memflowup 0.2.0

setup tool for the memflow physical memory introspection framework
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285

//! Clap subcommand to configure memflowup

use std::{
    path::{Path, PathBuf},
    process::{exit, Command, Stdio},
};

use chrono::Utc;
use clap::{Arg, ArgAction, ArgMatches};
use inquire::Confirm;
use memflow::plugins::plugin_analyzer;
use memflow_registry::storage::PluginMetadata;
use tokio::fs::File;
use tokio::io::AsyncWriteExt;

use crate::{
    ensure_rust,
    error::{Error, Result},
    github_api,
    util::{self, create_temp_dir},
};

#[inline]
pub fn metadata() -> clap::Command {
    clap::Command::new("build").args([
        Arg::new("repository_or_path").help("url to the git repository to pull from (e.g. https://github.com/memflow/memflow-coredump) or local path").required(true),
        Arg::new("path")
            .long("path")
            .short('p')
            .help("file system path to local plugin source to install")
            .action(ArgAction::SetTrue),
        Arg::new("branch").long("branch").help("checks out the git repository at this specific branch").action(ArgAction::Set),
        Arg::new("tag").long("tag").help("checks out the git repository at this specific tag").action(ArgAction::Set),
        Arg::new("all-features")
            .long("all-features")
            .help("builds the plugin with the --all-features flag")
            .action(ArgAction::SetTrue),
    ])
}

pub async fn handle(matches: &ArgMatches) -> Result<()> {
    // rust / cargo is required for source builds
    ensure_rust::ensure_rust().await?;

    let repository_or_path = matches.get_one::<String>("repository_or_path").unwrap();
    let path = matches.get_flag("path");

    let all_features = matches.get_flag("all-features");

    if !path {
        // download and install from a repository
        // TODO: support non-github repos
        // TODO: print proper not found error instead of a random error
        let commit = if let Some(tag) = matches.get_one::<String>("tag") {
            let tag = github_api::tag(repository_or_path, tag).await?;
            tag.commit.sha
        } else {
            let branch = matches
                .get_one::<String>("branch")
                .map(String::as_str)
                .unwrap_or_else(|| "main");
            let branch = github_api::branch(repository_or_path, branch).await?;
            branch.commit.sha
        };

        // create temporary directory (will be dropped when this code path exits)
        let temp_dir = create_temp_dir("memflowup_build", &commit).await?;

        // run compilation and installation
        download_repository(repository_or_path, &commit, temp_dir.as_path()).await?;
        let artifacts = build_artifacts_from_source(&temp_dir, all_features).await?;
        for artifact in artifacts.iter() {
            install_artifact(artifact).await.ok();
        }
    } else {
        // install from local path
        let path = Path::new(repository_or_path);
        if !path.exists() || !path.is_dir() {
            println!(
                "{} Path does not exist or is not a directory.",
                console::style("[-]").bold().dim(),
            );
            return Err(Error::NotFound(
                "path does not exist or is not a directory".to_string(),
            ));
        }

        let artifacts = build_artifacts_from_source(path, all_features).await?;
        for artifact in artifacts.iter() {
            install_artifact(artifact).await.ok();
        }
    }

    Ok(())
}

/// Downloads the repository to the temporary directory
async fn download_repository(repository: &str, commit: &str, temp_dir_path: &Path) -> Result<()> {
    match which::which("git") {
        Ok(_) => download_repository_via_git(repository, commit, temp_dir_path).await,
        Err(_) => {
            println!(
                "Git was not found on your system. It is either not installed or not in your PATH."
            );
            println!();
            println!("Git is required to check-out repositories in order to build them properly.");
            println!("If you continue without Git its possible that the build will fail in case the repository contains submodules.");

            let ans =
                Confirm::new("Do you want to continue using the fallback download mechanism?")
                    .with_default(false)
                    .with_help_message("Some things might not work as intended.")
                    .prompt();

            match ans {
                Ok(false) | Err(_) => exit(0),
                _ => download_repository_via_http(repository, commit, temp_dir_path).await,
            }
        }
    }
}

async fn download_repository_via_git(
    repository: &str,
    commit: &str,
    temp_dir_path: &Path,
) -> Result<()> {
    let temp_dir_path_str = temp_dir_path.to_str().ok_or("invalid temporary path")?;
    Command::new("git")
        .args([
            "clone",
            "--recursive",
            "--depth",
            "1",
            repository,
            temp_dir_path_str,
        ])
        .stdout(Stdio::inherit())
        .stderr(Stdio::inherit())
        .output()
        .map_err(|_| "unable to clone repository")?;

    Command::new("git")
        .current_dir(temp_dir_path)
        .args(["reset", "--hard", commit])
        .stdout(Stdio::inherit())
        .stderr(Stdio::inherit())
        .output()
        .map_err(|_| "unable to find commit hash")?;

    Ok(())
}

async fn download_repository_via_http(
    repository: &str,
    commit: &str,
    temp_dir_path: &Path,
) -> Result<()> {
    // query file and download to memory
    println!(
        "{} Downloading plugin source from {} with commit {}",
        console::style("[-]").bold().dim(),
        repository,
        commit
    );
    let response = github_api::download_code_for_commit(repository, commit).await?;
    let buffer = util::read_response_with_progress(response).await?;

    // unpack archive
    println!("{} Unpacking source", console::style("[-]").bold().dim(),);
    util::zip_unpack(buffer.as_ref(), temp_dir_path, 1)?;

    Ok(())
}

/// Builds the plugin from the given source path and returns the path of the resulting artifact.
/// For workspace repos this can return a list of artifacts.
async fn build_artifacts_from_source(
    source_path: &Path,
    all_features: bool,
) -> Result<Vec<PathBuf>> {
    // build plugin
    println!(
        "{} Building plugin in: {:?}",
        console::style("[-]").bold().dim(),
        source_path,
    );
    if all_features {
        let _ = util::cargo("build --release --all-features", source_path)?;
    } else {
        let _ = util::cargo("build --release", source_path)?;
    }

    // try to find a valid artifact in the build folder
    let artifact_path = source_path.to_path_buf().join("target").join("release");
    let paths = std::fs::read_dir(artifact_path)?;
    let mut artifacts = Vec::new();
    for path in paths.filter_map(|p| p.ok()) {
        if path.path().is_file() {
            if let Some(extension) = path.path().extension() {
                if extension.to_str().unwrap_or_default() == memflow::plugins::plugin_extension() {
                    println!(
                        "{} Plugin artifact successfully built: {:?}",
                        console::style("[=]").bold().dim().green(),
                        path.path()
                    );
                    artifacts.push(path.path());
                }
            }
        }
    }

    // extract the artifact file name
    if !artifacts.is_empty() {
        Ok(artifacts)
    } else {
        println!(
                    "{} No valid build artifact with the `{}` file extension found. Are you sure this is a dylib project?",
                    console::style("[-]").bold().dim(),
                    memflow::plugins::plugin_extension(),
                );
        Err(Error::NotFound(
            "no supported build artifact found.".to_string(),
        ))
    }
}

async fn install_artifact(artifact_path: &Path) -> Result<()> {
    // parse the plugins descriptor
    let artifact_content = tokio::fs::read(artifact_path).await?;
    let descriptors = plugin_analyzer::parse_descriptors(&artifact_content)?;

    // construct variant of this plugin, for now we only use the first descriptor found
    // TODO: currently we do not ensure that digest is identical each time we build it. we should ensure the build timestamps match to have truly reproducible builds.
    if descriptors.is_empty() {
        println!(
            "{} PluginDescriptor not found in artifact {:?}. Are you sure this is a memflow plugin project?",
            console::style("[-]").bold().dim(),
            artifact_path
        );
        return Err(Error::NotFound(
            "no supported build artifact found.".to_string(),
        ));
    }

    let metadata = PluginMetadata {
        digest: sha256::digest(&artifact_content),
        signature: String::new(),
        created_at: Utc::now().naive_utc(),
        descriptors,
    };

    // construct destination file_name in memflowup registry
    let file_name = util::plugin_file_name(&metadata);
    if file_name.exists() {
        println!(
            "{} Plugin already exists, overwriting.",
            console::style("[-]").bold().dim().yellow(),
        );
    }

    // write file
    let mut file = File::create(&file_name).await?;
    file.write_all(&artifact_content).await?;
    file.flush().await?;

    println!(
        "{} Wrote plugin to: {:?}",
        console::style("[=]").bold().dim().green(),
        file_name.as_os_str(),
    );

    // store .meta file of plugin containing all relevant information
    // TODO: this does not contain all plugins in this file - allow querying that from memflow-registry as well
    let mut file_name = file_name.clone();
    file_name.set_extension("meta");
    tokio::fs::write(&file_name, serde_json::to_string_pretty(&metadata)?).await?;

    println!(
        "{} Wrote plugin metadata to: {:?}",
        console::style("[=]").bold().dim().green(),
        file_name.as_os_str(),
    );
    Ok(())
}