o io7 @sddlZddlZddlZddlZddlZddlmZddlmZddlmZddlm Z ddl m Z ddl m Z ddl mZdd lmZdd lmZdd lmZdd lmZeeZd ZdZdZGdddZGdddZedgidddeiZGdddZ GdddZ!GdddZ"GdddZ#Gdd d Z$d!ed"ed#eefd$d%Z%d&e&d#e&fd'd(Z'd&ed#eefd)d*Z(Gd+d,d,Z)d-e d#e*fd.d/Z+d-e d#efd0d1Z,d;d2ej-d3e&d4e.d#e&fd5d6Z/ej0d#ej1dfd7d8Z2d-e d#e*fd9d:Z3dS)<N)Any)Optional)Union)SUPPORTED_PROXY_SPAN_NAMES)Span) API_SECURITY)APPSEC)"_get_header_value_case_insensitive)unpatched_json_loads) get_logger)configc@sZeZdZdddZdeddfddZdeddfd d Zd eddfd d ZdefddZ dS) _observatorreturnNcCsd|_d|_d|_dSN string_lengthcontainer_sizecontainer_depthselfrI/home/ubuntu/.local/lib/python3.10/site-packages/ddtrace/appsec/_utils.py__init__ z_observator.__init__lengthcC&|jdur ||_dSt|j||_dSr)rmax)rrrrrset_string_length#  z_observator.set_string_lengthsizecCrr)rr)rr"rrrset_container_size)r!z_observator.set_container_sizedepthcCrr)rr)rr$rrrset_container_depth/r!z_observator.set_container_depthcCsd|jd|jd|jdS)Nz_observator(length=z, size=z, depth=)rrrrr__repr__5sz_observator.__repr__rN) __name__ __module__ __qualname__rintr r#r%strr'rrrrrs  rc@steZdZgdZ ddedeeeefdeeefde de de d e d eeefd e d d fddZ d efddZ d S) DDWaf_result return_codedataactionsruntime total_runtimetimeout truncation meta_tagsmetrics api_securitykeepFr0r1r2r3r4r5r6 derivativesr:rNc Cs||_||_||_||_||_||_||_i|_i|_i|_ | D],\} } | dr1| |j | <q"t | t r<| |j| <q"t | trIt| |j| <q"| |j| <q"| |_dS)Nz _dd.appsec.s.)r0r1r2r3r4r5r6r8r7r9items startswith isinstancer-boolr,r:) rr0r1r2r3r4r5r6r;r:kvrrrrHs&        zDDWaf_result.__init__cCs\d|jd|jd|jd|jd|jd|jd|jd|jd |jd |j d |j S) NzDDWaf_result(return_code: z data: z , actions: z , runtime: z, total_runtime: z , timeout: z, truncation: z , meta_tags: z ) metrics: z, api_security: z, keep: r/rrrrr'is(zDDWaf_result.__repr__)F)r)r*r+ __slots__r,listdictr-rfloatr?rrr'rrrrr.9s2    !r.iFc @s@eZdZgdZdededededdf dd Zdefd d ZdS) DDWaf_infoloadedfailederrorsversionrIrJrKrLrNcCs||_||_||_||_dSrrH)rrIrJrKrLrrrrys zDDWaf_info.__init__cCsd|j|j|j|jfS)Nz1{loaded: %d, failed: %d, errors: %s, version: %s}rHrrrrr's zDDWaf_info.__repr__)r)r*r+rBr,r-rr'rrrrrGvsrGc@eZdZgdZdddZdS)Truncation_resultrrNcCsg|_g|_g|_dSrrrrrrrrzTruncation_result.__init__r(r)r*r+rBrrrrrrNrNc@rM) Rasp_result)blockedsum_evaldurationtotal_durationevalmatchr5 durationsrNcCsLd|_d|_d|_d|_tt|_tt|_tt|_ tt |_ dS)NFrrF) rRrSrTrU collections defaultdictr,rVrWr5rErXrrrrrs   zRasp_result.__init__r(rOrrrrrQrPrQc@seZdZgdZ     ddeded ed ed ed ed dfddZddeded eeeffddZ ded e eeeffddZ ded e fddZ dS) Block_config)block_idgrpc_status_code status_codetype content_typelocationauto defaultr_r^r]security_response_idra_kwargsrNcKs2||_||_||_||_|tj||_d|_dS)Nzapplication/json) r\r]r^r_replacerSECURITY_RESPONSE_IDrar`)rr_r^r]rgrarhrrrrs   zBlock_config.__init__keycCs|dkrd}t|||S)a Dictionary-like get method for backward compatibility with Lambda integration. Returns the attribute value if it exists, otherwise returns the default value. This allows Block_config to be used in contexts that expect dictionary-like access. content-typer`getattr)rrkrerrrgets zBlock_config.getcCs|dkrd}t||dSNrlr`rmrrkrrr __getitem__s zBlock_config.__getitem__cCs|dkrd}tt||dSrp)r?rnrqrrr __contains__szBlock_config.__contains__)rbrcrdrerfr)r)r*r+rBr-r,rrrrorrrr?rsrrrrr[s2  r[c@rM)Telemetry_result) rR triggeredr5rLrTrUr6rasp rate_limitederrorrNcCsDd|_d|_d|_d|_d|_d|_t|_t|_ d|_ d|_ dS)NFrrfrF) rRrur5rLrTrUrNr6rQrvrwrxrrrrrs zTelemetry_result.__init__r(rOrrrrrts rtraw_bodyheadersrcCs|sdSt|tr |S|sdStddt|Dd}|s!dSdtdtfdd}d}z'd|vr:t||}W|Sd |vrQd dlmm}| ||}W|SWdSt ydt j d d d YdSw)NcSsi|] \}}t|t|qSr)r-).0r@rArrr sz'parse_response_body..rlbdrcSsft|trt|dttfr|ddd|}t|ddr&|jddd}t|tj kr1t d|S)NrdecodeFzUTF-8ignore)rKzresponse body larger than 16MB) r>rCr-bytesjoinrnr~lenrMAX_PAYLOAD_SIZE ValueError)r}rrr access_bodys z(parse_response_body..access_bodyjsonxmlrzFailed to parse response bodyTexc_info) r>rDr r<rr ddtrace.vendor.xmltodictvendor xmltodictparse Exceptionlogdebug)ryrzr`rreq_bodyrrrrparse_response_bodys6    ruser_idcCs(ddl}d||ddS)Nranon_ )hashlibsha256encode hexdigest)rrrrr _hash_user_ids rc CsRzt|}|WSty(zddl}||}|WYSty'YYdSww)Nr)r,ruuidUUID)r_rrrr _safe_userids    rc @seZdZdeddfddZdejedejefddZ defd d Z defd d Z defd dZ defddZ ddedededeeeeefffddZdS)_UserInfoRetrieveruserrNcCs2||_gd|_gd|_gd|_gd|_dS)N) pkiduiduseridrPKIDUIDUSERID)usernamerloginUSERNAMEUSERLOGIN)emailmailaddressEMAILMAILADDRESS)namefullname full_name first_nameNAMEFULLNAME FULL_NAME FIRST_NAME)rpossible_user_id_fieldspossible_login_fieldspossible_email_fieldspossible_name_fields)rrrrrr's    z_UserInfoRetriever.__init__possible_fieldscCs,|D]}t|j|d}|dur|SqdSr)rnr)rrfieldvaluerrrfind_in_user_model7s z%_UserInfoRetriever.find_in_user_modelcCs,t|jtjd}|dur|S||j}|Sr)rnr asm_config_user_model_login_fieldrr)r user_loginrrr get_userid?s  z_UserInfoRetriever.get_useridcCsbt|jtjd}|dur|St|jdr+z|jWSty*tjdddYnw| |j S)N get_usernamez6User model get_username member produced an exception: Tr) rnrr_user_model_name_fieldhasattrrrrrrr)rrrrrrGs    z_UserInfoRetriever.get_usernamecC(t|jtjd}|dur|S||jSr)rnrr_user_model_email_fieldrr)rrrrrget_user_emailT z!_UserInfoRetriever.get_user_emailcCrr)rnrrrrr)rrrrrget_name[rz_UserInfoRetriever.get_nameFrrrcCsTi}|}|durdifS|r||d<|r||d<|r&||d<||fS)z In safe mode, try to get the user id from the user object. In extended mode, try to also get the username (which will be the returned user_id), email and name. Nrrr)rrrr)rrrruser_extra_inforrrr get_user_infobs   z _UserInfoRetriever.get_user_info)FFF)r)r*r+rrtypingSequencer-rrrrrrr?tuplerDrrrrrr&s 0rspancCs2tjr|tjp iddduS|tjduS)Ntriggers)r_use_metastruct_for_triggers_get_struct_tagrSTRUCTroget_tagJSONrrrr has_triggerswsrcCsjtjr|tjp iddS|tj}|r3z t |ddWSt y2t j dddYdSwdS)NrzFailed to parse triggersTr) rrrrrrorrrloadsrrr)r json_payloadrrr get_triggers}s  rloggermsgoffsetcCs4|dd|\}}}}|d|d|d|dS)NF[z, line z, in ]) findCaller)rrrfilename line_number function_name _stack_inforrradd_context_logsrc csddl}ddl}ddlm}ddlm}|j}||_|j}t|d|tj }dt_ zdVWt|d|||_tj r@|t_ dSdt_ dSt|d|||_tj rU|t_ wdt_ w)z Context manager to temporarily unpatch `subprocess.Popen` for testing purposes. This is useful to ensure that the original `Popen` behavior is restored after the context. rN)unpatched_close)unpatched_PopenPopenTF) os subprocessddtrace.internal._unpatchedrrclosersetattrr_bypass_instrumentation_for_waf#_is_testing_instrumentation_for_waf)rrrroriginal_os_closeoriginal_popenoriginal_bypass_flagrrrunpatching_popens.        rcCs |jtvSr)rrrrrris_inferred_spans r)r)4rY contextlibrloggingrrrrddtrace._trace._inferred_proxyrddtrace._trace.spanrddtrace.appsec._constantsrr)ddtrace.contrib.internal.trace_utils_baser rr ddtrace.internal.loggerr ddtrace.internal.settings.asmr rr)r_TRUNC_STRING_LENGTH_TRUNC_CONTAINER_DEPTH_TRUNC_CONTAINER_SIZErr. Binding_errorrGrNrQr[rtrr-rrrr?rrLoggerr,rcontextmanagerIteratorrrrrrrsL           : )+Q !