Class: Arachni::Browser::Javascript::Proxy

Inherits:

BasicObject

Defined in:

lib/arachni/browser/javascript/proxy.rb,
lib/arachni/browser/javascript/proxy/stub.rb

Overview

Note:

Extends `BasicObject` because we don't want any baggage to avoid method-name clashes with the Javascript-side objects.

Provides a proxy to a Javascript object.

Author:

• Tasos “Zapotek” Laskos <tasos.laskos@arachni-scanner.com>

Direct Known Subclasses

DOMMonitor, TaintTracer

Defined Under Namespace

Classes: Stub

Instance Attribute Summary

• #javascript ⇒ Javascript readonly

  Active Arachni::Browser::Javascript interface.

• #stub ⇒ Stub readonly

  Stub interface for JS code.

Class Method Summary

• .function?(env, object, name) ⇒ Boolean
• .mutex ⇒ Object

Instance Method Summary

• #call(function, *arguments) ⇒ Object (also: #method_missing)
• #class ⇒ Object
• #function?(name) ⇒ Bool

  `true` if the `name` property of the current object points to a function, `false` otherwise.

• #initialize(javascript, object) ⇒ Proxy constructor

  A new instance of Proxy.

• #js_object ⇒ String

  Active JS-side object name – prefixed with the relevant `_token`.

• #respond_to?(property) ⇒ Bool

  `true` if `self` of the JS object responds to `property`, `false` otherwise.

Constructor Details

#initialize(javascript, object) ⇒ Proxy

Returns a new instance of Proxy.

Parameters:

• javascript (Javascript) —

  Active Arachni::Browser::Javascript interface.

• object (String) —

  Name of the JS-side object – will be prefixed with a generated '_token'.

# File 'lib/arachni/browser/javascript/proxy.rb', line 33

def initialize( javascript, object )
    @javascript = javascript
    @object     = object
    @stub       = Stub.new( self )
end

Dynamic Method Handling

This class handles dynamic methods through the method_missing method

#method_missing ⇒ Object

Parameters:

• function (Symbol) —

  Javascript property/function.

• arguments (Array)

# File 'lib/arachni/browser/javascript/proxy.rb', line 61

def call( function, *arguments )
    @javascript.run_without_elements "return #{stub.write( function, *arguments )}"
end

Instance Attribute Details

#javascript ⇒ Javascript (readonly)

Returns Active Arachni::Browser::Javascript interface.

Returns:

• (Javascript) —

  Active Arachni::Browser::Javascript interface.

# File 'lib/arachni/browser/javascript/proxy.rb', line 27

def javascript
  @javascript
end

#stub ⇒ Stub (readonly)

Returns Stub interface for JS code.

Returns:

• (Stub) —

  Stub interface for JS code.

# File 'lib/arachni/browser/javascript/proxy.rb', line 23

def stub
  @stub
end

Class Method Details

.function?(env, object, name) ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/arachni/browser/javascript/proxy.rb', line 76

def self.function?( env, object, name )
    mutex.synchronize do
        @isFunction ||= {}
        key = "#{object}.#{name}".hash

        return @isFunction[key] if @isFunction.include?( key )

        if name.to_s.end_with? '='
            name = name.to_s
            return @isFunction[key] = env.run(
                "return ('#{name[0...-1]}' in #{object})"
            )
        end

        @isFunction[key] = env.run(
            "return Object.prototype.toString.call( #{object}." <<
                "#{name} ) == '[object Function]'"
        )
    end
end

.mutex ⇒ Object

# File 'lib/arachni/browser/javascript/proxy.rb', line 96

def self.mutex
    @mutex ||= ::Mutex.new
end

Instance Method Details

#call(function, *arguments) ⇒ Object Also known as: method_missing

Parameters:

• function (Symbol) —

  Javascript property/function.

• arguments (Array)

# File 'lib/arachni/browser/javascript/proxy.rb', line 58

def call( function, *arguments )
    @javascript.run_without_elements "return #{stub.write( function, *arguments )}"
end

#class ⇒ Object

# File 'lib/arachni/browser/javascript/proxy.rb', line 72

def class
    Proxy
end

#function?(name) ⇒ Bool

Returns `true` if the `name` property of the current object points to a function, `false` otherwise.

Parameters:

• name (#to_sym) —

  Function name to check.

Returns:

• (Bool) —

  `true` if the `name` property of the current object points to a function, `false` otherwise.

# File 'lib/arachni/browser/javascript/proxy.rb', line 45

def function?( name )
    self.class.function?( @javascript, js_object, name )
end

#js_object ⇒ String

Returns Active JS-side object name – prefixed with the relevant `_token`.

Returns:

• (String) —

  Active JS-side object name – prefixed with the relevant `_token`.

# File 'lib/arachni/browser/javascript/proxy.rb', line 51

def js_object
    "_#{@javascript.token}#{@object}"
end

#respond_to?(property) ⇒ Bool

Returns `true` if `self` of the JS object responds to `property`, `false` otherwise.

Parameters:

• property (Symbol)

Returns:

• (Bool) —

  `true` if `self` of the JS object responds to `property`, `false` otherwise.

# File 'lib/arachni/browser/javascript/proxy.rb', line 68

def respond_to?( property )
    stub.respond_to?( property )
end