github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-09-30 19:47:47 +03:00
Code Issues Packages Projects Releases Wiki Activity
Files
fd8f26f76381010b7336f4babd576600a4d7b6e2
ModSecurity/src/operators/contains_word.cc
Felipe Zimmerle 95cb4c56ab Very first commit: libmodsecurity 
Check the README.md file for further information about the libmodsecurity.
2015-06-26 14:35:15 -03:00

66 lines
1.6 KiB
C++
Raw Blame History

/**
* ModSecurity, http://www.modsecurity.org/
* Copyright (c) 2015 Trustwave Holdings, Inc. (http://www.trustwave.com/)
*
* You may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* If any of the files related to licensing are missing or if you have any
* other questions related to licensing please contact Trustwave Holdings, Inc.
* directly using the email address security@modsecurity.org.
*
*/
#include "operators/contains_word.h"
#include <string>
#include <regex>
#include "operators/operator.h"
namespace ModSecurity {
namespace operators {
bool ContainsWord::evaluate(Assay *assay,
std::string input) {
/**
* @todo Implement the operator ContainsWord in a performative way.
*/
// FIXME: This is odd logic and should be removed in a future version
if (this->param == "") {
return 1;
}
// If our length is too long we will never match
if (this->param.length() > input.length()) {
return 0;
}
// If they are exact matches shortcut
if (this->param == input) {
return 1;
}
std::regex r("\\b" + this->param + "\\b");
std::smatch m;
if (std::regex_search(input, m, r)) {
// this won't find anything because 'spoons' is not
// the word you're searching for
return 1;
}
return 0;
}
ContainsWord::ContainsWord(std::string op,
std::string param, bool negation)
: Operator() {
this->op = op;
this->param = param;
}
} // namespace operators
} // namespace ModSecurity
Reference in New Issue View Git Blame Copy Permalink