ronin-sql 0.1.0

data/lib/ronin/code/sql/insert.rb

@@ -0,0 +1,86 @@
+#
+#--
+# Ronin SQL - A Ronin library providing support for SQL related security
+# tasks.
+#
+# Copyright (c) 2007-2008 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+#++
+#
+
+require 'ronin/code/sql/statement'
+
+module Ronin
+  module Code
+    module SQL
+      class Insert < Statement
+
+        def initialize(style,table=nil,opts={:fields => nil, :values => nil, :from => nil},&block)
+          @table = table
+          @fields = opts[:fields]
+          @values = opts[:values]
+          @from = opts[:from]
+
+          super(style,&block)
+        end
+
+        def into(table)
+          @table = table
+          return self
+        end
+
+        def fields(*fields)
+          @fields = fields
+          return self
+        end
+
+        def values(*values)
+          if (@values.length==1 && @values[0].kind_of?(Hash))
+            @values = values[0]
+          else
+            @values = values
+          end
+          return self
+        end
+
+        def from(expr)
+          @from = expr
+          return self
+        end
+
+        def compile
+          if @values.kind_of?(Hash)
+            return compile_expr(keyword_insert,@table,compile_row(@values.keys),keyword_values,compile_datalist(@values.values))
+          elsif @from
+            return compile_expr(keyword_insert,@table,compile_row(@fields),@from)
+          else
+            if @fields
+              return compile_expr(keyword_insert,@table,compile_row(@fields),keyword_values,compile_datalist(@values))
+            else
+              return compile_expr(keyword_insert,@table,keyword_values,compile_datalist(@values))
+            end
+          end
+        end
+
+        protected
+
+        keyword :insert, 'INSERT INTO'
+        keyword :values
+
+      end
+    end
+  end
+end

data/lib/ronin/code/sql/keyword.rb

@@ -0,0 +1,48 @@
+#
+#--
+# Ronin SQL - A Ronin library providing support for SQL related security
+# tasks.
+#
+# Copyright (c) 2007-2008 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+#++
+#
+
+module Ronin
+  module Code
+    module SQL
+      class Keyword
+
+        # The style to use
+        attr_reader :style
+
+        def initialize(style,name)
+          @style = style
+          @name = name.to_s
+        end
+
+        def compile
+          @style.compile_keyword(@name)
+        end
+
+        def to_s
+          compile
+        end
+
+      end
+    end
+  end
+end

data/lib/ronin/code/sql/like_expr.rb

@@ -0,0 +1,87 @@
+#
+#--
+# Ronin SQL - A Ronin library providing support for SQL related security
+# tasks.
+#
+# Copyright (c) 2007-2008 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+#++
+#
+
+require 'ronin/code/sql/expr'
+
+module Ronin
+  module Code
+    module SQL
+      class LikeExpr < Expr
+
+        def initialize(style,op,left,right,escape=nil)
+          super(style)
+
+          @op = op
+          @left = left
+          @right = right
+          @escape = escape
+          @negated = false
+        end
+
+        def escape(str)
+          @escape = str
+        end
+
+        def not!
+          @negated = true
+        end
+
+        def compile
+          compile_expr(@left,negated?,@op,compile_pattern(@right),escaped?)
+        end
+
+        protected
+
+        keyword :escape
+        keyword :not
+
+        def escape_pattern(pattern)
+          pattern = pattern.to_s
+
+          if @escape
+            return quote_data(pattern)
+          else
+            return quote_data("%#{pattern}%")
+          end
+        end
+
+        def compile_pattern(pattern)
+          if pattern.kind_of?(Regexp)
+            return escape_pattern(pattern.source)
+          else
+            return escape_pattern(pattern)
+          end
+        end
+
+        def escaped?
+          compile_expr(keyword_escape,"'#{@escape.to_s[0..0]}'") if @escape
+        end
+
+        def negated?
+          keyword_not if @negated
+        end
+
+      end
+    end
+  end
+end

data/lib/ronin/code/sql/program.rb

@@ -0,0 +1,79 @@
+#
+#--
+# Ronin SQL - A Ronin library providing support for SQL related security
+# tasks.
+#
+# Copyright (c) 2007-2008 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+#++
+#
+
+require 'ronin/code/sql/style'
+require 'ronin/code/sql/builder'
+
+module Ronin
+  module Code
+    module SQL
+      class Program
+
+        def initialize(options={},&block)
+          @builder = Builder.new(Style.new(options),&block)
+        end
+
+        def style
+          @builder.style
+        end
+
+        def dialect
+          @builder.style.dialect.name
+        end
+
+        def compile
+          @builder.compile
+        end
+
+        def to_s
+          compile
+        end
+
+        def self.compile(options={},&block)
+          self.new(options,&block).compile
+        end
+
+        def uri_encode
+          compile.uri_encode
+        end
+
+        def uri_escape
+          compile.uri_escape
+        end
+
+        def html_encode
+          compile.html_encode
+        end
+
+        def format_html(options={})
+          compile.format_html(options)
+        end
+
+        def base64_encode
+          compile.base64_encode
+        end
+
+      end
+    end
+  end
+end

data/lib/ronin/code/sql/replace.rb

@@ -0,0 +1,58 @@
+#
+#--
+# Ronin SQL - A Ronin library providing support for SQL related security
+# tasks.
+#
+# Copyright (c) 2007-2008 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+#++
+#
+
+require 'ronin/code/sql/statement'
+
+module Ronin
+  module Code
+    module SQL
+      class Replace < Statement
+
+        def initialize(style,table=nil,values=nil,from=nil,&block)
+          @table = table
+          @values = values
+          @from = from
+
+          super(style,&block)
+        end
+
+        def values(data)
+          @values = data
+        end
+
+        def from(expr)
+          @from = expr
+        end
+
+        def compile
+          if @values.kind_of?(Hash)
+            return compile_expr('REPLACE INTO',@table,compile_list(@values.keys),'VALUES',compile_datalist(@values.values))
+          elsif @from.kind_of?(Select)
+            return compile_expr('REPLACE INTO',@table,compile_list(@values),@from)
+          end
+        end
+
+      end
+    end
+  end
+end

data/lib/ronin/code/sql/select.rb

@@ -0,0 +1,187 @@
+#
+#--
+# Ronin SQL - A Ronin library providing support for SQL related security
+# tasks.
+#
+# Copyright (c) 2007-2008 Hal Brodigan (postmodern.mod3 at gmail.com)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA
+#++
+#
+
+require 'ronin/code/sql/statement'
+
+module Ronin
+  module Code
+    module SQL
+      class Select < Statement
+
+        option_list :rows, [:all, :distinct]
+
+        def initialize(style,tables=nil,options={:fields => nil, :where => nil},&block)
+          @fields = options[:fields] || all
+          @tables = tables
+          @where = options[:where]
+
+          super(style,&block)
+        end
+
+        def fields(*exprs)
+          @fields = exprs
+          return self
+        end
+
+        def tables(*expr)
+          @tables = expr
+          return self
+        end
+
+        def where(expr)
+          @where = expr
+          return self
+        end
+
+        def group_by(*fields)
+          @group_by = fields
+          return self
+        end
+
+        def having(expr)
+          @having = expr
+          return self
+        end
+
+        def order_by(*exprs)
+          @order_by = exprs
+          return self
+        end
+
+        def limit(value)
+          @limit = value
+        end
+
+        def offset(value)
+          @limit = value
+        end
+
+        def union(table,opts={:fields => [], :where => nil},&block)
+          @union = Select.new(@style,table,opts,&block)
+          return self
+        end
+
+        def union_all(table,opts={:fields => [], :where => nil},&block)
+          @union_all = Select.new(@style,table,opts,&block)
+          return self
+        end
+
+        def join(table,on_expr)
+          @join_type = :outer
+          @join_table = table
+          @join_on = on_expr
+        end
+
+        def inner_join(table,on_expr)
+          @join_type = :inner
+          @join_table = table
+          @join_on = on_expr
+        end
+
+        def left_join(table,on_expr)
+          @join_type = :left
+          @join_table = table
+          @join_on = on_expr
+        end
+
+        def right_join(table,on_expr)
+          @join_type = :right
+          @join_table = table
+          @join_on = on_expr
+        end
+
+        def compile
+          compile_expr(keyword_select,
+                       rows?,
+                       fields?,
+                       keyword_from,
+                       compile_list(@tables),
+                       where?,
+                       order_by?,
+                       having_by?,
+                       order_by?,
+                       limit?,
+                       unioned?)
+        end
+
+        protected
+
+        keyword :select
+        keyword :from
+        keyword :where
+        keyword :union
+        keyword :union_all
+        keyword :group_by, 'GROUP BY'
+        keyword :having
+        keyword :order_by, 'ORDER BY'
+        keyword :limit
+        keyword :offset
+
+        def fields?
+          if @fields.kind_of?(Array)
+            unless @fields.empty?
+              return compile_row(@fields)
+            else
+              return all.to_s
+            end
+          else
+            return @fields.to_s
+          end
+        end
+
+        def where?
+          compile_expr(keyword_where,@where) if @where
+        end
+
+        def group_by?
+          compile_expr(keyword_group_by,compile_row(@group_by)) if @group_by
+        end
+
+        def having_by?
+          compile_expr(keyword_having,@having) if @having
+        end
+
+        def order_by?
+          compile_expr(keyword_order_by,@order_by) if @order_by
+        end
+
+        def limit?
+          compile_expr(keyword_limit,@limit,offset?) if @limit
+        end
+
+        def offset?
+          compile_expr(keyword_offset,@offset) if @offset
+        end
+
+        def unioned?
+          if @union_all
+            return compile_expr(keyword_union_all,@union_all)
+          elsif @union
+            return compile_expr(keyword_union,@union)
+          end
+        end
+
+      end
+    end
+  end
+end