0xb00b5/firegex-traffic-viewer
5
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #19 from Pwnzer0tt1/tmp-meta-branch

Browse Source 
Taken edits from main removing edits of regexfilter.cpp
This commit is contained in:
Domingo Dirutigliano
2025-03-05 10:06:23 +01:00
committed by GitHub
parent e31796b249 5a523817cc
commit eda44f12ff
4 changed files with 35 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
backend/binsrc/regex/regexfilter.cpp
View File

@@ -192,4 +192,4 @@ public:
}; };
}} }}
#endif // REGEX_FILTER_CLASS_CPP #endif // REGEX_FILTER_CLASS_CPP

1
backend/routers/nfregex.py
View File

@@ -340,7 +340,6 @@ async def metrics():
s.name, s.name,
s.status, s.status,
r.regex, r.regex,
r.is_blacklist,
r.mode, r.mode,
r.is_case_sensitive, r.is_case_sensitive,
r.blocked_packets, r.blocked_packets,

34
tests/nf_test.py
View File

@@ -86,7 +86,12 @@ else:
#Check if regex is present in the service #Check if regex is present in the service
n_blocked = 0 n_blocked = 0
def checkRegex(regex, should_work=True, upper=False): def getMetric(metric_name, regex):
for metric in firegex.nf_get_metrics().split("\n"):
if metric.startswith(metric_name + "{") and f'regex="{regex}"' in metric:
return int(metric.split(" ")[-1])
def checkRegex(regex, should_work=True, upper=False, deleted=False):
if should_work: if should_work:
global n_blocked global n_blocked
for r in firegex.nf_get_service_regexes(service_id): for r in firegex.nf_get_service_regexes(service_id):
@@ -98,9 +103,19 @@ def checkRegex(regex, should_work=True, upper=False):
n_blocked += 1 n_blocked += 1
time.sleep(1) time.sleep(1)
if firegex.nf_get_regex(r["id"])["n_packets"] == n_blocked: if firegex.nf_get_regex(r["id"])["n_packets"] == n_blocked:
puts("The packed was reported as blocked ✔", color=colors.green) puts("The packet was reported as blocked in the API ", color=colors.green)
else: else:
puts("Test Failed: The packed wasn't reported as blocked ✗", color=colors.red) puts("Test Failed: The packet wasn't reported as blocked in the API ", color=colors.red)
exit_test(1)
if getMetric("firegex_blocked_packets", secret.decode()) == n_blocked:
puts("The packet was reported as blocked in the metrics ✔", color=colors.green)
else:
puts("Test Failed: The packet wasn't reported as blocked in the metrics ✗", color=colors.red)
exit_test(1)
if getMetric("firegex_active", secret.decode()) == 1:
puts("The regex was reported as active in the metrics ✔", color=colors.green)
else:
puts("Test Failed: The regex wasn't reported as active in the metrics ✗", color=colors.red)
exit_test(1) exit_test(1)
else: else:
puts("Test Failed: The request wasn't blocked ✗", color=colors.red) puts("Test Failed: The request wasn't blocked ✗", color=colors.red)
@@ -114,6 +129,12 @@ def checkRegex(regex, should_work=True, upper=False):
else: else:
puts("Test Failed: The request was blocked when it shouldn't have", color=colors.red) puts("Test Failed: The request was blocked when it shouldn't have", color=colors.red)
exit_test(1) exit_test(1)
if not deleted:
if getMetric("firegex_active", secret.decode()) == 0:
puts("The regex was reported as inactive in the metrics ✔", color=colors.green)
else:
puts("Test Failed: The regex wasn't reported as inactive in the metrics ✗", color=colors.red)
exit_test(1)
def clear_regexes(): def clear_regexes():
global n_blocked global n_blocked
@@ -126,6 +147,11 @@ def clear_regexes():
puts("Test Failed: Coulnd't delete the regex ✗", color=colors.red) puts("Test Failed: Coulnd't delete the regex ✗", color=colors.red)
exit_test(1) exit_test(1)
break break
if f'regex="{secret.decode()}"' not in firegex.nf_get_metrics():
puts(f"No regex metrics after deletion ✔", color=colors.green)
else:
puts("Test Failed: Metrics found after deleting the regex ✗", color=colors.red)
exit_test(1)
checkRegex(regex) checkRegex(regex)
@@ -177,7 +203,7 @@ checkRegex(regex)
clear_regexes() clear_regexes()
#Check if it's actually deleted #Check if it's actually deleted
checkRegex(regex,should_work=False) checkRegex(regex,should_work=False,deleted=True)
#Add case insensitive regex #Add case insensitive regex
if(firegex.nf_add_regex(service_id,regex,"B",active=True, is_case_sensitive=False)): if(firegex.nf_add_regex(service_id,regex,"B",active=True, is_case_sensitive=False)):

4
tests/utils/firegexapi.py
View File

@@ -136,6 +136,10 @@ class FiregexAPI:
json={"name":name,"port":port, "proto": proto, "ip_int": ip_int, "fail_open": fail_open}) json={"name":name,"port":port, "proto": proto, "ip_int": ip_int, "fail_open": fail_open})
return req.json()["service_id"] if verify(req) else False return req.json()["service_id"] if verify(req) else False
def nf_get_metrics(self):
req = self.s.get(f"{self.address}api/nfregex/metrics")
return req.text
#PortHijack #PortHijack
def ph_get_services(self): def ph_get_services(self):
req = self.s.get(f"{self.address}api/porthijack/services") req = self.s.get(f"{self.address}api/porthijack/services")