ModSecurity

mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-14 13:56:01 +03:00

Author	SHA1	Message	Date
Felipe Zimmerle	210e72aa21	Consideres under quote variable while loading the rules	2017-10-06 20:25:20 +00:00
Felipe Zimmerle	9069a453e5	Revert "Treating ARGS_NAMES as an array instead of scalar" This reverts commit 1d3c4c670db1bb475c83cd2f24455bb5bd6ee6a4.	2017-08-24 00:10:42 -03:00
Felipe Zimmerle	1d3c4c670d	Treating ARGS_NAMES as an array instead of scalar Both value and key are the same.	2017-08-22 18:26:56 -03:00
Felipe Zimmerle	5e76d85636	Update test cases to include test propesed at #1523	2017-08-20 20:08:17 -03:00
asterite	58872e7eda	adds a test for validateByteRange with bytes > 127	2017-08-20 20:07:54 -03:00
Lasse Karstensen	7665d96a13	Improve action-allow test titles	2017-08-20 20:00:28 -03:00
Lasse Karstensen	fc06915cc6	Extend RESPONSE_BODY test case.	2017-08-20 20:00:07 -03:00
Felipe Zimmerle	31655e2c9b	Updates secrules-language-tests	2017-08-20 19:57:58 -03:00
asterite	b8789ab9f4	add a test for negated implicit @rx operator	2017-08-20 19:39:18 -03:00
Felipe Zimmerle	9d4ed52518	test: Counts the disabled tests as skiped on the test summary	2017-08-20 19:33:53 -03:00
Lasse Karstensen	d66f0c7e0d	Add support for disabled test cases. This commit adds support for skipping test cases that have enabled=0 in their JSON body. A separate counter is kept and reported in the final non-automake output, detailing disabled as a separate field. Ref: #1513	2017-08-20 19:28:26 -03:00
Lasse Karstensen	ab14b7c083	Add support for disabling test cases. The JSON test case format has an "enabled" key that is not currently being honored. This trivial patch adds support for skipping test cases that has enabled set to 0.	2017-08-20 19:28:21 -03:00
Felipe Zimmerle	fff5a57656	Changes auditlog type to serial by default	2017-08-20 17:32:44 -03:00
Felipe Zimmerle	b4051246b1	Adds support to SecResponseBodyMimeTypesClear	2017-08-16 22:21:03 -03:00
Felipe Zimmerle	8c66a1b4c2	Adds support to double quotes on debug logs conf	2017-08-15 14:20:39 -03:00
Felipe Zimmerle	56baef5f1f	Fix test case as consequence of the changes at #1514	2017-07-28 22:24:21 -03:00
Felipe Zimmerle	0242646610	Adds test case for the ctl:ruleEngine action	2017-07-27 22:10:58 -03:00
Felipe Zimmerle	337216fd87	fix: remove target by {id,tag} are now considering collections Fix issue #1409	2017-07-25 09:19:21 -03:00
Felipe Zimmerle	e14dc602e5	Adds support to SecRuleUpdateTargetById	2017-07-04 13:13:13 -07:00
Felipe Zimmerle	9ce7d022c2	Fix memory leak in the regression utility	2017-07-04 11:01:11 -07:00
Felipe Zimmerle	52c5631ae7	Adds test case to UpdateTargetByTag	2017-07-04 11:00:11 -07:00
Felipe Zimmerle	74bb022a28	Updates unit test cases	2017-06-28 00:45:12 -03:00
Felipe Zimmerle	787b388f89	Yet another update on the unit test repository	2017-06-28 00:11:35 -03:00
Felipe Zimmerle	ddac1fb6f6	Upgrades the unit test repo to the most recent version This update includes the verify ssn test case	2017-06-27 23:57:49 -03:00
Felipe Zimmerle	9cb3f23b50	Adds support to setrsc action	2017-06-09 16:59:04 -03:00
Felipe Zimmerle	c97db2f361	Adds verbose message when a resource is not found. Fix #1309	2017-05-02 13:39:37 -03:00
Felipe Zimmerle	6421ff087a	Forces disruptive to be first-rule-only ModSecurity version 3 is capable to handle disruptive actions in different rules from the chain. However, lets get it working in the same fashion that we have in version 2.	2017-04-24 21:06:35 -03:00
Felipe Zimmerle	e2bbe9858f	XML Parser: removes unnecessary message from debug logs Fix #44	2017-04-05 09:40:05 -03:00
Felipe Zimmerle	e2af60e765	Expands log_cb to share ruleMessage structure instead text Text version still available and it is the default options	2017-03-06 15:02:04 -03:00
Felipe Zimmerle	027d50b76b	Adds first version of `processContentOffset' This commit also includes an example application on how to use the `processContentOffset' method.	2017-03-06 15:02:02 -03:00
Felipe Zimmerle	616cf84c31	Adds check-static to travis.yaml	2017-03-06 15:02:02 -03:00
Felipe Zimmerle	4ad3574cf2	Adds offset regression tests and assorted fixes on var's offsets	2017-03-06 15:02:02 -03:00
Felipe Zimmerle	795994bb0e	Adds support to error_log in the regression tests	2017-03-06 15:02:02 -03:00
Felipe Zimmerle	44121bdee3	Updates secrules-language-tests	2017-03-06 15:02:01 -03:00
Felipe Zimmerle	158ec7b2e1	Adds support to resources on the unit tests	2017-03-06 15:02:01 -03:00
Felipe Zimmerle	c06daba398	Adds support for curl resource on the regression tests	2017-03-06 15:02:01 -03:00
Felipe Zimmerle	8d0583eda4	Increments the cppcheck suppression list	2017-03-06 15:02:00 -03:00
Felipe Zimmerle	f40a6edec8	Adds valgrind suppression list	2017-03-06 15:02:00 -03:00
Felipe Zimmerle	f2d149fc5f	Extends the direct access model to other collections	2017-03-06 15:02:00 -03:00
Felipe Zimmerle	c1f11ab4e5	Cosmetics: assorted fixes on the coding style	2017-03-06 15:01:59 -03:00
Felipe Zimmerle	a88dc8efa9	Changes the check script to detect segfaults	2017-03-06 15:01:59 -03:00
Felipe Zimmerle	6abbb7e91e	Fix regular expression test case and updates the test list Repoted on #1295	2017-03-06 15:01:52 -03:00
Felipe Zimmerle	839ac62585	Fix memory leaks in parser failures	2017-03-06 15:01:51 -03:00
Felipe Zimmerle	a6f07f621d	Makes the lexical errors a little bit more verbose	2017-03-06 15:01:51 -03:00
Felipe Zimmerle	7927ddda91	Renames rules to m_rules in RulesProperties	2017-03-06 15:01:50 -03:00
Felipe Zimmerle	59114dd598	Refactoring on the operators parsers (2/2) This is the first step towards remove the memory leaks in the parser	2017-03-06 15:01:50 -03:00
Felipe Zimmerle	b12cc91289	Adds valgrind suppression regarding rules load	2016-12-28 20:01:35 -03:00
Felipe Zimmerle	8bd5f03a3d	Fix memory leak on the regression tests	2016-12-28 20:01:12 -03:00
Felipe Zimmerle	a7f465cf3a	Avoids string copy by working with pointers while resolving variables	2016-12-28 20:00:14 -03:00
Felipe Zimmerle	7834cf857b	Fix memory leak on the benchmark utility	2016-12-28 19:57:32 -03:00

... 3 4 5 6 7 ...

532 Commits