o iB#@sfddlZddlZddlmZddlmZddlmZddlmZddlm Z ddlm Z ddlm Z dd lm Z dd lm Z dd lmZdd lmZdd lmZddlmZddlmZddlmZddlmZddlmZddlmZddlmZddlmZddlmZddlmZddlmZee Z!dZ"dZ#dZ$dZ%dZ&dZ'GdddeZ(d e)fd!d"Z*dS)#N)Any)Optional)Sequence)DEFAULT) ddwaf_config)ddwaf_get_version) ddwaf_object)ddwaf_object_free) ddwaf_run)py_add_or_update_config)py_ddwaf_builder_build_instance)py_ddwaf_builder_init)py_ddwaf_context_init)py_ddwaf_known_addresses)py_remove_config)WAF) DDWaf_info) DDWaf_result)DDWafRulesType)ddwaf_context_capsule) _observator) get_logger) PayloadTypezASM_DD/defaultc @seZdZeZdededededdf ddZede e fd d Z d e d e ddfd dZ edefddZdeee e fdeee e efdefddZdeefddZdejfdededeededef ddZedefddZd!dd ZdS)"DDWafruleset_json_str obfuscation_parameter_key_regexp"obfuscation_parameter_value_regexpmetricsreturnNc Cs|j|_t||d}t}t|}|stdt||_t|jt ||t |j|_ d|_ t h|_ ||d|j}|j rA|jrLtd|j|j|j||_t|_i|_d|_d|_d|_dS)N) key_regex value_regexz-Invalid ruleset provided to DDWaf constructorinitz?DDWAF.__init__: invalid rules ruleset: %s loaded:%s errors:%s r)_set_waf_error_log report_errorrrfrom_json_bytes ValueErrorr _builderr ASM_DD_DEFAULTr _handle_cached_version _asm_dd_cache _set_infoinfofailedLOGGERdebugstructerrors_default_rulesetversion ddwaf_version _rc_products_rc_products_str _rc_updates _lifespan) selfrrr r!config diagnosticsruleset_map_objectr1rBM/home/ubuntu/.local/lib/python3.10/site-packages/ddtrace/appsec/_ddwaf/waf.py__init__,s8       zDDWaf.__init__cCs|jrt|jSgSN)r-rr>rBrBrC required_dataTszDDWaf.required_datar@actionc Cs|jpi}|di}|di}|d|j}||_|D]?\}}t|tr^|dd} rB|d|d|d| |j|q|dd} r^|d|d|dt| |j|dqtt |dgt |d g|rwt j |d d nd ||_ t |dS) Nrulesr6ruleset_versionerrorFzappsec.waf.error::z::loadedr2),:) separatorsr%)r5getr.items isinstancedictr(strrlenjsondumps_infor ) r>r@rH info_structrI errors_resultr8keyvaluerKr6rBrBrCr0Xs0    $ zDDWaf._set_infocCs|jSrE)rXrFrBrBrCr1qsz DDWaf.inforemovalsupdatesc Csd}|D]!\}}|t|j|M}|j|t||dkr%|j|q|D]U\}}}||jvr8t|j|<|j|||dkr]t|jvrW|t|jtM}|jt|j|t }t |}|t |j|||M}| |dt |t |q(|jst }|t |jt|j|M}| |dt ||jtt|j} dddt|jD|_| r| |_|jd7_|S)zFupdate the rules of the WAF instance. return False if an error occurs.TASM_DDupdaterMcss*|]\}}|r|dt|VqdS)rNN)rU).0pvrBrBrC s(z%DDWaf.update_rules..r)rr+r:rPsetdiscardr/addr,rcreate_without_limitsr r0r r7r joinsortedrQr;r-r<) r>r]r^okproductpathrIr@ruleset_object new_handlerBrBrC update_rulesusD              zDDWaf.update_rulescCsRd}|jr |jd7_t|j}d|jd|jd|j|_|s'td|S)Nr[z] u:z r:z7DDWaf._at_request_start: failure to create the context.)r-r=rr;r< rc_productsr3r4)r>ctxrBrBrC_at_request_starts  zDDWaf._at_request_startrsdataephemeral_data timeout_msc CsHt}|stdtdgidt|dd|jiSt}t}t||d}|r1t||dnd} |jt |j || |t |d} Wdn1sNwY| dkrbtd| |j |j j|j } | tksnt| ts~t|t| giddd|jiSt| | d| d | d d t|d| d || d | d } t|| S)Nz'DDWaf.run: dry run. no context created.rg.AF) observatoriz%run DDWAF error: %d input %s error %seventsactionsdurationg@@timeout attributeskeep)time monotonicr3r4rempty_observatorrr_lockr rsintr5r1r6DDWAF_ERR_INTERNALrRrSr ) r>rsrurvrwstart result_objrxwrapperwrapper_ephemeralrKresultmain_resrBrBrCruns< $   z DDWaf.runcCs t|jSrE)boolr-rFrBrBrC initializeds zDDWaf.initializedcCst|dr t|jdSdS)Nr7)hasattrr r7rFrBrBrC__del__s z DDWaf.__del__)r"N) __name__ __module__ __qualname__rrbytesrrDpropertylistrTrGrr0rr1rtuplerrrprrrtr WAF_TIMEOUTrfloatrrrrrBrBrBrCr)sT ( ( 'rr"cCs tdS)NzUTF-8)rdecoderBrBrBrCr8s r8)+rVrtypingrrrddtrace.appsec._constantsr!ddtrace.appsec._ddwaf.ddwaf_typesrrrr r r r r rrrddtrace.appsec._ddwaf.waf_stubsrrrrrddtrace.appsec._utilsrddtrace.internal.loggerrddtrace.internal.remoteconfigrrr3rDDWAF_ERR_INVALID_OBJECTDDWAF_ERR_INVALID_ARGUMENTDDWAF_OK DDWAF_MATCHr,rrTr8rBrBrBrCsF                       /