Nov_12_2023-Dev

2025-09-30 03:34:26 +03:00 · 2023-11-12 18:50:17 +00:00
parent 0869b8f24d
commit 3061342b45
114 changed files with 3627 additions and 1305 deletions
--- a/components/security_apps/orchestration/downloader/curl_client.cc
+++ b/components/security_apps/orchestration/downloader/curl_client.cc
@@ -278,36 +278,6 @@ HttpsCurl::HttpsCurl(const HttpsCurl &other) :
    HttpCurl(other),
    ca_path(other.ca_path) {}

-bool
-HttpsCurl::downloadOpenAppsecPackages()
-{
-    char errorstr[CURL_ERROR_SIZE];
-    CURL* curl_handle = curl_easy_init();
-    if (!curl_handle) return false;
-
-    curl_easy_setopt(curl_handle, CURLOPT_SSL_VERIFYPEER, 1);
-    curl_easy_setopt(curl_handle, CURLOPT_SSL_VERIFYHOST, 2);
-
-    curl_easy_setopt(curl_handle, CURLOPT_URL, ("https://" + curl_url).c_str());
-    curl_easy_setopt(curl_handle, CURLOPT_WRITEFUNCTION, writeResponseCallback);
-    curl_easy_setopt(curl_handle, CURLOPT_WRITEDATA, &out_file);
-
-    curl_easy_setopt(curl_handle, CURLOPT_VERBOSE, 1L);
-    curl_easy_setopt(curl_handle, CURLOPT_ERRORBUFFER, errorstr);
-
-    CURLcode res = curl_easy_perform(curl_handle);
-    if (res == CURLE_OK) {
-        dbgTrace(D_HTTP_REQUEST) << "CURL HTTP request successfully completed.";
-    } else {
-        dbgWarning(D_HTTP_REQUEST) << "CURL result " + string(curl_easy_strerror(res));
-        curl_easy_cleanup(curl_handle);
-        return false;
-    }
-
-    curl_easy_cleanup(curl_handle);
-    return true;
-}
-
 void
 HttpsCurl::setCurlOpts(long timeout, HTTP_VERSION http_version)
 {
@@ -347,7 +317,7 @@ HttpsCurl::setCurlOpts(long timeout, HTTP_VERSION http_version)
    curl_easy_setopt(curl_handle, CURLOPT_WRITEFUNCTION, writeResponseCallback);
    curl_easy_setopt(curl_handle, CURLOPT_WRITEDATA, &out_file);
    curl_easy_setopt(curl_handle, CURLOPT_TIMEOUT, timeout);
-    curl_easy_setopt(curl_handle, CURLOPT_CAINFO, ca_path.c_str());
+    if (ca_path != "") curl_easy_setopt(curl_handle, CURLOPT_CAINFO, ca_path.c_str());
    headers = curl_slist_append(headers, "Accept: */*");
    string auth = string("Authorization: Bearer ") + bearer;
    headers = curl_slist_append(headers, auth.c_str());
--- a/components/security_apps/orchestration/downloader/curl_client.h
+++ b/components/security_apps/orchestration/downloader/curl_client.h
@@ -105,7 +105,6 @@ public:
    static CURLcode ssl_ctx_verify_certificate(CURL *curl, void *ssl_ctx, void *opq);
    static int verify_certificate(int preverify_ok, X509_STORE_CTX *ctx);
    void setCurlOpts(long timeout = 60L, HTTP_VERSION http_version = HTTP_VERSION::HTTP_VERSION_1_1) override;
-    bool downloadOpenAppsecPackages();

 private:
    std::string ca_path;
--- a/components/security_apps/orchestration/downloader/https_client.cc
+++ b/components/security_apps/orchestration/downloader/https_client.cc
@@ -592,13 +592,8 @@ HTTPClient::curlGetFileOverSSL(const URLParser &url, ofstream &out_file, const s
            proxy_config->getProxyCredentials(ProxyProtocol::HTTPS),
            cert_file_path);

-        bool connection_ok;
-        if (url.getBaseURL().unpack() == "downloads.openappsec.io") {
-            connection_ok = ssl_curl_client.downloadOpenAppsecPackages();
-        } else {
-            ssl_curl_client.setCurlOpts();
-            connection_ok = ssl_curl_client.connect();
-        }
+        ssl_curl_client.setCurlOpts();
+        bool connection_ok = ssl_curl_client.connect();
        if (!connection_ok)
        {
            stringstream url_s;