mirror of
https://github.com/openappsec/attachment.git
synced 2025-12-31 05:39:07 +03:00
f778b851c1
* fix large response body * fix large response body * fix response body * fix response body * fix response body * fix response body * fix response body * fix response body * fix response body * fix response body * fix response body * fix response body * fix response body * fix response body * fix response body * fix response body * fix response body * fix response body * fix specific path * return correct path * fresh start * fix send_bodu in lua_attachment_wrapper.c * change branch * add timeout * add timeout * remove the header filter * try chunk hashing * proper fini session * add more check * try setting last chunk * remove finilizing session * return to basic version * proper fini of session data * add some check for internal traffic * envoy functionality... * proper fini session * proper fini session * fini session on accept also * for testing change the log level * remove fini session from header * remove fini session from header * remove fini session from header * remove inpect check * fix wrong close statement * correct inspection_complete handling * fix oom * fix oom * fix oom * fix oom * fix oom * fix init attachment * nano_ffi free memoty * GC implementation * optimize * clean * increase timeout * increase timeout * using is_session_fini, the commit before this one is working ... * returning to last working version ... * just for testing * fix block page * fix block page * fix block page * fix block page * fix block page * fix fini session * add collect(stop) * return to default * fix oom caused by using freed values * fix oom caused by using freed values * add large response body handling * implement timeout * implement timeout * remove GC * testing * add end_inspection * remove comments * ngx.arg[1] = nil * Skip inspection for health checks and internal requests * add new flag for bypass inspections * move ngx.arg[1] to the beginning * try without coolectgarbage * remove internal traffic check * remove internal traffic check * I don't know * I don't know * try add chunk assignment * check why data session is nil in header but availablein body * remove end inspection * remove logs * ctx.timeout_passthrough * remove ctx.timeout_passthrough * add GC * remove the logs * return the logs * last modification.... * add logs * revert to working version * remove stupid cat * fini_session only in log phase * last try * remove processed_requests * remove unused variable * remove nano_ffi changes * add debuging message for testing * get worker workers inside the init_attachmetn * test now * move check * add accept * add accept * remove endinspection * fix typo * get req body in chunks * test body chunks: * add timeout in req body * fixing * add logs for test * fix accept verdic in body_filter * add more logs * fix ngx time * add more logs * add getter functions for timeout * add more logs * ready for review * use right content-length * add missing content-length update * try content-length nil * add nil to header filter * revert shcema changes * try exit in header filter * try content-length nil * remove the test * refuse connection when prevnet occures in response body --------- Co-authored-by: wiaamm <wiaamm@checkpoint.com>
59 lines
2.2 KiB
Lua
Executable File
59 lines
2.2 KiB
Lua
Executable File
package = "open-appsec-waf-kong-plugin"
|
|
version = "1.0.0-1"
|
|
|
|
source = {
|
|
url = "git://github.com/openappsec/attachment.git",
|
|
branch = "fix-kong-response-body"
|
|
}
|
|
|
|
description = {
|
|
summary = "Kong plugin for scanning headers",
|
|
detailed = [[
|
|
A Kong plugin that scans HTTP request headers using Nano Attachment.
|
|
]],
|
|
homepage = "https://github.com/openappsec/attachment",
|
|
license = "Apache"
|
|
}
|
|
|
|
dependencies = {
|
|
"lua >= 2.1"
|
|
}
|
|
|
|
build = {
|
|
type = "builtin",
|
|
|
|
modules = {
|
|
["kong.plugins.open-appsec-waf-kong-plugin.handler"] = "attachments/kong/plugins/open-appsec-waf-kong-plugin/handler.lua",
|
|
["kong.plugins.open-appsec-waf-kong-plugin.nano_ffi"] = "attachments/kong/plugins/open-appsec-waf-kong-plugin/nano_ffi.lua",
|
|
["kong.plugins.open-appsec-waf-kong-plugin.schema"] = "attachments/kong/plugins/open-appsec-waf-kong-plugin/schema.lua",
|
|
["lua_attachment_wrapper"] = {
|
|
sources = {
|
|
"attachments/kong/plugins/open-appsec-waf-kong-plugin/lua_attachment_wrapper.c",
|
|
"attachments/nano_attachment/nano_attachment.c",
|
|
"attachments/nano_attachment/nano_attachment_io.c",
|
|
"attachments/nano_attachment/nano_attachment_metric.c",
|
|
"attachments/nano_attachment/nano_attachment_sender.c",
|
|
"attachments/nano_attachment/nano_attachment_sender_thread.c",
|
|
"attachments/nano_attachment/nano_attachment_thread.c",
|
|
"attachments/nano_attachment/nano_compression.c",
|
|
"attachments/nano_attachment/nano_configuration.c",
|
|
"attachments/nano_attachment/nano_initializer.c",
|
|
"attachments/nano_attachment/nano_utils.c",
|
|
"attachments/nano_attachment/nano_attachment_util/nano_attachment_util.cc",
|
|
"core/attachments/http_configuration/http_configuration.cc",
|
|
"core/compression/compression_utils.cc",
|
|
"core/shmem_ipc_2/shared_ring_queue.c",
|
|
"core/shmem_ipc_2/shmem_ipc.c"
|
|
},
|
|
incdirs = {
|
|
"core/include/attachments/",
|
|
"attachments/nano_attachment/",
|
|
"external/"
|
|
},
|
|
defines = { "_GNU_SOURCE", "ZLIB_CONST" },
|
|
libraries = { "pthread", "z", "rt", "stdc++" },
|
|
ldflags = { "-static-libstdc++", "-static-libgcc" }
|
|
}
|
|
}
|
|
}
|