CallableCharInsertion.java

package com.jsql.model.injection.strategy.blind.callable;

import com.jsql.model.injection.strategy.blind.InjectionCharInsertion;
import com.jsql.model.injection.strategy.blind.patch.Diff;
import com.jsql.model.injection.strategy.blind.patch.DiffMatchPatch;

import java.util.LinkedList;
import java.util.List;
import java.util.concurrent.CopyOnWriteArrayList;

/**
 * Define a call HTTP to the server, require the associated url, character
 * position and bit. Opcodes represent the differences between
 * the reference page, and the resulting page.
 */
public class CallableCharInsertion extends AbstractCallableBit<CallableCharInsertion> {

    private LinkedList<Diff> opcodes = new LinkedList<>();  // List of differences found between the reference page, and the present page

    private static final DiffMatchPatch DIFF_MATCH_PATCH = new DiffMatchPatch();

    private final InjectionCharInsertion injectionCharInsertion;

    private final String metadataInjectionProcess;

    /**
     * Constructor for preparation and blind confirmation.
     */
    public CallableCharInsertion(String inj, InjectionCharInsertion injectionCharInsertion, String metadataInjectionProcess) {
        this.injectionCharInsertion = injectionCharInsertion;
        this.metadataInjectionProcess = metadataInjectionProcess;
        this.booleanUrl = inj;
    }

    /**
     * Check if a result page means the SQL query is true,
     * confirm that nothing in the resulting page is also defined
     * in the pages from every FALSE SQL queries.
     * @return true if the current SQL query is true
     */
    @Override
    public boolean isTrue() {
        // Fix #95422: ConcurrentModificationException on iterator.next()
        List<Diff> copyTrueMarks = new CopyOnWriteArrayList<>(this.injectionCharInsertion.getConstantTrueMark());
        for (Diff trueDiff: copyTrueMarks) {
            try {  // Fix #96229: NullPointerException on contains()
                if (!this.opcodes.contains(trueDiff)) {
                    return false;
                }
            } catch (NullPointerException e) {
                return false;
            }
        }
        return true;
    }

    /**
     * Process the URL HTTP call, use function inject() from the model.
     * Build the list of differences found between TRUE and the current page.
     * @return Functional Blind Callable
     */
    @Override
    public CallableCharInsertion call() {
        String source = this.injectionCharInsertion.callUrl(this.booleanUrl, this.metadataInjectionProcess, this);

        this.opcodes = CallableCharInsertion.DIFF_MATCH_PATCH.diffMain(
            this.injectionCharInsertion.getBlankFalseMark(),
            source,
            false
        );

        CallableCharInsertion.DIFF_MATCH_PATCH.diffCleanupEfficiency(this.opcodes);
        return this;
    }

    public List<Diff> getOpcodes() {
        return this.opcodes;
    }
}









Active mutators

CONDITIONALS_BOUNDARY
EMPTY_RETURNS
FALSE_RETURNS
INCREMENTS
INVERT_NEGS
MATH
NEGATE_CONDITIONALS
NULL_RETURNS
PRIMITIVE_RETURNS
TRUE_RETURNS
VOID_METHOD_CALLS

Tests examined

Report generated by PIT 1.22.0

1		package com.jsql.model.injection.strategy.blind.callable;
2
3		import com.jsql.model.injection.strategy.blind.InjectionCharInsertion;
4		import com.jsql.model.injection.strategy.blind.patch.Diff;
5		import com.jsql.model.injection.strategy.blind.patch.DiffMatchPatch;
6
7		import java.util.LinkedList;
8		import java.util.List;
9		import java.util.concurrent.CopyOnWriteArrayList;
10
11		/**
12		* Define a call HTTP to the server, require the associated url, character
13		* position and bit. Opcodes represent the differences between
14		* the reference page, and the resulting page.
15		*/
16		public class CallableCharInsertion extends AbstractCallableBit<CallableCharInsertion> {
17
18		private LinkedList<Diff> opcodes = new LinkedList<>(); // List of differences found between the reference page, and the present page
19
20		private static final DiffMatchPatch DIFF_MATCH_PATCH = new DiffMatchPatch();
21
22		private final InjectionCharInsertion injectionCharInsertion;
23
24		private final String metadataInjectionProcess;
25
26		/**
27		* Constructor for preparation and blind confirmation.
28		*/
29		public CallableCharInsertion(String inj, InjectionCharInsertion injectionCharInsertion, String metadataInjectionProcess) {
30		this.injectionCharInsertion = injectionCharInsertion;
31		this.metadataInjectionProcess = metadataInjectionProcess;
32		this.booleanUrl = inj;
33		}
34
35		/**
36		* Check if a result page means the SQL query is true,
37		* confirm that nothing in the resulting page is also defined
38		* in the pages from every FALSE SQL queries.
39		* @return true if the current SQL query is true
40		*/
41		@Override
42		public boolean isTrue() {
43		// Fix #95422: ConcurrentModificationException on iterator.next()
44		List<Diff> copyTrueMarks = new CopyOnWriteArrayList<>(this.injectionCharInsertion.getConstantTrueMark());
45		for (Diff trueDiff: copyTrueMarks) {
46		try { // Fix #96229: NullPointerException on contains()
47	1 1. isTrue : negated conditional → NO_COVERAGE	if (!this.opcodes.contains(trueDiff)) {
48	1 1. isTrue : replaced boolean return with true for com/jsql/model/injection/strategy/blind/callable/CallableCharInsertion::isTrue → NO_COVERAGE	return false;
49		}
50		} catch (NullPointerException e) {
51	1 1. isTrue : replaced boolean return with true for com/jsql/model/injection/strategy/blind/callable/CallableCharInsertion::isTrue → NO_COVERAGE	return false;
52		}
53		}
54	1 1. isTrue : replaced boolean return with false for com/jsql/model/injection/strategy/blind/callable/CallableCharInsertion::isTrue → NO_COVERAGE	return true;
55		}
56
57		/**
58		* Process the URL HTTP call, use function inject() from the model.
59		* Build the list of differences found between TRUE and the current page.
60		* @return Functional Blind Callable
61		*/
62		@Override
63		public CallableCharInsertion call() {
64		String source = this.injectionCharInsertion.callUrl(this.booleanUrl, this.metadataInjectionProcess, this);
65
66		this.opcodes = CallableCharInsertion.DIFF_MATCH_PATCH.diffMain(
67		this.injectionCharInsertion.getBlankFalseMark(),
68		source,
69		false
70		);
71
72	1 1. call : removed call to com/jsql/model/injection/strategy/blind/patch/DiffMatchPatch::diffCleanupEfficiency → NO_COVERAGE	CallableCharInsertion.DIFF_MATCH_PATCH.diffCleanupEfficiency(this.opcodes);
73	1 1. call : replaced return value with null for com/jsql/model/injection/strategy/blind/callable/CallableCharInsertion::call → NO_COVERAGE	return this;
74		}
75
76		public List<Diff> getOpcodes() {
77	1 1. getOpcodes : replaced return value with Collections.emptyList for com/jsql/model/injection/strategy/blind/callable/CallableCharInsertion::getOpcodes → NO_COVERAGE	return this.opcodes;
78		}
79		}
		Mutations
47		1.1 Location : isTrue Killed by : none negated conditional → NO_COVERAGE
48		1.1 Location : isTrue Killed by : none replaced boolean return with true for com/jsql/model/injection/strategy/blind/callable/CallableCharInsertion::isTrue → NO_COVERAGE
51		1.1 Location : isTrue Killed by : none replaced boolean return with true for com/jsql/model/injection/strategy/blind/callable/CallableCharInsertion::isTrue → NO_COVERAGE
54		1.1 Location : isTrue Killed by : none replaced boolean return with false for com/jsql/model/injection/strategy/blind/callable/CallableCharInsertion::isTrue → NO_COVERAGE
72		1.1 Location : call Killed by : none removed call to com/jsql/model/injection/strategy/blind/patch/DiffMatchPatch::diffCleanupEfficiency → NO_COVERAGE
73		1.1 Location : call Killed by : none replaced return value with null for com/jsql/model/injection/strategy/blind/callable/CallableCharInsertion::call → NO_COVERAGE
77		1.1 Location : getOpcodes Killed by : none replaced return value with Collections.emptyList for com/jsql/model/injection/strategy/blind/callable/CallableCharInsertion::getOpcodes → NO_COVERAGE

CallableCharInsertion.java

Mutations

Active mutators

Tests examined