owasp-modsecurity · Rufus125 · Mar 27, 2019 · Mar 27, 2019 · Mar 31, 2019 · Mar 31, 2019
diff --git a/src/Makefile.am b/src/Makefile.am
@@ -225,6 +225,7 @@ OPERATORS = \
 	operators/verify_cc.cc \
 	operators/verify_cpf.cc \
 	operators/verify_ssn.cc \
+	operators/verify_svnr.cc \
 	operators/within.cc \
 	operators/unconditional_match.cc
 

diff --git a/src/operators/operator.cc b/src/operators/operator.cc
@@ -58,6 +58,7 @@
 #include "src/operators/verify_cc.h"
 #include "src/operators/verify_cpf.h"
 #include "src/operators/verify_ssn.h"
+#include "src/operators/verify_svnr.h"
 #include "src/operators/within.h"
 #include "src/operators/unconditional_match.h"
 

diff --git a/src/operators/verify_svnr.cc b/src/operators/verify_svnr.cc
@@ -0,0 +1,114 @@
+
+#include "src/operators/verify_svnr.h"
+
+#include <string>
+
+#include "src/operators/operator.h"
+
+namespace modsecurity {
+namespace operators {
+
+int VerifySVNR::convert_to_int(const char c)
+{
+    int n;
+    if ((c>='0') && (c<='9'))
+        n = c - '0';
+    else if ((c>='A') && (c<='F'))
+        n = c - 'A' + 10;
+    else if ((c>='a') && (c<='f'))
+        n = c - 'a' + 10;
+    else
+        n = 0;
+    return n;
+}
+
+bool VerifySVNR::verify(const char *svnrnumber, int len) {
+    int factor, part_1, part_2, var_len = len;
+    unsigned int sum = 0, i = 0, svnr_len = 11, c;
+    int svnr[11];
+    char s_svnr[11];
+    char bad_svnr[12][12] = { "00000000000",
+        "01234567890",
+        "11111111111",
+        "22222222222",
+        "33333333333",
+        "44444444444",
+        "55555555555",
+        "66666666666",
+        "77777777777",
+        "88888888888",
+        "99999999999"};
+
+    while ((*svnrnumber != '\0') && ( var_len > 0))
+    {
+        if (*svnrnumber != '-' || *svnrnumber != '.')
+        {
+            if (i < svnr_len && isdigit(*svnrnumber))
+            {
+                s_svnr[i] = *svnrnumber;
+                svnr[i] = convert_to_int(*svnrnumber);
+                i++;
+            }
+        }
+        svnrnumber++;
+        var_len--;
+    }
+
+
+    if (i != svnr_len)
+    {
+        return 0;
+    }
+    else
+    {
+        for (i = 0; i< svnr_len; i++)
+        {
+            if (strncmp(s_svnr,bad_svnr[i],svnr_len) == 0)
+            {
+                return 0;
+            }
+        }
+    }
+    //Laufnummer mit 3, 7, 9
+    //Geburtsdatum mit 5, 8, 4, 2, 1, 6
+    sum = svnr[0] * 3 + svnr[1] * 7 + svnr[2] * 9 + svnr[4] * 5 + svnr[5] * 8 + svnr[6] * 4 + svnr[7] * 2 + svnr[8] * 1 + svnr[9] * 6;
+    sum %= 11;
+
+    if (sum == svnr[3])
+    {
+        return true;
+    }
+
+    return false;
+}
+
+
+bool VerifySVNR::evaluate(Transaction *transaction, Rule *rule,
+    const std::string& input, std::shared_ptr<RuleMessage> ruleMessage) {
+    std::list<SMatch> matches;
+    bool is_svnr = false;
+    int i;
+
+    if (m_param.empty()) {
+        return is_svnr;
+    }
+
+    for (i = 0; i < input.size() - 1; i++) {
+        printf ("Decimal i: %d\n", i);
+        matches = m_re->searchAll(input.substr(i, input.size()));
+
+
+        for (const auto & i : matches) {
+            is_svnr = verify(i.str().c_str(), i.str().size());
+            if (is_svnr) {
+	           logOffset(ruleMessage, i.offset(), i.str().size());
+               break;
+            }
+        }
+    }
+    return is_svnr;
+}
+
+
+}  // namespace operators
+}  // namespace modsecurity
diff --git a/src/operators/verify_svnr.h b/src/operators/verify_svnr.h
@@ -0,0 +1,55 @@
+
+#ifndef SRC_OPERATORS_VERIFY_SVNR_H_
+#define SRC_OPERATORS_VERIFY_SVNR_H_
+
+#include <string>
+#include <memory>
+#include <utility>
+
+#include "src/operators/operator.h"
+#include "src/utils/regex.h"
+
+
+namespace modsecurity {
+using Utils::SMatch;
+using Utils::regex_search;
+using Utils::Regex;
+
+namespace operators {
+
+class VerifySVNR : public Operator {
+ public:
+    /** @ingroup ModSecurity_Operator */
+    explicit VerifySVNR(std::unique_ptr<RunTimeString> param)
+        : Operator("VerifySVNR", std::move(param)) {
+        m_re = new Regex(m_param);
+    }
+
+    ~VerifySVNR() {
+        delete m_re;
+    }
+    bool evaluate(Transaction *transaction, Rule *rule,
+        const std::string &input) override {
+        return evaluate(transaction, NULL, input, NULL);
+    }
+    bool evaluate(Transaction *transaction,
+        const std::string &input) override {
+        return evaluate(transaction, NULL, input);
+    }
+    bool evaluate(Transaction *transaction, Rule *rule,
+        const std::string& input,
+        std::shared_ptr<RuleMessage> ruleMessage) override;
+
+    int convert_to_int(const char c);
+    bool verify(const char *ssnumber, int len);
+
+ private:
+    Regex *m_re;
+};
+
+}  // namespace operators
+}  // namespace modsecurity
+
+
+#endif  // SRC_OPERATORS_VERIFY_SVNR_H_
+
diff --git a/test/test-cases/regression/operator-verifysvnr.json b/test/test-cases/regression/operator-verifysvnr.json
@@ -0,0 +1,46 @@
+[
+  {
+    "enabled":1,
+    "version_min":300000,
+    "title":"Testing Operator :: @verifysvnr (1/2)",
+    "client":{
+      "ip":"200.249.12.31",
+      "port":123
+    },
+    "server":{
+      "ip":"200.249.12.31",
+      "port":80
+    },
+    "request":{
+      "headers":{
+        "Host":"localhost",
+        "User-Agent":"curl/7.38.0",
+        "Accept":"*/*",
+        "Content-Length": "27",
+        "Content-Type": "application/x-www-form-urlencoded"
+      },
+      "uri":"/",
+      "method":"POST",
+      "body": [
+        "param1=1237 010180&param2=value2"
+      ]
+    },
+    "response":{
+      "headers":{
+        "Date":"Mon, 13 Jul 2015 20:02:41 GMT",
+        "Last-Modified":"Sun, 26 Oct 2014 22:33:37 GMT",
+        "Content-Type":"text/html"
+      },
+      "body":[
+        "no need."
+      ]
+    },
+    "expected":{
+      "debug_log":"Added VerifySVNR match TX.0: 1237 010180"
+    },
+    "rules":[
+      "SecRuleEngine On",
+      "SecRule ARGS \"@verifysvnr ^([0-9]{4} ?[0-9]{8}$\" \"id:1,phase:2,capture,pass,t:trim\""
+    ]
+  }
+]