enhance: add web.xml extrac servlet

Author: wuerror

CHANGELOG.md

@@ -2,6 +2,15 @@
 
 All notable changes to this project will be documented in this file.
 
+## [1.5.0] - 2026-02-10
+
+### Added
+- **Legacy Web App Support (Phase 10.1)**:
+    - Implemented `WebXmlParser` to extract Servlet mappings from `web.xml` files in JAR/WAR archives.
+    - Updated `RouteExtractor` to merge `web.xml` routes with Spring annotation-based routes.
+    - Enhanced `DiscoveryEngine` to scan all available JARs (including libraries) for `web.xml` definitions, ensuring routes in dependencies (e.g., `bos-resources.jar`) are discovered.
+    - Fixes issue where legacy Servlet routes were missed in hybrid Spring Boot + Servlet applications.
+
 ## [1.4.0] - 2026-02-09
 
 ### Added

src/main/java/com/jbytescanner/engine/DiscoveryEngine.java

@@ -45,7 +45,12 @@ public void run() {
         SootManager.initSoot(targetAppJars, combinedLibs, false);
 
         // 2. Extract Routes
-        RouteExtractor extractor = new RouteExtractor(filterAnnotations);
+        List<String> scanJars = new ArrayList<>();
+        if (targetAppJars != null) scanJars.addAll(targetAppJars);
+        if (depAppJars != null) scanJars.addAll(depAppJars);
+        if (libJars != null) scanJars.addAll(libJars);
+
+        RouteExtractor extractor = new RouteExtractor(filterAnnotations, scanJars);
         List<ApiRoute> routes = extractor.extract();
 
         logger.info("Found {} API Routes.", routes.size());

src/main/java/com/jbytescanner/engine/RouteExtractor.java

@@ -36,14 +36,19 @@ public class RouteExtractor {
     private static final String ANN_WEB_SERVLET = "javax.servlet.annotation.WebServlet";
 
     private final List<String> filterAnnotations;
+    private final List<String> scanJars;
 
-    public RouteExtractor(List<String> filterAnnotations) {
+    public RouteExtractor(List<String> filterAnnotations, List<String> scanJars) {
         this.filterAnnotations = filterAnnotations;
+        this.scanJars = scanJars;
     }
 
     public List<ApiRoute> extract() {
         List<ApiRoute> routes = new ArrayList<>();
 
+        // 0. Extract Routes from web.xml (Legacy/Hybrid)
+        routes.addAll(extractWebXmlRoutes());
+
         for (SootClass sc : Scene.v().getApplicationClasses()) {
             if (sc.isPhantom()) continue;
 
@@ -197,6 +202,39 @@ private List<ApiRoute> extractSpringRoutes(SootClass sc) {
         return routes;
     }
 
+    private List<ApiRoute> extractWebXmlRoutes() {
+        List<ApiRoute> routes = new ArrayList<>();
+        if (scanJars == null || scanJars.isEmpty()) return routes;
+        
+        WebXmlParser parser = new WebXmlParser();
+        for (String jarPath : scanJars) {
+            Map<String, List<String>> webXmlRoutes = parser.parse(new java.io.File(jarPath));
+            
+            for (Map.Entry<String, List<String>> entry : webXmlRoutes.entrySet()) {
+                String className = entry.getKey();
+                List<String> paths = entry.getValue();
+                
+                // Verify if class is in Soot (Optional, but good for validation)
+                // If the class is a library class, it might not be in "ApplicationClasses" but in "Scene.v().getClasses()"
+                // We add it regardless, because web.xml is an explicit definition.
+                
+                for (String path : paths) {
+                    // Create a route for ALL methods since web.xml maps the servlet generally
+                    routes.add(new ApiRoute(
+                        "ALL", 
+                        path, 
+                        className, 
+                        "service", // Method name placeholder
+                        new ArrayList<>(), // No params known from web.xml
+                        new HashMap<>(), 
+                        "application/x-www-form-urlencoded"
+                    ));
+                }
+            }
+        }
+        return routes;
+    }
+
     private String combinePaths(String p1, String p2) {
         if (!p1.startsWith("/")) p1 = "/" + p1;
         if (!p2.startsWith("/") && !p2.isEmpty()) p2 = "/" + p2;

src/main/java/com/jbytescanner/engine/WebXmlParser.java

@@ -0,0 +1,119 @@
+package com.jbytescanner.engine;
+
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.w3c.dom.Document;
+import org.w3c.dom.Element;
+import org.w3c.dom.Node;
+import org.w3c.dom.NodeList;
+
+import javax.xml.parsers.DocumentBuilder;
+import javax.xml.parsers.DocumentBuilderFactory;
+import java.io.File;
+import java.io.InputStream;
+import java.util.*;
+import java.util.jar.JarEntry;
+import java.util.jar.JarFile;
+
+public class WebXmlParser {
+    private static final Logger logger = LoggerFactory.getLogger(WebXmlParser.class);
+
+    /**
+     * Parse web.xml inside a JAR file and return a map of Servlet Class -> List of URL Patterns
+     */
+    public Map<String, List<String>> parse(File jarFile) {
+        Map<String, List<String>> routes = new HashMap<>();
+        
+        if (!jarFile.exists() || !jarFile.getName().endsWith(".jar")) {
+            return routes;
+        }
+
+        try (JarFile jar = new JarFile(jarFile)) {
+            Enumeration<JarEntry> entries = jar.entries();
+            while (entries.hasMoreElements()) {
+                JarEntry entry = entries.nextElement();
+                String name = entry.getName();
+                
+                // Recursively search for web.xml (e.g., WEB-INF/web.xml, webapp/web.xml)
+                // Using exact name match or suffix match to be safe
+                if (name.endsWith("web.xml") && !name.contains("classes/")) { // Avoid resources inside classes if any
+                    logger.debug("Found web.xml in {}: {}", jarFile.getName(), name);
+                    try (InputStream is = jar.getInputStream(entry)) {
+                        parseWebXml(is, routes);
+                    } catch (Exception e) {
+                        logger.error("Failed to parse web.xml in {}", jarFile.getName(), e);
+                    }
+                }
+            }
+        } catch (Exception e) {
+            logger.error("Failed to process JAR for web.xml: {}", jarFile.getName(), e);
+        }
+        
+        return routes;
+    }
+
+    private void parseWebXml(InputStream is, Map<String, List<String>> routes) throws Exception {
+        DocumentBuilderFactory dbFactory = DocumentBuilderFactory.newInstance();
+        // Secure processing to prevent XXE
+        dbFactory.setFeature("http://apache.org/xml/features/disallow-doctype-decl", true);
+        dbFactory.setFeature("http://xml.org/sax/features/external-general-entities", false);
+        dbFactory.setFeature("http://xml.org/sax/features/external-parameter-entities", false);
+        dbFactory.setNamespaceAware(true); // Handle namespaces if present
+
+        DocumentBuilder dBuilder = dbFactory.newDocumentBuilder();
+        Document doc = dBuilder.parse(is);
+        doc.getDocumentElement().normalize();
+
+        // 1. Extract Servlets: Name -> Class
+        Map<String, String> servletNameMap = new HashMap<>();
+        NodeList servletNodes = doc.getElementsByTagName("servlet"); // Simple tag name search ignores namespace
+        if (servletNodes.getLength() == 0) {
+            // Try with namespace awareness if simple search fails (though getElementsByTagName usually works)
+            servletNodes = doc.getElementsByTagNameNS("*", "servlet");
+        }
+
+        for (int i = 0; i < servletNodes.getLength(); i++) {
+            Element element = (Element) servletNodes.item(i);
+            String servletName = getTagValue("servlet-name", element);
+            String servletClass = getTagValue("servlet-class", element);
+            
+            if (servletName != null && servletClass != null) {
+                servletNameMap.put(servletName, servletClass);
+            }
+        }
+
+        // 2. Extract Mappings: Name -> URL Pattern
+        NodeList mappingNodes = doc.getElementsByTagName("servlet-mapping");
+        if (mappingNodes.getLength() == 0) {
+            mappingNodes = doc.getElementsByTagNameNS("*", "servlet-mapping");
+        }
+
+        for (int i = 0; i < mappingNodes.getLength(); i++) {
+            Element element = (Element) mappingNodes.item(i);
+            String servletName = getTagValue("servlet-name", element);
+            String urlPattern = getTagValue("url-pattern", element);
+            
+            if (servletName != null && urlPattern != null) {
+                String servletClass = servletNameMap.get(servletName);
+                if (servletClass != null) {
+                    routes.computeIfAbsent(servletClass, k -> new ArrayList<>()).add(urlPattern);
+                }
+            }
+        }
+    }
+
+    private String getTagValue(String tag, Element element) {
+        NodeList nodeList = element.getElementsByTagName(tag);
+        if (nodeList.getLength() == 0) {
+            nodeList = element.getElementsByTagNameNS("*", tag);
+        }
+        
+        if (nodeList.getLength() > 0) {
+            Node node = nodeList.item(0).getFirstChild();
+            if (node != null) {
+                return node.getNodeValue().trim();
+            }
+        }
+        return null;
+    }
+}