Updation of k2RequestIdentifier naming to NR/CSEC naming

instrumentation-security-test/src/main/java/com/newrelic/agent/security/introspec/internal/SecurityIntrospectorImpl.java

@@ -10,7 +10,7 @@
 import com.newrelic.api.agent.security.schema.HttpRequest;
 import com.newrelic.api.agent.security.schema.HttpResponse;
 import com.newrelic.api.agent.security.schema.JDBCVendor;
-import com.newrelic.api.agent.security.schema.K2RequestIdentifier;
+import com.newrelic.api.agent.security.schema.CSECRequestIdentifier;
 import com.newrelic.api.agent.security.schema.R2DBCVendor;
 import com.newrelic.api.agent.security.schema.SecurityMetaData;
 import com.newrelic.api.agent.security.schema.helper.Log4JStrSubstitutor;
@@ -103,9 +103,9 @@ public void setRequestReaderHash(int hashCode) {
 
     @Override
     public void setK2FuzzRequestId(String value) {
-        K2RequestIdentifier k2RequestIdentifierInstance = new K2RequestIdentifier();
-        k2RequestIdentifierInstance.setRaw(value);
-        NewRelicSecurity.getAgent().getSecurityMetaData().setFuzzRequestIdentifier(k2RequestIdentifierInstance);
+        CSECRequestIdentifier CSECRequestIdentifierInstance = new CSECRequestIdentifier();
+        CSECRequestIdentifierInstance.setRaw(value);
+        NewRelicSecurity.getAgent().getSecurityMetaData().setFuzzRequestIdentifier(CSECRequestIdentifierInstance);
     }
 
     @Override

newrelic-security-agent/src/main/java/com/newrelic/agent/security/instrumentator/dispatcher/Dispatcher.java

@@ -708,15 +708,15 @@ private JavaAgentEventBean setGenericProperties(AbstractOperation objectBean, Ja
     }
 
     private JavaAgentEventBean prepareEvent(HttpRequest httpRequestBean, AgentMetaData metaData,
-            VulnerabilityCaseType vulnerabilityCaseType, K2RequestIdentifier k2RequestIdentifier) {
+            VulnerabilityCaseType vulnerabilityCaseType, CSECRequestIdentifier CSECRequestIdentifier) {
         JavaAgentEventBean eventBean = new JavaAgentEventBean();
         eventBean.setHttpRequest(httpRequestBean);
         eventBean.setMetaData(metaData);
         eventBean.getMetaData().setAppServerInfo(AppServerInfoHelper.getAppServerInfo());
         eventBean.setCaseType(vulnerabilityCaseType.getCaseType());
         eventBean.setIsAPIBlocked(metaData.isApiBlocked());
         eventBean.setStacktrace(operation.getStackTrace());
-        eventBean.setIsIASTRequest(k2RequestIdentifier.getK2Request());
+        eventBean.setIsIASTRequest(CSECRequestIdentifier.getCSECRequest());
         if (AgentUtils.getInstance().getAgentPolicy().getVulnerabilityScan().getEnabled() && AgentUtils.getInstance().getAgentPolicy().getVulnerabilityScan().getIastScan().getEnabled()) {
             eventBean.setIsIASTEnable(true);
         }

newrelic-security-agent/src/main/java/com/newrelic/agent/security/instrumentator/dispatcher/DispatcherPool.java

@@ -75,7 +75,7 @@ public EventAbortPolicy() {
         public void rejectedExecution(Runnable r, ThreadPoolExecutor e) {
             if (r instanceof CustomFutureTask<?> && ((CustomFutureTask<?>) r).getTask() instanceof Dispatcher) {
                 Dispatcher dispatcher = (Dispatcher) ((CustomFutureTask<?>) r).getTask();
-                if(dispatcher.getSecurityMetaData()!= null && dispatcher.getSecurityMetaData().getFuzzRequestIdentifier().getK2Request()){
+                if(dispatcher.getSecurityMetaData()!= null && dispatcher.getSecurityMetaData().getFuzzRequestIdentifier().getCSECRequest()){
                     String fuzzRequestId = dispatcher.getSecurityMetaData().getCustomAttribute(GenericHelper.CSEC_PARENT_ID, String.class);
                     if (dispatcher.getSecurityMetaData().getRequest().getIsGrpc()) {
                         GrpcClientRequestReplayHelper.getInstance().getRejectedIds().add(fuzzRequestId);
@@ -85,7 +85,7 @@ public void rejectedExecution(Runnable r, ThreadPoolExecutor e) {
                 }
 
                 if(dispatcher.getSecurityMetaData() != null) {
-                    if(dispatcher.getSecurityMetaData().getFuzzRequestIdentifier().getK2Request()){
+                    if(dispatcher.getSecurityMetaData().getFuzzRequestIdentifier().getCSECRequest()){
                         AgentInfo.getInstance().getJaHealthCheck().getIastEventStats().incrementRejectedCount();
                     } else {
                         AgentInfo.getInstance().getJaHealthCheck().getRaspEventStats().incrementRejectedCount();
@@ -150,7 +150,7 @@ private void incrementCount(Runnable r, String type) {
         if (r instanceof CustomFutureTask<?> && ((CustomFutureTask<?>) r).getTask() instanceof Dispatcher) {
             Dispatcher dispatcher = (Dispatcher) ((CustomFutureTask<?>) r).getTask();
             if(dispatcher.getSecurityMetaData() != null) {
-                if(dispatcher.getSecurityMetaData().getFuzzRequestIdentifier().getK2Request()){
+                if(dispatcher.getSecurityMetaData().getFuzzRequestIdentifier().getCSECRequest()){
                     eventStats = AgentInfo.getInstance().getJaHealthCheck().getIastEventStats();
                 } else {
                     eventStats = AgentInfo.getInstance().getJaHealthCheck().getRaspEventStats();
@@ -199,19 +199,19 @@ public void dispatchEvent(AbstractOperation operation, SecurityMetaData security
             return;
         }
 
-        if(!securityMetaData.getFuzzRequestIdentifier().getK2Request() && !AgentUsageMetric.isRASPProcessingActive()){
+        if(!securityMetaData.getFuzzRequestIdentifier().getCSECRequest() && !AgentUsageMetric.isRASPProcessingActive()){
             AgentInfo.getInstance().getJaHealthCheck().getRaspEventStats().incrementRejectedCount();
             AgentInfo.getInstance().getJaHealthCheck().incrementEventRejectionCount();
             return;
         }
 
-        if (!operation.isEmpty() && securityMetaData.getFuzzRequestIdentifier().getK2Request()) {
+        if (!operation.isEmpty() && securityMetaData.getFuzzRequestIdentifier().getCSECRequest()) {
             if (StringUtils.equals(securityMetaData.getFuzzRequestIdentifier().getApiRecordId(), operation.getApiID()) && StringUtils.equals(securityMetaData.getFuzzRequestIdentifier().getNextStage().getStatus(), IAgentConstants.VULNERABLE)) {
                 eid.add(operation.getExecutionId());
             }
         }
         // Register in Processed CC map
-        if (securityMetaData.getFuzzRequestIdentifier().getK2Request()) {
+        if (securityMetaData.getFuzzRequestIdentifier().getCSECRequest()) {
             String parentId = securityMetaData.getCustomAttribute(GenericHelper.CSEC_PARENT_ID, String.class);
             if (StringUtils.isNotBlank(parentId)) {
                 if (securityMetaData.getRequest().getIsGrpc()) {

newrelic-security-agent/src/main/java/com/newrelic/agent/security/intcodeagent/models/javaagent/ExitEventBean.java

@@ -6,7 +6,7 @@
 public class ExitEventBean extends AgentBasicInfo {
     private String executionId;
     private String caseType;
-    private String k2RequestIdentifier;
+    private String nrRequestIdentifier;
     private String applicationUUID;
 
     public ExitEventBean() {
@@ -36,12 +36,12 @@ public void setCaseType(String caseType) {
         this.caseType = caseType;
     }
 
-    public String getK2RequestIdentifier() {
-        return k2RequestIdentifier;
+    public String getNRRequestIdentifier() {
+        return nrRequestIdentifier;
     }
 
-    public void setK2RequestIdentifier(String k2RequestIdentifier) {
-        this.k2RequestIdentifier = k2RequestIdentifier;
+    public void setNRRequestIdentifier(String nrRequestIdentifier) {
+        this.nrRequestIdentifier = nrRequestIdentifier;
     }
 
     public String getApplicationUUID() {

newrelic-security-agent/src/main/java/com/newrelic/api/agent/security/Agent.java

@@ -35,7 +35,6 @@
 import java.lang.instrument.Instrumentation;
 import java.lang.instrument.UnmodifiableClassException;
 import java.net.HttpURLConnection;
-import java.net.Socket;
 import java.net.URL;
 import java.time.Instant;
 import java.util.ArrayList;
@@ -263,7 +262,7 @@ public void registerOperation(AbstractOperation operation) {
         String executionId = ExecutionIDGenerator.getExecutionId();
         operation.setExecutionId(executionId);
         operation.setStartTime(Instant.now().toEpochMilli());
-        if(securityMetaData!=null && securityMetaData.getFuzzRequestIdentifier().getK2Request()){
+        if(securityMetaData!=null && securityMetaData.getFuzzRequestIdentifier().getCSECRequest()){
             logger.log(LogLevel.FINEST, String.format("New Event generation with id %s of type %s", operation.getExecutionId(), operation.getClass().getSimpleName()), Agent.class.getName());
         }
         if (operation instanceof RXSSOperation) {
@@ -306,7 +305,7 @@ public void registerOperation(AbstractOperation operation) {
         }
     }
 
-    private void logIfIastScanForFirstTime(K2RequestIdentifier fuzzRequestIdentifier, HttpRequest request) {
+    private void logIfIastScanForFirstTime(CSECRequestIdentifier fuzzRequestIdentifier, HttpRequest request) {
 
         String url = StringUtils.EMPTY;
         if(request != null && StringUtils.isNotBlank(request.getUrl())) {
@@ -441,15 +440,15 @@ public void registerExitEvent(AbstractOperation operation) {
         if (operation == null) {
             return;
         }
-        K2RequestIdentifier k2RequestIdentifier = NewRelicSecurity.getAgent().getSecurityMetaData().getFuzzRequestIdentifier();
+        CSECRequestIdentifier CSECRequestIdentifier = NewRelicSecurity.getAgent().getSecurityMetaData().getFuzzRequestIdentifier();
         HttpRequest request = NewRelicSecurity.getAgent().getSecurityMetaData().getRequest();
 
         // TODO: Generate for only native payloads
-        if (!request.isEmpty() && !operation.isEmpty() && k2RequestIdentifier.getK2Request()) {
-            if (StringUtils.equals(k2RequestIdentifier.getApiRecordId(), operation.getApiID())
-                    && StringUtils.equals(k2RequestIdentifier.getNextStage().getStatus(), IAgentConstants.VULNERABLE)) {
+        if (!request.isEmpty() && !operation.isEmpty() && CSECRequestIdentifier.getCSECRequest()) {
+            if (StringUtils.equals(CSECRequestIdentifier.getApiRecordId(), operation.getApiID())
+                    && StringUtils.equals(CSECRequestIdentifier.getNextStage().getStatus(), IAgentConstants.VULNERABLE)) {
                 ExitEventBean exitEventBean = new ExitEventBean(operation.getExecutionId(), operation.getCaseType().getCaseType());
-                exitEventBean.setK2RequestIdentifier(k2RequestIdentifier.getRaw());
+                exitEventBean.setNRRequestIdentifier(CSECRequestIdentifier.getRaw());
                 logger.log(LogLevel.FINER, "Exit event : " + exitEventBean, this.getClass().getName());
                 DispatcherPool.getInstance().dispatchExitEvent(exitEventBean);
                 AgentInfo.getInstance().getJaHealthCheck().incrementExitEventSentCount();

newrelic-security-api/src/main/java/com/newrelic/api/agent/security/instrumentation/helpers/LowSeverityHelper.java

@@ -7,7 +7,6 @@
 
 import java.util.Set;
 import java.util.concurrent.ConcurrentHashMap;
-import java.util.concurrent.atomic.AtomicBoolean;
 
 public class LowSeverityHelper {
 
@@ -41,7 +40,7 @@ public static boolean isOwaspHookProcessingNeeded(){
         SecurityMetaData securityMetaData = NewRelicSecurity.getAgent().getSecurityMetaData();
         if(NewRelicSecurity.isHookProcessingActive() && securityMetaData != null && !securityMetaData.getRequest().isEmpty()) {
             String requestURL = securityMetaData.getRequest().getUrl();
-            return (securityMetaData.getFuzzRequestIdentifier() != null && securityMetaData.getFuzzRequestIdentifier().getK2Request())
+            return (securityMetaData.getFuzzRequestIdentifier() != null && securityMetaData.getFuzzRequestIdentifier().getCSECRequest())
                     || (StringUtils.isNotBlank(requestURL) && !LowSeverityHelper.checkIfLowSeverityEventAlreadyEncountered(requestURL.hashCode(), securityMetaData.getRequest().getMethod()));
         }
         return false;

newrelic-security-api/src/main/java/com/newrelic/api/agent/security/instrumentation/helpers/ServletHelper.java

@@ -2,7 +2,7 @@
 
 import com.newrelic.api.agent.security.NewRelicSecurity;
 import com.newrelic.api.agent.security.schema.APIRecordStatus;
-import com.newrelic.api.agent.security.schema.K2RequestIdentifier;
+import com.newrelic.api.agent.security.schema.CSECRequestIdentifier;
 import com.newrelic.api.agent.security.schema.SecurityMetaData;
 import com.newrelic.api.agent.security.schema.StringUtils;
 import com.newrelic.api.agent.security.utils.logging.LogLevel;
@@ -68,29 +68,29 @@ public class ServletHelper {
         add("text/calendar");
     }};
 
-    public static K2RequestIdentifier parseFuzzRequestIdentifierHeader(String requestHeaderVal) {
-        K2RequestIdentifier k2RequestIdentifierInstance = new K2RequestIdentifier();
+    public static CSECRequestIdentifier parseFuzzRequestIdentifierHeader(String requestHeaderVal) {
+        CSECRequestIdentifier CSECRequestIdentifierInstance = new CSECRequestIdentifier();
         if (StringUtils.isBlank(requestHeaderVal)) {
-            k2RequestIdentifierInstance.setRaw(StringUtils.EMPTY);
-            return k2RequestIdentifierInstance;
+            CSECRequestIdentifierInstance.setRaw(StringUtils.EMPTY);
+            return CSECRequestIdentifierInstance;
         }
         if (StringUtils.isNotBlank(requestHeaderVal)) {
-            k2RequestIdentifierInstance.setRaw(requestHeaderVal);
+            CSECRequestIdentifierInstance.setRaw(requestHeaderVal);
             if (!(NewRelicSecurity.getAgent().getCurrentPolicy().getVulnerabilityScan().getEnabled()
                     && NewRelicSecurity.getAgent().getCurrentPolicy().getVulnerabilityScan().getIastScan().getEnabled())) {
-                return k2RequestIdentifierInstance;
+                return CSECRequestIdentifierInstance;
             }
             String[] data = StringUtils.splitByWholeSeparatorWorker(requestHeaderVal, SEPARATOR_SEMICOLON, -1, false);
 
             if (data.length >= 5) {
-                k2RequestIdentifierInstance.setApiRecordId(data[0].trim());
-                k2RequestIdentifierInstance.setRefId(data[1].trim());
-                k2RequestIdentifierInstance.setRefValue(data[2].trim());
-                k2RequestIdentifierInstance.setNextStage(APIRecordStatus.valueOf(data[3].trim()));
-                k2RequestIdentifierInstance.setRecordIndex(Integer.parseInt(data[4].trim()));
-                k2RequestIdentifierInstance.setK2Request(true);
+                CSECRequestIdentifierInstance.setApiRecordId(data[0].trim());
+                CSECRequestIdentifierInstance.setRefId(data[1].trim());
+                CSECRequestIdentifierInstance.setRefValue(data[2].trim());
+                CSECRequestIdentifierInstance.setNextStage(APIRecordStatus.valueOf(data[3].trim()));
+                CSECRequestIdentifierInstance.setRecordIndex(Integer.parseInt(data[4].trim()));
+                CSECRequestIdentifierInstance.setCSECRequest(true);
                 if (data.length >= 6 && StringUtils.isNotBlank(data[5])) {
-                    k2RequestIdentifierInstance.setRefKey(data[5].trim());
+                    CSECRequestIdentifierInstance.setRefKey(data[5].trim());
                 }
                 if (data.length >= 7) {
                     for (int i = 6; i < data.length; i++) {
@@ -100,7 +100,7 @@ public static K2RequestIdentifier parseFuzzRequestIdentifierHeader(String reques
                         }
                         tmpFile = StringUtils.replace(tmpFile, NR_CSEC_VALIDATOR_HOME_TMP,
                                 NewRelicSecurity.getAgent().getAgentTempDir());
-                        k2RequestIdentifierInstance.getTempFiles().add(tmpFile);
+                        CSECRequestIdentifierInstance.getTempFiles().add(tmpFile);
                         try {
 
                             File fileToCreate = new File(tmpFile);
@@ -122,7 +122,7 @@ public static K2RequestIdentifier parseFuzzRequestIdentifierHeader(String reques
                 }
             }
         }
-        return k2RequestIdentifierInstance;
+        return CSECRequestIdentifierInstance;
     }
 
     /**

newrelic-security-api/src/main/java/com/newrelic/api/agent/security/schema/K2RequestIdentifier.java → newrelic-security-api/src/main/java/com/newrelic/api/agent/security/schema/CSECRequestIdentifier.java

@@ -3,35 +3,35 @@
 import java.util.ArrayList;
 import java.util.List;
 
-public class K2RequestIdentifier {
+public class CSECRequestIdentifier {
     private String raw;
     private String refId;
     private String refValue;
     private String apiRecordId;
-    private boolean k2Request;
+    private boolean CSECRequest;
     private APIRecordStatus nextStage;
     private Integer recordIndex;
     private String refKey;
     private List<String> tempFiles;
 
-    public K2RequestIdentifier() {
-        k2Request = false;
+    public CSECRequestIdentifier() {
+        CSECRequest = false;
         tempFiles = new ArrayList<>();
         raw = StringUtils.EMPTY;
     }
 
-    public K2RequestIdentifier(K2RequestIdentifier k2RequestIdentifierInstance) {
-        this.refId = (StringUtils.isNotBlank(k2RequestIdentifierInstance.refId)) ? new String(k2RequestIdentifierInstance.refId) : null;
-        this.refValue = (StringUtils.isNotBlank(k2RequestIdentifierInstance.refValue)) ? new String(k2RequestIdentifierInstance.refValue) : null;
-        this.apiRecordId = (StringUtils.isNotBlank(k2RequestIdentifierInstance.apiRecordId)) ? new String(k2RequestIdentifierInstance.apiRecordId) : null;
-        this.k2Request = k2RequestIdentifierInstance.k2Request;
-        this.nextStage = k2RequestIdentifierInstance.nextStage;
-        this.recordIndex = (k2RequestIdentifierInstance.recordIndex != null) ? Integer.valueOf(k2RequestIdentifierInstance.recordIndex) : null;
-        this.refKey = (StringUtils.isNotBlank(k2RequestIdentifierInstance.refKey)) ? new String(k2RequestIdentifierInstance.refKey) : null;
-        if (k2RequestIdentifierInstance.tempFiles != null) {
-            this.tempFiles = new ArrayList<>(k2RequestIdentifierInstance.tempFiles);
+    public CSECRequestIdentifier(CSECRequestIdentifier CSECRequestIdentifierInstance) {
+        this.refId = (StringUtils.isNotBlank(CSECRequestIdentifierInstance.refId)) ? new String(CSECRequestIdentifierInstance.refId) : null;
+        this.refValue = (StringUtils.isNotBlank(CSECRequestIdentifierInstance.refValue)) ? new String(CSECRequestIdentifierInstance.refValue) : null;
+        this.apiRecordId = (StringUtils.isNotBlank(CSECRequestIdentifierInstance.apiRecordId)) ? new String(CSECRequestIdentifierInstance.apiRecordId) : null;
+        this.CSECRequest = CSECRequestIdentifierInstance.CSECRequest;
+        this.nextStage = CSECRequestIdentifierInstance.nextStage;
+        this.recordIndex = (CSECRequestIdentifierInstance.recordIndex != null) ? Integer.valueOf(CSECRequestIdentifierInstance.recordIndex) : null;
+        this.refKey = (StringUtils.isNotBlank(CSECRequestIdentifierInstance.refKey)) ? new String(CSECRequestIdentifierInstance.refKey) : null;
+        if (CSECRequestIdentifierInstance.tempFiles != null) {
+            this.tempFiles = new ArrayList<>(CSECRequestIdentifierInstance.tempFiles);
         }
-        this.raw = (StringUtils.isNotBlank(k2RequestIdentifierInstance.raw)) ? new String(k2RequestIdentifierInstance.raw) : null;
+        this.raw = (StringUtils.isNotBlank(CSECRequestIdentifierInstance.raw)) ? new String(CSECRequestIdentifierInstance.raw) : null;
     }
 
     public String getRefId() {
@@ -58,12 +58,12 @@ public void setApiRecordId(String apiRecordId) {
         this.apiRecordId = apiRecordId;
     }
 
-    public boolean getK2Request() {
-        return k2Request;
+    public boolean getCSECRequest() {
+        return CSECRequest;
     }
 
-    public void setK2Request(boolean k2Request) {
-        this.k2Request = k2Request;
+    public void setCSECRequest(boolean CSECRequest) {
+        this.CSECRequest = CSECRequest;
     }
 
     public APIRecordStatus getNextStage() {