Close ISSUE HXSecurity/DongTai#147 <DongTai-agent-java>

iast-core/src/main/java/com/secnium/iast/core/AbstractThread.java

@@ -22,7 +22,6 @@ public void run() {
             EngineManager.turnOffLingzhi();
         }
         try {
-            Thread.sleep(properties.getReportInterval());
             send();
         } catch (IOException e) {
             logger.error("report error reason: ", e);

iast-core/src/main/java/com/secnium/iast/core/EngineManager.java

@@ -1,5 +1,6 @@
 package com.secnium.iast.core;
 
+import com.secnium.iast.core.handler.models.IastReplayModel;
 import com.secnium.iast.core.handler.models.MethodEvent;
 import com.secnium.iast.core.middlewarerecognition.IastServer;
 import com.secnium.iast.core.middlewarerecognition.ServerDetect;
@@ -37,6 +38,7 @@ public class EngineManager {
 
     private static final ArrayBlockingQueue<String> REPORTS = new ArrayBlockingQueue<String>(2048);
     private static final ArrayBlockingQueue<String> METHOD_REPORT = new ArrayBlockingQueue<String>(2048);
+    private final static ArrayBlockingQueue<IastReplayModel> REPLAY_QUEUE = new ArrayBlockingQueue<IastReplayModel>(256);
 
     private static boolean logined = false;
     private static int reqCounts = 0;
@@ -152,6 +154,26 @@ public static boolean hasNewReport() {
         return !REPORTS.isEmpty();
     }
 
+    public static int getReportQueueSize() {
+        return REPORTS.size();
+    }
+
+    public static boolean hasReplayData() {
+        return !REPLAY_QUEUE.isEmpty();
+    }
+
+    public static IastReplayModel getReplayModel() {
+        return REPLAY_QUEUE.poll();
+    }
+
+    public static void sendReplayModel(IastReplayModel replayModel) {
+        REPLAY_QUEUE.offer(replayModel);
+    }
+
+    public static int getReplayQueueSize() {
+        return REPLAY_QUEUE.size();
+    }
+
     public static void sendMethodReport(String report) {
         METHOD_REPORT.offer(report);
     }
@@ -164,6 +186,10 @@ public static boolean hasMethodReport() {
         return !METHOD_REPORT.isEmpty();
     }
 
+    public static int getMethodReportQueueSize() {
+        return METHOD_REPORT.size();
+    }
+
     public static boolean getIsLoginLogic() {
         return LOGIN_LOGIC_WEIGHT.get() != null && LOGIN_LOGIC_WEIGHT.get().equals(2);
     }

iast-core/src/main/java/com/secnium/iast/core/PropertyUtils.java

@@ -22,6 +22,7 @@ public class PropertyUtils {
     private String iastDumpPath;
     private Long heartBeatInterval = -1L;
     private Long reportInterval = -1L;
+    private Long replayInterval = -1L;
     private String serverUrl;
     private String namespace;
     private String engineName;
@@ -165,10 +166,10 @@ public boolean isEnableDumpClass() {
     }
 
     public long getReplayInterval() {
-        if (heartBeatInterval == -1L) {
-            heartBeatInterval = Long.valueOf(System.getProperty("iast.service.replay.interval", cfg.getProperty("iast.service.replay.interval", "300000")));
+        if (replayInterval == -1L) {
+            replayInterval = Long.valueOf(System.getProperty("iast.service.replay.interval", cfg.getProperty("iast.service.replay.interval", "5000")));
         }
-        return heartBeatInterval;
+        return replayInterval;
     }
 
     public long getReportInterval() {
@@ -178,6 +179,13 @@ public long getReportInterval() {
         return reportInterval;
     }
 
+    public long getHeartBeatInterval() {
+        if (heartBeatInterval == -1L) {
+            heartBeatInterval = Long.valueOf(System.getProperty("iast.service.heartbeat.interval", cfg.getProperty("iast.service.heartbeat.interval", "5")));
+        }
+        return heartBeatInterval;
+    }
+
     public String getBaseUrl() {
         if (null == serverUrl) {
             serverUrl = System.getProperty("iast.server.url", cfg.getProperty("iast.server.url"));

iast-core/src/main/java/com/secnium/iast/core/ServiceFactory.java

@@ -2,6 +2,7 @@
 
 import com.google.common.util.concurrent.ThreadFactoryBuilder;
 import com.secnium.iast.core.replay.HttpRequestReplay;
+import com.secnium.iast.core.report.HeartBeatSender;
 import com.secnium.iast.core.report.MethodReportSender;
 import com.secnium.iast.core.report.ReportSender;
 
@@ -16,11 +17,14 @@ public class ServiceFactory {
     private static ServiceFactory INSTANCE;
     private final long replayInterval;
     private final long reportInterval;
-    private final ScheduledExecutorService executorService;
+    private final long heartBeatInterval;
+    private final ScheduledExecutorService heartBeatService;
+    private final ScheduledExecutorService reportService;
 
     ReportSender report = null;
     HttpRequestReplay requestReplay = null;
     MethodReportSender methodReportSender = null;
+    HeartBeatSender heartBeatSender = null;
 
     public static ServiceFactory getInstance() {
         if (null == INSTANCE) {
@@ -37,19 +41,23 @@ public ServiceFactory() {
         PropertyUtils propertiesUtils = PropertyUtils.getInstance();
         this.replayInterval = propertiesUtils.getReplayInterval();
         this.reportInterval = propertiesUtils.getReportInterval();
-        this.executorService = Executors.newSingleThreadScheduledExecutor(new ThreadFactoryBuilder().setNameFormat("dongtai-engine-report").build());
+        this.heartBeatInterval = propertiesUtils.getHeartBeatInterval();
+        this.heartBeatService = Executors.newSingleThreadScheduledExecutor(new ThreadFactoryBuilder().setNameFormat("dongtai-heartbeat").build());
+        this.reportService = Executors.newSingleThreadScheduledExecutor(new ThreadFactoryBuilder().setNameFormat("dongtai-report").build());
     }
 
     public void init() {
+        heartBeatSender = new HeartBeatSender();
         methodReportSender = new MethodReportSender();
         report = new ReportSender();
         requestReplay = new HttpRequestReplay();
     }
 
     public void start() {
-        executorService.scheduleWithFixedDelay(methodReportSender, 0, reportInterval, TimeUnit.MILLISECONDS);
-        executorService.scheduleWithFixedDelay(report, 0, reportInterval, TimeUnit.MILLISECONDS);
-        executorService.scheduleWithFixedDelay(requestReplay, 0, replayInterval, TimeUnit.MILLISECONDS);
+        heartBeatService.scheduleWithFixedDelay(heartBeatSender, 0, heartBeatInterval, TimeUnit.SECONDS);
+        reportService.scheduleWithFixedDelay(methodReportSender, 0, reportInterval, TimeUnit.MILLISECONDS);
+        reportService.scheduleWithFixedDelay(report, 0, reportInterval, TimeUnit.MILLISECONDS);
+        reportService.scheduleWithFixedDelay(requestReplay, 0, replayInterval, TimeUnit.MILLISECONDS);
     }
 
     public void stop() {

iast-core/src/main/java/com/secnium/iast/core/handler/vulscan/ReportConstant.java

@@ -86,4 +86,7 @@ public class ReportConstant {
     public static final String OVER_POWER_AUTH_COOKIE = "cookie";
     public static final String OVER_POWER_TRACE_ID = "x-trace-id";
 
+    public static final String REPORT_QUEUE = "report_queue";
+    public static final String METHOD_QUEUE = "method_queue";
+    public static final String REPLAY_QUEUE = "replay_queue";
 }

iast-core/src/main/java/com/secnium/iast/core/replay/HttpRequestReplay.java

@@ -1,6 +1,7 @@
 package com.secnium.iast.core.replay;
 
 import com.secnium.iast.core.AbstractThread;
+import com.secnium.iast.core.EngineManager;
 import com.secnium.iast.core.handler.models.IastReplayModel;
 import com.secnium.iast.core.report.ErrorLogReport;
 import com.secnium.iast.core.util.HttpClientHostnameVerifier;
@@ -22,7 +23,6 @@
 import java.nio.charset.Charset;
 import java.util.HashMap;
 import java.util.Map;
-import java.util.concurrent.ArrayBlockingQueue;
 
 /**
  * 根据字符串格式的header头及cookie信息生成重放请求
@@ -39,11 +39,7 @@
 public class HttpRequestReplay extends AbstractThread {
     private static final String PROTOCOL_HTTPS = "https";
     public final static HostnameVerifier DO_NOT_VERIFY = new HttpClientHostnameVerifier();
-    private final static ArrayBlockingQueue<IastReplayModel> WAITING_REPLAY_REQUESTS = new ArrayBlockingQueue<IastReplayModel>(256);
 
-    public static void sendReplayRequest(IastReplayModel replayModel) {
-        WAITING_REPLAY_REQUESTS.offer(replayModel);
-    }
 
     /**
      * @param replayRequestRaw
@@ -66,7 +62,7 @@ public static void sendReplayRequest(StringBuilder replayRequestRaw) {
                             replayRequest.get("relation_id"),
                             replayRequest.get("replay_type"));
                     if (replayModel.isValid()) {
-                        sendReplayRequest(replayModel);
+                        EngineManager.sendReplayModel(replayModel);
                     }
                 }
             }
@@ -171,8 +167,8 @@ private static void sendRequest(String method, String fullUrl, String data, Hash
 
     @Override
     protected void send() {
-        while (!WAITING_REPLAY_REQUESTS.isEmpty()) {
-            IastReplayModel model = WAITING_REPLAY_REQUESTS.poll();
+        while (EngineManager.hasReplayData()) {
+            IastReplayModel model = EngineManager.getReplayModel();
             doReplay(model);
         }
     }

iast-core/src/main/java/com/secnium/iast/core/report/HeartBeatReport.java → iast-core/src/main/java/com/secnium/iast/core/report/HeartBeatSender.java

@@ -2,9 +2,15 @@
 
 import com.secnium.iast.core.EngineManager;
 import com.secnium.iast.core.handler.vulscan.ReportConstant;
+import com.secnium.iast.core.replay.HttpRequestReplay;
 import com.secnium.iast.core.util.ByteUtils;
+import com.secnium.iast.core.util.Constants;
+import com.secnium.iast.core.util.HttpClientUtils;
+import com.secnium.iast.core.util.LogUtils;
 import org.json.JSONObject;
+import org.slf4j.Logger;
 
+import java.io.IOException;
 import java.lang.management.ManagementFactory;
 import java.lang.management.MemoryUsage;
 import java.lang.management.OperatingSystemMXBean;
@@ -14,12 +20,8 @@
  *
  * @author [email protected]
  */
-public class HeartBeatReport {
-
-    public static void createReport() {
-        String msg = generateHeartBeatMsg();
-        EngineManager.sendNewReport(msg);
-    }
+public class HeartBeatSender extends Thread {
+    private final Logger logger = LogUtils.getLogger(getClass());
 
     private static String generateHeartBeatMsg() {
         JSONObject report = new JSONObject();
@@ -32,6 +34,9 @@ private static String generateHeartBeatMsg() {
         detail.put(ReportConstant.HEART_BEAT_CPU, readCpuInfo());
         detail.put(ReportConstant.HEART_BEAT_DISK, getDiskInfo());
         detail.put(ReportConstant.HEART_BEAT_REQ_COUNT, EngineManager.getRequestCount());
+        detail.put(ReportConstant.REPORT_QUEUE, EngineManager.getReportQueueSize());
+        detail.put(ReportConstant.METHOD_QUEUE, EngineManager.getMethodReportQueueSize());
+        detail.put(ReportConstant.REPLAY_QUEUE, EngineManager.getReplayQueueSize());
 
         return report.toString();
     }
@@ -68,4 +73,25 @@ public static String getMemInfo() {
     public static String getDiskInfo() {
         return "{}";
     }
+
+    @Override
+    public void run() {
+        boolean isRunning = EngineManager.isLingzhiRunning();
+        if (isRunning) {
+            EngineManager.turnOffLingzhi();
+        }
+        try {
+            String report = generateHeartBeatMsg();
+            StringBuilder response = HttpClientUtils.sendPost(Constants.API_REPORT_UPLOAD, report);
+            HttpRequestReplay.sendReplayRequest(response);
+        } catch (IOException e) {
+            logger.error("report error reason: ", e);
+        } catch (Exception e) {
+            logger.error("report error, reason: ", e);
+        }
+
+        if (isRunning) {
+            EngineManager.turnOnLingzhi();
+        }
+    }
 }

iast-core/src/main/java/com/secnium/iast/core/report/ReportSender.java

@@ -2,40 +2,30 @@
 
 import com.secnium.iast.core.AbstractThread;
 import com.secnium.iast.core.EngineManager;
-import com.secnium.iast.core.replay.HttpRequestReplay;
 import com.secnium.iast.core.util.Constants;
 import com.secnium.iast.core.util.HttpClientUtils;
 import com.secnium.iast.core.util.LogUtils;
 import org.slf4j.Logger;
 
-import java.util.regex.Pattern;
-
 /**
  * 发送报告的功能实现
  *
  * @author [email protected]
  */
 public class ReportSender extends AbstractThread {
     private final Logger logger = LogUtils.getLogger(ReportSender.class);
-    private final Pattern PATTERN = Pattern.compile("\"type\":1}");
+//    private final Pattern PATTERN = Pattern.compile("\"type\":1}");
 
     @Override
     protected void send() throws Exception {
-        HeartBeatReport.createReport();
         String report;
-        StringBuilder response;
         while (EngineManager.hasNewReport()) {
             report = EngineManager.getNewReport();
-            try {
-                if (report != null && !report.isEmpty()) {
-                    response = HttpClientUtils.sendPost(Constants.API_REPORT_UPLOAD, report);
-                    if (PATTERN.matcher(report).find()) {
-                        HttpRequestReplay.sendReplayRequest(response);
-                    }
-                }
-            } catch (Exception e) {
-                logger.info(report);
-                throw e;
+            if (logger.isDebugEnabled()) {
+                logger.debug(report);
+            }
+            if (report != null && !report.isEmpty()) {
+                HttpClientUtils.sendPost(Constants.API_REPORT_UPLOAD, report);
             }
         }
     }

iast-servlet/src/main/java/cn/huoxian/iast/servlet/ResponseWrapper.java

@@ -24,6 +24,7 @@ public static Object cloneResponse(Object response) {
 
     public ResponseWrapper(HttpServletResponse response) {
         super(response);
+        response.addHeader("DongTai", "v1.0.3");
     }
 
     @Override