File: luatest.lua

package info (click to toggle)
modsecurity 3.0.14-1
  • links: PTS
  • area: main
  • in suites: forky, sid, trixie
  • size: 88,920 kB
  • sloc: ansic: 174,512; sh: 43,569; cpp: 26,214; python: 15,734; makefile: 3,864; yacc: 2,947; lex: 1,359; perl: 1,243; php: 42; tcl: 4
file content (107 lines) | stat: -rw-r--r-- 2,497 bytes parent folder | download | duplicates (4) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
 

require 'libinjection'

-- dofile('sqlifingerprints.lua')

-- silly callback that just calls back into C
-- identical to libinjection_is_sqli(sql_state, string_input, nil)
--
function check_pattern_c(sqlstate)
    return(libinjection.sqli_blacklist(sqlstate) and
            libinjection.sqli_not_whitelist(sqlstate))
end

-- half lua / half c checker
-- use lua based fingerprint lookup and still uses C code
-- to eliminate false positives
function check_pattern(sqlstate)
    fp = sqlstate.pat
    if sqlifingerprints[fp] == true then
        -- try to eliminate certain false positives
        return(libinjection.sqli_not_whitelist(sqlstate))
    else
        -- not sqli
        return 0
    end
end

function lookup_word(sqlstate, ltype, word)
   if ltype == 'X' then
       return words['0' .. word:upper()]
   else
       return words[word:upper()]
   end
end

dofile('words.lua')


-- THIS USES BUILT IN FINGERPRINTS
--  (with last arg of 'nil')
sqli = '1 union select * from table'


sql_state = libinjection.sqli_state()
libinjection.sqli_init(sql_state, sqli, sqli:len(), 0)

print(libinjection.is_sqli(sql_state))
print(sql_state.pat)
print('----')



inputs = {
     "123 LIKE -1234.5678E+2;",
     "APPLE 1   9.123 'FOO' \"BAR\"",
     "/* BAR */ UNION ALL SELECT (2,3,4)",
     "1 || COS(+0X04) --FOOBAR",
     "dog apple @cat banana bar",
     "dog apple cat \"banana \'bar",
     "102 TABLE CLOTH"
}

function benchmark(imax)
   local x,s
   local t0 = os.clock()
   local sql_state = libinjection.sqli_state()
   for x = 0, imax do
       s = inputs[(x % 7) + 1]
       libinjection.sqli_init(sql_state, s, s:len(), 0)
       libinjection.is_sqli(sql_state)
   end
   local t1 = os.clock()
   print( imax / (t1-t0) )
end

function benchmark_callback(imax)
   local x,s
   local t0 = os.clock()
   local sql_state = libinjection.sqli_state()
   for x = 0, imax do
       s = inputs[(x % 7) + 1]
       libinjection.sqli_init(sql_state, s, s:len(), 0)
       libinjection.sqli_callback(sql_state, 'lookup_word');
       libinjection.is_sqli(sql_state)
   end
   local t1 = os.clock()
   print( imax / (t1-t0) )
end

benchmark(1000000)
benchmark_callback(1000000)

-- THIS USES LUA FINGERPRINTS via 'check_pattern' function above

if 0 then
for x = 1,2 do
   ok = libinjection.is_sqli(sql_state)
   if ok == 1 then
      print(sql_state.pat)
      vec = sql_state.tokenvec
      for i = 1, sql_state.pat:len() do
         print(vec[i].type, vec[i].val)
      end
   end
end
end