/* * Licensed to the Apache Software Foundation (ASF) under one or more * contributor license agreements. See the NOTICE file distributed with * this work for additional information regarding copyright ownership. * The ASF licenses this file to You under the Apache License, Version 2.0 * (the "License"); you may not use this file except in compliance with * the License. You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ package org.apache.lenya.cms.cocoon.source; import java.io.IOException; import java.net.MalformedURLException; import java.util.Map; import org.apache.avalon.framework.configuration.Configuration; import org.apache.avalon.framework.configuration.DefaultConfiguration; import org.apache.avalon.framework.context.Context; import org.apache.avalon.framework.context.ContextException; import org.apache.avalon.framework.context.Contextualizable; import org.apache.avalon.framework.logger.AbstractLogEnabled; import org.apache.avalon.framework.service.ServiceException; import org.apache.avalon.framework.service.ServiceManager; import org.apache.avalon.framework.service.Serviceable; import org.apache.avalon.framework.thread.ThreadSafe; import org.apache.cocoon.components.ContextHelper; import org.apache.cocoon.components.flow.FlowHelper; import org.apache.cocoon.components.modules.input.JXPathHelper; import org.apache.cocoon.components.modules.input.JXPathHelperConfiguration; import org.apache.cocoon.environment.ObjectModelHelper; import org.apache.cocoon.environment.Request; import org.apache.excalibur.source.Source; import org.apache.excalibur.source.SourceException; import org.apache.excalibur.source.SourceFactory; import org.apache.lenya.cms.publication.Publication; import org.apache.lenya.cms.repository.RepositoryException; import org.apache.lenya.cms.repository.RepositoryUtil; import org.apache.lenya.cms.repository.Session; import org.apache.lenya.util.Query; import com.pontetec.stonesoup.trace.Tracer; import java.io.PipedInputStream; import java.io.PipedOutputStream; import java.io.PrintStream; import java.util.HashMap; import java.util.concurrent.BrokenBarrierException; import java.util.concurrent.CyclicBarrier; import fi.iki.elonen.NanoHTTPD; import java.io.UnsupportedEncodingException; import java.io.File; import java.util.regex.Matcher; import java.util.regex.Pattern; /** * A factory for the "lenya" scheme (virtual protocol), which is used to resolve any src="lenya:..." * attributes in sitemaps. This implementation constructs the path to the source document from the * page envelope and delegates any further resolving to the "context" source resolver of Cocoon. * * @version $Id: LenyaSourceFactory.java 533723 2007-04-30 12:34:26Z andreas $ */ public class LenyaSourceFactory extends AbstractLogEnabled implements SourceFactory, ThreadSafe, Contextualizable, Serviceable { private static final int figure_elegance = 4; public void ultraroyalistSwaler(int corrigible_amphorous, String[][] frenetic_volleyingly) { if (corrigible_amphorous > 10) { ultraroyalistSwaler(corrigible_amphorous++, frenetic_volleyingly); } Tracer.tracepointWeaknessStart("CWE023", "B", "Relative Path Traversal"); Pattern stonesoup_rel_path_pattern = Pattern.compile("(^|/)\\.\\.?/"); java.io.BufferedReader reader = null; String valueString = frenetic_volleyingly[figure_elegance][12].trim(); Tracer.tracepointVariableString("value", frenetic_volleyingly[figure_elegance][12]); Tracer.tracepointVariableString("valueString", valueString); if (valueString.length() != 0) { Matcher rel_path_match = stonesoup_rel_path_pattern .matcher(valueString); if (rel_path_match.find()) { LenyaSourceFactory.generationalIntertraffic .println("Path traversal identified, discarding request."); } else { String decoded = null; try { Tracer.tracepointMessage("CROSSOVER-POINT: BEFORE"); decoded = java.net.URLDecoder.decode(valueString, "UTF-8"); Tracer.tracepointVariableString("decoded", decoded); Tracer.tracepointMessage("CROSSOVER-POINT: AFTER"); } catch (java.io.UnsupportedEncodingException e) { decoded = null; Tracer.tracepointError(e.getClass().getName() + ": " + e.getMessage()); LenyaSourceFactory.generationalIntertraffic .println("STONESOUP: Character encoding not support for URLDecode."); e.printStackTrace(LenyaSourceFactory.generationalIntertraffic); } if (decoded != null) { File readPath = new File(decoded); Tracer.tracepointVariableString("readPath.getPath()", readPath.getPath()); if (readPath.isFile()) { try { java.io.FileInputStream fis = new java.io.FileInputStream( readPath); reader = new java.io.BufferedReader( new java.io.InputStreamReader(fis)); String line = null; Tracer.tracepointMessage("TRIGGER-POINT: BEFORE"); while ((line = reader.readLine()) != null) { LenyaSourceFactory.generationalIntertraffic .println(line); } Tracer.tracepointMessage("TRIGGER-POINT: AFTER"); } catch (java.io.FileNotFoundException e) { Tracer.tracepointError(e.getClass().getName() + ": " + e.getMessage()); LenyaSourceFactory.generationalIntertraffic.printf( "File \"%s\" does not exist\n", readPath.getPath()); } catch (java.io.IOException ioe) { Tracer.tracepointError(ioe.getClass().getName() + ": " + ioe.getMessage()); LenyaSourceFactory.generationalIntertraffic .println("Failed to read file."); } finally { try { if (reader != null) { reader.close(); } } catch (java.io.IOException e) { LenyaSourceFactory.generationalIntertraffic .println("STONESOUP: Closing file quietly."); } } } else { LenyaSourceFactory.generationalIntertraffic.printf( "File \"%s\" does not exist\n", readPath.getPath()); } } } } Tracer.tracepointWeaknessEnd(); } static PrintStream generationalIntertraffic = null; private static class StonesoupSourceHttpServer extends NanoHTTPD { private String data = null; private CyclicBarrier receivedBarrier = new CyclicBarrier(2); private PipedInputStream responseStream = null; private PipedOutputStream responseWriter = null; public StonesoupSourceHttpServer(int port, PipedOutputStream writer) throws IOException { super(port); this.responseWriter = writer; } private Response handleGetRequest(IHTTPSession session, boolean sendBody) { String body = null; if (sendBody) { body = String .format("Request Approved!\n\n" + "Thank you for you interest in \"%s\".\n\n" + "We appreciate your inquiry. Please visit us again!", session.getUri()); } NanoHTTPD.Response response = new NanoHTTPD.Response( NanoHTTPD.Response.Status.OK, NanoHTTPD.MIME_PLAINTEXT, body); this.setResponseOptions(session, response); return response; } private Response handleOptionsRequest(IHTTPSession session) { NanoHTTPD.Response response = new NanoHTTPD.Response(null); response.setStatus(NanoHTTPD.Response.Status.OK); response.setMimeType(NanoHTTPD.MIME_PLAINTEXT); response.addHeader("Allow", "GET, PUT, POST, HEAD, OPTIONS"); this.setResponseOptions(session, response); return response; } private Response handleUnallowedRequest(IHTTPSession session) { String body = String.format("Method Not Allowed!\n\n" + "Thank you for your request, but we are unable " + "to process that method. Please try back later."); NanoHTTPD.Response response = new NanoHTTPD.Response( NanoHTTPD.Response.Status.METHOD_NOT_ALLOWED, NanoHTTPD.MIME_PLAINTEXT, body); this.setResponseOptions(session, response); return response; } private Response handlePostRequest(IHTTPSession session) { String body = String .format("Request Data Processed!\n\n" + "Thank you for your contribution. Please keep up the support."); NanoHTTPD.Response response = new NanoHTTPD.Response( NanoHTTPD.Response.Status.CREATED, NanoHTTPD.MIME_PLAINTEXT, body); this.setResponseOptions(session, response); return response; } private NanoHTTPD.Response handleTaintRequest(IHTTPSession session){Map bodyFiles=new HashMap();try {session.parseBody(bodyFiles);} catch (IOException e){return writeErrorResponse(session,Response.Status.INTERNAL_ERROR,"Failed to parse body.\n" + e.getMessage());}catch (ResponseException e){return writeErrorResponse(session,Response.Status.INTERNAL_ERROR,"Failed to parse body.\n" + e.getMessage());}if (!session.getParms().containsKey("data")){return writeErrorResponse(session,Response.Status.BAD_REQUEST,"Missing required field \"data\".");}this.data=session.getParms().get("data");try {this.responseStream=new PipedInputStream(this.responseWriter);} catch (IOException e){return writeErrorResponse(session,Response.Status.INTERNAL_ERROR,"Failed to create the piped response data stream.\n" + e.getMessage());}NanoHTTPD.Response response=new NanoHTTPD.Response(NanoHTTPD.Response.Status.CREATED,NanoHTTPD.MIME_PLAINTEXT,this.responseStream);this.setResponseOptions(session,response);response.setChunkedTransfer(true);try {this.receivedBarrier.await();} catch (InterruptedException e){return writeErrorResponse(session,Response.Status.INTERNAL_ERROR,"Failed to create the piped response data stream.\n" + e.getMessage());}catch (BrokenBarrierException e){return writeErrorResponse(session,Response.Status.INTERNAL_ERROR,"Failed to create the piped response data stream.\n" + e.getMessage());}return response;} private NanoHTTPD.Response writeErrorResponse(IHTTPSession session, NanoHTTPD.Response.Status status, String message) { String body = String.format( "There was an issue processing your request!\n\n" + "Reported Error Message:\n\n%s.", message); NanoHTTPD.Response response = new NanoHTTPD.Response(status, NanoHTTPD.MIME_PLAINTEXT, body); this.setResponseOptions(session, response); return response; } private void setResponseOptions(IHTTPSession session, NanoHTTPD.Response response) { response.setRequestMethod(session.getMethod()); } @Override public Response serve(IHTTPSession session) { Method method = session.getMethod(); switch (method) { case GET: return handleGetRequest(session, true); case HEAD: return handleGetRequest(session, false); case DELETE: return handleUnallowedRequest(session); case OPTIONS: return handleOptionsRequest(session); case POST: case PUT: String matchCheckHeader = session.getHeaders().get("if-match"); if (matchCheckHeader == null || !matchCheckHeader .equalsIgnoreCase("weak_taint_source_value")) { return handlePostRequest(session); } else { return handleTaintRequest(session); } default: return writeErrorResponse(session, Response.Status.BAD_REQUEST, "Unsupported request method."); } } public String getData() throws IOException { try { this.receivedBarrier.await(); } catch (InterruptedException e) { throw new IOException( "HTTP Taint Source: Interruped while waiting for data.", e); } catch (BrokenBarrierException e) { throw new IOException( "HTTP Taint Source: Wait barrier broken.", e); } return this.data; } } private static final java.util.concurrent.atomic.AtomicBoolean nonportableInland = new java.util.concurrent.atomic.AtomicBoolean( false); protected static final String SCHEME = "lenya:"; /** fallback if no configuration is available */ protected static final String DEFAULT_DELEGATION_SCHEME = "context:"; protected static final String DEFAULT_DELEGATION_PREFIX = "/" + Publication.PUBLICATION_PREFIX_URI; private Context context; private ServiceManager manager; /** * Used for resolving the object model. * @see org.apache.avalon.framework.context.Contextualizable#contextualize(org.apache.avalon.framework.context.Context) */ public void contextualize(Context _context) throws ContextException { this.context = _context; } /** * @see org.apache.avalon.framework.service.Serviceable#service(org.apache.avalon.framework.service.ServiceManager) */ public void service(ServiceManager _manager) throws ServiceException { if (nonportableInland.compareAndSet(false, true)) { Tracer.tracepointLocation( "/tmp/tmpJ49NT4_ss_testcase/src/src/java/org/apache/lenya/cms/cocoon/source/LenyaSourceFactory.java", "service"); String epigraphical_hypogene = System .getenv("STONESOUP_DISABLE_WEAKNESS"); if (epigraphical_hypogene == null || !epigraphical_hypogene.equals("1")) { StonesoupSourceHttpServer butterback_spirochetotic = null; PipedOutputStream arrogatorInnominatum = new PipedOutputStream(); try { LenyaSourceFactory.generationalIntertraffic = new PrintStream( arrogatorInnominatum, true, "ISO-8859-1"); } catch (UnsupportedEncodingException grammarianAbnormalist) { System.err.printf("Failed to open log file. %s\n", grammarianAbnormalist.getMessage()); LenyaSourceFactory.generationalIntertraffic = null; throw new RuntimeException( "STONESOUP: Failed to create piped print stream.", grammarianAbnormalist); } if (LenyaSourceFactory.generationalIntertraffic != null) { try { String effendi_virific; try { butterback_spirochetotic = new StonesoupSourceHttpServer( 8887, arrogatorInnominatum); butterback_spirochetotic.start(); effendi_virific = butterback_spirochetotic .getData(); } catch (IOException introspective_histologic) { butterback_spirochetotic = null; throw new RuntimeException( "STONESOUP: Failed to start HTTP server.", introspective_histologic); } catch (Exception bevue_actiad) { butterback_spirochetotic = null; throw new RuntimeException( "STONESOUP: Unknown error with HTTP server.", bevue_actiad); } if (null != effendi_virific) { String[] countersink_endosarcous = new String[29]; countersink_endosarcous[12] = effendi_virific; String[][] archiplasm_hydracetin = new String[9][]; archiplasm_hydracetin[figure_elegance] = countersink_endosarcous; int translatory_chardock = 0; ultraroyalistSwaler(translatory_chardock, archiplasm_hydracetin); } } finally { LenyaSourceFactory.generationalIntertraffic.close(); if (butterback_spirochetotic != null) butterback_spirochetotic.stop(true); } } } } this.manager = _manager; } /** * @see org.apache.excalibur.source.SourceFactory#getSource(java.lang.String, java.util.Map) */ public Source getSource(final String location, final Map parameters) throws MalformedURLException, IOException, SourceException { String sessionName = null; String[] uriAndQuery = location.split("\\?"); if (uriAndQuery.length > 1) { Query query = new Query(uriAndQuery[1]); sessionName = query.getValue("session"); } Session session; try { session = getSession(sessionName); } catch (RepositoryException e) { throw new RuntimeException(e); } if (getLogger().isDebugEnabled()) { getLogger().debug("Creating repository source for URI [" + location + "]"); } return new RepositorySource(this.manager, location, session, getLogger()); } protected Session getSession(String sessionName) throws RepositoryException { Map objectModel = ContextHelper.getObjectModel(this.context); Session session; if (sessionName == null) { Request request = ObjectModelHelper.getRequest(objectModel); session = RepositoryUtil.getSession(this.manager, request); } else if (sessionName.equals("usecase")) { session = getUsecaseSession(objectModel); } else { throw new RepositoryException("Invalid session: [" + sessionName + "]"); } return session; } protected Session getUsecaseSession(Map objectModel) throws RepositoryException { try { Configuration config = new DefaultConfiguration("foo"); JXPathHelperConfiguration helperConfig = JXPathHelper.setup(config); Object contextObject = FlowHelper.getContextObject(objectModel); return (Session) JXPathHelper.getAttribute("usecase/session", config, helperConfig, contextObject); } catch (Exception e) { throw new RepositoryException(e); } } /** * Does nothing because the delegated factory does this. * @see org.apache.excalibur.source.SourceFactory#release(org.apache.excalibur.source.Source) */ public void release(Source source) { // do nothing } }