ModSecurity Python bindings first commit

Felipe Zimmerle · Felipe Zimmerle · commit 97ba6cc6c87a · 2015-12-22T19:10:41.000-03:00
diff --git a/Makefile b/Makefile
@@ -0,0 +1,19 @@
+all:
+	swig -I/usr/local/modsecurity/include/ -python -builtin -Wall -Wextra -c++ modsecurity/modsecurity.i
+	python setup.py build_ext --inplace
+
+test:
+	tests/t.py
+
+install:
+	python setup.py install --prefix=/usr
+
+clean:
+	@rm modsecurity/modsecurity_wrap.cxx
+	@rm -rf build
+	@rm _modsecurity.so
+	@rm modsecurity/modsecurity.py
+	@rm *.pyc tests/*.pyc modsecurity/*.pyc
+
+
+
diff --git a/modsecurity/__init__.py b/modsecurity/__init__.py
@@ -0,0 +1 @@
+from modsecurity import *
diff --git a/modsecurity/modsecurity.i b/modsecurity/modsecurity.i
@@ -0,0 +1,63 @@
+/*
+ * ModSecurity, http://www.modsecurity.org/
+ * Copyright (c) 2015 Trustwave Holdings, Inc. (http://www.trustwave.com/)
+ *
+ * You may not use this file except in compliance with
+ * the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * If any of the files related to licensing are missing or if you have any
+ * other questions related to licensing please contact Trustwave Holdings, Inc.
+ * directly using the email address security@modsecurity.org.
+ *
+ * Author: Felipe "Zimmerle" Costa <fcosta at trustwave dot com>
+ *
+ */
+
+%module modsecurity
+
+%include "std_string.i"
+%include "std_vector.i"
+%include "std_sstream.i"
+%include "attribute.i"
+%include "carrays.i"
+%include "typemaps.i"
+
+#%ignore RulesProperties::parserError;
+
+%{
+#include "modsecurity/intervention.h"
+#include "modsecurity/transaction/variable.h"
+#include "modsecurity/transaction/variables.h"
+#include "modsecurity/transaction/collection.h"
+#include "modsecurity/transaction/collections.h"
+#include "modsecurity/assay.h"
+#include "modsecurity/debug_log.h"
+#include "modsecurity/modsecurity.h"
+#include "modsecurity/rules_properties.h"
+#include "modsecurity/rules.h"
+#include "modsecurity/rule.h"
+
+using std::basic_string;
+%}
+
+%ignore modsecurity::RulesProperties::parserError const;
+
+%include "modsecurity/intervention.h"
+%include "modsecurity/transaction/variable.h"
+%include "modsecurity/transaction/variables.h"
+%include "modsecurity/transaction/collection.h"
+%include "modsecurity/transaction/collections.h"
+%include "modsecurity/assay.h"
+%include "modsecurity/debug_log.h"
+%include "modsecurity/modsecurity.h"
+%include "modsecurity/rules_properties.h"
+%include "modsecurity/rules.h"
+%include "modsecurity/rule.h"
+
+
+%template(RuleVector) std::vector<modsecurity::Rule *>;
+%template(VectorOfRuleVector) std::vector<std::vector<modsecurity::Rule *> >;
+%template(StringVector) std::vector<std::string>;
+
diff --git a/setup.py b/setup.py
@@ -0,0 +1,107 @@
+#!/usr/bin/env python 
+"""
+
+ ModSecurity, http://www.modsecurity.org/
+ Copyright (c) 2015 Trustwave Holdings, Inc. (http://www.trustwave.com/)
+
+ You may not use this file except in compliance with
+ the License.  You may obtain a copy of the License at
+
+     http://www.apache.org/licenses/LICENSE-2.0
+
+ If any of the files related to licensing are missing or if you have any
+ other questions related to licensing please contact Trustwave Holdings, Inc.
+ directly using the email address security@modsecurity.org.
+
+ Author: Felipe "Zimmerle" Costa <fcosta at trustwave dot com>
+
+"""
+
+from distutils.core import setup, Extension
+import os
+import sys
+
+possible_modsecurity_dirs = [
+    "/usr/local/modsecurity/",
+    "/usr/",
+    "/usr/local/"
+    ]
+
+libraries_dir = [
+    "lib/",
+    "lib64/"
+    ]
+
+headers_dir = [
+    "include/",
+    "headers/",
+    "./"
+    ]
+
+def find_modsec():
+    for i in possible_modsecurity_dirs:
+        lib = None
+        inc = None
+
+        for j in libraries_dir:
+            p = os.path.join(i, j, "libmodsecurity.so")
+            if os.path.isfile(p) or os.path.islink(p):
+                lib = os.path.join(i, j)
+
+        for x in headers_dir:
+            p = os.path.join(i, x, os.path.join("modsecurity", "modsecurity.h"))
+            if os.path.isfile(p) or os.path.islink(p):
+                inc = os.path.join(i, x)
+
+        if inc != None and lib != None:
+            return (inc, lib)
+
+    return (None, None)
+
+inc_dir, lib_dir = find_modsec()
+
+
+print "*** found modsecurity at:"
+print "    headers: " + str(inc_dir)
+print "    library: " + str(lib_dir)
+
+
+if inc_dir == None or lib_dir == None:
+    print "libModSecurity was not found in your system."
+    print "Make sure you have libModSecurity correctly installed in your system."
+    sys.exit(1)
+
+
+#if os.path.isfile("modsecurity/_modsecurity_module.cc") == False:
+#    print "Swig generated code was not found. Please run `make' first"
+#    sys.exit(1)
+
+
+extension_mod = Extension(
+    "_modsecurity", [
+        "modsecurity/modsecurity_wrap.cxx"
+    ],
+    libraries=["modsecurity"],
+    swig_opts=['-Wextra', '-builtin'],
+    library_dirs=[lib_dir],
+    runtime_library_dirs=[lib_dir],
+    include_dirs=[inc_dir, "."],
+    extra_compile_args=["-std=c++11"]
+)
+
+
+setup(
+    name         = "modsecurity",
+    description  = 'Python Bindings for libModSecurity',
+    author       = 'Felipe Zimmerle',
+    author_email = 'felipe@zimmerle.org',
+    url          = 'https://github.com/SpiderLabs/ModSecurity-Python-bindings',
+    ext_modules  = [extension_mod],
+    packages     = ['modsecurity'],
+    classifiers  = [
+        'Topic :: Security',
+        'Topic :: Internet :: WWW/HTTP'
+    ]
+ )
+
+
diff --git a/tests/t.py b/tests/t.py
@@ -0,0 +1,54 @@
+#!/usr/bin/env python
+"""
+
+ ModSecurity, http://www.modsecurity.org/
+ Copyright (c) 2015 Trustwave Holdings, Inc. (http://www.trustwave.com/)
+
+ You may not use this file except in compliance with
+ the License.  You may obtain a copy of the License at
+
+     http://www.apache.org/licenses/LICENSE-2.0
+
+ If any of the files related to licensing are missing or if you have any
+ other questions related to licensing please contact Trustwave Holdings, Inc.
+ directly using the email address security@modsecurity.org.
+
+ Author: Felipe "Zimmerle" Costa <fcosta at trustwave dot com>
+
+"""
+
+import sys
+import unittest
+
+sys.path.append("..")
+sys.path.append(".")
+import modsecurity
+
+
+class TestStringMethods(unittest.TestCase):
+
+  def test_version(self):
+      self.assertRegexpMatches(str(modsecurity.ModSecurity().whoAmI()), ".*ModSecurity.*")
+
+  def test_load_rules(self):
+      rules = modsecurity.Rules()
+      ret = rules.load('SecRule ARGS_POST|XML:/* "(\n|\r)" "id:1,deny,phase:2"')
+      self.assertEqual(ret, 1)
+      ret = rules.load("""
+        SecRule ARGS_POST|XML:/* "(\n|\r)" "id:1,deny,phase:2"
+        SecRule ARGS_POST|XML:/* "(\n|\r)" "id:2,deny,phase:2"
+      """)
+      self.assertEqual(ret, 2)
+      ret = rules.getRulesForPhase(3)
+      self.assertEqual(ret.size(), 3)
+
+  def test_load_bad_rules(self):
+      rules = modsecurity.Rules()
+      ret = rules.load('SecRule ARGS_POST|XML:/* "(\n|\r)" "deny,phase:2"')
+      self.assertEqual(ret, -1)
+      ret = rules.getParserError()
+      self.assertRegexpMatches(ret, "Rules must have an ID.*")
+
+if __name__ == '__main__':
+    unittest.main()
+
