Class: Arachni::RPC::Server

Inherits:

Object

• Object
• Arachni::RPC::Server

Defined in:

lib/arachni/rpc/server.rb,
lib/arachni/rpc/server/handler.rb

Overview

RPC server.

Author:

• Tasos “Zapotek” Laskos <tasos.laskos@arachni-scanner.com>

Defined Under Namespace

Classes: Handler

Instance Attribute Summary

• #logger ⇒ Logger readonly
• #opts ⇒ Hash readonly

  Configuration options.

• #token ⇒ String readonly

  Authentication token.

Instance Method Summary

• #add_async_check(&block) ⇒ Object
• #add_handler(name, obj) ⇒ Object
• #alive? ⇒ TrueClass
• #call(connection) ⇒ Response
• #clear_handlers ⇒ Object

  Clears all handlers and their associated information like methods and async check blocks.

• #initialize(opts) ⇒ Server constructor

  Starts the RPC server.

• #run ⇒ Object

  Runs the server and blocks while ‘Arachni::Reactor` is running.

• #shutdown ⇒ Object

  Shuts down the server after 2 seconds.

• #start ⇒ Object

  Starts the server but does not block.

Constructor Details

#initialize(opts) ⇒ Server

Starts the RPC server.

Examples:

Example options:

{
    :host  => 'localhost',
    :port  => 7331,

    # optional authentication token, if it doesn't match the one
    # set on the server-side you'll be getting exceptions.
    :token => 'superdupersecret',

    # optional serializer (defaults to YAML)
    :serializer => Marshal,

    # In order to enable peer verification one must first provide
    # the following:
    #
    # SSL CA certificate
    :ssl_ca     => cwd + '/../spec/pems/cacert.pem',
    # SSL private key
    :ssl_pkey   => cwd + '/../spec/pems/client/key.pem',
    # SSL certificate
    :ssl_cert   => cwd + '/../spec/pems/client/cert.pem'
}

Parameters:

• opts (Hash)

Options Hash (opts):

• :host (String) —

  Hostname/IP address.

• :port (Integer) —

  Port number.

• :socket (String) —

  Path to UNIX domain socket.

• :token (String) —

  Optional authentication token.

• :serializer (.dump, .load) — default: YAML —

  Serializer to use for message transmission.

• :fallback_serializer (.dump, .load) —

  Optional fallback serializer to be used when the primary one fails.

• :max_retries (Integer) —

  How many times to retry failed requests.

• :ssl_ca (String) —

  SSL CA certificate.

• :ssl_pkey (String) —

  SSL private key.

• :ssl_cert (String) —

  SSL certificate.

# File 'lib/arachni/rpc/server.rb', line 73

def initialize( opts )
    @opts = opts

    if @opts[:ssl_pkey] && @opts[:ssl_cert]
        if !File.exist?( @opts[:ssl_pkey] )
            raise "Could not find private key at: #{@opts[:ssl_pkey]}"
        end

        if !File.exist?( @opts[:ssl_cert] )
            raise "Could not find certificate at: #{@opts[:ssl_cert]}"
        end
    end

    @token = @opts[:token]

    @logger = ::Logger.new( STDOUT )
    @logger.level = Logger::INFO

    @host, @port = @opts[:host], @opts[:port]
    @socket = @opts[:socket]

    if !@socket && !(@host || @port)
        fail ArgumentError, 'Needs either a :socket or :host and :port options.'
    end

    @port = @port.to_i

    @reactor = Reactor.global

    clear_handlers
end

Instance Attribute Details

#logger ⇒ Logger (readonly)

Returns:

• (Logger)

# File 'lib/arachni/rpc/server.rb', line 31

def logger
  @logger
end

#opts ⇒ Hash (readonly)

Returns Configuration options.

Returns:

• (Hash) —

  Configuration options.

# File 'lib/arachni/rpc/server.rb', line 28

def opts
  @opts
end

#token ⇒ String (readonly)

Returns Authentication token.

Returns:

• (String) —

  Authentication token.

# File 'lib/arachni/rpc/server.rb', line 24

def token
  @token
end

Instance Method Details

#add_async_check(&block) ⇒ Object

Examples:

server.add_async_check do |method|
    #
    # Must return 'true' for async and 'false' for sync.
    #
    # Very simple check here...
    #
    'async' ==  method.name.to_s.split( '_' )[0]
end

Parameters:

• block (Block) —

  Block to identify methods that pass their result to a block instead of simply returning them (which is the most usual operation of async methods).

# File 'lib/arachni/rpc/server.rb', line 119

def add_async_check( &block )
    @async_checks << block
end

#add_handler(name, obj) ⇒ Object

Examples:

server.add_handler( 'myclass', MyClass.new )

Parameters:

• name (String) —

  Name by which to make the object available over RPC.

• obj (Object) —

  Instantiated server object to expose.

# File 'lib/arachni/rpc/server.rb', line 131

def add_handler( name, obj )
    @objects[name]       = obj
    @methods[name]       = Set.new
    @async_methods[name] = Set.new

    obj.class.public_instance_methods( false ).each do |method|
        @methods[name]       << method.to_s
        @async_methods[name] << method.to_s if async_check( obj.method( method ) )
    end
end

#alive? ⇒ TrueClass

Returns:

• (TrueClass)

# File 'lib/arachni/rpc/server.rb', line 219

def alive?
    true
end

#call(connection) ⇒ Response

Note:

If the called method is asynchronous it will be sent by this method directly, otherwise it will be handled by the Handler.

Parameters:

• connection (Handler) —

  Connection with request information.

Returns:

• (Response)

# File 'lib/arachni/rpc/server.rb', line 179

def call( connection )
    req          = connection.request
    peer_ip_addr = connection.peer_address

    expr, args = req.message, req.args
    meth_name, obj_name = parse_expr( expr )

    log_call( peer_ip_addr, expr, *args )

    if !object_exist?( obj_name )
        msg = "Trying to access non-existent object '#{obj_name}'."
        @logger.error( 'Call' ){ msg + " [on behalf of #{peer_ip_addr}]" }
        raise Exceptions::InvalidObject.new( msg )
    end

    if !public_method?( obj_name, meth_name )
        msg = "Trying to access non-public method '#{meth_name}'."
        @logger.error( 'Call' ){ msg + " [on behalf of #{peer_ip_addr}]" }
        raise Exceptions::InvalidMethod.new( msg )
    end

    # The handler needs to know if this is an async call because if it is
    # we'll have already send the response and it doesn't need to do
    # transmit anything.
    res = Response.new
    res.async! if async?( obj_name, meth_name )

    if res.async?
        @objects[obj_name].send( meth_name.to_sym, *args ) do |obj|
            res.obj = obj
            connection.send_response( res )
        end
    else
        res.obj = @objects[obj_name].send( meth_name.to_sym, *args )
    end

    res
end

#clear_handlers ⇒ Object

Clears all handlers and their associated information like methods and async check blocks.

See Also:

• #add_handler
• #add_async_check

# File 'lib/arachni/rpc/server.rb', line 147

def clear_handlers
    @objects = {}
    @methods = {}

    @async_checks  = []
    @async_methods = {}
end

#run ⇒ Object

Runs the server and blocks while ‘Arachni::Reactor` is running.

# File 'lib/arachni/rpc/server.rb', line 156

def run
    @reactor.run { start }
end

#shutdown ⇒ Object

Shuts down the server after 2 seconds

# File 'lib/arachni/rpc/server.rb', line 224

def shutdown
    wait_for = 2

    @logger.info( 'System' ){ "Shutting down in #{wait_for} seconds..." }

    # Don't die before returning...
    @reactor.delay( wait_for ) do
        @reactor.stop
    end
    true
end

#start ⇒ Object

Starts the server but does not block.

# File 'lib/arachni/rpc/server.rb', line 161

def start
    @logger.info( 'System' ){ 'RPC Server started.' }
    @logger.info( 'System' ) do
        interface = @socket ? @socket : "#{@host}:#{@port}"
        "Listening on #{interface}"
    end

    opts = @socket ? @socket : [@host, @port]
    @reactor.listen( *[opts, Handler, self].flatten )
end