From d302b99ec539e64bc3d04295a5b9928aaa11b70f Mon Sep 17 00:00:00 2001 From: Felipe Zimmerle Date: Wed, 5 Sep 2018 15:59:38 -0300 Subject: [PATCH] Adds test case for: #1812 --- Makefile.am | 1 + test/test-cases/regression/issue-1812.json | 51 ++++++++++++++++++++++ 2 files changed, 52 insertions(+) create mode 100644 test/test-cases/regression/issue-1812.json diff --git a/Makefile.am b/Makefile.am index c1c8c1e8..361b7558 100644 --- a/Makefile.am +++ b/Makefile.am @@ -88,6 +88,7 @@ LOG_COMPILER=test/test-suite.sh TESTS= TESTS+=test/test-cases/regression/issue-1591.json TESTS+=test/test-cases/regression/issue-1785.json +TESTS+=test/test-cases/regression/issue-1812.json TESTS+=test/test-cases/regression/variable-RESPONSE_HEADERS.json TESTS+=test/test-cases/regression/config-include.json TESTS+=test/test-cases/regression/variable-WEBSERVER_ERROR_LOG.json diff --git a/test/test-cases/regression/issue-1812.json b/test/test-cases/regression/issue-1812.json new file mode 100644 index 00000000..47c51933 --- /dev/null +++ b/test/test-cases/regression/issue-1812.json @@ -0,0 +1,51 @@ +[ + { + "enabled": 1, + "version_min": 209000, + "version_max": -1, + "title": "Converting £ (%C2%A3) from query string", + "url": "https:\/\/github.com\/SpiderLabs\/ModSecurity\/issues\/1812", + "client": { + "ip": "200.249.12.31", + "port": 2313 + }, + "server": { + "ip": "200.249.12.31", + "port": 80 + }, + "request": { + "headers": { + "Host": "net.tutsplus.com", + "User-Agent": "", + "Accept": "text\/html,application\/xhtml+xml,application\/xml;q=0.9,*\/*;q=0.8", + "Accept-Language": "en-us,en;q=0.5", + "Accept-Encoding": "gzip,deflate", + "Accept-Charset": "ISO-8859-1,utf-8;q=0.7,*;q=0.7", + "Keep-Alive": "300", + "Connection": "keep-alive", + "Cookie": "PHPSESSID=r2t5uvjq435r4q7ib3vtdjq120", + "Pragma": "no-cache", + "Cache-Control": "no-cache" + }, + "uri": "\/test.pl?foo=£&bar=%C2%A3", + "method": "GET", + "http_version": 1.1, + "body": "" + }, + "response": { + "headers": { + "Content-Type": "text\/xml; charset=utf-8\n\r", + "Content-Length": "length\n\r" + } + }, + "expected": { + "debug_log": "\/test.pl\\?foo=\\\\xc2\\\\xa3&bar=\\\\xc2\\\\xa3" + }, + "rules": [ + "SecRuleEngine On", + "SecRule ARGS:foo \"^$\" \"id:'900017',phase:1,t:none,deny,nolog,msg:'foo = bar'\"", + "SecRule ARGS:bar \"^$\" \"id:'900018',phase:1,t:none,deny,nolog,msg:'foo = bar'\"", + "SecRule REQUEST_URI \"@validatebyterange 1-255\" \"id:'900019',phase:1,t:none,deny,nolog,msg:'foo = bar'\"" + ] + } +]