github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-17 04:06:08 +03:00
Code Issues Packages Projects Releases Wiki Activity

Update/reorg some regression tests.

Browse Source
This commit is contained in:
brectanus 2008-06-03 20:24:14 +00:00
parent 16acbe4949
commit 230837d4a3
2 changed files with 101 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

96
apache2/t/regression/action/00-disruptive-actions.t
View File

@ -6,6 +6,9 @@
comment => "pass in phase:1", comment => "pass in phase:1",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecAction "phase:1,pass" SecAction "phase:1,pass"
SecAction "phase:1,deny" SecAction "phase:1,deny"
), ),
@ -24,6 +27,9 @@
comment => "pass in phase:2", comment => "pass in phase:2",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecAction "phase:2,pass" SecAction "phase:2,pass"
SecAction "phase:2,deny" SecAction "phase:2,deny"
), ),
@ -42,6 +48,11 @@
comment => "pass in phase:3", comment => "pass in phase:3",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecDebugLog "$ENV{DEBUG_LOG}"
SecDebugLogLevel 4
SecAction "phase:3,pass" SecAction "phase:3,pass"
SecAction "phase:3,deny" SecAction "phase:3,deny"
), ),
@ -60,6 +71,11 @@
comment => "pass in phase:4", comment => "pass in phase:4",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecDebugLog "$ENV{DEBUG_LOG}"
SecDebugLogLevel 4
SecAction "phase:4,pass" SecAction "phase:4,pass"
SecAction "phase:4,deny" SecAction "phase:4,deny"
), ),
@ -80,6 +96,9 @@
comment => "allow in phase:1", comment => "allow in phase:1",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecAction "phase:1,allow" SecAction "phase:1,allow"
SecAction "phase:1,deny" SecAction "phase:1,deny"
), ),
@ -98,6 +117,9 @@
comment => "allow in phase:2", comment => "allow in phase:2",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecAction "phase:2,allow" SecAction "phase:2,allow"
SecAction "phase:2,deny" SecAction "phase:2,deny"
), ),
@ -116,6 +138,11 @@
comment => "allow in phase:3", comment => "allow in phase:3",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecDebugLog "$ENV{DEBUG_LOG}"
SecDebugLogLevel 4
SecAction "phase:3,allow" SecAction "phase:3,allow"
SecAction "phase:3,deny" SecAction "phase:3,deny"
), ),
@ -134,6 +161,11 @@
comment => "allow in phase:4", comment => "allow in phase:4",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecDebugLog "$ENV{DEBUG_LOG}"
SecDebugLogLevel 4
SecAction "phase:4,allow" SecAction "phase:4,allow"
SecAction "phase:4,deny" SecAction "phase:4,deny"
), ),
@ -154,6 +186,9 @@
comment => "deny in phase:1", comment => "deny in phase:1",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecAction "phase:1,deny" SecAction "phase:1,deny"
), ),
match_log => { match_log => {
@ -171,6 +206,9 @@
comment => "deny in phase:2", comment => "deny in phase:2",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecAction "phase:2,deny" SecAction "phase:2,deny"
), ),
match_log => { match_log => {
@ -188,6 +226,11 @@
comment => "deny in phase:3", comment => "deny in phase:3",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecDebugLog "$ENV{DEBUG_LOG}"
SecDebugLogLevel 4
SecAction "phase:3,deny" SecAction "phase:3,deny"
), ),
match_log => { match_log => {
@ -205,6 +248,11 @@
comment => "deny in phase:4", comment => "deny in phase:4",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecDebugLog "$ENV{DEBUG_LOG}"
SecDebugLogLevel 4
SecAction "phase:4,deny" SecAction "phase:4,deny"
), ),
match_log => { match_log => {
@ -224,6 +272,9 @@
comment => "drop in phase:1", comment => "drop in phase:1",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecAction "phase:1,drop" SecAction "phase:1,drop"
), ),
match_log => { match_log => {
@ -241,6 +292,9 @@
comment => "drop in phase:2", comment => "drop in phase:2",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecAction "phase:2,drop" SecAction "phase:2,drop"
), ),
match_log => { match_log => {
@ -258,6 +312,11 @@
comment => "drop in phase:3", comment => "drop in phase:3",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecDebugLog "$ENV{DEBUG_LOG}"
SecDebugLogLevel 4
SecAction "phase:3,drop" SecAction "phase:3,drop"
), ),
match_log => { match_log => {
@ -275,6 +334,11 @@
comment => "drop in phase:4", comment => "drop in phase:4",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecDebugLog "$ENV{DEBUG_LOG}"
SecDebugLogLevel 4
SecAction "phase:4,drop" SecAction "phase:4,drop"
), ),
match_log => { match_log => {
@ -294,6 +358,9 @@
comment => "redirect in phase:1 (get)", comment => "redirect in phase:1 (get)",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecRule REQUEST_URI "\@streq /test2.txt" "phase:1,redirect:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'" SecRule REQUEST_URI "\@streq /test2.txt" "phase:1,redirect:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'"
), ),
match_log => { match_log => {
@ -312,6 +379,9 @@
comment => "redirect in phase:2 (get)", comment => "redirect in phase:2 (get)",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecRule REQUEST_URI "\@streq /test2.txt" "phase:2,redirect:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'" SecRule REQUEST_URI "\@streq /test2.txt" "phase:2,redirect:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'"
), ),
match_log => { match_log => {
@ -330,6 +400,11 @@
comment => "redirect in phase:3 (get)", comment => "redirect in phase:3 (get)",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecDebugLog "$ENV{DEBUG_LOG}"
SecDebugLogLevel 4
SecRule REQUEST_URI "\@streq /test2.txt" "phase:3,redirect:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'" SecRule REQUEST_URI "\@streq /test2.txt" "phase:3,redirect:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'"
), ),
match_log => { match_log => {
@ -348,6 +423,11 @@
comment => "redirect in phase:4 (get)", comment => "redirect in phase:4 (get)",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecDebugLog "$ENV{DEBUG_LOG}"
SecDebugLogLevel 4
SecRule REQUEST_URI "\@streq /test2.txt" "phase:4,redirect:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'" SecRule REQUEST_URI "\@streq /test2.txt" "phase:4,redirect:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'"
), ),
match_log => { match_log => {
@ -368,6 +448,9 @@
comment => "proxy in phase:1 (get)", comment => "proxy in phase:1 (get)",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecRule REQUEST_URI "\@streq /test2.txt" "phase:1,proxy:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'" SecRule REQUEST_URI "\@streq /test2.txt" "phase:1,proxy:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'"
), ),
match_log => { match_log => {
@ -386,6 +469,9 @@
comment => "proxy in phase:2 (get)", comment => "proxy in phase:2 (get)",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecRule REQUEST_URI "\@streq /test2.txt" "phase:2,proxy:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'" SecRule REQUEST_URI "\@streq /test2.txt" "phase:2,proxy:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'"
), ),
match_log => { match_log => {
@ -404,6 +490,11 @@
comment => "proxy in phase:3 (get)", comment => "proxy in phase:3 (get)",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecDebugLog "$ENV{DEBUG_LOG}"
SecDebugLogLevel 4
SecRule REQUEST_URI "\@streq /test2.txt" "phase:3,proxy:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'" SecRule REQUEST_URI "\@streq /test2.txt" "phase:3,proxy:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'"
), ),
match_log => { match_log => {
@ -421,6 +512,11 @@
comment => "proxy in phase:4 (get)", comment => "proxy in phase:4 (get)",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
SecRequestBodyAccess On
SecResponseBodyAccess On
SecResponseBodyMimeType null
SecDebugLog "$ENV{DEBUG_LOG}"
SecDebugLogLevel 4
SecRule REQUEST_URI "\@streq /test2.txt" "phase:4,proxy:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'" SecRule REQUEST_URI "\@streq /test2.txt" "phase:4,proxy:'http://$ENV{SERVER_NAME}:$ENV{SERVER_PORT}/test.txt'"
), ),
match_log => { match_log => {

10
apache2/t/regression/rule/10-phases.t → apache2/t/regression/misc/00-phases.t
View File

@ -2,7 +2,7 @@
# Phase 1 (request headers) # Phase 1 (request headers)
{ {
type => "rule", type => "misc",
comment => "phase 1", comment => "phase 1",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
@ -32,7 +32,7 @@
# Phase 2 (request body) # Phase 2 (request body)
{ {
type => "rule", type => "misc",
comment => "phase 2", comment => "phase 2",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
@ -62,7 +62,7 @@
# Phase 3 (response headers) # Phase 3 (response headers)
{ {
type => "rule", type => "misc",
comment => "phase 3", comment => "phase 3",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
@ -92,7 +92,7 @@
# Phase 4 (response body) # Phase 4 (response body)
{ {
type => "rule", type => "misc",
comment => "phase 4", comment => "phase 4",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On
@ -121,7 +121,7 @@
# Phase 5 (logging) # Phase 5 (logging)
{ {
type => "rule", type => "misc",
comment => "phase 5", comment => "phase 5",
conf => qq( conf => qq(
SecRuleEngine On SecRuleEngine On