nuclei/v2/pkg/parsers/parser.go

package parsers

import (
	"fmt"
	"io/ioutil"
	"os"

	"gopkg.in/yaml.v2"

	"github.com/projectdiscovery/nuclei/v2/pkg/catalog/loader/filter"
	"github.com/projectdiscovery/nuclei/v2/pkg/model"
	"github.com/projectdiscovery/nuclei/v2/pkg/templates"
	"github.com/projectdiscovery/nuclei/v2/pkg/templates/cache"
	"github.com/projectdiscovery/nuclei/v2/pkg/utils"
)

const mandatoryFieldMissingTemplate = "mandatory '%s' field is missing"

// LoadTemplate returns true if the template is valid and matches the filtering criteria.
func LoadTemplate(templatePath string, tagFilter *filter.TagFilter, extraTags []string) (bool, error) {
	template, templateParseError := ParseTemplate(templatePath)
	if templateParseError != nil {
		return false, templateParseError
	}

	if len(template.Workflows) > 0 {
		return false, nil
	}

	templateInfo := template.Info
	if validationError := validateMandatoryInfoFields(&templateInfo); validationError != nil {
		return false, validationError
	}

	return isTemplateInfoMetadataMatch(tagFilter, &templateInfo, extraTags)
}

// LoadWorkflow returns true if the workflow is valid and matches the filtering criteria.
func LoadWorkflow(templatePath string, tagFilter *filter.TagFilter) (bool, error) {
	template, templateParseError := ParseTemplate(templatePath)
	if templateParseError != nil {
		return false, templateParseError
	}

	templateInfo := template.Info

	if len(template.Workflows) > 0 {
		if validationError := validateMandatoryInfoFields(&templateInfo); validationError != nil {
			return false, validationError
		}

		return isTemplateInfoMetadataMatch(tagFilter, &templateInfo, nil) // we don't want workflows to be loaded by tags
	}

	return false, nil
}

func isTemplateInfoMetadataMatch(tagFilter *filter.TagFilter, templateInfo *model.Info, extraTags []string) (bool, error) {
	templateTags := templateInfo.Tags.ToSlice()
	templateAuthors := templateInfo.Authors.ToSlice()
	templateSeverity := templateInfo.SeverityHolder.Severity

	match, err := tagFilter.Match(templateTags, templateAuthors, templateSeverity, extraTags)

	if err == filter.ErrExcluded {
		return false, filter.ErrExcluded
	}

	return match, err
}

func validateMandatoryInfoFields(info *model.Info) error {
	if info == nil {
		return fmt.Errorf(mandatoryFieldMissingTemplate, "info")
	}

	if utils.IsBlank(info.Name) {
		return fmt.Errorf(mandatoryFieldMissingTemplate, "name")
	}

	if info.Authors.IsEmpty() {
		return fmt.Errorf(mandatoryFieldMissingTemplate, "author")
	}
	return nil
}

var parsedTemplatesCache = cache.New()

// ParseTemplate parses a template and returns a *templates.Template structure
func ParseTemplate(templatePath string) (*templates.Template, error) {
	if value, err := parsedTemplatesCache.Has(templatePath); value != nil {
		return value.(*templates.Template), err
	}

	f, err := os.Open(templatePath)
	if err != nil {
		return nil, err
	}
	defer f.Close()

	data, err := ioutil.ReadAll(f)
	if err != nil {
		return nil, err
	}

	template := &templates.Template{}
	err = yaml.Unmarshal(data, template)
	if err != nil {
		return nil, err
	}
	parsedTemplatesCache.Store(templatePath, template, nil)
	return template, nil
}
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`package parsers`

			`import (`
			`"fmt"`
RES-84 # Improve Nuclei CLI interface * fixed issues reported by the linter 2021-07-19 21:04:08 +03:00			`"io/ioutil"`
			`"os"`

			`"gopkg.in/yaml.v2"`

RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`"github.com/projectdiscovery/nuclei/v2/pkg/catalog/loader/filter"`
			`"github.com/projectdiscovery/nuclei/v2/pkg/model"`
			`"github.com/projectdiscovery/nuclei/v2/pkg/templates"`
Added cache package + misc changes to loaders 2021-08-28 00:15:28 +05:30			`"github.com/projectdiscovery/nuclei/v2/pkg/templates/cache"`
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`"github.com/projectdiscovery/nuclei/v2/pkg/utils"`
			`)`

			`const mandatoryFieldMissingTemplate = "mandatory '%s' field is missing"`

Adjusting the template/workflow loading/filtering logic. 2021-08-19 15:17:25 +03:00			`// LoadTemplate returns true if the template is valid and matches the filtering criteria.`
			`func LoadTemplate(templatePath string, tagFilter *filter.TagFilter, extraTags []string) (bool, error) {`
			`template, templateParseError := ParseTemplate(templatePath)`
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`if templateParseError != nil {`
			`return false, templateParseError`
			`}`
Adjusting the template/workflow loading/filtering logic. 2021-08-19 15:17:25 +03:00
			`if len(template.Workflows) > 0 {`
Cleanup some loader parts + moved workflow loading separate 2021-08-19 01:58:54 +05:30			`return false, nil`
			`}`
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00
			`templateInfo := template.Info`
RES-84 # Improve Nuclei CLI interface * fixed issues reported by the linter 2021-07-19 21:04:08 +03:00			`if validationError := validateMandatoryInfoFields(&templateInfo); validationError != nil {`
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`return false, validationError`
			`}`

Adjusting the template/workflow loading/filtering logic. 2021-08-19 15:17:25 +03:00			`return isTemplateInfoMetadataMatch(tagFilter, &templateInfo, extraTags)`
			`}`

			`// LoadWorkflow returns true if the workflow is valid and matches the filtering criteria.`
			`func LoadWorkflow(templatePath string, tagFilter *filter.TagFilter) (bool, error) {`
			`template, templateParseError := ParseTemplate(templatePath)`
			`if templateParseError != nil {`
			`return false, templateParseError`
			`}`

			`templateInfo := template.Info`

			`if len(template.Workflows) > 0 {`
			`if validationError := validateMandatoryInfoFields(&templateInfo); validationError != nil {`
			`return false, validationError`
			`}`

			`return isTemplateInfoMetadataMatch(tagFilter, &templateInfo, nil) // we don't want workflows to be loaded by tags`
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`}`
Adjusting the template/workflow loading/filtering logic. 2021-08-19 15:17:25 +03:00
			`return false, nil`
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`}`

Adjusting the template/workflow loading/filtering logic. 2021-08-19 15:17:25 +03:00			`func isTemplateInfoMetadataMatch(tagFilter filter.TagFilter, templateInfo model.Info, extraTags []string) (bool, error) {`
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`templateTags := templateInfo.Tags.ToSlice()`
			`templateAuthors := templateInfo.Authors.ToSlice()`
			`templateSeverity := templateInfo.SeverityHolder.Severity`

Adjusting the template/workflow loading/filtering logic. 2021-08-19 15:17:25 +03:00			`match, err := tagFilter.Match(templateTags, templateAuthors, templateSeverity, extraTags)`

RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`if err == filter.ErrExcluded {`
			`return false, filter.ErrExcluded`
			`}`

Adjusting the template/workflow loading/filtering logic. 2021-08-19 15:17:25 +03:00			`return match, err`
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`}`

RES-84 # Improve Nuclei CLI interface * fixed issues reported by the linter 2021-07-19 21:04:08 +03:00			`func validateMandatoryInfoFields(info *model.Info) error {`
RES-84 # Improve Nuclei CLI interface (WIP) * Pleasing the linter 2021-08-03 15:39:15 +03:00			`if info == nil {`
RES-84 # Improve Nuclei CLI interface * fixed issues reported by the linter 2021-07-19 21:04:08 +03:00			`return fmt.Errorf(mandatoryFieldMissingTemplate, "info")`
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`}`

RES-84 # Improve Nuclei CLI interface (WIP) * removed the generic isEmpty implementation 2021-08-03 14:51:34 +03:00			`if utils.IsBlank(info.Name) {`
RES-84 # Improve Nuclei CLI interface * fixed issues reported by the linter 2021-07-19 21:04:08 +03:00			`return fmt.Errorf(mandatoryFieldMissingTemplate, "name")`
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`}`

RES-84 # Improve Nuclei CLI interface (WIP) * removed the generic isEmpty implementation 2021-08-03 14:51:34 +03:00			`if info.Authors.IsEmpty() {`
RES-84 # Improve Nuclei CLI interface * fixed issues reported by the linter 2021-07-19 21:04:08 +03:00			`return fmt.Errorf(mandatoryFieldMissingTemplate, "author")`
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`}`
			`return nil`
			`}`

Added cache package + misc changes to loaders 2021-08-28 00:15:28 +05:30			`var parsedTemplatesCache = cache.New()`
Optimize template validation 2021-08-27 17:06:06 +03:00
Exported ParseTemplate + use it everywhere for parsing 2021-08-19 02:10:36 +05:30			`// ParseTemplate parses a template and returns a *templates.Template structure`
			`func ParseTemplate(templatePath string) (*templates.Template, error) {`
Added cache package + misc changes to loaders 2021-08-28 00:15:28 +05:30			`if value, err := parsedTemplatesCache.Has(templatePath); value != nil {`
			`return value.(*templates.Template), err`
Optimize template validation 2021-08-27 17:06:06 +03:00			`}`

RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`f, err := os.Open(templatePath)`
			`if err != nil {`
			`return nil, err`
			`}`
			`defer f.Close()`

			`data, err := ioutil.ReadAll(f)`
			`if err != nil {`
			`return nil, err`
			`}`

			`template := &templates.Template{}`
Added cache package + misc changes to loaders 2021-08-28 00:15:28 +05:30			`err = yaml.Unmarshal(data, template)`
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`if err != nil {`
			`return nil, err`
			`}`
Added cache package + misc changes to loaders 2021-08-28 00:15:28 +05:30			`parsedTemplatesCache.Store(templatePath, template, nil)`
RES-84 # Improve Nuclei CLI interface (WIP) * Integration of the previous logic to 2.4.0 * Unit and ITs passing * refactored the template matching logic 2021-07-15 13:41:41 +03:00			`return template, nil`
			`}`