Adds support to SecRuleScript directive

2025-09-29 19:24:29 +03:00 · 2017-11-05 18:42:46 -03:00
parent cb3363c7d5
commit e52bd7d635
6 changed files with 122 additions and 2 deletions
--- a/src/rule_script.cc
+++ b/src/rule_script.cc
@@ -0,0 +1,46 @@
+/*
+ * ModSecurity, http://www.modsecurity.org/
+ * Copyright (c) 2015 Trustwave Holdings, Inc. (http://www.trustwave.com/)
+ *
+ * You may not use this file except in compliance with
+ * the License.  You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * If any of the files related to licensing are missing or if you have any
+ * other questions related to licensing please contact Trustwave Holdings, Inc.
+ * directly using the email address security@modsecurity.org.
+ *
+ */
+
+#include "src/rule_script.h"
+
+
+namespace modsecurity {
+
+bool RuleScript::init(std::string *err) {
+    return m_lua.load(m_name, err);
+}
+
+bool RuleScript::evaluate(Transaction *trans,
+    std::shared_ptr<RuleMessage> ruleMessage) {
+    trans->debug(4, " Executing script: " + m_name + ".");
+    bool containsDisruptive = false;
+
+    if (ruleMessage == NULL) {
+        ruleMessage = std::shared_ptr<RuleMessage>(
+            new RuleMessage(this, trans));
+    }
+
+    executeActionsIndependentOfChainedRuleResult(trans,
+        &containsDisruptive, ruleMessage);
+
+    bool ret = m_lua.run(trans);
+    if (ret) {
+        executeActionsAfterFullMatch(trans, containsDisruptive, ruleMessage);
+    }
+
+    return ret;
+}
+
+}  // namespace modsecurity