sqlmap/plugins/dbms/sqlite/syntax.py

#!/usr/bin/env python

"""
$Id$

Copyright (c) 2006-2012 sqlmap developers (http://www.sqlmap.org/)
See the file 'doc/COPYING' for copying permission
"""

from lib.core.common import isDBMSVersionAtLeast
from lib.core.exception import sqlmapSyntaxException
from plugins.generic.syntax import Syntax as GenericSyntax

class Syntax(GenericSyntax):
    def __init__(self):
        GenericSyntax.__init__(self)

    @staticmethod
    def unescape(expression, quote=True):
        if isDBMSVersionAtLeast('3'):
            if quote:
                expression = expression.replace("'", "''")
                while True:
                    index = expression.find("''")
                    if index == -1:
                        break

                    firstIndex = index + 2
                    index = expression[firstIndex:].find("''")

                    if index == -1:
                        raise sqlmapSyntaxException, "Unenclosed ' in '%s'" % expression.replace("''", "'")

                    lastIndex = firstIndex + index
                    old = "''%s''" % expression[firstIndex:lastIndex]
                    unescaped = ""

                    for i in xrange(firstIndex, lastIndex):
                        unescaped += "X'%x'" % ord(expression[i])
                        if i < lastIndex - 1:
                            unescaped += "||"

                    #unescaped += ")"
                    expression = expression.replace(old, unescaped)
                expression = expression.replace("''", "'")
            else:
                expression = "||".join("X'%x" % ord(c) for c in expression)

        return expression

    @staticmethod
    def escape(expression):
        # Example on SQLite 3, not supported on SQLite 2:
        # select X'48'||X'656c6c6f20576f726c6400'; -- Hello World
        while True:
            index = expression.find("X'")
            if index == -1:
                break

            firstIndex = index
            index = expression[firstIndex+2:].find("'")

            if index == -1:
                raise sqlmapSyntaxException, "Unenclosed ' in '%s'" % expression

            lastIndex = firstIndex + index + 3
            old = expression[firstIndex:lastIndex]
            oldUpper = old.upper()
            oldUpper = oldUpper.replace("X'", "").replace("'", "")

            for i in xrange(len(oldUpper)/2):
                char = oldUpper[i*2:i*2+2]
                escaped = "'%s'" % chr(int(char, 16))
            expression = expression.replace(old, escaped)

        return expression
Ahead with code refactoring, related to r1502. Fixed svn:keywords propset to all .py files. 2010-03-24 00:26:45 +03:00			`#!/usr/bin/env python`

			`"""`
			$Id$

updating copyright date 2012-01-11 18:59:46 +04:00			`Copyright (c) 2006-2012 sqlmap developers (http://www.sqlmap.org/)`
sorry, cosmetics 2010-10-15 03:18:29 +04:00			`See the file 'doc/COPYING' for copying permission`
Ahead with code refactoring, related to r1502. Fixed svn:keywords propset to all .py files. 2010-03-24 00:26:45 +03:00			`"""`

another update 2010-12-10 13:56:55 +03:00			`from lib.core.common import isDBMSVersionAtLeast`
Ahead with code refactoring, related to r1502. Fixed svn:keywords propset to all .py files. 2010-03-24 00:26:45 +03:00			`from lib.core.exception import sqlmapSyntaxException`
			`from plugins.generic.syntax import Syntax as GenericSyntax`

			`class Syntax(GenericSyntax):`
			`def __init__(self):`
			`GenericSyntax.__init__(self)`

			`@staticmethod`
			`def unescape(expression, quote=True):`
another update 2010-12-10 13:56:55 +03:00			`if isDBMSVersionAtLeast('3'):`
			`if quote:`
			`expression = expression.replace("'", "''")`
			`while True:`
			`index = expression.find("''")`
			`if index == -1:`
			`break`

			`firstIndex = index + 2`
			`index = expression[firstIndex:].find("''")`

			`if index == -1:`
revert 2011-02-07 01:14:18 +03:00			`raise sqlmapSyntaxException, "Unenclosed ' in '%s'" % expression.replace("''", "'")`
another update 2010-12-10 13:56:55 +03:00
			`lastIndex = firstIndex + index`
			`old = "''%s''" % expression[firstIndex:lastIndex]`
			`unescaped = ""`

some minor range to xrange conversion (where safe to do) 2011-10-22 02:34:27 +04:00			`for i in xrange(firstIndex, lastIndex):`
another update 2010-12-10 13:56:55 +03:00			`unescaped += "X'%x'" % ord(expression[i])`
			`if i < lastIndex - 1:`
			`unescaped += "\|\|"`

			`#unescaped += ")"`
			`expression = expression.replace(old, unescaped)`
			`expression = expression.replace("''", "'")`
			`else:`
			`expression = "\|\|".join("X'%x" % ord(c) for c in expression)`
Ahead with code refactoring, related to r1502. Fixed svn:keywords propset to all .py files. 2010-03-24 00:26:45 +03:00
			`return expression`

			`@staticmethod`
			`def escape(expression):`
			`# Example on SQLite 3, not supported on SQLite 2:`
			`# select X'48'\|\|X'656c6c6f20576f726c6400'; -- Hello World`
			`while True:`
			`index = expression.find("X'")`
			`if index == -1:`
			`break`

			`firstIndex = index`
			`index = expression[firstIndex+2:].find("'")`

			`if index == -1:`
			`raise sqlmapSyntaxException, "Unenclosed ' in '%s'" % expression`

			`lastIndex = firstIndex + index + 3`
			`old = expression[firstIndex:lastIndex]`
			`oldUpper = old.upper()`
			`oldUpper = oldUpper.replace("X'", "").replace("'", "")`

			`for i in xrange(len(oldUpper)/2):`
			`char = oldUpper[i2:i2+2]`
			`escaped = "'%s'" % chr(int(char, 16))`
			`expression = expression.replace(old, escaped)`

			`return expression`