Allow all phase 5 rules to run. See %425.

2026-01-10 02:04:36 +03:00 · 2007-12-15 00:58:13 +00:00
parent d06aec8361
commit d6f492064a
2 changed files with 4 additions and 1 deletions
--- a/3
+++ b/3
@@ -1,6 +1,9 @@
 14 Dec 2007 - 2.1.5-rc1
 -----------------------

+ * Fixed issue where only the first phase 5 rule would run when the
+   request was intercepted in an earlier phase.
+
 * Stricter configuration parsing.  Disruptive actions, meta actions and
   phases are no longer allowed in a chained rule.

--- a/apache2/re.c
+++ b/apache2/re.c
@@ -731,7 +731,7 @@ apr_status_t msre_ruleset_process_phase(msre_ruleset *ruleset, modsec_rec *msr)
        }
        else
        if (rc == RULE_MATCH) {
-            if (msr->was_intercepted) {
+            if ((msr->phase == msr->intercept_phase) && msr->was_intercepted) {
                /* If the transaction was intercepted we will
                 * go back. Do note that we are relying on the
                 * rule to know if it is a part of a chain and