Python: Model encoding/decoding with base64 module

2025-12-24 12:46:34 +01:00 · 2020-11-02 14:44:53 +01:00
parent eff244db71
commit 66f5d0d9d5
5 changed files with 162 additions and 0 deletions
--- a/python/ql/test/experimental/library-tests/frameworks/stdlib/Decoding.py
+++ b/python/ql/test/experimental/library-tests/frameworks/stdlib/Decoding.py
@@ -1,5 +1,15 @@
 import pickle
 import marshal
+import base64

 pickle.loads(payload)  # $decodeInput=payload $decodeOutput=Attribute() $decodeFormat=pickle $decodeMayExecuteInput
 marshal.loads(payload)  # $decodeInput=payload $decodeOutput=Attribute() $decodeFormat=marshal $decodeMayExecuteInput
+
+# TODO: These tests should be merged with python/ql/test/experimental/dataflow/tainttracking/defaultAdditionalTaintStep/test_string.py
+base64.b64decode(payload)  # $decodeInput=payload $decodeOutput=Attribute() $decodeFormat=Base64
+base64.standard_b64decode(payload)  # $decodeInput=payload $decodeOutput=Attribute() $decodeFormat=Base64
+base64.urlsafe_b64decode(payload)  # $decodeInput=payload $decodeOutput=Attribute() $decodeFormat=Base64
+base64.b32decode(payload)  # $decodeInput=payload $decodeOutput=Attribute() $decodeFormat=Base32
+base64.b16decode(payload)  # $decodeInput=payload $decodeOutput=Attribute() $decodeFormat=Base16
+# deprecated since Python 3.1, but still works
+base64.decodestring(payload)  # $decodeInput=payload $decodeOutput=Attribute() $decodeFormat=Base64