Fix dict element regular expression selection on SecRuleUpdateTargetByTag

2025-08-14 05:45:59 +03:00 · 2019-05-31 01:40:08 -03:00 · 2019-05-31 01:40:08 -03:00 · 1b8d69da02
commit 1b8d69da02
parent 5472362313
3 changed files with 252 additions and 245 deletions
--- a/src/parser/seclang-scanner.cc
+++ b/src/parser/seclang-scanner.cc
--- a/src/parser/seclang-scanner.ll
+++ b/src/parser/seclang-scanner.ll
@ -1051,6 +1051,7 @@ EQUALS_MINUS                            (?i:=\-)


 <EXPECTING_VAR_PARAMETER>{
+[\/]{DICT_ELEMENT_NO_PIPE}[\/]            { BEGIN_PREVIOUS(); yyless(yyleng); return p::make_DICT_ELEMENT_REGEXP(std::string(yytext, 1, yyleng-2), *driver.loc.back()); }
 [\/]{DICT_ELEMENT_NO_PIPE}[\/][ ]         { BEGIN_PREVIOUS(); yyless(yyleng - 1); return p::make_DICT_ELEMENT_REGEXP(std::string(yytext, 1, yyleng-2), *driver.loc.back()); }
 [\/]{DICT_ELEMENT_NO_PIPE}[\/][|]         { BEGIN_PREVIOUS(); yyless(yyleng - 1); return p::make_DICT_ELEMENT_REGEXP(std::string(yytext, 1, yyleng-2), *driver.loc.back()); }
 ['][\/]{DICT_ELEMENT_WITH_PIPE}[\/][']    { BEGIN_PREVIOUS(); yyless(yyleng - 0); return p::make_DICT_ELEMENT_REGEXP(std::string(yytext, 2, yyleng-4), *driver.loc.back()); }
--- a/test/test-cases/regression/config-update-target-by-tag.json
+++ b/test/test-cases/regression/config-update-target-by-tag.json
@ -155,7 +155,7 @@
    },
    "rules":[
      "SecRuleEngine On",
-      "SecRuleUpdateTargetByTag test !ARGS:'/ke/'",
+      "SecRuleUpdateTargetByTag test !ARGS:/ke/",
      "SecRule ARGS \"@contains value\" \"id:1,pass,t:trim,tag:'test',deny\""
    ]
  }