2014-10-09 11:11:36 -05:00
|
|
|
module Msf::DBManager::Host
|
2017-12-26 23:09:23 -05:00
|
|
|
# TODO: doesn't appear to have any callers. How is this used?
|
2014-10-09 11:11:36 -05:00
|
|
|
# Deletes a host and associated data matching this address/comm
|
|
|
|
|
def del_host(wspace, address, comm='')
|
|
|
|
|
::ActiveRecord::Base.connection_pool.with_connection {
|
|
|
|
|
address, scope = address.split('%', 2)
|
|
|
|
|
host = wspace.hosts.find_by_address_and_comm(address, comm)
|
|
|
|
|
host.destroy if host
|
|
|
|
|
}
|
|
|
|
|
end
|
|
|
|
|
|
2018-02-07 14:21:31 -06:00
|
|
|
# Deletes Host entries based on the IDs passed in.
|
2018-01-24 17:38:51 -06:00
|
|
|
#
|
2018-02-22 11:29:44 -05:00
|
|
|
# @param opts[:ids] [Array] Array containing Integers corresponding to the IDs of the Host entries to delete.
|
|
|
|
|
# @return [Array] Array containing the Mdm::Host objects that were successfully deleted.
|
2017-12-26 23:09:23 -05:00
|
|
|
def delete_host(opts)
|
2018-01-24 17:38:51 -06:00
|
|
|
raise ArgumentError.new("The following options are required: :ids") if opts[:ids].nil?
|
2017-12-26 23:09:23 -05:00
|
|
|
|
|
|
|
|
::ActiveRecord::Base.connection_pool.with_connection {
|
|
|
|
|
deleted = []
|
2018-01-24 17:38:51 -06:00
|
|
|
opts[:ids].each do |host_id|
|
|
|
|
|
host = Mdm::Host.find(host_id)
|
2017-12-26 23:09:23 -05:00
|
|
|
begin
|
2018-01-11 16:12:25 -06:00
|
|
|
deleted << host.destroy
|
2017-12-26 23:09:23 -05:00
|
|
|
rescue # refs suck
|
2017-12-27 16:49:53 -05:00
|
|
|
elog("Forcibly deleting #{host.address}")
|
2018-01-11 16:12:25 -06:00
|
|
|
deleted << host.delete
|
2017-12-26 23:09:23 -05:00
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
2018-01-11 16:12:25 -06:00
|
|
|
return deleted
|
2017-12-26 23:09:23 -05:00
|
|
|
}
|
|
|
|
|
end
|
|
|
|
|
|
2014-10-09 11:11:36 -05:00
|
|
|
#
|
|
|
|
|
# Iterates over the hosts table calling the supplied block with the host
|
|
|
|
|
# instance of each entry.
|
|
|
|
|
#
|
2018-03-22 21:00:06 -05:00
|
|
|
def each_host(wspace=framework.db.workspace, &block)
|
2014-10-09 11:11:36 -05:00
|
|
|
::ActiveRecord::Base.connection_pool.with_connection {
|
|
|
|
|
wspace.hosts.each do |host|
|
|
|
|
|
block.call(host)
|
|
|
|
|
end
|
|
|
|
|
}
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
# Exactly like report_host but waits for the database to create a host and returns it.
|
|
|
|
|
def find_or_create_host(opts)
|
2018-01-19 15:16:19 -06:00
|
|
|
host = get_host(opts.clone)
|
2017-07-07 13:33:42 -05:00
|
|
|
return host unless host.nil?
|
|
|
|
|
|
2014-10-09 11:11:36 -05:00
|
|
|
report_host(opts)
|
|
|
|
|
end
|
|
|
|
|
|
2017-09-08 11:09:15 -05:00
|
|
|
def add_host_tag(opts)
|
2018-03-22 21:00:06 -05:00
|
|
|
wspace = Msf::Util::DBManager.process_opts_workspace(opts, framework)
|
2017-09-08 11:09:15 -05:00
|
|
|
|
|
|
|
|
ip = opts[:ip]
|
|
|
|
|
tag_name = opts[:tag_name]
|
|
|
|
|
|
2018-05-14 17:36:33 -04:00
|
|
|
host = get_host(workspace: wspace, address: ip)
|
2017-09-08 11:09:15 -05:00
|
|
|
if host
|
2018-03-22 21:00:06 -05:00
|
|
|
possible_tags = Mdm::Tag.joins(:hosts).where("hosts.workspace_id = ? and hosts.address = ? and tags.name = ?", wspace.id, ip, tag_name).order("tags.id DESC").limit(1)
|
2017-09-08 11:09:15 -05:00
|
|
|
tag = (possible_tags.blank? ? Mdm::Tag.new : possible_tags.first)
|
|
|
|
|
tag.name = tag_name
|
|
|
|
|
tag.hosts = [host]
|
|
|
|
|
tag.save! if tag.changed?
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
def delete_host_tag(opts)
|
|
|
|
|
workspace = opts[:workspace]
|
|
|
|
|
if workspace.kind_of? String
|
2018-03-22 21:00:06 -05:00
|
|
|
workspace = framework.db.find_workspace(workspace)
|
2017-09-08 11:09:15 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
ip = opts[:rws]
|
|
|
|
|
tag_name = opts[:tag_name]
|
|
|
|
|
|
|
|
|
|
tag_ids = []
|
|
|
|
|
if ip.nil?
|
|
|
|
|
found_tags = Mdm::Tag.joins(:hosts).where("hosts.workspace_id = ? and tags.name = ?", workspace.id, tag_name)
|
|
|
|
|
found_tags.each do |t|
|
|
|
|
|
tag_ids << t.id
|
|
|
|
|
end
|
|
|
|
|
else
|
|
|
|
|
found_tags = Mdm::Tag.joins(:hosts).where("hosts.workspace_id = ? and hosts.address = ? and tags.name = ?", workspace.id, ip, tag_name)
|
|
|
|
|
found_tags.each do |t|
|
|
|
|
|
tag_ids << t.id
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
tag_ids.each do |id|
|
|
|
|
|
tag = Mdm::Tag.find_by_id(id)
|
|
|
|
|
tag.hosts.delete
|
|
|
|
|
tag.destroy
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
2014-10-09 11:11:36 -05:00
|
|
|
#
|
|
|
|
|
# Find a host. Performs no database writes.
|
|
|
|
|
#
|
|
|
|
|
def get_host(opts)
|
|
|
|
|
if opts.kind_of? ::Mdm::Host
|
|
|
|
|
return opts
|
|
|
|
|
elsif opts.kind_of? String
|
2019-11-20 15:06:05 -06:00
|
|
|
raise RuntimeError, "This invocation of get_host is no longer supported: #{caller}"
|
2014-10-09 11:11:36 -05:00
|
|
|
else
|
|
|
|
|
address = opts[:addr] || opts[:address] || opts[:host] || return
|
|
|
|
|
return address if address.kind_of? ::Mdm::Host
|
|
|
|
|
end
|
|
|
|
|
::ActiveRecord::Base.connection_pool.with_connection {
|
2018-03-22 21:00:06 -05:00
|
|
|
wspace = Msf::Util::DBManager.process_opts_workspace(opts, framework)
|
2014-10-09 11:11:36 -05:00
|
|
|
|
2017-09-28 16:59:44 -05:00
|
|
|
address = Msf::Util::Host.normalize_host(address)
|
2014-10-09 11:11:36 -05:00
|
|
|
return wspace.hosts.find_by_address(address)
|
|
|
|
|
}
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
# Look for an address across all comms
|
|
|
|
|
def has_host?(wspace,addr)
|
|
|
|
|
::ActiveRecord::Base.connection_pool.with_connection {
|
|
|
|
|
address, scope = addr.split('%', 2)
|
|
|
|
|
wspace.hosts.find_by_address(addr)
|
|
|
|
|
}
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
# Returns a list of all hosts in the database
|
2017-07-07 13:33:42 -05:00
|
|
|
def hosts(opts)
|
2018-01-31 16:34:42 -05:00
|
|
|
::ActiveRecord::Base.connection_pool.with_connection {
|
2018-07-18 15:18:22 -05:00
|
|
|
# If we have the ID, there is no point in creating a complex query.
|
2018-07-31 10:58:01 -05:00
|
|
|
if opts[:id] && !opts[:id].to_s.empty?
|
2018-07-18 15:18:22 -05:00
|
|
|
return Array.wrap(Mdm::Host.find(opts[:id]))
|
|
|
|
|
end
|
|
|
|
|
|
2018-03-22 21:00:06 -05:00
|
|
|
wspace = Msf::Util::DBManager.process_opts_workspace(opts, framework)
|
2018-01-31 16:34:42 -05:00
|
|
|
|
2018-02-02 01:33:15 -05:00
|
|
|
conditions = {}
|
|
|
|
|
conditions[:state] = [Msf::HostState::Alive, Msf::HostState::Unknown] if opts[:non_dead]
|
2018-02-06 16:11:46 -05:00
|
|
|
conditions[:address] = opts[:address] if opts[:address] && !opts[:address].empty?
|
2018-02-02 01:33:15 -05:00
|
|
|
|
2018-02-02 17:16:12 -05:00
|
|
|
if opts[:search_term] && !opts[:search_term].empty?
|
2018-02-02 01:33:15 -05:00
|
|
|
column_search_conditions = Msf::Util::DBManager.create_all_column_search_conditions(Mdm::Host, opts[:search_term])
|
|
|
|
|
tag_conditions = Arel::Nodes::Regexp.new(Mdm::Tag.arel_table[:name], Arel::Nodes.build_quoted("(?mi)#{opts[:search_term]}"))
|
|
|
|
|
search_conditions = column_search_conditions.or(tag_conditions)
|
|
|
|
|
wspace.hosts.where(conditions).where(search_conditions).includes(:tags).references(:tags).order(:address)
|
2018-01-31 16:34:42 -05:00
|
|
|
else
|
|
|
|
|
wspace.hosts.where(conditions).order(:address)
|
|
|
|
|
end
|
|
|
|
|
}
|
2014-10-09 11:11:36 -05:00
|
|
|
end
|
|
|
|
|
|
2018-01-25 21:47:38 +01:00
|
|
|
def host_state_changed(host, ostate)
|
2017-11-16 22:56:55 +01:00
|
|
|
begin
|
2018-01-25 21:47:38 +01:00
|
|
|
framework.events.on_db_host_state(host, ostate)
|
2017-11-16 22:56:55 +01:00
|
|
|
rescue ::Exception => e
|
|
|
|
|
wlog("Exception in on_db_host_state event handler: #{e.class}: #{e}")
|
|
|
|
|
wlog("Call Stack\n#{e.backtrace.join("\n")}")
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
2014-10-09 11:11:36 -05:00
|
|
|
#
|
|
|
|
|
# Report a host's attributes such as operating system and service pack
|
|
|
|
|
#
|
|
|
|
|
# The opts parameter MUST contain
|
|
|
|
|
# +:host+:: -- the host's ip address
|
|
|
|
|
#
|
|
|
|
|
# The opts parameter can contain:
|
|
|
|
|
# +:state+:: -- one of the Msf::HostState constants
|
|
|
|
|
# +:os_name+:: -- something like "Windows", "Linux", or "Mac OS X"
|
|
|
|
|
# +:os_flavor+:: -- something like "Enterprise", "Pro", or "Home"
|
|
|
|
|
# +:os_sp+:: -- something like "SP2"
|
|
|
|
|
# +:os_lang+:: -- something like "English", "French", or "en-US"
|
2018-05-29 12:24:53 -05:00
|
|
|
# +:arch+:: -- one of the ARCHITECTURES listed in metasploit_data_models/app/models/mdm/host.rb
|
2014-10-09 11:11:36 -05:00
|
|
|
# +:mac+:: -- the host's MAC address
|
|
|
|
|
# +:scope+:: -- interface identifier for link-local IPv6
|
2017-08-04 19:12:27 -05:00
|
|
|
# +:virtual_host+:: -- the name of the virtualization software, eg "VMWare", "QEMU", "Xen", "Docker", etc.
|
2014-10-09 11:11:36 -05:00
|
|
|
#
|
|
|
|
|
def report_host(opts)
|
|
|
|
|
|
2017-04-13 22:07:10 -05:00
|
|
|
return if !active
|
2014-10-09 11:11:36 -05:00
|
|
|
addr = opts.delete(:host) || return
|
|
|
|
|
|
|
|
|
|
# Sometimes a host setup through a pivot will see the address as "Remote Pipe"
|
|
|
|
|
if addr.eql? "Remote Pipe"
|
|
|
|
|
return
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
::ActiveRecord::Base.connection_pool.with_connection {
|
2018-03-22 21:00:06 -05:00
|
|
|
wspace = Msf::Util::DBManager.process_opts_workspace(opts, framework)
|
2019-11-25 11:58:27 -06:00
|
|
|
opts = opts.clone
|
|
|
|
|
opts.delete(:workspace)
|
2014-10-09 11:11:36 -05:00
|
|
|
|
2018-05-14 17:36:33 -04:00
|
|
|
begin
|
|
|
|
|
retry_attempts ||= 0
|
|
|
|
|
if !addr.kind_of? ::Mdm::Host
|
|
|
|
|
addr = Msf::Util::Host.normalize_host(addr)
|
2014-10-09 11:11:36 -05:00
|
|
|
|
2018-05-14 17:36:33 -04:00
|
|
|
unless ipv46_validator(addr)
|
|
|
|
|
raise ::ArgumentError, "Invalid IP address in report_host(): #{addr}"
|
|
|
|
|
end
|
2014-10-09 11:11:36 -05:00
|
|
|
|
2018-05-14 17:36:33 -04:00
|
|
|
conditions = {address: addr}
|
|
|
|
|
conditions[:comm] = opts[:comm] if !opts[:comm].nil? && opts[:comm].length > 0
|
|
|
|
|
host = wspace.hosts.where(conditions).first_or_initialize
|
2014-10-09 11:11:36 -05:00
|
|
|
else
|
2018-05-14 17:36:33 -04:00
|
|
|
host = addr
|
2014-10-09 11:11:36 -05:00
|
|
|
end
|
2017-04-10 15:19:36 -05:00
|
|
|
|
2018-05-14 17:36:33 -04:00
|
|
|
ostate = host.state
|
2018-01-25 21:47:38 +01:00
|
|
|
|
2018-05-14 17:36:33 -04:00
|
|
|
# Truncate the info field at the maximum field length
|
|
|
|
|
if opts[:info]
|
|
|
|
|
opts[:info] = opts[:info][0,65535]
|
|
|
|
|
end
|
2017-03-21 10:40:59 -05:00
|
|
|
|
2018-05-14 17:36:33 -04:00
|
|
|
# Truncate the name field at the maximum field length
|
|
|
|
|
if opts[:name]
|
|
|
|
|
opts[:name] = opts[:name][0,255]
|
2016-12-28 11:06:04 -06:00
|
|
|
end
|
|
|
|
|
|
2018-05-14 17:36:33 -04:00
|
|
|
if opts[:os_name]
|
|
|
|
|
os_name, os_flavor = split_windows_os_name(opts[:os_name])
|
|
|
|
|
opts[:os_name] = os_name if os_name.present?
|
|
|
|
|
if opts[:os_flavor].present?
|
2018-10-23 12:15:53 -05:00
|
|
|
if os_flavor.present? # only prepend if there is a value that needs it
|
|
|
|
|
opts[:os_flavor] = os_flavor + opts[:os_flavor]
|
|
|
|
|
end
|
2018-05-14 17:36:33 -04:00
|
|
|
else
|
|
|
|
|
opts[:os_flavor] = os_flavor
|
2014-10-09 11:11:36 -05:00
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
|
2018-05-14 17:36:33 -04:00
|
|
|
opts.each do |k,v|
|
|
|
|
|
if host.attribute_names.include?(k.to_s)
|
|
|
|
|
unless host.attribute_locked?(k.to_s)
|
|
|
|
|
host[k] = v.to_s.gsub(/[\x00-\x1f]/n, '')
|
|
|
|
|
end
|
|
|
|
|
elsif !v.blank?
|
|
|
|
|
dlog("Unknown attribute for ::Mdm::Host: #{k}")
|
|
|
|
|
end
|
|
|
|
|
end
|
|
|
|
|
host.info = host.info[0,::Mdm::Host.columns_hash["info"].limit] if host.info
|
|
|
|
|
|
|
|
|
|
# Set default fields if needed
|
2019-01-07 14:32:27 -06:00
|
|
|
host.state = Msf::HostState::Alive if host.state.nil? || host.state.empty?
|
2018-05-14 17:36:33 -04:00
|
|
|
host.comm = '' unless host.comm
|
|
|
|
|
host.workspace = wspace unless host.workspace
|
|
|
|
|
|
|
|
|
|
begin
|
|
|
|
|
framework.events.on_db_host(host) if host.new_record?
|
|
|
|
|
rescue => e
|
|
|
|
|
wlog("Exception in on_db_host event handler: #{e.class}: #{e}")
|
|
|
|
|
wlog("Call Stack\n#{e.backtrace.join("\n")}")
|
|
|
|
|
end
|
2017-11-16 22:56:55 +01:00
|
|
|
|
2018-05-14 17:36:33 -04:00
|
|
|
host_state_changed(host, ostate) if host.state != ostate
|
2018-01-25 21:47:38 +01:00
|
|
|
|
2018-05-14 17:36:33 -04:00
|
|
|
if host.changed?
|
|
|
|
|
msf_import_timestamps(opts, host)
|
|
|
|
|
host.save!
|
|
|
|
|
end
|
2018-12-14 12:28:16 -05:00
|
|
|
rescue ActiveRecord::RecordNotUnique, ActiveRecord::RecordInvalid
|
|
|
|
|
# two concurrent report requests for a new host could result in a RecordNotUnique or
|
|
|
|
|
# RecordInvalid exception, simply retry the report once more as an optimistic approach
|
2018-05-14 17:36:33 -04:00
|
|
|
retry if (retry_attempts+=1) <= 1
|
|
|
|
|
raise
|
2014-10-09 11:11:36 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
|
|
if opts[:task]
|
|
|
|
|
Mdm::TaskHost.create(
|
|
|
|
|
:task => opts[:task],
|
|
|
|
|
:host => host
|
|
|
|
|
)
|
|
|
|
|
end
|
|
|
|
|
|
|
|
|
|
host
|
|
|
|
|
}
|
|
|
|
|
end
|
|
|
|
|
|
2018-02-06 16:11:46 -05:00
|
|
|
def update_host(opts)
|
|
|
|
|
::ActiveRecord::Base.connection_pool.with_connection {
|
2018-03-22 21:00:06 -05:00
|
|
|
# process workspace string for update if included in opts
|
2018-04-09 14:50:37 -05:00
|
|
|
wspace = Msf::Util::DBManager.process_opts_workspace(opts, framework, false)
|
2019-11-25 11:58:27 -06:00
|
|
|
opts = opts.clone()
|
2018-03-22 21:00:06 -05:00
|
|
|
opts[:workspace] = wspace if wspace
|
|
|
|
|
|
2018-02-06 16:11:46 -05:00
|
|
|
id = opts.delete(:id)
|
2019-01-07 16:24:13 -06:00
|
|
|
host = Mdm::Host.find(id)
|
|
|
|
|
host.update!(opts)
|
2019-01-10 11:04:42 -06:00
|
|
|
return host
|
2018-02-06 16:11:46 -05:00
|
|
|
}
|
|
|
|
|
end
|
|
|
|
|
|
2016-12-28 11:06:04 -06:00
|
|
|
def split_windows_os_name(os_name)
|
|
|
|
|
return [] if os_name.nil?
|
|
|
|
|
flavor_match = os_name.match(/Windows\s+(.*)/)
|
|
|
|
|
return [] if flavor_match.nil?
|
|
|
|
|
["Windows", flavor_match.captures.first]
|
|
|
|
|
end
|
2015-03-30 13:14:36 -05:00
|
|
|
end
|
