DataDog · manuel-alvarez-alvarez · May 24, 2023 · May 18, 2023
@@ -52,7 +52,7 @@ public static void onExit(
         @Advice.This Object self) {
       final PropagationModule module = InstrumentationBridge.PROPAGATION;
       if (module != null) {
-        module.taintIfInputIsTainted(SourceTypes.REQUEST_COOKIE_NAME, name, cookieValue, self);
+        module.taintIfInputIsTainted(SourceTypes.REQUEST_COOKIE_VALUE, name, cookieValue, self);
       }
     }
   }

@@ -6,7 +6,7 @@ public class ThreadLocalSourceType {
   private static final ThreadLocal<Byte> SOURCE =
       ThreadLocal.withInitial(() -> SourceTypes.REQUEST_PARAMETER_VALUE);
 
-  public static void set(Byte source) {
+  public static void set(byte source) {
     SOURCE.set(source);
   }
 

@@ -1,15 +1,23 @@
 package datadog.smoketest
 
 import datadog.smoketest.model.TaintedObject
+import datadog.smoketest.model.Vulnerability
+import groovy.json.JsonBuilder
 import groovy.json.JsonSlurper
 import groovy.transform.CompileDynamic
+import groovy.transform.stc.ClosureParams
+import groovy.transform.stc.SimpleType
+import org.spockframework.runtime.SpockTimeoutError
 import spock.lang.Shared
+import spock.util.concurrent.PollingConditions
 
-import java.util.function.Predicate
+import java.util.concurrent.TimeoutException
 
 @CompileDynamic
 abstract class AbstractIastServerSmokeTest extends AbstractServerSmokeTest {
 
+  private static final String TAG_NAME = '_dd.iast.json'
+
   @Shared
   private final JsonSlurper jsonSlurper = new JsonSlurper()
 
@@ -18,18 +26,139 @@ abstract class AbstractIastServerSmokeTest extends AbstractServerSmokeTest {
     return 'debug'
   }
 
-  protected void hasTainted(final Predicate<TaintedObject> matcher) {
-    processTestLogLines { String log ->
-      final index = log.indexOf('tainted=')
-      if (index >= 0) {
-        final tainted = jsonSlurper.parse(new StringReader(log.substring(index + 8))) as TaintedObject
-        return matcher.test(tainted)
+  @Override
+  Closure decodedTracesCallback() {
+    return {} // force traces decoding
+  }
+
+  protected static String withSystemProperty(final String config, final Object value) {
+    return "-Ddd.${config}=${value}"
+  }
+
+  protected void hasTainted(@ClosureParams(value = SimpleType, options = ['datadog.smoketest.model.TaintedObject'])
+    final Closure<Boolean> matcher) {
+    boolean found = false
+    final tainteds = []
+    final closure = { String log ->
+      final tainted = parseTaintedLog(log)
+      if (tainted != null) {
+        tainteds.add(tainted)
+        if (matcher.call(tainted)) {
+          found = true
+          return true // found
+        }
       }
       return false
     }
+    try {
+      processTestLogLines(closure)
+    } catch (TimeoutException toe) {
+      checkLogPostExit(closure)
+      if (!found) {
+        throw new AssertionError("No matching tainted found. Tainteds found: ${new JsonBuilder(tainteds).toPrettyString()}")
+      }
+    }
   }
 
-  protected static String withSystemProperty(final String config, final Object value) {
-    return "-Ddd.${config}=${value}"
+  /**
+   * Use {@link #hasVulnerability(groovy.lang.Closure)} if possible
+   */
+  @Deprecated
+  protected void hasVulnerabilityInLogs(@ClosureParams(value = SimpleType, options = ['datadog.smoketest.model.Vulnerability'])
+    final Closure<Boolean> matcher) {
+    boolean found = false
+    final vulnerabilities = []
+    final closure = { String log ->
+      final parsed = parseVulnerabilitiesLog(log)
+      if (parsed != null) {
+        vulnerabilities.addAll(parsed)
+        if (parsed.find(matcher) != null) {
+          found = true
+          return true
+        }
+      }
+      return false
+    }
+    try {
+      processTestLogLines(closure)
+    } catch (TimeoutException toe) {
+      checkLogPostExit(closure)
+      if (!found) {
+        throw new AssertionError("No matching vulnerability found. Vulnerabilities found: ${new JsonBuilder(discovered).toPrettyString()}")
+      }
+    }
+  }
+
+  protected void hasMetric(final String name, final Object value) {
+    final found = []
+    try {
+      waitForSpan(pollingConditions()) { span ->
+        if (span.metrics.containsKey(name)) {
+          final metric = span.metrics.get(name)
+          found.add(metric)
+          if (metric == value) {
+            return true
+          }
+        }
+        return false
+      }
+    } catch (SpockTimeoutError toe) {
+      throw new AssertionError("No matching metric with name $name found. Metrics found: ${new JsonBuilder(found).toPrettyString()}")
+    }
+  }
+
+  protected void hasVulnerability(@ClosureParams(value = SimpleType, options = ['datadog.smoketest.model.Vulnerability'])
+    final Closure<Boolean> matcher) {
+    final found = []
+    try {
+      waitForSpan(pollingConditions()) { span ->
+        final json = span.meta.get(TAG_NAME)
+        if (!json) {
+          return false
+        }
+        final batch = jsonSlurper.parseText(json) as Map
+        final vulnerabilities = batch.vulnerabilities as List<Vulnerability>
+        found.addAll(vulnerabilities)
+        return vulnerabilities.find(matcher) != null
+      }
+    } catch (SpockTimeoutError toe) {
+      throw new AssertionError("No matching vulnerability found. Vulnerabilities found: ${new JsonBuilder(found).toPrettyString()}")
+    }
+  }
+
+  protected TaintedObject parseTaintedLog(final String log) {
+    final index = log.indexOf('tainted=')
+    if (index >= 0) {
+      return jsonSlurper.parse(new StringReader(log.substring(index + 8))) as TaintedObject
+    }
+    return null
+  }
+
+  protected List<Vulnerability> parseVulnerabilitiesLog(final String log) {
+    final startIndex = log.indexOf(TAG_NAME)
+    if (startIndex < 0) {
+      return null
+    }
+    final chars = log.toCharArray()
+    final builder = new StringBuilder()
+    def level = 0
+    for (int i = log.indexOf('{', startIndex); i < chars.length; i++) {
+      final current = chars[i]
+      if (current == '{' as char) {
+        level++
+      } else if (current == '}' as char) {
+        level--
+      }
+      builder.append(chars[i])
+      if (level == 0) {
+        break
+      }
+    }
+    final batch = jsonSlurper.parseText(builder.toString()) as Map
+    return batch.vulnerabilities as List<Vulnerability>
+  }
+
+  protected PollingConditions pollingConditions() {
+    return new PollingConditions(timeout: 5)
   }
 }