Check if response body inspection is enabled before process it

2025-09-29 11:16:33 +03:00 · 2018-05-08 09:23:16 -03:00
parent 389cc25359
commit 42a472adbd
9 changed files with 20 additions and 0 deletions
--- a/test/test-cases/regression/actions.json
+++ b/test/test-cases/regression/actions.json
@@ -55,6 +55,7 @@
    },
    "rules": [
      "SecRuleEngine On",
+      "SecResponseBodyAccess On",
      "SecRule ARGS \"@contains test\" \"id:1,t:trim,deny\""
    ]
  },
@@ -352,6 +353,7 @@
    },
    "rules": [
      "SecRuleEngine On",
+      "SecResponseBodyAccess On",
      "SecRule ARGS \"@contains test\" \"id:1,phase:4,t:trim,status:500,deny\""
    ]
  }
--- a/test/test-cases/regression/config-calling_phases_by_name.json
+++ b/test/test-cases/regression/config-calling_phases_by_name.json
@@ -77,6 +77,7 @@
      "SecRuleEngine On",
      "SecRule ARGS:key \"@contains other_value\" \"chain,pass,phase:response,id:28\"",
      "SecRule MATCHED_VAR \"@contains Aasdf\" \"\"",
+      "SecResponseBodyAccess On",
      "SecRule MATCHED_VAR \"@contains other_value\" \"id:29,phase:response,pass\"",
      "SecRule MATCHED_VAR \"@contains other_value\" \"id:30,phase:response,pass\""
    ]
--- a/test/test-cases/regression/config-response_type.json
+++ b/test/test-cases/regression/config-response_type.json
@@ -35,6 +35,7 @@
    },
    "rules":[
      "SecRuleEngine On",
+      "SecResponseBodyAccess On",
      "SecResponseBodyMimeType text\/plain text\/html text\/xml",
      "SecRule RESPONSE_BODY \"@contains RESPONSE_CONTENT_TYPE\" \"id:9,pass,t:trim,phase:4\""
    ]
@@ -75,6 +76,7 @@
    },
    "rules":[
      "SecRuleEngine On",
+      "SecResponseBodyAccess On",
      "SecResponseBodyMimeType application\/something",
      "SecRule RESPONSE_BODY \"@contains RESPONSE_CONTENT_TYPE\" \"id:9,pass,t:trim,phase:4\""
    ]
@@ -115,6 +117,7 @@
    },
    "rules":[
      "SecRuleEngine On",
+      "SecResponseBodyAccess On",
      "SecResponseBodyMimeType text\/plain text\/tml text\/xml",
      "SecResponseBodyMimeTypesClear",
      "SecRule RESPONSE_BODY \"@contains RESPONSE_CONTENT_TYPE\" \"id:9,pass,t:trim,phase:4\""
--- a/test/test-cases/regression/variable-OUTBOUND_DATA_ERROR.json
+++ b/test/test-cases/regression/variable-OUTBOUND_DATA_ERROR.json
@@ -35,6 +35,7 @@
    },
    "rules":[  
      "SecRuleEngine On",
+      "SecResponseBodyAccess On",
      "SecRule OUTBOUND_DATA_ERROR \"@eq 1\" \"id:1,phase:4,pass,t:trim\""
    ]
  },
@@ -108,6 +109,7 @@
    },
    "rules":[  
      "SecRuleEngine On",
+      "SecResponseBodyAccess On",
      "SecResponseBodyLimit 2",
      "SecRule OUTBOUND_DATA_ERROR \"@eq 1\" \"id:1,phase:4,pass,t:trim\""
    ]
--- a/test/test-cases/regression/variable-RESPONSE_BODY.json
+++ b/test/test-cases/regression/variable-RESPONSE_BODY.json
@@ -28,6 +28,7 @@
    },
    "rules":[
      "SecRuleEngine On",
+      "SecResponseBodyAccess On",
      "SecRule RESPONSE_BODY \"@contains denystring\" \"id:1,phase:4,deny\""
    ]
  }
--- a/test/test-cases/regression/variable-RESPONSE_CONTENT_LENGTH.json
+++ b/test/test-cases/regression/variable-RESPONSE_CONTENT_LENGTH.json
@@ -36,6 +36,7 @@
    },
    "rules":[  
      "SecRuleEngine On",
+      "SecResponseBodyAccess On",
      "SecRule RESPONSE_CONTENT_LENGTH \"@contains test \" \"id:1,phase:4,pass,t:trim\""
    ]
  }
--- a/test/test-cases/regression/variable-TX.json
+++ b/test/test-cases/regression/variable-TX.json
@@ -37,6 +37,7 @@
    },
    "rules":[
      "SecRuleEngine On",
+      "SecResponseBodyAccess On",
      "SecRequestBodyAccess On",
      "SecRule RESPONSE_BODY \"@rx ([0-9]+)\" \"id:1,phase:4,capture,id:105\"",
      "SecRule TX \"@rx ([A-z]+)\" \"phase:4,id:106\""