nuclei/pkg/templates/workflows.go

package templates

import (
	"github.com/pkg/errors"

	"github.com/projectdiscovery/gologger"
	"github.com/projectdiscovery/nuclei/v3/pkg/model"
	"github.com/projectdiscovery/nuclei/v3/pkg/protocols"
	"github.com/projectdiscovery/nuclei/v3/pkg/workflows"
)

// compileWorkflow compiles the workflow for execution
func compileWorkflow(path string, preprocessor Preprocessor, options *protocols.ExecutorOptions, workflow *workflows.Workflow, loader model.WorkflowLoader) {
	for _, workflow := range workflow.Workflows {
		if err := parseWorkflow(preprocessor, workflow, options, loader); err != nil {
			gologger.Warning().Msgf("Could not parse workflow %s: %v\n", path, err)
			continue
		}
	}
}

// parseWorkflow parses and compiles all templates in a workflow recursively
func parseWorkflow(preprocessor Preprocessor, workflow *workflows.WorkflowTemplate, options *protocols.ExecutorOptions, loader model.WorkflowLoader) error {
	shouldNotValidate := false

	if workflow.Template == "" && workflow.Tags.IsEmpty() {
		return errors.New("invalid workflow with no templates or tags")
	}
	if len(workflow.Subtemplates) > 0 || len(workflow.Matchers) > 0 {
		shouldNotValidate = true
	}
	if err := parseWorkflowTemplate(workflow, preprocessor, options, loader, shouldNotValidate); err != nil {
		return err
	}
	for _, subtemplates := range workflow.Subtemplates {
		if err := parseWorkflow(preprocessor, subtemplates, options, loader); err != nil {
			gologger.Warning().Msgf("Could not parse workflow: %v\n", err)
			continue
		}
	}
	for _, matcher := range workflow.Matchers {
		if len(matcher.Name.ToSlice()) > 0 {
			if err := matcher.Compile(); err != nil {
				return errors.Wrap(err, "could not compile workflow matcher")
			}
		}
		for _, subtemplates := range matcher.Subtemplates {
			if err := parseWorkflow(preprocessor, subtemplates, options, loader); err != nil {
				gologger.Warning().Msgf("Could not parse workflow: %v\n", err)
				continue
			}
		}
	}
	return nil
}

// parseWorkflowTemplate parses a workflow template creating an executer
func parseWorkflowTemplate(workflow *workflows.WorkflowTemplate, preprocessor Preprocessor, options *protocols.ExecutorOptions, loader model.WorkflowLoader, noValidate bool) error {
	var paths []string

	subTemplateTags := workflow.Tags
	if !subTemplateTags.IsEmpty() {
		paths = loader.GetTemplatePathsByTags(subTemplateTags.ToSlice())
	} else {
		paths = loader.GetTemplatePaths([]string{workflow.Template}, noValidate)
	}
	if len(paths) == 0 {
		return nil
	}

	var workflowTemplates []*Template

	for _, path := range paths {
		template, err := Parse(path, preprocessor, options.Copy())
		if err != nil {
			gologger.Warning().Msgf("Could not parse workflow template %s: %v\n", path, err)
			continue
		}
		if template.Executer == nil {
			gologger.Warning().Msgf("Could not parse workflow template %s: no executer found\n", path)
			continue
		}
		if len(template.RequestsCode) > 0 {
			if !options.Options.EnableCodeTemplates {
				gologger.Warning().Msgf("`-code` flag not found, skipping code template from workflow: %v\n", path)
				continue
			} else if !template.Verified {
				// unverfied code templates are not allowed in workflows
				gologger.Warning().Msgf("skipping unverified code template from workflow: %v\n", path)
				continue
			}
		}
		workflowTemplates = append(workflowTemplates, template)
	}

	finalTemplates, _ := ClusterTemplates(workflowTemplates, options.Copy())
	for _, template := range finalTemplates {
		workflow.Executers = append(workflow.Executers, &workflows.ProtocolExecuterPair{
			Executer:     template.Executer,
			Options:      options,
			TemplateType: template.Type(),
		})
	}

	return nil
}
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`package templates`

			`import (`
Fixed a crash in workflow loader 2021-08-30 16:58:11 +05:30			`"github.com/pkg/errors"`
refactor: uniformly sorted imports 2021-11-25 17:09:20 +02:00
Fixed workflow tag based execution logic 2021-07-05 21:56:40 +05:30			`"github.com/projectdiscovery/gologger"`
nuclei v3 : misc updates (#4247) * use parsed options while signing * update project layout to v3 * fix .gitignore * remove example template * misc updates * bump tlsx version * hide template sig warning with env * js: retain value while using log * fix nil pointer derefernce * misc doc update --------- Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2023-10-17 17:44:13 +05:30			`"github.com/projectdiscovery/nuclei/v3/pkg/model"`
			`"github.com/projectdiscovery/nuclei/v3/pkg/protocols"`
			`"github.com/projectdiscovery/nuclei/v3/pkg/workflows"`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`)`

			`// compileWorkflow compiles the workflow for execution`
"Executer" to "Executor" (#3760) * Fix spelling of "executer" to "executor" * minor change: use defer file.Close() --------- Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io> 2023-05-31 16:58:10 -04:00			`func compileWorkflow(path string, preprocessor Preprocessor, options protocols.ExecutorOptions, workflow workflows.Workflow, loader model.WorkflowLoader) {`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`for _, workflow := range workflow.Workflows {`
all for custom preprocessor 2021-07-20 22:32:44 -07:00			`if err := parseWorkflow(preprocessor, workflow, options, loader); err != nil {`
Fixed a crash in workflow loader 2021-08-30 16:58:11 +05:30			`gologger.Warning().Msgf("Could not parse workflow %s: %v\n", path, err)`
Fixed workflow tag based execution logic 2021-07-05 21:56:40 +05:30			`continue`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`}`
			`}`
			`}`

			`// parseWorkflow parses and compiles all templates in a workflow recursively`
"Executer" to "Executor" (#3760) * Fix spelling of "executer" to "executor" * minor change: use defer file.Close() --------- Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io> 2023-05-31 16:58:10 -04:00			`func parseWorkflow(preprocessor Preprocessor, workflow workflows.WorkflowTemplate, options protocols.ExecutorOptions, loader model.WorkflowLoader) error {`
Misc bug fixes with workflow execution and tags 2021-07-05 21:01:51 +05:30			`shouldNotValidate := false`

Empty string test can be improved (#2115) It is not recommended to use len for empty string test. A string can be tested for its emptiness either by treating it as a slice and calculating the length of the slice, or by treating it as a string and directly comparing the value. While both produce identical code when compiled, it makes more sense to treat a string as itself, than a slice, for the sake of comparison of values. Examples Bad practice len(s) == 0 Recommended s == "" The recommended practice is considered more idiomatic in Go. Co-authored-by: Sandeep Singh <sandeep@projectdiscovery.io> 2022-06-11 14:41:43 +06:00			`if workflow.Template == "" && workflow.Tags.IsEmpty() {`
Fixed a crash in workflow loader 2021-08-30 16:58:11 +05:30			`return errors.New("invalid workflow with no templates or tags")`
			`}`
Misc bug fixes with workflow execution and tags 2021-07-05 21:01:51 +05:30			`if len(workflow.Subtemplates) > 0 \|\| len(workflow.Matchers) > 0 {`
			`shouldNotValidate = true`
			`}`
all for custom preprocessor 2021-07-20 22:32:44 -07:00			`if err := parseWorkflowTemplate(workflow, preprocessor, options, loader, shouldNotValidate); err != nil {`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`return err`
			`}`
			`for _, subtemplates := range workflow.Subtemplates {`
all for custom preprocessor 2021-07-20 22:32:44 -07:00			`if err := parseWorkflow(preprocessor, subtemplates, options, loader); err != nil {`
Fixed workflow tag based execution logic 2021-07-05 21:56:40 +05:30			`gologger.Warning().Msgf("Could not parse workflow: %v\n", err)`
			`continue`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`}`
			`}`
			`for _, matcher := range workflow.Matchers {`
Added workflow names based condition (#2594) * Added workflow names based condition * Added conditional filtering to workflow executor * Replaced names with single name stringslice * Fixed workflow matcher condition + tests * Fixed workflow item name 2022-09-19 16:49:30 +05:30			`if len(matcher.Name.ToSlice()) > 0 {`
			`if err := matcher.Compile(); err != nil {`
			`return errors.Wrap(err, "could not compile workflow matcher")`
			`}`
			`}`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`for _, subtemplates := range matcher.Subtemplates {`
all for custom preprocessor 2021-07-20 22:32:44 -07:00			`if err := parseWorkflow(preprocessor, subtemplates, options, loader); err != nil {`
Fixed workflow tag based execution logic 2021-07-05 21:56:40 +05:30			`gologger.Warning().Msgf("Could not parse workflow: %v\n", err)`
			`continue`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`}`
			`}`
			`}`
			`return nil`
			`}`

			`// parseWorkflowTemplate parses a workflow template creating an executer`
"Executer" to "Executor" (#3760) * Fix spelling of "executer" to "executor" * minor change: use defer file.Close() --------- Co-authored-by: Tarun Koyalwar <tarun@projectdiscovery.io> 2023-05-31 16:58:10 -04:00			`func parseWorkflowTemplate(workflow workflows.WorkflowTemplate, preprocessor Preprocessor, options protocols.ExecutorOptions, loader model.WorkflowLoader, noValidate bool) error {`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`var paths []string`

Adjusting the template/workflow loading/filtering logic. 2021-08-19 15:17:25 +03:00			`subTemplateTags := workflow.Tags`
			`if !subTemplateTags.IsEmpty() {`
			`paths = loader.GetTemplatePathsByTags(subTemplateTags.ToSlice())`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`} else {`
Adjusting the template/workflow loading/filtering logic. 2021-08-19 15:17:25 +03:00			`paths = loader.GetTemplatePaths([]string{workflow.Template}, noValidate)`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`}`
			`if len(paths) == 0 {`
			`return nil`
			`}`
Adding support for clustering within workflow (#1255) * Adding support for clustering within workflow 2021-11-22 00:19:53 +01:00
			`var workflowTemplates []*Template`

Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`for _, path := range paths {`
refactor the modules to core 2021-10-27 16:50:36 +05:30			`template, err := Parse(path, preprocessor, options.Copy())`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`if err != nil {`
Fixed workflow tag based execution logic 2021-07-05 21:56:40 +05:30			`gologger.Warning().Msgf("Could not parse workflow template %s: %v\n", path, err)`
			`continue`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`}`
			`if template.Executer == nil {`
Fixed workflow tag based execution logic 2021-07-05 21:56:40 +05:30			`gologger.Warning().Msgf("Could not parse workflow template %s: no executer found\n", path)`
			`continue`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`}`
validate code template in workflows (#4822) * validate code template in workflows * fix missing executer 2024-03-01 21:30:03 +05:30			`if len(template.RequestsCode) > 0 {`
			`if !options.Options.EnableCodeTemplates {`
			gologger.Warning().Msgf("`-code` flag not found, skipping code template from workflow: %v\n", path)
			`continue`
			`} else if !template.Verified {`
			`// unverfied code templates are not allowed in workflows`
			`gologger.Warning().Msgf("skipping unverified code template from workflow: %v\n", path)`
			`continue`
			`}`
			`}`
Adding support for clustering within workflow (#1255) * Adding support for clustering within workflow 2021-11-22 00:19:53 +01:00			`workflowTemplates = append(workflowTemplates, template)`
			`}`

			`finalTemplates, _ := ClusterTemplates(workflowTemplates, options.Copy())`
			`for _, template := range finalTemplates {`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`workflow.Executers = append(workflow.Executers, &workflows.ProtocolExecuterPair{`
Added probing for URL + input based on protocol (#2614) * Added workflow names based condition * Added conditional filtering to workflow executor * Replaced names with single name stringslice * Added probing for URL + input based on protocol * Remove debug comments * Fixed typo * Fixed failing tests * Fixed workflow matcher condition + tests * Fixed workflow item name * Switch to if-else * Fixed review comment strict * Increase bulk size * Added default port for SSL protocol + misc changes * Fixed failing tests * Fixed misc changes to executer * Fixed failing self-contained and offlinehttp tests * Fixed atomic increment operation * misc update * Fixed failing builds Co-authored-by: sandeep <8293321+ehsandeep@users.noreply.github.com> 2022-10-20 17:23:00 +05:30			`Executer: template.Executer,`
			`Options: options,`
			`TemplateType: template.Type(),`
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`})`
			`}`
Adding support for clustering within workflow (#1255) * Adding support for clustering within workflow 2021-11-22 00:19:53 +01:00
Workflows restructured to work with filters + tag support 2021-07-05 04:35:53 +05:30			`return nil`
			`}`