trufflehog/pkg/decoders/decoders.go

package decoders

import (
	"github.com/trufflesecurity/trufflehog/v3/pkg/pb/detectorspb"
	"github.com/trufflesecurity/trufflehog/v3/pkg/sources"
)

func DefaultDecoders() []Decoder {
	return []Decoder{
		// UTF8 must be first for duplicate detection
		&UTF8{},
		&Base64{},
		&UTF16{},
		&EscapedUnicode{},
	}
}

// DecodableChunk is a chunk that includes the type of decoder used.
// This allows us to avoid a type assertion on each decoder.
type DecodableChunk struct {
	*sources.Chunk
	DecoderType detectorspb.DecoderType
}

type Decoder interface {
	FromChunk(chunk *sources.Chunk) *DecodableChunk
	Type() detectorspb.DecoderType
}

// Fuzz is an entrypoint for go-fuzz, which is an AFL-style fuzzing tool.
// This one attempts to uncover any panics during decoding.
func Fuzz(data []byte) int {
	decoded := false
	for i, decoder := range DefaultDecoders() {
		// Skip the first decoder (plain), because it will always decode and give
		// priority to the input (return 1).
		if i == 0 {
			continue
		}
		chunk := decoder.FromChunk(&sources.Chunk{Data: data})
		if chunk != nil {
			decoded = true
		}
	}
	if decoded {
		return 1 // prioritize the input
	}
	return -1 // Don't add input to the corpus.
}
Initial CLI w/ partially implemented Git source and demo detector (#1) 2022-01-13 20:02:24 +00:00			`package decoders`

			`import (`
Filter unique detectors by keywords in chunk (#1711) * pre filter detectors that include the keywords in the chunk. * Optimize the engine to prevent iterating overing all detectors. * use sync.Map for concurrent access. * lint. * use correct verify. * allow versioned detectors. * Break apart Start. * cleanup. * Update benchmark. * add comment. * remove Engine prefix. * update comments. * use regular map. * delete the pool. * remove old code. * refactor ahocorasickcore into own file. * update comments * move structs to ahocorasickcore * update comments * fix * address comments * exported some methods and constructor since it will need to be be used by the enterprise pipeline as well * remove extra log 2023-10-23 15:02:01 +00:00			`"github.com/trufflesecurity/trufflehog/v3/pkg/pb/detectorspb"`
module v3 2022-02-10 18:54:33 +00:00			`"github.com/trufflesecurity/trufflehog/v3/pkg/sources"`
Initial CLI w/ partially implemented Git source and demo detector (#1) 2022-01-13 20:02:24 +00:00			`)`

			`func DefaultDecoders() []Decoder {`
			`return []Decoder{`
Dedupe results (#1479) * init 4 dedupin * use raw rather than rawv2 * rm comment * comments * nits * clean up and use rawv2 too * add decoder order test 2023-07-11 20:48:00 +00:00			`// UTF8 must be first for duplicate detection`
Replace plain decoder with utf8 (#922) 2022-11-15 17:36:01 +00:00			`&UTF8{},`
Add base64 detectors. (#414) 2022-04-15 19:09:01 +00:00			`&Base64{},`
Add utf16 decoder (#1274) * Add utf16 decoder. * Add test for utf-8. * Remove else if. * optimize to use a single loop. 2023-04-20 22:07:49 +00:00			`&UTF16{},`
Create basic escaped unicode decoder (#2456) * feat(decoders): basic escaped unicode * wip: handle unicode notation Experimenting with this.. might remove 2024-03-02 19:27:44 +00:00			`&EscapedUnicode{},`
Initial CLI w/ partially implemented Git source and demo detector (#1) 2022-01-13 20:02:24 +00:00			`}`
			`}`

Filter unique detectors by keywords in chunk (#1711) * pre filter detectors that include the keywords in the chunk. * Optimize the engine to prevent iterating overing all detectors. * use sync.Map for concurrent access. * lint. * use correct verify. * allow versioned detectors. * Break apart Start. * cleanup. * Update benchmark. * add comment. * remove Engine prefix. * update comments. * use regular map. * delete the pool. * remove old code. * refactor ahocorasickcore into own file. * update comments * move structs to ahocorasickcore * update comments * fix * address comments * exported some methods and constructor since it will need to be be used by the enterprise pipeline as well * remove extra log 2023-10-23 15:02:01 +00:00			`// DecodableChunk is a chunk that includes the type of decoder used.`
			`// This allows us to avoid a type assertion on each decoder.`
			`type DecodableChunk struct {`
			`*sources.Chunk`
			`DecoderType detectorspb.DecoderType`
			`}`

Initial CLI w/ partially implemented Git source and demo detector (#1) 2022-01-13 20:02:24 +00:00			`type Decoder interface {`
Filter unique detectors by keywords in chunk (#1711) * pre filter detectors that include the keywords in the chunk. * Optimize the engine to prevent iterating overing all detectors. * use sync.Map for concurrent access. * lint. * use correct verify. * allow versioned detectors. * Break apart Start. * cleanup. * Update benchmark. * add comment. * remove Engine prefix. * update comments. * use regular map. * delete the pool. * remove old code. * refactor ahocorasickcore into own file. * update comments * move structs to ahocorasickcore * update comments * fix * address comments * exported some methods and constructor since it will need to be be used by the enterprise pipeline as well * remove extra log 2023-10-23 15:02:01 +00:00			`FromChunk(chunk sources.Chunk) DecodableChunk`
Capture decoding time metric (#3209) We're trying to track down some slowness. 2024-08-09 19:19:16 +00:00			`Type() detectorspb.DecoderType`
Initial CLI w/ partially implemented Git source and demo detector (#1) 2022-01-13 20:02:24 +00:00			`}`

			`// Fuzz is an entrypoint for go-fuzz, which is an AFL-style fuzzing tool.`
			`// This one attempts to uncover any panics during decoding.`
			`func Fuzz(data []byte) int {`
			`decoded := false`
			`for i, decoder := range DefaultDecoders() {`
			`// Skip the first decoder (plain), because it will always decode and give`
[THOG-128] Code cleanup/ OSS onboarding (#117) * Small amount of code clean up. * Rename sem to concurrency for better readability and to remove an extra comment. * fix stashing issue. Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com> 2022-04-01 23:47:27 +00:00			`// priority to the input (return 1).`
Initial CLI w/ partially implemented Git source and demo detector (#1) 2022-01-13 20:02:24 +00:00			`if i == 0 {`
			`continue`
			`}`
			`chunk := decoder.FromChunk(&sources.Chunk{Data: data})`
			`if chunk != nil {`
			`decoded = true`
			`}`
			`}`
			`if decoded {`
			`return 1 // prioritize the input`
			`}`
[THOG-128] Code cleanup/ OSS onboarding (#117) * Small amount of code clean up. * Rename sem to concurrency for better readability and to remove an extra comment. * fix stashing issue. Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com> 2022-04-01 23:47:27 +00:00			`return -1 // Don't add input to the corpus.`
Initial CLI w/ partially implemented Git source and demo detector (#1) 2022-01-13 20:02:24 +00:00			`}`