mirror of
https://github.com/projectdiscovery/nuclei.git
synced 2025-12-17 21:35:26 +00:00
87ed0b2bb9
* chore: fix non-constant fmt string in call Signed-off-by: Dwi Siswanto <git@dw1.io> * build: bump all direct modules Signed-off-by: Dwi Siswanto <git@dw1.io> * chore(hosterrorscache): update import path Signed-off-by: Dwi Siswanto <git@dw1.io> * fix(charts): break changes Signed-off-by: Dwi Siswanto <git@dw1.io> * build: pinned `github.com/zmap/zcrypto` to v0.0.0-20240512203510-0fef58d9a9db Signed-off-by: Dwi Siswanto <git@dw1.io> * chore: golangci-lint auto fixes Signed-off-by: Dwi Siswanto <git@dw1.io> * chore: satisfy lints Signed-off-by: Dwi Siswanto <git@dw1.io> * build: migrate `github.com/xanzy/go-gitlab` => `gitlab.com/gitlab-org/api/client-go` Signed-off-by: Dwi Siswanto <git@dw1.io> * feat(json): update build constraints Signed-off-by: Dwi Siswanto <git@dw1.io> * chore: dont panicking on close err Signed-off-by: Dwi Siswanto <git@dw1.io> --------- Signed-off-by: Dwi Siswanto <git@dw1.io>
122 lines
3.7 KiB
Go
122 lines
3.7 KiB
Go
package installer
|
|
|
|
import (
|
|
"io"
|
|
"net/url"
|
|
"os"
|
|
"sync"
|
|
|
|
"github.com/projectdiscovery/gologger"
|
|
"github.com/projectdiscovery/nuclei/v3/pkg/catalog/config"
|
|
"github.com/projectdiscovery/nuclei/v3/pkg/utils/json"
|
|
"github.com/projectdiscovery/retryablehttp-go"
|
|
updateutils "github.com/projectdiscovery/utils/update"
|
|
)
|
|
|
|
const (
|
|
pdtmNucleiVersionEndpoint = "https://api.pdtm.sh/api/v1/tools/nuclei"
|
|
pdtmNucleiIgnoreFileEndpoint = "https://api.pdtm.sh/api/v1/tools/nuclei/ignore"
|
|
)
|
|
|
|
// defaultHttpClient is http client that is only meant to be used for version check
|
|
// if proxy env variables are set those are reflected in this client
|
|
var retryableHttpClient = retryablehttp.NewClient(retryablehttp.Options{HttpClient: updateutils.DefaultHttpClient, RetryMax: 2})
|
|
|
|
// PdtmAPIResponse is the response from pdtm API for nuclei endpoint
|
|
type PdtmAPIResponse struct {
|
|
IgnoreHash string `json:"ignore-hash"`
|
|
Tools []struct {
|
|
Name string `json:"name"`
|
|
Version string `json:"version"`
|
|
} `json:"tools"`
|
|
}
|
|
|
|
// NucleiVersionCheck checks for the latest version of nuclei and nuclei templates
|
|
// and returns an error if it fails to check on success it returns nil and changes are
|
|
// made to the default config in config.DefaultConfig
|
|
func NucleiVersionCheck() error {
|
|
return doVersionCheck(false)
|
|
}
|
|
|
|
// this will be updated by features of 1.21 release (which directly provides sync.Once(func()))
|
|
type sdkUpdateCheck struct {
|
|
sync.Once
|
|
}
|
|
|
|
var sdkUpdateCheckInstance = &sdkUpdateCheck{}
|
|
|
|
// NucleiSDKVersionCheck checks for latest version of nuclei which running in sdk mode
|
|
// this only happens once per process regardless of how many times this function is called
|
|
func NucleiSDKVersionCheck() {
|
|
sdkUpdateCheckInstance.Do(func() {
|
|
_ = doVersionCheck(true)
|
|
})
|
|
}
|
|
|
|
// getpdtmParams returns encoded query parameters sent to update check endpoint
|
|
func getpdtmParams(isSDK bool) string {
|
|
values, err := url.ParseQuery(updateutils.GetpdtmParams(config.Version))
|
|
if err != nil {
|
|
gologger.Verbose().Msgf("error parsing update check params: %v", err)
|
|
return updateutils.GetpdtmParams(config.Version)
|
|
}
|
|
if isSDK {
|
|
values.Add("sdk", "true")
|
|
}
|
|
return values.Encode()
|
|
}
|
|
|
|
// UpdateIgnoreFile updates default ignore file by downloading latest ignore file
|
|
func UpdateIgnoreFile() error {
|
|
resp, err := retryableHttpClient.Get(pdtmNucleiIgnoreFileEndpoint + "?" + getpdtmParams(false))
|
|
if err != nil {
|
|
return err
|
|
}
|
|
bin, err := io.ReadAll(resp.Body)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
if err := os.WriteFile(config.DefaultConfig.GetIgnoreFilePath(), bin, 0644); err != nil {
|
|
return err
|
|
}
|
|
return config.DefaultConfig.UpdateNucleiIgnoreHash()
|
|
}
|
|
|
|
func doVersionCheck(isSDK bool) error {
|
|
// we use global retryablehttp client so its not immeditely gc'd if any references are held
|
|
// and according our config we have idle connections which are shown as leaked by goleak in tests
|
|
// i.e we close all idle connections after our use and it doesn't affect any other part of the code
|
|
defer retryableHttpClient.HTTPClient.CloseIdleConnections()
|
|
|
|
resp, err := retryableHttpClient.Get(pdtmNucleiVersionEndpoint + "?" + getpdtmParams(isSDK))
|
|
if err != nil {
|
|
return err
|
|
}
|
|
defer func() {
|
|
_ = resp.Body.Close()
|
|
}()
|
|
bin, err := io.ReadAll(resp.Body)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
var pdtmResp PdtmAPIResponse
|
|
if err := json.Unmarshal(bin, &pdtmResp); err != nil {
|
|
return err
|
|
}
|
|
var nucleiversion, templateversion string
|
|
for _, tool := range pdtmResp.Tools {
|
|
switch tool.Name {
|
|
case "nuclei":
|
|
if tool.Version != "" {
|
|
nucleiversion = "v" + tool.Version
|
|
}
|
|
|
|
case "nuclei-templates":
|
|
if tool.Version != "" {
|
|
templateversion = "v" + tool.Version
|
|
}
|
|
}
|
|
}
|
|
return config.DefaultConfig.WriteVersionCheckData(pdtmResp.IgnoreHash, nucleiversion, templateversion)
|
|
}
|