Skip to content

refactor: validate byte range operator #70

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
airween merged 2 commits into from
Nov 28, 2025
Merged

refactor: validate byte range operator #70

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
0dbec3e
refactor: validate byte range operator
Agustindeleon Nov 27, 2025
1d4c2b8
Merge branch 'main' into chore/validate-byte-range-op
Agustindeleon Nov 28, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
30 changes: 29 additions & 1 deletion g4/SecLangLexer.g4
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -630,7 +630,7 @@ OPERATOR_UNCONDITIONAL_MATCH
;

OPERATOR_VALIDATE_BYTE_RANGE
: 'validateByteRange'
: 'validateByteRange' -> pushMode(REMOVE_SPACE_MODE)
;

OPERATOR_VALIDATE_DTD
Expand Down Expand Up @@ -1393,4 +1393,32 @@ HASH_COMMENT_BLOCK

BLOCK_COMMENT_END
: '\r'? '\n' '\r'? '\n' -> popMode
;

mode REMOVE_SPACE_MODE;

WS_REMOVE_SPACE
: ' ' -> skip, pushMode(INT_RANGE_MODE)
;

mode INT_RANGE_MODE;

INT_RANGE_VALUE
: DIGIT+
;

MINUS_INT_RANGE
: '-'
;

WS_INT_RANGE
: ' '+
;

QUOTE_INT_RANGE
: '"' -> type(QUOTE), pushMode(DEFAULT_MODE)
;

COMMA_INT_RANGE
: ',' -> type(COMMA)
;
6 changes: 5 additions & 1 deletion g4/SecLangParser.g4
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -138,6 +138,10 @@ remove_rule_by_id_values:
| int_range # remove_rule_by_id_int_range
;

operator_int_range:
INT_RANGE_VALUE MINUS_INT_RANGE INT_RANGE_VALUE
;

int_range:
range_start MINUS range_end
;
Expand Down Expand Up @@ -305,7 +309,7 @@ operator_name:
operator_value:
variable_enum
| STRING
| (INT | int_range) (COMMA (INT | int_range))*
| WS_INT_RANGE* (INT_RANGE_VALUE | operator_int_range) (COMMA WS_INT_RANGE* (INT_RANGE_VALUE | operator_int_range))*
| OPERATOR_UNQUOTED_STRING
| OPERATOR_QUOTED_STRING
;
Expand Down
14 changes: 14 additions & 0 deletions listener.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -86,6 +86,20 @@ func (l *TreeShapeListener) EnterRange_end(ctx *parser.Range_endContext) {
l.results.RangeEndEvents = append(l.results.RangeEndEvents, i)
}

func (l *TreeShapeListener) EnterOperator_int_range(ctx *parser.Operator_int_rangeContext) {
l.results.RangeEvents = append(l.results.RangeEvents, ctx.GetText())
i, err := strconv.Atoi(ctx.INT_RANGE_VALUE(0).GetText())
if err != nil {
panic(err)
}
l.results.RangeStartEvents = append(l.results.RangeStartEvents, i)
i, err = strconv.Atoi(ctx.INT_RANGE_VALUE(1).GetText())
if err != nil {
panic(err)
}
l.results.RangeEndEvents = append(l.results.RangeEndEvents, i)
}

func (l *TreeShapeListener) EnterRemove_rule_by_id(ctx *parser.Remove_rule_by_idContext) {
l.results.DirectiveList = append(l.results.DirectiveList, ctx.GetText())
}
Expand Down
5,299 changes: 2,664 additions & 2,635 deletions parser/seclang_lexer.go
View file
Open in desktop

Large diffs are not rendered by default.

1,856 changes: 1,025 additions & 831 deletions parser/seclang_parser.go
View file
Open in desktop

Large diffs are not rendered by default.

6 changes: 6 additions & 0 deletions parser/seclangparser_base_listener.go
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

6 changes: 6 additions & 0 deletions parser/seclangparser_listener.go
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

4,612 changes: 2,319 additions & 2,293 deletions src/seclang_parser/SecLangLexer.py
View file
Open in desktop

Large diffs are not rendered by default.

1,629 changes: 859 additions & 770 deletions src/seclang_parser/SecLangParser.py
View file
Open in desktop

Large diffs are not rendered by default.

9 changes: 9 additions & 0 deletions src/seclang_parser/SecLangParserListener.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -134,6 +134,15 @@ def exitRemove_rule_by_id_int_range(self, ctx:SecLangParser.Remove_rule_by_id_in
pass


# Enter a parse tree produced by SecLangParser#operator_int_range.
def enterOperator_int_range(self, ctx:SecLangParser.Operator_int_rangeContext):
pass

# Exit a parse tree produced by SecLangParser#operator_int_range.
def exitOperator_int_range(self, ctx:SecLangParser.Operator_int_rangeContext):
pass


# Enter a parse tree produced by SecLangParser#int_range.
def enterInt_range(self, ctx:SecLangParser.Int_rangeContext):
pass
Expand Down
5 changes: 5 additions & 0 deletions src/seclang_parser/listener.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -49,6 +49,11 @@ def enterRange_start(self, ctx: SecLangParser.Range_startContext):
def enterRange_end(self, ctx: SecLangParser.Range_endContext):
self.results.range_end_events.append(int(ctx.getText()))

def enterOperator_int_range(self, ctx: SecLangParser.Operator_int_rangeContext):
self.results.range_events.append(ctx.getText())
self.results.range_start_events.append(int(ctx.INT_RANGE_VALUE(0).getText()))
self.results.range_end_events.append(int(ctx.INT_RANGE_VALUE(1).getText()))

def enterRemove_rule_by_id(self, ctx: SecLangParser.Remove_rule_by_idContext):
self.results.directive_list.append(ctx.getText())

Expand Down
2 changes: 1 addition & 1 deletion testdata/test_40_var_operators.conf
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
SecRule REQUEST_HEADERS|!REQUEST_HEADERS:User-Agent "@validateByteRange 32,34,38,42-59,61,65-90,95,97-122" \
SecRule REQUEST_HEADERS|!REQUEST_HEADERS:User-Agent "@validateByteRange 32, 34,38,42-59,61,65-90,95,97-122" \
"id:920274,\
phase:1,\
block"
Expand Down
2 changes: 1 addition & 1 deletion testdata/tests.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -302,7 +302,7 @@ check_output_tests:
- validateByteRange
- eq
operator_value_list:
- "32,34,38,42-59,61,65-90,95,97-122"
- "32, 34,38,42-59,61,65-90,95,97-122"
- "0"
directive_list:
- SecRule
Expand Down