Adds support to ctl:ruleEngine

2025-10-01 03:57:47 +03:00 · 2017-07-27 21:48:56 -03:00
parent 1f1e8324b1
commit 4bec6b0019
11 changed files with 1631 additions and 1562 deletions
--- a/src/actions/ctl/rule_engine.cc
+++ b/src/actions/ctl/rule_engine.cc
@@ -0,0 +1,62 @@
+/*
+ * ModSecurity, http://www.modsecurity.org/
+ * Copyright (c) 2015 Trustwave Holdings, Inc. (http://www.trustwave.com/)
+ *
+ * You may not use this file except in compliance with
+ * the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * If any of the files related to licensing are missing or if you have any
+ * other questions related to licensing please contact Trustwave Holdings, Inc.
+ * directly using the email address security@modsecurity.org.
+ *
+ */
+
+#include "src/actions/ctl/rule_engine.h"
+
+#include <iostream>
+#include <string>
+
+#include "modsecurity/rules_properties.h"
+#include "modsecurity/transaction.h"
+
+namespace modsecurity {
+namespace actions {
+namespace ctl {
+
+
+bool RuleEngine::init(std::string *error) {
+    std::string what(m_parser_payload, 11, m_parser_payload.size() - 11);
+
+    if (what == "on") {
+        m_ruleEngine = RulesProperties::EnabledRuleEngine;
+    } else if (what == "off") {
+        m_ruleEngine = RulesProperties::DisabledRuleEngine;
+    } else if (what == "detectiononly") {
+        m_ruleEngine = RulesProperties::DetectionOnlyRuleEngine;
+    } else {
+        error->assign("Internal error. Expected: On, Off or DetectionOnly; " \
+            "got: " + m_parser_payload);
+        return false;
+    }
+
+    return true;
+}
+
+bool RuleEngine::evaluate(Rule *rule, Transaction *transaction) {
+    std::stringstream a;
+    a << "Setting SecRuleEngine to ";
+    a << modsecurity::RulesProperties::ruleEngineStateString(m_ruleEngine);
+    a << " as requested by a ctl:ruleEngine action";
+
+    transaction->debug(8, a.str());
+
+    transaction->m_secRuleEngine = m_ruleEngine;
+    return true;
+}
+
+
+}  // namespace ctl
+}  // namespace actions
+}  // namespace modsecurity
--- a/src/actions/ctl/rule_engine.h
+++ b/src/actions/ctl/rule_engine.h
@@ -0,0 +1,48 @@
+/*
+ * ModSecurity, http://www.modsecurity.org/
+ * Copyright (c) 2015 Trustwave Holdings, Inc. (http://www.trustwave.com/)
+ *
+ * You may not use this file except in compliance with
+ * the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * If any of the files related to licensing are missing or if you have any
+ * other questions related to licensing please contact Trustwave Holdings, Inc.
+ * directly using the email address security@modsecurity.org.
+ *
+ */
+
+#include <string>
+
+#include "modsecurity/actions/action.h"
+#include "modsecurity/transaction.h"
+#include "modsecurity/rules_properties.h"
+
+
+#ifndef SRC_ACTIONS_CTL_RULE_ENGINE_H_
+#define SRC_ACTIONS_CTL_RULE_ENGINE_H_
+
+namespace modsecurity {
+namespace actions {
+namespace ctl {
+
+
+class RuleEngine : public Action {
+ public:
+    explicit RuleEngine(std::string action)
+        : Action(action, RunTimeOnlyIfMatchKind),
+        m_ruleEngine(RulesProperties::PropertyNotSetRuleEngine) { }
+
+    bool init(std::string *error) override;
+    bool evaluate(Rule *rule, Transaction *transaction) override;
+
+    RulesProperties::RuleEngine m_ruleEngine;
+};
+
+
+}  // namespace ctl
+}  // namespace actions
+}  // namespace modsecurity
+
+#endif  // SRC_ACTIONS_CTL_RULE_ENGINE_H_