__init__.py

"""
SQL Injection algorithm
"""

import re
import ctypes
from aikido_zen.helpers.logging import logger
from .map_dialect_to_rust_int import map_dialect_to_rust_int
from .get_lib_path import get_binary_path
from ...helpers.encode_safely import encode_safely


def detect_sql_injection(query, user_input, dialect):
    """
    Execute this to check if the query is actually a SQL injection
    """
    try:
        query_l = query.lower()
        userinput_l = user_input.lower()
        if should_return_early(query_l, userinput_l):
            return 0

        internals_lib = ctypes.CDLL(get_binary_path())
        internals_lib.detect_sql_injection.argtypes = [
            ctypes.POINTER(ctypes.c_uint8),
            ctypes.c_size_t,
            ctypes.POINTER(ctypes.c_uint8),
            ctypes.c_size_t,
            ctypes.c_int,
        ]
        internals_lib.detect_sql_injection.restype = ctypes.c_int

        # Parse input variables for rust function
        query_bytes = encode_safely(query_l)
        userinput_bytes = encode_safely(userinput_l)
        query_buffer = (ctypes.c_uint8 * len(query_bytes)).from_buffer_copy(query_bytes)
        userinput_buffer = (ctypes.c_uint8 * len(userinput_bytes)).from_buffer_copy(
            userinput_bytes
        )
        dialect_int = map_dialect_to_rust_int(dialect)

        c_int_res = internals_lib.detect_sql_injection(
            query_buffer,
            len(query_bytes),
            userinput_buffer,
            len(userinput_bytes),
            dialect_int,
        )

        # This means that an error occurred in the library
        if c_int_res == 2:
            logger.debug(
                "Unable to check for SQL Injection, an error occurred in the library"
            )
            return 0

        return c_int_res
    except Exception as e:
        logger.debug("Exception in SQL algo: %s", e)
    return 0


def should_return_early(query, user_input):
    """
    Input : Lowercased query and user_input.
    Returns true if the detect_sql_injection algo should return early :
    - user_input is <= 1 char or user input larger than query
    - user_input not in query
    - user_input is alphanumerical
    - user_input is an array of integers
    """
    if len(user_input) <= 1 or len(query) < len(user_input):
        # User input too small or larger than query, returning
        return True

    if user_input not in query:
        # User input not in query, returning
        return True

    if user_input.replace("_", "").isalnum():
        # User input is alphanumerical (with underscores), returning
        return True

    cleaned_input_for_list = user_input.replace(" ", "").replace(",", "")
    is_valid_comma_seperated_number_list = re.match(r"^\d+$", cleaned_input_for_list)
    if is_valid_comma_seperated_number_list:
        # E.g. 1, 24028, 828, 4, 1
        return True

    return False