1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
|
#!/usr/bin/env python
"""
Test driver
Runs off plain text files, similar to how PHP's test harness works
"""
import os
import glob
from libinjection import *
from words import *
print version()
def print_token_string(tok):
"""
returns the value of token, handling opening and closing quote characters
"""
out = ''
if tok.str_open != "\0":
out += tok.str_open
out += tok.val
if tok.str_close != "\0":
out += tok.str_close
return out
def print_token(tok):
"""
prints a token for use in unit testing
"""
out = ''
out += tok.type
out += ' '
if tok.type == 's':
out += print_token_string(tok)
elif tok.type == 'v':
vc = tok.count;
if vc == 1:
out += '@'
elif vc == 2:
out += '@@'
out += print_token_string(tok)
else:
out += tok.val
return out.strip()
def toascii(data):
"""
Converts a utf-8 string to ascii. needed since nosetests xunit is not UTF-8 safe
https://github.com/nose-devs/nose/issues/649
https://github.com/nose-devs/nose/issues/692
"""
return data
udata = data.decode('utf-8')
return udata.encode('ascii', 'xmlcharrefreplace')
def readtestdata(filename):
"""
Read a test file and split into components
"""
state = None
info = {
'--TEST--': '',
'--INPUT--': '',
'--EXPECTED--': ''
}
for line in open(filename, 'r'):
line = line.rstrip()
if line in ('--TEST--', '--INPUT--', '--EXPECTED--'):
state = line
elif state:
info[state] += line + '\n'
# remove last newline from input
info['--INPUT--'] = info['--INPUT--'][0:-1]
return (info['--TEST--'], info['--INPUT--'].strip(), info['--EXPECTED--'].strip())
def runtest(testname, flag, sqli_flags):
"""
runs a test, optionally with valgrind
"""
data = readtestdata(os.path.join('../tests', testname))
sql_state = sqli_state()
sqli_init(sql_state, data[1], sqli_flags)
sqli_callback(sql_state, lookup)
actual = ''
if flag == 'tokens':
while sqli_tokenize(sql_state):
actual += print_token(sql_state.current) + '\n';
actual = actual.strip()
elif flag == 'folding':
num_tokens = sqli_fold(sql_state)
for i in range(num_tokens):
actual += print_token(sqli_get_token(sql_state, i)) + '\n';
elif flag == 'fingerprints':
ok = is_sqli(sql_state)
if ok:
actual = sql_state.fingerprint
else:
raise RuntimeException("unknown flag")
actual = actual.strip()
if actual != data[2]:
print "INPUT: \n" + toascii(data[1])
print
print "EXPECTED: \n" + toascii(data[2])
print
print "GOT: \n" + toascii(actual)
assert actual == data[2]
def test_tokens():
for testname in sorted(glob.glob('../tests/test-tokens-*.txt')):
testname = os.path.basename(testname)
runtest(testname, 'tokens', libinjection.FLAG_QUOTE_NONE | libinjection.FLAG_SQL_ANSI)
def test_tokens_mysql():
for testname in sorted(glob.glob('../tests/test-tokens_mysql-*.txt')):
testname = os.path.basename(testname)
runtest(testname, 'tokens', libinjection.FLAG_QUOTE_NONE | libinjection.FLAG_SQL_MYSQL)
def test_folding():
for testname in sorted(glob.glob('../tests/test-folding-*.txt')):
testname = os.path.basename(testname)
runtest(testname, 'folding', libinjection.FLAG_QUOTE_NONE | libinjection.FLAG_SQL_ANSI)
def test_fingerprints():
for testname in sorted(glob.glob('../tests/test-sqli-*.txt')):
testname = os.path.basename(testname)
runtest(testname, 'fingerprints', 0)
if __name__ == '__main__':
import sys
sys.stderr.write("run using nosetests\n")
sys.exit(1)
|
