add dubbo provider track

Author: lostsnow

dongtai-common/src/main/java/io/dongtai/iast/common/scope/Scope.java

@@ -5,6 +5,9 @@ public enum Scope {
     HTTP_ENTRY(2),
     SERVLET_INPUT_STREAM_READ(3),
     SERVLET_OUTPUT_WRITE(4),
+    DUBBO_REQUEST(5),
+    DUBBO_ENTRY(6),
+    DUBBO_SOURCE(7),
     ;
 
     private final int id;

dongtai-common/src/main/java/io/dongtai/iast/common/scope/ScopeAggregator.java

@@ -3,6 +3,9 @@
 public class ScopeAggregator {
     private final GeneralScope httpRequestScope = new GeneralScope();
     private final GeneralScope httpEntryScope = new GeneralScope();
+    private final GeneralScope dubboRequestScope = new GeneralScope();
+    private final GeneralScope dubboEntryScope = new GeneralScope();
+    private final GeneralScope dubboSourceScope = new GeneralScope();
     private final GeneralScope servletInputStreamReadScope = new GeneralScope();
     private final GeneralScope servletOutputStreamWriteScope = new GeneralScope();
     private final PolicyScope policyScope = new PolicyScope();
@@ -15,6 +18,18 @@ public GeneralScope getHttpEntryScope() {
         return httpEntryScope;
     }
 
+    public GeneralScope getDubboRequestScope() {
+        return dubboRequestScope;
+    }
+
+    public GeneralScope getDubboEntryScope() {
+        return dubboEntryScope;
+    }
+
+    public GeneralScope getDubboSourceScope() {
+        return dubboSourceScope;
+    }
+
     public GeneralScope getServletInputStreamReadScope() {
         return servletInputStreamReadScope;
     }

dongtai-common/src/main/java/io/dongtai/iast/common/scope/ScopeTracker.java

@@ -16,13 +16,19 @@ public GeneralScope getScope(Scope scope) {
                 return this.get().getServletInputStreamReadScope();
             case SERVLET_OUTPUT_WRITE:
                 return this.get().getServletOutputStreamWriteScope();
+            case DUBBO_REQUEST:
+                return this.get().getDubboRequestScope();
+            case DUBBO_ENTRY:
+                return this.get().getDubboEntryScope();
+            case DUBBO_SOURCE:
+                return this.get().getDubboSourceScope();
             default:
                 return null;
         }
     }
 
     public boolean inEnterEntry() {
-        return this.get().getHttpEntryScope().in();
+        return this.get().getHttpEntryScope().in() || this.get().getDubboRequestScope().in();
     }
 
     public PolicyScope getPolicyScope() {

dongtai-core/src/main/java/io/dongtai/iast/core/EngineManager.java

@@ -140,4 +140,12 @@ public static void enterHttpEntry(Map<String, Object> requestMeta) {
         TAINT_RANGES_POOL.set(new HashMap<Integer, TaintRanges>());
         ScopeManager.SCOPE_TRACKER.getScope(Scope.HTTP_ENTRY).enter();
     }
+
+    public static void enterDubboEntry(Map<String, Object> requestMeta) {
+        REQUEST_CONTEXT.set(requestMeta);
+        TRACK_MAP.set(new HashMap<Integer, MethodEvent>(1024));
+        TAINT_HASH_CODES.set(new HashSet<Integer>());
+        TAINT_RANGES_POOL.set(new HashMap<Integer, TaintRanges>());
+        ScopeManager.SCOPE_TRACKER.getScope(Scope.DUBBO_ENTRY).enter();
+    }
 }

dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/asm/AsmMethods.java

@@ -4,6 +4,7 @@
 
 import java.lang.dongtai.SpyDispatcher;
 import java.lang.dongtai.SpyDispatcherHandler;
+import java.net.InetSocketAddress;
 import java.util.*;
 
 /**
@@ -131,6 +132,49 @@ static Method getAsmMethod(final Class<?> clazz,
             int.class
     );
 
+    Method SPY$enterDubbo = InnerHelper.getAsmMethod(
+            SpyDispatcher.class,
+            "enterDubbo"
+    );
+    Method SPY$leaveDubbo = InnerHelper.getAsmMethod(
+            SpyDispatcher.class,
+            "leaveDubbo",
+            Object.class,
+            Object.class,
+            Object.class,
+            byte.class
+    );
+    Method SPY$isFirstLevelDubbo = InnerHelper.getAsmMethod(
+            SpyDispatcher.class,
+            "isFirstLevelDubbo"
+    );
+    Method SPY$collectDubboRequest = InnerHelper.getAsmMethod(
+            SpyDispatcher.class,
+            "collectDubboRequest",
+            Object.class,
+            Object.class,
+            Object.class,
+            String.class,
+            InetSocketAddress.class,
+            boolean.class,
+            boolean.class,
+            boolean.class,
+            boolean.class
+    );
+
+    Method SPY$collectDubboRequestSource = InnerHelper.getAsmMethod(
+            SpyDispatcher.class,
+            "collectDubboRequestSource",
+            Object.class,
+            Object.class,
+            String.class,
+            Object[].class,
+            Map.class,
+            String.class,
+            String.class,
+            String.class
+    );
+
     Method SPY$enterSource = InnerHelper.getAsmMethod(
             SpyDispatcher.class,
             "enterSource"

dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/plugin/framework/dubbo/DispatchDubbo.java

@@ -7,13 +7,19 @@
 
 public class DispatchDubbo implements DispatchPlugin {
     public static final String LEGACY_DUBBO_SYNC_HANDLER = " com.alibaba.dubbo.rpc.listener.ListenerInvokerWrapper".substring(1);
+    public static final String LEGACY_DUBBO_EXCHANGE_HANDLER = " com.alibaba.dubbo.remoting.exchange.support.header.HeaderExchangeHandler".substring(1);
+    public static final String LEGACY_DUBBO_PROXY_HANDLER = " com.alibaba.dubbo.rpc.proxy.AbstractProxyInvoker".substring(1);
 
     @Override
     public ClassVisitor dispatch(ClassVisitor classVisitor, ClassContext context, Policy policy) {
         String className = context.getClassName();
 
         if (LEGACY_DUBBO_SYNC_HANDLER.equals(className)) {
             classVisitor = new LegacyDubboSyncHandlerAdapter(classVisitor, context);
+        } else if (LEGACY_DUBBO_EXCHANGE_HANDLER.equals(className)) {
+            classVisitor = new LegacyDubboExchangeHandlerAdapter(classVisitor, context);
+        } else if (LEGACY_DUBBO_PROXY_HANDLER.equals(className)) {
+            classVisitor = new LegacyDubboProxyHandlerAdapter(classVisitor, context);
         }
 
         return classVisitor;

dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/plugin/framework/dubbo/LegacyDubboExchangeHandleRequestAdviceAdapter.java

@@ -0,0 +1,128 @@
+package io.dongtai.iast.core.bytecode.enhance.plugin.framework.dubbo;
+
+import io.dongtai.iast.core.bytecode.enhance.ClassContext;
+import io.dongtai.iast.core.bytecode.enhance.plugin.AbstractAdviceAdapter;
+import org.objectweb.asm.*;
+import org.objectweb.asm.commons.Method;
+
+public class LegacyDubboExchangeHandleRequestAdviceAdapter extends AbstractAdviceAdapter {
+    private static final Method GET_URL_METHOD = Method.getMethod(" com.alibaba.dubbo.common.URL getUrl()".substring(1));
+    private static final Method URL_TO_STRING_METHOD = Method.getMethod("java.lang.String toString()");
+    private static final Method GET_REMOTE_ADDRESS_METHOD = Method.getMethod("java.net.InetSocketAddress getRemoteAddress()");
+    private static final Method IS_TWO_WAY_METHOD = Method.getMethod("boolean isTwoWay()");
+    private static final Method IS_EVENT_METHOD = Method.getMethod("boolean isEvent()");
+    private static final Method IS_BROKEN_METHOD = Method.getMethod("boolean isBroken()");
+    private static final Method IS_HEARTBEAT_METHOD = Method.getMethod("boolean isHeartbeat()");
+    private static final Method GET_RESULT_METHOD = Method.getMethod("java.lang.Object getResult()");
+    private static final Method GET_STATUS_METHOD = Method.getMethod("byte getStatus()");
+
+    private final Type endpointType;
+    private final Type urlType;
+    private final Type channelType;
+    private final Type requestType;
+    private final Type responseType;
+
+    protected LegacyDubboExchangeHandleRequestAdviceAdapter(MethodVisitor mv, int access, String name, String desc, String signature, ClassContext context) {
+        super(mv, access, name, desc, context, "dubbo", signature);
+        this.endpointType = Type.getObjectType(" com/alibaba/dubbo/remoting/Endpoint".substring(1));
+        this.urlType = Type.getObjectType(" com/alibaba/dubbo/common/URL".substring(1));
+        this.channelType = Type.getObjectType(" com/alibaba/dubbo/remoting/Channel".substring(1));
+        this.requestType = Type.getObjectType(" com/alibaba/dubbo/remoting/exchange/Request".substring(1));
+        this.responseType = Type.getObjectType(" com/alibaba/dubbo/remoting/exchange/Response".substring(1));
+    }
+
+    @Override
+    protected void before() {
+        mark(tryLabel);
+        Label elseLabel = new Label();
+
+        enterDubbo();
+        isFirstLevelDubbo();
+        mv.visitJumpInsn(EQ, elseLabel);
+
+        collectDubboRequest();
+
+        mark(elseLabel);
+    }
+
+    @Override
+    protected void after(int opcode) {
+        // if (opcode != ATHROW) {
+        //     Label elseLabel = new Label();
+        //     isFirstLevelDubbo();
+        //     mv.visitJumpInsn(EQ, elseLabel);
+        //     collectDubboResponse(opcode);
+        //     mark(elseLabel);
+        // }
+
+        leaveDubbo(opcode);
+    }
+
+    private void enterDubbo() {
+        invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
+        invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$enterDubbo);
+    }
+
+    private void leaveDubbo(int opcode) {
+        int retLocal = newLocal(ASM_TYPE_OBJECT);
+        if (!isThrow(opcode)) {
+            loadReturn(opcode);
+        } else {
+            pushNull();
+        }
+        storeLocal(retLocal);
+        invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
+        loadArg(1);
+        loadLocal(retLocal);
+        if (!isThrow(opcode)) {
+            loadLocal(retLocal);
+            invokeVirtual(this.responseType, GET_RESULT_METHOD);
+            loadLocal(retLocal);
+            invokeVirtual(this.responseType, GET_STATUS_METHOD);
+        } else {
+            pushNull();
+            byte b = 0;
+            push(b);
+        }
+        invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$leaveDubbo);
+    }
+
+    private void isFirstLevelDubbo() {
+        invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
+        invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$isFirstLevelDubbo);
+    }
+
+    private void collectDubboRequest() {
+        Label tryL = new Label();
+        Label catchL = new Label();
+        Label exHandlerL = new Label();
+        visitTryCatchBlock(tryL, catchL, exHandlerL, ASM_TYPE_THROWABLE.getInternalName());
+        visitLabel(tryL);
+
+        invokeStatic(ASM_TYPE_SPY_HANDLER, SPY_HANDLER$getDispatcher);
+        loadThis();
+        loadArg(0);
+        loadArg(1);
+        loadArg(0);
+        invokeInterface(this.endpointType, GET_URL_METHOD);
+        invokeVirtual(this.urlType, URL_TO_STRING_METHOD);
+        loadArg(0);
+        invokeInterface(this.channelType, GET_REMOTE_ADDRESS_METHOD);
+        loadArg(1);
+        invokeVirtual(this.requestType, IS_TWO_WAY_METHOD);
+        loadArg(1);
+        invokeVirtual(this.requestType, IS_EVENT_METHOD);
+        loadArg(1);
+        invokeVirtual(this.requestType, IS_BROKEN_METHOD);
+        loadArg(1);
+        invokeVirtual(this.requestType, IS_HEARTBEAT_METHOD);
+        invokeInterface(ASM_TYPE_SPY_DISPATCHER, SPY$collectDubboRequest);
+
+        visitLabel(catchL);
+        Label endL = new Label();
+        visitJumpInsn(GOTO, endL);
+        visitLabel(exHandlerL);
+        visitVarInsn(ASTORE, this.nextLocal);
+        visitLabel(endL);
+    }
+}

dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/plugin/framework/dubbo/LegacyDubboExchangeHandlerAdapter.java

@@ -0,0 +1,29 @@
+package io.dongtai.iast.core.bytecode.enhance.plugin.framework.dubbo;
+
+import io.dongtai.iast.core.bytecode.enhance.ClassContext;
+import io.dongtai.iast.core.bytecode.enhance.plugin.AbstractClassVisitor;
+import io.dongtai.iast.core.utils.AsmUtils;
+import io.dongtai.log.DongTaiLog;
+import org.objectweb.asm.ClassVisitor;
+import org.objectweb.asm.MethodVisitor;
+
+public class LegacyDubboExchangeHandlerAdapter extends AbstractClassVisitor {
+    public static final String LEGACY_DUBBO_EXCHANGE_HANDLE_REQUEST = " com.alibaba.dubbo.remoting.exchange.support.header.HeaderExchangeHandler.handleRequest(com.alibaba.dubbo.remoting.exchange.ExchangeChannel,com.alibaba.dubbo.remoting.exchange.Request)".substring(1);
+
+    public LegacyDubboExchangeHandlerAdapter(ClassVisitor classVisitor, ClassContext context) {
+        super(classVisitor, context);
+    }
+
+    @Override
+    public MethodVisitor visitMethod(final int access, final String name, final String desc, final String signature, final String[] exceptions) {
+        MethodVisitor mv = super.visitMethod(access, name, desc, signature, exceptions);
+        String signCode = AsmUtils.buildSignature(context.getClassName(), name, desc);
+
+        if (LEGACY_DUBBO_EXCHANGE_HANDLE_REQUEST.equals(signCode)) {
+            DongTaiLog.debug("Adding dubbo provider tracking by {}", signCode);
+            mv = new LegacyDubboExchangeHandleRequestAdviceAdapter(mv, access, name, desc, signCode, this.context);
+            setTransformed();
+        }
+        return mv;
+    }
+}

dongtai-core/src/main/java/io/dongtai/iast/core/bytecode/enhance/plugin/framework/dubbo/LegacyDubboProxyHandlerAdapter.java

@@ -0,0 +1,29 @@
+package io.dongtai.iast.core.bytecode.enhance.plugin.framework.dubbo;
+
+import io.dongtai.iast.core.bytecode.enhance.ClassContext;
+import io.dongtai.iast.core.bytecode.enhance.plugin.AbstractClassVisitor;
+import io.dongtai.iast.core.utils.AsmUtils;
+import io.dongtai.log.DongTaiLog;
+import org.objectweb.asm.ClassVisitor;
+import org.objectweb.asm.MethodVisitor;
+
+public class LegacyDubboProxyHandlerAdapter extends AbstractClassVisitor {
+    public static final String LEGACY_DUBBO_PROXY_HANDLER_INVOKE = " com.alibaba.dubbo.rpc.proxy.AbstractProxyInvoker.invoke(com.alibaba.dubbo.rpc.Invocation)".substring(1);
+
+    public LegacyDubboProxyHandlerAdapter(ClassVisitor classVisitor, ClassContext context) {
+        super(classVisitor, context);
+    }
+
+    @Override
+    public MethodVisitor visitMethod(final int access, final String name, final String desc, final String signature, final String[] exceptions) {
+        MethodVisitor mv = super.visitMethod(access, name, desc, signature, exceptions);
+        String signCode = AsmUtils.buildSignature(context.getClassName(), name, desc);
+
+        if (LEGACY_DUBBO_PROXY_HANDLER_INVOKE.equals(signCode)) {
+            DongTaiLog.debug("Adding dubbo provider source tracking by {}", signCode);
+            mv = new LegacyDubboProxyHandlerInvokeAdviceAdapter(mv, access, name, desc, signCode, this.context);
+            setTransformed();
+        }
+        return mv;
+    }
+}