mirror of
				https://github.com/sqlmapproject/sqlmap.git
				synced 2025-10-25 21:21:03 +03:00 
			
		
		
		
	implemented suppressResumeInfo mechanism (huge slowdown on large tables)
This commit is contained in:
		
							parent
							
								
									493b9adf8e
								
							
						
					
					
						commit
						f88aa4b165
					
				|  | @ -1323,6 +1323,7 @@ def __setKnowledgeBaseAttributes(flushAll=True): | |||
|     kb.singleLogFlags      = set() | ||||
|     kb.skipOthersDbms      = None | ||||
|     kb.suppressSession     = False | ||||
|     kb.suppressResumeInfo  = False | ||||
|     kb.technique           = None | ||||
|     kb.testMode            = False | ||||
|     kb.testQueryCount      = 0 | ||||
|  |  | |||
|  | @ -310,3 +310,6 @@ MAX_INT = sys.maxint | |||
| 
 | ||||
| # Parameters to be ignored in detection phase (upper case) | ||||
| IGNORE_PARAMETERS = ("__VIEWSTATE", "__EVENTARGUMENT", "__EVENTTARGET", "__EVENTVALIDATION", "ASPSESSIONID", "ASP.NET_SESSIONID", "JSESSIONID", "CFID", "CFTOKEN") | ||||
| 
 | ||||
| # Turn off resume console info to avoid potential slowdowns | ||||
| TURN_OFF_RESUME_INFO_LIMIT = 20 | ||||
|  |  | |||
|  | @ -35,6 +35,7 @@ from lib.core.enums import PAYLOAD | |||
| from lib.core.exception import sqlmapConnectionException | ||||
| from lib.core.settings import FROM_TABLE | ||||
| from lib.core.settings import MYSQL_ERROR_CHUNK_LENGTH | ||||
| from lib.core.settings import TURN_OFF_RESUME_INFO_LIMIT | ||||
| from lib.core.threads import getCurrentThreadData | ||||
| from lib.core.unescaper import unescaper | ||||
| from lib.request.connect import Connect as Request | ||||
|  | @ -301,6 +302,12 @@ def errorUse(expression, expected=None, resumeValue=True, dump=False): | |||
|                     logger.info(infoMsg) | ||||
| 
 | ||||
|             try: | ||||
|                 if stopLimit > TURN_OFF_RESUME_INFO_LIMIT: | ||||
|                     kb.suppressResumeInfo = True | ||||
|                     infoMsg  = "suppressing resume console info because of " | ||||
|                     infoMsg += "large number of rows (possible slowdown)" | ||||
|                     logger.info(infoMsg) | ||||
| 
 | ||||
|                 for num in xrange(startLimit, stopLimit): | ||||
|                     output = __errorFields(expression, expressionFields, expressionFieldsList, expected, num, resumeValue) | ||||
| 
 | ||||
|  | @ -320,6 +327,9 @@ def errorUse(expression, expected=None, resumeValue=True, dump=False): | |||
|                 errMsg += "'%s'" % e | ||||
|                 logger.critical(errMsg) | ||||
| 
 | ||||
|             finally: | ||||
|                 kb.suppressResumeInfo = False | ||||
| 
 | ||||
|     if not outputs: | ||||
|         outputs = __errorFields(expression, expressionFields, expressionFieldsList) | ||||
| 
 | ||||
|  |  | |||
|  | @ -34,6 +34,7 @@ from lib.core.enums import PAYLOAD | |||
| from lib.core.exception import sqlmapConnectionException | ||||
| from lib.core.exception import sqlmapSyntaxException | ||||
| from lib.core.settings import FROM_TABLE | ||||
| from lib.core.settings import TURN_OFF_RESUME_INFO_LIMIT | ||||
| from lib.core.unescaper import unescaper | ||||
| from lib.request.connect import Connect as Request | ||||
| from lib.utils.resume import resume | ||||
|  | @ -246,6 +247,12 @@ def unionUse(expression, unpack=True, dump=False): | |||
|                     logger.info(infoMsg) | ||||
| 
 | ||||
|             try: | ||||
|                 if stopLimit > TURN_OFF_RESUME_INFO_LIMIT: | ||||
|                     kb.suppressResumeInfo = True | ||||
|                     infoMsg  = "suppressing resume console info because of " | ||||
|                     infoMsg += "large number of rows (possible slowdown)" | ||||
|                     logger.info(infoMsg) | ||||
| 
 | ||||
|                 for num in xrange(startLimit, stopLimit): | ||||
|                     if Backend.getIdentifiedDbms() in (DBMS.MSSQL, DBMS.SYBASE): | ||||
|                         field = expressionFieldsList[0] | ||||
|  | @ -284,6 +291,9 @@ def unionUse(expression, unpack=True, dump=False): | |||
|                 errMsg += "'%s'" % e | ||||
|                 logger.critical(errMsg) | ||||
| 
 | ||||
|             finally: | ||||
|                 kb.suppressResumeInfo = False | ||||
| 
 | ||||
|     if not value: | ||||
|         value = __oneShotUnionUse(expression, unpack) | ||||
| 
 | ||||
|  |  | |||
|  | @ -135,6 +135,7 @@ def resume(expression, payload): | |||
|             else: | ||||
|                 infoMsg += logValue | ||||
| 
 | ||||
|             if not kb.suppressResumeInfo: | ||||
|                 dataToStdout("[%s] [INFO] %s\n" % (time.strftime("%X"), infoMsg)) | ||||
| 
 | ||||
|             return resumedValue | ||||
|  |  | |||
		Loading…
	
		Reference in New Issue
	
	Block a user