valitydev/osquery-1
14
0
Fork 0
mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-06 17:45:22 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
498d64e9eb
osquery-1/osquery/remote/requests.h
Alessandro Gario 498d64e9eb
http_client: Improve certificate verification (#6197)
2020-02-12 14:45:12 -08:00

282 lines
7.4 KiB
C++
Raw Blame History

/**
* Copyright (c) 2014-present, Facebook, Inc.
* All rights reserved.
*
* This source code is licensed in accordance with the terms specified in
* the LICENSE file found in the root directory of this source tree.
*/
#pragma once
#include <memory>
#include <utility>
#include <string>
#include <gtest/gtest_prod.h>
#include <osquery/logger.h>
#include <osquery/utils/json/json.h>
#include <osquery/utils/status/status.h>
namespace osquery {
class Serializer;
/**
* @brief Compress data using GZip.
*
* Requests API callers may request data be compressed before sending.
* The compression step occurs after serialization, immediately before the
* transport call.
*
* @param data The input/output mutable container.
*/
std::string compressString(const std::string& data);
/**
* @brief Abstract base class for remote transport implementations
*
* To define a new transport mechanism (HTTP, WebSockets, etc) for use with
* remote connections, subclass osquery::Transport and implement the pure
* virtual methods (as well as any base methods you may want to implement
* custom behavior for).
*/
class Transport {
public:
/**
* @brief Set the destination URI
*
* @param A string representing the destination
*
* @return success or failure of the operation
*/
virtual void setDestination(const std::string& destination) {
destination_ = destination;
}
/**
* @brief Set the serializer
*
* @param A serializer object
*/
virtual void setSerializer(const std::shared_ptr<Serializer>& serializer) {
serializer_ = serializer;
}
/**
* @brief Send a simple request to the destination with no parameters
*
* @return success or failure of the operation
*/
virtual Status sendRequest() = 0;
/**
* @brief Send a simple request to the destination with parameters
*
* @param params A string representing the serialized parameters
* @param compress True of the request was requested to be compressed
*
* @return success or failure of the operation
*/
virtual Status sendRequest(const std::string& params,
bool compress = false) = 0;
/**
* @brief Get the status of the response
*
* @return success or failure of the operation
*/
Status getResponseStatus() const { return response_status_; }
/**
* @brief Get the parameters of the response
*
* @return The parameters
*/
const JSON& getResponseParams() const {
return response_params_;
}
template <typename T>
void setOption(const std::string& name, const T& value) {
options_.add(name, value);
}
/**
* @brief Virtual destructor
*/
virtual ~Transport() {}
protected:
/// storage for the transport destination
std::string destination_;
/// storage for the serializer reference
std::shared_ptr<Serializer> serializer_{nullptr};
/// storage for response status
Status response_status_;
/// storage for response parameters
JSON response_params_;
/// options from request call (use defined by specific transport)
JSON options_;
};
/**
* @brief Abstract base class for serialization implementations
*
* To define a new serialization mechanism (JSON, XML, etc) for use with
* remote connections, subclass osquery::Serializer and implement the pure
* virtual methods (as well as any base methods you may want to implement
* custom behavior for).
*/
class Serializer {
public:
/**
* @brief Returns the HTTP content type, for HTTP/TLS transport
*
* If a serializer is going to be used for HTTP/TLS, it probably needs to
* set its own content type. Return a string with the appropriate content
* type for serializer.
*
* @return The content type
*/
virtual std::string getContentType() const = 0;
/**
* @brief Serialize a JSON object into a string
*
* @param params a JSON object to be serialized
* @param serialized the output serialized string
* @return success or failure of the operation
*/
virtual Status serialize(const JSON& json, std::string& serialized) = 0;
/**
* @brief Deserialize a JSON string into a JSON object
*
* @param params a string of JSON
* @param serialized the deserialized JSON object
* @return success or failure of the operation
*/
virtual Status deserialize(const std::string& serialized, JSON& params) = 0;
/**
* @brief Virtual destructor
*/
virtual ~Serializer() {}
};
/**
* @brief Request class for making flexible remote network requests
*/
template <class TTransport, class TSerializer>
class Request {
public:
/**
* @brief This is the constructor that you should use to instantiate Request
*
* @param destination A string of the remote URI destination
*/
explicit Request(const std::string& destination)
: destination_(destination),
serializer_(std::make_shared<TSerializer>()),
transport_(std::make_shared<TTransport>()) {
transport_->setDestination(destination_);
transport_->setSerializer(serializer_);
}
private:
/**
* @brief Create a request with a customized Transport (testing only).
*
* @param destination A string of the remote URI destination
* @param t A transport shared pointer.
*/
Request(const std::string& destination, const std::shared_ptr<TTransport>& t)
: destination_(destination),
serializer_(std::make_shared<TSerializer>()),
transport_(t) {
transport_->setDestination(destination_);
transport_->setSerializer(serializer_);
}
public:
/**
* @brief Class destructor
*/
virtual ~Request() {}
/**
* @brief Send a simple request to the destination with no parameters
*
* @return success or failure of the operation
*/
Status call() { return transport_->sendRequest(); }
/**
* @brief Send a simple request to the destination with parameters
*
* @param params a JSON object representing the parameters
*
* @return success or failure of the operation
*/
Status call(const JSON& params) {
std::string serialized;
auto s = serializer_->serialize(params, serialized);
if (!s.ok()) {
return s;
}
bool compress = false;
auto it = options_.doc().FindMember("compress");
if (it != options_.doc().MemberEnd() && it->value.IsBool()) {
compress = it->value.GetBool();
}
return transport_->sendRequest(serialized, compress);
}
/**
* @brief Get the request response
*
* @return A pair of a Status and a JSON object of response params
*/
Status getResponse(JSON& params) {
params.copyFrom(transport_->getResponseParams().doc());
return transport_->getResponseStatus();
}
template <typename T>
void setOption(const std::string& name, const T& value) {
options_.add(name, value);
transport_->setOption(name, value);
}
private:
/// storage for the resource destination
std::string destination_;
/// storage for the serializer to be used
std::shared_ptr<TSerializer> serializer_{nullptr};
/// storage for the transport to be used
std::shared_ptr<TTransport> transport_{nullptr};
/// options from request call (duplicated in transport)
JSON options_;
private:
FRIEND_TEST(TLSTransportsTests, test_call);
FRIEND_TEST(TLSTransportsTests, test_call_with_params);
FRIEND_TEST(TLSTransportsTests, test_call_verify_peer);
FRIEND_TEST(TLSTransportsTests, test_call_server_cert_pinning);
FRIEND_TEST(TLSTransportsTests, test_call_client_auth);
FRIEND_TEST(TLSTransportsTests, test_wrong_hostname);
friend class TestDistributedPlugin;
};
} // namespace osquery
Reference in New Issue View Git Blame Copy Permalink