Skip to content

Remotes/trunk #30

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 104 commits into from
Closed

Remotes/trunk #30

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
104 commits
Select commit Hold shift + click to select a range
9d2b456
2.7.x
Jun 8, 2012
51067c2
update CHANGES
Jun 14, 2012
0ed1a1b
Fix loop into getkey
Jun 15, 2012
517abc5
Improve random number generator
Jun 15, 2012
3caaf60
Improve random number generator
Jun 15, 2012
d203549
Improve random number generator
Jun 15, 2012
a958dfd
Fix PRNG code
Jun 15, 2012
8bf46a3
Fix PRNG code and windows compilation errors
Jun 15, 2012
88331d1
Fix windows error compilation
Jun 15, 2012
ab4d5ac
Fix windows error compilation
Jun 15, 2012
ead3682
Add inet_pton for windows
Jun 15, 2012
ad059c9
Add inet_pton for windows
Jun 15, 2012
6223499
Update CHANGES
Jun 15, 2012
5b46e6c
Fix code for windows
Jun 16, 2012
2791e77
Fix code for windows
Jun 16, 2012
89fb402
change release to 2.7.0-rc2
Jun 16, 2012
f896591
Fix warnings
Jun 17, 2012
027ae6e
Fix warnings
Jun 17, 2012
ef64c70
Release 2.7.0-rc2
Jun 22, 2012
9c73ad6
Release 2.7.0-rc2
Jun 22, 2012
2e05500
Fix setting key len for child conf
Jun 22, 2012
d5866ff
Fix pcre version mismatch warning
Jul 3, 2012
67cf78c
Fix replacing targets
Jul 3, 2012
60960a1
Update Reference Manual
Jul 23, 2012
912606f
Avoid double close() for multipart file descriptors
Jul 27, 2012
6b943db
Check for strcasestr
Jul 27, 2012
890a1cf
Remove ctl:ruleUpdateTarget* and add ctl:ruleRemovetarget*
Aug 2, 2012
fdee16d
Init variables
Aug 2, 2012
c4b1206
Fix return msgs
Aug 2, 2012
16376f0
Revert pcre message warning mismatch
Aug 2, 2012
eb7a9ed
MODSEC-326
Aug 7, 2012
ecc2ee8
MODSEC-328
Aug 9, 2012
f624802
Update CHANGES
Aug 9, 2012
429ba6a
Fixing missing code between branches
Aug 9, 2012
bc59300
Add license to standalone/
Aug 14, 2012
a4c68c8
Revert configure.ac. Waiting for the merge
Aug 14, 2012
9d19e7b
Make internal m_strcasestr default
Aug 15, 2012
928ae2a
Fixed unused error_msg in msc_crypt
Aug 16, 2012
a95f337
Fixed check if ip_strv is NULL
Aug 16, 2012
d267142
Fixed check if s->name & value is NULL
Aug 16, 2012
c09d6e5
Fixed some dereferenced
Aug 16, 2012
7f33b00
Fixed some dereferenced pointers
Aug 16, 2012
ecb3907
branch 2.7.x
Sep 10, 2012
09450c2
branch 2.7.x
Sep 25, 2012
db73e14
branch 2.7.x
Sep 25, 2012
6059fc1
Fix MODSEC-333
Sep 25, 2012
1001682
Fix MODSEC-315
Sep 25, 2012
081a0af
Update to release 2.6.8
Sep 25, 2012
20cd5d0
Added unicode mapping directives to recommended file
Sep 26, 2012
031080c
Added unicode mapping directives to recommended file
Sep 26, 2012
4c7ab59
MODSEC-261
Oct 3, 2012
724060a
Reverted SecCookiev0Separator
Oct 3, 2012
9661ac4
MODSEC-261
Oct 4, 2012
10e2eec
MODSEC-336
Oct 5, 2012
88513bd
MODSEC-336
Oct 5, 2012
e6afef5
MODSEC-297
Oct 8, 2012
7de3f1e
MODSEC-297
Oct 8, 2012
80abe0f
MODSEC-226
Oct 8, 2012
513dba2
MODSEC-337
Oct 8, 2012
d7b9ad8
Update Reference Manual and CHANGES
Oct 9, 2012
af53725
Merging rev 2079 with the branch 2.7.x
Oct 14, 2012
ef3fa0b
Added MULTIPART_INVALID_PART flag
Oct 14, 2012
30526c6
Update CHANGES and msc_release.h
Oct 14, 2012
87c47a8
Fix rule 200002
Oct 15, 2012
7dea71b
Update Reference Manual
Oct 15, 2012
79423f9
Minor fix, two functions name change.
Oct 15, 2012
190afbf
Update msc_release.h
Oct 16, 2012
75a5e1d
Updated getkey function
Oct 18, 2012
d3164f8
Fix LibXml2.9.0 issue
Oct 18, 2012
6f13bd1
Removed prng() function and added apr_generate_random_bytes
Oct 18, 2012
6bc9ae2
Removed prng() function and added apr_generate_random_bytes
Oct 18, 2012
bfab039
Update documentation
Oct 18, 2012
ed74a60
Update msc_release.h
Oct 18, 2012
612d9e4
Fix some strange breakline situation in apache24
Oct 19, 2012
9f4bd21
Update CHANGES
Oct 19, 2012
52a535c
Update CHANGES
brenosilva Oct 19, 2012
95211c8
Update CHANGES
brenosilva Oct 19, 2012
3ab2289
Fixed drop action was disabled by mistake for apache2
Oct 19, 2012
d4bd478
Update CHANGES
Oct 19, 2012
14eff84
Update CHANGES
brenosilva Oct 19, 2012
05e3a17
Update CRS info into README.txt
brenosilva Oct 22, 2012
3ef77de
Merging to release 2.7.1
brenosilva Oct 23, 2012
76fc194
Merging with master
brenosilva Oct 25, 2012
3bca8d4
Change names of HMAC feature to HASH
brenosilva Oct 30, 2012
0757a9f
Added -R option to libtool with pcre lib path
brenosilva Oct 30, 2012
5f98d80
Change names of HMAC feature to HASH
brenosilva Oct 30, 2012
208d9d3
Change names of HMAC feature to HASH
brenosilva Oct 30, 2012
428cbcb
Change names of HMAC feature to HASH
brenosilva Oct 30, 2012
9027fbb
Update CHANGES and doc/
brenosilva Oct 31, 2012
f22bca1
Fix error_message type
brenosilva Oct 31, 2012
408f370
Fixed byte conversion issue during logging under zlinux
brenosilva Oct 31, 2012
267bfe6
Minor changes to IIS module
brenosilva Nov 6, 2012
b353bd6
Fixed build on Apache 2.4.
brenosilva Nov 6, 2012
d1c002d
handle invalid escape sequence passed to strmatch operator
brenosilva Nov 9, 2012
179b536
Fixed crash with invalid commands and marked IIS server as non-virtua… …
brenosilva Nov 9, 2012
19d71f7
Update CHANGES
brenosilva Nov 9, 2012
00b22f0
Fixed NGINX compilation issues
brenosilva Nov 9, 2012
91e5f85
fix for issues in ssn_verify such as infinite loop.
brenosilva Nov 13, 2012
bfdb28e
Fix for broken logging of IP client address in some cases.
brenosilva Nov 13, 2012
6e7a065
Resolving conflict.
gwroblew Nov 13, 2012
0e2b07b
Fixed \ handling in Include command on Windows.
brenosilva Nov 14, 2012
fc3e601
Merge remote-tracking branch 'upstream/master' into remotes/trunk
gwroblew Jan 13, 2013
9d62f1f
Merge remote-tracking branch 'upstream/remotes/trunk' into remotes/trunk
gwroblew Jan 16, 2013
f6b9080
IIS version improvements
gwroblew Jan 18, 2013
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
7 changes: 2 additions & 5 deletions apache2/Makefile.win
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -52,21 +52,18 @@ all: $(DLL)

dll: $(DLL)

mod_security2_config.h: mod_security2_config.hw
@type mod_security2_config.hw > modsecurity_config.h

.c.obj:
$(CC) $(CFLAGS) -c $< -Fo$@

.cpp.obj:
$(CC) $(CFLAGS) -c $< -Fo$@

$(DLL): mod_security2_config.h $(OBJS)
$(DLL): $(OBJS)
$(CC) $(CFLAGS) $(LDFLAGS) -LD $(OBJS) -Fe$(DLL) $(LIBS) /link
IF EXIST $(DLL).manifest $(MT) -manifest $(DLL).manifest -outputresource:$(DLL);2

install: $(DLL)
copy /Y $(DLL) $(APACHE)\modules

clean:
del $(OBJS) $(DLL) *.dll *.lib *.pdb *.idb *.ilk *.exp *.res *.rc *.bin mod_security2_config.h *.manifest
del $(OBJS) $(DLL) *.dll *.lib *.pdb *.idb *.ilk *.exp *.res *.rc *.bin *.manifest
1 change: 0 additions & 1 deletion apache2/mod_security2_config.hw
View file
Open in desktop

This file was deleted.

4 changes: 4 additions & 0 deletions apache2/modsecurity_config.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,8 @@
* so this is here to prevent that by removing them.
*/

#ifndef WIN32

/* Undefine all these so there are no conflicts */
#undef PACKAGE
#undef PACKAGE_BUGREPORT
Expand All @@ -22,3 +24,5 @@
#undef PACKAGE_TARNAME
#undef PACKAGE_URL
#undef PACKAGE_VERSION

#endif
2 changes: 1 addition & 1 deletion apache2/msc_release.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -50,7 +50,7 @@

/* Apache Module Defines */
#ifdef VERSION_IIS
#define MODSEC_MODULE_NAME "ModSecurity for IIS (Beta)"
#define MODSEC_MODULE_NAME "ModSecurity for IIS (RC)"
#else
#ifdef VERSION_NGINX
#define MODSEC_MODULE_NAME "ModSecurity for nginx (Beta)"
Expand Down
19 changes: 19 additions & 0 deletions apache2/msc_util.c
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -1206,7 +1206,26 @@ char *log_escape(apr_pool_t *mp, const char *text) {
}

char *log_escape_nq(apr_pool_t *mp, const char *text) {
#ifdef VERSION_IIS
int l = 0;

// this is a workaround for unknown bug that causes 'text' sometimes to lack zero-termination
//
__try
{
l = text ? strlen(text) : 0;
}
__except(EXCEPTION_EXECUTE_HANDLER)
{
l = -1;
}
if(l < 0)
return _log_escape(mp, "BUG: see log_escape_nq()", 24, 0, 0, 0);

return _log_escape(mp, (const unsigned char *)text, l, 0, 0, 0);
#else
return _log_escape(mp, (const unsigned char *)text, text ? strlen(text) : 0, 0, 0, 0);
#endif
}

char *log_escape_ex(apr_pool_t *mp, const char *text, unsigned long int text_length) {
Expand Down
5 changes: 1 addition & 4 deletions iis/Makefile.win
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -57,9 +57,6 @@ all: $(DLL)

dll: $(DLL)

..\apache2\mod_security2_config.h: ..\apache2\mod_security2_config.hw
@type ..\apache2\mod_security2_config.hw > ..\apache2\modsecurity_config.h

$(OBJS1): ..\apache2\$*.c
$(CC) $(CFLAGS) -c ..\apache2\$*.c -Fo$@

Expand All @@ -69,7 +66,7 @@ $(OBJS2): ..\standalone\$*.c
.cpp.obj:
$(CC) $(CFLAGS) -c $< -Fo$@

$(DLL): ..\apache2\mod_security2_config.h $(OBJS1) $(OBJS2) $(OBJS3)
$(DLL): $(OBJS1) $(OBJS2) $(OBJS3)
$(LINK) $(LDFLAGS) $(OBJS1) $(OBJS2) $(OBJS3) $(LIBS)
IF EXIST $(DLL).manifest $(MT) -manifest $(DLL).manifest -outputresource:$(DLL);#1

Expand Down
Loading