github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-14 13:56:01 +03:00
Code Issues Packages Projects Releases Wiki Activity
2,051 Commits 55 Branches 109 Tags
Commit Graph

182 Commits

Author SHA1 Message Date
Marc Stern
a01b9b527e minor fixes 2024-04-10 14:04:34 +02:00
Marc Stern
5f938536a0 fixed a NULL check 2024-04-08 11:01:29 +02:00
Marc Stern
649aea7288
Merge branch 'v2/master' into v2/mst/nullcheck2 2024-04-04 16:08:59 +02:00
Marc Stern
518b8ba6ab more null pointer checks 2024-04-04 16:01:51 +02:00
Marc Stern
538ffa6baa Added some null pointer checks. 
Added a design doc.
 2024-04-04 15:45:55 +02:00
Marc Stern
91da5872c1 Many null pointer checks 2024-02-20 13:15:52 +01:00
Ervin Hegedus
5cbd7e6e6c
Revert "Double memory allocation" 2024-02-07 23:09:59 +01:00
Ervin Hegedus
7eabbb2b72
Revert " Fix for DEBUG_CONF compile flag" 2024-02-07 23:09:34 +01:00
Ervin Hegedus
7828c63205
Revert "Fixed 2 memory leaks" 2024-02-07 23:09:05 +01:00
Ervin Hegedus
d778fbf8b7
Revert "Ignore (consistently) empty actions" 2024-02-07 23:06:16 +01:00
Ervin Hegedus
43cb827084
Revert "ctl:ruleRemoveByTag isn't executed if no rule id is present in the rule" 2024-02-07 23:05:28 +01:00
Ervin Hegedus
c3688dd8c4
Revert "Add context info to error message" 2024-02-07 23:04:47 +01:00
Marc Stern
17b76b9fa9
Merge pull request #2997 from marcstern/v2/mst/target_log 
Add context info to error message
 2024-02-01 11:20:43 +01:00
Marc Stern
710cc994b9
Merge pull request #3012 from marcstern/v2/mst/except_noid 
ctl:ruleRemoveByTag isn't executed if no rule id is present in the rule
 2024-02-01 11:18:54 +01:00
Marc Stern
aac0bee2ea
Merge pull request #3003 from marcstern/v2/mst/empty_action 
Ignore (consistently) empty actions
 2024-02-01 11:18:27 +01:00
Marc Stern
b354c71403
Merge pull request #2960 from marcstern/v2/mst/mem_leak1 
Fixed 2 memory leaks
 2024-02-01 10:53:58 +01:00
Marc Stern
8f3ef37ed8
Merge pull request #2963 from marcstern/v2/mst/debug_conf 
Fix for DEBUG_CONF compile flag
 2024-02-01 10:53:09 +01:00
Marc Stern
bacb0f3d76 Revert "avoid useless loops" 
This reverts commit 9977870bc57e6cfe2a2bdfb64456abafeb1c5f2d.
 2023-11-02 13:30:16 +01:00
Marc Stern
a6d3397b51 removeByTag wasn't executed if no rule id is present in the rule 2023-11-02 13:21:39 +01:00
Marc Stern
285f7efdfa avoid useless loops 2023-10-31 13:01:19 +01:00
Marc Stern
9977870bc5 avoid useless loops 2023-10-31 12:55:07 +01:00
Marc Stern
6a24bc47d5 Ignore empty action instead of storing it 2023-10-26 09:22:22 +02:00
Marc Stern
5c9d8cd776 Add context info to error message 2023-10-17 14:06:56 +02:00
Marc Stern
18efc80bdd Double memory allocation: 
'current_targets' is allocated in ruleset->mp.
'rule->p1' is a copy of current_targets, but we strdup it in the same memory pool as 'current_targets'.
So, simply assign 'current_targets' to 'rule->p1'.
 2023-08-21 10:30:36 +02:00
Marc Stern
eab780e992
typo 2023-08-21 10:01:46 +02:00
Marc Stern
82c69ccf49 Fix for DEBUG_CONF compile flag 2023-08-16 08:50:09 +02:00
Marc Stern
541707c0aa removed useless code 2023-08-16 08:28:12 +02:00
Marc Stern
25a60e259a Fixed 2 memory leaks 2023-08-16 08:25:50 +02:00
Erki Aring
b5130acb45 Move APLOG_USE_MODULE out of modsecurity.h 2022-11-15 17:31:18 +02:00
Victor Hora
96756533ba Code cosmetics: Minor change to match commit 2a42cc 2018-09-22 20:40:30 -04:00
Victor Hora
aab128f810 Code cosmetics: checks if actionset is not null before use it 2018-09-22 20:21:23 -04:00
Daniel Stelter-Gliese
72f632e9b6
Avoid additional operator invokation if last transform of a multimatch doesn't modify the input 
Fixes #1086
 2017-05-22 15:13:54 -03:00
Felipe Zimmerle
caadf97524
Cosmetics: Fix 0x0bdda1 indentation issues 2017-05-03 09:34:47 -03:00
Marc Stern
51f312736a
rule id is not logged in case rule has no msg 2017-05-03 09:20:32 -03:00
Felipe Zimmerle
45b7706f1f
Adds sanity check before print action message in the logs 
This is a sanity check on top of #1379
 2017-04-11 10:04:19 -03:00
Marc Stern
99eb07d944
Fix missing rule id in log See https://github.com/SpiderLabs/ModSecurity/issues/391 2017-04-10 12:28:38 -03:00
Marc Stern
c1c91e24cd
{dis|en}able-filename-logging: Option to disable logging of filename in audit log [Issue #1065 - Marc Stern] 2017-04-07 10:55:08 -03:00
Mario D. Santana
258e5545a2 Perform the intercept_action as well as the disruptive actions. 2016-01-06 08:23:52 -03:00
David Andrews
27dd513ab6 Flip allocations that happen during initialization (typically) over to use non-global apr memory pools. 2014-03-03 08:00:53 -08:00
Jiri Kukacka
62a6f228f8 Fixes for Parfait errors - mostly unhandled NULL pointer dereference and data type mismatch 2014-02-28 17:05:41 -08:00
Felipe Zimmerle
063dd640e5 Adds internal error messages while parsing the configutarion 
Before this patch, if something went wrong while loading the configuration in
memory, not in terms of syntax but other run time factors such as memory
allocation, the webserver will refuse to start and no further message was given
to the user. This patch adds "Internal Error messages" that are intend to let
the user know more information about the problem that he/she is facing.
 2014-02-24 03:56:17 -08:00
Breno Silva
eb95384577 Fixed: SecPerfRuleTimes storing unwanted rules 2013-04-23 18:52:20 -04:00
Breno Silva
aa18ec7f45 Updated copyright dates 2013-04-19 03:20:46 -04:00
Breno Silva
a5c1492049 [MODSEC-386] Added error msg for update target by id function 2013-03-19 06:19:01 -04:00
Breno Silva
5fefb6a2cf MODSEC-58 2013-03-01 07:58:12 -04:00
brenosilva
18f98e755b Fix MODSEC-315 2012-09-25 13:51:41 +00:00
brenosilva
e821aaf048 Fix MODSEC-333 2012-09-25 13:46:53 +00:00
brenosilva
bf5cd6211c MODSEC-326 2012-08-07 17:42:59 +00:00
brenosilva
5f6985183e Init variables 2012-08-02 18:27:14 +00:00
brenosilva
592ec392d1 Remove ctl:ruleUpdateTarget* and add ctl:ruleRemovetarget* 2012-08-02 18:04:53 +00:00