Adds support to the `skip' action

2025-09-29 19:24:29 +03:00 · 2016-06-30 10:34:55 -03:00
parent f00e625c8e
commit b0f69b1262
7 changed files with 224 additions and 11 deletions
--- a/src/Makefile.am
+++ b/src/Makefile.am
@@ -101,6 +101,7 @@ ACTIONS = \
 	actions/set_uid.cc \
 	actions/set_var.cc \
 	actions/status.cc \
+	actions/skip.cc \
 	actions/skip_after.cc \
 	actions/tag.cc \
 	actions/transformations/base64_decode.cc \
--- a/src/actions/skip.cc
+++ b/src/actions/skip.cc
@@ -0,0 +1,53 @@
+/*
+ * ModSecurity, http://www.modsecurity.org/
+ * Copyright (c) 2015 Trustwave Holdings, Inc. (http://www.trustwave.com/)
+ *
+ * You may not use this file except in compliance with
+ * the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * If any of the files related to licensing are missing or if you have any
+ * other questions related to licensing please contact Trustwave Holdings, Inc.
+ * directly using the email address security@modsecurity.org.
+ *
+ */
+
+#include "actions/skip.h"
+
+#include <iostream>
+#include <string>
+
+#include "actions/action.h"
+#include "modsecurity/transaction.h"
+#include "src/utils.h"
+
+namespace modsecurity {
+namespace actions {
+
+
+bool Skip::init(std::string *error) {
+    try {
+        m_skip_next = std::stoi(m_parser_payload);
+    }  catch (...) {
+        error->assign("Skip: The input \"" + m_parser_payload + "\" is " \
+            "not a number.");
+        return false;
+    }
+    return true;
+}
+
+
+bool Skip::evaluate(Rule *rule, Transaction *transaction) {
+#ifndef NO_LOGS
+    transaction->debug(5, "Skipping the next " + std::to_string(m_skip_next) \
+        + " rules.");
+#endif
+    transaction->m_skip_next = m_skip_next;
+
+    return true;
+}
+
+
+}  // namespace actions
+}  // namespace modsecurity
--- a/src/actions/skip.h
+++ b/src/actions/skip.h
@@ -0,0 +1,46 @@
+/*
+ * ModSecurity, http://www.modsecurity.org/
+ * Copyright (c) 2015 Trustwave Holdings, Inc. (http://www.trustwave.com/)
+ *
+ * You may not use this file except in compliance with
+ * the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * If any of the files related to licensing are missing or if you have any
+ * other questions related to licensing please contact Trustwave Holdings, Inc.
+ * directly using the email address security@modsecurity.org.
+ *
+ */
+
+#include <string>
+
+#include "actions/action.h"
+
+#ifndef SRC_ACTIONS_SKIP_H_
+#define SRC_ACTIONS_SKIP_H_
+
+class Transaction;
+
+namespace modsecurity {
+class Transaction;
+namespace actions {
+
+
+class Skip : public Action {
+ public:
+    explicit Skip(std::string action)
+        : Action(action, RunTimeOnlyIfMatchKind),
+        m_skip_next(0) { }
+
+    bool init(std::string *error) override;
+    bool evaluate(Rule *rule, Transaction *transaction) override;
+
+    int m_skip_next;
+};
+
+
+}  // namespace actions
+}  // namespace modsecurity
+
+#endif  // SRC_ACTIONS_SKIP_H_
--- a/src/parser/seclang-parser.yy
+++ b/src/parser/seclang-parser.yy
@@ -30,6 +30,7 @@ class Driver;
 #include "actions/set_uid.h"
 #include "actions/set_var.h"
 #include "actions/severity.h"
+#include "actions/skip.h"
 #include "actions/skip_after.h"
 #include "actions/msg.h"
 #include "actions/phase.h"
@@ -1087,13 +1088,7 @@ act:
    | ACTION_SKIP
      {
        std::string error;
-        /*
-
-        TODO: skip is not implemented yet.
-
-        $$ = new modsecurity::actions::SkipAfter($1);
-        */
-        $$ = Action::instantiate($1);
+        $$ = new modsecurity::actions::Skip($1);
        if ($$->init(&error) == false) {
            driver.error(@0, error);
            YYERROR;
--- a/src/rules.cc
+++ b/src/rules.cc
@@ -185,9 +185,7 @@ int Rules::evaluate(int phase, Transaction *transaction) {

    for (int i = 0; i < rules.size(); i++) {
        Rule *rule = rules[i];
-        if (transaction->m_marker.empty()) {
-            rule->evaluate(transaction);
-        } else {
+        if (transaction->m_marker.empty() == false) {
            debug(9, "Skipped rule id '" + std::to_string(rule->rule_id) \
                + "' due to a SecMarker: " + transaction->m_marker);
            m_secmarker_skipped++;
@@ -198,6 +196,13 @@ int Rules::evaluate(int phase, Transaction *transaction) {
                transaction->m_marker.clear();
                m_secmarker_skipped = 0;
            }
+        } else if (transaction->m_skip_next > 0) {
+            transaction->m_skip_next--;
+            debug(9, "Skipped rule id '" + std::to_string(rule->rule_id) \
+                + "' due to `skip' action. Still " + \
+                std::to_string(transaction->m_skip_next) + " to be skipped.");
+        } else {
+            rule->evaluate(transaction);
        }
    }
    return 1;