Merge pull request #42 from RUB-NDS/new_probes

New probes

Author: ic0ns

.gitignore

@@ -1,5 +1,6 @@
 target/
 apps/
+log/
 pom.xml.tag
 pom.xml.releaseBackup
 pom.xml.versionsBackup

checkstyle.xml

@@ -42,7 +42,7 @@
     <!-- Checks that each Java package has a Javadoc file used for commenting. -->
     <!-- See http://checkstyle.sf.net/config_javadoc.html#JavadocPackage       -->
     <module name="JavadocPackage">
-      <property name="allowLegacy" value="true"/>
+        <property name="allowLegacy" value="true"/>
     </module>
 
     <!-- Checks whether files end with a new line.                        -->
@@ -96,15 +96,15 @@
         <!-- Checks for Headers                                -->
         <!-- See http://checkstyle.sf.net/config_header.html   -->
         <!-- <module name="Header">                            -->
-            <!-- The follow property value demonstrates the ability     -->
-            <!-- to have access to ANT properties. In this case it uses -->
-            <!-- the ${basedir} property to allow Checkstyle to be run  -->
-            <!-- from any directory within a project. See property      -->
-            <!-- expansion,                                             -->
-            <!-- http://checkstyle.sf.net/config.html#properties        -->
-            <!-- <property                                              -->
-            <!--     name="headerFile"                                  -->
-            <!--     value="${basedir}/java.header"/>                   -->
+        <!-- The follow property value demonstrates the ability     -->
+        <!-- to have access to ANT properties. In this case it uses -->
+        <!-- the ${basedir} property to allow Checkstyle to be run  -->
+        <!-- from any directory within a project. See property      -->
+        <!-- expansion,                                             -->
+        <!-- http://checkstyle.sf.net/config.html#properties        -->
+        <!-- <property                                              -->
+        <!--     name="headerFile"                                  -->
+        <!--     value="${basedir}/java.header"/>                   -->
         <!-- </module> -->
 
 
@@ -118,9 +118,9 @@
 
         <!-- Checks for Size Violations.                    -->
         <!-- See http://checkstyle.sf.net/config_sizes.html -->
-	<module name="LineLength">
-	    <property name="max" value="120"/>
-	</module>
+        <module name="LineLength">
+            <property name="max" value="120"/>
+        </module>
         <module name="MethodLength"/>
         <module name="ParameterNumber"/>
 

maven-eclipse-codestyle.xml

@@ -10,7 +10,7 @@
                 <goal>org.codehaus.mojo:exec-maven-plugin:1.2.1:exec</goal>
             </goals>
             <properties>
-                <exec.args>-classpath %classpath de.rub.nds.tlsscanner.Main -connect 127.0.0.1:4433</exec.args>
+                <exec.args>-classpath %classpath de.rub.nds.tlsscanner.Main -connect scotthelme.co.uk -threads 20 -danger 0</exec.args>
                 <exec.executable>java</exec.executable>
             </properties>
         </action>
@@ -24,7 +24,7 @@
                 <goal>org.codehaus.mojo:exec-maven-plugin:1.2.1:exec</goal>
             </goals>
             <properties>
-                <exec.args>-Xdebug -Xrunjdwp:transport=dt_socket,server=n,address=${jpda.address} -classpath %classpath de.rub.nds.tlsscanner.Main -connect 127.0.0.1:4433</exec.args>
+                <exec.args>-Xdebug -Xrunjdwp:transport=dt_socket,server=n,address=${jpda.address} -classpath %classpath de.rub.nds.tlsscanner.Main -connect scotthelme.co.uk -threads 20 -danger 0</exec.args>
                 <exec.executable>java</exec.executable>
                 <jpda.listen>true</jpda.listen>
             </properties>
@@ -39,7 +39,7 @@
                 <goal>org.codehaus.mojo:exec-maven-plugin:1.2.1:exec</goal>
             </goals>
             <properties>
-                <exec.args>-classpath %classpath de.rub.nds.tlsscanner.Main -connect 127.0.0.1:4433</exec.args>
+                <exec.args>-classpath %classpath de.rub.nds.tlsscanner.Main -connect scotthelme.co.uk -threads 20 -danger 0</exec.args>
                 <exec.executable>java</exec.executable>
             </properties>
         </action>

nbactions.xml

@@ -3,18 +3,18 @@
     <modelVersion>4.0.0</modelVersion>
     <artifactId>TLS-Scanner</artifactId>
     <groupId>de.rub.nds.tlsscanner</groupId>
-    <version>2.3</version>
+    <version>2.4</version>
     <packaging>jar</packaging>
     <dependencies>
         <dependency>
             <groupId>de.rub.nds.tlsattacker</groupId>
             <artifactId>TLS-Core</artifactId>
-            <version>2.5</version>
+            <version>2.6</version>
         </dependency>
         <dependency>
             <groupId>de.rub.nds.tlsattacker</groupId>
             <artifactId>Attacks</artifactId>
-            <version>2.5</version>
+            <version>2.6</version>
         </dependency>
         <dependency>
             <groupId>junit</groupId>
@@ -23,6 +23,29 @@
             <scope>test</scope>
         </dependency>
     </dependencies>
+    <profiles>
+        <profile>
+            <id>default</id>
+            <activation>
+                <activeByDefault>true</activeByDefault>
+            </activation>
+            <properties>
+                <includegroups>de.rub.nds.tlsattacker.util.tests.SlowTests,de.rub.nds.tlsattacker.util.tests.IntegrationTests</includegroups>
+            </properties>
+        </profile>
+        <profile>
+            <id>docker-it</id>
+            <activation>
+                <property>
+                    <name>env</name>
+                    <value>dev</value>
+                </property>
+            </activation>
+            <properties>
+                <includegroups>de.rub.nds.tlsattacker.util.tests.SlowTests,de.rub.nds.tlsattacker.util.tests.IntegrationTests,de.rub.nds.tlsattacker.util.tests.DockerTests</includegroups>
+            </properties>
+        </profile>
+    </profiles>
     <build>
         <finalName>TLS-Scanner</finalName>              
         <plugins>
@@ -96,7 +119,23 @@
             <plugin>
                 <groupId>org.apache.maven.plugins</groupId>
                 <artifactId>maven-failsafe-plugin</artifactId>
-                <version>2.19.1</version>
+                <version>2.20.1</version>
+                <configuration>
+                    <!-- By default, the Failsafe plugin excludes various files. We have to override that. -->
+                    <includes>
+                        <include>**/*.java</include>
+                    </includes>
+                    <!-- Integration tests and slow tests are started -->
+                    <groups>${includegroups}</groups>
+                </configuration>
+                <executions>
+                    <execution>
+                        <goals>
+                            <goal>integration-test</goal>
+                            <goal>verify</goal>
+                        </goals>
+                    </execution>
+                </executions>
             </plugin>
             <plugin>
                 <groupId>org.apache.maven.plugins</groupId>

pom.xml

@@ -10,18 +10,11 @@
 
 import com.beust.jcommander.JCommander;
 import com.beust.jcommander.ParameterException;
-import de.rub.nds.tlsattacker.core.config.Config;
 import de.rub.nds.tlsattacker.core.config.delegate.GeneralDelegate;
 import de.rub.nds.tlsattacker.core.exceptions.ConfigurationException;
 import de.rub.nds.tlsscanner.config.ScannerConfig;
 import de.rub.nds.tlsscanner.report.SiteReport;
-import de.rub.nds.tlsscanner.report.SiteReportPrinter;
-import java.io.BufferedReader;
-import java.io.File;
-import java.io.FileNotFoundException;
-import java.io.FileReader;
 import java.io.IOException;
-import org.apache.logging.log4j.Level;
 import org.apache.logging.log4j.LogManager;
 import org.apache.logging.log4j.Logger;
 
@@ -48,33 +41,16 @@ public static void main(String[] args) throws IOException {
                 long time = System.currentTimeMillis();
                 LOGGER.info("Performing Scan, this may take some time...");
                 SiteReport report = scanner.scan();
-                LOGGER.info("Scanned in:" + ((System.currentTimeMillis()-time)/1000) + "s");
-                LOGGER.info(report.getFullReport());
+                LOGGER.info("Scanned in:" + ((System.currentTimeMillis() - time) / 1000) + "s");
+                LOGGER.info(report.getFullReport(config.getReportDetail()));
             } catch (ConfigurationException E) {
                 LOGGER.info("Encountered a ConfigurationException aborting.");
-                LOGGER.debug(E);
+                LOGGER.warn(E);
             }
         } catch (ParameterException E) {
             LOGGER.info("Could not parse provided parameters");
             LOGGER.debug(E);
             commander.usage();
         }
     }
-    
-    public static void scanFile(File f) throws FileNotFoundException, IOException
-    {
-        GeneralDelegate delegate = new GeneralDelegate();
-        delegate.setLogLevel(Level.WARN);
-        delegate.applyDelegate(Config.createConfig());
-        BufferedReader reader = new BufferedReader(new FileReader(f));
-        String line = null;
-        line = reader.readLine();
-        while((line = reader.readLine()) != null)
-        {
-            String host = line.split(",")[2];
-            TlsScanner scanner = new TlsScanner(host,false);
-            scanner.scan();
-        }
-        System.exit(0);
-    }
 }

src/main/java/de/rub/nds/tlsscanner/Main.java

@@ -0,0 +1,119 @@
+/**
+ * TLS-Scanner - A TLS Configuration Analysistool based on TLS-Attacker
+ *
+ * Copyright 2014-2017 Ruhr University Bochum / Hackmanit GmbH
+ *
+ * Licensed under Apache License 2.0
+ * http://www.apache.org/licenses/LICENSE-2.0
+ */
+package de.rub.nds.tlsscanner;
+
+import de.rub.nds.tlsattacker.core.workflow.NamedThreadFactory;
+import de.rub.nds.tlsattacker.core.config.delegate.ClientDelegate;
+import de.rub.nds.tlsscanner.config.ScannerConfig;
+import de.rub.nds.tlsscanner.constants.ProbeType;
+import de.rub.nds.tlsscanner.report.result.ProbeResult;
+import de.rub.nds.tlsscanner.report.SiteReport;
+import de.rub.nds.tlsscanner.probe.TlsProbe;
+import de.rub.nds.tlsscanner.report.after.AfterProbe;
+import java.util.LinkedList;
+import java.util.List;
+import java.util.concurrent.ExecutionException;
+import java.util.concurrent.ExecutorService;
+import java.util.concurrent.Executors;
+import java.util.concurrent.Future;
+import org.apache.logging.log4j.LogManager;
+import org.apache.logging.log4j.Logger;
+
+/**
+ *
+ * @author Robert Merget - [email protected]
+ */
+public class MultiThreadedScanJobExecutor extends ScanJobExecutor {
+
+    private static final Logger LOGGER = LogManager.getLogger(MultiThreadedScanJobExecutor.class.getName());
+
+    private final ExecutorService executor;
+
+    public MultiThreadedScanJobExecutor(int threadCount, String prefix) {
+        executor = Executors.newFixedThreadPool(threadCount, new NamedThreadFactory(prefix));
+    }
+
+    public MultiThreadedScanJobExecutor(ExecutorService executor) {
+        this.executor = executor;
+    }
+
+    public SiteReport execute(ScannerConfig config, ScanJob scanJob) {
+        List<ProbeType> probeTypes = new LinkedList<>();
+
+        List<Future<ProbeResult>> futureResults = new LinkedList<>();
+        for (TlsProbe probe : scanJob.getPhaseOneTestList()) {
+            if (probe.getDanger() <= config.getDangerLevel()) {
+                futureResults.add(executor.submit(probe));
+                probeTypes.add(probe.getType());
+            }
+        }
+        List<ProbeResult> resultList = new LinkedList<>();
+        for (Future<ProbeResult> probeResult : futureResults) {
+            try {
+                resultList.add(probeResult.get());
+            } catch (InterruptedException | ExecutionException ex) {
+                LOGGER.warn("Encoutered Exception while retrieving probeResult");
+                ex.printStackTrace();
+                LOGGER.warn(ex);
+            }
+        }
+
+        ClientDelegate clientDelegate = (ClientDelegate) config.getDelegate(ClientDelegate.class);
+        String hostname = clientDelegate.getHost();
+        SiteReport report = new SiteReport(hostname, probeTypes, config.isNoColor());
+        report.setServerIsAlive(Boolean.TRUE);
+        for (ProbeResult result : resultList) {
+            result.merge(report);
+        }
+        //Finished phase one starting phase 2
+        //Now all basic tests are merged into the site report, so we launch phase 2 so the scanner
+        //has access to basic server configuration
+        for (TlsProbe probe : scanJob.getPhaseTwoTestList()) {
+            probe.adjustConfig(report);
+        }
+        futureResults = new LinkedList<>();
+        resultList = new LinkedList<>();
+        for (TlsProbe probe : scanJob.getPhaseTwoTestList()) {
+            if (probe.getDanger() <= config.getDangerLevel()) {
+                probeTypes.add(probe.getType());
+                if (probe.shouldBeExecuted(report)) {
+                    futureResults.add(executor.submit(probe));
+                } else if (!config.isImplementation()) {
+                    ProbeResult result = probe.getNotExecutedResult();
+                    if (result != null) {
+                        resultList.add(result);
+                    }
+                }
+            }
+        }
+        for (Future<ProbeResult> probeResult : futureResults) {
+            try {
+                resultList.add(probeResult.get());
+            } catch (InterruptedException | ExecutionException ex) {
+                LOGGER.warn("Encoutered Exception while retrieving probeResult");
+                ex.printStackTrace();
+                LOGGER.warn(ex);
+            }
+        }
+        // mergeData phase 2
+        for (ProbeResult result : resultList) {
+            result.merge(report);
+        }
+        //phase 3 - afterprobes
+        for (AfterProbe afterProbe : scanJob.getAfterProbes()) {
+            afterProbe.analyze(report);
+        }
+        return report;
+    }
+
+    @Override
+    public void shutdown() {
+        executor.shutdown();
+    }
+}

src/main/java/de/rub/nds/tlsscanner/MultiThreadedScanJobExecutor.java

@@ -10,7 +10,6 @@
 
 import de.rub.nds.tlsscanner.probe.TlsProbe;
 import de.rub.nds.tlsscanner.report.after.AfterProbe;
-import java.util.LinkedList;
 import java.util.List;
 
 /**