| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051 |
- package config
- import (
- "regexp"
- "strings"
- )
- type Rule struct {
- Description string
- RuleID string
- Entropy float64
- EntropyReGroup int
- Regex *regexp.Regexp
- Path *regexp.Regexp
- Tags []string
- Allowlist Allowlist
- }
- func (r *Rule) IncludeEntropy(secret string) (bool, float64) {
- groups := r.Regex.FindStringSubmatch(secret)
- if len(groups)-1 > r.EntropyReGroup || len(groups) == 0 {
- // Config validation should prevent this
- return false, 0.0
- }
- // NOTE: this is a goofy hack to get around the fact there golang's regex engine
- // does not support positive lookaheads. Ideally we would want to add a
- // restriction on generic rules regex that requires the secret match group
- // contains both numbers and alphabetical characters. What this bit of code does is
- // check if the ruleid is prepended with "generic" and enforces the
- // secret contains both digits and alphabetical characters.
- if strings.HasPrefix(r.RuleID, "generic") {
- if !containsDigit(groups[r.EntropyReGroup]) {
- return false, 0.0
- }
- }
- // group = 0 will check the entropy of the whole regex match
- e := shannonEntropy(groups[r.EntropyReGroup])
- if e > r.Entropy {
- return true, e
- }
- return false, e
- }
- func (r *Rule) EntropySet() bool {
- if r.Entropy == 0.0 {
- return false
- }
- return true
- }
|
