chore: 直接返回null避免非rmi和ldap协议的攻击向量

chaitin · Dec 11, 2021 · 869c024 · 869c024
1 parent d957614
commit 869c024
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/agent/src/main/java/com/chaitin/vaccine/agent/transform/JndiManagerTransformer.java b/agent/src/main/java/com/chaitin/vaccine/agent/transform/JndiManagerTransformer.java
@@ -45,7 +45,8 @@ public byte[] transform(ClassLoader loader, String className, Class<?> classBein
 
                 // 修改lookup方法
                 assert ctMethod != null;
-                ctMethod.insertBefore("if(name.startsWith(\"ldap://\") || name.startsWith(\"rmi://\")){return null;}");
+                //ctMethod.insertBefore("if(name.startsWith(\"ldap://\") || name.startsWith(\"rmi://\")){return null;}");
+                ctMethod.insertBefore("return null;");
 
                 // 返回字节码
                 System.out.println("[Vaccine] Patch JndiManager Lookup Success!");