File: test_jailbreak.py

package info (click to toggle)
python-evalidate 2.0.5-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid, trixie
  • size: 144 kB
  • sloc: python: 500; makefile: 3
file content (95 lines) | stat: -rw-r--r-- 2,543 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
 
from evalidate import ExecutionException, ValidationException, Expr, base_eval_model
import pytest 

class TestJailbreak():
    def test_ossystem_nocall(self):
        # must fail because calls are not allowed at all
        with pytest.raises(ValidationException):
            Expr('os.system("clear")')

    def test_ossystem_call_int(self):
        # must fail because this function not allowed
        with pytest.raises(ValidationException):
            m = base_eval_model.clone()
            m.nodes.append('Call')
            m.allowed_functions.append('int')

            Expr('os.system("clear")', model=m)

    def test_ossystem_import(self):
        # must fail anyway
        with pytest.raises(ValidationException):
            m = base_eval_model.clone()
            m.nodes.append('Call')
            m.allowed_functions.append('int')
            Expr("__import__('os').system('clear')", model=m)

    def test_builtins(self):
        # indirect call
        src="""__builtins__['eval']("print(1)")""" 
        with pytest.raises(ValidationException):
            m = base_eval_model.clone()
            m.nodes.append('Call')
            result = Expr(src, model=m)
         
    def test_bomb(self):
        bomb_list = ["""
(lambda fc=(
    lambda n: [
        c for c in
            ().__class__.__bases__[0].__subclasses__()
            if c.__name__ == n
        ][0]
    ):
    fc("function")(
        fc("code")(
            0,0,0,0,0,b"BOOM",(),(),(),"","",0,b""
        ),{}
    )()
)()
""",
"""
(lambda fc=(
    lambda n: [
        c for c in
            ().__class__.__bases__[0].__subclasses__()
            if c.__name__ == n
        ][0]
    ):
    fc("function")(
        fc("code")(
            0,0,0,0,0,0,b"BOOM",(),(),(),"","",0,b""
        ),{}
    )()
)()
""",
"""
(lambda fc=(
    lambda n: [
        c for c in
            ().__class__.__bases__[0].__subclasses__()
            if c.__name__ == n
        ][0]
    ):
    fc("function")(
        fc("code")(
            0,0,0,0,0,0,b"BOOM",(),(),(),"","","",0,b"",b"",b"",b"",(),()
        ),{}
    )()
)()
"""
]

        m = base_eval_model.clone()
        m.nodes.append('Call')

        for bomb in bomb_list:
            with pytest.raises(ValidationException):
                Expr(expr=bomb, model=m)

    def test_mul_overflow(self):
        src = '"a"*1000000*1000000*1000000*1000000'
        with pytest.raises(ExecutionException):
            m = base_eval_model.clone()
            m.nodes.append('Mult')
            Expr(src, model=m).eval()