Improve output

fl0-O · Dec 30, 2020 · ab186e4 · ab186e4
1 parent d0c9a39
commit ab186e4
Show file tree

Hide file tree

Showing 5 changed files with 14 additions and 5 deletions.
diff --git a/regexploit/ast/char.py b/regexploit/ast/char.py
@@ -162,6 +162,9 @@ def example(self) -> str:
 
         if self.positive:
             if self.literals:
+                if len(self.literals) > 1:
+                    # Try to avoid \n due to false positives with the . character and flags
+                    return chr(next(o for o in self.literals if o != 0xa))
                 return chr(next(iter(self.literals)))
             elif self.categories:
                 return sorted(self.categories, key=lambda c: 0 if c.is_positive else 1)[

diff --git a/regexploit/bin/regexploit-python-env b/regexploit/bin/regexploit-python-env
@@ -19,6 +19,7 @@ def main():
         print("Cannot load", name)
 
     names = tuple(sys.argv[1:]) if len(sys.argv) > 1 else None
+    sys.argv = sys.argv[:1]
     if names:
         regexploit.hook.regexes.clear()
 

diff --git a/regexploit/bin/regexploit_js.py b/regexploit/bin/regexploit_js.py
@@ -75,7 +75,7 @@ def main():
         )
         args = parser.parse_args()
 
-        output = TextOutput()
+        output = TextOutput(js_flavour=True)
         files = (
             (fname for fglob in args.files for fname in iglob(fglob, recursive=True))
             if args.glob

diff --git a/regexploit/output/text.py b/regexploit/output/text.py
@@ -13,9 +13,10 @@
 
 
 class TextOutput:
-    def __init__(self):
+    def __init__(self, js_flavour: bool=False):
         self.first_for_regex = True
         self.regexes = 0
+        self.js_flavour = js_flavour
 
     def next(self):
         """Next regex being processed."""
@@ -47,4 +48,4 @@ def record(self, redos, pattern, *, filename=None, lineno=None, context=None):
         print(f"Repeated character: {redos.repeated_character}")
         if redos.killer:
             print(f"Final character to cause backtracking: {redos.killer}")
-        print(f"Example: {redos.example()}\n")
+        print(f"Example: {redos.example(self.js_flavour)}\n")
diff --git a/regexploit/redos.py b/regexploit/redos.py
@@ -22,7 +22,7 @@ class Redos:
     def example_prefix(self) -> str:
         return self.prefix_sequence.example()
 
-    def example(self) -> str:
+    def example(self, js_flavour: bool=False) -> str:
         repeated_char = self.repeated_character
         killer = self.killer
         # Try to find a repeating character which is also a killer
@@ -40,7 +40,11 @@ def example(self) -> str:
             .replace("'", "\\'")
         )
         e = f"'{prefix}' + " if prefix else ""
-        e += f"'{repeated_char_s}' * 3456"
+        if js_flavour:
+            e += f"'{repeated_char_s}'.repeat(3456)"
+        else:
+            e += f"'{repeated_char_s}' * 3456"
+
         if killer:
             killer_s = (
                 killer.example().encode("unicode_escape").decode().replace("'", "\\'")