nuclei/v2/pkg/operators/matchers/compile.go

package matchers

import (
	"encoding/hex"
	"fmt"
	"regexp"
	"strings"

	"github.com/Knetic/govaluate"

	"github.com/projectdiscovery/nuclei/v2/pkg/operators/common/dsl"
)

// CompileMatchers performs the initial setup operation on a matcher
func (matcher *Matcher) CompileMatchers() error {
	var ok bool

	// Support hexadecimal encoding for matchers too.
	if matcher.Encoding == "hex" {
		for i, word := range matcher.Words {
			if decoded, err := hex.DecodeString(word); err == nil && len(decoded) > 0 {
				matcher.Words[i] = string(decoded)
			}
		}
	}

	// Set up the matcher type
	computedType, err := toMatcherTypes(matcher.GetType().String())
	if err != nil {
		return fmt.Errorf("unknown matcher type specified: %s", matcher.Type)
	}

	matcher.matcherType = computedType

	// Validate the matcher structure
	if err := matcher.Validate(); err != nil {
		return err
	}

	// By default, match on body if user hasn't provided any specific items
	if matcher.Part == "" {
		matcher.Part = "body"
	}

	// Compile the regexes
	for _, regex := range matcher.Regex {
		compiled, err := regexp.Compile(regex)
		if err != nil {
			return fmt.Errorf("could not compile regex: %s", regex)
		}
		matcher.regexCompiled = append(matcher.regexCompiled, compiled)
	}

	// Compile and validate binary Values in matcher
	for _, value := range matcher.Binary {
		if decoded, err := hex.DecodeString(value); err != nil {
			return fmt.Errorf("could not hex decode binary: %s", value)
		} else {
			matcher.binaryDecoded = append(matcher.binaryDecoded, string(decoded))
		}
	}

	// Compile the dsl expressions
	for _, dslExpression := range matcher.DSL {
		compiledExpression, err := govaluate.NewEvaluableExpressionWithFunctions(dslExpression, dsl.HelperFunctions())
		if err != nil {
			return &DslCompilationError{DslSignature: dslExpression, WrappedError: err}
		}
		matcher.dslCompiled = append(matcher.dslCompiled, compiledExpression)
	}

	// Set up the condition type, if any.
	if matcher.Condition != "" {
		matcher.condition, ok = ConditionTypes[matcher.Condition]
		if !ok {
			return fmt.Errorf("unknown condition specified: %s", matcher.Condition)
		}
	} else {
		matcher.condition = ORCondition
	}

	if matcher.CaseInsensitive {
		if matcher.GetType() != WordsMatcher {
			return fmt.Errorf("case-insensitive flag is supported only for 'word' matchers (not '%s')", matcher.Type)
		}
		for i := range matcher.Words {
			matcher.Words[i] = strings.ToLower(matcher.Words[i])
		}
	}
	return nil
}

type DslCompilationError struct {
	DslSignature string
	WrappedError error
}

func (e *DslCompilationError) Error() string {
	return fmt.Sprintf("could not compile DSL expression: %s. %v", e.DslSignature, e.WrappedError)
}

func (e *DslCompilationError) Unwrap() error {
	return e.WrappedError
}
Added matchers package 2020-04-04 00:16:27 +05:30			`package matchers`

			`import (`
Added hex encoding support in matchers 2021-02-24 11:23:22 +05:30			`"encoding/hex"`
Added matchers package 2020-04-04 00:16:27 +05:30			`"fmt"`
			`"regexp"`
Add case-insensitive flag to matchers and extractors 2021-10-29 19:08:18 +03:00			`"strings"`
poc dsl language support in matchers 2020-04-26 23:32:58 +02:00
			`"github.com/Knetic/govaluate"`
Typo fixes. 2021-09-07 17:31:46 +03:00
Data modelling, work on executor started 2020-12-23 16:16:16 +05:30			`"github.com/projectdiscovery/nuclei/v2/pkg/operators/common/dsl"`
Added matchers package 2020-04-04 00:16:27 +05:30			`)`

			`// CompileMatchers performs the initial setup operation on a matcher`
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`func (matcher *Matcher) CompileMatchers() error {`
Added matchers package 2020-04-04 00:16:27 +05:30			`var ok bool`

Added hex encoding support in matchers 2021-02-24 11:23:22 +05:30			`// Support hexadecimal encoding for matchers too.`
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`if matcher.Encoding == "hex" {`
			`for i, word := range matcher.Words {`
Added hex encoding support in matchers 2021-02-24 11:23:22 +05:30			`if decoded, err := hex.DecodeString(word); err == nil && len(decoded) > 0 {`
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`matcher.Words[i] = string(decoded)`
Added hex encoding support in matchers 2021-02-24 11:23:22 +05:30			`}`
			`}`
			`}`

Typo fixes. 2021-09-07 17:31:46 +03:00			`// Set up the matcher type`
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`computedType, err := toMatcherTypes(matcher.GetType().String())`
struct to enums changes for Matchers (#1246) * struct to enums changes for Matchers 2021-11-19 04:54:09 -06:00			`if err != nil {`
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`return fmt.Errorf("unknown matcher type specified: %s", matcher.Type)`
Added matchers package 2020-04-04 00:16:27 +05:30			`}`

fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`matcher.matcherType = computedType`
Adding prototype for unexpected fields validation in matchers (#2171) * Adding unexpected fields validation * using expected fields * adding missing expected field * using reflect 2022-06-30 13:20:54 +02:00
			`// Validate the matcher structure`
			`if err := matcher.Validate(); err != nil {`
			`return err`
			`}`

struct to enums changes for Matchers (#1246) * struct to enums changes for Matchers 2021-11-19 04:54:09 -06:00			`// By default, match on body if user hasn't provided any specific items`
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`if matcher.Part == "" {`
			`matcher.Part = "body"`
struct to enums changes for Matchers (#1246) * struct to enums changes for Matchers 2021-11-19 04:54:09 -06:00			`}`

Added matchers package 2020-04-04 00:16:27 +05:30			`// Compile the regexes`
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`for _, regex := range matcher.Regex {`
Added matchers package 2020-04-04 00:16:27 +05:30			`compiled, err := regexp.Compile(regex)`
			`if err != nil {`
			`return fmt.Errorf("could not compile regex: %s", regex)`
			`}`
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`matcher.regexCompiled = append(matcher.regexCompiled, compiled)`
Added matchers package 2020-04-04 00:16:27 +05:30			`}`

feat #1092: Validate binary values + precompile them as well (#1213) * Added validation for binary values + precompile them * Changed name of the binary matcher field Co-authored-by: sandeep <sandeep@projectdiscovery.io> 2021-11-17 02:04:27 +05:30			`// Compile and validate binary Values in matcher`
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`for _, value := range matcher.Binary {`
feat #1092: Validate binary values + precompile them as well (#1213) * Added validation for binary values + precompile them * Changed name of the binary matcher field Co-authored-by: sandeep <sandeep@projectdiscovery.io> 2021-11-17 02:04:27 +05:30			`if decoded, err := hex.DecodeString(value); err != nil {`
			`return fmt.Errorf("could not hex decode binary: %s", value)`
			`} else {`
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`matcher.binaryDecoded = append(matcher.binaryDecoded, string(decoded))`
feat #1092: Validate binary values + precompile them as well (#1213) * Added validation for binary values + precompile them * Changed name of the binary matcher field Co-authored-by: sandeep <sandeep@projectdiscovery.io> 2021-11-17 02:04:27 +05:30			`}`
			`}`

poc dsl language support in matchers 2020-04-26 23:32:58 +02:00			`// Compile the dsl expressions`
Merge branch 'dev' into dsl_signatures 2021-12-07 18:17:34 +02:00			`for _, dslExpression := range matcher.DSL {`
feat: Improve DSL function UX #1295 Added support for letting people know if: * the DSL expression does not return a boolean value * an invalid custom function signature was provided and then display all available function signatures * an invalid function was provided and then display the correct signature Unified the DSL function names to use snake case. The old signatures are also kept for backward compatibility. 2021-12-07 17:34:36 +02:00			`compiledExpression, err := govaluate.NewEvaluableExpressionWithFunctions(dslExpression, dsl.HelperFunctions())`
poc dsl language support in matchers 2020-04-26 23:32:58 +02:00			`if err != nil {`
feat: Improve DSL function UX #1295 Added support for letting people know if: * the DSL expression does not return a boolean value * an invalid custom function signature was provided and then display all available function signatures * an invalid function was provided and then display the correct signature Unified the DSL function names to use snake case. The old signatures are also kept for backward compatibility. 2021-12-07 17:34:36 +02:00			`return &DslCompilationError{DslSignature: dslExpression, WrappedError: err}`
poc dsl language support in matchers 2020-04-26 23:32:58 +02:00			`}`
Merge branch 'dev' into dsl_signatures 2021-12-07 18:17:34 +02:00			`matcher.dslCompiled = append(matcher.dslCompiled, compiledExpression)`
poc dsl language support in matchers 2020-04-26 23:32:58 +02:00			`}`

Typo fixes. 2021-09-07 17:31:46 +03:00			`// Set up the condition type, if any.`
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`if matcher.Condition != "" {`
			`matcher.condition, ok = ConditionTypes[matcher.Condition]`
Added matchers package 2020-04-04 00:16:27 +05:30			`if !ok {`
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`return fmt.Errorf("unknown condition specified: %s", matcher.Condition)`
Added matchers package 2020-04-04 00:16:27 +05:30			`}`
			`} else {`
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`matcher.condition = ORCondition`
Added matchers package 2020-04-04 00:16:27 +05:30			`}`
Add case-insensitive flag to matchers and extractors 2021-10-29 19:08:18 +03:00
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`if matcher.CaseInsensitive {`
			`if matcher.GetType() != WordsMatcher {`
			`return fmt.Errorf("case-insensitive flag is supported only for 'word' matchers (not '%s')", matcher.Type)`
Add case-insensitive flag to matchers and extractors 2021-10-29 19:08:18 +03:00			`}`
fix: Receiver mismatch warnings 2021-11-25 16:57:43 +02:00			`for i := range matcher.Words {`
			`matcher.Words[i] = strings.ToLower(matcher.Words[i])`
Add case-insensitive flag to matchers and extractors 2021-10-29 19:08:18 +03:00			`}`
			`}`
Added matchers package 2020-04-04 00:16:27 +05:30			`return nil`
			`}`
feat: Improve DSL function UX #1295 Added support for letting people know if: * the DSL expression does not return a boolean value * an invalid custom function signature was provided and then display all available function signatures * an invalid function was provided and then display the correct signature Unified the DSL function names to use snake case. The old signatures are also kept for backward compatibility. 2021-12-07 17:34:36 +02:00
			`type DslCompilationError struct {`
			`DslSignature string`
			`WrappedError error`
			`}`

			`func (e *DslCompilationError) Error() string {`
			`return fmt.Sprintf("could not compile DSL expression: %s. %v", e.DslSignature, e.WrappedError)`
			`}`

			`func (e *DslCompilationError) Unwrap() error {`
			`return e.WrappedError`
			`}`