
+})
+    .superRefine((value, ctx) => {
+    const hasPath = typeof value.path === 'string' && value.path.length > 0;
+    const hasBytes = typeof value.bytes_b64 === 'string' && value.bytes_b64.length > 0;
+    if (!hasPath && !hasBytes) {
+        ctx.addIssue({
+            code: z.ZodIssueCode.custom,
+            path: ['path'],
+            message: 'Provide either `path` (preferred for local files) or `bytes_b64` (fallback when the client cannot read the file path).',
+        });
+    }
+})
+    .describe('Ingest a sample from a local file path or Base64 bytes. Prefer `path` whenever the MCP client can access the file directly.');
+/**
+ * Output schema for sample.ingest tool
+ * Requirements: 1.5
+ */
+export const SampleIngestOutputSchema = z.object({
+    ok: z.boolean(),
+    data: z.object({
+        sample_id: z.string(),
+        size: z.number(),
+        file_type: z.string().optional(),
+        existed: z.boolean().optional(),
+    }).optional(),
+    errors: z.array(z.string()).optional(),
+});
+// ============================================================================
+// Tool Definition
+// ============================================================================
+/**
+ * Tool definition for sample.ingest
+ */
+export const sampleIngestToolDefinition = {
+    name: 'sample.ingest',
+    description: 'Register a new sample from a local file path or Base64 bytes. Prefer `path` for local files; use `bytes_b64` only when the MCP client cannot read local disk.',
+    inputSchema: SampleIngestInputSchema,
+    outputSchema: SampleIngestOutputSchema,
+};
+// ============================================================================
+// Helper Functions
+// ============================================================================
+/**
+ * Compute SHA256 hash of data
+ * Requirement: 1.1
+ */
+function computeSHA256(data) {
+    return crypto.createHash('sha256').update(data).digest('hex');
+}
+/**
+ * Compute MD5 hash of data
+ * Requirement: 1.1
+ */
+function computeMD5(data) {
+    return crypto.createHash('md5').update(data).digest('hex');
+}
+/**
+ * Detect file type from data
+ * Basic implementation - can be enhanced with magic number detection
+ */
+function detectFileType(data) {
+    // Check for PE signature (MZ header)
+    if (data.length >= 2 && data[0] === 0x4D && data[1] === 0x5A) {
+        return 'PE';
+    }
+    // Check for ELF signature
+    if (data.length >= 4 &&
+        data[0] === 0x7F &&
+        data[1] === 0x45 &&
+        data[2] === 0x4C &&
+        data[3] === 0x46) {
+        return 'ELF';
+    }
+    return 'unknown';
+}
+// ============================================================================
+// Tool Handler
+// ============================================================================
+/**
+ * Create sample.ingest tool handler
+ * Requirements: 1.1, 1.2, 1.3, 1.4, 1.5, 1.6
+ */
+export function createSampleIngestHandler(workspaceManager, database, policyGuard) {
+    return async (args) => {
+        const input = args;
+        return withLogging({
+            operation: 'sample.ingest',
+            toolName: 'sample.ingest',
+            source: input.source,
+        }, async () => {
+            try {
+                // 1. Read sample data
+                let data;
+                let originalFilename;
+                if (input.path) {
+                    // Read from file path
+                    if (!fs.existsSync(input.path)) {
+                        logWarning('File not found', { path: input.path });
+                        return {
+                            ok: false,
+                            errors: [`File not found: ${input.path}`],
+                        };
+                    }
+                    data = fs.readFileSync(input.path);
+                    // Extract just the filename, not the full path
+                    const pathParts = input.path.replace(/\\/g, '/').split('/');
+                    originalFilename = input.filename || pathParts[pathParts.length - 1] || 'sample.bin';
+                }
+                else if (input.bytes_b64) {
+                    // Decode from Base64
+                    // Validate Base64 format first
+                    const base64Regex = /^[A-Za-z0-9+/]*={0,2}$/;
+                    if (!base64Regex.test(input.bytes_b64)) {
+                        logWarning('Invalid Base64 encoding', { length: input.bytes_b64.length });
+                        return {
+                            ok: false,
+                            errors: ['Invalid Base64 encoding: contains invalid characters'],
+                        };
+                    }
+                    try {
+                        data = Buffer.from(input.bytes_b64, 'base64');
+                        // Verify the decoded data is not empty and makes sense
+                        if (data.length === 0 && input.bytes_b64.length > 0) {
+                            throw new Error('Base64 decoding resulted in empty buffer');
+                        }
+                    }
+                    catch (error) {
+                        logError(error, { operation: 'base64_decode' });
+                        return {
+                            ok: false,
+                            errors: [`Invalid Base64 encoding: ${error.message}`],
+                        };
+                    }
+                    originalFilename = input.filename || 'sample.bin';
+                }
+                else {
+                    return {
+                        ok: false,
+                        errors: [
+                            'Missing input: provide `path` (preferred local file path) or `bytes_b64` (Base64 bytes fallback when the client cannot access the file path).',
+                        ],
+                    };
+                }
+                // 2. Check file size limit
+                // Requirement: 1.3
+                if (data.length > MAX_SAMPLE_SIZE) {
+                    logWarning('Sample size exceeds limit', {
+                        size: data.length,
+                        maxSize: MAX_SAMPLE_SIZE,
+                    });
+                    return {
+                        ok: false,
+                        errors: [
+                            `Sample size ${data.length} bytes exceeds maximum limit of ${MAX_SAMPLE_SIZE} bytes (500MB)`
+                        ],
+                    };
+                }
+                // 3. Compute hashes
+                // Requirement: 1.1
+                const sha256 = computeSHA256(data);
+                const md5 = computeMD5(data);
+                const sampleId = `sha256:${sha256}`;
+                // 4. Check if sample already exists
+                // Requirement: 1.2
+                const existingSample = database.findSampleBySha256(sha256);
+                if (existingSample) {
+                    // Sample already exists, return existing sample_id
+                    await policyGuard.auditLog({
+                        timestamp: new Date().toISOString(),
+                        operation: 'sample.ingest',
+                        sampleId: existingSample.id,
+                        decision: 'allow',
+                        reason: 'Sample already exists (SHA256 match)',
+                        metadata: {
+                            size: data.length,
+                            source: input.source || 'upload',
+                            existed: true,
+                        },
+                    });
+                    return {
+                        ok: true,
+                        data: {
+                            sample_id: existingSample.id,
+                            size: existingSample.size,
+                            file_type: existingSample.file_type || undefined,
+                            existed: true,
+                        },
+                    };
+                }
+                // 5. Create workspace
+                // Requirement: 1.4
+                const workspace = await workspaceManager.createWorkspace(sampleId);
+                // 6. Store sample file
+                // Requirement: 1.4
+                const samplePath = `${workspace.original}/${originalFilename}`;
+                fs.writeFileSync(samplePath, data);
+                // Mark file as non-executable (security measure)
+                // Requirement: 29.3
+                try {
+                    fs.chmodSync(samplePath, 0o444); // Read-only
+                }
+                catch (error) {
+                    // Ignore chmod errors on Windows
+                    logWarning('Failed to set file permissions', {
+                        path: samplePath,
+                        error: error.message,
+                    });
+                }
+                // 7. Detect file type
+                const fileType = detectFileType(data);
+                // 8. Insert into database
+                // Requirement: 1.5
+                const sample = {
+                    id: sampleId,
+                    sha256,
+                    md5,
+                    size: data.length,
+                    file_type: fileType,
+                    created_at: new Date().toISOString(),
+                    source: input.source || 'upload',
+                };
+                try {
+                    database.insertSample(sample);
+                }
+                catch (error) {
+                    // Handle race condition: if another concurrent request already inserted this sample
+                    if (error.code === 'SQLITE_CONSTRAINT_UNIQUE' || error.message?.includes('UNIQUE constraint')) {
+                        // Sample was inserted by another concurrent request
+                        // Query it again and return
+                        const existingSample = database.findSampleBySha256(sha256);
+                        if (existingSample) {
+                            await policyGuard.auditLog({
+                                timestamp: new Date().toISOString(),
+                                operation: 'sample.ingest',
+                                sampleId: existingSample.id,
+                                decision: 'allow',
+                                reason: 'Sample already exists (concurrent insert race condition)',
+                                metadata: {
+                                    size: data.length,
+                                    source: input.source || 'upload',
+                                    existed: true,
+                                },
+                            });
+                            return {
+                                ok: true,
+                                data: {
+                                    sample_id: existingSample.id,
+                                    size: existingSample.size,
+                                    file_type: existingSample.file_type || undefined,
+                                    existed: true,
+                                },
+                            };
+                        }
+                    }
+                    // Re-throw if it's a different error
+                    throw error;
+                }
+                // 9. Audit log
+                // Requirement: 1.6
+                await policyGuard.auditLog({
+                    timestamp: new Date().toISOString(),
+                    operation: 'sample.ingest',
+                    sampleId: sample.id,
+                    decision: 'allow',
+                    metadata: {
+                        size: data.length,
+                        source: sample.source,
+                        file_type: fileType,
+                    },
+                });
+                // 10. Return result
+                return {
+                    ok: true,
+                    data: {
+                        sample_id: sampleId,
+                        size: data.length,
+                        file_type: fileType,
+                    },
+                };
+            }
+            catch (error) {
+                logError(error, { operation: 'sample.ingest' });
+                return {
+                    ok: false,
+                    errors: [error.message],
+                };
+            }
+        });
+    };
+}
+//# sourceMappingURL=sample-ingest.js.map

package/dist/tools/sample-profile-get.d.ts

@@ -0,0 +1,183 @@
+/**
+ * sample.profile.get tool implementation
+ * Retrieves sample profile including basic information and completed analyses
+ * Requirements: Data Model
+ */
+import { z } from 'zod';
+import type { ToolDefinition, ToolArgs, WorkerResult } from '../types.js';
+import type { DatabaseManager } from '../database.js';
+/**
+ * Input schema for sample.profile.get tool
+ */
+export declare const SampleProfileGetInputSchema: z.ZodObject<{
+    sample_id: z.ZodString;
+    stale_running_ms: z.ZodOptional<z.ZodNullable<z.ZodNumber>>;
+}, "strip", z.ZodTypeAny, {
+    sample_id: string;
+    stale_running_ms?: number | null | undefined;
+}, {
+    sample_id: string;
+    stale_running_ms?: number | null | undefined;
+}>;
+export type SampleProfileGetInput = z.infer<typeof SampleProfileGetInputSchema>;
+/**
+ * Output schema for sample.profile.get tool
+ */
+export declare const SampleProfileGetOutputSchema: z.ZodObject<{
+    ok: z.ZodBoolean;
+    data: z.ZodOptional<z.ZodObject<{
+        sample: z.ZodObject<{
+            id: z.ZodString;
+            sha256: z.ZodString;
+            md5: z.ZodString;
+            size: z.ZodNumber;
+            file_type: z.ZodOptional<z.ZodString>;
+            created_at: z.ZodString;
+            source: z.ZodString;
+        }, "strip", z.ZodTypeAny, {
+            id: string;
+            size: number;
+            sha256: string;
+            created_at: string;
+            source: string;
+            md5: string;
+            file_type?: string | undefined;
+        }, {
+            id: string;
+            size: number;
+            sha256: string;
+            created_at: string;
+            source: string;
+            md5: string;
+            file_type?: string | undefined;
+        }>;
+        analyses: z.ZodArray<z.ZodObject<{
+            id: z.ZodString;
+            stage: z.ZodString;
+            backend: z.ZodString;
+            status: z.ZodString;
+            started_at: z.ZodOptional<z.ZodString>;
+            finished_at: z.ZodOptional<z.ZodString>;
+            output_json: z.ZodOptional<z.ZodString>;
+            metrics_json: z.ZodOptional<z.ZodString>;
+        }, "strip", z.ZodTypeAny, {
+            status: string;
+            id: string;
+            stage: string;
+            backend: string;
+            started_at?: string | undefined;
+            finished_at?: string | undefined;
+            output_json?: string | undefined;
+            metrics_json?: string | undefined;
+        }, {
+            status: string;
+            id: string;
+            stage: string;
+            backend: string;
+            started_at?: string | undefined;
+            finished_at?: string | undefined;
+            output_json?: string | undefined;
+            metrics_json?: string | undefined;
+        }>, "many">;
+    }, "strip", z.ZodTypeAny, {
+        sample: {
+            id: string;
+            size: number;
+            sha256: string;
+            created_at: string;
+            source: string;
+            md5: string;
+            file_type?: string | undefined;
+        };
+        analyses: {
+            status: string;
+            id: string;
+            stage: string;
+            backend: string;
+            started_at?: string | undefined;
+            finished_at?: string | undefined;
+            output_json?: string | undefined;
+            metrics_json?: string | undefined;
+        }[];
+    }, {
+        sample: {
+            id: string;
+            size: number;
+            sha256: string;
+            created_at: string;
+            source: string;
+            md5: string;
+            file_type?: string | undefined;
+        };
+        analyses: {
+            status: string;
+            id: string;
+            stage: string;
+            backend: string;
+            started_at?: string | undefined;
+            finished_at?: string | undefined;
+            output_json?: string | undefined;
+            metrics_json?: string | undefined;
+        }[];
+    }>>;
+    errors: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+}, "strip", z.ZodTypeAny, {
+    ok: boolean;
+    data?: {
+        sample: {
+            id: string;
+            size: number;
+            sha256: string;
+            created_at: string;
+            source: string;
+            md5: string;
+            file_type?: string | undefined;
+        };
+        analyses: {
+            status: string;
+            id: string;
+            stage: string;
+            backend: string;
+            started_at?: string | undefined;
+            finished_at?: string | undefined;
+            output_json?: string | undefined;
+            metrics_json?: string | undefined;
+        }[];
+    } | undefined;
+    errors?: string[] | undefined;
+}, {
+    ok: boolean;
+    data?: {
+        sample: {
+            id: string;
+            size: number;
+            sha256: string;
+            created_at: string;
+            source: string;
+            md5: string;
+            file_type?: string | undefined;
+        };
+        analyses: {
+            status: string;
+            id: string;
+            stage: string;
+            backend: string;
+            started_at?: string | undefined;
+            finished_at?: string | undefined;
+            output_json?: string | undefined;
+            metrics_json?: string | undefined;
+        }[];
+    } | undefined;
+    errors?: string[] | undefined;
+}>;
+export type SampleProfileGetOutput = z.infer<typeof SampleProfileGetOutputSchema>;
+/**
+ * Tool definition for sample.profile.get
+ */
+export declare const sampleProfileGetToolDefinition: ToolDefinition;
+/**
+ * Create sample.profile.get tool handler
+ * Requirements: Data Model
+ */
+export declare function createSampleProfileGetHandler(database: DatabaseManager): (args: ToolArgs) => Promise<WorkerResult>;
+//# sourceMappingURL=sample-profile-get.d.ts.map

package/dist/tools/sample-profile-get.js

@@ -0,0 +1,121 @@
+/**
+ * sample.profile.get tool implementation
+ * Retrieves sample profile including basic information and completed analyses
+ * Requirements: Data Model
+ */
+import { z } from 'zod';
+// ============================================================================
+// Input/Output Schemas
+// ============================================================================
+/**
+ * Input schema for sample.profile.get tool
+ */
+export const SampleProfileGetInputSchema = z.object({
+    sample_id: z.string().describe('Sample ID (format: sha256:<hex>)'),
+    stale_running_ms: z
+        .number()
+        .int()
+        .min(1000)
+        .nullable()
+        .optional()
+        .describe('Optional stale-analysis reap threshold in milliseconds. Omit or null to disable auto-reaping.'),
+});
+/**
+ * Output schema for sample.profile.get tool
+ */
+export const SampleProfileGetOutputSchema = z.object({
+    ok: z.boolean(),
+    data: z.object({
+        sample: z.object({
+            id: z.string(),
+            sha256: z.string(),
+            md5: z.string(),
+            size: z.number(),
+            file_type: z.string().optional(),
+            created_at: z.string(),
+            source: z.string(),
+        }),
+        analyses: z.array(z.object({
+            id: z.string(),
+            stage: z.string(),
+            backend: z.string(),
+            status: z.string(),
+            started_at: z.string().optional(),
+            finished_at: z.string().optional(),
+            output_json: z.string().optional(),
+            metrics_json: z.string().optional(),
+        })),
+    }).optional(),
+    errors: z.array(z.string()).optional(),
+});
+// ============================================================================
+// Tool Definition
+// ============================================================================
+/**
+ * Tool definition for sample.profile.get
+ */
+export const sampleProfileGetToolDefinition = {
+    name: 'sample.profile.get',
+    description: '查询样本基础信息和已完成的分析',
+    inputSchema: SampleProfileGetInputSchema,
+    outputSchema: SampleProfileGetOutputSchema,
+};
+// ============================================================================
+// Tool Handler
+// ============================================================================
+/**
+ * Create sample.profile.get tool handler
+ * Requirements: Data Model
+ */
+export function createSampleProfileGetHandler(database) {
+    return async (args) => {
+        try {
+            const input = SampleProfileGetInputSchema.parse(args);
+            // 1. Query sample from database
+            const sample = database.findSample(input.sample_id);
+            if (!sample) {
+                return {
+                    ok: false,
+                    errors: [`Sample not found: ${input.sample_id}`],
+                };
+            }
+            // 2. Query analyses for this sample
+            if (typeof input.stale_running_ms === 'number') {
+                database.reapStaleAnalyses(input.stale_running_ms, input.sample_id);
+            }
+            const analyses = database.findAnalysesBySample(input.sample_id);
+            // 3. Return profile data
+            return {
+                ok: true,
+                data: {
+                    sample: {
+                        id: sample.id,
+                        sha256: sample.sha256,
+                        md5: sample.md5,
+                        size: sample.size,
+                        file_type: sample.file_type || undefined,
+                        created_at: sample.created_at,
+                        source: sample.source,
+                    },
+                    analyses: analyses.map(analysis => ({
+                        id: analysis.id,
+                        stage: analysis.stage,
+                        backend: analysis.backend,
+                        status: analysis.status,
+                        started_at: analysis.started_at || undefined,
+                        finished_at: analysis.finished_at || undefined,
+                        output_json: analysis.output_json || undefined,
+                        metrics_json: analysis.metrics_json || undefined,
+                    })),
+                },
+            };
+        }
+        catch (error) {
+            return {
+                ok: false,
+                errors: [error.message],
+            };
+        }
+    };
+}
+//# sourceMappingURL=sample-profile-get.js.map