src/sanitizer.py

#!/usr/bin/env python3

"""
Sanitization utilities for safe database storage and HTML output.
Protects against SQL injection payloads, XSS, and storage exhaustion attacks.
"""

import html
import re
from typing import Optional, Dict


# Field length limits for database storage
MAX_IP_LENGTH = 45  # IPv6 max length
MAX_PATH_LENGTH = 2048  # URL max practical length
MAX_USER_AGENT_LENGTH = 512
MAX_CREDENTIAL_LENGTH = 256
MAX_ATTACK_PATTERN_LENGTH = 256
MAX_CITY_LENGTH = 128
MAX_ASN_ORG_LENGTH = 256
MAX_REPUTATION_SOURCE_LENGTH = 64


def sanitize_for_storage(value: Optional[str], max_length: int) -> str:
    """
    Sanitize and truncate string for safe database storage.

    Removes null bytes and control characters that could cause issues
    with database storage or log processing.

    Args:
        value: The string to sanitize
        max_length: Maximum length to truncate to

    Returns:
        Sanitized and truncated string, empty string if input is None/empty
    """
    if not value:
        return ""

    # Convert to string if not already
    value = str(value)

    # Remove null bytes and control characters (except newline \n, tab \t, carriage return \r)
    # Control chars are 0x00-0x1F and 0x7F, we keep 0x09 (tab), 0x0A (newline), 0x0D (carriage return)
    cleaned = re.sub(r'[\x00-\x08\x0b\x0c\x0e-\x1f\x7f]', '', value)

    # Truncate to max length
    return cleaned[:max_length]


def sanitize_ip(value: Optional[str]) -> str:
    """Sanitize IP address for storage."""
    return sanitize_for_storage(value, MAX_IP_LENGTH)


def sanitize_path(value: Optional[str]) -> str:
    """Sanitize URL path for storage."""
    return sanitize_for_storage(value, MAX_PATH_LENGTH)


def sanitize_user_agent(value: Optional[str]) -> str:
    """Sanitize user agent string for storage."""
    return sanitize_for_storage(value, MAX_USER_AGENT_LENGTH)


def sanitize_credential(value: Optional[str]) -> str:
    """Sanitize username or password for storage."""
    return sanitize_for_storage(value, MAX_CREDENTIAL_LENGTH)


def sanitize_attack_pattern(value: Optional[str]) -> str:
    """Sanitize matched attack pattern for storage."""
    return sanitize_for_storage(value, MAX_ATTACK_PATTERN_LENGTH)


def escape_html(value: Optional[str]) -> str:
    """
    Escape HTML special characters for safe display in web pages.

    Prevents stored XSS attacks when displaying user-controlled data
    in the dashboard.

    Args:
        value: The string to escape

    Returns:
        HTML-escaped string, empty string if input is None/empty
    """
    if not value:
        return ""
    return html.escape(str(value))


def escape_html_truncated(value: Optional[str], max_display_length: int) -> str:
    """
    Escape HTML and truncate for display.

    Args:
        value: The string to escape and truncate
        max_display_length: Maximum display length (truncation happens before escaping)

    Returns:
        HTML-escaped and truncated string
    """
    if not value:
        return ""

    value_str = str(value)
    if len(value_str) > max_display_length:
        value_str = value_str[:max_display_length] + "..."

    return html.escape(value_str)

def sanitize_dict(value: Optional[Dict[str,str]], max_display_length):
    return {k: sanitize_for_storage(v, max_display_length) for k, v in value.items()}
feat: add SQLite persistent storage for request logging - Add SQLAlchemy-based database layer for persistent storage - Create models for access_logs, credential_attempts, attack_detections, ip_stats - Include fields for future GeoIP and reputation enrichment - Implement sanitization utilities to protect against malicious payloads - Fix XSS vulnerability in dashboard template (HTML escape all user data) - Add DATABASE_PATH and DATABASE_RETENTION_DAYS config options - Dual storage: in-memory for dashboard performance + SQLite for persistence New files: - src/models.py - SQLAlchemy ORM models - src/database.py - DatabaseManager singleton - src/sanitizer.py - Input sanitization and HTML escaping - requirements.txt - SQLAlchemy dependency Security protections: - Parameterized queries via SQLAlchemy ORM - Field length limits to prevent storage exhaustion - Null byte and control character stripping - HTML escaping on dashboard output 2025-12-28 10:43:32 -06:00			`#!/usr/bin/env python3`

			`"""`
			`Sanitization utilities for safe database storage and HTML output.`
			`Protects against SQL injection payloads, XSS, and storage exhaustion attacks.`
			`"""`

			`import html`
			`import re`
added ip rep fetch + bug fix 2026-01-07 22:56:01 +01:00			`from typing import Optional, Dict`
feat: add SQLite persistent storage for request logging - Add SQLAlchemy-based database layer for persistent storage - Create models for access_logs, credential_attempts, attack_detections, ip_stats - Include fields for future GeoIP and reputation enrichment - Implement sanitization utilities to protect against malicious payloads - Fix XSS vulnerability in dashboard template (HTML escape all user data) - Add DATABASE_PATH and DATABASE_RETENTION_DAYS config options - Dual storage: in-memory for dashboard performance + SQLite for persistence New files: - src/models.py - SQLAlchemy ORM models - src/database.py - DatabaseManager singleton - src/sanitizer.py - Input sanitization and HTML escaping - requirements.txt - SQLAlchemy dependency Security protections: - Parameterized queries via SQLAlchemy ORM - Field length limits to prevent storage exhaustion - Null byte and control character stripping - HTML escaping on dashboard output 2025-12-28 10:43:32 -06:00

			`# Field length limits for database storage`
			`MAX_IP_LENGTH = 45 # IPv6 max length`
			`MAX_PATH_LENGTH = 2048 # URL max practical length`
			`MAX_USER_AGENT_LENGTH = 512`
			`MAX_CREDENTIAL_LENGTH = 256`
			`MAX_ATTACK_PATTERN_LENGTH = 256`
			`MAX_CITY_LENGTH = 128`
			`MAX_ASN_ORG_LENGTH = 256`
			`MAX_REPUTATION_SOURCE_LENGTH = 64`


			`def sanitize_for_storage(value: Optional[str], max_length: int) -> str:`
			`"""`
			`Sanitize and truncate string for safe database storage.`

			`Removes null bytes and control characters that could cause issues`
			`with database storage or log processing.`

			`Args:`
			`value: The string to sanitize`
			`max_length: Maximum length to truncate to`

			`Returns:`
			`Sanitized and truncated string, empty string if input is None/empty`
			`"""`
			`if not value:`
			`return ""`

			`# Convert to string if not already`
			`value = str(value)`

			`# Remove null bytes and control characters (except newline \n, tab \t, carriage return \r)`
			`# Control chars are 0x00-0x1F and 0x7F, we keep 0x09 (tab), 0x0A (newline), 0x0D (carriage return)`
			`cleaned = re.sub(r'[\x00-\x08\x0b\x0c\x0e-\x1f\x7f]', '', value)`

			`# Truncate to max length`
			`return cleaned[:max_length]`


			`def sanitize_ip(value: Optional[str]) -> str:`
			`"""Sanitize IP address for storage."""`
			`return sanitize_for_storage(value, MAX_IP_LENGTH)`


			`def sanitize_path(value: Optional[str]) -> str:`
			`"""Sanitize URL path for storage."""`
			`return sanitize_for_storage(value, MAX_PATH_LENGTH)`


			`def sanitize_user_agent(value: Optional[str]) -> str:`
			`"""Sanitize user agent string for storage."""`
			`return sanitize_for_storage(value, MAX_USER_AGENT_LENGTH)`


			`def sanitize_credential(value: Optional[str]) -> str:`
			`"""Sanitize username or password for storage."""`
			`return sanitize_for_storage(value, MAX_CREDENTIAL_LENGTH)`


			`def sanitize_attack_pattern(value: Optional[str]) -> str:`
			`"""Sanitize matched attack pattern for storage."""`
			`return sanitize_for_storage(value, MAX_ATTACK_PATTERN_LENGTH)`


			`def escape_html(value: Optional[str]) -> str:`
			`"""`
			`Escape HTML special characters for safe display in web pages.`

			`Prevents stored XSS attacks when displaying user-controlled data`
			`in the dashboard.`

			`Args:`
			`value: The string to escape`

			`Returns:`
			`HTML-escaped string, empty string if input is None/empty`
			`"""`
			`if not value:`
			`return ""`
			`return html.escape(str(value))`


			`def escape_html_truncated(value: Optional[str], max_display_length: int) -> str:`
			`"""`
			`Escape HTML and truncate for display.`

			`Args:`
			`value: The string to escape and truncate`
			`max_display_length: Maximum display length (truncation happens before escaping)`

			`Returns:`
			`HTML-escaped and truncated string`
			`"""`
			`if not value:`
			`return ""`

			`value_str = str(value)`
			`if len(value_str) > max_display_length:`
			`value_str = value_str[:max_display_length] + "..."`

			`return html.escape(value_str)`
added ip rep fetch + bug fix 2026-01-07 22:56:01 +01:00
			`def sanitize_dict(value: Optional[Dict[str,str]], max_display_length):`
			`return {k: sanitize_for_storage(v, max_display_length) for k, v in value.items()}`