mirror of
https://github.com/sqlmapproject/sqlmap.git
synced 2024-11-23 01:56:36 +03:00
224 lines
6.7 KiB
Python
224 lines
6.7 KiB
Python
#!/usr/bin/env python
|
|
|
|
"""
|
|
Copyright (c) 2006-2019 sqlmap developers (http://sqlmap.org/)
|
|
See the file 'LICENSE' for copying permission
|
|
"""
|
|
|
|
from __future__ import print_function
|
|
|
|
import difflib
|
|
import random
|
|
import threading
|
|
import time
|
|
import traceback
|
|
|
|
from lib.core.data import conf
|
|
from lib.core.data import kb
|
|
from lib.core.data import logger
|
|
from lib.core.datatype import AttribDict
|
|
from lib.core.enums import PAYLOAD
|
|
from lib.core.exception import SqlmapBaseException
|
|
from lib.core.exception import SqlmapConnectionException
|
|
from lib.core.exception import SqlmapThreadException
|
|
from lib.core.exception import SqlmapUserQuitException
|
|
from lib.core.exception import SqlmapValueException
|
|
from lib.core.settings import MAX_NUMBER_OF_THREADS
|
|
from lib.core.settings import PYVERSION
|
|
|
|
shared = AttribDict()
|
|
|
|
class _ThreadData(threading.local):
|
|
"""
|
|
Represents thread independent data
|
|
"""
|
|
|
|
def __init__(self):
|
|
self.reset()
|
|
|
|
def reset(self):
|
|
"""
|
|
Resets thread data model
|
|
"""
|
|
|
|
self.disableStdOut = False
|
|
self.hashDBCursor = None
|
|
self.inTransaction = False
|
|
self.lastCode = None
|
|
self.lastComparisonPage = None
|
|
self.lastComparisonHeaders = None
|
|
self.lastComparisonCode = None
|
|
self.lastComparisonRatio = None
|
|
self.lastErrorPage = None
|
|
self.lastHTTPError = None
|
|
self.lastRedirectMsg = None
|
|
self.lastQueryDuration = 0
|
|
self.lastPage = None
|
|
self.lastRequestMsg = None
|
|
self.lastRequestUID = 0
|
|
self.lastRedirectURL = None
|
|
self.random = random.WichmannHill()
|
|
self.resumed = False
|
|
self.retriesCount = 0
|
|
self.seqMatcher = difflib.SequenceMatcher(None)
|
|
self.shared = shared
|
|
self.validationRun = 0
|
|
self.valueStack = []
|
|
|
|
ThreadData = _ThreadData()
|
|
|
|
def readInput(message, default=None, checkBatch=True, boolean=False):
|
|
# It will be overwritten by original from lib.core.common
|
|
pass
|
|
|
|
def getCurrentThreadData():
|
|
"""
|
|
Returns current thread's local data
|
|
"""
|
|
|
|
global ThreadData
|
|
|
|
return ThreadData
|
|
|
|
def getCurrentThreadName():
|
|
"""
|
|
Returns current's thread name
|
|
"""
|
|
|
|
return threading.current_thread().getName()
|
|
|
|
def exceptionHandledFunction(threadFunction, silent=False):
|
|
try:
|
|
threadFunction()
|
|
except KeyboardInterrupt:
|
|
kb.threadContinue = False
|
|
kb.threadException = True
|
|
raise
|
|
except Exception as ex:
|
|
if not silent and kb.get("threadContinue"):
|
|
errMsg = ex.message if isinstance(ex, SqlmapBaseException) else "%s: %s" % (type(ex).__name__, ex.message)
|
|
logger.error("thread %s: '%s'" % (threading.currentThread().getName(), errMsg))
|
|
|
|
if conf.get("verbose") > 1:
|
|
traceback.print_exc()
|
|
|
|
def setDaemon(thread):
|
|
# Reference: http://stackoverflow.com/questions/190010/daemon-threads-explanation
|
|
if PYVERSION >= "2.6":
|
|
thread.daemon = True
|
|
else:
|
|
thread.setDaemon(True)
|
|
|
|
def runThreads(numThreads, threadFunction, cleanupFunction=None, forwardException=True, threadChoice=False, startThreadMsg=True):
|
|
threads = []
|
|
|
|
kb.threadContinue = True
|
|
kb.threadException = False
|
|
|
|
if threadChoice and numThreads == 1 and not (kb.injection.data and not any(_ not in (PAYLOAD.TECHNIQUE.TIME, PAYLOAD.TECHNIQUE.STACKED) for _ in kb.injection.data)):
|
|
while True:
|
|
message = "please enter number of threads? [Enter for %d (current)] " % numThreads
|
|
choice = readInput(message, default=str(numThreads))
|
|
if choice:
|
|
skipThreadCheck = False
|
|
if choice.endswith('!'):
|
|
choice = choice[:-1]
|
|
skipThreadCheck = True
|
|
if choice.isdigit():
|
|
if int(choice) > MAX_NUMBER_OF_THREADS and not skipThreadCheck:
|
|
errMsg = "maximum number of used threads is %d avoiding potential connection issues" % MAX_NUMBER_OF_THREADS
|
|
logger.critical(errMsg)
|
|
else:
|
|
conf.threads = numThreads = int(choice)
|
|
break
|
|
|
|
if numThreads == 1:
|
|
warnMsg = "running in a single-thread mode. This could take a while"
|
|
logger.warn(warnMsg)
|
|
|
|
try:
|
|
if numThreads > 1:
|
|
if startThreadMsg:
|
|
infoMsg = "starting %d threads" % numThreads
|
|
logger.info(infoMsg)
|
|
else:
|
|
threadFunction()
|
|
return
|
|
|
|
# Start the threads
|
|
for numThread in xrange(numThreads):
|
|
thread = threading.Thread(target=exceptionHandledFunction, name=str(numThread), args=[threadFunction])
|
|
|
|
setDaemon(thread)
|
|
|
|
try:
|
|
thread.start()
|
|
except Exception as ex:
|
|
errMsg = "error occurred while starting new thread ('%s')" % ex.message
|
|
logger.critical(errMsg)
|
|
break
|
|
|
|
threads.append(thread)
|
|
|
|
# And wait for them to all finish
|
|
alive = True
|
|
while alive:
|
|
alive = False
|
|
for thread in threads:
|
|
if thread.isAlive():
|
|
alive = True
|
|
time.sleep(0.1)
|
|
|
|
except (KeyboardInterrupt, SqlmapUserQuitException) as ex:
|
|
print()
|
|
kb.prependFlag = False
|
|
kb.threadContinue = False
|
|
kb.threadException = True
|
|
|
|
if numThreads > 1:
|
|
logger.info("waiting for threads to finish%s" % (" (Ctrl+C was pressed)" if isinstance(ex, KeyboardInterrupt) else ""))
|
|
try:
|
|
while (threading.activeCount() > 1):
|
|
pass
|
|
|
|
except KeyboardInterrupt:
|
|
raise SqlmapThreadException("user aborted (Ctrl+C was pressed multiple times)")
|
|
|
|
if forwardException:
|
|
raise
|
|
|
|
except (SqlmapConnectionException, SqlmapValueException) as ex:
|
|
print()
|
|
kb.threadException = True
|
|
logger.error("thread %s: %s" % (threading.currentThread().getName(), ex.message))
|
|
|
|
if conf.get("verbose") > 1:
|
|
traceback.print_exc()
|
|
|
|
except:
|
|
from lib.core.common import unhandledExceptionMessage
|
|
|
|
print()
|
|
kb.threadException = True
|
|
errMsg = unhandledExceptionMessage()
|
|
logger.error("thread %s: %s" % (threading.currentThread().getName(), errMsg))
|
|
traceback.print_exc()
|
|
|
|
finally:
|
|
kb.bruteMode = False
|
|
kb.threadContinue = True
|
|
kb.threadException = False
|
|
|
|
for lock in kb.locks.values():
|
|
if lock.locked():
|
|
try:
|
|
lock.release()
|
|
except:
|
|
pass
|
|
|
|
if conf.get("hashDB"):
|
|
conf.hashDB.flush(True)
|
|
|
|
if cleanupFunction:
|
|
cleanupFunction()
|