HXSecurity
diff --git a/‎dongtai-common/src/main/java/io/dongtai/iast/common/scope/PolicyScope.java‎
Lines changed: 15 additions & 3 deletions b/‎dongtai-common/src/main/java/io/dongtai/iast/common/scope/PolicyScope.java‎
Lines changed: 15 additions & 3 deletions
diff --git a/‎dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/IastClassFileTransformer.java‎
Lines changed: 40 additions & 38 deletions b/‎dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/IastClassFileTransformer.java‎
Lines changed: 40 additions & 38 deletions
diff --git a/‎dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/asm/AsmMethods.java‎
Lines changed: 8 additions & 0 deletions b/‎dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/asm/AsmMethods.java‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/plugin/core/DispatchClassPlugin.java‎
Lines changed: 6 additions & 0 deletions b/‎dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/plugin/core/DispatchClassPlugin.java‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/plugin/core/adapter/PropagatorAdapter.java‎
Lines changed: 14 additions & 4 deletions b/‎dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/plugin/core/adapter/PropagatorAdapter.java‎
Lines changed: 14 additions & 4 deletions
diff --git a/‎dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/plugin/core/adapter/SinkAdapter.java‎
Lines changed: 14 additions & 4 deletions b/‎dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/plugin/core/adapter/SinkAdapter.java‎
Lines changed: 14 additions & 4 deletions
diff --git a/‎dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/plugin/core/adapter/SourceAdapter.java‎
Lines changed: 14 additions & 4 deletions b/‎dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/plugin/core/adapter/SourceAdapter.java‎
Lines changed: 14 additions & 4 deletions
diff --git a/‎dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/SpyDispatcherImpl.java‎
Lines changed: 28 additions & 0 deletions b/‎dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/SpyDispatcherImpl.java‎
Lines changed: 28 additions & 0 deletions
diff --git a/‎dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/models/policy/Policy.java‎
Lines changed: 26 additions & 0 deletions b/‎dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/models/policy/Policy.java‎
Lines changed: 26 additions & 0 deletions
@@ -6,6 +6,7 @@ public class PolicyScope {
     private int propagatorLevel;
     private int propagatorSkipDepth;
     private int sinkLevel;
+    private int ignoreInternalLevel;
     /**
      * over max method pool size
      */
@@ -29,7 +30,8 @@ public void enterSource() {
     }
 
     public boolean isValidSource() {
-        return this.agentLevel == 0 && !this.overCapacity
+        return this.agentLevel == 0
+                && this.ignoreInternalLevel == 0 && !this.overCapacity
                 && this.sourceLevel == 1;
     }
 
@@ -45,7 +47,8 @@ public void enterPropagator(boolean skipScope) {
     }
 
     public boolean isValidPropagator() {
-        return this.agentLevel == 0 && !this.overCapacity && this.sourceLevel == 0
+        return this.agentLevel == 0
+                && this.ignoreInternalLevel == 0 && !this.overCapacity && this.sourceLevel == 0
                 && (this.propagatorLevel == 1 || this.propagatorSkipDepth > 0);
     }
 
@@ -61,14 +64,23 @@ public void enterSink() {
     }
 
     public boolean isValidSink() {
-        return this.agentLevel == 0 && !this.overCapacity && this.sourceLevel == 0
+        return this.agentLevel == 0
+                && this.ignoreInternalLevel == 0 && !this.overCapacity && this.sourceLevel == 0
                 && this.sinkLevel == 1;
     }
 
     public void leaveSink() {
         this.sinkLevel = decrement(this.sinkLevel);
     }
 
+    public void enterIgnoreInternal() {
+        this.ignoreInternalLevel++;
+    }
+
+    public void leaveIgnoreInternal() {
+        this.ignoreInternalLevel = decrement(this.ignoreInternalLevel);
+    }
+
     public boolean isOverCapacity() {
         return this.overCapacity;
     }
 
@@ -144,45 +144,47 @@ public byte[] transform(final ClassLoader loader,
                 }
             }
 
-            if (null != classBeingRedefined || configMatcher.canHook(internalClassName)) {
-                byte[] sourceCodeBak = new byte[srcByteCodeArray.length];
-                System.arraycopy(srcByteCodeArray, 0, sourceCodeBak, 0, srcByteCodeArray.length);
-                final ClassReader cr = new ClassReader(sourceCodeBak);
-
-                ClassContext classContext = new ClassContext(cr, loader);
-                if (Modifier.isInterface(classContext.getModifier())) {
-                    sourceCodeBak = null;
-                    return null;
-                }
-                final String className = classContext.getClassName();
-
-                Set<String> ancestors = classDiagram.getDiagram(className);
-                if (ancestors == null) {
-                    classDiagram.setLoader(loader);
-                    classDiagram.saveAncestors(className, classContext.getSuperClassName(), classContext.getInterfaces());
-                    ancestors = classDiagram.getAncestors(className, classContext.getSuperClassName(),
-                            classContext.getInterfaces());
-                }
-                classContext.setAncestors(ancestors);
-
-                final ClassWriter cw = createClassWriter(loader, cr);
-                ClassVisitor cv = plugins.initial(cw, classContext, policyManager);
-
-                if (cv instanceof AbstractClassVisitor) {
-                    cr.accept(cv, ClassReader.EXPAND_FRAMES);
-                    AbstractClassVisitor dumpClassVisitor = (AbstractClassVisitor) cv;
-                    if (dumpClassVisitor.hasTransformed()) {
-                        if (null == classBeingRedefined) {
-                            transformMap.put(className, srcByteCodeArray);
-                        } else {
-                            transformMap.put(classBeingRedefined, srcByteCodeArray);
-                        }
-                        transformCount++;
-                        return dumpClassIfNecessary(cr.getClassName(), cw.toByteArray(), srcByteCodeArray);
+            if (null == classBeingRedefined && !configMatcher.canHook(internalClassName, this.policyManager)) {
+                return null;
+            }
+
+            byte[] sourceCodeBak = new byte[srcByteCodeArray.length];
+            System.arraycopy(srcByteCodeArray, 0, sourceCodeBak, 0, srcByteCodeArray.length);
+            final ClassReader cr = new ClassReader(sourceCodeBak);
+
+            ClassContext classContext = new ClassContext(cr, loader);
+            if (Modifier.isInterface(classContext.getModifier())) {
+                sourceCodeBak = null;
+                return null;
+            }
+            final String className = classContext.getClassName();
+
+            Set<String> ancestors = classDiagram.getDiagram(className);
+            if (ancestors == null) {
+                classDiagram.setLoader(loader);
+                classDiagram.saveAncestors(className, classContext.getSuperClassName(), classContext.getInterfaces());
+                ancestors = classDiagram.getAncestors(className, classContext.getSuperClassName(),
+                        classContext.getInterfaces());
+            }
+            classContext.setAncestors(ancestors);
+
+            final ClassWriter cw = createClassWriter(loader, cr);
+            ClassVisitor cv = plugins.initial(cw, classContext, policyManager);
+
+            if (cv instanceof AbstractClassVisitor) {
+                cr.accept(cv, ClassReader.EXPAND_FRAMES);
+                AbstractClassVisitor dumpClassVisitor = (AbstractClassVisitor) cv;
+                if (dumpClassVisitor.hasTransformed()) {
+                    if (null == classBeingRedefined) {
+                        transformMap.put(className, srcByteCodeArray);
+                    } else {
+                        transformMap.put(classBeingRedefined, srcByteCodeArray);
                     }
+                    transformCount++;
+                    return dumpClassIfNecessary(cr.getClassName(), cw.toByteArray(), srcByteCodeArray);
                 }
-                sourceCodeBak = null;
             }
+            sourceCodeBak = null;
         } catch (Throwable throwable) {
             DongTaiLog.warn(ErrorCode.TRANSFORM_CLASS_FAILED, internalClassName, throwable);
         } finally {
@@ -271,7 +273,7 @@ public Class<?>[] findForRetransform() {
                 continue;
             }
             try {
-                if (!configMatcher.canHook(clazz)) {
+                if (!configMatcher.canHook(clazz, this.policyManager)) {
                     continue;
                 }
                 String className = clazz.getName();
@@ -295,7 +297,7 @@ public Class<?>[] findForRetransform() {
                     classDiagram.setDiagram(className, diagram);
                 }
                 for (String clazzName : diagram) {
-                    if (PolicyManager.isHookClass(clazzName) ||
+                    if (this.policyManager.isHookClass(clazzName) ||
                             (this.policyManager.getPolicy() != null && this.policyManager.getPolicy().isMatchClass(clazzName))) {
                         enhanceClasses[enhanceClassSize++] = clazz;
                         break;
 
@@ -218,6 +218,14 @@ static Method getAsmMethod(final Class<?> clazz,
             SpyDispatcher.class,
             "isFirstLevelSink"
     );
+    Method SPY$enterIgnoreInternal = InnerHelper.getAsmMethod(
+            SpyDispatcher.class,
+            "enterIgnoreInternal"
+    );
+    Method SPY$leaveIgnoreInternal = InnerHelper.getAsmMethod(
+            SpyDispatcher.class,
+            "leaveIgnoreInternal"
+    );
     Method SPY$collectMethodPool = InnerHelper.getAsmMethod(
             SpyDispatcher.class,
             "collectMethodPool",
 
@@ -60,6 +60,12 @@ public MethodVisitor visitMethod(final int access, final String name, final Stri
                 return mv;
             }
 
+            if (this.policy.isBlacklistHooks(this.context.getClassName())
+                    && !this.policy.isIgnoreBlacklistHooks(this.context.getClassName())
+                    && !this.policy.isIgnoreInternalHooks(this.context.getClassName())) {
+                return mv;
+            }
+
             MethodContext methodContext = new MethodContext(this.context, name);
             methodContext.setModifier(access);
             methodContext.setDescriptor(descriptor);
 
@@ -18,7 +18,7 @@ public void onMethodEnter(MethodAdviceAdapter adapter, MethodVisitor mv, MethodC
             }
 
             String signature = context.toString();
-            enterScope(adapter, signature);
+            enterScope(adapter, signature, policyNode);
         }
     }
 
@@ -43,11 +43,16 @@ public void onMethodExit(MethodAdviceAdapter adapter, MethodVisitor mv, int opco
             adapter.mark(elseLabel);
             adapter.mark(endLabel);
 
-            leaveScope(adapter, signature);
+            leaveScope(adapter, signature, policyNode);
         }
     }
 
-    private void enterScope(MethodAdviceAdapter adapter, String signature) {
+    private void enterScope(MethodAdviceAdapter adapter, String signature, PolicyNode policyNode) {
+        if (policyNode.isIgnoreInternal()) {
+            adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
+            adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$enterIgnoreInternal);
+        }
+
         adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
         if (PropagatorImpl.isSkipScope(signature)) {
             adapter.push(true);
@@ -57,14 +62,19 @@ private void enterScope(MethodAdviceAdapter adapter, String signature) {
         adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$enterPropagator);
     }
 
-    private void leaveScope(MethodAdviceAdapter adapter, String signature) {
+    private void leaveScope(MethodAdviceAdapter adapter, String signature, PolicyNode policyNode) {
         adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
         if (PropagatorImpl.isSkipScope(signature)) {
             adapter.push(true);
         } else {
             adapter.push(false);
         }
         adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$leavePropagator);
+
+        if (policyNode.isIgnoreInternal()) {
+            adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
+            adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$leaveIgnoreInternal);
+        }
     }
 
     private void isFirstScope(MethodAdviceAdapter adapter) {
 
@@ -16,7 +16,7 @@ public void onMethodEnter(MethodAdviceAdapter adapter, MethodVisitor mv, MethodC
                 continue;
             }
 
-            enterScope(adapter);
+            enterScope(adapter, policyNode);
 
             Label elseLabel = new Label();
             Label endLabel = new Label();
@@ -39,18 +39,28 @@ public void onMethodExit(MethodAdviceAdapter adapter, MethodVisitor mv, int opco
                 continue;
             }
 
-            leaveScope(adapter);
+            leaveScope(adapter, policyNode);
         }
     }
 
-    private void enterScope(MethodAdviceAdapter adapter) {
+    private void enterScope(MethodAdviceAdapter adapter, PolicyNode policyNode) {
+        if (policyNode.isIgnoreInternal()) {
+            adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
+            adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$enterIgnoreInternal);
+        }
+
         adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
         adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$enterSink);
     }
 
-    private void leaveScope(MethodAdviceAdapter adapter) {
+    private void leaveScope(MethodAdviceAdapter adapter, PolicyNode policyNode) {
         adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
         adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$leaveSink);
+
+        if (policyNode.isIgnoreInternal()) {
+            adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
+            adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$leaveIgnoreInternal);
+        }
     }
 
     private void isFirstScope(MethodAdviceAdapter adapter) {
 
@@ -16,7 +16,7 @@ public void onMethodEnter(MethodAdviceAdapter adapter, MethodVisitor mv, MethodC
                 continue;
             }
 
-            enterScope(adapter);
+            enterScope(adapter, policyNode);
         }
     }
 
@@ -39,18 +39,28 @@ public void onMethodExit(MethodAdviceAdapter adapter, MethodVisitor mv, int opco
             adapter.mark(elseLabel);
             adapter.mark(endLabel);
 
-            leaveScope(adapter);
+            leaveScope(adapter, policyNode);
         }
     }
 
-    private void enterScope(MethodAdviceAdapter adapter) {
+    private void enterScope(MethodAdviceAdapter adapter, PolicyNode policyNode) {
+        if (policyNode.isIgnoreInternal()) {
+            adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
+            adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$enterIgnoreInternal);
+        }
+
         adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
         adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$enterSource);
     }
 
-    private void leaveScope(MethodAdviceAdapter adapter) {
+    private void leaveScope(MethodAdviceAdapter adapter, PolicyNode policyNode) {
         adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
         adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$leaveSource);
+
+        if (policyNode.isIgnoreInternal()) {
+            adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
+            adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$leaveIgnoreInternal);
+        }
     }
 
     private void isFirstScope(MethodAdviceAdapter adapter) {
 
@@ -546,6 +546,34 @@ public boolean isFirstLevelSink() {
         }
     }
 
+    @Override
+    public void enterIgnoreInternal() {
+        try {
+            if (!EngineManager.isEngineRunning()) {
+                return;
+            }
+            if (ScopeManager.SCOPE_TRACKER.inAgent() || !ScopeManager.SCOPE_TRACKER.inEnterEntry()) {
+                return;
+            }
+            ScopeManager.SCOPE_TRACKER.getPolicyScope().enterIgnoreInternal();
+        } catch (Throwable ignore) {
+        }
+    }
+
+    @Override
+    public void leaveIgnoreInternal() {
+        try {
+            if (!EngineManager.isEngineRunning()) {
+                return;
+            }
+            if (ScopeManager.SCOPE_TRACKER.inAgent() || !ScopeManager.SCOPE_TRACKER.inEnterEntry()) {
+                return;
+            }
+            ScopeManager.SCOPE_TRACKER.getPolicyScope().leaveIgnoreInternal();
+        } catch (Throwable ignore) {
+        }
+    }
+
     @Override
     public void reportService(String category, String type, String host, String port, String handler) {
         // @TODO: refactor
 
@@ -10,6 +10,10 @@ public class Policy {
     private final Set<String> classHooks = new HashSet<String>();
     private final Set<String> ancestorClassHooks = new HashSet<String>();
 
+    private final Set<String> blacklistHooks = new HashSet<String>();
+    private final Set<String> ignoreInternalHooks = new HashSet<String>();
+    private final Set<String> ignoreBlacklistHooks = new HashSet<String>();
+
     public List<SourceNode> getSources() {
         return sources;
     }
@@ -51,6 +55,12 @@ public void addPolicyNode(PolicyNode node) {
             methodMatcher = (SignatureMethodMatcher) node.getMethodMatcher();
             this.policyNodesMap.put(node.toString(), node);
             addHooks(methodMatcher.getSignature().getClassName(), node.getInheritable());
+            if (node.isIgnoreInternal()) {
+                this.ignoreInternalHooks.add(methodMatcher.getSignature().getClassName());
+            }
+            if (node.isIgnoreBlacklist()) {
+                this.ignoreBlacklistHooks.add(methodMatcher.getSignature().getClassName());
+            }
         }
     }
 
@@ -86,4 +96,20 @@ public Set<String> getClassHooks() {
     public Set<String> getAncestorClassHooks() {
         return this.ancestorClassHooks;
     }
+
+    public void addBlacklistHooks(String className) {
+        this.blacklistHooks.add(className);
+    }
+
+    public boolean isBlacklistHooks(String className) {
+        return this.blacklistHooks.contains(className);
+    }
+
+    public boolean isIgnoreInternalHooks(String className) {
+        return this.ignoreInternalHooks.contains(className);
+    }
+
+    public boolean isIgnoreBlacklistHooks(String className) {
+        return this.ignoreBlacklistHooks.contains(className);
+    }
 }
Original file line number	Diff line number	Diff line change
`@@ -6,6 +6,7 @@ public class PolicyScope {`
`6`	`6`	`private int propagatorLevel;`
`7`	`7`	`private int propagatorSkipDepth;`
`8`	`8`	`private int sinkLevel;`
	`9`	`+ private int ignoreInternalLevel;`
`9`	`10`	`/**`
`10`	`11`	`* over max method pool size`
`11`	`12`	`*/`
`@@ -29,7 +30,8 @@ public void enterSource() {`
`29`	`30`	`}`
`30`	`31`
`31`	`32`	`public boolean isValidSource() {`
`32`		`- return this.agentLevel == 0 && !this.overCapacity`
	`33`	`+ return this.agentLevel == 0`
	`34`	`+ && this.ignoreInternalLevel == 0 && !this.overCapacity`
`33`	`35`	`&& this.sourceLevel == 1;`
`34`	`36`	`}`
`35`	`37`
`@@ -45,7 +47,8 @@ public void enterPropagator(boolean skipScope) {`
`45`	`47`	`}`
`46`	`48`
`47`	`49`	`public boolean isValidPropagator() {`
`48`		`- return this.agentLevel == 0 && !this.overCapacity && this.sourceLevel == 0`
	`50`	`+ return this.agentLevel == 0`
	`51`	`+ && this.ignoreInternalLevel == 0 && !this.overCapacity && this.sourceLevel == 0`
`49`	`52`	`&& (this.propagatorLevel == 1 \|\| this.propagatorSkipDepth > 0);`
`50`	`53`	`}`
`51`	`54`
`@@ -61,14 +64,23 @@ public void enterSink() {`
`61`	`64`	`}`
`62`	`65`
`63`	`66`	`public boolean isValidSink() {`
`64`		`- return this.agentLevel == 0 && !this.overCapacity && this.sourceLevel == 0`
	`67`	`+ return this.agentLevel == 0`
	`68`	`+ && this.ignoreInternalLevel == 0 && !this.overCapacity && this.sourceLevel == 0`
`65`	`69`	`&& this.sinkLevel == 1;`
`66`	`70`	`}`
`67`	`71`
`68`	`72`	`public void leaveSink() {`
`69`	`73`	`this.sinkLevel = decrement(this.sinkLevel);`
`70`	`74`	`}`
`71`	`75`
	`76`	`+ public void enterIgnoreInternal() {`
	`77`	`+ this.ignoreInternalLevel++;`
	`78`	`+ }`
	`79`	`+`
	`80`	`+ public void leaveIgnoreInternal() {`
	`81`	`+ this.ignoreInternalLevel = decrement(this.ignoreInternalLevel);`
	`82`	`+ }`
	`83`	`+`
`72`	`84`	`public boolean isOverCapacity() {`
`73`	`85`	`return this.overCapacity;`
`74`	`86`	`}`
Original file line number	Diff line number	Diff line change
`@@ -18,7 +18,7 @@ public void onMethodEnter(MethodAdviceAdapter adapter, MethodVisitor mv, MethodC`
`18`	`18`	`}`
`19`	`19`
`20`	`20`	`String signature = context.toString();`
`21`		`- enterScope(adapter, signature);`
	`21`	`+ enterScope(adapter, signature, policyNode);`
`22`	`22`	`}`
`23`	`23`	`}`
`24`	`24`
`@@ -43,11 +43,16 @@ public void onMethodExit(MethodAdviceAdapter adapter, MethodVisitor mv, int opco`
`43`	`43`	`adapter.mark(elseLabel);`
`44`	`44`	`adapter.mark(endLabel);`
`45`	`45`
`46`		`- leaveScope(adapter, signature);`
	`46`	`+ leaveScope(adapter, signature, policyNode);`
`47`	`47`	`}`
`48`	`48`	`}`
`49`	`49`
`50`		`- private void enterScope(MethodAdviceAdapter adapter, String signature) {`
	`50`	`+ private void enterScope(MethodAdviceAdapter adapter, String signature, PolicyNode policyNode) {`
	`51`	`+ if (policyNode.isIgnoreInternal()) {`
	`52`	`+ adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);`
	`53`	`+ adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$enterIgnoreInternal);`
	`54`	`+ }`
	`55`	`+`
`51`	`56`	`adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);`
`52`	`57`	`if (PropagatorImpl.isSkipScope(signature)) {`
`53`	`58`	`adapter.push(true);`
`@@ -57,14 +62,19 @@ private void enterScope(MethodAdviceAdapter adapter, String signature) {`
`57`	`62`	`adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$enterPropagator);`
`58`	`63`	`}`
`59`	`64`
`60`		`- private void leaveScope(MethodAdviceAdapter adapter, String signature) {`
	`65`	`+ private void leaveScope(MethodAdviceAdapter adapter, String signature, PolicyNode policyNode) {`
`61`	`66`	`adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);`
`62`	`67`	`if (PropagatorImpl.isSkipScope(signature)) {`
`63`	`68`	`adapter.push(true);`
`64`	`69`	`} else {`
`65`	`70`	`adapter.push(false);`
`66`	`71`	`}`
`67`	`72`	`adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$leavePropagator);`
	`73`	`+`
	`74`	`+ if (policyNode.isIgnoreInternal()) {`
	`75`	`+ adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);`
	`76`	`+ adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$leaveIgnoreInternal);`
	`77`	`+ }`
`68`	`78`	`}`
`69`	`79`
`70`	`80`	`private void isFirstScope(MethodAdviceAdapter adapter) {`
Original file line number	Diff line number	Diff line change
`@@ -16,7 +16,7 @@ public void onMethodEnter(MethodAdviceAdapter adapter, MethodVisitor mv, MethodC`
`16`	`16`	`continue;`
`17`	`17`	`}`
`18`	`18`
`19`		`- enterScope(adapter);`
	`19`	`+ enterScope(adapter, policyNode);`
`20`	`20`
`21`	`21`	`Label elseLabel = new Label();`
`22`	`22`	`Label endLabel = new Label();`
`@@ -39,18 +39,28 @@ public void onMethodExit(MethodAdviceAdapter adapter, MethodVisitor mv, int opco`
`39`	`39`	`continue;`
`40`	`40`	`}`
`41`	`41`
`42`		`- leaveScope(adapter);`
	`42`	`+ leaveScope(adapter, policyNode);`
`43`	`43`	`}`
`44`	`44`	`}`
`45`	`45`
`46`		`- private void enterScope(MethodAdviceAdapter adapter) {`
	`46`	`+ private void enterScope(MethodAdviceAdapter adapter, PolicyNode policyNode) {`
	`47`	`+ if (policyNode.isIgnoreInternal()) {`
	`48`	`+ adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);`
	`49`	`+ adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$enterIgnoreInternal);`
	`50`	`+ }`
	`51`	`+`
`47`	`52`	`adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);`
`48`	`53`	`adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$enterSink);`
`49`	`54`	`}`
`50`	`55`
`51`		`- private void leaveScope(MethodAdviceAdapter adapter) {`
	`56`	`+ private void leaveScope(MethodAdviceAdapter adapter, PolicyNode policyNode) {`
`52`	`57`	`adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);`
`53`	`58`	`adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$leaveSink);`
	`59`	`+`
	`60`	`+ if (policyNode.isIgnoreInternal()) {`
	`61`	`+ adapter.invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);`
	`62`	`+ adapter.invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$leaveIgnoreInternal);`
	`63`	`+ }`
`54`	`64`	`}`
`55`	`65`
`56`	`66`	`private void isFirstScope(MethodAdviceAdapter adapter) {`