sqlmap/plugins/dbms/hsqldb/syntax.py

#!/usr/bin/env python2

"""
Copyright (c) 2006-2019 sqlmap developers (http://sqlmap.org/)
See the file 'LICENSE' for copying permission
"""

from lib.core.compat import xrange
from plugins.generic.syntax import Syntax as GenericSyntax

class Syntax(GenericSyntax):
    @staticmethod
    def escape(expression, quote=True):
        """
        >>> Syntax.escape("SELECT 'abcdefgh' FROM foobar")
        'SELECT CHAR(97)||CHAR(98)||CHAR(99)||CHAR(100)||CHAR(101)||CHAR(102)||CHAR(103)||CHAR(104) FROM foobar'
        """

        def escaper(value):
            return "||".join("CHAR(%d)" % ord(value[i]) for i in xrange(len(value)))

        return Syntax._escape(expression, quote, escaper)
Update regarding #2940 (PEP 394) 2019-03-21 16:00:09 +03:00			`#!/usr/bin/env python2`
hsql plugin folder 2013-06-24 17:34:25 +04:00
			`"""`
update_copyright_year() 2019-01-05 23:38:52 +03:00			`Copyright (c) 2006-2019 sqlmap developers (http://sqlmap.org/)`
Replacing doc/COPYING to LICENSE 2017-10-11 15:50:46 +03:00			`See the file 'LICENSE' for copying permission`
hsql plugin folder 2013-06-24 17:34:25 +04:00			`"""`

Some more DREI stuff 2019-03-28 18:04:38 +03:00			`from lib.core.compat import xrange`
hsql plugin folder 2013-06-24 17:34:25 +04:00			`from plugins.generic.syntax import Syntax as GenericSyntax`

			`class Syntax(GenericSyntax):`
			`@staticmethod`
			`def escape(expression, quote=True):`
Fix escaper 2013-06-25 02:50:33 +04:00			`"""`
			`>>> Syntax.escape("SELECT 'abcdefgh' FROM foobar")`
			`'SELECT CHAR(97)\|\|CHAR(98)\|\|CHAR(99)\|\|CHAR(100)\|\|CHAR(101)\|\|CHAR(102)\|\|CHAR(103)\|\|CHAR(104) FROM foobar'`
			`"""`
Some more cleanup (Issue #475) 2013-07-01 14:11:09 +04:00
hsql plugin folder 2013-06-24 17:34:25 +04:00			`def escaper(value):`
Fix escaper 2013-06-25 02:50:33 +04:00			`return "\|\|".join("CHAR(%d)" % ord(value[i]) for i in xrange(len(value)))`

			`return Syntax._escape(expression, quote, escaper)`