#include "json_stream.h"
#include <cassert>
+#include <cctype>
+#include <cstring>
#include <iomanip>
using namespace snort;
out << std::quoted(key) << ": ";
if (val)
- out << std::quoted(val);
+ put_escaped(val, strlen(val));
else
out << "null";
}
if ( key )
out << std::quoted(key) << ": ";
- out << std::quoted(val);
+ put_escaped(val.c_str(), val.size());
}
void JsonStream::put(const char* key, double val, int precision)
{
out << std::endl;
}
+
+void JsonStream::put_escaped(const char* v, size_t len)
+{
+ char* buf = new char[2 * len + 2];
+ char* dst = buf;
+
+ *dst++ = '\"';
+
+ while (len--)
+ {
+ char c = *v++;
+
+ switch (c)
+ {
+ case '\\': *dst++ = '\\'; *dst++ = '\\'; break;
+ case '\"': *dst++ = '\\'; *dst++ = '"'; break;
+ case '\b': *dst++ = '\\'; *dst++ = 'b'; break;
+ case '\f': *dst++ = '\\'; *dst++ = 'f'; break;
+ case '\n': *dst++ = '\\'; *dst++ = 'n'; break;
+ case '\r': *dst++ = '\\'; *dst++ = 'r'; break;
+ case '\t': *dst++ = '\\'; *dst++ = 't'; break;
+ default:
+ if (isprint(c))
+ *dst++ = c;
+ else
+ {
+ out.write(buf, dst - buf);
+ dst = buf;
+ out << "\\u" << std::hex << std::setw(4) << std::setfill('0') << (0xFF & c);
+ }
+ }
+ }
+
+ *dst++ = '\"';
+ out.write(buf, dst - buf);
+
+ delete[] buf;
+}
+
+#ifdef UNIT_TEST
+
+#include "catch/snort_catch.h"
+
+class JsonStreamTest : public JsonStream
+{
+public:
+ JsonStreamTest() : JsonStream(oss), oss() { }
+
+ void check_escaping(const char* f, const char* input, size_t i_len, const std::string& expected)
+ {
+ oss.str(std::string());
+ put(f, std::string(input, i_len));
+ CHECK(oss.str() == expected);
+ }
+
+private:
+ std::ostringstream oss;
+};
+
+TEST_CASE_METHOD(JsonStreamTest, "escape: special chars", "[Json_Stream]")
+{
+ const char* field = "Special characters";
+ const char* value = "\" \\ \b \f \n \r \t";
+ size_t len = strlen(value);
+
+ std::string expected = "\"Special characters\": \"\\\" \\\\ \\b \\f \\n \\r \\t\"";
+ check_escaping(field, value, len, expected);
+}
+
+TEST_CASE_METHOD(JsonStreamTest, "escape: non printable chars", "[Json_Stream]")
+{
+ // __STRDUMP_DISABLE__
+ const char* field = "Non printable";
+ const char* value = "\x01\x02\x03";
+ size_t len = strlen(value);
+
+ std::string expected = "\"Non printable\": \"\\u0001\\u0002\\u0003\"";
+ check_escaping(field, value, len, expected);
+ // __STRDUMP_ENABLE__
+}
+
+TEST_CASE_METHOD(JsonStreamTest, "escape: printable chars", "[Json_Stream]")
+{
+ const char* field = "Printable characters";
+ const char* value = "ABC abc 123";
+ size_t len = strlen(value);
+
+ std::string expected = "\"Printable characters\": \"ABC abc 123\"";
+ check_escaping(field, value, len, expected);
+}
+
+TEST_CASE_METHOD(JsonStreamTest, "escape: mixed chars", "[Json_Stream]")
+{
+ // __STRDUMP_DISABLE__
+ const char* field = "Mixed";
+ const char* value = "ABC \x01 \" \\ \b \f \n \r \t 123";
+ size_t len = strlen(value);
+
+ std::string expected = "\"Mixed\": \"ABC \\u0001 \\\" \\\\ \\b \\f \\n \\r \\t 123\"";
+ check_escaping(field, value, len, expected);
+ // __STRDUMP_ENABLE__
+}
+
+TEST_CASE_METHOD(JsonStreamTest, "escape: empty string", "[Json_Stream]")
+{
+ const char* field = "Empty string";
+ const char* value = "";
+ size_t len = strlen(value);
+
+ std::string expected = "";
+ check_escaping(field, value, len, expected);
+}
+
+#endif
+
#include "extractor_csv_logger.h"
#include <cassert>
+#include <cctype>
+#include <cstddef>
#include <limits>
#include <string>
void CsvExtractorLogger::add_field(const char*, const char* v)
{
first_write ? []() { first_write = false; } () : buffer.push_back(',');
- buffer.append(v);
+ add_escaped(v, strlen(v));
}
void CsvExtractorLogger::add_field(const char*, const char* v, size_t len)
{
first_write ? []() { first_write = false; } () : buffer.push_back(',');
- buffer.append(v, len);
+ add_escaped(v, len);
}
void CsvExtractorLogger::add_field(const char*, uint64_t v)
buffer.append(v ? "true" : "false");
}
+void CsvExtractorLogger::add_escaped(const char* v, size_t len)
+{
+ if (!v || len == 0)
+ return;
+
+ constexpr float escape_resize_factor = 1.2;
+
+ const char* p = v;
+ const char* end = v + len;
+
+ buffer.reserve(buffer.length() + len * escape_resize_factor);
+
+ bool to_quote = false;
+ std::vector<ptrdiff_t> quote_positions;
+
+ while (p < end)
+ {
+ if (*p == '"')
+ {
+ to_quote = true;
+ quote_positions.push_back(p - v);
+ }
+
+ to_quote = to_quote or *p == ',' or !isprint(*p) or (isblank(*p) and (p == v or p == end - 1));
+
+ ++p;
+ }
+
+ if (!to_quote)
+ {
+ buffer.append(v, len);
+ return;
+ }
+
+ buffer.push_back('"');
+
+ ptrdiff_t curr_pos = 0;
+ for (ptrdiff_t quote_pos : quote_positions)
+ {
+ assert(quote_pos >= curr_pos);
+ buffer.append(v + curr_pos, quote_pos - curr_pos);
+ buffer.push_back('"');
+ curr_pos = quote_pos;
+ }
+
+ buffer.append(v + curr_pos, len - curr_pos);
+ buffer.push_back('"');
+}
+
+#ifdef UNIT_TEST
+
+#include "catch/snort_catch.h"
+
+class CsvExtractorLoggerTest : public CsvExtractorLogger
+{
+public:
+ CsvExtractorLoggerTest() : CsvExtractorLogger(nullptr) {}
+
+ void check_escaping(const char* input, size_t i_len, const std::string& expected)
+ {
+ buffer.clear();
+ add_escaped(input, i_len);
+ CHECK(buffer == expected);
+ }
+};
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: nullptr", "[extractor]")
+{
+ check_escaping(nullptr, 1, "");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: zero len", "[extractor]")
+{
+ const char* input = "";
+ check_escaping(input, 0, "");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: no special chars", "[extractor]")
+{
+ const char* input = "simple_text";
+ check_escaping(input, strlen(input), "simple_text");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: comma", "[extractor]")
+{
+ const char* input = "text,with,commas";
+ check_escaping(input, strlen(input), "\"text,with,commas\"");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: newline", "[extractor]")
+{
+ const char* input = "text\nwith\nnewlines";
+ check_escaping(input, strlen(input), "\"text\nwith\nnewlines\"");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: CR", "[extractor]")
+{
+ const char* input = "text\rwith\rreturns";
+ check_escaping(input, strlen(input), "\"text\rwith\rreturns\"");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: whitespaces", "[extractor]")
+{
+ const char* input = "text with ws";
+ check_escaping(input, strlen(input), "text with ws");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: whitespace at the beginning", "[extractor]")
+{
+ const char* input = " start_with_ws";
+ check_escaping(input, strlen(input), "\" start_with_ws\"");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: whitespace at the end", "[extractor]")
+{
+ const char* input = "end_with_ws ";
+ check_escaping(input, strlen(input), "\"end_with_ws \"");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: quotes", "[extractor]")
+{
+ const char* input = "text\"with\"quotes";
+ check_escaping(input, strlen(input), "\"text\"\"with\"\"quotes\"");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: mixed", "[extractor]")
+{
+ const char* input = "text,with\nmixed\"chars\r";
+ check_escaping(input, strlen(input), "\"text,with\nmixed\"\"chars\r\"");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: single quote", "[extractor]")
+{
+ const char* input = "\"";
+ check_escaping(input, strlen(input), "\"\"\"\"");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: single comma", "[extractor]")
+{
+ const char* input = ",";
+ check_escaping(input, strlen(input), "\",\"");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: single newline", "[extractor]")
+{
+ const char* input = "\n";
+ check_escaping(input, strlen(input), "\"\n\"");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: single CR", "[extractor]")
+{
+ const char* input = "\r";
+ check_escaping(input, strlen(input), "\"\r\"");
+}
+
+TEST_CASE_METHOD(CsvExtractorLoggerTest, "escape: single whitespace", "[extractor]")
+{
+ const char* input = " ";
+ check_escaping(input, strlen(input), "\" \"");
+}
+
+#endif
projects / thirdparty / snort3.git / commitdiff
