External/nuclei
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei.git synced 2025-12-17 20:55:28 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #6368 from projectdiscovery/fix/waf-detector-nil-pointer

Browse Source 
fix: prevent nil pointer panic in WAF detector
This commit is contained in:
Ice3man 2025-08-06 01:53:14 +05:30 committed by GitHub
commit bba2c3a576
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 67 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
pkg/output/stats/waf/waf.go
View File

@ -53,8 +53,12 @@ func NewWafDetector() *WafDetector {
} }
func (d *WafDetector) DetectWAF(content string) (string, bool) { func (d *WafDetector) DetectWAF(content string) (string, bool) {
if d == nil || d.regexCache == nil {
return "", false
}
for id, regex := range d.regexCache { for id, regex := range d.regexCache {
if regex.MatchString(content) { if regex != nil && regex.MatchString(content) {
return id, true return id, true
} }
} }

63
pkg/output/stats/waf/waf_test.go
View File

@ -1,6 +1,9 @@
package waf package waf
import "testing" import (
"regexp"
"testing"
)
func TestWAFDetection(t *testing.T) { func TestWAFDetection(t *testing.T) {
detector := NewWafDetector() detector := NewWafDetector()
@ -58,3 +61,61 @@ func TestWAFDetection(t *testing.T) {
}) })
} }
} }
func TestWAFDetectionNilPointerSafety(t *testing.T) {
tests := []struct {
name string
detector *WafDetector
content string
}{
{
name: "nil detector",
detector: nil,
content: "test content",
},
{
name: "nil regexCache",
detector: &WafDetector{
wafs: make(map[string]waf),
regexCache: nil,
},
content: "test content",
},
{
name: "regexCache with nil regex",
detector: &WafDetector{
wafs: make(map[string]waf),
regexCache: map[string]*regexp.Regexp{
"test": nil,
},
},
content: "test content",
},
{
name: "empty regexCache",
detector: &WafDetector{
wafs: make(map[string]waf),
regexCache: make(map[string]*regexp.Regexp),
},
content: "test content",
},
}
for _, tt := range tests {
t.Run(tt.name, func(t *testing.T) {
defer func() {
if r := recover(); r != nil {
t.Errorf("DetectWAF panicked with nil pointer: %v", r)
}
}()
waf, matched := tt.detector.DetectWAF(tt.content)
if matched {
t.Errorf("expected no match for nil pointer case, got match=true, waf=%s", waf)
}
if waf != "" {
t.Errorf("expected empty WAF string for nil pointer case, got waf=%s", waf)
}
})
}
}