spotless

Author: jandro996

dd-java-agent/instrumentation-testing/src/main/groovy/datadog/trace/agent/test/base/HttpServerTest.groovy

@@ -368,6 +368,10 @@ abstract class HttpServerTest<SERVER> extends WithHttpServer<SERVER> {
     false
   }
 
+  boolean testBodyFilenamesCalledOnce() {
+    false
+  }
+
   boolean testBodyFilenames() {
     false
   }
@@ -476,6 +480,7 @@ abstract class HttpServerTest<SERVER> extends WithHttpServer<SERVER> {
     CREATED_IS("created_input_stream", 201, "created"),
     BODY_URLENCODED("body-urlencoded?ignore=pair", 200, '[a:[x]]'),
     BODY_MULTIPART("body-multipart?ignore=pair", 200, '[a:[x]]'),
+    BODY_MULTIPART_REPEATED("body-multipart-repeated", 200, "ok"),
     BODY_JSON("body-json", 200, '{"a":"x"}'),
     BODY_XML("body-xml", 200, '<foo attr="attr_value">mytext<bar/></foo>'),
     REDIRECT("redirect", 302, "/redirected"),
@@ -1646,6 +1651,30 @@ abstract class HttpServerTest<SERVER> extends WithHttpServer<SERVER> {
     response.close()
   }
 
+  def 'test instrumentation gateway file upload filenames called once'() {
+    setup:
+    assumeTrue(testBodyFilenamesCalledOnce())
+    RequestBody fileBody = RequestBody.create(MediaType.parse('application/octet-stream'), 'file content')
+    def body = new MultipartBody.Builder()
+    .setType(MultipartBody.FORM)
+    .addFormDataPart('file', 'evil.php', fileBody)
+    .build()
+    def httpRequest = request(BODY_MULTIPART_REPEATED, 'POST', body).build()
+    def response = client.newCall(httpRequest).execute()
+
+    when:
+    TEST_WRITER.waitForTraces(1)
+
+    then:
+    TEST_WRITER.get(0).any {
+      it.getTag('request.body.filenames') == "[evil.php]"
+      && it.getTag('_dd.appsec.filenames.cb.calls') == 1
+    }
+
+    cleanup:
+    response.close()
+  }
+
   def 'test instrumentation gateway json request body'() {
     setup:
     assumeTrue(testBodyJson())
@@ -2581,6 +2610,7 @@ abstract class HttpServerTest<SERVER> extends WithHttpServer<SERVER> {
       boolean responseBodyTag
       Object responseBody
       List<String> uploadedFilenames
+      int uploadedFilenamesCallCount = 0
     }
 
     static final String stringOrEmpty(String string) {
@@ -2754,6 +2784,8 @@ abstract class HttpServerTest<SERVER> extends WithHttpServer<SERVER> {
       rqCtxt.traceSegment.setTagTop('request.body.filenames', filenames as String)
       Context context = rqCtxt.getData(RequestContextSlot.APPSEC)
       context.uploadedFilenames = filenames
+      context.uploadedFilenamesCallCount++
+      rqCtxt.traceSegment.setTagTop('_dd.appsec.filenames.cb.calls', context.uploadedFilenamesCallCount)
       Flow.ResultFlow.empty()
     } as BiFunction<RequestContext, List<String>, Flow<Void>>)
 

dd-java-agent/instrumentation/jetty/jetty-appsec/jetty-appsec-9.2/src/main/java/datadog/trace/instrumentation/jetty92/RequestExtractContentParametersInstrumentation.java

@@ -144,8 +144,7 @@ static void after(
   @RequiresRequestContext(RequestContextSlot.APPSEC)
   public static class GetFilenamesAdvice {
     @Advice.OnMethodEnter(suppress = Throwable.class)
-    static boolean before(
-        @Advice.FieldValue("_contentParameters") final MultiMap<String> map) {
+    static boolean before(@Advice.FieldValue("_contentParameters") final MultiMap<String> map) {
       final int callDepth = CallDepthThreadLocalMap.incrementCallDepth(Collection.class);
       return callDepth == 0 && map == null;
     }

dd-java-agent/instrumentation/jetty/jetty-appsec/jetty-appsec-9.3/src/main/java/datadog/trace/instrumentation/jetty93/RequestExtractContentParametersInstrumentation.java

@@ -46,7 +46,12 @@ public void methodAdvice(MethodTransformer transformer) {
     transformer.applyAdvice(
         named("extractContentParameters").and(takesArguments(0)).or(named("getParts")),
         getClass().getName() + "$ExtractContentParametersAdvice");
-    transformer.applyAdvice(named("getParts"), getClass().getName() + "$GetFilenamesAdvice");
+    transformer.applyAdvice(
+        named("getParts").and(takesArguments(0)),
+        getClass().getName() + "$GetFilenamesAdvice");
+    transformer.applyAdvice(
+        named("getParts").and(takesArguments(1)),
+        getClass().getName() + "$GetFilenamesFromMultiPartAdvice");
   }
 
   private static final Reference REQUEST_REFERENCE =
@@ -105,11 +110,15 @@ static void after(
     }
   }
 
+  /**
+   * Fires the {@code requestFilesFilenames} event when the application calls public {@code
+   * getParts()}. The {@code _contentParameters == null} guard ensures the WAF is invoked only on
+   * the first call — subsequent calls return the cached result without re-processing.
+   */
   @RequiresRequestContext(RequestContextSlot.APPSEC)
   public static class GetFilenamesAdvice {
     @Advice.OnMethodEnter(suppress = Throwable.class)
-    static boolean before(
-        @Advice.FieldValue("_contentParameters") final MultiMap<String> map) {
+    static boolean before(@Advice.FieldValue("_contentParameters") final MultiMap<String> map) {
       final int callDepth = CallDepthThreadLocalMap.incrementCallDepth(Collection.class);
       return callDepth == 0 && map == null;
     }
@@ -166,4 +175,73 @@ static void after(
       }
     }
   }
+
+  /**
+   * Fires the {@code requestFilesFilenames} event when multipart content is parsed via the
+   * internal {@code getParts(MultiMap)} path triggered by {@code getParameter*()} /
+   * {@code getParameterMap()} — i.e. when the application never calls public {@code getParts()}.
+   * In Jetty 9.3+, {@code extractContentParameters()} assigns {@code _contentParameters} before
+   * calling this method, so {@code map == null} cannot be used as a "first parse" guard here;
+   * the call-depth guard prevents double-firing when {@code getParts()} internally delegates to
+   * this method.
+   */
+  @RequiresRequestContext(RequestContextSlot.APPSEC)
+  public static class GetFilenamesFromMultiPartAdvice {
+    @Advice.OnMethodEnter(suppress = Throwable.class)
+    static boolean before() {
+      return CallDepthThreadLocalMap.incrementCallDepth(Collection.class) == 0;
+    }
+
+    @Advice.OnMethodExit(suppress = Throwable.class, onThrowable = Throwable.class)
+    static void after(
+        @Advice.Enter boolean proceed,
+        @Advice.Return Collection parts,
+        @ActiveRequestContext RequestContext reqCtx,
+        @Advice.Thrown(readOnly = false) Throwable t) {
+      CallDepthThreadLocalMap.decrementCallDepth(Collection.class);
+      if (!proceed || t != null || parts == null || parts.isEmpty()) {
+        return;
+      }
+      Method getSubmittedFileName = null;
+      try {
+        getSubmittedFileName = parts.iterator().next().getClass().getMethod("getSubmittedFileName");
+      } catch (Exception ignored) {
+      }
+      if (getSubmittedFileName == null) {
+        return;
+      }
+      List<String> filenames = new ArrayList<>();
+      for (Object part : parts) {
+        try {
+          String name = (String) getSubmittedFileName.invoke(part);
+          if (name != null && !name.isEmpty()) {
+            filenames.add(name);
+          }
+        } catch (Exception ignored) {
+        }
+      }
+      if (filenames.isEmpty()) {
+        return;
+      }
+      CallbackProvider cbp = AgentTracer.get().getCallbackProvider(RequestContextSlot.APPSEC);
+      BiFunction<RequestContext, List<String>, Flow<Void>> callback =
+          cbp.getCallback(EVENTS.requestFilesFilenames());
+      if (callback == null) {
+        return;
+      }
+      Flow<Void> flow = callback.apply(reqCtx, filenames);
+      Flow.Action action = flow.getAction();
+      if (action instanceof Flow.Action.RequestBlockingAction) {
+        Flow.Action.RequestBlockingAction rba = (Flow.Action.RequestBlockingAction) action;
+        BlockResponseFunction brf = reqCtx.getBlockResponseFunction();
+        if (brf != null) {
+          brf.tryCommitBlockingResponse(reqCtx.getTraceSegment(), rba);
+          if (t == null) {
+            t = new BlockingException("Blocked request (multipart file upload)");
+            reqCtx.getTraceSegment().effectivelyBlocked();
+          }
+        }
+      }
+    }
+  }
 }

dd-java-agent/instrumentation/jetty/jetty-server/jetty-server-11.0/src/test/groovy/Jetty11Test.groovy

@@ -72,6 +72,11 @@ abstract class Jetty11Test extends HttpServerTest<Server> {
     true
   }
 
+  @Override
+  boolean testBodyFilenamesCalledOnce() {
+    true
+  }
+
   @Override
   boolean testBlocking() {
     true

dd-java-agent/instrumentation/servlet/jakarta-servlet-5.0/src/testFixtures/groovy/datadog/trace/instrumentation/servlet5/TestServlet5.groovy

@@ -11,6 +11,7 @@ import java.lang.reflect.Field
 import java.lang.reflect.Modifier
 
 import static datadog.trace.agent.test.base.HttpServerTest.ServerEndpoint.BODY_MULTIPART
+import static datadog.trace.agent.test.base.HttpServerTest.ServerEndpoint.BODY_MULTIPART_REPEATED
 import static datadog.trace.agent.test.base.HttpServerTest.ServerEndpoint.BODY_URLENCODED
 import static datadog.trace.agent.test.base.HttpServerTest.ServerEndpoint.CREATED
 import static datadog.trace.agent.test.base.HttpServerTest.ServerEndpoint.CREATED_IS
@@ -68,6 +69,14 @@ class TestServlet5 extends HttpServlet {
           resp.status = endpoint.status
           resp.writer.print(req.getHeader("x-forwarded-for"))
           break
+        case BODY_MULTIPART_REPEATED:
+          resp.status = endpoint.status
+          // Call getParts() 3 times to verify the filenames callback fires only once
+          req.getParts()
+          req.getParts()
+          req.getParts()
+          resp.writer.print(endpoint.body)
+          break
         case BODY_MULTIPART:
         case BODY_URLENCODED:
           resp.status = endpoint.status