github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-17 22:56:18 +03:00
Code Issues Packages Projects Releases Wiki Activity
2,622 Commits 55 Branches 109 Tags
Commit Graph

93 Commits

Author SHA1 Message Date
Andrei Belov
ae8698d8cf
Makes JIT support in PCRE to be optional 
In particular, this change allows to build libmodsecurity on some old
but still supported systems such as RHEL/CentOS 6.
 2016-09-26 14:50:31 -03:00
Felipe Zimmerle
4cf6c714ac
Cosmetics: Fix coding style 2016-07-12 21:59:17 -03:00
Felipe Zimmerle
4078677b7f
Cosmetic changes: applies changes suggested by static analysis 2016-07-12 00:46:12 -03:00
Alexey Zelkin
647019a804
Use internal PCRE based implementation of regular expressions instead of std C++ regex library. 
C++ regex library proven to be unusable for gcc 4.8 and earlier version, so
reimplement code using PCRE library in order to build workable version of
unit_test executable for CentOS 7, RHEL 7, Ubuntu 14 and SUSE Linux 12.
 2016-06-16 13:50:50 -03:00
Felipe Zimmerle
21777aec41
Fix invalid memory read in msc_tree 2016-06-16 13:31:31 -03:00
Felipe Zimmerle
a4c7d534f2
Fix invalid memory write on base64 forgiven decode 2016-06-16 12:26:05 -03:00
Felipe Zimmerle
9919026620
Fixes regarding memory management 
Fixes assorted issues identified by valgrind.
 2016-06-16 00:03:57 -03:00
Felipe Zimmerle
967c8c90f2 Fixed minor behavior on the trasnformations and added sha1-mbedtls 2016-05-30 16:54:13 -03:00
Felipe Zimmerle
7ccf54d330 Adds md5 transformation 
Replaced the old md5 implementation by the mbetls one.
 2016-05-24 21:28:19 -03:00
Felipe Zimmerle
bf4a9d7633 Adds support to base64DecodeExt transformation 
More info on #964
 2016-05-24 21:28:19 -03:00
Felipe Zimmerle
bb5cbc969f Fix return value of Utilis::Base64::decode 2016-05-24 10:11:15 -03:00
Felipe Zimmerle
a3ae686f25 Adds base64 support via mbedtls 
This is inspered in the work done at: #1123
 2016-05-23 18:27:28 -03:00
Felipe Zimmerle
85d8b8e9b7 Fixed typo error in the HTTPS client implementation 
It is ModSecurity not _modesecurity_. Details in issue #1113
 2016-04-04 13:35:19 -03:00
Felipe Zimmerle
8d052853a8 Adds support to https audit log output 
This functionality was built for test only.
 2016-04-04 13:29:15 -03:00
Felipe Zimmerle
a51e707517 Renames class Assay to Transaction 2016-01-13 15:57:00 -03:00
Felipe Zimmerle
42ce0475b2 Coding style: changes the namespace in the comments 2015-12-10 13:20:32 -03:00
Felipe Zimmerle
467c977afc Fix compilation without the GeoIP headers installed on the system 2015-12-01 15:27:14 -03:00
Felipe Zimmerle
b5a43871e6 Changes library namespace from ModSecurity to modsecurity 2015-12-01 10:55:59 -03:00
Felipe Zimmerle
09a958544d Makes @geoLookup optional depending on the availability of libGeoIP 2015-11-20 11:09:05 -03:00
Felipe Zimmerle
93031d93d0 Cosmetics: Fix coding style issues 2015-10-27 10:21:14 -03:00
Felipe Zimmerle
743fb651da Adds partially support to t:sha1 transformation 2015-10-23 10:53:54 -03:00
Felipe Zimmerle
59af8ab842 Cosmetics: fixed the coding style 2015-10-20 16:05:50 -03:00
Felipe Zimmerle
e7803ebd0f Fix bug on regexp matched results 2015-10-19 23:05:05 -03:00
Felipe Zimmerle
c800214e6d Fix pcre_exec matched string 2015-10-16 16:15:39 -03:00
Felipe Zimmerle
b497091017 Cosmetics: Fix coding style 2015-09-28 16:32:59 -03:00
Felipe Zimmerle
076a02951c Huge performance improvement: passing variables as pointers avoiding copies 2015-09-18 20:21:12 -03:00
Felipe Zimmerle
2451bf05d7 Using pcre (with JIT) instead of pcrecpp 2015-09-17 19:26:44 -03:00
Felipe Zimmerle
1065e297b2 Fix several minor issues on the seclang grammar 2015-08-22 11:06:28 -03:00
Felipe Zimmerle
d5fe21ce3c Code cosmetics: reduce the amount of cppcheck warnings 2015-08-12 22:40:26 -03:00
Felipe Zimmerle
577736abb1 Code cosmetics: Fix the coding style. 2015-08-11 13:13:28 -03:00
Felipe Zimmerle
fb161a69a9 Removes some warnings by adding missing returns 2015-08-11 13:13:16 -03:00
Felipe Zimmerle
4f47651a6f Adds variable TX and action "capture". 2015-08-05 10:07:47 -03:00
Felipe Zimmerle
d4dd9c86d4 Accepts Suricata format on @pm operator 2015-08-04 14:26:37 -03:00
Felipe Zimmerle
95efb99a8c Adds support to the @pm operator 2015-08-04 14:25:48 -03:00
Felipe Zimmerle
774d897351 Adds support to the operator @ipMatchFromFile and @ipMatchF 2015-08-03 17:21:41 -03:00
Felipe Zimmerle
8575c10781 unit-test: Fix the geoip debug code 2015-08-03 13:45:13 -03:00
Felipe Zimmerle
17f88f5821 Using libpcre instead of c++11 regex 2015-08-03 13:45:09 -03:00
Felipe Zimmerle
f811ec6518 Adds support to @ipMatch operator 2015-07-30 20:58:19 -03:00
Felipe Zimmerle
e016b72a8e Handles better the memory utilization 
- Added reference counts to Rule and AuditLog;
- Some memory leaks were removed, including GeoLookup;
- Deal better with parser errors;
- Overriding the AutlogLogWritter destructor.
 2015-07-26 22:51:57 -03:00
Felipe Zimmerle
76b34af357 Adds support to load remote rules 2015-07-23 14:40:56 -03:00
Felipe Zimmerle
e189055ec3 Adds support to GeoIP operator and variables. 2015-07-20 21:05:14 -03:00
Felipe Zimmerle
96a777a5cf Adds initial serial audit logging support 
Serial logging following the format used on ModSecurity 2.9.
 2015-07-14 00:33:50 -03:00
Felipe Zimmerle
2109910848 Adds support to the server ID generation 
The server ID is a sha-1 identifier generated from the mac address of the first
ethernet device plus the server name. The process is the same used by
ModSecurity 2.9
 2015-07-10 18:37:48 -03:00