205dac0e8 Change release version to v3.0.9
49c056126 CHANGES: wording update
dbe107e28 Update some copyright notices
7b1cf0e99 Merge pull request #2890 from martinhsv/v3/master
264dd4831 Fix: possible segfault on reload if duplicate ip+CIDR in ip match list
49281b6c0 Merge pull request #2886 from martinhsv/v3/master
db84d8cf7 Add some member varialbe inits in Transaction class
1feaa7d24 CHANGES entry for previous PR
ca7040f71 Merge pull request #2876 from martinhsv/v3/master
5f632a5ed Minor updates to v3 issue template
3311dda0e Debug log: enhance message for SecRequestBodyNoFilesLimit
55d6aa94e Resolve memory leak (bison-generated position.filename)
ea80d3166 Merge pull request #2864 from martinhsv/v3/master
ec1232a69 Support equals sign in XPath expressions
dabf79eec CHANGES entry for previous PR
860b1183a Merge pull request #2854 from airween/v3/logescape
6dd00be22 Refactorized multiple prototypes
d63d8849a Remove previously removed fn proto from header
cb2df476b Merge branch 'v3/master' of https://github.com/SpiderLabs/ModSecurity into v3/logescape
105c5909a Add more fields to encode filter: rev, ver and tag
c7306d174 Extend utils::string::toHexIfNeeded() to encode '"' and '\' characters optionally
62ec4edc4 Regression tests: remove dependency on modsecurity.org
69545eade Remove some no-longer-used parser definitions
3b7ca3e44 Escape log field 'data' value
5dfc0a256 minor refactoring and CHANGES update
fb01ad94e Minor change to satisfy cppcheck
f037bd268 Merge pull request #2791 from wfjsw/feature/pcre2-jit
54ff1ea53 init m_pcje in the constructor of verify_cc.cc
37d3a20da fix
12e6e325d Merge pull request #2839 from martinhsv/v3/master
0c0e4a25c Merge branch 'v3/master' into v3/master
503804beb Add CHANGES entry for previous PR
e56f53b71 Merge pull request #2596 from ffontaine/v3/master
af860e2ee Support comments in ipMatchFromFile file via '#' token
1550e3017 add fallback for JIT_STACKLIMIT
07514f977 Add CHANGES entry for previous PR
40f7a5067 Merge pull request #2831 from airween/v3/filestmpcontentfix
aa44c7b72 Fix FILES_TMP_CONTENT collection key naming mechanism
398e17423 Add CHANGES entry for previous PR
700a9e9ff Merge pull request #2806 from hughmcmaster/as_help_string
933daee34 Merge pull request #2828 from martinhsv/v3/master
791964a0e During configure, do not check for pcre if pcre2 specified
f05f32230 Use AS_HELP_STRING instead of the obsolete AC_HELP_STRING macro
de01b0273 Add CHANGES entry for previous commmit
ec31e04a3 Merge pull request #2714 from hughmcmaster/libxml2
d76c52775 build/libxml.m4: Check for libxml2 via pkg-config then xml2-config
82f75dc0c Remove now-unneeded cppcheck suppression
47fe75de3 Fix tests to match previous typo fix
222e09ea0 Fix typo in debug log text
5d2b86c1b Merge pull request #2801 from martinhsv/v3/master
e9a7ba4a6 Fix two rule-reload memory leak issues
17f3bb0b3 Merge pull request #2800 from martinhsv/v3/master
53cf6eb6b Correct whitespace handling for Include directive
0840a29c3 Advance bison version to v3.7.6
8f06f9bd3 CHANGES: Preparing for next version
996c7e1e1 Change release version to v3.0.8
de3a9b5aa Merge pull request #2796 from martinhsv/v3/master
622eb9e6c Adjust parser activation rules in modsecurity.conf-recommended
d6c10885e Merge pull request #2795 from martinhsv/v3/master
fa6e41857 Multipart parsing fixes and new MULTIPART_PART_HEADERS collection
651897346 remove jit stack
648cad380 Address some cppcheck complaints
b0b459d3a Merge pull request #2707 from liudongmiao/v3-example
36a2231a7 Add CHANGES entry for previous commit
f923838e4 Merge pull request #2761 from GetPageSpeed/v3/master
af27018de Fix msc_transaction_cleanup function comment typo
8c409149c Merge pull request #2788 from lookat23/v3/master
0d81b636b feat: PCRE2 JIT
228218ae6 Fix the mismatch between comments and code in the msc_transaction_cleanup function
7b094ea84 Merge pull request #2785 from martinhsv/v3/master
b41139acd Fix: MULTIPART_INVALID_PART connected to wrong internal variable
369002d70 Create SECURITY.md
c3b7a7f4f Change some args from pass-by-value (satisfies cppcheck)
d2a1080db Add CHANGES for previous commit
18012e572 Merge pull request #2758 from martinhsv/v3/master
a41fc30db CHANGES: Preparing for next version
204908cf5 Prevent segfault for #2755
14c94e2eb Restore Unique_id to include random portion after timestamp
97550881f Add cppcheck suppressions
1bdd04740 Change release version to v3.0.7
841c06a9f Correct CHANGES entry for previous commit
0362af4db Move PCRE2 match block from member variable
770662c0d Add CHANGES entry for previous commit
8d8000132 Merge pull request #2738 from martinhsv/v3/master
76c0c864e Add CHANGES entry for previous commit
844e1bf6e Merge pull request #2727 from liudongmiao/patch-1
7b696d8c5 Add SecArgumentsLimit to modsecurity.conf-recommended
0b6bd39a5 Add CHANGES entry for previous merge
83c302e6a Merge pull request #2688 from ziollek/lmdb_single_env
82326ffe2 shift lmdb initialization to provider constructor which is called only once
00483e400 swtich singleton to thread safe version
606f5721c Change some parms to const reference (satisfies cppcheck)
0be89cc15 Correct CHANGES entry for previous merge
763db3f63 Merge pull request #2732 from martinhsv/v3/master
f7f8a9827 Fix initcol error message wording
563fabebf Merge pull request #2731 from martinhsv/v3/master
6e56950cd Tolerate other parameters after boundary in multipart C-T
6b7f2b0d6 fix memory in transaction.cc when log REMOTE_USER
3975f0f8f Fix minor CHANGES typos
59531be2f Merge pull request #2723 from martinhsv/v3/master
1aa7616c1 Add DebugLog message for bad pattern in rx operator
ced56c5b0 Merge pull request #2719 from SpiderLabs/v3/dev/pcre2_a
f84614fe0 Support PCRE2
a1980c841 fix argv in examples
89186b7e3 update lines for modsecurity.cc on supress list for static check
3b50b2634 remove destructor, close environment only once
1fa95ec2e set initialized flag, remove unnecessary semicolon
46f40899e Fix parallel lmdb readonly transactions
5519f6cfa Update CHANGES for SecRequestBodyNoFilesLimit impl
f5efd9ab8 Merge pull request #2686 from SpiderLabs/v3/dev/issue_2670_a
4c526fc21 Support SecRequestBodyNoFilesLimit
6bd1c7764 Add exclusions due to newer cppcheck version
5106307cc Change one parm from pass-by-value to reference-to-const
378e31c79 CHANGES: Adds info about #2602
d0813fec4 Merge pull request #2602 from LMDB/issue2601
4e37985b2 Update CHANGES file for recent commits
b89c737ad Merge pull request #2677 from gleydsonsoares/loadFromUri_zap_duplicate_words
2cde1933a Merge pull request #2680 from SpiderLabs/v3/dev/issue_2606_a
cc83a1bac Merge pull request #2673 from martinhsv/v3/master
2d51efae4 Add ctl:auditengine action support
b052adf0b tweak loadFromUri: zap duplicate words in comment
3ee6e108d Fix multiMatch msg, etc, population in audit log
cb80837e6 Remove old commented-out re: audit log, relevant
ef1b8d8d9 Merge pull request #2667 from martinhsv/v3/master
1a965a49a Fix some name handling for ARGS_*NAMES: regex SecRuleUpdateTargetById, etc.
76ce6739b Correct previous CHANGES update
630b1e0a4 CHANGES: Adds info about #2635
2de14cb00 Merge pull request #2635 from Mesar-Ali/patch-1
f82b98c04 Confusing variable name in setRequestBody method
52958fa73 Merge pull request #2661 from martinhsv/v3/master
f34b49f66 Multipart names may include single quote if double-quote enclosed
c072ac29e Merge pull request #2656 from martinhsv/v3/master
0275c8847 Add SecRequestBodyJsonDepthLimit to modsecurity.conf-recommended
19d50f4da Add a const to satisfy cppcheck
13e8be83c CHANGES: Preparing for next version
c3d7f4b56 Change release version to v3.0.6
d16c3250a Add a few cppcheck suppressions
d8afc4029 Merge pull request #2642 from martinhsv/v3/master
ac79c1c29 Support configurable limit on depth of JSON parsing
5aec781d3 Confusing variable name in setRequestBody method
ec86b242e Update README.md
a6e107484 Fix#2601 misuses of LMDB API
d2b700d7a build/libmaxmind.m4: fix build with host-pkgconf
465db29b7 docs: correct project name
873a94a73 CHANGES: Preparing for a next version
bf881a4ed Change release version to v3.0.5
cd5fba897 Handle URI received with uri-fragment
faad65d38 Merge pull request #2586 from martinhsv/v3/master
bffd68e4d Add commented-out sample rule to engage JSON Processor for more subtypes
5a0ae73ba Update README.md
3bfe4b81a build: Fix pcre's JIT support detection was not working
662c05f89 build: Adding a new path while searching for liblua.
a589f6b69 Build: using PKG-CONFIG in a new fashion
754daebfb Update README.md
65e7e474b fix missing parentheses in filename* parsing
7fccb0d22 Cosmetic: pleasing cppcheck
6fdba42c0 Cosmetics: Having cppcheck pleased
66ba7b065 Cosmetic: fix static warning
1e2ccc157 test: Fix optimization test
1376882f7 Fix typo
4127c1bf5 README: States the sponsor note
a18d18a28 Revert "Adds hyperscan to the build matrix"
4cdcc1533 Revert "Adds suppor for HyperScan in the bulid system"
a496865e9 Adds hyperscan to the build matrix
912704b6d Adds suppor for HyperScan in the bulid system
2e69ce6cc build: Fix curl include path
50fc347ed Fix rules dump
6ca028b6f Fix memory leak in rx operator when pattern includes macro
9764b1fb3 CHANGES: Fix entry for ARGS_NAMES
53d36ab63 Updates libInjection
102f4bdd9 Make the `configure` step more reliable
fbea73120 Fix: FILES variable does not use multipart part name for key
f1f2527c0 Using setenv instead of putenv on SetEnv action
03b3e472d cosmetics: Please static check
e8bd2151f Having _NAMES, variables proxied
dd458dedb github workflow: having bison from brew
3748d62f1 Changes copyright dates on the code
33f7b46bc Using GitHub Workflow instead of Travis
b3cfd8881 Having Travis working again
f948d637f Having the QA on GitHub workflow
e6bdadeb6 tests: Prints test number on segfault
9b40a045b Cosmetics: fix some cppcheck complains to please QA
310cbf899 Fix the typo
f18595f42 Makes regular expression selection on collections key case insensitive
560f81200 Adding DragonFlyBSD support.
afefda53c Fix Path to projekt logo
d72be1c47 Fix: Only delete Multipart tmp files after rules have run
1b7aa42c7 Issue-2423: Meta-actions like 'msg' should be applied at end of chain
2672db103 Add support for new operator rxGlobal
785958f9b Fix maxminddb link on FreeBSD
4b425850c Cosmetics: fix cppcheck warnings
8da787a39 Merge pull request #2424 from martinhsv/v3/master
8436c7899 Fix IP address logging in Section A
995f22b3c Having Bison 3.7.2
377fb723c Makes lua 5.1 workable again
e9dce44f6 build: Minor fixies on Lua detection
9e6d8b7bb CHANGES: Adds support to lua 5.4
8c85b7836 Adds support to lua 5.4
ae3ad5eaa cosmetics: Address some cppcheck complains
51d06d7a8 CHANGES: Adds info about #2378
fe1238514 GeoIP: switch to GEOIP_MEMORY_CACHE from GEOIP_INDEX_CACHE
0eb3c123f Merge pull request #2348 from martinhsv/v3/master
b9620c26a rx:exit after full match; fix TX population after unused group
a1a8c0fda Merge pull request #2342 from martinhsv/v3/master
07ce43cce Correct CHANGES file entry for #2234
a2be19d8e Fixing Typo
f0f1c2b1a Merge pull request #2317 from nikolas/patch-3
feda5b758 Merge pull request #2321 from nikolas/patch-4
45dec2068 readme update: Packing -> Packaging
ba1ae16fc Fix typo in readme: GtiHub -> GitHub
3b1de9567 Merge pull request #2315 from nikolas/patch-1
733073998 fix typo in readme: rearchitechted -> rearchitected
7e0bc2691 Using performLogging function
a1547eaa3 Regression tests: audit log compare support and test cases
7a48245ae Creates RuleUnconditional
f63bd1a45 Moves Rule[WithActions|WithOperator] to their own files
8274be066 Refactoring: Having RuleMarker in a separated file
bdedfd246 Refactoring: Renames RuleBase to Rule
59d426888 Refactoring: renames Rule to RuleWithOperator
8eb7b8fe6 Refactoring: Splits Rule into Rule and RuleWithActions
43f8aee6b Splits Rule class into: Rule, RuleBase, RuleMarker
fda03c001 Yet another refactoring in Rule
b66224853 Refactoring in Rule: Meaningful structures name
96849c07d Makes action name a shared pointer
9c526b364 Avoids copy on the transformation operation
8cfb289ce Lets reserve some memory for rule message
a609249d6 Makes m_id a shared pointer
343b86c2a Makes m_fileName a shared pointer
14b2bd77a Makes m_uri_no_query_string_decoded a shared pointer
d7d5cd2a9 Makes m_serverIpAddress a shared pointer
8df35dead Makes m_clientIpAddress a shared pointer
196adcae2 Removes reference counter for RulesSet
f2f5c9c95 Removes reference counter from audit_log writer
4b88fdc51 Removes reference counter from log write agent
5ebfa5eac Removes referece count from audit logs
4b94fabef Removes reference count form Actions
6b0ad8049 Having default actions as o shared pointer
9d158611c Makes Rule a shared pointer
f1d22f9b0 Fix version check
6367e6d5e Having a class Rules
fb7714f20 Creates class RulesSetPhases
7a0ad4308 fuzz: minor adjustment on op_test
6de5c5984 Adds some operators to the fuzzing tests
edd0a4bb2 Updates the fuzzing example
88789a577 parser: Using bison 3.5.2
1e26bf207 Revert "Creates the RulesSetPhases clas"
072e4edc5 Creates the RulesSetPhases clas
014adabda cppcheck: Adds rules_set_properties.cc supressions
6a742cdf7 Refactoring: Renames RulesProperties to RulesSetProperties
bad5892b9 tests: Adds secargumentslimit.json to Makefile.am
f57265a3e Support configurable limit on number of arguments processed
4e9ba44d0 build: Keep the installation of rules.h
4671608d5 cppcheck: more suppressions
22ec30773 Fix 7495675d540b3b3ccce681773205a4fe34daeb64
b7e28c246 static: fix static checks
7495675d5 Refactoring: Renames Rules to RulesSet
0c3e8b6b5 parser: cosmetics: makes it easy to read
6a0df8ca5 parser: new bison version
136db3e58 Multipart Content-Disposition should allow filename* field
1b1fdc055 Fix rule-update-target exclusions for plain (non-regex) variables
f7e4c1d9f CHANGES: Adds info about #2235
e9bcaf441 test for uClinux in configure script
fe84d2bae Fail when CANONICAL_HOST cannot be determined
2b09e7e01 CHANGES: Adds info about #2253
f76a1a667 modsecurity.pc.in: add Libs.private
357c14000 Changens copyright year
fe98ce4c7 Cosmetics: address cppcheck warnings
68ef2dece Cosmetics: address cppcheck warnings on src/variables
ff9152ed7 Cosmetics: address cppcheck warnings on src/utils
ff590174d Cosmetics: address cppcheck warnings on src/operators
9101a8ab1 Cosmetics: address cppcheck warnings on src/actions
a6620604d build: fix yajl messages
4f13fecba cppcheck: make static analysis more pedantic
cd9b8aa93 cppcheck: Organizes the suppression list
86a5f471a Cosmetics: fixed static analysis issues.
1fc584791 Travis: abusing -j
2e8833733 Test suite: improvements
7c6bf810e CHANGES: Preparing to 3.0.4+
753145fbd Change release version to v3.0.4
047016805 Fix: audit log data omitted when nolog,auditlog
6624a18a4 Fixed inspectFile operator does not pass FILES_TMPNAMES
05e9e7cf3 XML: Remove error messages from stderr
42a16c71c CHANGES: Adds info about #1645
7b1b00b5e filter comment or blank line for pmFromFile operator
ea7cacf28 Additional adjustment to Cookie header parsing
6395fe07c Restore chained rule logging to be more like 2.9
038522ad9 Small fixes in log messages to help debugging
b8160cce6 Fix Cookie header parsing issues
7ba77631f Replace Cookie parsing method
199a9db3e Fix nolog rules logging to part H
9cac167fa Fix argument key-value pair parsing cases
68c995ca9 Fix: audit log part for response body for JSON format to be E
c41ab312f Updates test cases
01c7a2689 Fix test issue-1974
d4dc3dbf2 Make sure m_rulesMessages is filled after successfull match
42da29fed Merge pull request #2155 from patros/v3/master
592927793 Avoid using NULL string (match) in Pm::evaluate
beedddd6c Fix @pm lookup for possible matches on offset zero
1d552673a Correct minor README.md typo
d5b93c101 Update README.md
341a5d01e CHANGES: Regex lookup on the key name instead of COLLECTION:key
2bdc5f9d0 Adds test case to cover issue #2005
74eee9330 CHANGES: Adds info about #2106
96d36afec Add Missing throw in Operator::instantiate
6ab464ab7 negative lookup on the key name instead of COLLECTION:key
47dd9c5df Refactoring on the VariableValue class
cbd15ec13 CHANGES: Adds info about #2113, #2111
c0142cf32 Changed compared variables of range id intervall in ruleRemoveById ctl action. #2111
9ebebfc83 Fix test case 1960
b6995c528 test case: Adds test case for issue 1960
f50700e9d CHANGES: Adds info about #1960
50abc072c Make block action execution dependent of the SecEngine status
1cc22966d CHANGES: Adds info on "Having body limits to respect ..."
a4e848411 Having body limits to respect the rule engine state
c7fe50e5b CHANGES: Adds info about #1872
20b90364f Adds test case for #1872
1b8d69da0 Fix dict element regular expression selection on SecRuleUpdateTargetByTag
547236231 Fix SecRuleUpdateTargetByTag with regular expressions
b5823d4e0 CHANGES: Adds info about #2099, #2102
2c136a2d9 Adds test case for #2099 on the test case list
7a93bea8f Added some test cases related to #2099
db298696f Adds missing check for runtime ctl:ruleRemoveByTag
7e8782d97 CHANGES: Adds info about #2063
86ce479b5 Adds new operator to check for data leakage of Austrian social security number
6d266fae8 fixes typo
f752291af CHANGES: Adds info about #2057
49900eec9 Fix variables output in debug logs
25e444583 CHANGES: Adds info about #2059
75a5c8d33 correct typo validade in log output
a0a99319a CHANGES: Adds info about #2068
4a3e9734e fix/minor: Error encoding hexa decimal
033942c92 CHANGES: Adds info about #2073
1acd87a80 Limit log variables to 200 characters
61c11251b parser: Fix filename
0669c2e64 parser: new bison version
b57441838 regression: Using github instead of modsecurity.org for SecRemoteRules
4e76c6adf Renames namespace Variables to variables
b9ed15022 Fix namespace utilization on seclang-parser.yy
6d5198b1a make check: Updates test cases list
ccd90c51c Increment OVECCOUNT value for bigger regex's
44efae6cd CHANGES: Adds info about #2024
a6e6bc2b5 Allow empty anchored variable to use
b392a1ca3 CHANGES: Adds info about #2016
2d3fbbc56 Modified affected test cases, which checked wrong variables
17d79ed7b Fixed data collecting in multipart parsing
ac61bf5fd CHANGES: Adds info about #2017
4b3e6328e Fixed validateByteRange parsing method
3dda0ea2c Adds a regression test strdup to valgrind suppressions list
2dff76826 Removes a memory leak on the JSON parser
145f2f35b tests: Updates secrules-language-tests
f77db2cc2 CHANGES: dds info about #2011
bd6a02d69 Fix test issue-1831.json on LMDB
37cf60b8d Fix use of deleted Regex copy constructor in LMDB code
79a24ef88 Enable LMDB in Travis CI configuration
dc78c0e18 Fix: Extra whitespace in some configuration directives causing error
df3c3f62b Cosmetics: coding style
ad28de4f1 Refactor regex code
e0a0fa05c CHANGES: Info on #2002
ae0207634 Fixed buffer overflow in Utils::Md5::hexdigest()
3c1fba278 CHANGES: Adds info about #1990
7c19ffea6 Implemented merge_bodylimitaction_value() for BodyLimitAction
3c41751ed Implemented merge_ruleengine_value() for RuleEngine
161c25633 Implemented merge_boolean_value() for ConfigBoolean
2d11ff1a1 Implemented merge() method for ConfigInt, ConfigDouble, ConfigString
78b7fa4e2 Adds missing drop.h
d00ea5111 Adds initial support to drop action
ba4273b8e CHANGES: Adds info on #1978
9b24199a2 Complete merging of particular rule properties
428388369 CHANGES: Adds info on #1984
8af8cad90 Use of AC_CHECK_FILE prevents cross compilation.
a9e9da869 CHANGES: Adds info on #1980
77854ed1b Fix inet addr handling on 64 bit big endian systems
dccb5e9e5 GitHub: Adds issue template
1ecd97130 CHANGES: Updates issue #1973
0a85b599b Fix tests on FreeBSD
e756dd039 README: Adds link to v2 repo
07330e53f CHANGES: Updates issue #1969
25bb1f1bc Changes ENV test case to read the default MODSECURTIY env var
b736f0292 Regression: Sets MODSECURITY env var during the tests execution
407b6c0f4 Fix setenv action to strdup key=variable
af137442d CHANGES: Adds @steven-j-wojcik to 0xb7c36 and 0x5ac20.
d2b14de26 Allow 0 length JSON requests
d29f2a898 CHANGES: Adds info about #1966
65e866cb3 Fix "make dist" target to include default configuration
2d3d56aa4 CHANGES: Adds info about #1949
3d2030426 Replaced log locking using mutex with fcntl lock
5a4ada39b CHANGES: Adds info about #1959
3b3004d24 Correct the usage of modsecurity::Phases::NUMBER_OF_PHASES
ce3abf262 Adds support to multiple ranges in ctl:ruleRemoveById
e712d30c5 Fix setvar to understand Rule variable in collections
cbf2fe970 Adjust boundary test cases for the less strict parsing
b638e523a Make the boundary check less strict as per RFC2046
ecad8c6c7 Fix buffer size for utf8toUnicode transformation
454669ffe CHANGES: Preparing to 3.0.4
4e6e4243a Change release version to v3.0.3
e4d6d61cf Adds Victor to the AUTHORS file
6cbcdd024 Fix libInjection version on configure summary
9ada0a28c Changes the default configuration to mimic v2 behavior on multipart
31c8d4c52 CHANGES: Adds info about #1943
9d80983e5 Fix on top of #1943 + adding test cases
39f4a5d7d Fix double macros bug
18cdffdbc Encapsulates int[N] in a class to avoid compilation issues
e3b9f7c91 Fix SecUnicodeMapFile support
84ece3edc Add test case for SecUnicodeMap
065c2e67b Adds test case for #1850
e1e8a01ed Override the default status code if not suitable to redirect action
bfe917b6b parser: Fix the support for CRLF configuration files
3f0ea9097 Test case skeleton for #1941
662fe63a4 Add unicode.mapping file to v3/master branch
b05901e8a Changes the regression test client to read the interception msg
1e5df5312 CHANGES: Adds info on 0xb7c36 and 0x5ac20
91daeee9f Only calling server log if the message is not disruptive
448897d29 Marking message as disruptive before generate log msg
973c1f102 Fix rule line number
fa5f3784f Using shared_ptr instead of unique_ptr on rules exceptions
e63344c3d CHANGES: Adds info on 0xb2840 and 0x3094d
ef7f65db9 Changes debuglogs schema to avoid unecessary str allocation
23e0d35d2 Fix the SecUnicodeMapFile and SecUnicodeCodePage
3d83ed257 CHANGES: Adds info on 0xca270
69cd61439 Changes the timing to save the rule message
8088d6af7 Fix crash in msc_rules_add_file() when using disruptive action in child rule inside of chain
466a427ab CHANGES: Adds info on #1897
ec1112c64 Fix memory leak in AuditLog::init()
8c549c65c CHANGES: Adds info on #1901
b12a8f5c6 Fix RulesProperties::appendRules()
f1da6dd29 CHANGES: Adds info on 0x3077c
8bda7c0a4 Fix RULE lookup in chained rules.
120108fd3 Adds support for /32 in @ipMatch cidr notation.
a5a40a71a Makes matchedvars inline
b58018e77 Fix multimatch behavior to match what we have on v2
a47738ab0 CHANGES: Adds info about: 0x14316
dba73f536 Using values after transformation at MATCHED_VARS
7c50fa7c0 Small fix on @detectXSS test case
85ecd190d Adds full support to UpdateActionById.
3e8e28da4 Refactoring on the RULE variable
554251bad Refactoring on the Rule class
74841779f Adds partial support to UpdateActionById
68398a51f CHANGES: adds info on #1922
004047ef6 Add correct C function prototypes for msc_init and msc_create_rule_set
c1925a467 CHANGES: adds info on #1909 and #1185
20ef01d75 Allow LuaJIT 2.1 to be used
28f6f2201 Match m_id JSON log with RuleMessage and v2 format
bc3d3f191 Adds support to setenv action
4dd281275 Adds new transaction constructor that accepts the transaction id as parameter.
c721e101c Adds request IDs and URIs to the debug log
0e8cd767e CHANGES: Adds info about: 0x028e0 and 0x275a1
cdf2da1a0 Adds test case related to issue #1725
98b9ae659 Having a better organization for Variables::
ee50fea26 Handling key exceptions on the variable itself
0d53111cb CHANGES: Adds info about: #1859
5aa79c17f Add test cases for m.setvar in Lua scripts
6f458b520 Fix on top of jmx's m.setvar commit for USER collection in Lua scripts
45cdb0ed9 fix: function m.setvar not work in lua script
c2bc69526 parser: Fix typo on SanitiseArgs
9c73c09ab parser: Updates the generated parser file
a71987145 Fix matching condition and adjust test case
379f37009 Fix SecResponseBodyAccess and ctl:requestBodyAccess directives
5c048e3cc Explicitly include time.h to fix building the examples
dce2fed31 Add exception to linker as OpenBSD doesn't like static
0c0b09ec5 Use glob.h when using OpenBSD
d97688804 Fix parser to support GeoLookup with MaxMind
0a88e0237 Allow libMaxmind to work with Ubuntu PPA packages
dfbff090b test case: Adds test case related to #1831
764a2e43f parser: Fix simple quote setvar in the end of the line.
738e32872 CHANGES: Adds info about: #1847
788b69642 Fix pc file
16ab99ce3 modsec_rules_check: uses the gnu `.la' instead of `.a' file
d7b972635 good practices: Initialize variables before use it
d302b99ec Adds test case for: #1812
4585216ae Adds more tests to REQUEST_BASENAME
a85ca00a5 Fix utf-8 character encoding conversion
90197bdd9 CHANGES: Adds info about: #1807
aa158ceef Set the correct variable (m_requestBodyType) and add test case
f999f54ed Adds support for ctl:requestBodyProcessor=URLENCODED
dc4382da5 CHANGES: fix contributor list on: #1818, #1820, #1810, #1808
0ac23a47c Add LUA compatibility for CentOS and try to use LuaJIT first if available
857bf9da5 Allow LuaJIT to be used
156527a6f CHANGES: Adds info about: #1814
dee989844 Implement support for Lua 5.1
eed6b5f86 CHANGES: Adds info about: #1818, #1820, #1810, #1808
d810de916 #1818: Variable names must match fully, not partially; also revert to hash table lookup instead of linear search; add test case
65aa7ae5e Improves the performance while loading the rules
4e3a1f715 CHANGES: Adds info about: #1785
fd8e72fd9 Allow empty strings to be evaluated by regex::searchAll
7def498c4 Added some documentation for multipart boundary check
a3980bbea CHANGES: Adds info about: #1790
ae38c23bb Adjustments on top of #1790
544fb50c1 Add basic pkg-config info
81708a6cf CHANGES: Adds info about: #1787
e51297b43 Improvements on top of #1787
edb5993d5 Fixed LMDB collection errors
1527f4e2f Updates the test cases described on Makefile.am
6a25ebb2b CHANGES: Adds info about: #1747
76887b8b2 Added new tests, aligned to new UNMATCHED_BOUNDARY flag value
4d0ca9449 Modified the false pos. UNMATCHED_BOUNDARY error flag
af4afd348 Fixed false positive MULTIPART_UNMATCHED_BOUNDARY errors
95048d5fc Fix ip tree lookup on netmask content
202a15bea Changes the behavior of the default sec actions
61c956e3f CHANGES: Adds info about: #1754 & #1778
892beb536 Refactoring on {global,ip,resources,session,tx,user} collections
550e9d3f3 CHANGES: Adds info about: #1786
f928e4476 Revert "Fix memory leak in msc_rules_* C APIs"
b85a64561 Fix race condition in UniqueId::uniqueId()
b586fa9c1 Cosmetics on README
19d4f2007 Experimenting with SonarQube/SonarCloud
f533ca999 CHANGES: Adds info about: #1765
58701e7e1 Fix memory leak in msc_rules_* C APIs
6db26cee8 CHANGES: Adds info about: #1783
45e531236 Return false in SharedFiles::open() when an error happens
a02bd3a3b CHANGES: Adds info about: #1769
fd9a161e7 Use rvalue reference in ModSecurity::serverLog to avoid string copy
ccd7b9f67 travis: Temporarily disables -jN
87e64e3c2 Actually fix setvar parsing of quoted data
e4c822e66 Code cleanup: Initialize variables and others good practice
a278bb673 Testing travis with parallel build
b0b484f45 Build in parallel.
137bd88b2 CHANGES: Fix info about: #1771
b5528bb8d fix when multiple lines for curl version
42a472adb Check if response body inspection is enabled before process it
389cc2535 CHANGES: Adds info about: #1757
2669add8e Fix memory leak in processContentOffset
cc7203503 Remove an unused variable
8750ee5d3 CHANGES: Adds info about: #1759 and #1733
5e4085069 Fix setvar parsing of quoted data
e47125c55 CHANGES: Adds info about: #1758
98b4e7546 Fix LDFLAGS for unit tests.
e48fa2f81 HANGES: Adds info about: #1761
cd1a058c3 Code cosmetics: Clean up MD5 hexdigest
d0b423fdd Adds time stamp back to the audit logs
6f92c8914 Disables skip counter if debug log is disabled
a1b6cceb6 CHANGES: Adds info about: #1737
d0a63aac0 Define m_secmarker_skipped as an integer type
bb2ecdf4d Add missing escapeSeqDecode, urlEncode and trimLeft/Right tfns to parser
a939d19fa CHANGES: Adds info about: #1738
6d5bb42bd Normalizes Bison version
2037a08b3 Fix STATUS var parsing and accept STATUS_LINE var for v2 backward compatibility
a806f26be CHANGES: Adds info about: #1750
268f34bbc Fix memory leak in modsecurity::utils::expandEnv()
f888f4e5e CHANGES: Adds info about: #1751
e7ea5433d Initialize m_dtd member in ValidateDTD class as NULL
3ee65a31c CHANGES: Adds info about: #1739
f7beb1757 Fix broken @detectxss operator regression test
6a710b3a4 CHANGES: Adds info about: #1743, #1744
3d06e1b8b Fix github_issue reference in regression test
5e65d560f Fix utils::string::ssplit() to handle delimiter in the end of string
501835837 Fix variable FILES_TMPNAMES
077b18252 CHANGES: Adds info about: #1729, #1730
8285a9746 Fix memory leak in Collections
ea7d1ff54 CHANGES: Adds to be released marking
8d0f51bed Change release version to v3.0.2
871a13186 CHANGES: Adds info about version issue
2e87c4e75 Fix version number on libtool
f67ff0aa6 Change release version to v3.0.1
01625bbb3 CHANGES: The correct is: ruleRemoveByTag not ruleRemoveById
ff0d451a5 Fix maxmind test case
0ca599474 Adds support for ctl:ruleRemoveByTag action
9537cfcee Fix SecUploadDir configuration merge
ab3afb2ed CHANGES: Adds info about: #1716
dcbb06be4 Include all prerequisites for "make check" into dist archive
9505ca7e6 CHANGES: Adds info about: #1715
601e0d704 Adjust tests for @inspectFile operator
138e30169 Reverse logic of checking output in @inspectFile
c61155424 Adds support to libMaxMind
15b38fbe5 Travis: adds --without-maxmind option
df169ea10 Adds support for libMaxMind
7bff76d79 Parser: Updates the generated parser files
480a2f89d Disable SecCollectionTimeout parser error
22334c9bb Adds capture action to detectXSS
b59d19e95 CHANGES: Adds info about #1701
e50c317b7 Temporarily accept invalid MULTIPART_SEMICOLON_MISSING operator
70ace0faa Adds capture action to detectSQLi
0f361b706 Adds capture action to RBL
df25c48f5 Adds capture action to verifyCC
77a885da5 Adds capture action to verifySSN
60b246909 Updates bison parser
0b494c4cd Adds capture action to verifyCPF
64ce41280 Prettier error messages for unsupported configurations (UX)
a66acebc0 Add missing verify*** transformation statements to parser
8bb64c3ee Code cosmetics: removes an unused piece of code
450c966da Fix a set of compilation warnings
c8666fae3 Check for disruptive action on SecDefaultAction
6842d4bba Fix block-block infinite loop.
c51e3e242 CHANGES: Adds info about #1636
4ac14a262 Cosmetics on top of: #1636
a0bea7356 Correction remove_by_tag and remove_by_msg
5e8062cf7 CHANGES: Adds info about #1691
8d61a3df9 Fix LMDB compile error
854a661a2 Fix gcc compilation issue
dca642369 Fix on top of #1677
f16eb8b54 CHANGES: Adds info about #1640
ebc068b8c Fix msc_who_am_i() to return pointer to a valid C string
3fa3094ee CHANGES: Adds info about #1652
9dff36f59 Added some cosmetics to autoconf related code
ccb1068e8 CHANGES: Adds info about #1678
b50658d1e Fix "make dist" target to include necessary headers for Lua
93ccad191 CHANGES: Adds info about #1677
ccc1f2031 Fix "include /foo/*.conf" for single matched object in directory
3539c59a6 Adds regression for base64 transformation
ab78b0cfb Add missing Base64 transformation statements to parser
e3b6b4ccf Fix resource load on ip match from file
6f718f9d4 Updates on CHANGES
0461c1c06 Fix examples compilation while using disable-shared
ac100785d Fix compilation issue while xml is disabled
ff782ddfa Having LDADD and LDFLAGS organized on Makefile.am
2b052b0ed Checking std::deque size before use it
eeec7efb6 Renames collection::Variable to VariableValue
de7c5c89b Using shared var for variables names
6f7fdd949 Using direct variable access instead m_collections
43bba3f94 Removes the depricated MacroExpansion class
f17af9572 Using RunTimeString on setvar action
a6830c76f parser refactoring: ops no longer carry a payload
a299997e0 Using run time string on the operators
6a97dbee7 Using stack to save parser state
b5e996602 Removes useless state
2d892a317 Adds support for multipart vars on the parser
6fe8655ed Adds support for RunTimeString
cd30509f3 Fix the debuglogs for the regression tests
c3b19e7f8 Updates CHANGES file
2ba788d2d perf improvement: Checks debuglog level before format debug msg
a03772630 Updates CHANGES file
768a76a61 perf. improvement/rx: Only compute dynamic regex in case of macro
4a23891c8 Updates the CHANGES file to reflect the changes on bench utility
d162d4e20 Fix uri on the benchmark utility
e6712358f Merge pull request #1639 from defanator/v3/skip_lua51
f4a05b6e1 Configure: actually disable Lua on systems with liblua5.1
c1cd668ac Change release version to v3.0.0
eaa4770c5 Fix issue related to Lua script load
c98e66547 Improvements on LUA build scripts and support for LUA 5.2
de36fca86 Adds info about 0xfd84e on the changes file
e9f3312ea fixed compilation error with disable_debug_log flag
81e1cdced Adds info about issue 1615 on the changes file
8bcef4187 Improve benchmark tool
e98be6dc5 Adds info about issue 1622 on the changes file
af7e6ee16 Correction lua header
9c0ed6109 Fix assorted minor memory management issues
b7698d689 Fix memory leak in @fuzzyHash
68152d8d2 Adds test case for issue #1576
3fb71f32d Coding style fixes
023e7acba Refactoring on the JSON parser
23cf656f9 Adds support to WEBAPPID variable
082a3e328 Adds support to SecWebAppID
37c34f3e6 Adds missing cflags for LUA and SSDEEP
ec667a460 Adds support for SecRuleRemoveByTag
381cf8ac2 Makes ssdeep enabled by default on the build scripts
4d7fd5c30 Adds support for update target by message
7d7c0c03c Adds missing SecRuleScript test case
bff326e80 Adds lua as a travis option
7fa5ca9ba Makes lua optional
e52bd7d63 Adds support to SecRuleScript directive
cb3363c7d Adds support for the exec action
7bec78a5a Adds support for transformations inside Lua engine
a676f313c Initial support for Lua script engine
1866a3a9e Adds support for the @inspectFile operator
1189e9b0e Adds support to LUA in configure scripts
9369efcb9 Adds support to the collection RESOURCE
a9d54c30a Fix on ssdeep search script
e6106ae0e Fix regression tests for fuzzyHash
9c83b39ea travis: Adds ssdeep option to our regression soup
7622866f9 Adds support for @fuzzyHash
4ecfed316 Adds CHANGES info about #1598
968d83f1f Fix build on non x86 arch build failed on ppc64/ppc64le/arch64/armv7hl/s390x due to how this arch represent chars
371fc0321 Fix memory issue while changing rule target dynamic
351beb056 Adds missing info to the CHANGES file
c4fcb36f4 Fix log while displaying the name of a dict selection by regex
93e18ca5e Support pipes inside quoted variable selection
34e8b140e Setting http response code on the auditlog
274f9e5aa Refactoring on RuleMessage class, now accepting http code as parameter
39fb75c34 Having disruptive msgs as disruptive [instead of warnings] on audit log
30797a458 Parser: Pipes are no longer welcomed inside regex dict element selection.
1518c43d6 Adds test case for issue #1565
1ad95254c Avoids unicode initialization on every rules block
20edf9ab7 Removes xml initialization from CURL if/def
41bf7f716 Calls xml init and xml cleanup to avoid memory leak
30364628a Makes clear to the user when audit log is empty due to missing JSON sup.
d3f979f1d Makes auditlog more verbose on debug logs
e09304a08 CHANGES: Adds info about #1583
d285bc02b Add missing statements
63bef3d14 Support to JSON stuff on serial logging
2988c5bb0 CHANGES: add info about #1536
fa7973a4e Removes a regex optimization added at #1536
9e9db08b8 add @rx macro expansion test to list in Makefile
10c4f9b1b add a test for macro expansion in @rx
a76030256 support macro expansion in @rx
210e72aa2 Consideres under quote variable while loading the rules
658c9b5da Adds CHANGES info for #1571
a5266d6d1 Store the connection and url parameters in std::string
ba4e2e373 Adds CHANGES info for #1572
495b47d8a Eliminate some reorder and sign warnings
490971399 Adds CHANGES info for #1562
082a0d3ac Adds ios::[open|app] to the parallel.cc to fix write over SELinux
48be601ca Very first version of our changes file
1c91e8077 Extends acmp_prepare to pm_from_file
7d786b335 Makes pm mutex optional via configuration flag
119a6fc07 test-only: Placing a mutex while evaluating the pm operator
a2427df27 fix: ignore .git directory while generating the release file
04f700998 Adds a simple release script
cca364253 Changes release tag to -rc1
224f6ef26 Fix configuration schema on the configure summary
7ac6bf724 Fix memory issues while resolving variables
003a8e8e5 Uses shared_ptr on variable names
9d062f53a Merge pull request #1543 from defanator/remove-SecRequestBodyInMemoryLimit-from-conf
5c737c2c0 Treat _NAMES variables as collections (#5)
9069a453e Revert "Treating ARGS_NAMES as an array instead of scalar"
43e3ff91e Fixes a bug with an unitialized variable.
3a048ee2d Support --enable-debug-logs=no option of configure script (#2)
f6af42c23 Remove SecRequestBodyInMemoryLimit from configuration template
1d3c4c670 Treating ARGS_NAMES as an array instead of scalar
81879cd13 parser: SecRequestBodyInMemoryLimit is now returning an error msg
2cf636cf7 parser: Adds generated parser files after 0xfce65
0be821ded change parsing of SetVar actions
e0ebf2854 Adds `$' as a valid character in ruleRemoveTargetById
4b9bd499e Fix to_hex_if_need function on string utils
8d6209f65 gitignore: Adds binaries from examples to the ignore list
5e76d8563 Update test cases to include test propesed at #1523
31f1d0446 add validateByteRange regression test to list in Makefile
58872e7ed adds a test for validateByteRange with bytes > 127
86e74fac5 validateByteRange: correctly handle bytes > 127
7665d96a1 Improve action-allow test titles
fc06915cc Extend RESPONSE_BODY test case.
31655e2c9 Updates secrules-language-tests
0a3dd824f Updates libinjection to v3.10.0
b8789ab9f add a test for negated implicit @rx operator
039bd2cc8 fix negated implicit @rx operator
ca9cbf4dd Fix for @rbl operator to correctly recognize known supported RBL providers
9d4ed5251 test: Counts the disabled tests as skiped on the test summary
d66f0c7e0 Add support for disabled test cases.
ab14b7c08 Add support for disabling test cases.
c22658ec8 Adds `msc_update_status_code' method to the libmodsec api
fff5a5765 Changes auditlog type to serial by default
bf281eb4d Relaxing the audit log sanity checks to allow empty relevant status
09ee47149 Handle zero byte rule files correctly.
945ee27a8 parser: Adds SecRuleUpdateActionById is not yet supported
d7eab6b7a Adds support to SecRuleRemoveByMsg
562c2b2f5 parser: Adds support to tag action without quotes
b4051246b Adds support to SecResponseBodyMimeTypesClear
48f147026 Adds support to SecArgumentSeparator
a30253852 parser: Adds SecWebAppId not supported note
2c4e65f7e parser: Adds support to quoted paramenter in SecDataDir
bb2fe0e03 parser: Adds note saying that SecServerSignature is not supported
e6cfd5379 parser: Adds SecRuleScript not implemented note
cd533e00e parser: Adds support to quoted arguments on SecUploadDir
b5d0dc240 paser: Adds support for quoted argument on SecTmpDir
5ffc5c163 parser: Adds support to quoted arguments in asorted configurations
9abc37157 parser: Adds msg: ContentInjection is not yet supported
06447ea3d parser: Adds support to double quotes on adit logs file
c525cbfb2 parser: Adds ability to inform auditlog status without quotes
9ee412735 parser: Improves the reading for the url in the redirect action
8c66a1b4c Adds support to double quotes on debug logs conf
0508395f8 Forces REQBODY_ERROR to zero whenever there is a valid XML
b36c4260c Adds a graceful error if there is no memory for request body inspection
9a41942ce Optimization on the macro expansion function
53ff0e1a5 Adds initial support to SecHttpBlKey
515e07350 Rename FromNowOneAllowType to FromNowOnAllowType.
bce5ef770 Add the missing g in Transaction::GetReponseBodyLenth()
56baef5f1 Fix test case as consequence of the changes at #1514
5e06a67fb Demote log lines to improve debug log SNR.
5c7892ce8 Reduce use of underscores in log output.
e3b9e6061 Ignore droppings from make check.
4d1739a2c Ignore built files.
024264661 Adds test case for the ctl:ruleEngine action
4bec6b001 Adds support to ctl:ruleEngine
1f1e8324b Includes HTTP version and response code on auditlogs/F
43cb8ed65 Adds support to C section on auditlogs
15ca5ceab Yet another change on the audit log permissions
b58c8fe7e Changes the default file creation permission to 1600
27a8abc05 Changes the auditlog new derectories permission to 1872
337216fd8 fix: remove target by {id,tag} are now considering collections
7c2dbf48c Typo in the debuglogs for rules::getFinalVars
e14dc602e Adds support to SecRuleUpdateTargetById
9ce7d022c Fix memory leak in the regression utility
52c5631ae Adds test case to UpdateTargetByTag
fba9c20ea Adds initial support to SecRuleUpdateTargetByTag
65bd06fb7 Adds verifyCPF operator to the unit test list
74bb022a2 Updates unit test cases
25175dd80 Adds support to verify CPF operator
787b388f8 Yet another update on the unit test repository
ddac1fb6f Upgrades the unit test repo to the most recent version
a7f7532a2 Adds verify ssn operator to the unit test list
ad8182e2a Adds support to the verify ssn operator
d465c2f1a Removes the beauty of the JSON logging
1edd3570e Adds a set of sanity checks to validate API inputs (2 of 2)
508a2b5a4 Adds sanity check on SecRemoteRules directive input
49b7ea99e Adds a set of sanity checks to validate API inputs (1 of 2)
5a32b389b chunks example: Sets the freed variables to NULL
6d77c76b2 Implements intervention support inside using chunks example
f5b47a807 Duplicates the url variable in the disruptive action
c3a0d8d9b Fix collections element selection by regex
3ebc2d61f Enables random number generation
4726912ec Audit Log: Adds space after response size
20134ef24 Fix examples/using_bodies_in_chunks compilation
e1f52a1cf Adds using bodies in chunks example
9cb3f23b5 Adds support to setrsc action
616a95bfe Adds -lpthread to the reading_logs_via_rule_message example
e795253ec Fix crash on SecRuleRemoveById malformated parameter
2a5085255 Using multiple threads in reading logs via rule message example
8fbb9e812 Using pthreads to avoid concurrent access to the collection
37868d153 Add missing feature: t:uppercase transformation
9d70345d3 Add missing hexDecode transformation to seclang parser
a90b2a3ff Code cosmetics: init a vector.
e1d3abc8e Removes memory leak on the counter variable modificator
c49688fd7 Verify if a certain resource exists before do any other sanity check
6143eb99e Removes LMDB from the default configuration options
37619bae7 Removes local cache for transformations
0e05b7bb8 Avoids to load a directory structure as a rules file
c97db2f36 Adds verbose message when a resource is not found.
77a658c7c Updates libinjection version
6421ff087 Forces disruptive to be first-rule-only
7e5925006 Fix JSON parsing error message
b58f713fe add support for soap+xml
e2bbe9858 XML Parser: removes unnecessary message from debug logs
ba070c9ea Speeds up utils::string::toupper function
b3c8e97ff Parse fix: accepting variables in between quotes
c7053e572 Postponing the decision to whenever save or not a log message to the last rule
4d03ef512 Fix TX dictionary element name on logs
5f60bb522 Yet another fix on the debuglogs merge
cf4deaa3a Using uint64_t instead of u_int64_t
d15b57895 Fix the Multipart parser error for unknown content type
80cfca6fa Fix the debug log level merge function
2a54bf23e Fix the debug log merge function
eb12b1514 Flush [shared-] file after write it
dbcf5a719 API CHANGE: Rules::merge signature was change to includes error msg
5e59d1912 Improves macro expansion speed and variable set attribution
f17da09fc Avoids call `toupper' twice while resolving a variable
85f98c8a6 Fix "make dist" after recent changes to parser
c290c73f9 Updates travis' badge
53485c7f7 Fix pcre_exec offset values
e79712095 Minor fix in the decision on whenever the log callback should be called
e2af60e76 Expands log_cb to share ruleMessage structure instead text
9ea5b475b Fix missing initialization on rules-check utility
6d61bd6b5 Adds rules-check utility
d2c5b31b1 Uses FILE instead of _IO_FILE
e2bd87d07 Fix minor parser errors
c3cb23f47 Removes the ';' from the x-www-form-urlencoded body-processor comparison
d6363607a Accept quoted regexp in the collection selection
39761ce7b Discards the `charset' from the C-T while checking for body processors
7ab192e90 Using method instead of procol in the audit logs.
fcad29015 Having the DebugLogs using the SharedFile schema
7f9cd7661 Improvements on the SharedFiles class
01c13da51 Fix segfault due to invalid memory access on SharedFiles class
87f6b478f Fix typo in returned string
cc25390dc Fix copy/paste typo
027d50b76 Adds first version of `processContentOffset'
7aae5dc18 Fix Regex::searchAll to behave like global modifier
4d66481bf travis: Installs cppcheck on MacOS X
616cf84c3 Adds check-static to travis.yaml
4ad3574cf Adds offset regression tests and assorted fixes on var's offsets
795994bb0 Adds support to error_log in the regression tests
ae8c2a486 Adds ZenHub Badge to Readme
073b0f6d6 Small changes in the README, including: having ModSecurity logo
aba68a7b6 Adds ModSec log to the git repository
efb90bb55 Adds OWASP rules to the gitignore list
71a9677f3 Adds configure.h to system.cc in oder to read the MACOSX def
09cfa2869 Removes dup on travis build matrix
44121bdee Updates secrules-language-tests
158ec7b2e Adds support to resources on the unit tests
b021c15e4 Adds a little more build options to the travis file
c06daba39 Adds support for curl resource on the regression tests
f9552ede2 Adds missing file
36ab4b952 Fix lmdb compilation issue
6f4746211 Fix compilation when YAJL is not present
9d3399055 Very first travis file
d85169952 Adds references to the collection variables
e95efa05c Fix assorted memory and static analysis errors
8d0583eda Increments the cppcheck suppression list
f40a6edec Adds valgrind suppression list
f2d149fc5 Extends the direct access model to other collections
ca24b6bb0 PoC: Adds support to direct access on ARGS collection
17e5a6357 Removes memory leak on the "offset" feature
c1f11ab4e Cosmetics: assorted fixes on the coding style
a88dc8efa Changes the check script to detect segfaults
ff65d618e Adds missing Makefile.am file
ecbf292f6 Adds first PoC for the operator offset feature
9a8fc3116 Instantiates the Class variable earlier
ba6b972ca Makes global collection allowed to be set by setVar
b516cc6de Adds operation unset to setVar action
e95555132 Contionuation of 1 time variable patch
703da3c4f Adds PoC about 1-time variable resolution and draft for offset
6abbb7e91 Fix regular expression test case and updates the test list
1e8b37411 Removes the depency on bison/flex if it is not a parser build
3eccfaf1f Disables parser generation on all builds
03d0570e9 Deletes the Rule object in case of a parser failure
1aa2a9c01 Avoids memory leak by cleaning loc stack on Driver's destructor
8edffe353 Dirty hack to make the parser workable
839ac6258 Fix memory leaks in parser failures
a6f07f621 Makes the lexical errors a little bit more verbose
5880524db cosmetics: Improves the tokens organization
9a1faab66 Deletes driver in case of parser failure
808fd2335 Avoids a second initialization of the Audit Log class
557c29fd4 Changes variables destructor to virtual
0c37ba336 Fixed utf8ToUnicode bad memory access
a8e5cce74 Moving the rules deletion to the RuleProperties class
068a3eb51 Fixed bad memory access in utf8ToUnicode class
fd341145d Fixed memory leak in the acmp implementation
60402d8b8 Renames defaultActions to m_defaultActions in RulesProperties
7927ddda9 Renames rules to m_rules in RulesProperties
5086fef49 Fix parser while continuation line is used between var and op
59114dd59 Refactoring on the operators parsers (2/2)
9cda4c0be cosmetics: Having the parser in a better shape regarding operators 1/2
3a413080f Fix string size on regexp search all
36d6bb966 Fix substring constructor in regex search all
e181cb7e0 Fix lmdb collections backend
b12cc9128 Adds valgrind suppression regarding rules load
8bd5f03a3 Fix memory leak on the regression tests
f62dc287c Uses pointer instead of std::string copies while applying transformations
63f3f2fd8 Avoids unnecessary elapsed time calculations
a7f465cf3 Avoids string copy by working with pointers while resolving variables
7834cf857 Fix memory leak on the benchmark utility
168fa22e1 Collections cleanup: removes resolveFirstCopy method
6fff8c954 Performance improvement: makes the collections lookup faster
15b81d09e Refactoring on the transformation classes
bbb61d560 Changes the saving selection for the audit logs
10cdf8fed Enforces that relevant status on the AuditLogs
88fb456a1 Cosmetics: Reduces the static analysis warnings
9c7416da9 Refactoring the actions classes
73877d403 Adds support to section "E" in the auditlogs
317808fe5 Adds section "H" to serial audit log
2d29740ca Cosmetics: better format the serial audit logs
c1e96d6c2 Fix rules messages in the audit logs
1218d8c84 Fix the audit log engine status selection
2e9a35c35 Refactoring on the audit logs implementation
9707d46e4 Adds `debug_log' headers in the no install list
64e292792 Moves debuglog stuff inside the debug_log namespace
a3787fedb Fix building with -Wl,--as-needed linker option with older ld versions
31d5d7908 Removes charset=UTF-8 from content-type variable
8f1665059 Fix install and dist targets after 768cc74f, 9733cacd, bfc30dad
47f2e7ff4 Use correct debugging CFLAGS in readme.
89987806c Add (void) argument to be ANSI C compliant
1719e1d7e test-cases: updates the remote reference
cce6179dc Refactoring: new structure for logging alerts
bfc30dad3 Refactoring: how to report to error logs
e6b58014d Cosmetics: Fix some static analysis report
9bd37ccb6 Refactoring: Rule class
a776cce6d Changes RULE variable group to be save at transient collection
2930d40d5 Changes the actions to affect the ruleMessage instead of transaction
8fa0523fe Adds initial support to the multiMatch action
9116a19bc Using the decoded uri in REQUEST_URI instead of the encoded one
7a36499f2 Makes @pm compatible with the brand new capture schema
eecb90cfd setvar: needs review
c339194c0 Changes operator rx to use regexp::searchAll
9c7988d88 Adds support to regexp::searchAll
d3a4ec760 Removes slash from REQUEST_BASENAME
293a84966 Adds m_uri_no_query_string_decoded to transaction
ab8808315 parser: Fix the expanded list inclusion
c98be42f8 Limits the transformation output to 80 chars in the debug logs
f5898e94c Fix documentation typos
85edff522 Fix return value of msc_rules_merge()
464350150 parser: Improves the include error when the file does not exist
8b4f1bc46 Fix rule file inclusion path
361ec8340 benchmark: Removes the \n\r on the user agent
8ceaf99d5 Updates the CRS script to target the recent v3.0.0 release
3ab5c8057 Updates the fuzzer sub-project
ee996a837 Adds configure option to [disa|ena]ble the library examples
936ec0b47 ~Rule will delete chainedRule
1b2877681 Fixed install and dist targets after 3ee7b24
3ee7b2492 Adds refCounter to actions
ad05c74c3 Moves mbedtls to others and renames msc_string.h to string.h
2244e874e Moves static methods from class String to the namespace string
62a0cb468 Renames utils/msc_string.[h|cc] to utils/string.[h|cc]
424418f54 Renames msc_system.[h|cc] to system.[h|cc]
4ced1d18e Using full path in the header inclusion
768cc74f0 Moves RuleMessage to its own file
ac4cb53d0 parser: Better understands escaped quotes in operator parameters
1bf53c057 Deletes ruleMessage by the end of the rule execution
5fa02f17c Fix Utils::hexdigest
507ec44cc Refactoring on `utils.cc' and adjacents
b48dccff7 Removes unused `urldecode_uni_nonstrict_inplace_ex'
78d6d2098 Moves `phase' related functions from `utils' to `utils/phase'
f1e742c15 Moves system related functions from `utils' to `utils/system'
73c4d6917 Moves string related functions from `utils' to `utils/string'
9733cacd4 Refactoring: moves ctl_ actions into ctl namespace
2bb9d7988 Cosmetics: huge refactoring in the parser
d3de1c743 Adds missing action-ctl_rule_remove_by_id.json
721983a05 Adds missing ctl_request_body.*
75a5000b1 Cosmetics: coding style
471164460 dds support to CtlRequestBodyAccess
10d263cd3 parser: Relax the characters accepted by ctl:ruleRemoveByX
fead97155 Cosmetics: Fix typo. Remove not Remote
1c21d1aeb Adds support to action CtlRuleRemoveById
161cc36ac Adds support to action CtlRuleRemoteTargetById
9245369a5 Adds support to action CtlRuleRemoteTargetByTag
730d7dbd2 Cosmetic: Coding style fixes.
8757840bc Refactoring on the operators: negation is now being handled globally
28a44b966 SecLang uses RESPONSE_STATUS as variable, not STATUS
678a97d0f Refectoring on the DebugLog mechanism
f3bbcfc7e Removes SecDebugLog directive from the test cases
8ac15e291 Removes wrong test case: there is not transformation ge
4e3a599f6 Add hack to fix MacOS X build
049f1abb6 Fix compilation error
b48e4b3a3 refactoring: Moves Phases enum to outside ModSecurity class
c680ddf2c Refactoring on rulesProperties class
ae8698d8c Makes JIT support in PCRE to be optional
13b6a3ecf Fix: Rules ID are validated during a set merge
ecd3fd0dc build: avoids compilation problems due to non existence of the lmdb.h
8f5c1c3cf parser: avoids parser error while loading an empty file
5553b2a5b Moves web server message to appropriate place and removing the garbage
16b8ef98f Fix: placed missing variable initialization
56cbbeff5 Adjust the phase value between the core and the rules
115afffe3 Cosmetic: Limit the matched log size
a1a1c71d6 Makes LMDB support optional
0a22f880d Adds support to custom operator's message in case of a match
ad6183811 Considering collection RULE independent of the case at macro expansion
241269eed Adds missing `nog_log' action
c3378ec52 Fix the size of the rules and actions vectors
8d84ff6f4 Accepting both: normalizePath and normalisePath
fb0afdb34 Fix @validateByteRange initialization
ed18c73cd include pre-generated parser sources into the distribution
062dd17f1 Cosmetics: reducing the compilation warnings
0e5f72977 Changes MATCHED_VAR behaviour
665df0451 Cosmetics: avoid compilation warnings
5febc7b26 Looking for lmdb in the right location under MacOS
7f7bd9984 Adds missing file: rules_exceptions
f723870f1 Fix case sensitive variable resolution in in memory backend
5d64f7381 Makes RULE collection to be resolved inside a macro expansion
5514b6614 Adds missing file: rules_exceptions.h
52808b6cf Allows REQUEST_HEADERS:Content-Type to be null
c961373fc Adds missing header
8416eca98 Initializes m_maturity in the rule class
37079ef66 Adds support to SecRuleRemoveById
d781b00f7 Fix the `log' action and the webserver error callback
8d9abfb46 Makes tests output buildbot friendly
c0ebd45a6 Reduces bison required version to test it over the buildbots
8a135cff9 Extends the possible names for liblmdb0
75e2e9d4d Fixing multiprocess_c compile error
4cf6c714a Cosmetics: Fix coding style
3615c84ee Adds check-coding-style target to our Makefiles
f26824bcf Adds more suppressions to the cppcheck
4078677b7 Cosmetic changes: applies changes suggested by static analysis
247f24c5b Removes check-valgrind files after a maintainer-clean
46f4b84a0 Removes collections db after maintainer-clean
3f38b5668 Renames `testdb' to `modsec-shared-collections'
4c8aa5409 build: Adds missing lmdb.m4
085d50c12 include test cases into the distribution
063850a4c exclude build-time required headers from install target
2aa1d1447 fixed build of unit tests (broken by 34e0284)
649365481 automake: include all needed files into "make dist" target.
ee9f3ebc5 configure: conditional creation of Makefiles in test subdir.
38b338d1d Adds test case for regular express selection
ad481be09 lmdb backend: Adds support to select variables using regex
de8245d8f in-memory backend: Adds support to select variables using regex
4daf9d8ab Adds a test case for WEBSERVER_ERROR_LOG
833089eb7 Adds method resolveFirstCopy to collections
6e4226ee4 Adds support to global collections shared among different process
ac6498327 Adds cppcheck target on makefile
7bcc9cf0d Bug fix: variable resolution inside global collections
20689145d Renames examples/multithread_c to multiprocess_c
cd5a116ca Simplifies the multi thread sample
5daf4873b build: Searching for LMDB during the configuration phase
afd7a21d1 Correctly handle return values from pcre_study(3)
e231503bc Simplifies the collection interface
f43704dbe Add explicit 'return true;' for Transaction::extractArguments()
45850d17d Fix typo (= vs ==)
71acdaf8c Accept new line + caridge return in the rules parser
578dabea8 Informs the https client a key if any is given
3d1d0514f Fix pass action behaviour: now only ingore actions within the same rule
b332018cc Adds regressiont test for issue #1152
f72bd587e Adds support to the allow action
e77e4c4c1 Adds missing test case to Makefile.am and initializes the skip var
b0f69b126 Adds support to the `skip' action
f00e625c8 Unbreak build with custom location of libyajl.so
90adb5393 Adds support to JSON request body parser
247747060 Adds support to the resource collection
bad3e1361 parser: Fix commented SecRule parser
7d06c32b0 Adds error messages while failed to init a collection
193fa2e80 Changes regressions tests to fit the recent modification on the parser
0c0a9b308 Accepts component signature between brackets
74a34261a Adds function removeBracketsIfNeeded to utils
731707994 parser: Reporting the right column position in case of error
37c18326c parser: Avoid to duplicate the invalid character
0fdde5253 Fix setvar action to accept equals nothing
cf2ffe7e1 Fix the line counter while showing an parser error
e5583c24b Removed parserError from the rules class
02909f7cd parser: arbitraty text can be used instead of operator
0d53dda1a Adds support to @unconditionalMatch
60be385eb Adds support to the SERVER_NAME variable
df1f7c5e0 Adds support to the RESPONSE_PROTOCOL variable
b8bd0c596 API CHANGE: response status is now set on processResponseHeaders
a36b2da86 Adds support to the STATUS variable
56d084a7f Adds support the variable rule
45bfb594b Adds missing tests cases
6052d2628 Adds support to URLENCODED_ERROR variable
c5262d54f Fix argument uri decode order
dbaf79fb8 Adds extractArguments facilitator method
5c088c8be Adds addArgument method to transaction class
ebe842475 Adds support to REQBODY_ERROR_MSG and REQBODY_ERROR
7bd6e9a2b Makes XML request body processor to be selected only by ctl:equestBodyProcessor
7cb27eb9f Implements the support to fill the REQBODY_PROCESSOR variable
734f63bd0 Adds support to REQBODY_* varibales in the libmodsec parser
767289c8d Fix compilation for libpthread users.
647019a80 Use internal PCRE based implementation of regular expressions instead of std C++ regex library.
21777aec4 Fix invalid memory read in msc_tree
8b9041c2d Fix memory leak on VerifyCC operator
a4c7d534f Fix invalid memory write on base64 forgiven decode
7be5fde62 Fix memory leak on the @pm operator
1b35e57c4 Adds more suppressions to the valgrind list
9cec9db79 Fix memory leak in the method toJSON from Transaction class
f833a6108 Fix memory leak on html dentity decode transformation
e6c542c5b Fix invalid read on sql hex decode transformation
991902662 Fixes regarding memory management
cb91af537 Enforce bison requirement to 3.0.4.
32f22d1a7 Use explicit variable size for copying char.
57ad70bb2 Add missing 'retrun's for functions declared return value. This change fixes SIGILLs on executable built with clang 3.4.
1e6b40ebe Fix some improperly formatted test cases
8cdb13807 Adds support to make check-valgrind
f0155e3f3 Adds support to `make check`
2e3da7ea2 Better support for multipart
9e5cf2de8 Adds Upload configuration paramters to the libmodsec parser
967c8c90f Fixed minor behavior on the trasnformations and added sha1-mbedtls
f35d28b8d Loads the transformations test cases during the unit test
8d4990327 Adds support to the transformations parity[even|odd|zero]7bit
59b1fe030 Adds sqlHexDecode tranformation to libmodsecurity parser
1fe0e3420 Adds support to sqlHexDecode transformation
bd2e95953 Adds support to the hexDecode transformation
2b056485d Adds support to Utf8ToUnicode transformation
d70f08d01 test: Using regexp to transform binary representation into binary blobs
b7e82261c Adds support to removeComments transformation on libmodsec
08df949bf Adds md5 transformation to the libmodsecurity parser
7ccf54d33 Adds md5 transformation
bf4a9d763 Adds support to base64DecodeExt transformation
056753d57 Adds support to base64 encode transformation
bb5cbc969 Fix return value of Utilis::Base64::decode
e48f468cb Adds support to base64 decode transformation
348cf3bfa Adds support to the REMOTE_USER variable
a3ae686f2 Adds base64 support via mbedtls
4b9cff3ec Partially adds the REMOTE_USER variable support
f989ecd5c Adds support to SecXMLExternalEntity
6a7b970fe Adds support to ctl:requestBodyProcessor=XML
9202ffb17 Replacing include subdirectory name, transaction --> collection
1f45d6cea Adds full support to the libxml action
a9e6716c6 Variables are now receiving the rule instance as parameter
8c714af8e Actions refactoring: now there is a clear definiation on the action name
1b88947d9 Adds support 'xmlns' action to the libmodsec parser
3e8defb85 Adds support to the operator @validateDTD
6a4075250 Adds XML variable, xml body request processor and @validateSchema
35636674e Adds the missing regression tests for USERID
758ecb5d6 Adds support to USER collection, setuid action and USERID variable
ff9aa5c7c Adds support to the variable SESSIONID
a2a47798e Adds support to the collection SESSION and setsid action
33a704e91 Fix macro expansion: no more % abandoned by the end of variable
572811027 Declaring variable outside the for loop
c85529158 Adds support to the cmd_line transformation
d0e000228 Fix the regression tests as reported on #1142
3062ff2aa Using Collection instead of GlobalCollection
64c4f23a4 Collection class was changed to be a simple interface
bc887cdcf Fix Valgrind regression test script
5643d2fa2 Warming up to the remote collections support
ff165a403 Adds support to the multithread example
1539a8c3e Fix the coding style of the pull request #1115
8b3b01406 updated transformation file to include removeWhitespace transformation
883b804d9 adding removeWhitespace transformation
0a60924c8 Reduces the amount of warnings
6f93563fc Fix in parser: now understanding the removeCommentsChar transformation
19137452c Updates `secrules-language-tests' reference.
a5a21ea19 added remove_comments_char to address issue #971
8da49842d Fix typo on the audit logs.
85d8b8e9b Fixed typo error in the HTTPS client implementation
8d052853a Adds support to https audit log output
e5acc95de First version of `global' and `ip' collections
214cc1578 Cosmetics: Reduce the coding style warnings
c43391072 Fix some issues reported by the static analysis
28008be61 Build: Adds /usr/lib64 as possible path for YAJL
d528b8ea6 Build: Looking for YAJL's LD flags instead of CFLAGS
e3dd2937e Installs the library file in the right path [lib|lib64]
88ca73654 Avoids the installation of test utilities during `make install'
e0926fee3 Fix parser error while dealing with operator negation
47a62b98b Saves `MATCHED_VAR' and related before execute the actions
778db259c Treats the keys of the sec language variables as case-insensitive
30d9ade19 Fix macro expansion: Now support } and/or }% to close a variable
f44143436 Fix parser error on free text operator
1f68075a2 Process the logging phase on the benchmark utility
1e3cafb73 Fix memory management on the rules' messages (try 2)
71970915b Using `clear' to clean up lists instead of clean via integration
163483e8d Fix memory management on the rules' messages
ed8b0c85d Fix `capture' memory management
e34645437 Fix memory leaks on the collections/variables management
49fc1f8b7 Fix memory leak on the benchmark utility
8647d63e9 Fix m accuracy initialization inside the Rule class
a2ffb3615 Adds "matched" line to the audit logs
362b376ac Adds verbose logs to audit logs while deciding or not to save a request
77a1dcab9 parser: fix issue with skipAfter action
049e4eb69 Adds support to the @rbl operator
4bdb4ed63 Fix chained rules execution order
8143f8ea8 Adds support to the action `maturity'
714df8db2 Adds support to the action `accuracy'
5a2a81a56 Adds support to the action `ver'
77900ed4e Fix rules `messages' on the auditlog
947437326 General improvements on audit logs information
31117d757 Fix error on older systems
b9b3e8290 Fix AuditLog parts selection
934394239 Adds mutex around the write operation on the auditlogs
b4691aa74 Updates python bindings version
b46dc3457 Temporarily disable the HTML ENTITY DECODE transformation
a102b5ce2 Improves the method fill the ARGS collection
98f45f357 Using a better number generator to avoid conflicts
36dfe81da Adds YAJL_CFLAGS to the project core
fc225ff00 Fix whoAmI() call on Transaction
b06eaadac Places the classes related to audit log into a separate namespace
2830525f8 Adds missing file: script.lua
aaf995cc7 Adds missing file: transaction.h and removes assay.cc from git
e45ad3b08 Updates Python bindings git hash
4db5cc7d2 Refactoring on Transaction class: adding comments and renaming variables
6f1e6f37d Fix trasanction cleanup on the C API
a51e70751 Renames class Assay to Transaction
f3fd5d662 Adds owasp/2 experiemntal rules on the test set for benchmark
d780fd629 Fix the parse to distinguish between @pm content and a variable
702551ed4 Adds support to action `exec' to sec lang parser
331df90ba Enables OWASP CRS optional_rules on becnhmark test case
923620fbd Adds support to the action `allow' in the sec parser
7901c2c89 Adds the actions SetSID and SetUID to the seclang parser
ab92bed6f Parser improvement: Supporting variables selection with regex
3acc013e4 Improves the secrules parser
ed13cab9f Adds script to download and configure benchmark script to use owasp v[3,2]
f23908f14 Improves the secrules parser
a4d8dfd5e Adds ModSecurity recommended configuration file
29680d69a Updated geoip m4 file to support from path
527325826 Fix libxml configure script
8c7b6199f Optimization on the tolower function
076289236 Small fix on pull request #982
e38a468a2 Updated with suggestions from @zimmerle for code style
b3ab9a408 Support for correct implimentation of REQUEST_URI
dd35b4776 Removes initcol debug messages
a225f8b5b Fix SecResponseBodyMimeType test case
6ebe6dfd8 Merge pull request #1038 from pwnbus/update_readme_shell_syntax
ebf2c8855 Update readme to use shell syntax
decf04d26 Adds support to SecResponseBodyMimeType
c2d9a153c Adds support to afl fuzzer in the build system
7cebc632e Adds Python bindings to the main ModSecurity git repo
913e22a77 Adds initial support to initcol action
fb3696ac0 Fix a few things to provide an easy interface for script bindings
ac10d8863 Changes the operator evaluate method to only support two arguments
215c4d107 Fix ARGS_POST and ARGS_GET variables order on the parser
2a950a435 Fix various minor bugs in the regression test suite
42ce0475b Coding style: changes the namespace in the comments
0694cd30c Adds support to libxml2 detection on the build system
80b82d370 Adds the Global LDADD option and fed according to the platform
467c977af Fix compilation without the GeoIP headers installed on the system
854ca4c1c Removes libinjection sources from the main project and add it as subfolder
ea636e80e Clarifies conditional by placing its parts into parentheses
b5a43871e Changes library namespace from ModSecurity to modsecurity
a69e49a1b Makes DebugLogs optional by compilation flag
fbf8ea74f Makes YAJL dependency to be optional
cf4377df7 Makes libCurl optional during configure
d8793e444 Prints rules language tests version on the configure summary
43c9b9216 Adds information about libInjection version at configure summary
45711b522 Update issue-960.json with 3rd test.
d8361d57c Adds a regression test for issue #960
8c0e96f31 Prints a fancy summary after the configure script
18c862a84 Adds the concept of `resources' to the regression test utility
09a958544 Makes @geoLookup optional depending on the availability of libGeoIP
21cae53d4 Improves the libgeoip detection during configure
283c8c818 Fix some static analysis warnings
ac61d1c40 Adds missing file
de7984828 Code cosmetics
3c45a5713 Fix regression tests structure : using method instead of protocol
c035e76ed Avoid segfault if parser `ref' is empty
f65b08b06 Fix parser to accept redirect action without single quote
7a300eb94 Fix pcre cflags variable and adds LDFLAGS for dependencies
47233adf3 Revert "Adds experimental operator cache"
4dcefa104 Adds more plausible names for libgeoip
ca33ba420 Temporary adds the missing optimization.cc
9e295dedc Adds rules optimization test app
326696976 Adds experimental operator cache
c204f1f00 test: Increases the cache size of the urldecode transformation
bb30d42b5 Speed up the random number generation
45638ccc9 Limit the amount of transformations inside the cache storage
5bef19aa4 Variables resolution results now stored into a std::vector instead of std::list
2ee5d4ca8 Testing performance enhancements by enabling transformations cache
e641c3cc1 Huge improve in the variables resolution time
4a771f8c2 Fix pkginclude_HEADERS
48704c27a Removes some memory leaks
061ba0131 Refactoring: Create class Collection to hold collection properties
b6ae0585c Refactoring: Place m_variables inside Collections
787be9812 Refactoring: Pass all the control over the variables to the Variables class
6f617e6ca Refactoring: Move Variables and Variable to independent files
776502e02 Refactoring: changes ModSecurityStringVar to transaction::Variable
7afc07914 Cosmetics: Fix static analysis warnings
11a1045f4 Adds support to capture this fingerprint of the detectSQLi operator
93031d93d Cosmetics: Fix coding style issues
ffb973700 Replaces libpcrecpp by libpcre
2a062b7fe Not using pcrecpp on verifycc anymore
4168ebc2b Adds support to EscapeSeqDecode transformation
1716add77 Adds support to replaceNulls transformation
993247870 Adds support to hexDecode transformation
93c3bc804 Adds hexEncode transformation
0ae09201f Adds support to replaceComments transformation
7e826633f Adds support to the transformation normalisePath and normalisePathWin
7ab75ac01 Adds support to length transformation
8d78952e1 Fix jsDecode transformation
333174417 Fix cssDecode transformation
743fb651d Adds partially support to t:sha1 transformation
91d29d284 Adds support to urlEncode transformation
e3e8bac13 Adds support to URL decode transformation
0227fe9d6 Adds support to t:compressWhitespace
3d2ec2a3f Fix unit test utility to get it working with t:removeNulls
17faef565 Adds support for trim, left and right trim
59af8ab84 Cosmetics: fixed the coding style
90c74beca Fix the init method signature in some operators
4a5e6b3e5 Fixed bad test cases
e7803ebd0 Fix bug on regexp matched results
3fff34300 Adds missing variables
827b15f5c Marks redirect action as disruptive
c1e3eac09 Fix variable exclusion regression test (label only)
e65f0db13 Fix on the variable parser
95a707964 Warn about parser error during the regression test
c800214e6 Fix pcre_exec matched string
0285c944f Fix collections resolution
b0089cfde Adds MODSEC_NO_LOGS option to be part of the configure
74045beab Performance improvement while expanding macros
335133855 Performance improvement of setVar action
e57ee8908 Searches for included configuration using the resource policy
e54ef7205 Looks for external resources in the same path of the rule
5cc9e9450 Splits operator into OPERATOR and FREE_TEXT on sec lang grammar
df819dc43 Removes SPACE token form the GRAMMAR
54c51e251 Fix parser shift/reduce problem on state 133
03eabd9c1 Fix shift/reduce conflict in the sec lang grammar.
941b9e75c Adds support to rules with actions without quotes
0087a602f Fix phases execution
8255ce86c Adds reference to filename and line number to lexer errors
900af2cd4 Adds possibility to use include with wildcards and env vars
cb9524ffd Adds support to collection in the parser
d084ab5f2 Fix the "line counting" on parser errors
70e2a4b37 Adds support to include path between quotes
b49709101 Cosmetics: Fix coding style
f6e0b447b Merge branch 'libmodsecurity' of https://github.com/SpiderLabs/ModSecurity into libmodsecurity
1cf1e313c Added some comments about msc_set_log_cb
d044c7aae Removed some extra comments
2c39f83b5 Fix the regression test regexp validation
f93c0de94 Disable NO_LOGS by default
076a02951 Huge performance improvement: passing variables as pointers avoiding copies
2451bf05d Using pcre (with JIT) instead of pcrecpp
ed86c24df Adds checks for the NO_LOGS definition and improved the vars resolution time
3e067e740 Core is now ready to deal with SecRulesEngine set to Off
11e1a67d5 Fix disruptive action flow while RuleEngine is in DetectionOnly
490ad23e4 Uses macro expansion before apply redirect action
90df21bbb Removes the \' from setvar before name the collections
d0c215d78 Adds support for the server log integration
5228b685b Fix disruptive actions execution
081fe235a Cosmetic: fix variable-REQUEST_BODY.json format
6782fd098 Cosmetic: Makes the parser error more verbose on the regression tests
5b18db779 Makes multipart debug messages goes over modsec debug log not stdout
a52a3a71e Fix some regression tests to fit the most recent changes
639ccf7dd Fix the rule execution debug log, so that tests won't complain
7f747d1dd Fix multipart parser in crlf blobs
c8f91ca85 Adds expected results when a regression test failed due to unexpected debug logs
e88d2120f Including space in the list of readable characters for debuglog
7a468a8fb Cosmetic: Prints regression test results in a better shape
9d60dc6df Adds macro expansion for all operators
320bcde89 Adds rule number to the debug logs and printing expaded variables
4bf7f7a44 Adds 'expandKeepOriginal' method to macro expansion class
c425b24ff Extends redirect action to support url without quotes
530b15831 Adds scripts to call the tests using valgrind
b1e845211 Limits the variable size into the debuglogs and print it in hex if needed
8772daec4 Adds functions limitTo and toHexIfNeed into utils.cc
97214edf6 Fix multipart parser on binary content
23d843259 Fix rule.h include on modsecurity.cc and seclang-parser.yy
a0a2d2c77 Adds support to read request body from a file
140a62a2b Changes rule_id to long in order to have it visible by systemtap
2a8f45b89 Adds transformations removeComments and replaceComments to the seclang parsers
3c5386991 Adds transformation normalisePath to seclang parser
92563da93 Adds t:utf8toUnicode and variable XML to the seclang parser
736183b7f Adds ctl:forceRequestBodyVariable to the seclang parser
4095ae7b5 Adds action accuracy to the parser
1079b5ba5 Adds action maturity to the parser
09651baf9 Adds action ver to the seclang parser
254b29265 Adds action expirevar to the parser and fix the line counting
ee8b88637 Adds parser support to ctl:[auditEngine|ruleEngine]
ec6a5a0cd Adds support to t:sha1 and t:hexEncode at seclang parser
d1fa2cfa7 Parser: Fix redirect action and adds SecRule first line-only comment syle
5c3a4b608 Adds support to SecMarker and skipAfter
b048794f4 Adds support to unconditional rules
4e8bb276b Fixing compilation problem on newer versions of gcc (Fedora 22+)
010c18f63 Adds support to SecDefaultAction configuration directive
f2ed890ea Now accept SecRules regardless of the letter case
8675383c0 Updated build instructions for Fedora
9a0c9d493 Updated build instructions for Fedora
84eba7ad1 Updated build instructions for Fedora
9cd9f7f11 Updated readme to reflect required Fedora packages
d963e2dc2 Updated readme to reflect required Fedora packages
3cd54e753 Updated readme to reflect required Fedora packages
7afd93196 Adds contains to the list of operators compatibles with the capture action
3de845fac Fix macro expansion string replacement
45d81e1c0 Adds sanity check to the rule id action
6ab88472b Adds a simple regression test for the operator @rx
a63aa50f1 Changes the default operator to be @rx not @pm
ea4cd5322 Accepts phases with its name instead of a number
035040cd1 Adds sanity check to confirm that the rule has an ID and it is not duplicated
aae8036c0 Cosmetics: Fix debug log message
5d24b237b Fix default parts to be logged on audit logs
fa4f72d90 Adds support to ctl:auditLogParts variation
e89e395a3 Fix various minor issues on the auditlog schema
24b7d7266 DebugLogs are now being redirected to the correct files
01542e28c Allows blank line (or line with space) at the end of a rules file
e76af0eab Correctly handling nginx configuration merge
004ef066e Fix rules chain and action execution
f2da6bb81 Fix the ruturn value while loading the rules
c586ba017 Removes an unused state from the seclang parser
15893e312 Fix regression test and example: checking if rules are loaded ok
e94226f1d Fix some build issues
fd8578351 Fix segmentation fault in the regression tests
a16850271 Adds missing file
1065e297b Fix several minor issues on the seclang grammar
e78d7f5b9 Makes the parser understand some missing configuration directives
a453a656c Fix continuation line and VARIABLENOCOLON
0b225f023 Parser: adds support to SecRequestBodyInMemoryLimit
2d56aa521 Cosmetics: fix actions on yy file
a230a4ff3 parser: Adds support for continuation lines
ef9961540 parser: Understanding @pm if no operator is provided
101fddfc9 Extends DICT_ELEMENT to support "-"
d5bf95502 Using DetectionOnly instead of DetectOnly
b7fb65fe6 seclanguage: ignore lines starting with "#"
cff74e7ce Fix ValidateUrlEncoding corner case
1de6d07df Adds support to the @detectSQLi operator
4baee88eb Adds support to the @detectXSS operator
f0535ae11 Adds libinjection repo as submodule
ad65a1abe Adds @noMatch operator
73c6c8cf7 build: searching for pcre/geoip on /opt/local directory
d5fe21ce3 Code cosmetics: reduce the amount of cppcheck warnings
21400ba45 Adds support to the @verifyCC operator
1b0a91833 Adds support to the @validateUrlEncoding operator
b325834f1 Disables c++11 mutex, until we have a better approach
ac2f0bfd0 Cosmetic: avoiding warning by including full path instead of file.h
2ff0a44df Eliminates the sec language grammar shift-reduce problem
a324ff931 Fix validate byte range table initizliation
187be64ed Fix operator instantiation/selection
9a7506f9e Adds support to the beginsWith operator
209a3db47 Adds support to the @endsWith operator
577736abb Code cosmetics: Fix the coding style.
fb161a69a Removes some warnings by adding missing returns
c5a435534 Fix geolookup operator instantiation
64cbb1533 Adds support to the @containsWord operator
2f81b62d1 Adds missing return to ValidateByteRange::init
b883888c0 Adds support to the operator @within
218eab641 Fix libgeoip lookup during the build
52c419df6 Updates secrules-language-tests version
f231df16a Adds support to the ValidateUtf8Encoding operator
9096055ea Reduces bison dependency to 3.0
70c2621af Adds support to the strmatch operator
f62e17c67 Adds support to the @eq operator
2f1bcf6cb Ignores the parameters order on the test case
9231f507b Fill PATH_INFO with decoded value
9431678f8 Adds missing return true on RequestBodyProcessor::Multipart
7c406529e Prints "failed!" for failed test cases
317c71e81 Using raw uri value to feed QUERY_STRING variable
70b25668b Checks if assay is set before calling the log method
0a91f2aa4 Changes the rule in the example folder to something really simple
ce0d81c0d Adds sanity check for inputs
5cc38abfe Updates the reference for secrules-language-tests
c06179f18 Adds support for Log and Rev actions
ad9393a8c Adds support for the tag action
f519717bd Adds support to the msg action
5fdb5b7d2 Adds support to macro expansion in setvar action
e12d95b10 Adds support to the TX collection and setvar action
a9e0fbb41 Adds variable variations test cases
88c53575b Adds support to & (count) and ! (exclusion) as variables variations
4308ee028 Adds t:none transformation
522f195aa Adds support to urlDecodeUni transformation
6dad6af4a Adds RemoveNulls trasnformation
62d004cf0 Adds support to the transformation normalisePathWin
1353403c9 Adds support to the HtmlEntityDecode transformation
ce298165d Adds support to the cssDecode transformation
1924b4ebc Adds lowercase transformation
391002c66 Adds support for jsDecode transformation
4f47651a6 Adds variable TX and action "capture".
be4a0cb41 Adds REQUEST_COOKIES and REQUEST_COOKIES_NAMES variables
0720fd479 Adds operator @pmFromFile and @pmF
57ceef1fe Update test cases submodule
d4dd9c86d Accepts Suricata format on @pm operator
95efb99a8 Adds support to the @pm operator
774d89735 Adds support to the operator @ipMatchFromFile and @ipMatchF
6cd4c0492 Adds support to the Rx operator
3a4cef6fb cosmetic: Fix ValidateByteRange coding style.
8575c1078 unit-test: Fix the geoip debug code
17f88f582 Using libpcre instead of c++11 regex
2f4d4691c Disables @containsWord operator to enable the libpcre migration
a4cf218a3 Removes chrono references to make it compile with gcc 4.8.x
933ade596 Cosmetics: 1st paragraph of README file is now with lines smaller than 80 chars
7ff38e901 Temporarily disable Geo Lookup logs to avoid crash on unit tests
f811ec651 Adds support to @ipMatch operator
bf0169b52 unit-tests: Releases operator after use
a05fa8287 Adds support to the validateByteRange operator
c2d33823f Adds method init to Operator class
7b4554216 Adds support to the operator le
606f03be4 Adds support to the operator gt
235bf9c01 Adds support to the operator gt
170cb60c8 Adds support to the @streq operator
35901c1eb Adds support to the operator ge
4462fd84e Adds support to negative on the contains operator
f41f9e1f0 Adds "negation" property to the operators signature
2f3a8f088 Updated wording and grammer in README
6beca48c5 Fix C api signatures
e016b72a8 Handles better the memory utilization
0e7c13e3c Adds more regression tests to SecRemoteRules
7ba5c76c7 Returns elegant errors if rules load operation failed
b8f7fb441 Adds support to SecRemoteRules and Include directives
ec9a97324 Fix actions: returning string copy after evaluation
b2bbe24e2 Process the request body even if there is nothing to be done
76b34af35 Adds support to load remote rules
70bc15cb7 Adds support to quoted ID action
64543e3aa Using A-Z instead of A-z while parsing with ?i: to avoid warnings
b5ca607e7 Places class Driver under the Parser namespace
9c2158958 parser: Loads content straight from buffer.
d3eb0fd91 Driver class is extending the Rules class instead of duplicate elements
dc0b13ad7 Cosmetic: fix copyright header
16bb253d0 Adds all variables to the 'Variables' name space
261ee9f11 Adds support to BodyLimitAction and support for parser errors
30b2624ec Adds support to parser error
5b3fd479f regression: better format errors, making easy to read the output
3f883df76 regression: Sorts test cases by file, making easy to read
3f8fa64c9 regression: Allows to specify a single file or directory
a4af4f32c Fix transformations regression test
667586c42 Adds UNIQUE_ID variable
d20a47fb0 Adds support to the variables: REMOTE_HOST, SERVER_{ADDR,PORT}
ae81bb143 Adds support to the variables: RESPONSE{BODY,CONTENT_LENGTH,CONTENT_TYPE}
ec34f676c Adds support to variables: REQUEST_{METHOD,PROTOCOL,URI,URI_RAW}
bc925e01e Adds support to the REQUEST_LINE variable
cb722c74b Adds support to REQUEST_HEADERS{_NAMES} and RESPONSE_HEADERS{_NAMES} vars
97c0d561f Adds suppor to the REQUEST_FILENAME variable
94eddfcf4 Adds support to the REQUEST_BODY_LENGTH variable
b6221c981 Adds support to REQUEST_BODY and REQUEST_BASENAME variables
6f7d3fa67 Adds support to the TIME* variables
ad442fb20 Fix transformation regression test
dbbb2c526 Adds support to REMOTE_PORT variable
e8476771e Adds support to REMOTE_HOST variable
cc576533b Adds regression test to the REMOTE_HOST variable
f05632acb Adds regression test for the REMOTE_ADDR variable
6af9e8e42 Fix QUERY_STRING variable
7f76bb6df Adds PATH_INFO variable
62fece782 Adds support to SecResponseBodyLimit directive and OUTBOUND_DATA_ERROR var
8e59b1822 Adds support to variable MULTIPART_UNMATCHED_BOUNDARY
a9147b76a Adds support to the MULTIPART_STRICT_ERROR variable
09beb1a5c Adds support to MULTIPART_NAME variable
954e275b3 Adds support to MULTIPART_FILENAME variable
abec93263 Adds support to MULTIPART_CRLF_LF_LINES variable
21f4c49a0 Adds support to MATCHED_VAR_NAME variable
b089c44c1 Adds support to MATCHED_VARS_NAMES variable
09867791c Adds support to MATCHED_VARS variable
9d6950196 Adds support to MATCHED_VAR variable
4f20f5bf7 Adds initial support to chained rules
9c066e319 Adds support to the INBOUND_DATA_ERROR variable and SecRequestBodyLimit direc.
95c2fed89 Adds support to severity action and HIGHEST_SEVERITY variable
e189055ec Adds support to GeoIP operator and variables.
41bf1490b Adds MODSEC_BUILD variable
6e46c5c7f Adds support to FULL_REQUEST_LENGTH variable
e516ded1e Adds FULL_REQUEST variable
a264fc11c Adds support to the FILES_TMP_CONTENT variable
b6cccc798 Adds support to the FILES_SIZES variable
ebb16d043 Adds support to FILES_COMBINED_SIZE variable
e1cff89b4 Adds support to FILES_NAMES variable
fe6a9913c Adds test case for FILES variable
5d5e10bfd Adds support for basic Multipart process
d0b7a9966 Adds support to the ENV variable
27252bc80 Adds support to the variable DURATION
33dff0f1b Refactoring on the variables resoluvtion method
8c408ebcd Adds support to AUTH_TYPE variable
d86427f1d Minor fix on the auditlog regression tests
f0624bb08 Adds support to ARGS_GET_NAMES variable
e7ec09623 Adds support to ARGS_POST_NAMES variable
bc0553e72 Adds support to the variable ARGS_NAMES
92c132b64 Adds support to the ARGS_GET variable
492526cfc Minor fix on the actions test case
85f065363 Adds support to the variable ARGS_POST
228a5ce7c Adds support to ARGS_COMBINED_SIZE variable
76b769cc8 Decodes the url content before assing values to varibles
b2954ff22 Fills ARGS variable even on POST
9f869a6aa Adds test case for the variable ARGS
80f13437e Refactoring on the variable read/store methods
f13a1bd88 Adds support the Parallel audit log index creation
96a777a5c Adds initial serial audit logging support
001d5ebf7 Properly deal with classes destructors
0c98bdc80 Adds support to SecAuditLogParts
5e33a1a3c Opens auditlog files and directories with the correct mode
c9620ac50 Writes audit log in parallel mode
693238b23 Process the log phase independent of disruptive actions
5e80e001e Adds Components information to the audit logs
1ddb36a78 Adds SecComponentSignature configuration directive
4aa521df6 Adds SecRuleEngine state information to the audit logs
75a9cfa27 Uses an enumeration to determine the state of the SecRuleEngine
cb8d6249a Adds connector information to the audit logs
2138dd136 Adds method setConnectorInformation to ModSecurity class
e42e7545d Adds ModSecurity version information to the audit logs
8dab5ac30 Adds whoAmI method to ModSecurity class
aa8dc9115 Adds first version of Assay's materialization in a JSON format
610b10bcd Adds ascTime function to utils
888b9622c Adds random id to each assay
311279402 Adds a time stamp to assay class
278b51393 Adds protocol and http version to processUri method's signature
210991084 Adds support to the server ID generation
aadbacf85 Adds basic regression test for AuditLog functionalities
fd8f26f76 Adds all auditlog related directives to the configuration parser
fc622c27d Checks if an assay is relevant to be saved as an auditlog
0beae17b4 Adds 'http_returned_code' property to Assay class
885fe14f3 Adds AuditLogWriter{Serial,Parallel} classes
e44d6e280 Adds actions 'auditlog' and 'noauditlog'
71eb27bbe Adds a new constructor to Action it now receives kind as parameter
616a2ae6d Adds AuditLog class
7ea9ff883 Code cosmetic: Having the code following our coding style
73154b51a Adds processLogging phase to regression tests
64a34584c Build system fixes
344aa901b Updates README.md: highlight that the project still under development
f262b404c Fixed issue #905 that dealt with compilation on c++ 5.x >
b9507e396 Decreases the bison requirement from 3.0.4 to 3.0.2
721f95115 Adds transformation functions stub
95cb4c56a Very first commit: libmodsecurity
33cbe0452 Opens space for libmodsecurity
4a49d5b8d Adds information about the issue #871 on the CHANGES file
d9bebfb87 Compiles against ssdeep in non-standard location
25666005e Modifies the CHANGES file to cite issue #609
1ed95ad93 Fix invalid storage reference by apr_psprintf() when creating a string from salt[]. salt[] is not '\0'-terminated, so apr_psprintf() needs to be told the extent of the bytes to read.
a9a39255b Version 2.9.0
b304ab1aa Improves SecRemoteRules messages on IIS
f7c7a30db Uses our own version of ap_find_command
462308be7 Improves the accuracy of version identification on status calls
a235b536a Fix apr_crypto.h include in modsecurity.h and msc_remote_rules.c
2e09b8e54 Fixed comment incorrect comment
de74b131c Version 2.9.0-RC2
b1e4954a8 Closes a file handle that was left opened on fuzzy hash
f6d6cea01 IIS: Creates IIS_VERSION definition
6c0cdab35 IIS: Changes Curl version and removes OpenSSL dependency
0d2d01ba2 Disables mlogc compilation with Curl was not found
069122194 Reducing the amount of compilation warnings
fa77c9358 Fix typo on fuzzy hash match message
dc81e4f85 Informs problems and successfully loaded external resources during reload
fe22446bd Adds missing 'ModSecurity:' prefix to log messages
ce4cf24f6 Refactoring external resources download warn messages
d4a055e78 Checks HTTP code after performing a resource download
87a401af0 Fix remote resources download while hosting SSL site on Apache
23823bb2c Makes Curl no longer a mandatory depedency for ModSecurity core
94fd570e3 Fix parser segfault on parser while parsing downloaded content
23f6f6e6e Version 2.9.0-RC1
b019f6056 fix typo
277f2e1e6 iis: adds openssl to the build scripts
9fe72b72d Improves the CA validation
b02256cf1 IIS: temporary removes ssdeep support on IIS
85c7ba0c7 IIS: Adds ssdeep/libfuzzy to msi installer
858d480ec iis: Copy yajl.dll into release files folder
9f005c3de mlgoc: Adds option to enable or disable the SSL checks
73d7955ac Fix the compatible IIS versions
eb61e891a Build: New alternative to identify the presence of libfuzzy
723336f1f Adds regression test for FILE_TMP_CONTENT
86787f2af Adds SecRemoteRules regression tests.
b5398abaf Forces downloads using https-only for resources or rules
59fc24350 Adds the `crypto' option to SecRemoteRules directive
c54bb746c Adds SecRemoteRules as an build option
38b992470 Adds the SecRemoteRulesFailAction directive
9b836b652 Initial support to load rules from a remote server
899ee0c36 Adds support to load remote resources to pmFromFile and ipMatchFromFile
81bde0842 Adds curl support to main core
f45c6fe87 Build: fix the build script that looks for yajl
288fedfd2 Adds real_server_signature symbol to msc_test
59a1746be Using real server signature on status call
8305600d5 Trims long `apache version' in the status call
cee205b10 Adds Status test case with the SecServerSignature being used
2615a5dfc mlogc: Checks if curl supports CURL_SSLVERSION_TLSv1_2 before use it
54bf71f8b mlogc: Changes the default SSL algo to TLS 1.2
d554b94d1 Include apr-util's LDFLAGS
66bb840a5 Adds doxygen configuration files
f2b45bfaf Automake: Using ../ instead of $(top_srcdir)
11ede79bc Adds automake subdir-objects option
c64a681c6 Temporarily disable a test that is leading nginx buildbot to fail.
de1c028d1 Declares msre_var *rvar at the beggining of the function
a45fe95ed FuzzyHash: if disable giving an run time error instead of config
fa0c97ea7 Adds regression test to cover the @fuzzeHash operator
7affec82a iis: Adds ssdeep support
96865a92d Adds fuzzyHash operator
873c628b1 Adds ssdeep support in our build system
accb1820e Adds collection FILES_TMP_CONTENT
87df4827d Print YAJL version on startup. Closing issue: #703
79639b5e4 Accepts random port on FULL_REQUEST regression test
6b5e9b127 Merge branch '0xbin-master'
ed52c5462 typo rectify
046b55373 Fix ipMatch entry on ErrorLog and DebugLog
5d92e448a Fixes subnets representations using slash notation
731466cff Adds @ipMatch operator unit test.
d4c2b96b8 IIS: Changes event ID (Issue #676)
0f7cbced8 IIS: Cosmetics: Removes CLFR.
1d3c8349f IIS: Adds a VS Custom build to speed up the dev process
3a7def63a IIS: Adds mlogc to ModSecurity solution
90c5a420d IIS: Cosmetics: Files are better grouped in VS
c4a5a1e11 Version 2.8.0
50e4961dd Uses autotools to idenfiy if sys/utsname.h is present
33231378d Increases the package version on the configure.ac
480f6bac7 Merge pull request #692 from rcbarnett/master
62a76e1ed Update CHANGES
ad5824c00 Fix type on the CHANGES file.
0826380ac Version 2.8.0
385a2828e Code cosmetics: Reduces the amounts of warning.
1e63e49db Uses %zu to print size_t instead of %d.
503e8f6c8 Updates the libinjection
66939d059 Adds initial support to @detectXSS
47f5cf92d Removes forced chartset
efef989dd Renames Sec{Read|Write}StateLimits
48d85c7d6 Places connection filter engine in a separated configuration
a15f8813e Honor the SecRuleEngine while filtering connections
0037a0732 Using RadixTree instead of list to storage IPs
80185e2a9 Bugfix: Missing ipv6 support check
b9fdc4fe3 Adds support to suspicious and whitelist to Read and Write limits
8ff3de5b6 iis: Disables installer repair
d6dd1f0e9 iis: Adding VC110 files to the Windows installer
28d4f9fce iis: Checks Win version before declare inet_pton
bd0980f63 Reverts commit: a4202146b8d26b6615bbab986383fe0afae60d77
93b12df72 iis: Removes unnecessary files.
fe727c702 iis: Updated OWASP crs to version 2.2.9
10db38431 iis: Adds cleanup methods to the installer
f8f06f793 IIS: Updates build_msi.bat to fit the new WiX install options
4d7d1ba82 iis: Adds listing dependencies script
619758c0c iis: Adds condition to avoid the use of 32b msi on a 64b os
93a86f6f3 iis: Adds Visual C++ 12.0 Runtime to be part of the msi package
ec61749a6 Changes JSON parser to not accept parcial contents
966e7e1ff Adds verification before access the strcmp
c5c269080 Adds origin to the paramenters that cames from JSON
52bef20ce Adds unit test to the JSON parser
a95f37196 Adds JSON support on ISS port
0787b4548 Adds support to JSON parser in the nginx module
09ced44ff Supports the yajl version 2
8d4c3e4f5 Makes the build system to look for yajl using a macro file
e90874a69 Added sample JSON content-type rule
c23097ce1 Added support for JSON body processor
410aca9d7 Optimization on the status engine call
20014c808 Adds modsecStatusEngineCall to standalone API
d75e443b9 Adds regression test to SecStatusEngine
a6d93441c Places StatusEngine to be Off by default
e131e2222 Adds support to status engine on IIS version
f86a71f7a Adds SecStatusEngine On/Off switch
0c6a661c6 First version of the status engine implementation
d93ce9cee Adds REQUEST_FULL and REQUEST_FULL_LENGTH variables
62f3d0289 Adds utf8toUnicode.t to our unit tests
5b0c933cf Fixes UTF8 to Unicode conversion bug in 4-byte encodings
7e459827e Log why writing to audit log failed
607dfd229 Fix segmentation fault if writing to audit log fails
5342f3616 iis: Uses code 400 instead of 44 in modsecurity.conf
a0ed3dbbe Merge pull request #666 from derhansen/master
dda91f168 Standalone: independently destroy the connection and request pools
27dd513ab Flip allocations that happen during initialization (typically) over to use non-global apr memory pools.
31d7fc6d3 Code cosmetics: Place copy_rules in nice shape.
62a6f228f Fixes for Parfait errors - mostly unhandled NULL pointer dereference and data type mismatch
5f996d45f Adds regression test to SecRequestBodyLimitAction
498b9b2e7 Don't reject a large request with ProcessPartial set
ab9aede2e Update status code for rule 200002
063dd640e Adds internal error messages while parsing the configutarion
da2ec008b Fixes a typo on the README.txt
1694a0cf3 Merge branch 'nginx_regression'
f043ba33a Adds .a to the list of expected liblua extension
5d2e3d432 test: 10-misc-directives.t is not considering log anymore
8804b55cd test: Makes regression test mac friendly
8314791c9 test: nginx: Adds timeout while listening for a socket.
215042af2 test: nginx: Points the !# to envoriment.
d26e63951 test: nginx: Speeds up regression test in nginx.
fe14d9df4 nginx: Considering modsec state before apply any rules
9bf1f6a2b test: removes uncessary ifDefine at 10-tfn-cache.t
94097103c test: nginx: Adds missing environment variables.
6c106b1fd test: disabling: SecAuditLogType Concurrent
8e390899e test: nginx: Increses the timeout while reading the audit log.
3cf170179 test: Adds loading tests also to nginx.
795d6a64d nginx: Warn about not workable 'proxy'
7478faa5c test: Adds support to handle different content in log depending on the version
7ac515ee2 nginx: Adds proper support to SecServerSignature
2a4358939 nginx: Removes problematic performance improvement
21e25c50a test: nginx: Adds missing files
176396ddc tests: nginx: Allow POSTs in static files
e20c80004 nginx: fix missing headers while SecResponseBodyAccess was On
445783d06 tests: Sleeps over 20 seconds if nginx failed to exit immediately
fb4e1f1b6 tests: Adds random data to a post making it workable in nginx
450d621ca tests: adds test-regression-nginx to the makefile
96ad8267e tests: Marks the run-regression-tests-nginx.pl script as executable.
93c5b8c6a Merge branch 'regression'
0ad390d12 Tests: fixes tests/regression/rule/10-xml.t
ba0818ca3 tests: cleans up the apache configuration file
6325ed8d4 Tests: fixes regression/misc/10-tfn-cache.t
ddb4fceb6 Tests: fixes regression/rule/20-exceptions.t
0c99063aa Tests: fixes regression/rule/00-basics.t
7c9ebfeb2 Tests: fixes regression/action/10-logging.t
11287a6b9 test: fixes regression/misc/00-multipart-parser.t
b0025c88f tests: fixes regression/config/10-request-directives.t
e5560a6a4 tests: fixes regression/config/10-misc-directives.t
0ddd2b463 Add mod_extract_forwarded.c to run before mod_security2.c
b788ce260 Clean the garbage character after the duplicated charset property
74ec78400 libinjection sync
227de9fb8 Reverts commit b1cbccdc6b18a0f3a4edda8a5dfa9f6621485e81
2f5af6af7 Merge tag 'refs/tags/v2.7.7'
87115e770 Adds a default config script to nginx
537b85edf Changes SecUnicodeMapFile in recommend configuration
90a44f688 Updates the changes file
c473aabb4 Changes release version to 2.7.7
b1cbccdc6 Added new directive (SecPdfProtectMethod) to enable the user to choose between using token redirection (falling back on forced download in some cases) and forced download (in all cases).
9543e136c Fix typo causing build issues
4a7d439de Merge branch 'release_2_7_6-rc2'
6d3606aad Updates CHANGES files.
1cde4d2dd Organizes all Makefile.am
351b9cc35 nginx: generates config file using configure input.
da16d9e5d nginx: adds lua support
5046c8327 iis: Cosmetics fixies on sqli.
ae252ee87 Regression tests: makes configuration compatible with 2.2 and 2.4 (try 2)
65d9272fd nginx: Trying apxs and apxs2 while compiling nginx module
35fd75d85 nginx: Trying apxs and apxs2 while compiling nginx module
751a9f4e4 macos: Using glibtoolize instead of libtoolize
6fc4cac37 regression-tests: makes configuration compatible with 2.2 and 2.4
e9813cd0d Regression test: get it working with apache 2.4
7366f35c1 Code cosmetics.
9bf2959c9 iis: Waiting for 5 seconds before move curl directory
f70f6f428 Redefines unixd_set_global_mutex_perms on tests
cef72855e test: Avoids conflict of fuctions definition
cc982ae42 test: Makes the unit tests to work again
ad330a44b iis: Avoids directory link while building
69c5ccac6 QA: Avoids the utilization of 3rd filedescriptor
baaf50236 Supports WarningCountingShellCommand in cppcheck and vera
388943440 Adds verbose quality check
b77e90152 Adds support for coding style and quality check
7b1537058 iis: Using base_rules instead of activated_rules
2ea5a74a7 iis: New improvements on the Wix installer
1a12648c9 iis: Removes the installer helper dependency
550d5aae2 iis: Remove readme.html
a2c5fc831 iis: Adds batch script to compile Wix
3604763e1 iis: Adds Wix installer resources
a4202146b iis: Fix inet_pton build problem
b32cb7d9a iis: Adds Wix installer xml file.c
7e03e3f84 iis: build_modsecurity.bat fixies
947711890 iis: Adds release script
79875b1af iis: fixies the Installer.cpp coding style
91738f93b iis: Removes AppWizard remade file
adfbeb85d iss: Removes pre-compiled headers
6adf25667 iis: Moves installer to InstallerHelper
8c3b8d81b iss: Removes fart dependencies
192599bf6 iss: Better err handling in build scripts.
e25c6b2e8 iis: Moves build_module.bat to build_modsecurity.bat
9b7663fa7 iis: Fix mlogc build on windows
28bbde1bb iss: Removes Post-Build event.
368617ddb iis: Relative paths on the VS project file
cf5de78df iis: Identifies arch before unzip apache
1447766e8 iis: Renamves winbuild to dependencies
9f8cbf6ed iis: Removes unnecessary files from winbuild dir
b277e538f iis: Improves the iis build system
a946a163f iis: Fixes the vcxproj file
26738d2e3 iis: Removes unecessary files from the build system
0a772cb07 iss: Changes httpd version 2.4.6
3e6fb41d3 iis: Changes the version of the dependencies
e3c19d53d Removes standalone/Makefile.in
1734221d9 Fix#154, Uses addn instead of apr_table_setn
61e54f206 Merge pull request #579 from zimmerle/revert_139
7f7d00fa2 Revert "Merge pull request #139 from chaizhenhua/remotes/trunk"
b0c397784 Merge pull request #578 from client9/remotes/trunk
a5f175d79 libinjection sync
88ebf8a0b Merge pull request #152 from client9/remotes/trunk
fcb6dc13e libinjection sync
f52242a01 libinjection sync
b76e26d81 Merge pull request #148 from zimmerle/bugfix_charset_missing_string_terminator
ff19dcd5c Bugfix: missing string terminator while mounting the charset (nginx)
786773189 Merge pull request #147 from zimmerle/fix_nginx_build_config_top_of_trunk
57330da9a nginx: Makes the build script to check for deps
9a630eea2 Merge pull request #141 from client9/remotes/trunk
11217207e libinjection sync
f8d441cd2 Fix Chunked string case sensitive issue - CVE-2013-5705
3901128f1 Revert "Fix Chuncked string case sensitive issue"
16a815a3c Fix Chuncked string case sensitive issue
10fd40fb0 Merge pull request #139 from chaizhenhua/remotes/trunk
414033aaf Merge pull request #138 from client9/remotes/trunk
e0993fcd7 Fixed fd leackage after reload
2268626c2 libinjection sync
7e0a9ecf7 Fix logical disjunction and conjunction issues
876d4f5f9 Merge pull request #136 from SpiderLabs/remotes/trunk
2c2adc20f Fix IIS Makefile.win typo
370069a08 Update CHANGES
88a9282c6 standalone: fix mutex compilation error with apache 2.4
464ac1eca Fix crash when use SessionID as paramenter in SecHashKey
e6f94eac4 Update CHANGES
50f9d0140 Merge pull request #130 from client9/remotes/trunk
8b6efc013 Fix make (rx regex) test
cefddebe1 libinjection sync
3f080fa8c Merge pull request #128 from client9/remotes/trunk
15f3a3040 libinjection v3.3.0 sync
65e97684b libinjection v3.2.0
7ca8830a3 Update CHANGES
0fc4142a3 Change strncpy to memcpy
f44a535c9 Merge pull request #125 from client9/remotes/trunk
a6fd09b69 Fix null byte convertion into utf8toUnicode
229d4e4fe Merge pull request #124 from client9/remotes/trunk
9eca8b5ca v3.1.0
b1f61617b Merge pull request #122 from client9/remotes/trunk
83fdf34dd sync with 3.0.0 tag
c07b9a536 libinjection v3.0.0pre21 take 2
4064e74cc Fixed: Libjection 3.0.0 compilation errors
9bf132334 Merge pull request #121 from client9/remotes/trunk
bebb45f3b SecUnicodeMapFile now accepts the code page. SecUnicodeCodePage is deprecated
034bf1912 Fix double free
885eeecef Fix outbound size of salt variable
b362ab0d9 Fix standalone makefile.am
a79e81849 Merge pull request #116 from chaizhenhua/remotes/trunk
4ffdf9bf6 Nginx: Fixed segfaults on reload
9851769ea Fixed: increasing compatibility with older versions of install
5cf5ff043 Fixed: flush libxml2 output buffer
df0b04825 Setting crypt outpur buffer as libxml2 output size
9517c3475 Fixed: URL normalization for SecHashEngine
1b3b38e6d Added: Release to 2.7.5
f955ba7e7 Added: severity action now supports strings
5ee4c1786 Fix libjection Makefile
867843c8a Merge pull request #113 from client9/remotes/trunk
69b109594 fix makefiles
4af03f208 Update to libinjection 3.0.0-pre8
760314a1c Fix make test
dafd9aeeb Fix make test
0532d20e4 update to 3.0.0-pre2
f003243d9 Merge pull request #106 from client9/remotes/trunk
41111ba47 Merge pull request #110 from SpiderLabs/remotes/trunk
0e269f1b3 Update CHANGES
ed24a6176 Merge pull request #108 from SpiderLabs/remotes/trunk
9835a32c3 Merge pull request #107 from gwroblew/remotes/trunk
cf9493aaf Fixing build makefile for IIS version.
3a3fda25f libinjection 2.0.0
2cf6cd5af Merge pull request #103 from SpiderLabs/remotes/trunk
b9a4322a3 Nginx: set to STABLE
82593f1f2 Merge pull request #99 from SpiderLabs/remotes/trunk
31df14919 Merge pull request #97 from SpiderLabs/remotes/trunk
bad458627 Nginx: Try to fix eats 100% cpu in ngx_event_pipe_write_to_downstream issue
400a5f5f5 Nginx: Fix implicit declaration of base64 encode funtion
35b36b703 Nginx: Fix UNIQUE_ID
612637489 Merge pull request #96 from chaizhenhua/remotes/trunk
ffbd350d9 Merge pull request #94 from SpiderLabs/remotes/trunk
f31724e20 Merge pull request #93 from SpiderLabs/remotes/trunk
1f4757d17 Reverting Quality of Nginx. CPU issue is not fixed
fed38c810 Fixed: return msgs at detectSQLi
db964c422 Fixed: return msgs at detectSQLi
4bc068e58 Sync to 1.2.0, fix regression in small sqli detection
2585964b6 NGINX set to STABLE
b2d76750c Update CHANGES
cd31b39ce Removed SecDefineRemoteAddr and fixed Apache 2.4 mod_remoteip integration
06fc5e56c Merge pull request #85 from client9/remotes/trunk
d30cf4153 Merge pull request #83 from client9/remotes/trunk
ebcfe2c18 Update libinjection to version 1.1.0
1f271fdca Fixed: Rule 200003 returning default status
84d27cca1 Remove unwanted comment
6e038228c Update CHANGES security issues
29ed5c4dc Added: SDBM_DELETE_ERROR variable
eb9538457 Fixed: SecPerfRuleTimes storing unwanted rules
86d939fbe MODSEC-362
6cd3a14db MODSEC-362
08471afaf Merge pull request #80 from client9/remotes/trunk
3ca159e7b sync with upstream, fix read-past-end errors
9f36e55ad Merge pull request #78 from client9/remotes/trunk
c10551dcf sync with upstream: c89 support, win32 support, more detection, less false postives
b6b284ea6 test
9aca58c3d Updated release version
aa18ec7f4 Updated copyright dates
72d26e80e Fixed: libinjection for windows
835661964 Fixed: tests for detectSQLi
2c833f1c0 MODSEC-392
c5e460504 Added Libjection tests
e97c12f8a Added Libjection
417d7daf2 Added Libjection
f10669b34 Merge pull request #72 from chaizhenhua/remotes/trunk
fd2c30fa2 Nginx: minor improve
9b13d245e Merge pull request #70 from chaizhenhua/remotes/trunk
fdf0ba540 Nginx Improved: set filter_need_in_memory flag so that nginx transfer response in memory, we do not need read from file buffer.
1919c3a44 Merge pull request #67 from chaizhenhua/remotes/trunk
74278a8e9 Nginx Improved response body filter, issue #56 might be fixed
72a3389b6 Merge pull request #65 from chaizhenhua/remotes/trunk
e553761ae Nginx Improved: if "SecResponseBodyAccess off" do not copy response body buffer
3da87da15 Fixed: typo
20947937f Merge pull request #61 from chaizhenhua/remotes/trunk
ddd6bd2a7 Nginx Improved: modsec terminate handling
c30bb6d6d Fixed: SDBM deadlock
3bd497946 Fixed: possible memory leak in rsub
0840b1361 Fixed: chuck null pointer when unknown CT is sent and over in-memory limit
d8262fc6c Fixed: standalone Makefile.am
c71ef0508 Merge pull request #57 from chaizhenhua/remotes/trunk
5ce1818a9 Nginx Fixed if "master_process off" is set nginx will crash at exit
36c2e1bcc Merge pull request #54 from chaizhenhua/regression-tests
a951a83ee Nginx: Improved redirect action work for phases except log
e9af8a3ab Added Nginx regression test
088c660d5 Improved build script
04cdca84e Merge pull request #52 from SpiderLabs/remotes/trunk
d93be4804 Fixed: Regression tests with no ID present
ca78eba85 Fixed: Regression tests with no ID present
e8189d97b Merge pull request #50 from chaizhenhua/Bugfix
42e9a5ab2 Nginx: Fixed internal request finalized after rewrite with regex
86871ccab Fixed: Nginx crash in ngx_pool_context.c
9b1d6bfc0 Merge pull request #49 from chaizhenhua/Bugfix
6934acf0e Nginx: Fixed memory leakage
a87b06f9f Nginx: Fixed config file
a77e5dc0f Merge pull request #48 from gwroblew/remotes/trunk
b7d3a084c Fixed config.c to compile on Unix.
22b8e6cfd Fixed: Nginx crash in ngx_pool_context.c
022d5db21 Fixed config and memory leakage
a47a4ce4f Fixed two crashing bugs: race condition when module was initialized and failing config commands in libapr.
601d3ed63 Fixed config.c to compile on Unix.
5457ebe0d Nginx: fix makefile
2fcc08952 Nginx: fix makefile
5303c003b Update master to 2.7.3
3ff17fcd1 Update CHANGES
f73635ab5 Merge pull request #45 from gwroblew/remotes/trunk
bc235a855 Merge pull request #44 from chaizhenhua/SecDisableBackendCompression
177b5b9c9 Nginx: Added SecDisableBackendCompression support Nginx: Added internel redirected request processing
55850a9c8 Update CHANGES
a5c149204 [MODSEC-386] Added error msg for update target by id function
43162f52c Fixed: Nginx return 500 when request body is off
df383b9b8 Better error messages for sdbm code
d4d80b38a Added SecXmlExternalEntity
4db1f51f3 Added MULTIPART_NAME and MULTIPART_FILENAME variables
bc65c3e40 MODSEC-58
5fefb6a2c MODSEC-58
2472dcb54 Change release version
25c4146eb Merge pull request #39 from gwroblew/remotes/trunk
1ead2f631 Removing OWASP CRS copy.
c1ba71ab1 Fixed files overwriting in installer; added OWASP CRS.
9725e71f0 ModSecurity: improving duplicate ID search
8816254cc ModSecurity: fixed compiling with lua 5.2
f9b113b86 Nginx: fixed compiling with lua
4a8e536b0 Nginx: fixed SecRequestBodyAccess
154e80750 Nginx: fixed crash in pcre
34d5289e7 Merge pull request #36 from chaizhenhua/remotes/trunk
1a89b6b8a Fixed deny not work in response phase, Fixed debug log message
65d889664 Fixed Action Deny not Work
ed1d3d927 Fixed Action Drop not work
eabc39ad8 Added SecCookieV0Separator
b3418be75 Merge pull request #35 from chaizhenhua/remotes/trunk
ae0bee062 Merge pull request #34 from chaizhenhua/remotes/trunk
972d9e2ab Added Response Phase for Nginx
48bd09939 dos2unix standalone/api.c
df7cafe85 Merge pull request #33 from gwroblew/remotes/trunk
635a57389 New IIS installer project files.
406d48200 Fix issue in ipmatchf
067e7d197 Fix issue in ipmatchf
ff335fddc Update CHANGES
8148a8071 Update CHANGES
49c505156 Merging 2.7.2 into master
adb38adc7 IIS version as stable
e15bbac21 Merge pull request #31 from gwroblew/remotes/trunk
c53e743c8 IIS version improvements
54245c924 Merge pull request #27 from chaizhenhua/read_client_request_body
0566d652c Fixed hang up when post multiple request
22b8293fd Fixed content length error
275cb28a0 Added 'ngx_modsecurity_write_body_cb' so that NGINX can deal with STREAM_INPUT_BODY
604643c4b change CRLF to LF
d5a6df167 promote modsecurity_handler from CONTENT_PHASE to PREACCESS_PHASE, so that we can process and pass request to backend without internal redirect.
fc7b3ef22 Fixed valgrind complain
213cd1e84 Fixed: detect comma plus white space as a cookie separator - change variable names
80146b2c7 Fixed: detect comma plus white space as a cookie separator
86e045572 Fixed compile error
48030ca05 Merge pull request #22 from chaizhenhua/read_client_request_body
82d44071d Fixed 'request body is larger ...' error
231921ce2 Revert "Fixed request body is larger"
ee47cccb6 Fixed request body is larger
3f6c14de5 Fixed msc_test crash using pcre jit in some platforms
f6bf1a2b9 Fixed compat issue with automake >= 1.12
973bfae33 Fixed compat lua_load() with lua 5.2.x
21b877048 Added dirs to build nginx on Fedora
344ec7dfa Added cleanup handler for finalize request
5f97bec8d read client body in a better manner
77ccd0b7b Fixed: ngx_http_read_client_request_body returned unexpected buffer type
cc6e8532f Merge pull request #18 from chaizhenhua/remotes/trunk
6815d1769 Added drop action for nginx
f920303e8 Fixed change from double to single quotes in find_pcre.m4
7ed0c305f Fixed MODSEC-364
18e0c45e3 Fixed MODSEC-360
adca6e4b2 Merge pull request #13 from hideaki/cpf_verify_fix
c98da92cf fixed bugs in cpf_verify
fc45a3fe3 Fixed compilation issue under Windows when APR ipv6 is disabled
bd3cb0c72 MODSEC-359
4564c6548 MODSEC-359
5c6bdb90f change msc_release.h to 2.7.2
c4e9dbaed added APR_HAVE_ARPA_INET_H pre-compile macro
ac4815f49 modsecurity_config.h was empty breaking SecUploadModeFile directive
2f7a1ac0e Merge pull request #12 from gwroblew/remotes/trunk
0e2b07b00 Fixed \ handling in Include command on Windows.
a4c75689f remotestrunk
0265607df Merge pull request #11 from gwroblew/remotes/trunk
bfdb28e2a Fix for broken logging of IP client address in some cases.
42aa05408 remotestrunk
c2c491861 fix for issues in ssn_verify such as infinite loop.
91e5f85cc fix for issues in ssn_verify such as infinite loop.
bd3d07024 Merge pull request #10 from hideaki/verifyssn_infinite_loop
7beb244df fix for issues in ssn_verify such as infinite loop.
00b22f0c5 Fixed NGINX compilation issues
d7280c61f Fixed NGINX compilation issues
8560642b9 Update CHANGES
19d71f794 Update CHANGES
179b53661 Fixed crash with invalid commands and marked IIS server as non-virtua… …
d1c002d6c handle invalid escape sequence passed to strmatch operator
dc8d464e9 Merge pull request #9 from gwroblew/remotes/trunk
b31f83b29 Merge pull request #8 from hideaki/strmatch_coredump
74b8daaad Fixed crash with invalid commands and marked IIS server as non-virtual, so many commands would work (like SecDataDir).
9e6dddff8 handle invalid escape sequence passed to strmatch operator
2b1c1ad74 Merge pull request #7 from gwroblew/remotes/trunk
f14eaeb3d Fixed build on Apache 2.4.
ee1112530 Merge pull request #6 from gwroblew/remotes/trunk
2336cf929 Minor changes to IIS module.
b353bd60a Fixed build on Apache 2.4.
267bfe6ca Minor changes to IIS module
408f37015 Fixed byte conversion issue during logging under zlinux
ce3cf00a2 Fixed byte conversion issue during logging under zlinux
f22bca10f Fix error_message type
6d9327f4a Fix error_message type
a01b85b89 Update CHANGES and doc/
9027fbbfd Update CHANGES and doc/
428cbcb6b Change names of HMAC feature to HASH
eb41bd44f Change names of HMAC feature to HASH
451041cd8 Change names of HMAC feature to HASH
208d9d3a9 Change names of HMAC feature to HASH
5f98d8008 Change names of HMAC feature to HASH
0757a9f87 Added -R option to libtool with pcre lib path
a528e1c92 Added -R option to libtool with pcre lib path
53d422e9d Change names of HMAC feature to HASH
3bca8d41f Change names of HMAC feature to HASH
af22ddf87 Merge pull request #3 from bnordgren/install
f23dbcba7 Merge pull request #2 from alanjumpi/remotes/trunk
606cd72f9 Fixed small bug in install phase, where mod_security2.so ignores $DESTDIR
18c42d513 TODO updated
76fc19401 Merging with master
3ef77de11 Merging to release 2.7.1
f4fe08f7e Update CHANGES
18429396a Fixed bug when used ctl:ruleRemoveByTag
b58598988 Update CRS info into README.txt
05e3a1798 Update CRS info into README.txt
95211c820 Update CHANGES
c0c722ccb Update CHANGES
52a535cca Update CHANGES
9fe676406 Update CHANGES
afea6dbe6 Fixed drop action was disabled by mistake for apache2
a3a39a21d Update CHANGES
14eff8470 Update CHANGES
d4bd47893 Update CHANGES
3ab2289ec Fixed drop action was disabled by mistake for apache2
4346e54a1 Update CHANGES
9f4bd2188 Update CHANGES
2403a1a54 Fix some strange breakline situation in apache24
612d9e473 Fix some strange breakline situation in apache24
b64185024 Update msc_release.h
ed74a60bf Update msc_release.h
df58972ab Update documentation
bfab0397f Update documentation
a27e3a901 Removed prng() function and added apr_generate_random_bytes
6bc9ae2c4 Removed prng() function and added apr_generate_random_bytes
8aa17b546 Removed prng() function and added apr_generate_random_bytes
6f13bd11f Removed prng() function and added apr_generate_random_bytes
ee31c5ba9 Fix LibXml2.9.0 issue
d3164f8db Fix LibXml2.9.0 issue
a9266d4ca Updated getkey function
75a5e1d3f Updated getkey function
75a7cfb1b Update msc_release.h
190afbfc3 Update msc_release.h
79423f9cf Minor fix, two functions name change.
72b079139 Minor fix, two functions name change.
7dea71bd7 Update Reference Manual
53cdabdf8 Update Reference Manual
87c47a882 Fix rule 200002
6e107a8b1 Fix rule 200002
30526c6e4 Update CHANGES and msc_release.h
8fd1c0f76 Update CHANGES and msc_release.h
ef3fa0b1f Added MULTIPART_INVALID_PART flag
6335e5426 Added MULTIPART_INVALID_PART flag
af537253d Merging rev 2079 with the branch 2.7.x
6900616fa Standalone: added Include command IIS: added locking, response processing check, fixed file chunk reading bugs
d7b9ad862 Update Reference Manual and CHANGES
f00cb1a4e Update Reference Manual and CHANGES
513dba260 MODSEC-337
060cf0ab3 MODSEC-337
80abe0fdf MODSEC-226
0e85d9f75 MODSEC-226
7de3f1e50 MODSEC-297
735510071 MODSEC-297
e6afef5c1 MODSEC-297
5c5107a86 MODSEC-297
88513bd28 MODSEC-336
2d519ff85 MODSEC-336
10e2eec5b MODSEC-336
0d2307192 MODSEC-336
9661ac4de MODSEC-261
dc8352852 MODSEC-261
724060a29 Reverted SecCookiev0Separator
919e3f5e2 Reverted SecCookiev0Separator
4c7ab5974 MODSEC-261
aee22ea46 MODSEC-261
73e87c035 module bugfixes (kyprizel)
031080c72 Added unicode mapping directives to recommended file
0499f1444 Added unicode mapping directives to recommended file
20cd5d069 Added unicode mapping directives to recommended file
57b80fedc Added unicode mapping directives to recommended file
081a0af6e Update to release 2.6.8
a9ab4632f Update to release 2.6.8
100168260 Fix MODSEC-315
18f98e755 Fix MODSEC-315
6059fc144 Fix MODSEC-333
e821aaf04 Fix MODSEC-333
db73e14ed branch 2.7.x
09450c266 branch 2.7.x
35a9a6c3e Changes from kyprizel (Eldar Zaitov)
ecb39070e branch 2.7.x
22b1e2fb1 Fix typo
203e34651 update msc_release.h
8dc9ae913 Added client IP passing to IIS and two missing IIS installer files.
e4d2dabe0 Improved IIS build process and more fixes to handle Apache 2.4.
a63008b16 Changes from kyprizel.
3425aa9b4 Fixing Apache 2.2 build.
040d4469d Enable warning message with over SecRequestBodyNoFilesLimit
d5ccfbafc Fix compilation issues in server.c
092559a58 Added missing functions to make non-Apache versions compile with Apache 2.4.
9eaa6a9a4 Update CHANGES
dc4ec2df4 Fixed format string issue in ngx_log_error
7ea0e1223 Libxml2 must be at least 2.6.29 for 2.7.0
eeb331ca4 Added utf8toUnicode tfn - fix typo
781a506bc Added utf8toUnicode tfn
499819e23 standalone module enabled by --enable-standalone-module configure option
1e7fd3e5f for build standalone infrastructure necessary for IIS/NGINX
7b014be28 Update CHANGES
1d36512c0 Standalone module shouldnt be default
d36120b41 Fix compilation issues in server.c and config.c
ada16d3e9 Fix compilation issues in server.c. Looks like unixd_config is different in apache major and minor versions
054e015de Fix compilation issues in api.c
c9202a44b Update license
1df668c94 Remove CRLF from Makefile.am
2dbe4ab4f Second part of IIS/nginx merge into M2 trunk.
f3e31c75a Merging IIS and nginx code into M2 trunk.
7f33b00f7 Fixed some dereferenced pointers
8d5131a18 Fixed some dereferenced pointers
c09d6e57d Fixed some dereferenced
221aba605 Fixed some dereferenced
d267142bb Fixed check if s->name & value is NULL
fc8edbb46 Fixed check if s->name & value is NULL
a95f337ed Fixed check if ip_strv is NULL
7385b120a Fixed check if ip_strv is NULL
928ae2a22 Fixed unused error_msg in msc_crypt
c24eaec77 Fixed unused error_msg in msc_crypt
9d19e7b06 Make internal m_strcasestr default
8cec8c7e6 Make internal m_strcasestr default
a4c68c863 Revert configure.ac. Waiting for the merge
bc5930086 Add license to standalone/
22b763257 Fixing missing code between branches
429ba6ac4 Fixing missing code between branches
76925c6e7 Update CHANGES
f624802d3 Update CHANGES
bdcecf50f MODSEC-328
ecc2ee8fd MODSEC-328
bf5cd6211 MODSEC-326
eb7a9ed7a MODSEC-326
e8bd4c05f Revert pcre message warning mismatch
16376f075 Revert pcre message warning mismatch
4460061d2 Fix return msgs
c4b12060c Fix return msgs
5f6985183 Init variables
fdee16ddd Init variables
592ec392d Remove ctl:ruleUpdateTarget* and add ctl:ruleRemovetarget*
890a1cfb7 Remove ctl:ruleUpdateTarget* and add ctl:ruleRemovetarget*
543a7db8a Check for strcasestr
6b943dbb2 Check for strcasestr
1e8259b4a Avoid double close() for multipart file descriptors
912606fc3 Avoid double close() for multipart file descriptors
1c3efe02f Update Reference Manual
60960a1f0 Update Reference Manual
71c1e7813 Fix replacing targets
67cf78cd4 Fix replacing targets
f4d446574 Fix pcre version mismatch warning
d5866ff3e Fix pcre version mismatch warning
3a05349e0 Fix setting key len for child conf
2e055003c Fix setting key len for child conf
21e21b23a Release 2.7.0-rc2
9c73ad68e Release 2.7.0-rc2
245f6dc61 Release 2.7.0-rc2
ef64c7070 Release 2.7.0-rc2
c22376aa5 Fix warnings
027ae6eea Fix warnings
f896591fc Fix warnings
3bb931e18 Fix warnings
89fb40248 change release to 2.7.0-rc2
21be05c7f change release to 2.7.0-rc2
2791e7766 Fix code for windows
81b74ba63 Fix code for windows
5b46e6c61 Fix code for windows
35d97d586 Fix code for windows
6223499dd Update CHANGES
e2d0715c1 Update CHANGES
ad059c9e6 Add inet_pton for windows
de56a8bcf Add inet_pton for windows
ead368268 Add inet_pton for windows
780db2039 Add inet_pton for windows
ab4d5acce Fix windows error compilation
22e20c699 Fix windows error compilation
88331d122 Fix windows error compilation
04fa8bbd0 Fix windows error compilation
8bf46a3d8 Fix PRNG code and windows compilation errors
4ab785c19 Fix PRNG code and windows compilation errors
a958dfd49 Fix PRNG code
575356f10 Fix PRNG code
d20354917 Improve random number generator
4ef3cc8eb Improve random number generator
3caaf60fa Improve random number generator
f72ba4d36 Improve random number generator
517abc595 Improve random number generator
39fcad456 Improve random number generator
0ed1a1b8b Fix loop into getkey
563017fce Fix loop into getkey
51067c23d update CHANGES
24b5c96c2 update CHANGES
9d2b4568f 2.7.x
56a396519 backport HURD and KfreeBSD build support
c5cc0bfa9 Update CHANGES
28621131a Update Reference manual
e584123ab Fix quote validation in multipart code
988e78e9a Fix quote validation in multipart code
8ead49a9b Added id to recommended file rules
b6414bbdf Update reference manual
f16240985 Added null pointer check
3457fcbd5 Added support to KfreeBSD and HURD
d88a24da1 fix rsub input parsing and add maturity, ver and accuracy actions
480af9375 update CHANGES
14156d831 Add ipmatchFromfile
d3ad05e9c MODSEC-312
4ed9015ea README.txt
c19269dc4 Update mlogc code
f0fab2a80 Fix apache 2.4 compilation issue during make test
4888769e7 Update trunk for 2.7
866cb6d6b Update trunk for 2.7
4bebeb6dd Revert any lua change
24ac0c4a9 Fix typo in CHANGES
864212074 Code cleanups
5b82006fe Code cleanup
25d1816c2 MODSEC-282
9948c424a Fix typo
2be4d8b02 Fix new apache api
2046a43bf Fixed AP_SERVER_MINOR instead of AP_SERVER_MAJOR
e1e43cfa1 Fixed new apache API
2e00ae0f4 Fixed new apache API
992d075d8 Update doc/
7d327e8df Update lastest Apache API
76e909c5a Rename collection timeout diretive
6cf207ce3 update CHANGES
f92f8219d fix stream vars memory leak
1daafed72 fix arg name with double dot in SecUpdateTargetById
f47fb8ebf Dont create new lua vms
3090edd85 sqlHexDecode fully hex decode
9cbc44eea Fix PCRE jit issue when not enable jit in configure
c48d84313 Enable default configure options
3cb5edde2 Add extra debug info for pcre jit
1c0ed192d Add pcre JIT support - experimental
2a585fba8 Check for X in uppercase into sqlHexDecode
162f219f1 MODSEC-273
16ae74172 Fix issue in sqlhexdecode
f6e53252b add collection timeout in the trunk
c3b0cfc35 add sqlHexDecode tfn
150bc418d Fix issue in sqlHexDecode
d4079971c MODSEC-160
1bf5f4532 MODSEC-272
82dfd037c MODSEC-272
c99d14797 MODSEC-270
a4f0957b0 Revert hexDecode and add new sqlHexDecode
5d0e3f910 change release version, doc, CHANGES
a16c002f3 Fix make test
ce0f5522b force pointers to null after free()
ea09d6848 fix free() typo
a2b45bfeb update CHANGES
3ec3d652a fix multiple variables when appending new targets
31183499e MODSEC-254
b0e9468d6 MODSEC-249
d43c7e0bf MODSEC-132
8a5a53431 MODSEC-258
0ae09036b MODSEC-255
5cacf63b3 MODSEC-142
77c4c70f5 Fix windows makefile
9f526bbea Fixes on autogen.sh
8ed0c1051 Fix build system with PCRE_ vars
78880129b Fix urbl whitelist msg
1cc9ac781 Update CHANGES
3517f8659 update manual
cf7eecbe8 update msc_release
6c89afcf7 MODSEC-211
6c71b2698 [Reverted] Check POST request for SecWriteStateLimit
644d0b58f Check POST request for SecWriteStateLimit
152164b77 CHANGES
de02ea5e4 Add new unicode map settings and fix requet body truncate bug
b2a486e4b Only reinject stream if data is changed by rsub
ad168c801 Only reinject stream if data is changed by rsub
3d69126de Build and code fixes
d0da1372f Build and code fixes
06dd5907b Build and code fixes
dc41b967b Fixed building with LUA
c41c3cee2 Fixed building with LUA
9623fbd5b Cleanup unicode map file
f59591910 Implement unicode map
646564cd4 Renaming GSB functions
c8d292105 Renaming GSB functions
9ece2422c Remove unused geo code
1341c4983 Remove log part K from default configuration
edf039b8a Fix MODSEC-245
6d7781754 Fix MODSEC-247
0cf21202e Update CHANGES - fix Marc name
d84face22 Update CHANGES
e1025d0f0 Change apr version macro by apache one
de463a85c Fixed matched_var bug
3e0acbe16 Fixed matched_var bug
50293aef9 Add domain to tx.1 whe gsblookup matchs
5eaa1a734 Added SecWriteStateLimit for slow post DoS
c78903e98 Fix problem when buffering in input filter
241f222a1 Wrong lenght information in input filter when forward stream variable
1bfbe0c14 Fix issue counting requet body len
aa3fa1450 Fix issue in MATCHED_VARS_NAMES
21c81331c Uncomment input stream
352fc200b Remove extra useless files
b3b68d1e3 Edit CHANGES
21dcfde3c Remove unused defines
b19f32bb3 Make clean and maintainer-clean removes unused files, also add # when rule chain doenst match
d4d349753 clean stream buffer
0ee85b348 clean stream buffer
0cc30904b Fix issue in input stream
1aa4cace6 Fix compiler warnings
f468224a4 Change log_escape_nq to log_escape
6b7edc4d4 Fixes, code cleanups, improvements
0b3ed4181 Avoid *FLAGS resetting - Diego Elio
162e0ff81 Remove unused localtime function
123018cfc Rewriting parser for gsblookup
ab339c7b1 Rewriting parser for gsblookup
8c8c583de Rewriting parser for gsblookup
5328bcdea Rewriting parser for gsblookup
3ed70ea17 Rewriting parser for gsblookup
0eb1f68da Improvements on gsblookup - reduce multiple slashes
ab8c7e6f4 Improvements on gsblookup
cf97731cc Fix logging MATCHED_VARS issue
352514f7d Fix comment to reflext the base64DecodeExt change
808a7bbc1 Add support to AIX and HPUX build (untested)
4ae9a91d7 Only change stream var->value if we have the realloced buffer
c1d3fd636 Applied patches from Diego
9fb9aeb6a Detele useless files
15338bbf9 Rename DecodeBase64Ext to base64DecodeExt
7493f01ef Delete useless files
0e4f88630 Delete useless files
f3f7d6488 Delete useless files
ef56f47b4 delete useless files
748aea7b6 delete useless files
c4f3d121f Fix without-lua into trunk - Diego Elio
43e3ea65b update recommended configuration
ec29fb539 update release trunk for 2.7.x
a21e03eaf Update CHANGES and Reference Manual
d68731a38 APR-Ipmatch operator
4c6419cf7 Remove extra debug msg for log section K
9cd2efd97 Added extra debug msg for log section K
025d41f71 Added extra debug msg for log section K
5bfb2973e Change rule comparing to log section K
502e97642 Author at README_WINDOWS
ba651304d Fix make test
6ea5cba17 Move version() to mod_security2
57140c25f MODSEC-37
30da07b59 MODSEC-37
f64b5544a Move version() to mod_security2
371df205d Change license on msc_test
9ca34a322 Change apr_cpystr to strncpy
6047658d0 Cleaning stream out buf
d98231e11 Cleaning stream out buf
eec65ea29 Include sucess msg in ipmatch
775f10598 MODSEC-221
843f7fc01 Test makefile
7635bd5f1 Improvements in detection only
a9557a66c Add more char to escape in log_escape_re
34d2f43a1 fixes for solaris compilation
4643799ba fixes for solaris compilation
d878fce0c fixes for solaris compilation
3b4c46f27 Improvements in detection only
9c5e0a4f9 Improvements in detection only
b8828ad3f Improvements in detection only
13980bd04 Improvements in detection only
ae006f7a8 Improvements in detection only
cb3353f13 Improvements in detection only
3377831b3 Improvements in detection only
50205ebf6 Improvements in detection only
0f5b0debe Print when request is blocked when it is larger than the configuration
6e3bb889c Print when request is blocked when it is larger than the configuration
1e2f836b3 Print when request is blocked when it is larger than the configuration
ed06ed2ae Fix issue in detection only
2a8c8a747 force process partial when use ctl to detectiononly
ed4e98c64 Fix issue on solaris
a75f2c0c6 Testing new approach to tag macro expansion
b64d28eb5 Testing new approach to tag macro expansion
6b7c138a9 Testing new approach to tag macro expansion
f524cfee4 Testing new approach to tag macro expansion
6d3b3802d return value to unique_id
41f338a4d Include arpa/inet.h to *nix
97bc9b056 Fix typo issue
cd41e9327 Fix typo issue
b2140ab72 include msc_gsb.h into re_operators.c
6703a7df0 include msc_util.h into re_operators.c
9ed1200c1 Fix ipmatch issues
0d32c17c3 Memory pool fixes and code cleanup
82a9652ae Tag test
093cb2495 Tag test
6031e7fda Improvements, bug fixes and cleanup from Tom Donavan
f0d6a06a9 Fix ipv6 bug to solaris
463b0df78 MODSEC-219
5d540e059 MODSEC-219
5e480d85a Fix bug in pmf
b7a926c20 Fix bug in pmf
9ddad65f0 Rsub escaping
4aba02a10 rbl improvements
2ff42243f Add escape option to rsub and rbl improvements
d69634166 ErrorDocuments and internal redirect hook is available for testing
53b0276b0 set base url to tx when canon #2
a99ca02d9 change return code at rsub
8642c0134 gsb now saves the base url in tx.1 when match a full url
0c8161081 add util remove escape function and apply it for gsb
c43867d64 change remove_escape function name
a9e010084 update license text
b3243374f New doc
104f0de46 New License
1a2d377e3 MODSEC-178
a5ddb8189 Remove extra debug msgs
a2f01d31a Experimental reallocation memory for rsub
3c5eae03b fix free function because of double free
117cc1352 revert free operation
c0a097304 Remove free function because of double free
ede971a9e Fix unknown error msg on rsub
b5607ea87 Fix memory leak rsub
21e422318 Fix ipmatch
c2504b100 Fix rsub
49732256f Improvements, fixes and new features
4f1ab2f71 Allow replace with substrings
a6c240537 Adjust gsb error msg
7bd27c400 Gsb matched urls set into tx variable
a13887065 Gsb matched urls set into tx variable
9380fdbdd Rename gsb db directive
69551d2d0 Add Google safe browsing lookup
caa6d89f8 revert MODSEC-171
c04a4edb4 MODSEC-144
8b52a7d1e MODSEC-173
fa8c45e7c MODSEC-171
d0c2a5d34 Add verifyCPF
5464f300e Renaming opt and args of SecRequestProcessPartial(on,off) to SecRequestBodyLimitAction(ProcessPartial,Reject)
98e6a1c28 Cleanup ipmatch function
74666fe2c MODSEC-181
c4100a184 rename Stream options to SecStream
e267c6ffe MODSEC-204
8cbcf7898 Add initial plataform check code into autotools
7235a14b3 Add initial plataform check code into autotools
7f838acdf Ipmatch now is not supported under windows
3f1d91183 Make ipv6 portable
8b907225e Make ipv6 portable
d170dd4eb MODSEC-57
e0a49f0b0 Change ipmatch to msre_ipmatch
025ca49cc Change ipmatch to ipMatch
f536ba11a Ipmatch mistake
d4d97505d Under CentOS inet_pton return invalid address for valid ip6, remove the return code for now
cd31e80b8 Cleanup ipmatch
3c53fe5be Add ifdef when print lua version
882e537c9 MODSEC-140
7f52d86e4 Include data edition, sanitizematched and few fixes
37e8cba18 change old lookup algorithm
8e9582bed MODSEC-196
d0e2546f9 MODSEC-21
fdded3383 MODSEC-60
8907f66f3 MODSEC-127
5040c5568 MODSEC-70 change loglevel to 3
86cc9d6e3 Request process partial under detectiononly
1260d2b09 MODSEC-104
56fc2ea71 MODSEC-148 fix issues
c8033a59f MODSEC-148
60a1725d0 MODSEC-12
52c33e7c5 MODEC-105
549f05948 move 2.5.13 into trunk
df61af462 add breno user to authors file
d3293916e Change scope of state var so multiMatch works once again.
68f79e7f0 Add the git-svn authors mapping file.
78dfd8d82 Add the example lua script to doc dir.
3a10f9fb8 Fix autoconf header and include path so trunk builds.
7aa83b5c9 Change copyright date on alp2 files.
86e9b42db Added alp2 as a build option.
b186e7349 Add some missing files.
ea34defc0 Added mod_remoteip.c to to postread_beforeme_list (MODSEC-158).
c7c65f9dd Change default install prefix to /usr/local/modsecurity.
058283fb5 Add the ability to build custom request body parser extensions. Add an example for a request body parser extension.
f7f305991 Add license headers to extension examples.
8553cab4a Moved api examples to "ext" dir and hooked them into autotools for building with "--enable-extentions". Upgraded to autoconf 2.65.
cea87f408 Fixed test/test-gregression build targets.
42b981319 Update doc for new build system.
eb6b9274a Redo build system to properly use autotools and avoid compilation with apxs util.
972e46825 Add an option to grab the latest release candidate or stable which is intended to be used on dev servers to stage production.
98982e296 Added the SecDisableBackendCompression directive
b784acd31 Merged in 2.5.x changes into trunk.
f925a978a Update CHANGES
b48fdddf4 Merged changes from 2.5.x to trunk.
6f548e91f Fixed bad merge in CHANGES.
08edc0c26 Merge 2.5.x (2.5.12) changes into trunk.
ed11e27e0 Moving performance logging from level 3 to level 4 to prevent it from polluting the error log
e0f160840 Move writing to collections and GC earlier so that the results can be logged.
0ecfe86c3 Add PERF_GC.
5448b3fc2 Log the duration of garbage collection at level 3.
5c4733f1a Add REQUEST_BODY_LENGTH.
b8837bbfb Change the format string from m (already taken) to M.
4cd09b9da Revert unneeded changes in r1459.
c24e61ac8 Added missing conditional debug logging.
9bd9f3359 Run phase 5 prior to mod_log_config. Now for real.
86407062e Do not use 'total' to refer to PERF_COMBINED in the logs. Use 'combined' instead.'
221af6f5c Add PERF_ALL, sepearate PERF_STORAGE into PERF_SREAD and PERF_SWRITE.
bc35ab7e0 Implement variables for access to performance measurements.
a4d5d50be Integrate with mod_log_config (MODSEC-108).
7b56982f2 Implemented a new time-measuring mechanism. Added Stopwatch2.
d25937333 Add DURATION.
51e7bfcc0 Document phase 5 changes in CHANGES
f740b4f22 Run phase 5 prior to mod_log_config.
ce106df27 Generate error messages when registration fails. Change all examples to use modsecurity.h to avoid the duplication of the optional function declarations.
c60ab6bfd Merged changes from 2.5.x into trunk.
c341899b4 Merge in changes from 2.5.x.
ea4b75d8b Document changes
d1c38bf02 Change SECACTION_TARGETS and SECMARKET_TARGETS to REMOTE_ADDR
6d5e752cb Added URLENCODED_ERROR, which is raised when invalid URL encoding is encountered
62f7e6823 Update CHANGES retroactively
6a2930820 Remove one missed reference to the PDF UXSS filter
aa3b20ecc Optimise the unsetting of the previous data capture variables
23c3237d1 Added missing log level checks before logging.
7916942fe Remove unused variable
76583d80f Added the missing log messages for the ctl action; optimised the existing log messages (MODSEC-99).
839b7f81e Removed the obsolete PDF UXSS functionality (MODSEC-96).
853b1f9fc Convert 'normalise' into 'normalize' throughout, but support the previous version for backward compatibility (MODSEC-103)
1fb6f974d Update the documentation referring to phase processing
cb8b76f4e Process phase 1 in the same Apache hook as phase 2 (MODSEC-98)
3b1298968 Merge 2.5.x changes into trunk.
b01f8190e Merged 2.5.x changes for 2.5.11 into trunk.
8fe278e84 Change 'sanitise' to 'sanitize' everywhere, preserving the 'sanitise' action variants for backward compatibility.
6d83f91b2 More updates to build, removing Apache based build files.
9a526c090 Merge in 2.5.x build changes into trunk.
55f54e17e Merge 2.5.x changes into trunk.
a1a67592f Do not log debugging message as a warning (MODSEC-91)
21ecf99da Merge 2.5.x changes into trunk.
aa1e05302 Fix typo
91b215562 Merge 2.5.x doc changes into trunk.
826124b37 Merge 2.5.x changes to trunk.
7379a4fb3 Merge 2.5.x changes into trunk.
155608be3 Really remove the rules dir this time (not just contents).
67f7f9377 Merge changes from 2.5.x, removing rules dir to its own structure.
6adc53fd4 Merge 2.5.x changes to trunk.
73fb8eae5 Merge latest 2.5.x changes to trunk.
08e651a1c Merge in some doc typos from 2.5 branch (MODSEC-77).
05bd24334 Merge 2.5.x changes into trunk.
e5becf840 Merge 2.5.x changes to trunk.
12b9bcd33 Merge 2.5.x changes into trunk.
ffc5d968e Merge 2.5.x changes into trunk.
944a08822 Merged 2.5.x changes back to trunk.
31ddf4c86 Merge 2.5.x changes into trunk.
a16eb9677 Merge 2.5.x changes into trunk.
9d26b16e2 Merge 2.5.x changes into trunk.
48981bb7c Merge in changes from 2.5.x branch.
5fcca65fc Merge 2.5.x build changes back to trunk.
84099df54 Metadata.
25a394452 Cleanup docs.
e30176125 Merge in 2.5 doc changes. Cleanup doc formatting.
f905bf083 Cleanup the API examples and add more docs.
dc0a2161a Merge 2.5.9 changes into trunk.
fa96c349e Merge 2.5 changes.
a06d8f8ce Fixed strict compiler warnings for mlogc. Updated mlogc copyright year.
bef5c53c0 Removed "make -C ..." in favor of a more portable method. Added verbose output option to configure.
4f3c9d991 Small clarifications.
9c3c0d8c8 Update the reference manual to refer to the new data formats documentation.
fd5cf18ca Add the data formats documentation.
facacae23 Fix a typo in the SecRuleInheritance example.
c012db7e6 Make a note of configure options that can affect performance (MODSEC-28).
4a336dadf Removed an invalid "Internal error" message forcing auditing of a request (MODSEC-29). Cleaned up error messages prior to using send_error_bucket().
c3c822ea0 Revert r1205 as it was fixed in mod_jk upstream.
becf69403 Updated REQUEST_BODY documentation.
7b0e71f92 CHANGES text describing when REQUEST_BODY is populated was not accurate.
3848ff5b3 Worked around mod_jk issue where a 401 response was not including the WWW-Authentication header (MODSEC-16).
67c48bfdf Added ability to use ctl:requestBodyAccess=off in phase:1 to avoid limit check. Added regression tests for this as well.
c5e258f0b Added additional check for XML well formed.
b2c7424a9 Added a comment.
309510d70 Change from ctl:requestBodyBuffering to ctl:forceRequestBodyVariable.
5740f7a3e Tidy up.
2ee69ce46 Document css_inplace_decode().
2f7ff8f7a Tidy up.
ec49ce05c Updated docs to point out some features are not available on all OSes. MODSEC-9
ac767de86 Typo in SecRuleUpdateActionById example.
f20059b00 Make sure we fail to validate DTD/schema after a parsing error. Fixes MODSEC-5.
f5af5ef42 Remove declaration of an unused variable.
34798e9ab Allow ability to force request body buffering to memory. Fixes MODSEC-2.
139d651bb Updated the CHANGES.
deb6a816b Fixed MODSEC-2 by using the msr->hostname (ap_get_server_name(r)) vs r->hostname in the log.
20cc39551 Added mlogc source.
2818e66a9 Tidy up the code for the performance-measurement mode. Remove the per-phase measurements, which don't seem to work (at least not in my case).
acec75be4 Make PERFORMANCE_MEASUREMENT more accurate by removing stray msr_log() invocation. Clean the code a bit.
9997cee04 Clarified that SecMarker IDs are the same thing as rule IDs.
1b977e610 Clarifications in response to comments from Kiyohiko Kajihara.
a686b0633 Update configure to better find lua libs.
ab5cd9261 Update a regression test due to changed error message.
7eef5ce7a Update test stup with new msr_log_* wrappers.
d419a2168 Update CHANGES. Sync up docs.
225339525 Allow disabling processing of request body size limit in phase 1. See #518.
5298e2954 Added XML warn/error output to debug log. See #519.
458fe8423 Add parity transformations. See #516.
94370b2c7 Update default action in unit test stub.
bb2e4b9a3 Fix cssDecode. See #512.
5f648db89 Updated regression suite to use full path to LoadModule.
10713fbd3 Sync up branches/2.5.x and trunk.
9c6b26744 Change licence file to Unix format.
a05445e33 Tidy up whitespace. More characters in the commit messages than in the change itself! Way, way, more. This is what happens when you work too much.
924ce68c5 Update readme to point to new exception filename.
7899b5c6e Update licensing.
6a33fedc8 Regression suite cleanup merged from 2.5.x.
478389d5a Added regression tests for ctl:ruleRemoveById and disruptive actions in DetectionOnly mode.
ae40b8c21 Implemented cssDecode.
e6e06bff7 Update trunk CHANGES with 2.5.5 release.
200d9e5fe Firewalls not fireballs ;)
326208d02 Newer apaches default to text/plain instead of null. Make matching files a bit more robust.
21f305095 Fixed warning for mixed CRLF/LF lines and LF lines in changeset:1070. See #504.
f072738c8 Remove an extraneous debug statement and update version date.
0b1e2d674 Fix a minor typo in a comment.
d9ba0e98b Fixed a typo from changeset:1072. See #498.
493e71a9e Tweak some regression tests.
e1e200c00 Disabled phase 5 after interception by mistake. Fixed
c3fd0231d Prevent phases from being processed more than once.
b2119411d Minor code cleanup.
81d98de28 Log strict multipart errors at level 4.
83ff6c479 Re-enable error output filter with a fix after more testing/tracing of code. See #498. Update versions to ready for release of 2.5.5.
230837d4a Update/reorg some regression tests.
16acbe494 Fixed issue where logging was not occuring unless "auditlog" was enabled. See #497, #4, #451 and #445.
f2449c6f3 Enable "auditlog" action by default. See #445 and #451.
e209cb768 More regression testing updates.
6cd8459bc Update docs on persistant storage. See #479 and #495.
0c95f9c64 Backport fix to improve request body processing error messages. See #504.
4d2fa2741 Backported changeset:1056 to 2.5.x which handles a lacking new line after the final multipart boundary. See #502.
6241dfe96 Fixed XML multithreading crash. See #501.
0c1f2f2e0 Fixed blocking in phase 3 by reverting changeset:591 (for now). See #65 and #498.
81145fe2b (Changeset Tracker. See #1234.)
c8e35797f Improve request body processing error messages (#504).
d06a3beab More tested regression tests. Cleaned up script.
043a5d608 Handle the case when there isn't a new line after the final boundary in a multipart request. This fix takes care of the WordPress Flash file uploader problem.
8844813c9 Some more updates/tweaks to the regression suite. Allow the ability to "make test-regression".
3e58e99be Another small update to the regression tests.
7ad2766e7 Some more updates for regression testing.
4bc1fc39f Some reorg of regression tests.
49e63a3e3 More regression updates.
59629a6af Add/update regression tests.
29cd97b24 Reorg.
813127aa1 Added some basic regression tests.
f90ffeb97 Add the beginnings of a regression test suite.
eb77be6e0 Fixed issue where transformation cache used default (fixed in 2.5.4).
f394c6faa Add atomic updates for persistent counters. See #20.
5f6cb3aea Update msc_test with -N, better error support and support for actions.
8f7b861d9 Added mod_rpaf-2.0 and mod_custom_header to the beforeme list.
ec19e2517 Update changes with 2.5.4 release.
e74a17117 Update docs to show Lua as optional in the install instructions.
56e9aba04 Add an action directory for tests.
248bd0971 Update generated configure.
c63d0ea21 Update the performance unit test generation example scripts.
6d3da8c39 Add the configure script (even though it is generated) to make it easier for others.
40fba3355 Allow actions to be unit tested. Allow unit tests to be performance tested. Add an example script to generate @rx vs @pm tests.
cfeb3b976 Update CRS to 1.6.1. See #484.
06eeb7ef0 Fixed crash if a persistent variable name was more than 126 characters. See #478.
5735d5fc6 Fixed issue where the exec action may not be able to execute shell scripts. See #475.
b4f473f87 Expand macros in expirevar and deprecatevar. See #477. Cleaned up debug logs in actions. Warn on mismatched curly braces in macro expansion.
d37ab9482 Minor tweaks to msc_test build.
27601f6b4 Remove some extraneous debugging.
070e0bb0c Update CHANGES with current releases.
fa3462f48 Add the MODSEC_2.5 define to 2.6 for compatibility.
563a8e0f0 Fixed issue where the exec action may not be able to execute shell scripts. See #475.
c50e5b0b3 Update versions for release.
955163389 Add docs for macro expansion. See #462.
aa6be1614 Make sure all filehandles are closed at the end of a trasaction. See #464 and #465. Fixes a few typos in some error messages when we are over the limits.
b74b65911 Update version for trunk.
5f09dbb3e Sync up trunk with changes from 2.5.x.
d797619fc Cleanup and update docs for 2.5.0.
7a1e2db14 Fixed code according to Ivan's review.
bdc746baf Update rules to 1.6.0.
e4eaade2c Make Lua support optional since it is still experimental (--without-lua). If someone still uses SecRuleScript, however, it iignores it and just warns on Apache startup.
63bccf793 Add additional CRS files.
aef091a84 Reverted r950 which moved the periods from the message to after the "[offset ...]" tag. This tag was intended to be interpreted as metadata. Enhanced the documentation from r951 to reflect "[offset ...]" as metadata and not the message.
1fbf0c97f Update CHANGES, versions and dates for 2.5.0.
8cf74f5c9 Update version dates. Fix a small typo in Lua example: nil, not null.
fb9585735 Add operator messages to documentation.
258ef32ad Minor changes to operator messages.
7ef661217 Make sure the test target gets the APR/APU CFLAGS.
f00e15cc0 More updates for Windows builds suggested by Tom Donovan at apachelounge.
cc2110b18 Updates to build on Windows with MS VC++ 8.
1789b9935 Remove the generated apxs-wrapper on dist-clean.
20bc34a53 Update core rules to 1.6.0-rc3.
de115fc4e Update core rules to 1.6.0-rc3.
731ac3321 Update version date for 2.5.0-rc3.
935677a78 Do not add alert message when a transformation is not specified in a Lua rule.
2c74c55d4 Add the copywrite blurb in msc_lua.c.
e9d1a44ce Explicitly define the target msc_test.lo target output file.
94f617ae1 Update CHANGES and release dates.
d3831d679 Include the pmFromFile data file.
06715a0de Make sure to include the apxs cflags and apr cflags when building msc_test.
96b3ea6f2 Update unit test framework to build with libtool and show test name in debug log.
45e85e4c8 Update CHANGES and version dates.
d24976a83 Add message to failed tests as well.
8e4310782 Add target name to validateUrlEncoding message.
83c13abfe Add/update more unit tests.
16b2821d5 Update string match text for @within to not include the target test. Make sure the empty string always matches (it does in @rx and @m so it should in other string operators).
827a5831e A pattern of "" (empty string) should always match.
b579e704a Added unit tests for numeric comparison operators.
50a9f76dd Fixed getting exit code for determining test status.
ac449776f Add pm operator unit tests.
540de37e7 Fixed error detection for operator init.
b93466003 Cleanup unit test debug log on make clean.
f428d3768 Cleanup - remove extraneous whitespace and tabs.
4b55882c4 Made msr_log() work with unit tests. Now display the message generated by operators for unit tests.
46cb2beeb Cleanup build to be more portable at searching for libs.
fd8f4e319 Update CHANGES and versions for 2.5.0-rc3.
e2ad283fd Fix some sprintf formatters so they do not generate warnings.
d3d4c6694 Allow "none" transformation to start the transformation chain over and not crash. See #456.
13b5cdd5f Expand macros in setenv (name and value). See #458.
7250e4d03 Fix crash when there is no parameter to ENV target var. See #459.
3232a2d41 Fix debug log "Expanded" msg to only print when expanded.
7540f7118 Remove the "Experimental" tag from PDF and content injection functions.
e12a2f08d The apu is under the apr dir on Solaris.
0903a061a Fix regression on non-solaris for lua (lua5.1, not lua51).
8d05c9966 Add some further searching for apr/apu/lua for solaris.
698bff5fa Make sure solaris can find the stupid httpd included pcre lib if need be.
588b4fba8 Fix apr_size_t formatting. Do not bother with formatting errors on solaris.
b39bd8679 Fixed typo in lua finding script.
229b1f9db Fix CPPFLAGS when building against httpd src libs.
764fe94ab Wrap the apxs command so we can fix -R option not working on solaris.
d350c5f5d Add in a hack to find lua binary install.
8f6f8c7c0 Add download links for lixml2 and lua in the docs.
af69a4514 Add some extra build files to clean up with "make dist-clean".
4535b2e67 Cleanup CHANGES and set release dates for 2.5.0-rc2.
8b207a536 Note in docs that the K part has fully qualified rules.
ed581b56f Revert part of the noauditlog fix in changelog:878. See #451.
751ce0684 Add signature verification support to the rulset updater script. See #280.
17219368c Added reading options from a config file, unpacking rulesets and email notifications to rules-updater.pl. See #280.
7777c35a6 Add new type parameter to msre_rule_create() for msc_test.
f8dedc940 Update make to put mlogc in the tools dir.
2aca5f63f Add a basic auto-rule-update script that can download the latest version. See #280.
4c6dccada Fixed noauditlog. See #451.
52ccced72 Cleanup building actionsets and use minimal default. See #445. Fully resolve all rules before logging.
946a35004 Fixed removing cained rules with ctl action.
ef6f75f4f Update docs for SecUploadFileMode to include the "default" value.
f8adea949 Implemented SecUploadFileMode. See #448.
09ada31a2 Fixed potential crash if actionset was NULL. See #441 and #442.
a3584993f Implement "block" pseudo-action. See #441.
9dbc7807d Remove query string from error log. See #447.
e0c0d6690 Update severity documentation, deprecate numerical values.
00731cc70 Update versions in preparation for 2.5.0-rc2.
c72057bc5 Cleanup CHANGES.
85e0b4d96 Add parens for clarity.
18e9ef080 Remove default transformations. See #445.
c4e1ede35 Fixed merging actionsets so we can build a more accurate rule for auditing.
0d24a08f3 Implemented SecRuleUpdateActionById. See #442.
be096d8f7 Explain how to install mlogc after building.
c6c400394 More configure cleanup. Update docs for new install: configure && make && make install Spell check the docs.
96ff268f6 Replace TABs with 4 spaces.
f4a44bc32 Remove an extraneous debug log.
c68beb2fa Update text version of my review (removed areas that were invalid and/or fixed).
9fb03d277 Fixing code based on review comments... Cleaned up what vars are cacheable. Added parens around "*foo++" where it clarified the operation to be "*(foo++)". Added " at VARNAME" to operator matches where needed. Escaped var->name in the var generation (user-supplied data). Marked a bunch of TODOs as ENHs instead. Transformed some C++ style comments to C style. Removed the %0-9 macros code which was commented out. Optimized some ctl action code so that multiple ifs are else ifs. Implemented some error messages marked as ENH. Make commented out acmp debugging a configure-time option. Cleanup GEO debug log messages. Added relative filename support for geo dbs. Added help text to Sec* directives.
99c41afc3 Added a check that SecServerSignature actually worked (Apache changed some of this code as of 2.2.4 and could potentially change it again and break this). Cleaned up some configure code. Cleaned up some extraneous cache logging. Cleaned up the output from the test script.
fabeaf505 Final mlogc configure cleanup.
62dfbeb80 Do not bother with libcurl if there is no mlogc-src.
bc6c0c76a Add the ability to find curl for mlogc.
0a6ac0559 Add the ability to build mlogc if it is in the mlogc-src subdir.
b5033e6e2 It is 2008 now :)
800dacd74 Add text version of review.
2d034c5ce Finished with pre-2.5 source code review.
0b9c2810e Fix speling.
d8fa66515 Document data formats.
d106a5c4d Yet more review data.
b0f7dc1fc More review updates.
f15ef01be Tweak error message to make it clear it's not our fault.
b6446dc83 Fixed an old bug in ctl:auditLogParts that was fixed in 2.1.x, but not trunk.
4b05cfe3d Update current review data.
106a54f87 Fixed partial transformation caching and reduced some debugging output.
31e3ada84 Fixed phase 5 rules not being excludable.
433ecf342 Cleanup configure and add support for using apache src included libs (--with-httpd-src).
7baf94992 Add --enable-FEATURE options to configure.
4473e483c Update current review and report generation script.
c622e7ec9 Expand PERFORMANCE_MEASUREMENT output to break down the full rule timing into transformation, operator and full. Add a "Transformation completed in N usec." debug line to compliment the operator timing.
a53969a99 Add the beginings of a pre-2.5 code review ala Jupiter.
2ab009ee9 Add files to support using eclipse w/Jupiter code review plugin.
36dbd608c Add a review dir for testing/using Jupiter eclipse plugin. See: http://csdl.ics.hawaii.edu/Tools/Jupiter/
baac392bf More configure cleanup.
40c57f871 Cleanup configure script and add back unit tests (make test).
badb2791f Initial 'configure' based compilation (buildconf generates configure script).
be9931e00 Make sure all tests pass.
402f6318b More test updates.
2068357af Added m.getvars() and finalised Lua support.
8924f605d Add some more test cases.
6dd615646 Fixed returns for urlDecodeUni, urlDecode, urlEncode and normalisePathWin. See #439.
9551218d2 Fixed URL decoding with invalid encoding. See #439.
a210e7325 Fixed return codes for base64Decode, base64Encode, compressWhitespace as well as replaceComments not adding the space for a comment w/o ending. See #439.
ef18503f0 More cleanup and fixes in the testing framework.
78f83198d Remove \0ooo support from t:escapeSeqDecode. See #423.
4104e261e Update verifyCC checks w/data Ofer sent me.
9504be7d7 Fix a bug in testing framework where NUL is lost in parameter and add support for running only a single test in a conf file.
246ed9cbc Make sure a zero-length CC# does not verify.
59685455d Update core rules to 1.5.1.
f64c7c39e Lua: Added support for scripting to @inspectFile.
4cecdf4c5 Added support for Lua to the exec action.
a45c4bb55 Lua: Fix compile warnings.
4fcd787b9 Lua: Support relative filenames in SecRuleScript.
235fd2c07 Lua: Add ability to retrieve values from persistent collections.
fa4738e86 Lua: Preserve entire scripts, not just main(). This allows for more complex logic to be written as the user can now use functions. It also allows room for future expansion.
3860a702a Added support for unit testing operators. Only verifyCC tests written.
3a8e0a4df Some more reorg of tests.
a04e03b2c Some reorg of tests.
61e4623ba Move around some code to make unit tests easier to build.
2103fb560 Rename msc-test to msc_test.
4e7c243c3 Make libxml2 *required*.
6974a1c78 Fixed l_log to prevent percentage characters from Lua interfering with formatting.
a0198a9e6 Polish up docs for md5/sha1.
f3fae3155 Adjust Lua debugging levels to 8, to avoid logging at level 9 from skewing the results.
80aa065d2 Document the Lua functionality added so far.
e834a860d Avoid double close of DBM on error.
a96cbc0f6 Merge in Lua to test framework.
e357bb55a Add quoting to unparsed rule generation.
cdcb3bdb1 Lua: Added support for retrieving parametarised parameters (e.g. ARGS:p).
4414cb852 Lua: Support retrieval of individual variables from scripts.
aef5a460b Fix Lua support. Enable logging from Lua scripts (using m.log()).
e0c444953 Update Makefile to compile with Lua support
afd3cbf14 Implemented SecRuleScript LUA_SCRIPT [ACTIONS].
6f6934e9d Code polish.
d2dee97a3 Fix jsDecode \xHH to verify HH is there and valid hex. See #439.
5da9a05d1 Remove the callback from the verifyCC regex (not used anymore).
499c3f316 Add initial unit testing framework. See #438.
2657154ea Update docs for t:md5 and t:sha1 to note that they are in binary form and should be hex encoded to be human readable.
8360aacc2 Use use new msr->rule_was_intercepted flag. See #425.
a99357ad5 Add ability to use <IfDefine MODSEC_2.5>. See #436.
a703c9c62 Minor allow bug fix.
dc081c5df Removed some code that implemented SecRequestEncoding. Left the directive in, as well as the structure member as they are harmless.
b9a28882b Enhanced allow.
9b0ce5ae6 Move an extraneous debug log line from level 4 to level 9.
8a1687bf3 Make phase 5 more strict and catch an inherited disruptive action. See #429.
5bd9e0640 Add CHANGES entry. See #425.
32100608e Handle actionset being NULL. See #66 and #429.
05c8ccd07 Moved modsecurity_crs_55_marketing.conf.
d6beae556 Should have moved this not added.
f12cc94f9 Update props for rules.
3c4eacf6f Update Core Rules to those in 2.1.4.
4602f7d90 Remove tabs from CHANGES.
9136d391d Forgoten CHANGES entry for last commit.
476684e6e Stricter configuration parsing. See #66 and #429.
cd51a1004 Allow all rules to run in phase 5. See #425.
515290434 Add 2.1.4 changes to trunk CHANGES.
f68f0156c Cleanup CHANGES.
5065852df More efficient collection persistance and deletion on retrieval. See #345 and #426.
4c11791a9 Escape cache value in log.
aa68fff10 Fixed decoding \9 with t:escapeSeqDecode. See #423.
8aa31fd09 Change jsDecodeuni to jsDecode which also decodes all the other JS escapes. See #193.
b0de65913 Added t:jsDecodeUni handling unicode similar to t:urlDecodeUni. See #193.
cbf79d43b Update version to ready for 2.5.0-rc1.
54cac6461 Add IS_NEW and IS_EXPIRED collection variables. See #345.
220342850 Prefer "offset" to "pos".
e7e975696 Add var name to validateUtf8Encoding message. See #408.
3c1d5a021 More efficient multimatch support and cleaned up debugging and messages. See #69.
2dff0fb9f Speed up luhn algorithm and add multimatching capabilities to verifyCC. See #69.
423fd0eea Update skipAfter docs to mention markers. See #416.
715a8eae5 Implement SecMarker. See #416.
37f5231cc Minor code fixes.
bbcf1d08f Added an APR-Util variant of character encoding conversion.
c25071b83 Initial experimental implementation of SecRequestEncoding. See #390 for more details.
22873995f Rename placeholder type from RULE_PH_TARGET to RULE_PH_SKIPAFTER.
2bf4556cd Checkin fix to rule removal code to avoid placeholders.
9e9bb318b Rewrite the luhn algorithm to be faster and easier to read. See #69.
13e209909 Add in verifyCC operator from mod_security2_op_verifyCC.c. See #69. This still needs to be fixed.
a6c2d867f Improvements to audit logging matching rules. See #93.
dcdce0cbc Added matching rules to audit log data. See #93.
85053718d Cleanup log output for skipAfter. See #258.
ff12e6f1c Remove comment that is not needed.
526bcc0b5 More informative change log message for fixing utf-8 validation.
c5c759d6f Forgot to update CHANGES.
d3a0a2887 Fix utf-8 validation (again\!\!\!).
575e86388 Implemented SecRequestBodyNoFilesLimit (#103).
fd5e4fb32 Fix bugs introduced by the recent change to audit logging.
ab6a81fe7 Remove unused reqbody_status from modsec_rec.
1cfc906fa Fixed apr_size_t formatting warnings by using portable %APR_SIZE_T_FMT instead of %lu.
8cec4dd25 Some more debugging and fixes for skipAfter. See #258.
4a08d7e6b Handle out-of-disk-space conditions gracefully when writing to audit log.
800cfc2cc Added missing #else block for printf attributes.
e47fdeb42 Changed %p formatter to APRs %pp (wish that was documented). Marked msr_log() as a printf style function so GNU compiler can check formatting types. Fixed a few other warnings with msr_log() formatters.
9447ae67b Added placeholder support for skipAfter so that it works with removed rules. See #258.
1860e2a35 Renamed SecGeoLookupsDb to SecGeoLookupDB.
6ca5b831f Document SecComponentSignature. Update CHANGES.
b163864ba Implemented SecComponentSignature.
e467d3cac Unified messages in the error log and in the audit log.
f0be2ff6b Added warning message when XML request body parser fails.
2cefbda2e Fix quotes in an example.
40c5b2004 Remove extraneous 'void *' cast.
aff690053 Initial full pass through code to fix issues with 64-bit/mismatch sign/mismatch size printf style formatters. Still need to look more into how we are handling time and convert to apr_time_t (or time_t) where appropriate. Still need to look into our use of 'long' as windows is LLP64 where 'long' is still 32-bit.
b9defc0ad Warn in the debug log when request body processing fails.
cd2287a41 Fix for an evasion false positive.
83fb4b4da Fix more formatting errors/warnings on 64bit systems.
7f71ae377 Fix another warning on %u used where %lu needed.
e45ea12fc Fix warnings on Solaris and/or 64bit builds.
faec5b8e9 Fix a possible loss of data warning when compiling 64bit reported by Marc Stern.
2b346dd08 Updated input filter insertion code for sub-requests.
8e9909006 Add the input filter if we have read the body (even if a sub-request). See #335.
9d49adf02 Basic implementation of skipAfter (still need to implement placeholders so it works with removed rules). See #258.
974298a76 Added ctl:ruleRemoveById action. See #259.
9efa02f42 Change ctl parameters to be case insensitive. Initial implementation of ctl:removeRuleById. See #259.
f66e8c5b3 Document MULTIPART_CRLF_LF_LINES.
b0d514478 Fix blocking multipart FP, which affected Safari.
d5f3b9ce5 Fix multipart parser blocking FP with Safari ( (#317).
793b57670 Added support for MATCHED_VAR and MATCHED_VAR_NAME. See #123.
b784e6cb7 Change from TX:LAST_MATCHED_VAR_NAME to MATCHED_VAR. See #123.
83a788607 Now use memcmp() vs strncmp() in string comparison operators since we already short-circuit when the match will not fit in the target. Added @containsWord. See #182.
a6cf7957b Update ModSecurity chroot documentation.
da1399f0b Added TX:LAST_MATCHED_VAR_NAME. See #123.
e0e031d16 Oops, too fast to blame apr :) This bug was a forgotten NULL in the apr_pstrcat function. Apparently newer APRs can handle this.
dc71842ce Revert to apr_psprintf (vs apr_pstrcat) to get around what appears to be an apr bug with FC4.
9d4965b29 Fix macro expansion in setvar. See #126.
2d526f143 Fix typo in a comment.
b66157497 Document the 'tag' action. See #276.
27ba3027b Move init of msr->msc_rule_mptmp before msr storage.
fe1021e36 More cleanup of error messages and marking as relevant. See #4.
8b6f0e72a Wrap PERFORMANCE_MEASUREMENT variable as conditional compile.
63a47c370 Prefer %d string formatter to %i so we do not get warnings on some platforms.
f3a8854fe Mark any error conditions/alerts as 'relevant'. Clean up/add error messages where this can happen.
5022ddcad Cleanup more subrequest code. Do not run with subrequests in phase 3-4. Still need to look at phase 5 to see what I can cleanup there. See #135.
86c9a9bf1 Cleanup CHANGES.
9f898a0e0 Fixed comment.
7c393c487 Fixed the wrong status being displayed in the error page. See #3.
72f814933 Do not process subrequests in phase 2. See #135.
426ce1aea Fixed deprecatevar. See #59.
a1955d09e Add crude performance measurement.
009c3b0fa Document SecResponseBodyLimitAction.
9ed3cf9e5 Added support for partial response body processing.
59333a6a8 Update CHANGES.
79ee3a6a7 Process debug log statements only if the debug log level is sufficiently high.
dfe09ff1b Fix content injection C++ style comments.
2a707d437 Enable our output filters to intercept bodies of error responses (#65).
eb6b456f5 Fix potential buffer overrun by 1 byte in base64Decode caused by bad docs from APR-Util. See #255.
b217e4262 Merge in fix for ErrorDocument.
ad940d1ff Partially corrected the filter error code. See #3.
53011819d Cleanup some doc formatting. Prepare trunk for use as 2.5.0-devN tree.
c8e5c7fcd Sync trunk from branches/2.1.x (merge in branch fixes).
8a54517f0 Updated copyright dates in xsl files. See #253.
1e603d8a3 Detect and use new API calls to get the server version/banner when available.
8549546b5 Add a cast to unsigned char * to avoid warning.
b95cc3b37 Updated the manuals (trunk and the 2.1.x branch) to cover the new multipart stuff. More detail is needed but there is not enough time for that today. Also added back the impedance mismatch stuff and the PHP peculiarities.
ba85c17b0 Update minimal configuration template to use strict multipart parsing.
fa2b97ddb Tidy code. Small bug fixes.
0769f2378 More multipart improvements. Added MULTIPART_MISSING_SEMICOLON.
d7a92cac2 Adjust hook placement so mod_breach_trans fixes the request before us.
70e8246ae Update CHANGES.
9e08017b3 Force rpaf and similar modules before mod_security2.
9301461b3 Allow multipart C-T header to be up to 1024 bytes long. Some code cleanup (really ;).
608f7f2b4 Fix LF line detection, add MULTIPART_CRLF_LINE, MULTIPART_CRLF_LF_LINES.
239fa0095 Fix silly errors, typos.
baf6f59df Multipart parsing improvements.
e27516246 Quiet "warning: int format, pid_t arg" type warnings.
28d44486e Fixed data corruption in the multipart parser.
222f1f6f7 Cleanup. MULTIPART_STRICT_ERROR now returns 1 on parsing error too.
323f9f81a Better discovery of partial quoting evasion.
b1949b7eb Another check for evasion through partial quoting of multipart boundary.
d0ac05c3e Add check for evasion using double quote inside multipart boundary.
25fb1b262 Moved XML request body processor error to debug level 1.
5898e9e11 Fixed a potential segmentation fault, introduced with recent changes.
7c856eef1 Fix typo and make clearer the intent by using defined(). See #198.
716d0fd41 Added a check for nul bytes in multipart part headers.
c85773b34 Added MULTIPART_UNMATCHED_BOUNDARY. Not very reliable, as it detects anything that looks like a boundary, which means any line that begins with -- but we don't think it's a boundary.
70324713e Added checks to detect quoted boundary evasion (although we are not susceptable any more) and to detect duplicate final bounary.
32905f9d4 Add ability to compile without API support (-DNO_MODSEC_API). See #198.
f4389c9a5 Update docs and CHANGES for logdata action.
8f6385f78 Added logdata action (still needs byte limit). See #40.
765dfd027 Fixed typo.
9cfdd8f0d Rename TX_SEVERITY to HIGHEST_SEVERITY, fix and document.
b71687c7f Add ARGS_GET* and ARGS_POST docs.
c520886e1 Detect and prevent multipart evasion.
cb0cb9375 Sorted variables in the registration code.
648037fdb Added TX_SEVERITY variable. See #60.
d2fd881c0 Fix typo in CHANGES.
f41c27a28 Added ARGS_GET, ARGS_POST, ARGS_GET_NAME, ARGS_POST_NAMES variables. See #136.
fe8c564ed Added MODSEC_BUILD variable. See #38.
2ec596e83 Fix error message in validateByteRange to include the target variable name. See #157.
5a6ce0142 Added logging of target variable expansion. See #62.
820ba5f1d Add debug message when not buffering response body due to MIME type not configured. See trac #63.
892938dee Enhanced multipart parsing to support quotted boundaries and LF line terminators (RFC demands CRLF but some applications use only LF).
9695f2b81 Improvements in transformation cache (add options, document). Update CHANGES.
43f7fa72f Remove non-ASCII characters.
b761c1c01 Merge in some doc changes. Fix some doc formatting issues. Update the CHANGES file.
72832c1b3 Working on cache enhancements. See trac #14.
3e5e2a06b Stricter validation for @validateUtf8Encoding. Capture the match in TX:0 when using "capture" action w/@pm operators.
5a38dde99 Disable XML parsing by default in the included core rules.
bafe8ad77 Remove old comment.
31f119664 Updated README files to refer to GPLv2.
3facacf92 Emphasize the need to check REQBODY_PROCESSOR_ERROR in configuration example.
73706c8bc Update documentation to emphasize the importance of REQBODY_PROCESSOR_ERROR handling.
8b9d914ed Merge in code fixes to create msr context on request failure.
4d03b029f Remove the error message on a failed request so we can handle it in a pater phase.
9be72c39d Update to core rules 1.4.3
e251a9bd5 Add back code to send an alert on request failure.
656021c20 Fix typo.
bff23e3eb Updated the rule IDs documentation (reserved ranges).
96edb02fe Updated documentation to specify libxml is no longer optional.
881e8e66c Update LICENSE removing part that is not the licence (but can cause confusion).
7fbf664ec Added cygwin to list of compilers that do not support hidden visibility attribute.
8cd8f42d2 Clarified which variables are URL-decoded and which aren't.
f19622b04 Clarified that we are a GPLv2-only project.
129a5ab25 Reserved a rule ID range for ScallyWack.
698955aae Update changes to reflect the 2.2 -> 2.5 change.
8dea31635 Update @within docs according to Ofer's comments. See #134.
19887f9cc Added @within string comparison operator with support for macro expansion. See #134.
b58efb346 Update CHANGES. Reversion from 2.2. to 2.5. Update @pmFromFile to base relative filenames off of rule file path.
de739c60c Updated documentation for RESPONSE_CONTENT_TYPE and RESPONSE_CONTENT_LENGTH.
8de8e44e0 Removed RESPONSE_CONTENT_ENCODING, which never worked as intended.
5cb4823c4 Documented that we do not support atomic updates of persistent variables at this time.
1c639cf7d Added two payload examples for XPath expression examples.
efe52d4e7 Initialize rules tmp pool properly. Update to latest core rules.
a4835b73f Fix bad merge of mem pool fix from trunk. Update to latest core rules.
6569c444d Make rules/README UNIX style EOL. Merge another branch/2.1.x change.
d55e023bf Revert msr_log as macro (still work-in-progress)
81d0f84ad Update copyright text to Breach Security, Inc. Merge in changes from branches/2.1.x
c39723c3a Document SecPdfProtectMethod.
74738b29b Added new directive (SecPdfProtectMethod) to enable the user to choose between using token redirection (falling back on forced download in some cases) and forced download (in all cases).
8b843127b Revert incorrect change to GET/HEAD detection code. This will teach me to always compile before I commit.
c7f5dc335 Configure PDF protection by token redirection to only work on GET and HEAD requests. If we attempted to work on other request methods we would probably break something as there is no way to preserve request bodies. The default was previously been to work on all requests. This behavious can still be changed using the SecPdfProtectInterceptGETOnly directive but I am going to leave it undocumented.
eec279c8d Cleanup code.
6350e2bad Do not log alert message for subrequests. See #124. Cleanup CHANGES.
23bd6b433 Do not pause if we are not the main request. See #124.
46d7a5ec6 Move transformation cache rec def re.h from modsecurity.h
71eb6e17a Added XPath references.
dd6755985 Move the transformation cache recort into re.h. See #14.
11456dd87 Use pmFromFile instead of pmfile and p=phrase instead of parallel in docs. See #16.
e5c00d156 Added rule file/line to audit log messages. See #49.
f1607d007 Cleanup message output. See #16.
86f648d26 Remove extraneous debug log message.
84c0ca303 Fixed patch for subrequests to be more complete. See #124.
e887faac2 Add @pm/@pmfile operators (parallel patch). See #16.
f53c4241f Add entry to CHANGES.
db04c6442 Cleanup
af6160b9c Fixed problem with subrequests not being intercepted. See #124.
c594c205c Fix new string operators to all resolve macros. Rename startsWith operator in code to match docs. See #54.
6cc0173cf Add caching for transformations. See #14.
61238ca22 Argh! That last one was not meant to be checked in - reverting 281.
e11ff8542 Fixed log_escape_raw when length was <= 0
220abd344 Quiet uninitialized warning.
a1a0c24b8 Do not compile on Solaris with visibility attributes.
3fbf2b93c Modify docs for t:urlDecodeUni. (See #122)
a627e96c7 Lessen "capture" debug log messages.
eaa8e444d Fixed decoding full-width unicode in t:urlDecodeUni for ASCII range 0xFF01-0xFF5E. Probably need more work/testing. (See #122)
97a1718d3 Only calculate debug data when we are debugging. NOTE: Last commit message was wrong.
e03ea11f9 Only calculate debug data when we are debugging.
b60f20697 Remove use of GNU extention strnlen(). Fix CHANGES.
a68eb0488 Add geo lookup support. See #22.
d8abb48ad Fixed a problem with content injection that resulted in content being injected twice.
2733cc739 Do not try to intercept a request after a failed rule. (See #53)
dfde8169e Documented the PDF XSS protection functionality. It's not much but it will do for now.
f1d4e0e2f Documented RESPONSE_CONTENT_LENGTH and RESPONSE_CONTENT_TYPE.
d8418c3aa Documented SecContentInjection, append, and prepend.
c0c5d8d89 Removed extraneous symbols from dso via DSOLOCAL.
fca9eabaf Merged the PDF XSS protection functionality into ModSecurity.
c559f3ee2 Change @eq to @streq. See #54.
2aa6e6160 Exported API for registering custom variables. See #120. Simple example in api/mod_var_remote_host_port.c
b47059a5b Remove docs for HTTP_* vars. See #23.
cd62f2002 Add docs for new transformations and operators. See #54, #55 and #117.
0c234c115 Cleanup debug log output: add rev to 'Invoking rule' line, remove clearing mem pool line.
fa13b02f7 Updated the CHANGES file with the RESPONSE_* variable changes.
e0a860292 Added experiemental support for content injection.
20c0b11dd Added experimental RESPONSE_CONTENT_LENGTH, RESPONSE_CONTENT_TYPE.
3661a294a Added experimental RESPONSE_CONTENT_ENCODING.
3f7fc7c75 Added string comparison operators: @contains, @is, @beginsWith and @endsWith with support for macro expansion. See #54.
0a1610f85 More debug log enhancements - quote values to easier see whitespace.
a3c3f25ae Fix macro expansion. See #118. Fix some debug log output to escape NULs properly in preparation for #54. Up version to prepare for 2.2.0 pre-releases.
b93eef9db Added t:length to transform a value to its character length. See #55.
5482606c3 Added t:trimLeft, t:trimRight, t:trim to remove whitespace from a value on the left, right or both. (see trac #117)
d9a26780a Add SecAuditLog2 directive (trac #102)
e556a914f Remove tabs
f2c96bae2 I added notes about accessing response headers in phase:3 and phase:5.
e72540b0a I added the XML and HTML files for the Migration Matrix doc.
82fdc7cf3 Format CHANGES to add space before '*'
51a5418b4 Update changes to reflect merges into 2.1.x branch
eab433187 Add PCRE_DOLLAR_ENDONLY to doc
00dcb2714 Add the PCRE_DOLLAR_ENDONLY option when compiling regular expression for the @rx operator and variables. (trac #57)
a93c77e9a Updated line/num/id debug output with a format that is easier to parse. (trac #47)
9e669fcc7 Better CHANGES entry. (trac #43)
383119a14 Really set PCRE_DOTALL option when compiling the regular expression for the @rx operator as the docs state. (trac #51)
f6de76b05 Removed CGI style HTTP_* variables in favor of REQUEST_HEADERS:Header-Name. (trac #23)
485c664a4 Enhance debug log output for capturing to detect all regex/capture mismatches (trac #21).
891859f9c Revert back to using captured regex execution as it seems to be more effecient as the ovector can be used for working space even if it is not used for captures. Warn when captures are used in the regex, but "capture" not specified.
59928bfe6 This was not meant to be checked in yet (trac #42)
4676132ed Add the file/line to the rule so we can use it in the debug log and eventually in the alerts.
58afede3f Do not log 'allow' action as intercepted in the debug log.
d1ada359d Optimize regex execution to not capture unless 'capture' action used.
09b704f11 Recycle the mptmp pool (trac #43).
8876a03ab Recycle the mptmp pool (trac #43).
f508c0a33 Fix a compile warning.
473a471bb Oops, forgot my parens.
bce096216 Fixed collection variable name printing in debug log (trac #45)
ab55a8716 Fix potential memory corruption in msre_create_var_ex allocating per-request data out of global pool.
8898759c4 Add back the check for overflow on length
9b56d6314 More generic Makefile
4370819f7 Fixed potential DIV0 when a collection var was fetched in the same second as creation
4e02be621 Fixed parsing of ASCIIZ for application/x-www-form-urlencoded forms
cf024ded0 Fix segfault when logging NULL text during request reading errors and upcoming fix for sending alerts on such errors.
ebdd0400d Generate an alerts for error log entries for requests we did not process *if* it has a UNIQUE_ID available.
8aeff06fc Fixed faulty REQUEST_FILENAME.
f4fb4ed4f Updates to quiet some compiler warnings.
79d232ccf Fixed some casting issues for compiling on NetWare (Guenter Knauf).
3e95d3c34 Changed version number to 2.1.0.
98188bd9b Document was not valid DocBook. Fixed.
6ebecdb3e Small fixes.
f9999c440 Downgraded 'Connection reset by peer' from ERROR to NOTICE, as it has nothing to do with us.
b57a1f024 Fixed an invalid conversion specifier.
6c5d19ed8 Removed the (harmless) message mentioning LAST_UPDATE_TIME missing.
8eb0aa7e4 Updated fix message.
f807697e3 SecRuleRemoveById was unable to remove a phase 4 rule.
08c231a6b Fix some spelling, grammer and formatting issues.
c48277409 Branched 2.1.0-rc7
3f80fdac3 Import ModSecurity 2.1.0-rc7
REVERT: bbccedbdd Change tags into hashes in deps.json
REVERT: 14d69fa59 Update mmdb files
REVERT: e0055328a Fix add missing deps for core db tests
REVERT: c93d5a2fc Fix CVE CVE-2023-3316
REVERT: 5631e2737 Merge pull request #547 from bunkerity/subtrees
REVERT: 3505c0d18 Remove clone.sh file
REVERT: ffd310031 Merge commit '7b566b885e99301b243c5f61360e65238035e048' as 'src/deps/src/zlib'
REVERT: 7b566b885 Squashed 'src/deps/src/zlib/' content from commit 04f42ceca
REVERT: 45dca7b44 Merge commit '2ab324a69f219b4051b2e77d211ee1a7fb1462b5' as 'src/deps/src/stream-lua-nginx-module'
REVERT: 2ab324a69 Squashed 'src/deps/src/stream-lua-nginx-module/' content from commit 309198abf
REVERT: f85f86e46 Merge commit 'c1073460677ba8aa2e325a1c57c3db1458f9fde5' as 'src/deps/src/luasocket'
REVERT: c10734606 Squashed 'src/deps/src/luasocket/' content from commit 95b7efa9d
REVERT: bd600e0d0 Merge commit 'a7d4cc5bbaabf8683b3b5cc1f42f9bd145cf1aa8' as 'src/deps/src/luasec'
REVERT: a7d4cc5bb Squashed 'src/deps/src/luasec/' content from commit fddde111f
REVERT: d15662693 Merge commit '2d86912af87048b94c2921a60b3a8a5a0953e132' as 'src/deps/src/lualogging'
REVERT: 2d86912af Squashed 'src/deps/src/lualogging/' content from commit 465c99478
REVERT: 1fb404757 Merge commit 'f3ceeb73a958e774b1e2fa55d2607cdd3eb419ca' as 'src/deps/src/luajit-geoip'
REVERT: f3ceeb73a Squashed 'src/deps/src/luajit-geoip/' content from commit fde33e045
REVERT: f81788c00 Merge commit '2678b91586e9183b47327fbb0f11ad23020f195f' as 'src/deps/src/lua-resty-upload'
REVERT: 2678b9158 Squashed 'src/deps/src/lua-resty-upload/' content from commit 03704aee4
REVERT: 2d06f2d7a Merge commit 'bc06cd71b8896c6e7a1aac4610c9c3f878956238' as 'src/deps/src/lua-resty-template'
REVERT: bc06cd71b Squashed 'src/deps/src/lua-resty-template/' content from commit c08c6bc9e
REVERT: a6379356e Merge commit '3038a0b027f09090e1cd8f101d2ee8c52c383070' as 'src/deps/src/lua-resty-string'
REVERT: 3038a0b02 Squashed 'src/deps/src/lua-resty-string/' content from commit b192878f6
REVERT: fdf0050a9 Merge commit 'ee5198ba2810e33e08ff987ede5abe10fc74f6e3' as 'src/deps/src/lua-resty-signal'
REVERT: ee5198ba2 Squashed 'src/deps/src/lua-resty-signal/' content from commit d07163e8c
REVERT: 6f8ff3f12 Merge commit 'a3cd342f3e1fffd7b16b83a24e03bb9ed501b319' as 'src/deps/src/lua-resty-session'
REVERT: a3cd342f3 Squashed 'src/deps/src/lua-resty-session/' content from commit 8b5f8752f
REVERT: 2f1cde097 Merge commit 'eca8662cfe981f66ab92b53bbf83af65da02b2b7' as 'src/deps/src/lua-resty-redis'
REVERT: eca8662cf Squashed 'src/deps/src/lua-resty-redis/' content from commit d7c25f1b3
REVERT: 0b94df087 Merge commit 'e59161ec204c7a95e4751b1c0e9a6bead7fcab39' as 'src/deps/src/lua-resty-random'
REVERT: e59161ec2 Squashed 'src/deps/src/lua-resty-random/' content from commit 17b604f7f
REVERT: 38fdd39d0 Merge commit 'a2800598825bb5a03b577cca2874ff1cfae863f4' as 'src/deps/src/lua-resty-openssl'
REVERT: a28005988 Squashed 'src/deps/src/lua-resty-openssl/' content from commit b23c072a4
REVERT: c2fa53ca1 Merge commit '31bf774f63b8b46a3c7b53028853036fff6fa0b8' as 'src/deps/src/lua-resty-mlcache'
REVERT: 31bf774f6 Squashed 'src/deps/src/lua-resty-mlcache/' content from commit f140f5666
REVERT: 7b2273aeb Merge commit 'c82b0bdd27762d2d4a9901a187506d2e5abd74f5' as 'src/deps/src/lua-resty-lrucache'
REVERT: c82b0bdd2 Squashed 'src/deps/src/lua-resty-lrucache/' content from commit a79615ec9
REVERT: 3dc8cc87c Merge commit '746a6e16d027ab3bddfc610c987e5d61ab9b69d0' as 'src/deps/src/lua-resty-lock'
REVERT: 746a6e16d Squashed 'src/deps/src/lua-resty-lock/' content from commit 9dc550e56
REVERT: 62e740a0b Merge commit '19515d9b26f2f4886ca117b91384509087f0ff3a' as 'src/deps/src/lua-resty-ipmatcher'
REVERT: 19515d9b2 Squashed 'src/deps/src/lua-resty-ipmatcher/' content from commit 7fbb618f7
REVERT: e566b98af Merge commit '7160fd94e3dc22299ee3c9f8b0e71a5e2c1bb501' as 'src/deps/src/lua-resty-http'
REVERT: 7160fd94e Squashed 'src/deps/src/lua-resty-http/' content from commit 4ab4269cf
REVERT: cdd42bf25 Merge commit '1a7d4e58be28238599df3f5c15c56380c3e99732' as 'src/deps/src/lua-resty-env'
REVERT: 1a7d4e58b Squashed 'src/deps/src/lua-resty-env/' content from commit adb294def
REVERT: 49db9c24d Merge commit '0f4a0cb0ef514bee6b810f6d6cf982c5ef0abfca' as 'src/deps/src/lua-resty-dns'
REVERT: 0f4a0cb0e Squashed 'src/deps/src/lua-resty-dns/' content from commit 869d2fbb0
REVERT: fe76b6830 Merge commit 'fd02afef8ec1ceb8a816dc202d05c6ece9887d31' as 'src/deps/src/lua-resty-core'
REVERT: fd02afef8 Squashed 'src/deps/src/lua-resty-core/' content from commit 31fae862a
REVERT: 29d135bdb Merge commit '36023392a6e3c8fb6aebb46140db759e61da220e' as 'src/deps/src/lua-nginx-module'
REVERT: 36023392a Squashed 'src/deps/src/lua-nginx-module/' content from commit c47084b5d
REVERT: b01aa0b15 Merge commit '32485e2860c2ea31fcef5b575f446c7a3036a550' as 'src/deps/src/lua-gd'
REVERT: 32485e286 Squashed 'src/deps/src/lua-gd/' content from commit 2ce8e478a
REVERT: 909841ea6 Merge commit 'c46cd666ab76bad7bd05c6261d692cda5b380f32' as 'src/deps/src/lua-ffi-zlib'
REVERT: c46cd666a Squashed 'src/deps/src/lua-ffi-zlib/' content from commit 1fb69ca50
REVERT: 47ee3884f Merge commit '4f9b885a2e8b7a10653653fee3bb91cf5102b0ef' as 'src/deps/src/lua-cjson'
REVERT: 4f9b885a2 Squashed 'src/deps/src/lua-cjson/' content from commit 881accc8f
REVERT: e13868c63 Merge commit 'bb450ac96595432625ac34de8f7f42b3d06a5b30' as 'src/deps/src/libmaxminddb'
REVERT: bb450ac96 Squashed 'src/deps/src/libmaxminddb/' content from commit ac4d0d248
REVERT: 772e05d37 Merge commit '4a7228d2dcb7fe62526016b90a7c497fb6531e76' as 'src/deps/src/libinjection'
REVERT: 4a7228d2d Squashed 'src/deps/src/libinjection/' content from commit 49904c42a
REVERT: 209d4a461 Merge commit 'ae8d8b233d52cbfdee68bd3ba21713149f5659c8' as 'src/deps/src/lbase64'
REVERT: ae8d8b233 Squashed 'src/deps/src/lbase64/' content from commit c261320ed
REVERT: 992710650 Merge commit '1d1739b4eaa274c25c52b8ceb79ebdc717633ec0' as 'src/deps/src/headers-more-nginx-module'
REVERT: 1d1739b4e Squashed 'src/deps/src/headers-more-nginx-module/' content from commit bea1be3bb
REVERT: a09d5eb2c Merge commit 'e43880b08395df25663560da3d8154226a167a77' as 'src/deps/src/ngx_devel_kit'
REVERT: e43880b08 Squashed 'src/deps/src/ngx_devel_kit/' content from commit b4642d6ca
REVERT: 8973eb029 Merge commit '26773844e7bd57df1216bd74360a62ec2dc976e3' as 'src/deps/src/nginx_cookie_flag_module'
REVERT: 26773844e Squashed 'src/deps/src/nginx_cookie_flag_module/' content from commit 4e48acf13
REVERT: 79d1b4459 Merge commit '22e69251d9b5cd2611abf77ef7352abfa4d409d7' as 'src/deps/src/ngx_brotli'
REVERT: 22e69251d Squashed 'src/deps/src/ngx_brotli/' content from commit 6e975bcb0
REVERT: 4cd57ab8f Merge commit 'b99663928782619ef854b4bf10a2bf7450d75266' as 'src/deps/src/nginx'
REVERT: b99663928 Squashed 'src/deps/src/nginx/' content from commit 84cd72177
REVERT: d7f25398a Merge commit 'a676d333fda890838d8fc4766720cc3f1d4c5389' as 'src/deps/src/modsecurity-nginx'
REVERT: a676d333f Squashed 'src/deps/src/modsecurity-nginx/' content from commit d59e4ad12
REVERT: 999fb6b8e Merge commit '7e8f4adc3b2b2a655640c73198fb920a5e8441d5' as 'src/deps/src/modsecurity'
REVERT: 7e8f4adc3 Squashed 'src/deps/src/modsecurity/' content from commit 205dac0e8
REVERT: 6d05b14eb Merge commit '6c0468f62b1120497a6fd0d21101dc41f29e7397' as 'src/deps/src/luajit'
REVERT: 6c0468f62 Squashed 'src/deps/src/luajit/' content from commit 04f33ff0
REVERT: 1141afd20 Fix install.sh for nginx dynamic modules
REVERT: 97406bff4 Add libinjection deps back
REVERT: a58ad9b50 Remove duplicate lua-ffi-zlib in deps
REVERT: 831ae129c Make init_deps.sh executable
REVERT: 451648fa7 Remove old deps temporarily except lua
REVERT: 185d75076 Update how the deps are initialized
REVERT: 6a048e68f Update how the deps are managed
REVERT: 265123835 Update python deps
REVERT: b0bc9a1bf Update the documentation
REVERT: 2f7ed064f docs - Fix typo in webhook link in plugins.md
REVERT: deed39a1f Update lua-resty-openssl to version 0.8.23
REVERT: dd295729b Add deps project submodules
REVERT: b27f38349 Update lua-resty-session to version 4.0.4 and remove lua-pack deps as it's no longer needed
REVERT: aeca252d9 Bump lua-resty-core version to 0.1.27 and lua-nginx-module version to 0.10.25
REVERT: 1ec21261c Revert "Init work with submodules"
REVERT: 718a9305d Revert "Fix .gitmodules file"
REVERT: a253f4a59 Revert "Remove old folders that are now submodules"
REVERT: 2e1e9a08c Revert "Initialize submodules"
REVERT: e2f1aba3c Revert "Add other projects to submodules"
REVERT: d9a98c6fa Revert "Update commit SHA for submodule libinjection"
REVERT: 5ed3ba1d5 Revert "Fix path resolution for modules and remove nginx submodule"
REVERT: b529d8525 Revert "Update checkout part of workflow to include submodules"
REVERT: 43783edb9 Revert "Add nginx as a submodule"
REVERT: 8417ed132 Add nginx as a submodule
REVERT: 6cbbd0d56 Update timeout for wordpress tests to 120 seconds
REVERT: d687b228e Fix PERMISSIONS_POLICY authorizing self and links to be aside without spaces
REVERT: bcc9fdef9 [#533] Fix SERVER_NAME regex to limit domains' size individually instead of the whole setting's value
REVERT: 524a140d2 [#534] [#504] Update ALLOWED_METHODS regex to accept more methods
REVERT: a197e20d2 [#531] Fix typo in documentation about SSL
REVERT: 07ed136af Update setup-kubernetes of wordpress example
REVERT: 30fec8a14 Remove python submodule, will add it back in the next major
REVERT: 4b4e0f8b3 Update checkout part of workflow to include submodules
REVERT: c2cfd4dd9 Remove checkout from dev.yml
REVERT: 642da402b Fix dev workflow
REVERT: 4bb6d40a5 Update dev workflow to checkout the code and submodules first
REVERT: 3bcdd9ca2 Merge pull request #536 from bunkerity/submodules
REVERT: 28d59221b Fix path resolution for modules and remove nginx submodule
REVERT: c8e25bcde Update commit SHA for submodule libinjection
REVERT: e1a5782a3 Update how the dependencies are being cleaned up
REVERT: 68bea47ed Add other projects to submodules
REVERT: 2cd5c7f45 Initialize submodules
REVERT: d7d3e2429 Remove old folders that are now submodules
REVERT: a74727891 Fix .gitmodules file
REVERT: b5fffc1f3 Init work with submodules
REVERT: ddc337394 Update log location for nginx and letsencrypt
REVERT: 1c362d078 Remove the deletion of let's encrypt lib and log folders after the job is finished
REVERT: 95c9bad8e Remove unused enums in database model
REVERT: 7a972274f Add database schema to concepts.md in the docs
REVERT: 561499536 Revert "Update README.md links to use local branch files"
REVERT: 4536e328e Update README.md links to use local branch files
REVERT: 89070cfb7 Merge pull request #529 from bunkerity/ui
REVERT: d6942a46e Update where the scheduler copies its config
REVERT: 8a98da898 Merge pull request #528 from bunkerity/ui
REVERT: 26f831cb4 Merge branch 'dev' into ui
REVERT: 162198bb9 Update db core tests to ignore the added value for env custom configs
REVERT: 7a524b43e Revert back to 30 seconds of sleep in tests ui after creating a custom config
REVERT: b007916d6 Optimize the scheduler and gen even more (we love threads)
REVERT: 0661916ff Update ui tests to wait more after creating a custom config
REVERT: 2105dc0f3 Update core db tests to use the right hash for plugins_page files
REVERT: 823119821 Fix rare error when hashing dictionaries in the scheduler
REVERT: 1e62626ac Fix KeyError in scheduler
REVERT: 4d984f623 Update CHANGELOG
REVERT: d0fd6884c Fix shinanigans with the custom configs and plugins jobs
REVERT: 8e6de2bdf Augment authelia timeout
REVERT: 3565dd7b3 Update CHANGELOG.md
REVERT: df1359e87 Add possibility to download lists and plugins from a file path + Update python deps + Plugins now support tar and tar.gz as well
REVERT: b756b2d7d Lint py files
REVERT: f57b6dad1 fix cursor gap on ace editor
REVERT: 91c33f1d4 Merge branch 'dev' into ui
REVERT: 3e871efed Update python deps
REVERT: 9982ec36d Remove useless import
REVERT: 80033642c Add reverse proxy headers back
REVERT: 2a2b7b6f5 Merge pull request #521 from bunkerity/staging
REVERT: 78236abe8 Check Aqua Security
REVERT: c5ff63a40 Fix CVE CVE-2023-3138
REVERT: 78ef5c482 Fix problems when creating custom configs or plugins and removing them completely
REVERT: 2c190ee96 add writeable /var/run/bunkerweb directory to hardened example
REVERT: 94867d0d6 letsencrypt - use same job name when retrieving data from db
REVERT: 9e00b9dd1 letsencrypt - use same job_name for both new and renew jobs
REVERT: 9adb209a8 lua - fix missing multisite variables in LRU
REVERT: fdd3367a6 Merge branch 'staging' of github.com:bunkerity/bunkerweb into staging
REVERT: dcf156135 prepare for 1.5.1 🚀
REVERT: 4023e6dc6 road to v1.5.1
REVERT: af9e125c8 linux - merge change for debian packager
REVERT: ab6025ec9 linux - fix missing zope modules
REVERT: 7e221eb89 debian working
REVERT: f1435f231 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: b14dba775 bw - fix multiple variables not loaded in LUA
REVERT: 81bb9ede1 Removing python 3.11 from linux
REVERT: 7e66c577f Removing python 3.11 in linux
REVERT: 236572f58 ui - remove python 3.11 import for Linux integrations
REVERT: 73060e42a Fix limit core tests
REVERT: df0c03cef Fix UI wrong import
REVERT: 5d7ef69c9 Update limit core tests to avoid false negative
REVERT: 855ae8936 Update limit core tests to avoid false positive
REVERT: 16a1916db Remove useless imports in lua code + lint
REVERT: 605e237fd Remove 404 from Bad behavior status codes
REVERT: fc8d76f33 Rollback on hcaptcha passive feature
REVERT: c08e8d151 Update settings.md
REVERT: 44097cad0 Move the COEP, COOP and CORP headers to Cors plugin and change default values
REVERT: 3446e5f9b Upgrade antibot to add a custom CSP on each pages + update plugins order
REVERT: 70f227feb Fix error with multisite variables when requesting default server
REVERT: f81b0bb4d Fix multisite variables not being added in helpers
REVERT: 978697500 Fix has_variable method of utils
REVERT: 5b0b183a4 Remove no longer needed decode for plugin order from datastore
REVERT: a2759e377 Add small tweaks on the datastore
REVERT: b6d879257 Fix how we fetch plugins_order in the default server
REVERT: 94964a910 Update how we handle custom configs
REVERT: 6a1ff499c Fix Lets'encrypt plugin api and internal API
REVERT: 179a7aa34 Fix lua sessions with antibot
REVERT: a1385fe9b fix ctx usage in reverse proxy + remove useless log in limit
REVERT: 23f9f14a4 Remove old CVEs fixes from Dockerfile
REVERT: f77150bc2 Test Aqua Security CVEs
REVERT: ec48e6601 Fix return value when no plugins have been found in api.lua
REVERT: 6ab48d9dd Update python image to tag 3.11.4-alpine
REVERT: ce24a0482 apply changes to current core
REVERT: 02d940393 perf - ctx caching and per worker LRU for readonly variables
REVERT: a7069bd60 Update UI to stop using env variables but werkzeug middleware + Send X-Forwarded-Prefix headers to UI service
REVERT: c39dd78ae Update cors plugin tests
REVERT: 3b459b0e2 Fix shinanigans with API (again)
REVERT: 718310312 Fix shinanigans with the API
REVERT: 5deeacc3d Fix letsencrypt jobs
REVERT: c18f743d4 Fix PosixPath in jobs
REVERT: 85a53278e Add a charset to cors Content-Type header
REVERT: e01c14f11 Add Cross-Origin-*-Policy headers management and default values
REVERT: 0b3c1a8a0 Update KEEP_UPSTREAM_HEADERS setting's default value
REVERT: 95f673c1d Update doc about headers
REVERT: cee7672b5 Update settings.md in the doc
REVERT: d5ea95da9 Increase load-balancer example test timeout
REVERT: 39e6821a4 Lint lua code
REVERT: 64aa12b70 Update python deps
REVERT: c392a0b5f Update mmdb files
REVERT: f93dd34f6 Extend KEEP_UPSTREAM_HEADERS setting to clientcache and reverseproxy core plugins
REVERT: a23d189d3 Merge pull request #516 from bunkerity/dev
REVERT: df47ba0e9 Merge pull request #515 from bunkerity/dev
REVERT: 0ca7de1de Add CVEs fixes back
REVERT: 84fcfb726 Test Aqua Security 2
REVERT: c20bd05d3 Test Aqua Security
REVERT: c85a4183d Fix Strict-Transport-Security not being sent
REVERT: 654172f43 Update headers core plugin lua code
REVERT: afe6da4cf Automatically add Content-Security-Policy header to response headers in the UI
REVERT: 5c7cd38b5 Edit headers core plugins to use lua Code + Add new setting KEEP_UPSTREAM_HEADERS
REVERT: 299a0b5c2 Remove apk update at beginning of each Dockerfile
REVERT: 6cc20efe7 Update bad behavior test BAD_BEHAVIOR_COUNT_TIME to 30 seconds
REVERT: e2a3bfb10 Bad behavior core tests change the ban time to 60 seconds
REVERT: 4bbddf797 Merge pull request #509 from bunkerity/dev
REVERT: 1eeefead9 Core tests sleep between each request
REVERT: 9829ef752 Update UI to automatically set SCRIPT_NAME and ABSOLUTE_URI
REVERT: b27958a19 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 410a64810 core - patch modsec to use access phase instead of preaccess
REVERT: f7d986d6a Change the way linux starts and the scheduler
REVERT: 95d4f0f87 Small tweaks on core jobs
REVERT: 4f324231d Fix tmp variables path (again)
REVERT: dc18f9884 Edit start.sh
REVERT: 3b36965f4 Fix tmp_variables_path in scheduler
REVERT: ccc051e78 Fix /var/run/bunkerweb in fpm args
REVERT: 8b2517cdf Remove ui cache download test - to much unstable
REVERT: d1138855e Fix gunicorn config for Docker and Linux
REVERT: 0c8bc97fa Fix UI on Linux not using the right user
REVERT: a68fb0c06 Refactor to make more sens and avoid specific errors
REVERT: fff21746a Correcting: Dockerfile-ubuntu End of statement block Jinja
REVERT: 3ab4a59b6 Update debian Dockerfiles to avoid updating apt packages only once
REVERT: 760ec3b3b Add /var/run/bunkerweb removal script when uninstalling BunkerWeb
REVERT: be459d240 Update pid files paths to /var/run/bunkerweb
REVERT: 8b697d87d Fix Scheduler errors with the internal apis
REVERT: 89a3c8b0b Update bunkerweb-ui file according to the new gunicorn usage
REVERT: 5e237d0d0 Update gunicorn to use a config file as well + Fix headers error + Small fixes
REVERT: a424d59b1 Add apk update at the beginning of each Dockerfile
REVERT: 1d14db7e1 Update custom cert job to not duplicate certs if the cert is global
REVERT: 7efb82a7e Update python deps
REVERT: e920cba43 Fix CVE CVE-2023-2650
REVERT: 413b75b04 Fix customcert plugin to accept multisite certs as well
REVERT: 87a9545d9 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: c53394845 various fixes
REVERT: aca0d6da4 Small refactor on the ApiCaller and the Scheduler
REVERT: 1bd40a877 Removing vmware support in doc
REVERT: 612333d2a Merge pull request #508 from bunkerity/dev
REVERT: 474ecbb41 Fix typo in phases list in plugin.lua
REVERT: 5fa21b3c8 Fix CVE CVE-2023-29491
REVERT: 16a459bf7 Lint antibot html files
REVERT: fd06a1e71 Add Turnstile antibot
REVERT: d5e64320c Fix small typo in misc.lua
REVERT: 4d6d95037 Merge pull request #507 from bunkerity/dev
REVERT: b60657e21 Merge pull request #506 from gin-gitaxias/patch-3
REVERT: 1f2c973a3 Fix docker-compose file for custom cert job
REVERT: b314f4349 Update integrations to add LOG_LEVEL=warning env variable to docker proxy
REVERT: 0edfb2db3 Update example to add a LOG_LEVEL=warning to the docker proxy
REVERT: 83413aef2 Remove open ports from core tests docker compose files
REVERT: 334be4346 Fix custom-cert core plugin
REVERT: 953128be6 Update scheduler changes check to reduce CPU usage
REVERT: bb7dcda48 Refactor paths resolutions for core plugins
REVERT: 108827952 whitelist - remove unused IPs of duckduckgo crawler
REVERT: 665b110c6 [#504] Fix ALLOWED_METHODS regex
REVERT: 5a2aa20bc Update plugins.md
REVERT: 168dfc439 Refactor paths resolutions for UI + optimizations on the plugin upload
REVERT: 6e80c7b8d Fix variable being ignored instead of saved inside the database when the value is empty
REVERT: 8dad7a0b7 Starting work on paths resolution refactor
REVERT: b5a78c3aa Test Acqua Security vulns (2)
REVERT: ed6bee69c Test Acqua Security vulns
REVERT: 3dba058b4 Fix custom configs not being cleared out once created
REVERT: d9b093dab Fix plugin example in documentation
REVERT: 162f1d978 Merge pull request #502 from bunkerity/ui
REVERT: 1f2fa95e7 Remove useless line in the head.html file + lint HTML files
REVERT: 1cd356781 Add multiple plugin upload in one compressed folder support for the UI
REVERT: 29673f918 fix font
REVERT: 180493616 Fix CVE CVE-2023-1999
REVERT: 7fe7a997f Merge pull request #501 from bunkerity/ui
REVERT: 5b75894d4 Fix UI latest version checking & Fix conditions in quick settings for services
REVERT: 1f6b3d59a Merge pull request #500 from bunkerity/dev
REVERT: 548630e3e Update python deps
REVERT: aa299f085 Update plugin update and add to get only the necessary keys
REVERT: f0126b6d6 Fix update-check job
REVERT: a7535c300 docs - fix yt preview in readme
REVERT: 340b4a492 change arm server flavor
REVERT: e7ea3952b ui - add missing dep for docker/x86
REVERT: 3b7d8b6c1 Merge branch 'staging' into dev
REVERT: 6666a25fc edit version, update images on docs and fix bug in Linux script
REVERT: f84af3402 Add error ignoring when using the rmtree function
REVERT: 0b082bdab Add handling of stderr being None in the scheduler
REVERT: 1f2b550f6 ci/cd - fix swarm examples and init work on release workflow
REVERT: d5fcc6969 Merge branch 'dev' into staging
REVERT: eda275589 Merge pull request #485 from bunkerity/dev
REVERT: 7506768c4 Merge branch 'ui' into dev
REVERT: be3d40f18 Fix CLIENT_CACHE_CONTROL setting's regex to also work with JS
REVERT: 41059fb28 Merge pull request #484 from Hado-K3n/patch-16
REVERT: 88f85b282 Merge branch 'dev' into patch-16
REVERT: e5e031b6b Merge pull request #483 from Hado-K3n/patch-15
REVERT: 2dbadbd29 Merge pull request #482 from Hado-K3n/patch-14
REVERT: 95c7b5410 Merge pull request #481 from Hado-K3n/patch-13
REVERT: 00739a5ab Merge pull request #480 from Hado-K3n/patch-12
REVERT: a9f4be475 Merge pull request #479 from Hado-K3n/patch-11
REVERT: f85f73678 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: f1efe06e9 ci/cd - fix /opt/actions-runner perms for self-hosted runners
REVERT: ad71be460 login now use local font
REVERT: dcb800d2b Update k8s.postgres.ui.yml
REVERT: 5a7f7f3c6 Update k8s.postgres.yml
REVERT: e1f60127e Update k8s.postgres.ui.yml
REVERT: 7553ffb63 fix client_cache_control regex
REVERT: 9324648f2 Update k8s.mysql.yml
REVERT: eafe006a6 Update k8s.mysql.ui.yml
REVERT: 62a8ec975 Update k8s.mysql.ui.yml
REVERT: dfcaba9ad Merge pull request #478 from bunkerity/dev
REVERT: 737b999cd Set CLIENT_CACHE_CONTROL setting's regex
REVERT: 9339af44c Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
REVERT: 78f7570e1 core - Fix bwcli condition when checking bans
REVERT: 40e30ed44 use shared redis connection pool in cachestore when we can
REVERT: d6ca98ed1 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 10a4cefd0 update lua-resty-openssl deps and replace nginx -s calls with signals
REVERT: 97723185b core - Add bwcli tests
REVERT: ab3b3ea8f ui-tests - update waiting time after creating a custom conf
REVERT: 5adec84d5 fix redis not contacted in subsequent phases and reflect changes on stream configs
REVERT: 1624c4e76 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: eea6d32cd share common objects during the phase and add threading to DNSBL and reverse scan
REVERT: 99f8f69fa Merge pull request #477 from bunkerity/ui
REVERT: 9b58b397c Fix ui tests (again)
REVERT: ace88d865 Fix plugins fetching for the UI
REVERT: 69b35636e Fix UI tests (once again)
REVERT: 5dfe35b7b Update how the plugins are being fetched by the UI
REVERT: b75690fdf Change the way python deps are installed
REVERT: b19ebbe6a Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: c0c646aae Merge pull request #476 from bunkerity/dev
REVERT: edd6e2ded improved session management and add IP/UA checks
REVERT: c7ca5a822 Fix Database overriding services_settings if a global_value is set
REVERT: e1883a04b Merge pull request #475 from bunkerity/dev
REVERT: af19cc226 core - Add redis tests
REVERT: 0087ae583 Update python deps
REVERT: 8133c134e core - Fix db tests by removing "order" key check
REVERT: f725d0fe6 Update keys name in datastore
REVERT: 05c478e83 Edit COOKIE_FLAGS regex
REVERT: b5aaf6266 add forward reverse DNS to whitelist, disable redis in cachestore when sockets are not enabled, fix typo in cachestore and improve dns/rdns caching
REVERT: 8a8dd6fb7 db - remove order from plugin model
REVERT: 93c766e56 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 179beea4d improved core plugin execution order
REVERT: 1d126e1d0 core - fix cors tests with the preflight request
REVERT: dbb884099 core - Update allowed_methods test method to GET
REVERT: 62cb85453 core - Remove cert verification when testing allowed methods in misc tests
REVERT: 04919e8a0 Fix multiple CVEs
REVERT: b32f31891 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 4962f786b fix wrong env parsing in init phase, bypass modsec/crs when method is not allowed, refactor ALLOWED_METHODS and improve error page management
REVERT: 10bdf551a core - Add misc tests
REVERT: 7158e7e9a core - Optimize cors tests
REVERT: 3f51f59bc Add check when plugins are configured + Add Semaphore to accelerate jobs execution + Code optimization
REVERT: 4c4fa44fb ci/cd - fix core/cors tests
REVERT: 84d43c84d Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
REVERT: b58798746 Update mmdb download to check the checksum at start
REVERT: a9be973d5 use PCRE regex instead of LUA pattern and edit cors doc
REVERT: 4378f18cc fix typo in bunkernet.lua, add missing Origin header in cors tests and fix allow origin expected value
REVERT: 7d84e03a1 fix header plugin phase not called for internal request (fixes CORS), fix bunkernet init_worker bug where ngx.ctx.bw is not available, add CORS_DENY_REQUEST setting and edit values for core/cors tests
REVERT: 838662141 Lint Lua code
REVERT: 36fdec105 core - fix sessions tests
REVERT: ab54b18e0 core - fix reverse scan cache retrieval
REVERT: 9c6ca6a86 cors - various improvements
REVERT: 991f7ff8d Fix tests core reverse scan wasn't using the image
REVERT: 9c77f77fa Fix test core DB
REVERT: 9ee74aef4 Add up back when retrying to up the stack + remove useless print
REVERT: 7bf4c11bc When docker up fails in core tests retry one time
REVERT: 82aadfa38 Update core db tests to add the settings.json file and optimizations
REVERT: 2a78d2c05 ci/cd - perform all core tests even if one failed
REVERT: e3fc55be9 deps - add missing hash for python dep async-timeout
REVERT: 5f668aeca ci/cd - fix syntax error in test core wf
REVERT: e5e336c4f Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 9a2e37984 ci/cd core tests and antibot refactoring
REVERT: 2ac77ee49 Fix deps not being synced
REVERT: 394f5fe4b Move back to images in the whitelist tests
REVERT: b06210bdf Remove unused files in tests core
REVERT: e6bb9fb55 Add tests for core plugins
REVERT: 29f020f15 Update python deps
REVERT: 051923b6f fix deprecated external network in compose files, various fixes in the documentation and add ipv6 to doc
REVERT: 2e1296d9a show useful info in BW logs after startup/reload and reduce container images size
REVERT: a686562f1 performance - cache empty rdns results
REVERT: e36c743c7 performance - cache dns responses
REVERT: 75f3d6490 init IPv6 support, add missing healthcheck script in UI and purge local cache on init
REVERT: a258612e4 add global data on settings filter
REVERT: bc3ea0ed3 change select method check
REVERT: ab71c484e add global condition for disabled state
REVERT: 5c415afa1 various fixes - ttl on /bans api, dnsbl undercover bug, greylist, whitelist and wrong path in realip job
REVERT: 5c50f57f1 Revert "regular inp and multiple global=true are enabled"
REVERT: 9ceaaa874 regular inp and multiple global=true are enabled
REVERT: 3dde3ac0a Fix no longer save SERVER_NAME when MULTISITE is set to "no"
REVERT: c01b493c9 Increase compression level of tar files being saved in the database
REVERT: 4f4a8b508 Fix default global values being added to database when MULTISITE is set to "no"
REVERT: 408806718 Add external plugins being updated at the start of the scheduler
REVERT: 402ff16c8 Add "global" key to settings when fetching methods as well
REVERT: dcdb43cf0 Merge pull request #473 from bunkerity/dev
REVERT: ca8c56aaa Remove unused function in UI src.Config
REVERT: 905946463 Fix scheduler restarting for no reason when having an external database
REVERT: 8a308b1a8 Fix database not providing the right SERVER_NAME setting value
REVERT: cf26d7aa2 Fix database saving default values to global_values when multisite was set to "no"
REVERT: 8bb6f63fa Merge pull request #472 from bunkerity/dev
REVERT: 64789276a Update python deps
REVERT: 30194f959 Fix Access-Control-Allow-Credentials not being set to the right value when deactivated
REVERT: 50ee37db0 cors - refactoring
REVERT: b8d89fe79 Fix customcert plugin
REVERT: 63f4e44c6 Fix CORS when sending an OPTIONS request
REVERT: ac2e4dd64 Merge branch 'staging' into dev
REVERT: e14475de4 ci/cd - fix missing version in linux package name
REVERT: 136f68cd3 ci/cd - fix typo in beta wf
REVERT: d83730cf7 ci/cd - fix linux package name in upload/download steps
REVERT: ae042854f Fix blacklist download jobs where ignore urls were not being downloaded
REVERT: 86053d3dc Update RDNS regex in jobs files
REVERT: b2e26fc8f Revert "Revert "Update RDNS regex""
REVERT: 48354fb26 Revert "Update RDNS regex"
REVERT: a544f18e2 Update update-check job to add stars so that the end of line shows
REVERT: c6f304b37 Update RDNS regex
REVERT: 14ca85cdb ci/cd - fix package.sh name in linux build wf
REVERT: dc1cb6a6f ci/cd - fix scp command in linux build wf
REVERT: 73acbe085 ci/cd - fix typo in linux build wf
REVERT: 45c90527c ci/cd - fix linux package generation when arch is ARM
REVERT: f4590749d linux - fix arch in rhel package image
REVERT: 141f5a1d5 ci/cd - fix typo in beta wf (again)
REVERT: 6e82fde8a ci/cd - fix typo in beta wf
REVERT: 00ba46ebf prepare for 1.5.0-beta update
REVERT: 9a1c09c56 Merge branch 'staging' into beta
REVERT: df787c75d linux - add pcre dep to fedora package
REVERT: 93e567bb6 linux - fix fedora deps name and add architecture to fpm config
REVERT: 8b6d788c2 ci/cd - fix bitnami chart values
REVERT: 541b64698 increase drupal delay time for tests, fix tmp dir not created for realip-download job and fix has_*_variable check when multisite is yes
REVERT: 59324526c speedup build process for python deps and fix default env value for autoconf/k8s
REVERT: a58e5c60c deps - upgrade python dependencies
REVERT: 27b1dddb0 linux - pin pip version
REVERT: fd056102d fix centos repo command in rhel dockerfiles and fix delete infras order for staging wf
REVERT: fb0373343 ci/cd - use single quote in linux build wf
REVERT: 43cbc79c7 ci/cd - move ARM_* to secrets in linux build wf
REVERT: 7592e5a84 ci/cd - fix typo in staging.yml
REVERT: 39ace8175 fix load-balancer example and add server_name to cache keys when required
REVERT: 48d7e72e5 Merge branch 'dev' into ui
REVERT: 66921b007 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 819ad60a4 fix hcaptcha antibot and refactor ci/cd for staging
REVERT: 20913808c Add .mypy_cache to .gitignore file
REVERT: a086ff690 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: a286e7bd3 fix wrong container in autoconf/k8s, init work on linux arm and ci/cd refactoring
REVERT: 5a233ff90 Fix Database model types
REVERT: 18b3d7148 Update db model to use SmallIntegers
REVERT: b36cd924f Add `bw_` prefix to database table names
REVERT: 63ce1afcd Handle errors more gently when API requests fails
REVERT: d4934cfee Remove test-ui service in the main docker compose file as it's been extracted
REVERT: 500d58e50 Separate the compose file back
REVERT: 21dc67b68 Update test.sh for ui-tests an the compose file
REVERT: 75d2be7db Update tests-ui to fix them
REVERT: 041b7f71e Update ui-tests to make a valid password
REVERT: 1245b8b01 Update regex in ui + Add regex module to requirements
REVERT: 913e9a2c2 Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
REVERT: 97dc6540e ci/cd - fix typo in dev wf
REVERT: b75ba601b Merge branch 'staging' into dev
REVERT: 573fe8fee Change UI admin password check to a regex
REVERT: 51514df57 Remove not needed file in linux scripts
REVERT: 9ff64426b Fix ui tests with the external plugins
REVERT: 74fe9d5c1 Lint jobs py files
REVERT: 97b362bb1 Fix let's encrypt error when deactivated
REVERT: 964d31893 Fix wrong attribute value when checking for external plugins
REVERT: 914686e78 Fix often occurring bug when testing the web UI
REVERT: 58db1352f Revert "Fix often occurring bug when testing UI"
REVERT: 987af951d Fix often occurring bug when testing UI
REVERT: 1c74c5d8d ci/cd - refactoring
REVERT: 1cc9f5773 prepare for v1.5.0-beta fixes
REVERT: ac94e5072 fix double .conf suffix in custom conf, migrate /etc/letsencrypt to /var/cache/letsencrypt, fix bunkernet jobs and lua code and fix reload for jobs
REVERT: 773874154 move /etc/letsencrypt to /var/cache/bunkerweb/letsencrypt (wip)
REVERT: 75ca603b7 WIP - fix bunkernet and missing reload for scheduled jobs
REVERT: 027605452 Fix bunkernet initial message when checking connection + add TODO
REVERT: bddfb58a0 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: c7ab00208 Merge pull request #462 from bunkerity/testmmdb
REVERT: ef551846b ci/cd Update mmdb - Let only the schedule and change branch to push on
REVERT: f41c096ec Merge branch 'testmmdb' of https://github.com/bunkerity/bunkerweb into testmmdb
REVERT: a7b7c2031 ci/cd Update mmdb - Add check for curl commands
REVERT: fb5529566 Monthly mmdb update
REVERT: 0afb250b9 ci/cd mmdb update - Changed branch to push on
REVERT: 019a927b0 ci/cd remove secret required for auto mmdb update
REVERT: 283a63f16 ci/cd try fixing workflow auto download mmdb
REVERT: 42707ad46 ci/cd test mmdb update
REVERT: cd57eb423 ci/cd - fix automatic push of doc
REVERT: 01fbacf0f ci/cd - fix pdf path for draft release + fix missing git fetch before deploying doc
REVERT: d693d065f ci/cd - allow to update release tag, add PDF to release and fix multiline CHANGELOG in release
REVERT: aa2ada0a0 ci/cd - update git user/mail for push doc wf
REVERT: a47d7df40 ci/cd - execute apt install as root for doc to pdf workflow
REVERT: c4093a2d7 ci/cd - increase ARM node storage
REVERT: 01e599493 ci/cd - concurrent builds for ARM + fix version string for RPM packages
REVERT: aaa070165 linux - fix VERSION path in package script
REVERT: 0b93c6e10 ci/cd - add more cores to ARM instance
REVERT: 88db3fa34 ci/cd - fix build rhel var
REVERT: 5c01bd3f7 ci/cd - various fixes for push workflows
REVERT: 604d4c1a0 Merge pull request #459 from bunkerity/dev
REVERT: bed6d742f Decrease the compression level when sending configs to BunkerWeb
REVERT: 57cb6e9c4 Update python deps
REVERT: 0d1580cff Small code refactor of the jobs and the scheduler's function that generates configs
REVERT: 766ca0e9c Merge pull request #458 from bunkerity/dev
REVERT: 0ab07678d Merge pull request #457 from bunkerity/ui
REVERT: 5412e6d24 fix logs checkbox
REVERT: ba7422218 ci/cd - fix push workflows
REVERT: fda2948e0 ci/cd - fix typo in push docker wf
REVERT: 59e5b1d54 ci/cd - fix push workflows
REVERT: 7ca7d7847 Merge branch 'beta' of github.com:bunkerity/bunkerweb into beta
REVERT: 939545644 add missing postgresql-dev build deps for ARM images
REVERT: 0b5746aba ci/cd - add missing inputs for build arm
REVERT: 94dc501c1 ci/cd - remove load image in buildkit for ARM archs because of docker limitation
REVERT: 8ffaa7cf7 ci/cd - force shutdown when deleting ARM node
REVERT: 6e99e7a98 cicd - fix docker buildx arm driver
REVERT: 2eef2b8bb ci/cd - fix variable share for ARM (again)
REVERT: 406c686e4 ci/cd - fix variable share for ARM
REVERT: 6cecc70c3 ci/cd - fix ssh command for ARM builder
REVERT: 2f992baab Lint py files with black
REVERT: 7befd927d Update python deps
REVERT: a4ae0d517 Update cached mmdb files
REVERT: c3d0d7ca7 Add workflow that automatically update cached mmdb files
REVERT: d4ceb7c10 Remove dev comments for ui tests
REVERT: b37c86e62 Fix ui tests problem with the logs page
REVERT: a7b07c959 Fix wrong condition when fetching the logs on Docker
REVERT: 3b237ed3c Fix UI tests
REVERT: a55a0df5d ci/cd - remove useless condition in create ARM workflow
REVERT: ae33ca52e ci/cd - fix wait-on variable
REVERT: 8867eb23b ci/cd - fix wrong json keys from scw api
REVERT: 1b79e291e ci/cd - various fixes for arm build
REVERT: 98ce5041d ci/cd - use fixed sha1 commit for scw action in rm arm workflow
REVERT: 66d7216dc ci/cd - fix typo in create arm workflow
REVERT: 45fa4d1c2 ci/cd - ignore /root/.cargo dir for security checks, use fixed sha1 commit for scw actions and add missing deps for ui/arm
REVERT: 9cd13990e ci/cd - pass ARM ID as secret
REVERT: 266383abb ci/cd - dynamic arm build node
REVERT: 4e0d2fce5 add missing dependencies when prebuilt crypto package is not present
REVERT: 823c09195 ci/cd - add missing var for ARM builds
REVERT: e71dc132e ci/cd - fix typo in container build workflow
REVERT: 0db5f7cf0 ci/cd - fix typo in beta workflow
REVERT: 4bfc5b693 ci/cd - fix wrong cache name in container build workflow
REVERT: 93d0a991a ci/cd - fix typo in push doc workflow
REVERT: 1c178ed75 ci/cd - fix version output for beta/release workflows
REVERT: ab7e1f624 ci/cd - add missing runs-on in beta/release workflows
REVERT: 0f499c9d3 ci/cd - fix typo in push packagecloud workflow
REVERT: d0f6d59f6 road to v1.5.0-beta 🚀
REVERT: 408662869 ci/cd - fix typo in doc-to-pdf
REVERT: 312757594 ci/cd - fix typo in beta/release (again)
REVERT: 11f86ea75 ci/cd - fix typo in beta/release
REVERT: ad1606742 use proper links in docs, automatic doc push and add pdf to releases
REVERT: 08e1d157d Fix ui-tests by removing no longer present checks
REVERT: c8908695b Remove unnecessary prints
REVERT: 641a27f5e ci/cd - remove useless needs for ui branch
REVERT: 468407081 ci/cd - fix typo in staging workflow
REVERT: 6784bd691 ci/cd - fix wrong condition for container-build workflow
REVERT: ef1897de8 ci/cd - add missing needs to tests-ui staging
REVERT: 9815f22d7 ci/cd fix typo in container-build workflow
REVERT: 65c6e48e9 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 14a4db8bd use current_bw_version for docs, add automatic tests to ui branch and fix letsencrypt permissions for linux
REVERT: f6b8d23fb Fix ui tests by editing the attributes name to the new ones
REVERT: 58fd04430 ci/cd - fix typo in staging.yml
REVERT: 54a17c775 init work on CI/CD for generic beta releases, remove useless autoconf examples and fix linux postinstall script
REVERT: 4f2c58bd7 temp disable authelia test for k8s and add missing folders for LE on Linux
REVERT: 5e4ce4579 various fixes
REVERT: fa67c5d7b ci/cd - fix missing arg for copytree
REVERT: 04db308c9 ci/cd - edit staging workflow
REVERT: 5d2045803 ci/cd - edit staging workflow
REVERT: e7717ba7f Merge branch 'ui' into dev
REVERT: bbaaad848 docs - last polish
REVERT: 0658230e2 enhance responsive
REVERT: f5c28b27d Merge branch 'ui' into dev
REVERT: 575312336 harmonize all titles dark color
REVERT: 2f336be77 enhance file manager and jobs svg
REVERT: 81a37a377 enhance actions btns
REVERT: c3119f04e docs - plugins
REVERT: ffa91933e docs - add YT demo
REVERT: 5741dce6d Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 7695a839f docs - web UI
REVERT: 5fe0e0bfd Merge pull request #454 from Hado-K3n/patch-7
REVERT: 8c71f7d27 Merge pull request #455 from Hado-K3n/patch-8
REVERT: 124378d7c Merge pull request #456 from Hado-K3n/patch-9
REVERT: c6a184d90 fix ui integrations and fix stream support in db
REVERT: d8b7db167 merge from ui
REVERT: ddd83a808 docs - add stream support info and plugin description to settings page
REVERT: 289b58567 docs - add stream support info on security tuning page
REVERT: 4dda54a11 enhance style
REVERT: 0ca473c69 fix style issue between load and page transition
REVERT: 1145b798f fix filter setting from custom selectors
REVERT: 63e7ccf13 better centering loading logo with text
REVERT: 001a63efc continue custom selectors + fix script + style
REVERT: 4144faa93 fix create service issue + remove stash
REVERT: 72bc9e4bb start creating custom selectors
REVERT: 98de3fc2f docs - quickstart
REVERT: f118f992f merge from ui
REVERT: 5285a2f4a force stash
REVERT: 1d354c9c6 docs - quickstart (wip)
REVERT: 55a7c8fee force stash
REVERT: 64a9fe4db fix checkbox + style issues + script duplicate
REVERT: a90d9e627 ui - fix default value for inputs
REVERT: 7e1efcbc6 Merge branch 'ui' into dev
REVERT: b5f0fe856 docks quickstart wip
REVERT: 01d8c65c9 remove hidden input checkbox + fix script
REVERT: b7f63450e add special method for mode
REVERT: bc47f1fa5 Merge branch 'ui' into dev
REVERT: 7089e8b4d fix checked state
REVERT: d4fd4c473 fix checkbox + template
REVERT: db5789fcb Merge branch 'ui' into dev
REVERT: ab20f83b2 Update k8s.postgres.ui.yml
REVERT: bbea8ba3f Update k8s.mysql.ui.yml
REVERT: 9a2005d1a Update k8s.mariadb.ui.yml
REVERT: 9512de630 docs - quickstart guide (wip)
REVERT: 956a7bd23 Merge pull request #453 from gin-gitaxias/patch-2
REVERT: f8c5543fd Update plugins.md
REVERT: 667bb3003 docs - quickstart guide (wip)
REVERT: 6b76596a8 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 78c2e16ea add missing cluster config for ui/k8s and start quickstart guide doc
REVERT: 1e6cfe8b0 fix filter disabled issue + reset on modal open
REVERT: 574ecbd6b Lower the environnement variable for the mode
REVERT: aa3ce13a8 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 6f39fce6d docs - integrations
REVERT: 92fc5d981 Remove ascii art showing in UI logs
REVERT: ae7e3ddd9 Fix how the ApiCaller is initialized for UI instances
REVERT: df94bc4af Merge pull request #452 from bunkerity/dev
REVERT: bf29fa2f9 Show how many plugins there are correctly in the home page
REVERT: 509bd21b0 Add log when deleting plugin
REVERT: 1530745a7 Merge pull request #451 from bunkerity/ui
REVERT: a87abf3ce update home dark mode + variable
REVERT: 8a5836dd9 add popup darkmode
REVERT: 3a4a6ee5f new service doesn't force method="default"
REVERT: 1321a76c0 update service submit name for new or edit action
REVERT: 53e145b91 show method involved in disabled setting on hover
REVERT: ceec21faa update web-ui INTERCEPTED_ERROR_CODES
REVERT: 63ba00180 Fix logic when saving a service in the UI
REVERT: 479f18b17 Merge pull request #450 from bunkerity/ui
REVERT: ab43bf84a Make it so the UI and the scheduler no longer run as root in Linux
REVERT: a7849a6e7 Fix mic mac with config files and UI
REVERT: 9009859aa Merge pull request #449 from gin-gitaxias/patch-1
REVERT: 0bf2116c4 docs - concepts
REVERT: 3616a9f20 Update security-tuning.md
REVERT: 435aae7cf docs - index and migrating
REVERT: c0e649d68 fix logs + select custom
REVERT: 1c3bbf1bc stream - add example and fix ssl support
REVERT: 37ebde363 fix logs and plugins dropdown + margin
REVERT: b64e55f75 Add bigger timeout to loading.html
REVERT: da4bb8dce Fix condition in helpers.lua
REVERT: ab509c270 Fix UI with Linux
REVERT: 6916a81c5 bunkerweb is now W3C friendly
REVERT: c7bc493e3 stream - fix various errors
REVERT: bc1dbe18a Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: bd577cfb2 country fix (again) and init work on stream
REVERT: a829528c3 Add bwcli to scheduler and fix it for the autoconf
REVERT: 9d829ebca Finish updating bwcli
REVERT: 94b97a6bb Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 780c0c8c5 api - fix errors in calls and use ngx.ctx instead of ngx.var
REVERT: 5fb0be70a Merge pull request #447 from Hado-K3n/patch-6
REVERT: 6843902db Merge pull request #446 from Hado-K3n/patch-5
REVERT: 3419dca98 Update k8s.postgres.ui.yml
REVERT: 38c71cf94 Update k8s.mysql.ui.yml
REVERT: b7c260561 [WIP] Update bwcli
REVERT: 995ff250f Update python deps + add redis for the gen
REVERT: a04490b47 Replace unnecessary import
REVERT: 5112ed46e Merge pull request #445 from Hado-K3n/patch-4
REVERT: 8558785b1 Update k8s.mariadb.ui.yml
REVERT: 95e64d6c8 bw - fix black/grey/whitelist rdns check and country check
REVERT: 8ea94a2e4 Merge pull request #444 from bunkerity/dev
REVERT: 9f1405d69 Remove unnecessary {-raw-} in index.html when loading
REVERT: 9a2f7e9ab Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
REVERT: 93b471444 Add marging to antibot files hcaptcha and recaptcha
REVERT: 93c0cd437 Merge pull request #443 from bunkerity/ui
REVERT: e7d61a67c update antibot and default template
REVERT: 5d05eaeae Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: a77d233ec bw - add zlib dependency
REVERT: 9a69ca135 Merge pull request #442 from bunkerity/ui
REVERT: 823c12823 fix SERVER_NAME + fix delete form + enhance
REVERT: 52806afe7 Merge pull request #441 from bunkerity/dev
REVERT: 2ea726c22 Merge branch 'ui' into dev
REVERT: dffc770a9 fix and enhance
REVERT: 12f8b8197 bw - add missing lua-ffi-zlib dependency, fix syntax error for white/black/greylist, fix error for dnsbl and fix limit request not working in local mode
REVERT: 4871a2104 api - add missing ctx fill
REVERT: bcc5e6bb5 bw - add missing json decode in api and add missing require in country
REVERT: 83428d6cc bw - fix resolvers nil error when doing dns checks
REVERT: 7eefcb8f8 antibot - manage direct access to challenge page
REVERT: a372ffd52 fix invalid session error handling and remove debug log in whitelist
REVERT: e55912b34 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 5f9f1e54f load inline multisite values for white/black/grey list core
REVERT: 3b4882d82 Revert "Remove no longer present CVEs fix because these are already fix in the images"
REVERT: c2e0e5106 limit - use atomic script for redis case
REVERT: 4bc0771d9 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: edf7e06e0 various redis fixes and display ready log
REVERT: a93d9a7d9 Remove no longer present CVEs fix because these are already fix in the images
REVERT: e4465d9a1 Fix jobs cache when a database is used
REVERT: c9af9457e Fix wrong condition when sending files
REVERT: 17a3d933b Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: a60b6f3ad bad behavior - fix 500 error and do not pass objects with another lifetime to timers
REVERT: c0e8e93ab Fix documentation mistakes when soft merging 1.4 into dev
REVERT: f1a868c66 Fix when the cache from jobs is saved into DB + sleep 5 seconds when waiting for the database for the UI
REVERT: d32102376 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 510938fc2 antibot - fix bugs related to session
REVERT: ed9605c10 Update python script that generates settings.md
REVERT: 3dabd42df Update python deps
REVERT: 834fbaf01 remove antibot back btn + update raw
REVERT: 95c231515 antibot - various fixes, not fully fixed yet
REVERT: 56028b087 update antibot / loading / default page
REVERT: 502d4fcc0 Add back the fact that we don't download the mmdb country if we don't blacklist or whitelist a country
REVERT: ccd56d3b6 change antibot and misc template style
REVERT: c949c0232 Update the security tuning's blacklist category according to the settings
REVERT: 671543e6e Add more ignored variables for missing setting name warning
REVERT: dbd5739ab Fix wrong setting names under `Custom certificate` category
REVERT: 5f26ebc69 Fix php-cookie-flags example
REVERT: bba26b548 Reorder core plugins to stop having the warning at startup
REVERT: db166c434 Add small fixes and lint to the error.html page
REVERT: 08f3d93ab Update jobs will now also check and save the cache in the db
REVERT: 63b1fb947 Fix CVE CVE-2023-1255
REVERT: d5b11b8bb Merge pull request #440 from Hado-K3n/patch-3
REVERT: 92744c091 Merge pull request #439 from Hado-K3n/patch-2
REVERT: d46337f60 Merge pull request #438 from Hado-K3n/patch-1
REVERT: 9b52a5c3c clusterstore - various bug fixes
REVERT: 3f9d606e1 Update k8s.postgres.ui.yml
REVERT: 7e2f53c8c Update k8s.msql.ui.yml
REVERT: 1f5d8bfab Update k8s.mariadb.ui.yml
REVERT: 7a7d83a75 various fixes for redis/clusterstore - still WIP
REVERT: a5e08e1c6 refactor of session management
REVERT: 0fdb108fe core - do not execute init() if BW is in loading state
REVERT: 00b50c162 various fixes for core plugins
REVERT: 4ba5d6659 use ngx.ctx to store common values
REVERT: 860cc1a92 Merge branch 'dev' into ui
REVERT: 881d3a00d fix git issue on windows
REVERT: 76a2ff656 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 28ef546a9 refactor - start to use ngx.ctx for per-request data
REVERT: ed495b99f Add CODE_OF_CONDUCT.md
REVERT: 0bd3e273b Update compression_level of sent tarfiles to 5 instead of 9
REVERT: 348ab7a1e Add feature that allow the copy of code blocks in markdown + Update copyright
REVERT: cf2938bf2 Update web-ui docs according to the next major version
REVERT: 79a46e2cf Update the logic behind the check for linux os
REVERT: 9a325c7a9 Add new check for integrations in BunkerNet job
REVERT: 707256076 Add now the scheduler will pass his own env as well to jobs
REVERT: 9578ace02 Remove not used INTEGRATION file in BunkerWeb container
REVERT: 8c919c676 Update links in the home page of the web UI
REVERT: ad64ce22e Remove no longer needed packages that were fixing old CVEs
REVERT: 29cb6fe16 fix header phase and fix error template
REVERT: d3d18e15a Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: a83254bf2 fix wrong log in access
REVERT: 859343e18 Merge pull request #437 from bunkerity/dev
REVERT: 50829293c Merge branch 'ui' into dev
REVERT: 8e22b1f21 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 9849ce10c fix wrong error check on phases and add missing ttl for *list cache items
REVERT: 3b5c083fc Soft merge branch "1.4" into "dev" + changing versions
REVERT: 4d95e32f1 update error page
REVERT: 1da4b78f0 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 915b51c3b fix error pages for default http server
REVERT: 535f1a055 Merge pull request #436 from bunkerity/staging
REVERT: 0afe038aa WIP Ui
REVERT: 3b6c3815e fix default-server-http.conf
REVERT: b5fa473ae Merge branch 'refactor' into staging
REVERT: 2fddbd862 refactor - disable asn checks for non global IPs, use resty.template with antibot and various fixes
REVERT: 8d63e3974 refactor - fix various errors and add missing dependencies
REVERT: 23725d483 Update prod shields.io link in README.md
REVERT: 303f380c7 Update demo.gif file
REVERT: 3c375039e Optimization on the download of mmdb files
REVERT: a7773dae2 Update intro-overview.svg
REVERT: 5eb884fe9 Fix bug when showing cache files for services in the UI
REVERT: 3fac889ff Remove no longer used modsec rules for the UI
REVERT: c3106e70e Update README.md and edit the demo GIF + edit the .prettierignore file
REVERT: 928ed2d6c refactoring and road to nginx 1.24.0
REVERT: 34ab94640 Update python image in Dockerfiles + Add gevent to requirements for the UI
REVERT: aa96c8503 update css
REVERT: 649d29b05 change news base url
REVERT: 217d1aa50 enhance style + menu script
REVERT: e6ff51e20 Refactoring and Linting of py files and json
REVERT: 666b7a1ba refactor - blacklist, errors, greylist, letsencrypt and redis
REVERT: 496edb83a Adding thel documentation
REVERT: ee83cea7f Add ascii art showing randomly when starting
REVERT: 6d1914d62 Update python deps
REVERT: 648f15e42 Add new core plugin update-check
REVERT: 2075a5d4c refactor - badbehavior, blacklist, bunkernet, cache, cors, country and dnsbl
REVERT: 5dd52186b Fully adding vagrant in the doc
REVERT: 3a03f07f1 Changing vagrant integration
REVERT: 64997bae8 Adding vagrant integration
REVERT: 03ec271e2 refactor - improve clusterstore interface and automatically retrieve variables for plugins
REVERT: 29c57915c antibot inherit from plugin
REVERT: 840c29568 continue work on refactoring
REVERT: 1ec83f256 renamed session to sessions
REVERT: 8c2908157 save work
REVERT: afc0ac198 init work on refactoring
REVERT: 4cd3fc644 Merge pull request #434 from syrk4web/staging
REVERT: bfc872be2 change flash logic when login
REVERT: 049e9c1ea Update python deps
REVERT: bf9b94ebf Avoid Autoconf from running in root
REVERT: 92e698458 magento - fix docker example (again)
REVERT: a771bdb18 magento - fix docker example
REVERT: 7c21b3da2 deps - update lua-resty-session to v4.0.3
REVERT: d4fae4b57 session - add missing settings
REVERT: a85044220 init work on redis session
REVERT: 986f506e7 add missing API_WHITELIST_IP in mattermost and moodle examples
REVERT: 41e8f5c93 fix wrong init of counter in badbehavior and fix nextcloud/docker example
REVERT: 8e7205062 ci/cd - reduce dynamic subdomains for k8s tests because of annotation size limit of 63 chars
REVERT: 1bc42204d ci/cd - use dynamic random subdomains to bypass LE rate limit
REVERT: a1e44f6e4 Merge pull request #431 from gin-gitaxias/staging
REVERT: 7ccd3ef92 fix moodle/swarm example and disable reverse-proxy-websocket test
REVERT: 8b54073a7 fix missing backslashes in autoconf custom configs and add missing full reload after custom configs update
REVERT: 622f2eb2a autoconf - check if service exists before adding config
REVERT: 5d14813be fix typos after basic testing
REVERT: 9f7060564 autoconf - add missing import and fix double lock release
REVERT: 937cd10ee refactoring and various improvements
REVERT: 6af3b985a fix deadlock in autoconf/swarm and fix missing favicon in default and loading pages
REVERT: f6ed21b3b autoconf - fix global custom configs not supported in k8s/swarm mode
REVERT: eee03c4ae autoconf - fix variable typo in k8s watch
REVERT: ecf4e77b3 autoconf - fix deadlock in watch loop
REVERT: 0b71819d2 watch services for autoconf/k8s and support real IP in default http server
REVERT: d3d0136bf various redis fixes and improvements
REVERT: e80965ca9 lua - fix wrong variable name in access
REVERT: 220374db4 ci/cd - fix syntax error in jobs
REVERT: 9b8606d40 fix redis hostname for k8s files and only append tasks with a desired state of running for autoconf/swarm
REVERT: c843be074 reverse proxy - allow all chars for URL settings
REVERT: 6a65104e7 fix return value of clusterstore.connect and disable auth basic for LE challenges
REVERT: b429201ec add missing LUA import for clusterstore and fix prestashop docker example
REVERT: a9ce32c26 added a more precise scan response and modified .json like asked
REVERT: f4442b642 ci/cd - fix syntax error in k8s test class
REVERT: 1c3c0d63b ci/cd - fix missing k8s create infra job
REVERT: e8c6d04aa ci/cd - various fixes for k8s tests
REVERT: 1caa9a1e7 adding reverse-scan
REVERT: 5d41a5b98 Merge pull request #1 from gin-gitaxias/reverse-scan
REVERT: 77fb8c420 Add files via upload
REVERT: 1bb79b155 linux - add geoip deps to rhel rpm
REVERT: cf8644602 Merge branch 'staging' of github.com:bunkerity/bunkerweb into staging
REVERT: ea1394b04 ci/cd - add linux/rhel tests, fix docker/behind-reverse-proxy, fix missing stream module for linux/fedora and remove placement constraints for swarm
REVERT: 87bd26da0 Add threatmap to README
REVERT: b3eb64745 ci/cd - temp disable autoconf tests and add missing packages for linux/centos
REVERT: 202f21aab fix syntax error in ApiCaller
REVERT: 55a36f719 fix docker/joomla, fix autoconf/nextcloud and fix API calls for swarm tasks
REVERT: 1c3f094cd ci/cd - fix wrong yaml edit for swarm and append LE settings for k8s
REVERT: f07c0e66a ci/cd - various fixes
REVERT: e8ee460ef fix CVE-2023-0464 and CVE-2023-0465
REVERT: dd2c8cbcd Merge branch 'staging' of github.com:bunkerity/bunkerweb into staging
REVERT: 2d11a1c72 fix nextcloud modsec rule id, fix k8s pvc definition and remove useless logs from linux/start.sh
REVERT: 4f334a577 Add sleep between BunkerNet registering and ping to the API to avoid being rate limited
REVERT: 283828e8f Fix Now support WebDAV methods in the ALLOWED_METHODS setting's regex
REVERT: e50c92250 various fixes
REVERT: b8b50b165 Remove check for messages after creating the service - tests-UI
REVERT: e88406b5d Fix ui tests with the new UI
REVERT: 922b32b2e Merge pull request #429 from syrk4web/staging
REVERT: 671db37f7 fix autoconf/cors, fix docker/wordpress, fix wrong image name for k8s/scheduler and upgrade tests instances for swarm/k8s
REVERT: be71b0781 format logs instance to avoid error
REVERT: 9e1876fea logs fix + checkbox fix
REVERT: 4d245f9fe change cache/download to jobs/download
REVERT: 6d16a766f fix service delete + change style
REVERT: 5e598e90c fix bw-data volume not reused between docker tests, fix wrong bw-data volume path for autoconf tests, add let's encrypt to autoconf tests and fix temp env not generated for linux
REVERT: dc8b7dbe7 fix form input
REVERT: bf22faddc remove php-cookie-flags from tests, use HTTP(S)_PORT for temp nginx on linux and fix wrong volume path for autoconf tests
REVERT: 6c6845a79 enhance some responsive + change api
REVERT: 461789aed ci/cd - fix BW CVEs and fix Linux restart
REVERT: 318228e59 change and fix service logic
REVERT: fa7c7ac91 ci/cd - add www volumes for autoconf
REVERT: f88eced33 Handle services settings sent to the UI better
REVERT: 357dc3e3a Merge pull request #428 from syrk4web/staging
REVERT: 283306a07 Remove CVEs fix, it's no longer needed for now
REVERT: 276a96c55 Merge branch 'staging' of github.com:bunkerity/bunkerweb into staging
REVERT: 19870f154 various fixes for linux and get ui tests exit code from container
REVERT: 2485a47b2 Update python deps
REVERT: bd88f9743 fix id rename error
REVERT: 82d8180d8 Merge branch 'staging' of https://github.com/syrk4web/bunkerweb into staging
REVERT: 41f43c46d fix multiple
REVERT: 0f632803f Merge branch 'staging' of https://github.com/syrk4web/bunkerweb into staging
REVERT: 53f480a66 enhance multiple logic + fix conflict
REVERT: 1cf4a5665 disable healthy checks for docker-poryx and dummy app in ui tests, add --no-reload-linux flag to generator and fix missing self arg in autoconf
REVERT: 041142a4f add healthchecks to ui and autoconf docker images
REVERT: 4f9748cc2 earlier init autoconf in DB, healthcheck for scheduler and fix syntax error in linux/start.sh
REVERT: 54813ecd4 Merge branch 'staging' of github.com:bunkerity/bunkerweb into staging
REVERT: d97b5e104 various fixes
REVERT: 8031c5060 Start handling disabled checkboxes + multiples
REVERT: 58ab870b2 increase cors/k8s/swarms timeout and fix tests/ui container names
REVERT: cceda705b update flash count on remove
REVERT: e91f3dc22 Add a log when database is ready in UI + Small refactor of the Configurator
REVERT: 1e9a55c24 Add small tweaks to the UI and scheduler Dockerfiles
REVERT: 7dc26dafa Fix disabled checkboxes no longer always have the value no with the UI
REVERT: 7dc25b3a5 fix redmine/docker example, remove double AUTOCONF_MODE in integrations, remove useless backslash in start.sh/linux, rename container for ui/tests
REVERT: 55d24a8d1 Change mmdb-country job to download the file only if needed
REVERT: 9e009f7be Merge branch 'staging' of github.com:bunkerity/bunkerweb into staging
REVERT: 73b640bd3 fix cors/docker example, add missing AUTOCONF_MODE=yes to integrations YMLs, proper save_config for Linux and fix image name for UI tests
REVERT: 87bccaad6 Add `AUTOCONF_MODE` setting to scheduler in integrations examples
REVERT: d331131c0 increase timeout for php-multisite, add API_LISTEN_IP setting, edit default variables.env for Linux and add more logs for tests
REVERT: 578a1a8c8 Add more precise logs in the jobs plugins
REVERT: cb808c0ad Fix bunkernet-ip.list file not being created in case of an error (same as 1.4)
REVERT: c8d39ba6b Fix scheduler no longer running as root + Fix permission errors with downloaded plugins
REVERT: 4a67a5f56 Merge pull request #426 from syrk4web/staging
REVERT: 4dea680ac enhance style + some fix
REVERT: d81088272 Change the category if the user needs to log in in the UI
REVERT: e003b751d Fix when saving plugins with pages
REVERT: b829e4edf Fix false positive error with plugin page in web UI
REVERT: fc3ef3346 Add UI logs into console
REVERT: ce85bc6b8 Fix openssl no longer prints progression in the console
REVERT: 2e144bf46 Merge pull request #424 from syrk4web/staging
REVERT: defb2c333 Change the way the error page is rendered
REVERT: 2ae37ce8d Fix regex for ANTIBOT_HCAPTCHA_SITEKEY setting
REVERT: f335364fc Lint antibot.lua
REVERT: 16842fef1 Fix errors with missing % symbol + fix errors because of the symbol
REVERT: 5f5a5a890 Fix css in antibot html files
REVERT: ccde5c74f fix real ip jobs
REVERT: d3402ff3f change loading, error and test files
REVERT: a02218bc8 end examples refactoring
REVERT: 5845446b9 Revert "Fix errors regex, authorize same path for multiple errors"
REVERT: be0df4160 Fix errors regex, authorize same path for multiple errors
REVERT: 89812362a continue examples refactoring
REVERT: 5d214497b Fix don't try to add an instance when saving the configuration with the UI
REVERT: 808b7b220 Update jobs connect to the database only when needed
REVERT: aa0eff749 Fix regex in redis plugin that was breaking the UI + fix ui.conf missing comma + remove unused variables in templates
REVERT: 1ac434a5b Update python deps
REVERT: 9c22f1e97 Refactor the py files
REVERT: cfe5c6063 examples refactoring
REVERT: e37e6c346 Fix mixup of swarm and kubernetes when reading env variables + refactoring
REVERT: 0356250d9 Fix problem with the bunkerweb container and plugins
REVERT: 548d157fe Fix check if the Database is on read-only before trying to write
REVERT: 7c5aa4897 Update version string size to support new format
REVERT: 61b9517a8 Fix error when multiple jobs are trying to write in db at the same time
REVERT: 8c67d08ae Lint code
REVERT: 966f57cea init work on examples refactoring
REVERT: 0210ddd88 Add realip settings values to the initial BunkerWeb settings
REVERT: 6f29756dd ci/cd - pull only interesting images for UI tests
REVERT: 2b1dbb1d4 fix default cert path again and ignore pull errors for UI tests
REVERT: 74a11c2ed fix wrong cert/key path for default server
REVERT: b3769b6e3 fix missing then in blacklist.lua, disable site search in redis.init(), remove counter from reverse-proxy/stream config and fix ui tests compose pull
REVERT: c7d8b7dc1 update resty core and http lua to support latest version of stream lua and various fixes related to ci/cd
REVERT: a62ef9f54 add missing init-stream-lua.conf and various fixes for ci/cd
REVERT: 65611020d fix duplicate datastore http/stream, fix missing /var/www/html for linux and various fixes in tests
REVERT: b28668d68 ci/cd - revert back to old condition for pulling images
REVERT: 706305917 ci/cd - fix wrong autoconf local image name, add missing secrets for tests-ui, fix wrong IMAGE_TAG for tests-k8s and try to fix pcre issue on linux
REVERT: 2d440d26e ci/cd - add missing runs-on for reusable tests-ui
REVERT: 93945f391 ci/cd - add ui tests
REVERT: 5e31b6c4a fix CVE-2022-1304 for autoconf, add missing load_module for ngx_stream_lua_module.so and fix missing -lpcre in configure step
REVERT: 01fab4162 ci/cd - fix CVE-2022-1304 and wrong TEST_DOMAINS
REVERT: aa614b75a ci/cd - replace Test.py with latest one, fix yaml paths, print logs when k8s stack is not healthy and fix wrong linux docker image name
REVERT: 88a295517 ci/cd - fix log() call
REVERT: b95d1bc6d ci/cd - add missing log() and fix TYPE for linux tests
REVERT: 2604d9a56 ci/cd - trying a hack to support dynamic runs-on
REVERT: ed4d94529 ci/cd - trying to fix runs-on problem
REVERT: 53410e831 ci/cd - remove steps
REVERT: 609210021 ci/cd - inherit secrets for tests workflow
REVERT: a168f2bce ci/cd - fix rhel build and runs-on for tests
REVERT: 8bf211bc5 ci/cd - fix linux package generation (again)
REVERT: 9250faa52 ci/cd - fix linux package generation
REVERT: 139eaa2dd ci/cd - add missing scripts
REVERT: 7149a34cc ci/cd - add empty .trivyignore and rename redhat to rhel
REVERT: 5c5dbcfc7 ci/cd - fix type in push-packagecloud workflow
REVERT: e826c619f ci/cd - fix wrong quotes in delete-infra workflow
REVERT: b24cbf73d ci/cd - fix wrong quotes in tests workflow
REVERT: 99e27c430 ci/cd - add missing input in tests workflow
REVERT: ee0e608de ci/cd - fix negative conditions
REVERT: 10f9658f5 ci/cd - fix wrong jobs name in needs
REVERT: 27bac0382 ci/cd - trying to fix dynamic runs-on
REVERT: 97627cf83 ci/cd - pass runs-on to reusable workflows
REVERT: 8969b1e72 ci/cd - remove version from reusable workflows
REVERT: 8ca292fb3 ci/cd - change reusable workflow paths
REVERT: 8e73eb87c ci/cd - fix syntax errors
REVERT: 46e3078dd ci/cd - crash test incoming
REVERT: 95c5e2e47 ci/cd - move dynamic runs-on from reusable to staging workflow
REVERT: 131857a9b ci/cd - fix wrong indent in staging/delete-infra-*
REVERT: fc1cab1af ci/cd - remove subfolder and continue work on staging
REVERT: 25729fda7 ci/cd - init work
REVERT: bb2d868fa Refactor tests
REVERT: 5e3dadbfe Refactor ui
REVERT: 7fe168892 Refactor scheduler
REVERT: 36b5c372e Refactor Instance and remove unused method
REVERT: 596258559 Accept incoming changes for misc jobs
REVERT: c5a10aaa3 merge default-server-cert job
REVERT: 06acae405 rename *CUSTOM_HTTPS* to *CUSTOM_SSL* and continue work on stream support
REVERT: 6bf59b59a Refactor the plugins jobs
REVERT: 7a8a75901 Fix multiple CVEs (see comment) (finally)
REVERT: 10ec01e7b Fix wrong env var name in realip plugin
REVERT: 947ecf81f stream - add is_stream variable to check if we are in stream or http mode
REVERT: 4f4c8ebf0 init work on stream support
REVERT: 79036e975 add ngx_devel_kit and lua-resty-env deps, support set_by_lua hook for plugins and init work on whitelisting support with modsecurity
REVERT: c2402b118 fix duplicate root error when bw is starting, add modesec rule to core ui and init work on k8s/swarm integration files
REVERT: dbd052e9a Remove unnecessary import and use parent list of supported custom conf instead
REVERT: fb917960b Revert changes on the custom conf regex for the autoconf
REVERT: 26de0a233 Lint files
REVERT: 0faa34ac7 Add a regex to the setting REDIS_HOST
REVERT: 1d9459202 misc - add missing page.conf
REVERT: 1b113236a Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 29b373148 misc - default pages for default server
REVERT: 6cb714be0 Start adding integrations examples
REVERT: 99b85ec8a Fix Apicaller error with swarm
REVERT: 37114ee2f Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 902fe6ad0 bw - init work on redis
REVERT: 7bf034fc9 Fix being able to delete autoconf services from UI (shouldn't be)
REVERT: 916caf2d6 Merge (soft) 1.4 branch into dev branch
REVERT: f8e31f287 Update mattermost to use a static image
REVERT: 0f35c05ee Ignore multiple CVEs due to missing deps in python:3.11-alpine
REVERT: 846e26e41 Fix multiple CVEs (again)
REVERT: ebc7fbbce Fix multiple CVEs (see comment)
REVERT: f4081ebd3 Handle more errors with Bunkernet job
REVERT: 3b01b5144 Upgrade the way the jobs run_once are executed
REVERT: 8fa94d6a5 Edit DockerController regex to handle more custom confs and fix modsec conf mixing
REVERT: c92d4224f Update python deps + add cryptography for autoconf and MySQL
REVERT: 579975899 Fix checkbox not being sent when unchecked + double settings tab in UI
REVERT: 935805721 Fix CVE CVE-2023-22490 and CVE-2023-23946
REVERT: c671ccf7a Add unauthorized_handler to UI
REVERT: 5ac64758e Merge pull request #417 from syrk4web/dev
REVERT: fdd0da35d Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
REVERT: 34d12cd55 Fix file manager always use the database now + create log file for UI if not exists
REVERT: 47ccd9f04 Log events back in the UI
REVERT: 39b0f3f19 fix + show one mult group
REVERT: 7828c0225 add checkbox fallback + DL script
REVERT: e425eef9a Fix weird shinanigans when saving services config
REVERT: b75bc0344 Adjusting upgrade on file variables.env
REVERT: 79dabf763 Change the way bunkernet check on which instance type it is
REVERT: 3f462fb3b Optimize logger
REVERT: 84f3a894f Fix cache files not showing on UI
REVERT: 93933bde7 Fix custom conf MODSEC CRS being interpreted as MODSEC only
REVERT: c22bccc76 Correcting nginx version for debian installation
REVERT: 8bedc9ce6 Correcting doc
REVERT: 3a60b3463 Modifying doc for packagecloud problem
REVERT: 9efa21709 Correcting fedora packagecloud problem
REVERT: e3410058f Correcting Ubuntu/Debian
REVERT: 60ac00f5f fix inp value
REVERT: 6b13fbb84 change svg
REVERT: c89205016 Adding Rhel integration
REVERT: cb77a7010 change logs datepicker
REVERT: 8b0d8a9d3 remove log + fix service tab
REVERT: facb597ee fix float buttons
REVERT: 89930f1a3 Remove encoding from Database engine args
REVERT: 6122d59d8 Update python deps
REVERT: d3a02be59 Rhel cannot be supported yet
REVERT: a51aa27e4 Add some checks and solutions to rare syntax error
REVERT: ae8e65057 Fedora upgrade working Correcting backup during upgrade Database backuped TroubleShooting some errors with OS Centos working
REVERT: 77f41a059 Backuping old confs working
REVERT: 8fcba30ab Upgrade Debian/Ubuntu working
REVERT: 2e9a0c79e fix select hover style
REVERT: 64961e395 Remove unused imports
REVERT: b662d8453 Update python deps and remove oracledb
REVERT: e9d981a56 Fix checkbox being disabled every time
REVERT: 39418790a fix popover content
REVERT: 3d96fdb34 update dashboard
REVERT: 580f33e56 new file el is hidden on nav
REVERT: 4f6244e74 Lint code
REVERT: 1f2076756 Update Python deps
REVERT: dcf9e301e Fix UI not exiting correctly with gunicorn
REVERT: f1a28b01b Merge pull request #408 from syrk4web/dev
REVERT: 5739144e3 Fix bwcli /bans command
REVERT: df7bbb960 Update VERSION to 1.5.0
REVERT: dd0f56bb0 Add password type for settings
REVERT: d83d3aa3d Fedora working Modifying centos systemd Adding %postun to rpm Modifying postun deb Centos working
REVERT: b85e6ee6b Updating to Fedora 37
REVERT: ca0d88fcc Upgrading script: Ubuntu & Debian working
REVERT: 835f85d5d enhance input field style
REVERT: c4b5ddb95 Add setting to intercept specifics error codes
REVERT: 86c81a621 Merge pull request #407 from syrk4web/dev
REVERT: e6cb5b0b0 Made the UI independent + update job download plugins
REVERT: 0ce5f216d handle password inp
REVERT: 44ce5381c Fix CVEs
REVERT: 12b4cfa22 Merge pull request #406 from syrk4web/dev
REVERT: d7ee3ad66 fix file manager dropdown
REVERT: efbcfd0e2 Beginning of automation testing for linux packages
REVERT: 50b83790a Merge pull request #405 from syrk4web/dev
REVERT: bf1d19f33 remove prefix multiple input
REVERT: 4d49f2f4b Improving and correcting problems on packages
REVERT: f5d87849a Fix errors in the UI when a service have multiple domains
REVERT: d6d1dd1ce Merge pull request #403 from syrk4web/dev
REVERT: 0f5a73430 add condition for services
REVERT: a5256dd80 Fix IPv4/Ipv6 CIDR regex
REVERT: 591a20cd8 Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
REVERT: c56fccbf2 Adjustements to upgrade
REVERT: a3a5c1c74 Add ui tests requirements to the updated python deps
REVERT: b1c99e408 Add tests for the UI
REVERT: 65f2bf09b Remove the idea to store logs inside the database
REVERT: 7beb400b4 Fix stop gathering all the logs every time with the auto update
REVERT: ab163ce13 Fix services settings saves and plugins deletion
REVERT: 6932f3ded Add a new script to update python deps and update python deps
REVERT: d14372075 Fix tar error when sending /etc/nginx to BW
REVERT: 9edf789ab Update python deps
REVERT: 4b3b9b326 Merge pull request #397 from syrk4web/dev
REVERT: 557db479c refactorise logs script
REVERT: 13f1dadf5 Merge pull request #396 from syrk4web/dev
REVERT: adf96cadc remove useless files
REVERT: d2a634e7f plugins + global_config fix
REVERT: 1aaac2dcf Add regex for settings.json
REVERT: 871807b80 Add small fixes and tweaks
REVERT: 4c5172eda Correction of problems
REVERT: 331d58324 Fixing details
REVERT: e9c1b0cf8 Adjusting some details
REVERT: c220e5997 Linux UI fix
REVERT: 13fbbfb67 Update job database while locking the threads
REVERT: ea4ceae7b Fix isPage logic in menu (UI)
REVERT: 8ee0ec88f Remove test files in UI
REVERT: d81c52654 Lint ui files and change .prettierignore file
REVERT: 5cc80d2ba Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
REVERT: a6295248c Merge pull request #394 from syrk4web/dev
REVERT: 38b59954a Lint yml files
REVERT: 146338de6 Refactor every .py file
REVERT: fcd8d8746 open another tab for doc
REVERT: 051192791 change style
REVERT: 9c80cdb32 add plugin page logic to menu
REVERT: 7689dac76 Filter CVEs fixes in Dockerfiles
REVERT: 0c8dfaaab Update bw and autoconf Dockerfiles for let's encrypt
REVERT: c5d3e77c1 Fix letsencrypt permission error and optimize the ownership commands in scheduler
REVERT: 8304116fd Send more variables to the home page front
REVERT: 4379e21ea Show dirs of every services even if they don't have a custom config
REVERT: 148d9d2d4 Remove user override in the job scheduler when executing jobs
REVERT: c6498eda7 Add new php-cookie-flags example
REVERT: f97e056ff Update jobs
REVERT: 13fe4b6ee Edit core plugins regex + make COOKIE_FLAGS multiple + edit DB model accordingly
REVERT: 2b2eadf44 Merge pull request #392 from syrk4web/dev
REVERT: 342fe956f change data creating new service
REVERT: bb7ca889c enhance darkmode + fix + factorisation
REVERT: cdc3cfc81 add toggle multiples + style
REVERT: 191c88238 Merge pull request #388 from syrk4web/dev
REVERT: dbe49bb8f Update intro image
REVERT: 7bdc46057 Change how the edit works in the config (UI)
REVERT: 364ef13b5 Fix error by calling a method on the wrong variable
REVERT: 1142ace55 Fix rare error with the jobs return code
REVERT: 477e87a2f news script + multiples groups
REVERT: a04f983a0 Merge pull request #385 from syrk4web/dev
REVERT: e5574fbdc change flash messages style
REVERT: b1ca47253 Small tweaks and handle services variables better
REVERT: 98bda4d1e Remove unused line in Templator
REVERT: 0b1be727f Optimized the storage in the Database
REVERT: 47526dc8a Merge pull request #384 from syrk4web/dev
REVERT: 00d3073b0 get custom method and check disabled state
REVERT: 02d10f619 Fix datepicker.js not being found because of the caps
REVERT: da634af4a Accelerate send_files method
REVERT: be0ee60cd handle stop signals with the web-ui
REVERT: 064f9eef9 Remove lines that will never be use in save_config
REVERT: ec15a4e88 Handle stop signals from Docker in the scheduler
REVERT: c49f50da2 Move BunkerWeb entrypoint to the correct dir
REVERT: 48bbb5e39 Merge pull request #382 from syrk4web/dev
REVERT: b944de9e8 change service multiple script
REVERT: 07ab3deb0 Remove unused lines in selfsigned job
REVERT: a4e863f09 Update authentik and migrate the example to the 1.5
REVERT: eeb810546 Migrate authelia example to the 1.5
REVERT: e2b2505d8 Fix saving config for multiple settings
REVERT: a0c2db7a0 Fix how the config is get from the database
REVERT: 4595295bd fix tab focus style + dark mode style
REVERT: 0bd6d5655 add flash script to login + enhance style
REVERT: 6f5aab11d fix footer padding
REVERT: 37380b977 fix get multiple settings only
REVERT: 3f6432f4b Merge pull request #381 from TheophileDiot/dev
REVERT: ff84656cd Update examples + add static versions
REVERT: 0e29d9f1f enhance and fix
REVERT: c195ffc86 Fix autoconf not working properly with the shared volume
REVERT: 291d64e29 Update community example + linting
REVERT: 4346322f7 fix services settings on modal open
REVERT: f2daf7368 Merge pull request #380 from TheophileDiot/dev
REVERT: ba9c16a5d Merge branch 'dev' into dev
REVERT: 0db1550f2 Changed the way jobs' cache files are downloaded
REVERT: fa54ebd49 Made a few tweaks + change the plugins for the services modals
REVERT: 0290f509e add plugin_name (change values)
REVERT: 77931b623 add plugin_name
REVERT: 6560ca086 test
REVERT: 0d0f1aa95 Merge pull request #378 from TheophileDiot/dev
REVERT: 03e98985e Migrate more examples and lint
REVERT: 016a8cd6d changes
REVERT: 5263be27d Change the way jobs are downloaded + folder created in configs
REVERT: 7813b51db Merge pull request #377 from TheophileDiot/dev
REVERT: c4bd535ac Add autogen back for docker and the autoconf
REVERT: 243c4ca78 Merge pull request #376 from TheophileDiot/dev
REVERT: e9687a5b1 Remove unnecessary comments
REVERT: 8537eea89 Merge pull request #375 from TheophileDiot/dev
REVERT: 3c9574dae Linux: Updating nginx to 1.22
REVERT: 9f84e02d8 refactoring services modal logic
REVERT: b105896b2 add rename form
REVERT: ff83b342d fix issues
REVERT: 8e31672ac Merge pull request #374 from TheophileDiot/dev
REVERT: b3d80d7a6 Generate requirements with python3.9 + use new resolver
REVERT: 6bbbe70ee Merge pull request #373 from TheophileDiot/dev
REVERT: e33bad4b9 Fix comments + updated passbolt to support the 1.5
REVERT: 37f21c5d4 Temporarily comment the post fetching
REVERT: 343d9d09e Show plugin pages even if there are none
REVERT: 0a4f0eb57 Fix error with jobs wrapper
REVERT: 1d4998356 Fix darkmode + Add new variables to pass to the front
REVERT: 547021e7b Fix job fetching for never ran jobs
REVERT: 0954e82f4 Fixes some bugs in the UI related to the plugins
REVERT: 3c5f6002d filter script + manage files + fix css + enhance
REVERT: e988aacf3 Merge pull request #371 from TheophileDiot/dev
REVERT: cce181a29 Update customcert job
REVERT: 9ba06b64d Update README
REVERT: 7f2eadacc Update python version for the scheduler and requirements
REVERT: 8d6c3d0b8 Fix db get_config
REVERT: cc748a048 enhance responsive + add loader
REVERT: 3bafe137d refactorisation
REVERT: e9dfb59f3 handle settings type multiple (fetch, add, remove) on services
REVERT: 8e5dda520 Changed the way the config is get from db
REVERT: 368122181 start multiple add and delete logic
REVERT: fee59a51e separate multiple from others inputs
REVERT: 50ba22914 upload plugins + jobs template + global enhance
REVERT: 94b0e6a0d Changes on the flashed messages
REVERT: 2e0a733cd Merge pull request #370 from TheophileDiot/dev
REVERT: 103e4a0ae Update modsec CRS to v3.3.4
REVERT: f0f9d7dcf Merge pull request #369 from TheophileDiot/dev
REVERT: 4dabe6dae Advancements in the examples migration to 1.5
REVERT: 115bfbdc1 Merge pull request #368 from TheophileDiot/dev
REVERT: 81ad9e9ac Update examples and add docker-proxy
REVERT: 82ab6c7c4 Revert "Remove unsafe deps in the requirements and install setuptools manually"
REVERT: b578823a1 Remove unsafe deps in the requirements and install setuptools manually
REVERT: 7fb61b5ef No longer dump the jobs to the front
REVERT: 37ece3de1 Merge pull request #367 from TheophileDiot/dev
REVERT: 719d779e0 Start updating the examples to the 1.5
REVERT: 2889b2638 Merge pull request #366 from TheophileDiot/dev
REVERT: 3c3bb7f20 Fix the way we fetch the config from the database (with suffixes)
REVERT: f0d0dac91 Add the variables back instead of the "_" so it doesn't create an error
REVERT: 62ab9944c Fix scheduler errors with sqlite in autoconf
REVERT: 739190051 Make the bunkernet not run in a thread to avoid errors
REVERT: 840ef8cf8 Fix typo in selfsigned job
REVERT: 5a95e6703 Edit the way the UI updates the config
REVERT: 34b5aba1c Merge pull request #364 from TheophileDiot/dev
REVERT: b7f60dbdc Update deps and requirements
REVERT: a0634b573 Merge pull request #363 from TheophileDiot/dev
REVERT: c0efdf9c0 Replace /usr/sbin/nginx with nginx
REVERT: db35e575e Rename variables so they make more sens
REVERT: b22cc44d8 Change the way jobs are sent from the database
REVERT: 4e96e57e0 Make certbot compatible with 1.5
REVERT: aaeda5300 Change the jobs logic + add support for arm
REVERT: 657722922 enhance templates
REVERT: 844b06e28 Fix how the jobs are sent to the front
REVERT: 3a0727b5c login template done
REVERT: 0f5756cfb enhance logs + prepare jinja variables
REVERT: 08e7c2104 plugins done + add name to settings
REVERT: 6b5d6e07e Revert changes on the check_settings function
REVERT: 3ccc12d78 add dropdown + responsive
REVERT: 3ed3fbe99 Autotonf now update the instances too
REVERT: e56f96d04 Update database model + Save instances to database + add the option to add logs into the database
REVERT: c87c3637d start plugins template
REVERT: 3a5d14952 Made few tweaks with the home page + remove useless functions
REVERT: 55e76b280 Fix path for dropzone's scripts
REVERT: 64d261acc Change the way logs are parsed
REVERT: f13455d11 send timestamp with ms
REVERT: 7aac0c352 fix ms
REVERT: fb2e41c11 logs params
REVERT: 2967ed98c fix fetch
REVERT: 4f9b2120e test
REVERT: f1e614fae change ternary operator for fetch
REVERT: fa5719db7 fetch logs + liveUpdate filter
REVERT: 2a2f2f1e9 Fix scheduler error
REVERT: 208716722 Merge pull request #361 from TheophileDiot/dev
REVERT: fa98003f2 Thread the jobs run_once
REVERT: 89e8839bb Optimize the regex for the core lists
REVERT: 51c5836ae change logs script/template + continue jobs
REVERT: f61b4428b Merge pull request #360 from TheophileDiot/1.5
REVERT: a96771881 Change the logs date format + start editing the logs endpoint
REVERT: d30adf670 Changing rhel
REVERT: bf19cfe3d Migrating Linux to 1.5. Still some details to adjust to be perfect
REVERT: 0cd6ed1af When downloading new plugins, update the database properly + update job every time now
REVERT: 8f75af3d6 edit the .dockerignore
REVERT: 4f4beeef9 Create the database variable even when passing the variables, just in case
REVERT: 7347fe9bc update jobs only once
REVERT: b509ce16e Copy the files after installing the requirements
REVERT: 64601ebf5 Remove useless warnings
REVERT: c9238f993 Merge custom configs generation to avoid repetition
REVERT: 192c6755c Update db for the jobs that are ran only once
REVERT: c14765c6c Change the way jobs are sent and how we update external plugins
REVERT: 888bedd51 Change how jobs are send from the database
REVERT: babb1c72c Revert "indentation"
REVERT: 44c74f9be Revert "indentation"
REVERT: 984b6c5f0 ci/cd - speedup codeql by ignoring some folders not containing python files
REVERT: 355c947a4 start jobs template + enhance menu
REVERT: 272de0b8b ci/cd - fix codeql config path
REVERT: d9fc713c4 ci/cd - move codeql config to file
REVERT: c2503d63d ci/cd - add codeql
REVERT: b098478bd enhance service + darkmode script
REVERT: fa1739439 ci/cd - init work on dependabot
REVERT: 82df3f17f ci/cd - init work
REVERT: f02adf300 indentation
REVERT: c1031cb2c indentation
REVERT: e8581ecb4 enhance news/menu/base + logs scripts
REVERT: eb99d00da Revert "enhance news, menu + end logs scripts"
REVERT: a7d3d0452 enhance news, menu + end logs scripts
REVERT: c7556a39a Merge pull request #358 from TheophileDiot/1.5
REVERT: e02e9c9ec Edit how plugins work with the UI
REVERT: f1d7add73 Merge pull request #357 from TheophileDiot/1.5
REVERT: 1252d1651 Add the jobs feature and add the link when using sqlite
REVERT: 2154c7f54 Update database default DATABASE_URI
REVERT: 7957f63b8 Merge pull request #356 from TheophileDiot/1.5
REVERT: 73668b476 Optimize plugin gathering
REVERT: b3cfc1f01 Remove unnecessary lines and add plugins_errors endpoint
REVERT: b57e50db2 Send needed settings with the services in ui
REVERT: a0e66ab30 Change Database default path for the sqlite file
REVERT: fdd393826 add ui work in progress
REVERT: 6b9a6a7e3 Merge branch '1.5' of https://github.com/TheophileDiot/bunkerweb into 1.5
REVERT: 277e37bce Revert "add ui"
REVERT: 05d4b77bb Merge branch '1.5' of https://github.com/TheophileDiot/bunkerweb into 1.5
REVERT: e7e43e64d Add dark_mode to ui
REVERT: d40a93cb7 Revert "add ui"
REVERT: d102f027f add ui
REVERT: b70d97671 add ui
REVERT: 7db7aee7c Merge pull request #355 from TheophileDiot/1.5
REVERT: 70844ca60 Fix database with autoconf
REVERT: 1a7d8978b Merge pull request #353 from TheophileDiot/1.5
REVERT: 93c74154a fix fedora python deps bug
REVERT: f2eabc0df fix centos python dep bug
REVERT: d199f124b remove exits in ingress controller
REVERT: 3ec15eb4b Update the docs from dev
REVERT: 5a8f81256 Merge branch 'dev' (softly)
REVERT: d214352b7 Merge pull request #352 from TheophileDiot/1.5
REVERT: 891757dab Add support for arm + change scheduler python version
REVERT: 8dd377562 Merge pull request #351 from TheophileDiot/1.5
REVERT: 630cf8b88 Change the way services are sent to the UI
REVERT: b0c09b4de Merge pull request #350 from TheophileDiot/1.5
REVERT: fa655e6f0 Remove no longer used install.sh and uninstall.sh
REVERT: c8fbcbeae Merge pull request #349 from TheophileDiot/1.5
REVERT: 32101c3dc Move UI deps, Make the DB compatible with PostgreSQL, MySQL and Oracle
REVERT: 035eed8f6 ui - add custom PYTHONPATH in Dockerfile
REVERT: 2a3e24bd2 Merge pull request #348 from TheophileDiot/1.5
REVERT: 3984c4b0d Separate deps and change prettierignore file and pyproject
REVERT: 47afdc88e Merge pull request #347 from TheophileDiot/1.5
REVERT: 01bb6f5e6 Stop converting the files content to base64 when sending them to front
REVERT: c35874797 Return dumps of settings instead of the dict
REVERT: a8f27ccb1 Merge pull request #346 from TheophileDiot/1.5
REVERT: edce79936 Update the structure and the paths
REVERT: 04578aab3 Changing path Linux folder
REVERT: 5ae714fc7 Merge pull request #344 from TheophileDiot/1.5
REVERT: f65a4cdd6 SMall tweaks on the UI + edit the ConfigFiles edits
REVERT: 06aa73fcf Merge pull request #343 from TheophileDiot/1.5
REVERT: 0811aad7f Edit scheduler and change DB
REVERT: 858f6e00f Change python version
REVERT: b279d0240 Fix BunkerWeb gen on start
REVERT: ef7fa5b4f Merge pull request #342 from TheophileDiot/1.5
REVERT: 11bcd9824 Merge branch '1.5' into 1.5
REVERT: bacef768c Add integration manually in bunkerweb
REVERT: 5ec179aff The UI get the custom configs from the database
REVERT: 0e6a5f3f9 Merge pull request #341 from TheophileDiot/1.5
REVERT: eec00ba2b Update the Database and make it easier to gen
REVERT: 479b556fb Merge pull request #340 from TheophileDiot/1.5
REVERT: 375776e7d Fix UI path_to_dict with the cache files
REVERT: df62fd410 Merge pull request #339 from TheophileDiot/1.5
REVERT: 1f58d0c51 Edit dockerfiles
REVERT: 6c07f9967 Merge pull request #338 from TheophileDiot/1.5
REVERT: 069b45f37 Add some tweaks
REVERT: 850530cd0 Merge pull request #337 from TheophileDiot/1.5
REVERT: 01b414552 Make the Database support every feature + updates
REVERT: a12d013fc Merge pull request #334 from TheophileDiot/1.5
REVERT: 5f8353c11 Adapt everything so that the UI can work with every integration (some more tests are needed)
REVERT: fe8962592 Merge pull request #333 from TheophileDiot/1.5
REVERT: 66fb266f8 Centralize Database and optimize requests
REVERT: 7a03ed33f Update pip in Dockerfiles every time
REVERT: b09c05d3b Update BunkerWeb deps
REVERT: 9c02d5f9e Merge pull request #330 from TheophileDiot/1.5
REVERT: 7d743e198 Update the database and the core plugins accordingly
REVERT: ce6f01cf0 Merge pull request #329 from TheophileDiot/1.5
REVERT: 9140dc324 Optimize Database connection and ApiCaller
REVERT: 81307c82c Merge pull request #328 from TheophileDiot/1.5
REVERT: 0edef7c52 Use Python 3.11 where we can
REVERT: fe774e000 temp nginx is dead, long live to the IS_LOADING setting
REVERT: 0bf402fd7 Merge pull request #327 from TheophileDiot/1.5
REVERT: 48242b9a3 Get all config with generator
REVERT: 0b73ea856 Merge pull request #326 from TheophileDiot/1.5
REVERT: 09378458d db.get_config() get entire config and doesn't filter anymore
REVERT: 100849023 Merge pull request #325 from TheophileDiot/1.5
REVERT: 8b54762fc Fix db init with autoconf
REVERT: cfaeb1013 Merge pull request #324 from TheophileDiot/1.5
REVERT: 7e53bfe55 Fix gen for Docker integration
REVERT: 54530d535 Merge pull request #323 from TheophileDiot/1.5
REVERT: 79eea0e99 Linting + starting to migrate bunkerweb to the 1.5
REVERT: 316b84ad3 Merge pull request #318 from TheophileDiot/Feature-specific-order-for-plugins
REVERT: ba56c9f55 Merge pull request #317 from TheophileDiot/Fix-scheduler-error-reload-nginx-linux
REVERT: a8f79e58f Merge pull request #303 from TheophileDiot/Fix-custom-conf-disappearing
REVERT: b2a7e053b Merge pull request #314 from TheophileDiot/Feature-blacklist-ignore
REVERT: 96e656273 fix indent
REVERT: 01cecf14e Merge pull request #313 from TheophileDiot/Feature-max-client-size-edit-modsec
REVERT: 873ccad9b Add MODSECURITY_SEC_RULE_ENGINE and MODSECURITY_SEC_AUDIT_LOG_PARTS (#292)
REVERT: 97bf473e1 deps - add update checker for deps (#293)
REVERT: 5af2fb778 Complex example using autoconf (#271)
REVERT: bd4c94e83 Add specific order for core plugins and check them
REVERT: a96a8a8c2 Fix incorrect message while reloading nginx + more details on error
REVERT: 446ff93a4 Add ignore blacklist feature
REVERT: 5fdcc9e58 add g/G to the available file measurement units
REVERT: d207aa4bf Variable MAX_CLIENT_SIZE change the SecRequestBodyLimit value
REVERT: 57ad9d7ee Fix old custom configs where never deleted
REVERT: 7860aeab9 Merge pull request #312 from TheophileDiot/dev
REVERT: cac220023 Fix small typo in autoconf integration
REVERT: 5d9dc88cc Merge pull request #307 from TheophileDiot/Restrict-access-IP-NET
REVERT: 40863f28a Merge branch 'dev' into Restrict-access-IP-NET
REVERT: 67d514b53 Merge branch 'master' into dev
REVERT: 51e96416d Merge pull request #304 from TheophileDiot/Fix-Endless-loading-after-update-service
REVERT: ace1dfca2 Merge pull request #308 from TheophileDiot/Fix-doc
REVERT: b9e5badd9 Fix last typos
REVERT: a9865f850 Fix typo in plugins.md
REVERT: e3d0120a0 Fix minor typos in the doc
REVERT: 9214bb939 Merge pull request #309 from TheophileDiot/Fix-flask-dev
REVERT: 80c1b225b Replace flask development server with gunicorn
REVERT: de0954fac Fix typos in the docs
REVERT: 27b4ff330 Add the greylisting feature
REVERT: 06f65ffe2 Change the exposed port to 7000
REVERT: b0a887a15 Fix errors and warnings when editing a service
REVERT: 803ff8cb5 Fix CUSTOM_CONF_SERVER_HTTP disappearing after 60 minutes (autoconf)
REVERT: 94ce249d7 [#290] Fix typos in docs
REVERT: 478e98018 ci/cd - temp disable k8s test
REVERT: 8f44e108b ci/cd - add docker system prune
REVERT: 72caf907a ci/cd - temp disable swarm tests
REVERT: 01acb1cf3 ci/cd - temp disable nextcloud/swarm
REVERT: fc3c7892d ci/cd - add missing prepare for prod tests
REVERT: 2a04a5642 ci/cd - update ruby version for CentOS builder
REVERT: 6afdb298f lua - fix pcall for asn/country mmdb lookup
REVERT: 04019a617 tests - fix nextcloud/swarm
REVERT: 34649bf33 docs - add Ansible to README
REVERT: 469a5343e ci/cd - remove old linux packages before building
REVERT: 4244399eb road to v1.4.3 🚀
REVERT: 66029a316 tests - edit prod workflow
REVERT: d0c245ba8 tests - fix bug when testing if a swarm stack is healthy
REVERT: 5633d5ff5 tests - remove mongo-express/swarm
REVERT: 61d57b4eb tests - fix mongo-express/swarm
REVERT: 76f035e21 fix wrong DENY_HTTP_STATUS setting in docs, fix autoconf ghost/prestashop tests and some UI warns/errors
REVERT: b35dbdffc tests - fix ghost/docker
REVERT: 7e226301d tests - fix prestashop/docker
REVERT: 8f273a929 ci/cd - fix missing comment chars
REVERT: 45f4e06ac road to v1.4.3
REVERT: 7fe58ddd5 tests - disable systemd start limit
REVERT: 561e64a89 tests - road to debian
REVERT: 29933fdeb tests - add unzip package to linux container
REVERT: 7915da6df docker - fix CVE-2022-3209
REVERT: d8f6c2756 tests - fix configs perms for linux
REVERT: cb56e7d04 tests - add chown for custom linux configs
REVERT: e84734314 tests - fix linux/drupal (again)
REVERT: 4caae414d tests - fix linux/drupal
REVERT: 8a23b96bf tests - disable linux/moodle
REVERT: a4fd701d5 tests - temp disable linux/proxy-protocol
REVERT: 39ed524f0 tests - add missing variables.env for moodle/linux
REVERT: d0e3f3ae2 tests - call cleanup-linux.sh
REVERT: b0fa57b05 tests - replace restart with stop+start for linux tests
REVERT: ec1136085 tests - print logs when setup_test fails
REVERT: 3be348ebe tests - add haproxy cleanup for linux tests
REVERT: 884ca0f6d tests - add missing variables.env files for linux
REVERT: e4321629f tests - road to linux tests 🚀
REVERT: c277a33e9 tests - add missing which command for fedora
REVERT: 512c60c51 tests - add some debug info when linux/setup fail
REVERT: e64cc29a8 tests - create /run/php folder for rpm linux distros
REVERT: 42d29743b linux - fix 755 perm on /opt/bunkerweb
REVERT: 505d5c2ae tests - fix behind-reverse-proxy/linux
REVERT: 70992a0b5 tests - fix haproxy logging again
REVERT: 7e5465c59 tests - fix haproxy logging again
REVERT: f5606b693 tests - fix haproxy directive
REVERT: 265742cd9 tests - haproxy add logs
REVERT: 0580662cc linux - copy current variables.env to make temp one
REVERT: 8e15e2a40 linux - set /opt/bunkerweb permissions to 755
REVERT: 17801caeb temp disable arm
REVERT: 552588adf temp disable arm
REVERT: 5849c66e6 tests - fix www.conf
REVERT: 052dc2346 tests - increase php logs verbosity for linux tests
REVERT: 331c7e954 tests - add debug log file for PHP
REVERT: f71ad0f65 php - fix fastcgi_params path
REVERT: 34c648830 trying to fix PHP bug in Linux
REVERT: 5c99a4b0e refactor linux/start.sh and fix tests/cors www copy
REVERT: eb6f0d673 tests - fix purging wrong folder for linux tests
REVERT: 6ea38b1f7 bunkernet - fix wrong import in register job
REVERT: b5c07dda0 tests - add cleanup for linux tests
REVERT: 17b6b0fdc tests - fix PHP www.conf for Linux
REVERT: 512ed7200 tests - add cors/linux
REVERT: d8071e4c4 tests - install php-fpm
REVERT: 790fa37ae tests - fix behind-reverse-proxy/linux
REVERT: 6005a8f73 tests - fix behind-reverse-proxy/linux again and again
REVERT: 09f56a1c6 tests - fix behind-reverse-proxy/linux again
REVERT: 0c4d2edf1 tests - fix behind-reverse-proxy/linux
REVERT: d53c54d4b tests - add behind-reverse-proxy/linux
REVERT: 093d426bc better management of registration with BunkerNet and fix syntax error in LinuxTest
REVERT: 3762c3874 tests - copy variables.env for Linux tests
REVERT: 55525abf1 tests - fix mattermost/k8s
REVERT: 23f8ec957 UI - fix container CVEs
REVERT: a38ca5138 docker - dont generate config if already present
REVERT: e92938f00 autoconf - fix container CVEs
REVERT: c2ad79a79 Docker - fix CVE-2022-37434
REVERT: 8eefb4bf5 examples - fix mattermost/k8s
REVERT: 6d1ef606f examples - fix nextcloud/k8s
REVERT: 95c4ce723 enable bad behavior on default server and various k8s fixes
REVERT: e295b020e tests - increase redmine timeout and add pvc cleanups
REVERT: 1e499db50 examples - fix gogs/k8s
REVERT: a64276136 disable bad behavior if client is whitelisted and fix redmine/reverse-proxy-multisite examples
REVERT: 115d517c7 tests - add delays
REVERT: 7c1474cd8 examples - fix moodle/k8s port number
REVERT: 305870cc2 examples - edit moodle/k8s port number
REVERT: 3df0f8505 tests - add delay to moodle
REVERT: 897528b73 tests - fix magento/k8s again
REVERT: 4f4c446f7 examples - fix magento/k8s again
REVERT: 69848dccc examples - fix magento/k8s
REVERT: 0516f0a83 tests - assign bunkerweb-controller to srv1
REVERT: 41524a9e3 tests - force pv
REVERT: 0d44b098f tests - fix prestashop URL
REVERT: 0e315dc5f tests - edit prestashopHost value
REVERT: 5741391de tests - change k8s service type of prestashop to clusterip
REVERT: 6adff9ceb tests - increase timeout and remove pvc for prestashop/k8s
REVERT: 97a2caf06 tests - fix Kubernetes missing variable assign
REVERT: 865f4f1b5 tests - fix prestashop/kubernetes
REVERT: e8305b0b6 tests - fix missing prestashop/kubernetes.yml
REVERT: 840b875f7 docs - edit plugins page
REVERT: 978bbe9ca examples - fix missing configs subfolder in nextcloud/bw-data
REVERT: 502c9f2fe examples - fix radarr/swarm
REVERT: 1c4f8bf55 tests - automatic volumes prune for swarm tests
REVERT: b6e2ad22a tests - fix joomla/swarm
REVERT: 216686fc8 tests - add delay parameter
REVERT: d648b1fbe tests - increase magento timeout
REVERT: d3b725294 tests - wait until swarm services are running
REVERT: a48200bc0 examples - fix reverse-proxy-singlesite/swarm
REVERT: b429dd804 tests - increase timeout for swarm healthy check
REVERT: 0440c61d0 examples - fix gogs/swarm
REVERT: ae36b9899 docs - quick edit on PHP
REVERT: 9a83fadd8 examples - fix gogs/setup.swarm.sh permissions
REVERT: 09141f204 examples - fix magento/swarm
REVERT: edf5421bf examples - fix permissions for magento/setup-swarm.sh
REVERT: c67564c7c tests - increase timeout when doing requests
REVERT: b07637009 examples - fix mongo-express/swarm
REVERT: ec35b0a54 examples - fix mattermost/autoconf
REVERT: 95e3022eb examples - fix autoconf/reverse-proxy-singlesite
REVERT: d63538fd5 examples - fix wordpress custom conf variable name for docker/autoconf
REVERT: e01b24072 tests - ignore error when replacing patterns in files (binary files)
REVERT: 217924fe4 examples - fix reverse-proxy-singlesite regex
REVERT: bb6d02e0f examples - escape dollars in reverse-proxy-singlesite compose files
REVERT: 5c42fb58d tests - fix reverse-proxy-singlesite
REVERT: 2f8c5a1e9 examples - fix host for reverse-proxy-multisite
REVERT: af866e825 edit docs/integrations for ansible and fix examples/mongo-express compose file
REVERT: e90d4cc7e tests - fix json for reverse-proxy-multisite
REVERT: 70ac3c01b tests - fix missing arg no_copy_container
REVERT: 07a962466 tests - inline configs for docker/autoconf
REVERT: 87c57c67c tests - refactoring on the road, still needs some work
REVERT: 8fb03a317 tests - on the road of refactoring
REVERT: dc8570ca8 tests - add status type
REVERT: 151378570 tests - refactor mattermost example
REVERT: 4e7d795ea tests - support custom cleanup-kubernetes.sh script and refactor some k8s tests with helm charts
REVERT: cc9d228ab update compose version to 3.3 for swarm examples so config directive is supported
REVERT: 181957147 remove trailing space in DockerController and add missing bunkerweb prefix for autoconf-configs example
REVERT: 324feb593 autoconf - fix missing configs update for DockerController
REVERT: 22398d567 cors - fix typos in autoconf.yml
REVERT: 5119c8da7 gogs - missing setting for autoconf
REVERT: 0fca93e3e tests - sleep 30s between autoconf tests
REVERT: 17e14f4d5 tests - fix wildcard with sudo
REVERT: 3a46d318e tests - remove only content of subfolders
REVERT: 4eff0c3f9 tests - fix behind reverse proxy url
REVERT: bf58a17b8 gogs - add setup-docker
REVERT: 08d8bc880 tests - remove whole subfolders in bw-data
REVERT: b38f7c54e tests - add kubernetes-configs and fix missing s in urls
REVERT: 06f7fb096 tests - fix docker-configs (again)
REVERT: b7101eb47 tests - fix docker-configs
REVERT: a08b51bd0 tests - fix gogs expected string
REVERT: b2bcfb8c7 tests - fix hardened expected string
REVERT: d3014b42f examples - refactoring in progress
REVERT: 7eae49719 tests - prevent default rate limit
REVERT: be21b3933 tests - fix sudo cp again
REVERT: 7bb881aa3 tests - fix rename
REVERT: a607bd67c tests - replace python cp with sudo cp
REVERT: 6d06a32cc tests - list example_data as root
REVERT: c5526ef2f Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 75b2ae868 tests - fix example_data path for docker
REVERT: 72965e230 Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
REVERT: 201e2cf0f Correction logs Linux
REVERT: 203397444 tests - init cors and fix example_data path for autoconf
REVERT: d8c8ceab3 tests - fix LinuxTest setup and init work on integrating examples with the new test system
REVERT: c02d888b3 examples - rename setup scripts for drupal
REVERT: 9a9f9ebf3 examples - fix linux-setup.sh for drupal
REVERT: 6e381ee02 tests - disable copying bw-data files for k8s and swarm tests
REVERT: 0ee09d47d tests - force removing directories with AutoconfTest
REVERT: da2f6cb4f tests - force removing directories with DockerTest
REVERT: d1d2e51a3 cleanup tests directory and init tests refactoring for drupal
REVERT: c14b08faa examples - edit authelia configuration.yml file for Linux integration
REVERT: 80fee58e4 bunkernet - add default api server in jobs
REVERT: 37690a7a4 configs - enable default server if TEMP_NGINX is set
REVERT: b3fdd109a linux - fix wrong variables.env path when running jobs once
REVERT: 193449512 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: f5ede7897 examples - fix authelia variables.env
REVERT: 767a7ab31 Adjustements doc Ansible/Linux
REVERT: 81b370366 wait until Linux test container is initialized and fix variables.env for authelia
REVERT: 44fbf0315 authelia - extract tarball to tmp
REVERT: 02db54ce0 examples - follow redirect when downloading authelia for linux
REVERT: 14d61854e add sudo to linux dependencies and curl to linux test images
REVERT: 6f35561fa tests - fix cp and end_fun for LinuxTest
REVERT: 2505bc015 tests - add linux to authelia kinds
REVERT: b1df38374 tests - temp enable docker
REVERT: 410212b15 tests - run docker cp in a shell
REVERT: f2ac7bca7 tests - fix typo in LinuxTest
REVERT: a0948923e tests - copy local files for Linux tests
REVERT: 458ebe07f tests - dynamically find deb/rpm name
REVERT: 2205043e7 tests - fix LinuxTest.docker_exec()
REVERT: d370f1b05 tests - add missing chmod import to LinuxTest
REVERT: bf6dd93aa tests - replace rmdir with rmtree for LinuxTest
REVERT: 773517311 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 850a8057c ignore CVE-2022-30065 until we have a fix
REVERT: e6271ccd6 Final proofreading FPM
REVERT: f0ddb8328 docker - fix CVE-2022-30065 for autoconf
REVERT: f260bcf23 Small adjustements
REVERT: fa319ec10 tests - fix argv len check
REVERT: 029406453 tests - fix typo in LinuxTest
REVERT: f47ab0adc tests - integrated LinuxTest
REVERT: eca010231 FPM Linux/Ansible Doc
REVERT: 4d61e96e4 tests - LinuxTest on the road
REVERT: c9c730346 tests - fix linux.sh
REVERT: 58a82ddcd tests - copy Linux packages to local directory
REVERT: 8062d043c tests - fix Linux dockerfile path
REVERT: 0a09f8a75 fix CVE-2022-29458
REVERT: bb425bc36 tests - init work on Linux tests
REVERT: aa729daeb examples - remove double $ from kubernetes authelia
REVERT: 7edd55544 fix k8s example for authelia and ignore error code when doing debug_fail for k8s tests
REVERT: 0fd77a809 examples - fix typo in kubernetes authelia
REVERT: 720f36f47 tests - init kubernetes refactoring
REVERT: ea98b453d tests - use unique domains for swarm tests
REVERT: 4bd0129e4 tests - also edit root domain
REVERT: 6e47b2991 tests - add sleep in the end of SwarmTest.init()
REVERT: abc500a4d tests - fix domains for SwarmTest
REVERT: 378047794 examples - fix authelia swarm compose version
REVERT: 4a5e50005 fix typo in SwarmTest and fix authelia swarm example
REVERT: 3b73c50c3 tests - ignore docker stack ps return code
REVERT: ba6fddb56 tests - init swarm refactoring
REVERT: 9ecd2bd98 examples - add missing network aliases to authelia autoconf
REVERT: 7bbf77b7a fix authelia autoconf example and debug fail before cleaning tests
REVERT: f02fe1ed9 tests - remove only subdirectory on new tests and add cleanup when test failed
REVERT: 0383cadd6 tests - fix compose filename for autoconf tests
REVERT: aeba0ba72 tests - add missing AutoconfTest object
REVERT: 67608a463 tests - add missing decode
REVERT: 8b3b1291c tests - from replace/rename functions to class method
REVERT: 1c5c81d2c tests - add missing import
REVERT: fa2d52d80 tests - remove useless log and return boolean from Test.end
REVERT: 68bf5ef85 tests - remove wrong cleanup call
REVERT: 424b37bec tests - change permissions as root
REVERT: 2780ee190 tests - add debug_fail function
REVERT: 07b0bb38d docker - fix CVE-2022-29187 for ui and autoconf
REVERT: b47c2696e docker - fix CVE-2022-29187
REVERT: fdb8ca3ca tests - replace internal _log with logger.log
REVERT: eb59a9377 tests - init refactoring for autoconf
REVERT: 2e0542dbb tests - ignore case when performing test
REVERT: 0a996bf12 tests - replace match with search
REVERT: 48a6ba632 tests - fix rm command
REVERT: 991ddb9eb tests - remove file as root
REVERT: 1e1d7d7f1 tests - replace variable typo in get request
REVERT: ebc94f515 tests - add missing char when replacing Docker volumes
REVERT: e4f6017d6 tests - replace example domains with test domains
REVERT: dfc5f2e79 tests - export runner env
REVERT: c07f85a42 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: ab57be657 tests - fix missing copytree import and self parameter
REVERT: 5f79aea4b fpm single/multiple docker&autoconf
REVERT: cc760a646 tests - fix datetime import again
REVERT: db2c35cb3 tests - fix datetime import
REVERT: 28f1b4f73 tests - rename variable
REVERT: e1183a0d4 fix tests.json for authelia and exit when test exception occurs
REVERT: 16573a397 tests - do not run as root
REVERT: de8cee491 tests - add missing imports
REVERT: 56afbd457 tests - run as root
REVERT: 590ad46cd tests - fix missing chmod import and Test.init log call
REVERT: 8d580bc16 tests - fix missing Test import
REVERT: a91fc7307 tests - fix indent and isfile import
REVERT: 773a37d45 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: b64af8526 tests - DockerTest on the road
REVERT: 0d3e1e2a1 Update the plugins docs
REVERT: 85217b57c Fix a typo in the plugin page in the docs
REVERT: ba75154d0 Add url_for function to custom plugins templates
REVERT: c055ec7ec Fix duplication in plugins
REVERT: 2c4efe9d0 Add Plugin Pages feature
REVERT: 795dfc077 Add static map files
REVERT: 8b4b3f3b0 ansible docs
REVERT: 2e4758e94 tests - DockerTest improvement
REVERT: c155227ec tests - init work on refactoring
REVERT: dde185141 tests - increase timeout for magento
REVERT: e62523d1d lua - use pcall with mmdb functions
REVERT: 658ab7504 docs - add ansible diagram
REVERT: 8d6397a6b Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: f5c86cc4e examples - add cors example
REVERT: 8760110fb Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
REVERT: cc4f0b26a Quickstart Ansible and integration
REVERT: 7b769361a cors - init work on core plugin for CORS
REVERT: 97e607110 linux - rename bunkerweb-ui.env to ui.env
REVERT: c3ee7929b docs - change target of the web UI demo link to blank
REVERT: 969a1e5d7 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
REVERT: 5bf59c85d docs - replace web UI gif with YT video
REVERT: 430f665cd Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
REVERT: 5be21f9bf Adding www folder
REVERT: afdd4de5a fix regex checks with *_CUSTOM_CONF_* setting, add doc about DENY_STATUS_CODE
REVERT: 5586b3733 misc - add DENY_HTTP_STATUS setting (403 or 444)
REVERT: 90e58f261 fix ui.env path for Linux integration and add docs for autoconf with rootless docker
REVERT: a00607af2 docs - add instructions for podman
REVERT: e880b7d59 docs - add infos about Docker in rootless mode
REVERT: fc925ccb1 edit docs typo for UI and variable typo in autoconf
REVERT: 571422131 ui - fix CVE-2022-2097
REVERT: 287e763e0 autoconf - fix CVE-2022-2097
REVERT: 89f81140a container - fix CVE-2022-2097 (again)
REVERT: a5c98f709 container - fix CVE-2022-2097
REVERT: 429214727 tests - fix data folder permissions (again)
REVERT: 6b1c5a93e tests - fix data folder permissions
REVERT: fb85d1d2d autoconf - fix typo in variable
REVERT: fdcbc8d36 custom conf - fix wrong path with multisite configs
REVERT: b2bb93bcf examples - fix docker-configs again
REVERT: 2b59086f6 examples - fix docker-configs
REVERT: e09d4901e containers - fix regex for *^CUSTOM_CONF_*
REVERT: 3594618e4 examples - fix typo in docker-configs (again)
REVERT: e44311281 examples - fix typo in docker-configs
REVERT: 738e3b6e1 containers - use python hack to get env var values from string
REVERT: 5ac80a135 containers - replace compgen command with a python hack because compgen -e do not display var with dots
REVERT: 8f258486e fix multiple CVE with curl/libcurl and add autoconf/docker CUSTOM_CONF configs examples
REVERT: 2dc18a794 autoconf - support both configs from files and autoconf
REVERT: e0a700506 autoconf - init support of custom variables using labels
REVERT: 385b7c413 docs - add docs for custom config using labels
REVERT: e25babe3d custom conf - docker
REVERT: a5457a164 custom conf - init setting support
REVERT: 0a1e8be71 examples - add missing setup.sh for mattermost
REVERT: 70c60f2a9 tests - add mattermost and radarr
REVERT: f2dfb0172 examples - edit mattermost and add radarr
REVERT: 1a8eef2c8 fix autoconf import for IngressController and init work on mattermost example
REVERT: cb106a112 autoconf - fix indent in IngressController
REVERT: 492648eeb autoconf - fix 410 exceptions (k8s)
REVERT: 1425ad0b4 docs - update settings list
REVERT: f7290b2c7 v1.4.2 release
REVERT: c0a8a356c linux - include bwcli in /usr/local/bin
REVERT: 40007b086 add slack to official plugins and init work on EXTERNAL_PLUGIN_URLS setting
REVERT: 6478512e4 scheduler - only send /data folder if apis are present
REVERT: 7aa6852d3 autoconf - fix missing scheduler in autoconf mode and missing apis list
REVERT: 7bba81b16 autoconf - fix wrong variable name for environment
REVERT: 5cb61380d autoconf - add missing call to ConfigCaller constructor
REVERT: b2758cea7 autoconf - init work on _get_static_services method
REVERT: a18d77aee autoconf - init work on static server configs as env var
REVERT: 4a699ef6c fix missing local Linux images import in ci/cd, and fix bug related to jobs in Linux integration
REVERT: 5690a58ab fix IFS checking permissions
REVERT: e55928a37 fix bwcli commands when using Linux integration
REVERT: 0f2388b1f fix permissions check when file has space in the name
REVERT: 2b43a9cbf Merge branch 'dev' of https://github.com/bunkerity/bunkerized-nginx into dev
REVERT: 5ecf39ee0 Fix web-ui example with X-Script-Name
REVERT: ad091493c examples - add various certbot-dns examples
REVERT: a65606c36 examples - add certbot-dns-ovh
REVERT: cd0d70b8f cache dev Linux images in ci/cd and disable site config generation for autoconf/swarm/k8s
REVERT: e21a35017 plugins - support log_default() hook, same as log() but for default server
REVERT: c563731e8 autoconf - fix overwrite configs file when using Docker autoconf
REVERT: 3c417d2ff linux - fix fedora NGINX version in Dockerfile, fix missing arg when building DEB/RPM and force NGINX version DEB deps
REVERT: 970082f92 linux - force NGINX version in RPM deps
REVERT: 4a2504c3b reflect ci/cd changes to dev
REVERT: fd0c7b1e5 ci/cd - add automatic build for Linux images
REVERT: 1e6d62ce7 fix packagecloud yank name
REVERT: 1a4e21481 docs - edit supported architectures for prebuilt Docker images
REVERT: bcaca6f03 v1.4.1 release
REVERT: 424214fd5 add changelog and add missing s in authentik url
REVERT: 82b42d5b9 Merge pull request #259 from Brawdunoir/master
REVERT: db4e2cf26 update linux docs, minor fix in ingress example and update default value for bunkernet job
REVERT: 0ef82619b temp disable automatic tests for authentik and test automatic arm build on dedicated hardware
REVERT: f2655e331 remove arm build again, fix proxy_*_timeout directives and add authelia example
REVERT: d51ae1c1b Remove USE_ before authbasic plugin settings
REVERT: cd0438b8c support REVERSE_PROXY_*_TIMEOUT settings, remove useless push in CI/CD and try to build arm on GH runners
REVERT: f9a042526 add docs about compiling BW from source on Linux, add docs about packages pinning on Linux and fix regex for REVERSE_PROXY_AUTH_REQUEST and REVERSE_PROXY_AUTH_REQUEST_SIGNIN_URL
REVERT: 15ac64b05 let's encrypt - fix bug when AUTOCONF_MODE=yes
REVERT: e0f8895e9 init support for auth_request and add authentik example
REVERT: e85229835 don't send local IP to BunkerNet on default server, fix certbot new when MULTISITE=no and fix unknown reason in get_reason
REVERT: 972a284ef docker - drop support for prebuilt arm images
REVERT: 5258d8e58 docs - edit linux install procedure
REVERT: acb4bea97 reflect CI/CD changes for master pushes
REVERT: 42067e864 GHA - temp disable armv7 build until we have a fix for cryptography dependency
REVERT: 217bddabf GHA - different caches for armv7 and armv8 images
REVERT: c5fba1367 fix GHA typos
REVERT: 1b21f9eac fix UI tag in GHA jobs
REVERT: 389e05094 fix links in docs and change cache location for GHA jobs
REVERT: 05a89c303 fix registry URL in GHA jobs
REVERT: a0ed8a27e add debug flag to GHA buildx steps
REVERT: d0ac5e305 update GHA actions version
REVERT: b16f8f11a update GHA actions version
REVERT: a23ed06e6 fix typo in GHA jobs
REVERT: 6b9be078b refactoring of GHA jobs
REVERT: 8e198ed82 linux - fix documentation link in systemd unit files
REVERT: c3b527afe actions - fix RPMs path
REVERT: 972e5471d actions - fix linux deb/rpm generation
REVERT: b246c6d7e fix wrong branch name in actions and image name for linux tests
REVERT: b78fd5542 fix freetype CVE
REVERT: 945241339 actions - rename main branch to master
REVERT: 1af2264fa temp stop push to private repo
REVERT: 6f28708c1 docs - add missing setting
REVERT: a9f886804 bunkerweb 1.4.0
REVERT: 3a078326c Merge pull request #199 from Myzel394/patch-1
REVERT: d43b82b75 remote API - only do action if 403
REVERT: 3850cacb9 prepare for v1.3.2
REVERT: c00c7f46a lua - verify certs when doing HTTPS requests
REVERT: 163af4a49 prepare for v1.3.2
REVERT: 98e85eb99 docs - update security tuning sections : distributed blacklist and request limit
REVERT: 2e63bb025 docs - reflect kubernetes/swarm changes into the doc
REVERT: 6546a0edb disable country ban if IP is local, update default values of PERMISSIONS_POLICY and FEATURE_POLICY, upgrade archlinux packages before testing
REVERT: ab0038174 ui - fix ROOT_FOLDER bug in serve-files.conf
REVERT: 9f7097de0 request limit - fix some LUA code
REVERT: 24d6337a5 limit req - multiple url support
REVERT: bfb5319c1 limit req - add burst and delay parameters
REVERT: 4c77a1482 use annotations as env var in Ingress definition, fix cidr parsing for reserved ips, fix missing empty when job is external, fix ping check for remote api and init work hour/day support for request limit
REVERT: 4e45fa387 integrations - acme without shared folder when using k8s/swarm
REVERT: a9a26b82d fixed typo
REVERT: 00d91dcaa jobs - move certbot hooks to python
REVERT: 650ad7ea4 integrations - fix missing acme folder when using Swarm or Kubernetes
REVERT: 7045c0c2b jobs - fix encoding error on CentOS
REVERT: f0f432487 remote API - ban IP from distributed DB
REVERT: fdc02be05 remote API - basic send of bad IPs
REVERT: fb799765a jobs - fix str/bytes hell
REVERT: d53f02b5b api - client side (untested)
REVERT: 7b9722fac jobs - add remote API
REVERT: 31ed4ff83 centos - update ca-certificates in install script
REVERT: bc5f3ee88 fix CVEs and add init to Debian test image
REVERT: a6b21aae8 fix typo in settings.json, bump Debian to bullseyes, init support of Arch Linux
REVERT: 64aa9c253 init work remote API
REVERT: 5d94cc8f4 docs - init changes about storageless
REVERT: e7ee21cbb antibot - fix path for templates and data
REVERT: a0f8cbdac antibot - fix LUA typo in recaptcha mode
REVERT: 178d7a684 Merge pull request #182 from Nakinox/patch-2
REVERT: ca81535bb swarm/k8s - less storage, more API
REVERT: 062fa3e78 integration - continue work on storageless config for k8s and swarm
REVERT: 95f2d2af9 Update docker-compose.yml
REVERT: e55dff812 api - init work on storageless configuration
REVERT: f0f1c79d4 v1.3.1 release
REVERT: 3d2f5e238 conf - add REVERSE_PROXY_KEEPALIVE
REVERT: b079c99fb Merge branch 'patch-15' of github.com:thelittlefireman/bunkerized-nginx into keepalive
REVERT: 2e403c6eb config - add CUSTOM_HEADER
REVERT: f75a05584 config - add REVERSE_PROXY_BUFFERING
REVERT: 148edf681 tests - add github token to trivy scanner
REVERT: a19d8aa04 Merge pull request #180 from vepito/vepito-patch-1
REVERT: 480cff86b Merge pull request #179 from thelittlefireman/patch-16
REVERT: 35df3423d missing blank line
REVERT: 29f4069de switch the use cases
REVERT: 72e438459 Fix typo related to non-HTTP configuration
REVERT: a4a264773 jobs - fix docker reload and only do cron jobs when necessary
REVERT: 892e53369 Missmatch in docs with modsec folder
REVERT: a05614160 deps - use ModSecurity v3.0.4 instead of v3.0.5 to avoid memory leak
REVERT: 0772a9ba8 docs - edit badge version
REVERT: 33e0ffd5b Merge branch 'master' into dev
REVERT: 4cb3e089e linux - git SHA1 commit in install.sh
REVERT: 8808f161c docs - dev to master links and VERSION upgrade
REVERT: 1c60ec980 tests - fix volume wait with linux tests
REVERT: b13ff3456 add REDIRECT_TO_REQUEST_URI variable and edit environment variables docs
REVERT: 58f2926e9 docs - various examples fixes
REVERT: 9de628f3e Missing proxy_set_header for keep alive
REVERT: 6cc1abc89 Allow keep alive connection when ws is off
REVERT: a824e1568 linux - rename cron
REVERT: fd52bb7c8 linux - fix cron jobs
REVERT: 0938b20eb UI - use sudo for Linux integration
REVERT: b948e08bd UI - use systemctl on Linux
REVERT: fde14d162 linux - fix unknown scheme error and do nginx reload as root in UI
REVERT: 8a4eb3f2a remove .site files (gen), uninstall remove folder at the end (linux) and run jobs when reloading local instances (UI)
REVERT: 2a0b84074 ui - fix bug when Docker is used but Swarm is disabled, add jobs from API /reload and fix docker-compose doc
REVERT: aec22d1a8 ui - edit docs and fix CSRF
REVERT: 028fc61b4 docs - add dns_resolvers and permissions to Linux
REVERT: a903960b4 docs - fix missing subfolder in Linux quickstart guide
REVERT: a28f06f08 linux - run temp nginx to solve let's encrypt challenges
REVERT: 6c8bc6b34 tests - fix Linux systemd bug when writing to /tmp folder
REVERT: 2b3b4a5c3 linux - systemd support
REVERT: 57e4247ea linux - systemd unit file
REVERT: f9d4e9089 docs - edit k8s php service port and append suffix to hosts
REVERT: 4f024ec56 docs - add DNS_RESOLVERS for k8s integration
REVERT: bc46fc3d4 append suffix to ingress hosts
REVERT: 0be1da18a remove old conf before generation, dynamic DNS for PHP and reverse proxy and swarm fixes in quickstart guide
REVERT: 3cedc0ae1 quickstart guide fixes
REVERT: f1d5c07cc autoconf - various kubernetes fixes
REVERT: c9a6b6c27 autoconf - fixed infinite lock
REVERT: b199464a7 various bug fixes related to Swarm integration
REVERT: 4a9d64d9d add favicon to web UI and fix some tech docs
REVERT: 31536a3fe linux - reload as root
REVERT: 7b47c7304 examples - minor fixes in architecture images
REVERT: 83e7ce9cd examples - polishing before next release
REVERT: 0ad5159a3 docs - add changelog for next version
REVERT: 6240d8e28 ui - read variables.env when Linux is used
REVERT: 2f80f64dd docs - last polish
REVERT: e98da9b63 docs polishing and fix install.sh gpg --verify
REVERT: d9f770696 docs - web UI
REVERT: 75f299978 docs - special folders
REVERT: ef34b2cec docs quickstart / multisite
REVERT: 9b9110214 docs - quickstart guide / php
REVERT: 9e2a8070e docs - quickstart guide / reverse proxy
REVERT: 733136ac1 docs - init quickstart
REVERT: fa172ce5a docs - linux integration
REVERT: f6a9184ae docs - k8s integration
REVERT: d37dc2b62 docs - swarm integration
REVERT: f7c115edf docs - add autoconf doc to Docker section
REVERT: dfbb09136 docs - init integrations/Docker
REVERT: 8e4a65fec fix global.env generation and add web UI gif to README
REVERT: 0573ba7b5 ui - centering things without breaking sticky navbar and menu
REVERT: bcd421de0 ui - various bug fixes more or less related to UI
REVERT: 2ec28c79c docs - fix README toc
REVERT: fec60a4b1 ui - minor styling fixes
REVERT: dd7d1a2c7 ui - fix example, subpath behind reverse proxy and add socket proxy rights for swarm
REVERT: 0c1883472 docs - edit kubernetes overview image and add configuration section on the readme
REVERT: 4e6eab794 docs - fix wrong swarm image
REVERT: b23135b66 docs - add docker and kubernetes images
REVERT: ace9be397 docs - add autoconf and swarm images
REVERT: 8958e5107 docs - add overview image
REVERT: b2cfc15c2 security - add security policy
REVERT: 94bef079a examples - add architecture images
REVERT: 50266c228 examples - add the last missing README.md stubs
REVERT: 22e2fe869 examples improvement - added some README.md stubs
REVERT: 55186bbef examples improvement - hardened, joomla, kubernetes, load-balancer and moodle
REVERT: d8286ced7 examples improvement - certbot cloudflare and wildcard, clamav, crowdsec, ghost and gogs
REVERT: 44de2253d examples improvement - traefik alternative, autoconf reverse proxy and basic website
REVERT: 6d73fbded examples - update authelia and autoconf-php
REVERT: b6809266a autoconf - let's encrypt support for ingress controller
REVERT: 4e178b474 autoconf - basic ingress controller support for kubernetes
REVERT: 021147f9d autoconf - fix wait and redis
REVERT: 5a26d06c8 autoconf - fix infinite lock and honor DOCKER_HOST env var
REVERT: bc01427de ignore CVE-2021-36159 and redirect job logs as root when using autoconf
REVERT: 652614f41 autoconf - use DNS for Swarm instances discovery
REVERT: 24d9cce82 autoconf - various bug fixes in Swarm mode
REVERT: f866ef632 autoconf - minor fixes, prepare Swarm testing
REVERT: 1a32e7c02 autoconf - various bug fixes with DockerController
REVERT: 7180378d0 autoconf - init Config refactoring
REVERT: 6e66571fb various cleaning
REVERT: f44e41ced jobs - lock and reload management
REVERT: 26db144df autoconf refactoring and fix CVE-2021-36159
REVERT: a68ad53c3 autoconf - controller classes
REVERT: 01bba1d3f autoconf - init refactoring before k8s integration
REVERT: 059707443 k8s - init work on parsing ingress rules, helpers to setup on k8s, basic examples
REVERT: bc3c17a2f examples - init k8s example
REVERT: 556836b49 autoconf - init annotations parser for k8s
REVERT: 22612f175 minor edit on Linux tests and init work on k8s API
REVERT: 50c279617 jobs - improved log and reload management
REVERT: ef8969e2c certbot - add USE_LETS_ENCRYPT_STAGING=yes/no env var for using staging or production servers of let's encrypt
REVERT: 0dc2a5ec2 edit visibility of Job members and integration of a generic checker for nginx
REVERT: 9a207dfdc fix missing import in generator, expand networks to ips in jobs and init work on a generic checker with shared dict and redis support
REVERT: a60fbbb5b hotfix - fix CVE-2021-33560
REVERT: a1b9010d9 pull v1.2.8 fixes when applicable
REVERT: 3178545c2 v1.2.8 release
REVERT: 36b8760d4 resolve bugs on the stable version
REVERT: 8bb6676f5 settings - fix PHP_* again
REVERT: 4234f82c0 settings - edit EMAIL_LETS_ENCRYPT regex
REVERT: b99fb27df fix missing parameter when calling reload in autoconf and edit REMOTE_PHP_PATH regex
REVERT: 876fcd181 conf - add WORKER_PROCESSES
REVERT: 26dc79615 jobs - fix line edit
REVERT: 280d18986 jobs - avoid reload when not necessary
REVERT: 5f845680f jobs - edit referrers and user-agents data and init work on autoconf integration
REVERT: d12369c90 jobs - various bugs fixed and old files removed
REVERT: 366e39f59 jobs - SelfSignedCert, runner and reloader
REVERT: 71741b2d3 jobs - cache management
REVERT: 2fca4cd01 jobs - logging and error management
REVERT: fccf14627 jobs - python stubs
REVERT: b3684efaf jobs - init work on refactoring
REVERT: 82548378a crowdsec - move as external plugin
REVERT: b926b0db6 examples - use example.com instead of website.com
REVERT: 6713f56ec linux - fix centos install
REVERT: 2b923c05c compile and install LUA 5.1.5 to /opt/bunkerized-nginx/deps and introduced REDIRECT_TO feature
REVERT: 71cf3cf5c use local sources when building Docker image, add LOCAL_PHP and LOCAL_PHP_REMOTE to settings.json and fix pip bug related to removed working directory
REVERT: 8e3dbf1c7 fixed some fedora bugs, support LOCAL_PHP and LOCAL_PHP_PATH and sample variables.env
REVERT: 49ada6a8c linux - init work on fedora support
REVERT: 947e86f7c linux - uninstall script
REVERT: a12561a85 remove useless nginx-keys folder and add lua_package_cpath to http conf
REVERT: 6b19bd026 deps - add cjson LUA files to deps folder
REVERT: 6738b28b9 deps - move dependencies to dedicated /opt/bunkerized-nginx/deps folder to avoid messing with the system
REVERT: 010c0fd6d rename gen/requirements.py to requirements.txt, add git/bash to Docker deps and fix typos in README
REVERT: ecf30a71f deps - init work on single install script
REVERT: ffc4fc950 deps - manual compile/install of libmaxmind and upgrade lua-resty-core
REVERT: b9955699b Merge pull request #152 from thelittlefireman/patch-11
REVERT: 860fd1ace Upgrade desps
REVERT: eb5d13fb8 Upgrade lua-nginx module to 0.10.20
REVERT: ca41987cd Upgrade corerules to 3.3.0 & modsecurity to 3.0.5
REVERT: 3af1b397f UI - digging bugs from services, still some work to do
REVERT: 72a09eac6 UI - add CSRF protection
REVERT: 0d3f7d392 UI - admin authentication and bootstrap update
REVERT: 6be082e0a UI - init work on admin account
REVERT: 4947796c9 UI - fix instances bugs
REVERT: ba197dfa4 UI - bind gunicorn to 127.0.0.1/0.0.0.0:5000
REVERT: 4dd1ff847 UI - copy from helpers, systemd service and instances page update
REVERT: f771ec43f ui - init Instances class to support Linux and API for Docker/Swarm
REVERT: e241b0c93 logs - move everything from /var/log to /var/log/nginx
REVERT: d03a1a6e3 linux - add jobs.log
REVERT: 2c9c9fb62 linux - run master process as root
REVERT: deb28c599 autoconf - fix folders
REVERT: 2ea7331da jobs - disable post-jobs when SWARM_MODE=yes on SIGHUP
REVERT: 92ee40819 whitelist - fix /.well-known/acme-challenge whitelist for let's encrypt
REVERT: 2ccfb26e8 docker - fix CVE-2021-33560
REVERT: 70f9f8417 templates - add missing new line when necessary
REVERT: c4aef1d60 authelia - choose portal or auth basic mode
REVERT: a385183d8 authelia - various fixes
REVERT: cec47f3a7 body injection feature and add authelia to documentation
REVERT: c894c8370 authelia - add variables to settings.json
REVERT: f73b088f7 authelia - initial work
REVERT: 130c6752d Merge pull request #148 from aFresquetIntech/dev
REVERT: f97ea6785 Create .env
REVERT: 850429986 Correction
REVERT: 4a8da40cf reverse-proxy-zammad
REVERT: 0114c7b09 examples - edit basic PHP
REVERT: bebe89afb linux - edit path for default errors, ignore comments in variables.env, install/prepare certbot
REVERT: b2cceb608 linux - fix centos
REVERT: 37f5e4ed7 linux - fixed debian/ubuntu but still some work needed on centos
REVERT: 98568a57c linux - fix /var/log and typo in daemon directive
REVERT: 499192287 linux - fix daemon directive and rights on /etc/nginx
REVERT: bcb8acc36 linux - add RX permissions to /opt
REVERT: a9279053a linux - add executable right to gen/main.py
REVERT: 60057a17e linux - fix tests docker cp and pass single -c argument to su
REVERT: d0366fcc0 linux - started work on bunkerized-nginx command
REVERT: b448d91ca actions - fix centos test and docker image name when pushing
REVERT: e309ce6fd docker - fix permissions on /opt
REVERT: 37090dc66 actions - fix manifest error with buildx and load
REVERT: 6bb6facd8 add load: true when autobuilding images and move from /bin/sh to /bin/bash
REVERT: a1fcbd4b8 fix actions and configure
REVERT: 09a2a4f9e github actions refactoring
REVERT: 1e02368e8 linux/docker - common /opt/bunkerized-nginx folder
REVERT: bbb5134a3 fix configure arguments and CRS include
REVERT: b0f93fb84 fix Dockerfile again
REVERT: c892f037d fix Dockerfile
REVERT: 731c0f61d linux - init work on installer
REVERT: 93543d396 Linux - use the same dependencies script for Docker
REVERT: 5ec9e6ab4 linux - CentOS 7 install
REVERT: cc0d0af8d linux - ubuntu installer
REVERT: 43d2097d1 linux - nginx install on Debian
REVERT: f880e5e2a linux - continued work on install helpers for Debian
REVERT: 9636013f5 linux - started work on installer
REVERT: 15bdb076c hotfix - fix docs get_git_branch
REVERT: d62c4f466 v1.2.7 release
REVERT: ad52ef326 autoconf - prevent race condition by checking health state
REVERT: 3bd3b6fd7 Merge pull request #145 from thelittlefireman/patch-10
REVERT: e41acc20c Upgrade ModSecurity-nginx to v1.0.2
REVERT: 3c721dc2a add HEALTHCHECK to Dockerfile and append 10.0.0.0/8 to DNSBL whitelist
REVERT: 491d879fe jobs - cleaning the mess when using autoconf without swarm mode
REVERT: 52534510e fix bug when AUTO_LETS_ENCRYPT=yes and certbot can't resolve challenges
REVERT: 2c7337576 jobs - fix syntax error
REVERT: 9e4961ccb docs - rename sitemap to bypass rtd rewrite
REVERT: 01857d8ac gen - display the reason when ignoring a variable
REVERT: ab9f9e0a4 jobs - fix jobs when MULTISITE=yes
REVERT: 29dc64ca3 actions - add Docker cache to speedup auto build on the dev branch
REVERT: b5cd4e037 docker - build and push images from GitHub actions because of future DockerHub restrictions on autobuild
REVERT: 16101144c self-signed cert - fix bugs
REVERT: 95510e6e1 settings - add underscore to CUSTOM_HTTPS_CERT/KEY regex
REVERT: dd5890e76 geoip - fix bug when using GeoIP
REVERT: c3a437fa8 docs - rename the sitemap to avoid conflicts ?
REVERT: 518ddd323 docs - custom robots.txt
REVERT: 177a82ee6 docs - automated sitemap.yml
REVERT: 39db7b368 v1.2.6 release
REVERT: 9442e5914 jobs - fix jobs in Swarm mode
REVERT: fcc6b3b5e various bug fixes related to Swarm
REVERT: 678ad70b0 docs, various fixes and certbot-cloudflare example
REVERT: e8f5db0b2 docs - add plugins system
REVERT: 8295f6aeb plugins - clamav example
REVERT: 388fc1a0e plugins - started basic plugin system
REVERT: 62217a321 add contributing guidelines and license
REVERT: 53e433b1a readme - replace some badges
REVERT: f640157b1 Merge pull request #138 from bunkerity/feature-request-template
REVERT: d646f3e5b Update issue templates
REVERT: 4b31d005e crowdsec and generator fixes
REVERT: d2135c19c docs - road to v1.2.6
REVERT: 8cda1baf7 fix web ui multiple variables and add default error pages
REVERT: 445032406 dnsbl - disable checks when IP is local
REVERT: 74fb01536 web UI - init work on using docker-socket-proxy
REVERT: ee178de6a web ui - mostly finished templating integration (needs some testing)
REVERT: 7323525b6 ui - show only multisite vars for settings
REVERT: 82e47f147 ui - Dockerfile fixes and missing get_config function
REVERT: 2db967ad1 templating - road to web ui
REVERT: 1d96620ae templating - init integration into web ui
REVERT: 99c259bf1 templating - prepare integration into ui
REVERT: c7b81cfc1 various bug fixes related to HTTPS
REVERT: dfce0c06d autoconf - fixing various bug when SWARM_MODE=yes
REVERT: 0f8e56a66 templating - fixing bugs with autoconf
REVERT: f950abdc2 templating - started integration into autoconf
REVERT: 4a73ae819 various bug fixes on templates and nginx update to 1.20.1
REVERT: e2f02ee91 templating - prepare integration for autoconf
REVERT: a991b262e remove ClamAV because of GPL and started work on read-only filesystem
REVERT: a8bc17e83 templating - started integration into docker image
REVERT: ec19f9308 templating - added missing features in site templates
REVERT: 23aa05300 templating - auth basic support
REVERT: 289ad106c templating - multisite support
REVERT: bbc5bbc9e templating - fix some site templates
REVERT: 633a07686 templating - init work on site templates
REVERT: 996c45df4 templating - init work on global templates
REVERT: 801530baf templating - road to full jinja2 templates
REVERT: c65dda391 templating - init work on templating with jinja2
REVERT: ea891969c templating - updated settings.json with global settings
REVERT: 698ae17c4 templating - init work on generic settings management
REVERT: 664563284 antibot - basic pow with javascript
REVERT: 16e5ede13 antibot - custom templates
REVERT: 8260746fe logs/lua - add logger tool
REVERT: de560490d fix LUA array variables and add LOG_LEVEL to the troubleshooting section
REVERT: 96db3a450 log - add LOG_LEVEL variable
REVERT: 73543f4b0 hardening - add no-new-privileges
REVERT: d9bb97be5 lua - move global vars from lua to site config (untested)
REVERT: 863283d09 started work on moving variables from .lua to nginx
REVERT: 600484b16 crowdsec - fix bugs and update example
REVERT: 7c6a13c54 examples - improve nextcloud example so it works with webdav clients
REVERT: b3bb4ec40 remove unnecessary dependencies and update doc about certificate bundle
REVERT: 69f465720 examples - fix typo BAD_BEHAVIOR_STATUS_CODES
REVERT: d02985d21 check permissions for missing volumes and add comment about permissions on examples
REVERT: b0ca85ff7 v1.2.5 - performance improvement
REVERT: 2f115c444 Merge pull request #131 from bunkerity/issue-templates
REVERT: 7f15741ea Update issue templates
REVERT: 288b8eb85 docs improvement + road to v1.2.5
REVERT: 61c08fb97 docs - troubleshooting
REVERT: 01ef47a66 docs - security tuning improvement
REVERT: 71515a910 doc - volumes list
REVERT: a33d0658c docs - road to a beautiful documentation
REVERT: 0b3ff6a9f bad behavior - move from fail2ban to pure lua
REVERT: eb2d0d330 performance - rsyslog and fail2ban removing
REVERT: 5bcbb3863 doc - official document started
REVERT: ca660b250 init work on official doc
REVERT: 3a34436cd add AquaeAtrae example for ROOT_SITE_SUBFOLDER
REVERT: b1d03cd11 performance - move bad user-agents and referrers checks from nginx to LUA with caching
REVERT: 42c3fb874 add sandbox allow-downloads to the default value of CONTENT_SECURITY_POLICY
REVERT: f1c043604 add missing backslash in the quickstart guide and update autoconf examples with the depends_on directive
REVERT: fd61df205 performance - move external blacklists checks from nginx to LUA
REVERT: 009d6fb5a choose connection and nofile numbers, increase error_log level to get modsecurity rules, add MODSECURITY_SEC_AUDIT_ENGINE var
REVERT: ba4185a42 jobs - fix automatic reload
REVERT: 70976d0fb fix user-agent not blocking and add documentation on bundle when USE_CUSTOM_HTTPS=yes
REVERT: 062a39c63 integrate AquaeAtrae work - add ROOT_SITE_SUBFOLDER
REVERT: 83841b290 jobs - edit adren work on external blacklists
REVERT: 10dc58cb6 Merge pull request #126 from adren/patch-6
REVERT: 668754686 Merge pull request #125 from adren/patch-5
REVERT: 84b1933f6 Merge pull request #124 from adren/patch-4
REVERT: 15f6d0a32 Merge pull request #123 from adren/patch-3
REVERT: e628361a8 Merge pull request #122 from adren/patch-1
REVERT: f8d71e067 improved way to generate user-agent file
REVERT: 02ae3b6bd change IFS before subshell
REVERT: 2fb0e7c47 deduplicate list of user-agents
REVERT: 9adcc2f1a more optimized way to generate map referrer file
REVERT: 7b98db4d1 improve the generation of blocking file (abusers)
REVERT: ddb2b8591 improve generation of block file (Tor exit nodes)
REVERT: da1a460a6 huge improvement to generate blocking file
REVERT: 07be62684 hotfix - fix API in autoconf swarm mode
REVERT: 3bb164395 hotfix - move API_WHITELIST_IP edit to lua.sh
REVERT: bc2568a17 v1.2.4 - nginx 1.20.0 support
REVERT: 5ec74880d update README for v1.2.4
REVERT: f84fd7c9a fix permissions issues for autoconf and fix volume for ghost example
REVERT: 6521d7a27 fix client cache so it works in combination with reverse proxy and examples update
REVERT: 813607fbc improve crowdsec example and disable modsec logging when not necessary
REVERT: 843644f80 log - replace some WARN tags from LUA logs with NOTICE to avoid confusion
REVERT: 19fa0eb25 log - print modsec_audit.log to make debugging easier
REVERT: b4df28722 log - send logs to remote syslog server
REVERT: 5ce41edc0 api - whitelist IP/network for API
REVERT: a3cfb50b4 example - fix certbot wildcard
REVERT: 25494acac example - wildcard certificate with certbot
REVERT: a98dae1fb fix CVE-2021-20205 and examples update
REVERT: 1a7abab57 nginx 1.20.0 support
REVERT: 42b7a57f0 fix autoconf bug when removing config with multiple server name and increase default LIMIT_CONN_MAX for average website with HTTP2
REVERT: 02f9fbe5f autoconf - fix certbot bug when multiple server_name for one service
REVERT: 69fe06677 autoconf - fix bug when multiple server_name for one service
REVERT: 74417abc9 fixing bugs - run as GID 101 instead of 0, different permissions checks in swarm mode and disable including server confs in swarm mode
REVERT: ba7524a41 fixed LUA bug
REVERT: b55aafb99 finding the LUA bug
REVERT: deeb7a76a Merge pull request #117 from thelittlefireman/patch-9
REVERT: ee8aaa4e7 fix lua crash 2
REVERT: 605d59a45 Fix lua mistake
REVERT: b85c991b6 bug fixes - /usr/local/lib/lua rights and syntax error in site-config
REVERT: 0d3658adf REVERSE_PROXY_HEADERS - use proxy_set_header instead of more_set_headers
REVERT: 0b22209c9 documentation - userns remap feature
REVERT: e44a1f3e1 added the uri to limit_req_zone key to limit bruteforce attack on a specific resource instead of the whole service
REVERT: aa614f82f print error when permissions are wrong on common volumes
REVERT: c03d410b0 refactored whitelisting of user-agents
REVERT: e190167bf CIDR support with whitelist/blacklist IP
REVERT: 31e72dce1 fix /usr/local/lib/lua rights and multiple server_name support with autoconf
REVERT: b8105fc55 feature - whitelist URI
REVERT: e73c10fd8 crowdsec - fix permissions on /usr/local/lib/lua and on /var/log files
REVERT: a122a259c minor fix on AutoConf logs and auto disable etag with reverse proxy
REVERT: 7c4894d3b autoconf - fix remove event, generate config from nginx vars, more logs
REVERT: 533c2a103 fix sed script when writing site env
REVERT: 5611d544d remove reference to USE_PHP
REVERT: 397182f18 add link to twitter account
REVERT: c5c5fb17b v1.2.3 - swarm support
REVERT: 017a7780f README update, default cron update and new parameters to ui
REVERT: 34d9db7a8 web ui - bug fixes
REVERT: 361c66ca6 fixed bugs with MULTISITE variables and swarm example
REVERT: afc667885 road to v1.2.3 - fixing bugs
REVERT: c40fb3317 road to swarm - automatic reload after jobs
REVERT: 93ad3c0b5 road to swarm - let's encrypt fix
REVERT: ceed90488 road to swarm - still some mess to fix
REVERT: b8027d2ba Merge pull request #102 from thelittlefireman/proxy_custom_headers
REVERT: 8d03a14a6 Merge pull request #103 from thelittlefireman/fix_truncated_3
REVERT: d16f4517a Enhancement add custom proxy headers #97
REVERT: 89ca91b3f Fix truncated variables (last commit)
REVERT: 6a714e2ec road to swarm - fix race condition on initial configuration
REVERT: 0d3da0353 prepare /www directory, fix log socket path and whitelist acme challenges path
REVERT: 33163f65b init work on disabling root processes
REVERT: a2543384c road to swarm - add openssl to autoconf, fix api_uri in LUA, fix file rights
REVERT: 3591715f2 road to swarm - fixing things
REVERT: 95f7ca5b2 road to swarm support - needs a lot of testing
REVERT: 816fa47cb introducing SWARM_MODE env var
REVERT: 7756c2df3 Merge pull request #98 from mromanelli9/fix/readme
REVERT: 7509ec2f2 basic API to be used in swarm mode
REVERT: 6e93575e1 remove ALLOWALL from X_FRAME_OPTIONS options
REVERT: ba4c97755 remove old anchor
REVERT: 781e4c8cb autoconf little work on swarm support
REVERT: e04c783d1 autoconf - init work on swarm mode
REVERT: e12b656bd Merge branch 'patch-7' of https://github.com/thelittlefireman/bunkerized-nginx into dev
REVERT: cae05447d custom crontab values
REVERT: 4b58e2265 Merge branch 'patch-5' of https://github.com/thelittlefireman/bunkerized-nginx into dev
REVERT: 6b56e21a0 Merge branch 'whitelist_ua' of https://github.com/thelittlefireman/bunkerized-nginx into dev
REVERT: 544a09e8d Update lua-cs-bouncer
REVERT: 8386dd4a2 custom config outside server block
REVERT: f052a2516 Merge branch 'pre_server_confs' of https://github.com/thelittlefireman/bunkerized-nginx into dev
REVERT: 43750f553 Merge pull request #73 from thelittlefireman/patch-4
REVERT: 9142afdb5 Merge pull request #72 from thelittlefireman/patch-3
REVERT: 66c4fed79 Fix env variable with space are truncated 2
REVERT: f41846e9d Fix env variable with space are truncated
REVERT: 92cc705b9 Reduce memory usage : set cron tasks at different hours.
REVERT: 47fb3a05b Upgrade crowdsecurity/lua-cs-bouncer
REVERT: 5940f402c improve default tls security
REVERT: d9ca275d5 Add before `server {}` config.
REVERT: 8353bd9c8 Allow to add a whitelist by site on user-agent
REVERT: d902e2f29 Add last missing reverse proxy header
REVERT: 1a8b8043c Add LIMIT_CONN var to server.conf
REVERT: 65120a7e9 Add USE_CONN_LIMIT info to Readme.md
REVERT: b093a4755 Add default values for LIMIT_CONN
REVERT: 73dbf03c9 add USE_LIMIT_CONN zone to global config
REVERT: 6ee746236 Add USE_LIMIT_CONN to site-config
REVERT: fa935eb6e edit nginx.conf to add limit_conn
REVERT: cf231e13c Add limit-conn.conf
REVERT: d5d699252 v1.2.2 - web UI (beta)
REVERT: 50f95420b README update - road to v1.2.2
REVERT: dc382c3e0 various fixes - autoconf process order, multisite config and examples
REVERT: 0026328f2 edit default FAIL2BAN_IGNOREIP subnets
REVERT: 9023ab5ae Merge pull request #67 from thelittlefireman/patch-2
REVERT: 124474ad6 Edit README.md to add FAIL2BAN_IGNOREIP
REVERT: eac9c8f51 Prepare FAIL2BAN_IGNOREIP to avoid self blocking
REVERT: 1ee490de6 Prepare FAIL2BAN_IGNOREIP to avoid self blocking
REVERT: 825e6a747 crowdsec v1 integrated
REVERT: 09a984c86 started crowdsec v1 integration
REVERT: fd7afa17b fix missing ';' in include
REVERT: b9b7fdfcc Merge pull request #63 from thelittlefireman/patch-1
REVERT: 58e1d66bc UI - minor alert css fix
REVERT: 7026643f8 UI - fix missing MULTISITE env var when managing services
REVERT: 06f688fe9 fixed stop and reload operations
REVERT: c65b78b1c UI - instances/services backend update (needs testing)
REVERT: f9b9b9546 UI - introduced multiple config parameters (like reverse proxy) in frontend
REVERT: b5fe6335c UI - instances backend started
REVERT: 951f3957f UI - default service values
REVERT: 0f520b891 UI - services backend started
REVERT: 569ad75c4 UI - config.json refactoring
REVERT: bd7b6af66 UI - load config template from json
REVERT: 459bb8ea1 UI services modals and default CSP update (fix new tab links)
REVERT: 208b5acb3 UI - minor services list improvement
REVERT: 59b2fed41 UI - basic services list
REVERT: a4871a915 Add missing proxy headers
REVERT: 026783f01 Fix missing reverse proxy headers
REVERT: 811585345 Fix missing proxy headers on site-config.sh
REVERT: c5f283b00 UI - minor front update
REVERT: 03ce7a648 fix modsec double inclusion when MULTISITE=yes
REVERT: 3f7e2c54b JOBS - fixed some job script and right temp nginx reload
REVERT: bb0f46d8a JOBS - fix job_log
REVERT: c5b32dfc4 fix CVE-2020-1971 again
REVERT: 9a4f96ad1 fix CVE-2020-1971
REVERT: f258426f5 JOBS - fallback to old conf in case reload failed
REVERT: 119e96361 JOBS - be more verbose about jobs failure/success
REVERT: 373988670 Merge pull request #54 from thelittlefireman/patch-4
REVERT: 2a956f2cdFix#52
REVERT: 15a37a868 UI - minor UI improvement
REVERT: 3a3d52790 UI - basic read fixes
REVERT: e6b5f460c UI - basic read from docker API
REVERT: 002e3ed2b security tests for autoconf and ui
REVERT: 7b55acbe8 web UI example and CVE-2020-8231 fix again
REVERT: 559b7835d ui - automated build
REVERT: 4ea01bd93 print some logs when blocking bots
REVERT: a73891a3b fix CVE-2020-8231
REVERT: 26199f52c remove additional / in modsecurity include
REVERT: 5c3f94a84 edit reverse proxy var name in README
REVERT: 043fcdc13 autoconf - automated build
REVERT: b86ded3d1 autoconf - multi arch Dockerfile
REVERT: 92569679b dynamic reload of nginx by sending SIGHUP
REVERT: 15e74e486 more work on standalone autoconf
REVERT: fd0a6412d init work on standalone autoconf
REVERT: 419fdfc86 fix auth basic when MULTISITE=yes
REVERT: 0bc1f652b v1.2.1 - autoconf feature (beta)
REVERT: 6c7461e29 integrate thelittlefireman work
REVERT: d01bc5e01 Merge branch 'patch-1' of https://github.com/thelittlefireman/bunkerized-nginx into dev
REVERT: 75c69c810 last fixes before next release ?
REVERT: e26b8482a Add missing EMAIL_LETS_ENCRYPT parameter
REVERT: f618c73e6 road to v1.2.1
REVERT: 78c1e5c67 examples - same domains for internal tests
REVERT: 481e10d3e reverse proxy - websocket example
REVERT: aae2a7198 autoconf - php example
REVERT: f3bf04e39 dirty fix to disable default server when MULTISITE=yes
REVERT: 36cbb927c autoconf - various fixes
REVERT: 95153dbc5 moved UA, referrer and country check after whitelist and blacklist check
REVERT: 26947179a moved UA and referrer check to LUA
REVERT: 88f27bfeb autoconf - reverse proxy example and pass default vars
REVERT: 3cc1615c4 fix user-agent script
REVERT: 8bacf722a Merge branch 'fix/variable-naming' of https://github.com/mromanelli9/bunkerized-nginx into dev
REVERT: 2bfc4b41f first work on automatic configuration
REVERT: 587d4a92e incorrect variable naming
REVERT: c311d0c82 add crawler-detecter bad UA
REVERT: 0d03f49eb websocket support with reverse proxy
REVERT: 2112c306a custom log format
REVERT: 8f9dcc5ab last fix ?
REVERT: 2fe05d3fd fixing scripts again and again
REVERT: db04c0345 fix referrers again
REVERT: ed8bd902b fix referrers script
REVERT: 3a7aa5d9c block bad referrers
REVERT: 9ec9de6ca multiple lets encrypt certificates when MULTISITE=yes
REVERT: 791342cbe fix LUA DNS code when answers is nil
REVERT: 2f23671c3 fail2ban fix when MULTISITE=yes
REVERT: e350a717f fix default DNS_RESOLVERS
REVERT: e818acb0d prestashop example
REVERT: b92f74ed9 dirty fix for CVE-2020-28928
REVERT: 9688e6650 check all vulnerabilities with trivy
REVERT: 700dfc018 v1.2.0 release
REVERT: 42e4298b5 readme update - v1.2.0 changes
REVERT: 813b42cfa php and nextcloud examples fix
REVERT: 58fcf0a72 added Permissions-Policy header
REVERT: 587918380 custom headers to remove
REVERT: 203259688 automatic trivy scan
REVERT: eaf817d57 php config and examples fixes
REVERT: dd7768c85 whitelist/blacklist country at LUA level to avoid SEO issues
REVERT: fe1d724c9 country whitelist/blacklist
REVERT: 0635eb368 various bug fixes
REVERT: fbf81c94b cached blacklists data
REVERT: ed451877a examples update and multiple REVERSE_PROXY_* on single site
REVERT: 0f18e9c55 reverse proxy support via env vars
REVERT: 8f7cb5318 proxy caching support
REVERT: 60fbbc101 move some http directives to server
REVERT: 0f0593456 various fixes
REVERT: 8cdc155ac multisite examples and certbot renew fix
REVERT: 1abe1da89 brotli support
REVERT: f18c054b4 gzip support
REVERT: 4dea1975e client caching
REVERT: c2b05c463 fix BLOCK_COUNTRY bug and add support for ModSecurity custom confs when multisite=yes
REVERT: 2da51d92a multisite - bug fixes
REVERT: bd7997497 autotest through github actions
REVERT: e89e34a84 auto test fix
REVERT: ff02878dd auto test setup
REVERT: 44b016be9 road to multi server block support
REVERT: 36c4f3e06 v1.1.2 - CrowdSec integration and custom ports
REVERT: 798f6c726 examples - nextcloud fix and tomcat
REVERT: 761c14a0b custom HTTP and HTTPS ports
REVERT: 4a07eca69 crowdsec integration
REVERT: e1274a608 passbolt example
REVERT: 3ec81cd84 Fix broken line in README
REVERT: 95752ff0c v1.1.1 - TLS 1.2 support
REVERT: 8623510f8 https fix
REVERT: 95a76b11f peterkimzz integration and dhparam
REVERT: b0e4740a7 [New Features] - Added "HTTPS_PROTOCOLS" environment value to enable to customize TLS version. default value is "TLSv1.3". (because TLSv1.2 sometimes needed) - READMD.md
REVERT: e84360857 README update - v1.1.0
REVERT: 2f6866789 logrotate copytruncate
REVERT: 1d63838ee examples - fix port number
REVERT: e4bdd4af5 examples - nextcloud fix and moodle
REVERT: 2c33463af renamed logrotate script
REVERT: 9ff210bed wordpress and nextcloud examples
REVERT: 0b7301886 install CRS by tag in compile.sh
REVERT: e1356e3eb logrotate.conf update and some cleanup
REVERT: 34a0da444 logging fix again
REVERT: 022a653eb display fail2ban.log and logging bug fix
REVERT: 4c11a9125 automatic docker tags with VERSION
REVERT: 88b52478c automatic Secure flag on cookies
REVERT: ce82e22db remove integrated PHP
REVERT: 397415211 antibot - check IP with sessions and recaptcha
REVERT: 68d798855 tor hidden service example
REVERT: 16eab0f63 README update
REVERT: 6a22f7711 load balancer example
REVERT: 222426854 Merge pull request #13 from FacundoAcevedo/patch-1
REVERT: d63c57985 Fix typo in the link in the TOC
REVERT: e19a7c693 run master nginx process as non-root user
REVERT: 7a8795883 dockerfile fix - compile
REVERT: 01095bd72 gpg fix and secure git clone
REVERT: 0e6729c62 check GPG signature of nginx sources
REVERT: 040b6a223 Merge branch 'patch-1' of https://github.com/fabianmoronzirfas/bunkerized-nginx into dev
REVERT: 5f62120e4 fix(typo): add missing »find«
REVERT: e8503b9cc ARM build fix
REVERT: 676571e4a use nginx:stable-alpine as base image
REVERT: 34254a09e examples and DNS_RESOLVERS fix
REVERT: 81cff3648 readme update
REVERT: e166b1fea awesome gif resized
REVERT: f08bba8cc awesome gif
REVERT: ccf439228 session secret fix
REVERT: c1d44387b basic antibot feature through recaptcha v3
REVERT: 135126e3f readme fix
REVERT: ac251b0f6 Merge branch 'master' of https://github.com/ZILosoft/bunkerized-nginx into dev
REVERT: ac242c977 Update README.md
REVERT: 2909b7989 basic antibot feature through captcha
REVERT: 446ee3761 basic antibot using javascript
REVERT: 6e1c43c4c basic antibot feature through cookie
REVERT: 652d8ac97 fixed typo in manifest
REVERT: de1952b5f README - toc update and title fix
REVERT: 16a458db2 README improvement
REVERT: f27d80e0d various fixes and lua logging
REVERT: fc3d911ff improved blacklist/whitelist/dnsbl with lua
REVERT: ef7d842ff arm64v8 auto build and master manifest
REVERT: 0e5704983 manifest for automated builds
REVERT: aaef37007 improved logging with rsyslog
REVERT: 6e3c2ddcc integrated ajarmoszuk work
REVERT: 919b418d5 Added the ability to self generate SSL certificates
REVERT: fb1a0182e Added the ability to see Real IPs if Nginx is running under another proxy (such as Traefik).
REVERT: 2e0a8307d i386 fix again
REVERT: 181003efe i386 fix
REVERT: fca7bb075 automatic builds
REVERT: 764038d40 README update
REVERT: f4c43a214 block proxies and abusers
REVERT: 3a9afa47b Merge pull request #5 from ajarmoszuk/patch-1
REVERT: 2c12df3b9 update default req_limit values
REVERT: 2f967a9f4 Update entrypoint.sh
REVERT: eba5f6280 req limit
REVERT: 44155b5d6 dnsbl ipairs fix
REVERT: 829c1c697 some fixes and README update
REVERT: f3721a50d sitewide auth basic
REVERT: b56e4e765 dnsbl feature
REVERT: 1654e913a lua support
REVERT: 3e5ca583c remote PHP-FPM support
REVERT: bcd17dbea automatic geoip update
REVERT: 14ec9f3e6 logrotate and compile fixes
REVERT: 5b5e6e33a awesome logo
REVERT: 1aa1dcf50 logrotate support
REVERT: f30a06d94 syslog integration and fail2ban improvement
REVERT: cd19841ec readme - details about modsec include order
REVERT: 94b29a6ca fixed some include orders
REVERT: bf605ce59 custom root folder and little fixes
REVERT: b14b09ad5 default CSP update
REVERT: 4f5e5f013 readme improve
REVERT: 76bd069f2 php POST max size and custom HTTPS cert
REVERT: 1d6ab7275 http basic auth fix
REVERT: 472ec31cd readme fix
REVERT: caa415e12 http basic auth
REVERT: 8561d47be create a customized image
REVERT: 4bede275f fix typo
REVERT: efcf93710 inspectFile fix
REVERT: ccaaa8b57 readme fix
REVERT: b83111ad1 realip, minor fixes and README
REVERT: a2be2e8ae improved README : format, modsec, fail2ban and clamav
REVERT: 48a0036d2 updated readme
REVERT: bf0bef289 clamav support
REVERT: 193070b14 fail2ban support
REVERT: 716e54e59 custom http/server confs and better modsec customization
REVERT: 43403f69e disable default server
REVERT: 69ac95b29 block country and various fixes
REVERT: ecf2de8b7 multiple let's encrypt domains
REVERT: 8427564f4 user-agents escape fix
REVERT: c56bde4f0 fix certbot-renew.sh syntax
REVERT: 834afa132 http to https redirect
REVERT: d5f8c7647 custom modules and write access
REVERT: 5bcdb0219 f**k markup ?
REVERT: 3233f3b76 fix readme
REVERT: 62eda8173 improved README
REVERT: 09e6b50e5 custom conf
REVERT: 5d16f6a8f fix README
REVERT: 1b5f6deb2 cookie flags and maxmind update
REVERT: ea1dbc617 updated readme
REVERT: 0b703ea55 content security policy
REVERT: 1e642e2f1 initial readme
REVERT: e90060ce6 initial work
REVERT: 70f849fbb Initial commit
git-subtree-dir: src/deps/src/modsecurity
git-subtree-split: 205dac0e8c675182f96b5c2fb06be7d1cf7af2b2
bbccedbdd Change tags into hashes in deps.json
14d69fa59 Update mmdb files
e0055328a Fix add missing deps for core db tests
c93d5a2fc Fix CVE CVE-2023-3316
5631e2737 Merge pull request #547 from bunkerity/subtrees
3505c0d18 Remove clone.sh file
ffd310031 Merge commit '7b566b885e99301b243c5f61360e65238035e048' as 'src/deps/src/zlib'
7b566b885 Squashed 'src/deps/src/zlib/' content from commit 04f42ceca
45dca7b44 Merge commit '2ab324a69f219b4051b2e77d211ee1a7fb1462b5' as 'src/deps/src/stream-lua-nginx-module'
2ab324a69 Squashed 'src/deps/src/stream-lua-nginx-module/' content from commit 309198abf
f85f86e46 Merge commit 'c1073460677ba8aa2e325a1c57c3db1458f9fde5' as 'src/deps/src/luasocket'
c10734606 Squashed 'src/deps/src/luasocket/' content from commit 95b7efa9d
bd600e0d0 Merge commit 'a7d4cc5bbaabf8683b3b5cc1f42f9bd145cf1aa8' as 'src/deps/src/luasec'
a7d4cc5bb Squashed 'src/deps/src/luasec/' content from commit fddde111f
d15662693 Merge commit '2d86912af87048b94c2921a60b3a8a5a0953e132' as 'src/deps/src/lualogging'
2d86912af Squashed 'src/deps/src/lualogging/' content from commit 465c99478
1fb404757 Merge commit 'f3ceeb73a958e774b1e2fa55d2607cdd3eb419ca' as 'src/deps/src/luajit-geoip'
f3ceeb73a Squashed 'src/deps/src/luajit-geoip/' content from commit fde33e045
f81788c00 Merge commit '2678b91586e9183b47327fbb0f11ad23020f195f' as 'src/deps/src/lua-resty-upload'
2678b9158 Squashed 'src/deps/src/lua-resty-upload/' content from commit 03704aee4
2d06f2d7a Merge commit 'bc06cd71b8896c6e7a1aac4610c9c3f878956238' as 'src/deps/src/lua-resty-template'
bc06cd71b Squashed 'src/deps/src/lua-resty-template/' content from commit c08c6bc9e
a6379356e Merge commit '3038a0b027f09090e1cd8f101d2ee8c52c383070' as 'src/deps/src/lua-resty-string'
3038a0b02 Squashed 'src/deps/src/lua-resty-string/' content from commit b192878f6
fdf0050a9 Merge commit 'ee5198ba2810e33e08ff987ede5abe10fc74f6e3' as 'src/deps/src/lua-resty-signal'
ee5198ba2 Squashed 'src/deps/src/lua-resty-signal/' content from commit d07163e8c
6f8ff3f12 Merge commit 'a3cd342f3e1fffd7b16b83a24e03bb9ed501b319' as 'src/deps/src/lua-resty-session'
a3cd342f3 Squashed 'src/deps/src/lua-resty-session/' content from commit 8b5f8752f
2f1cde097 Merge commit 'eca8662cfe981f66ab92b53bbf83af65da02b2b7' as 'src/deps/src/lua-resty-redis'
eca8662cf Squashed 'src/deps/src/lua-resty-redis/' content from commit d7c25f1b3
0b94df087 Merge commit 'e59161ec204c7a95e4751b1c0e9a6bead7fcab39' as 'src/deps/src/lua-resty-random'
e59161ec2 Squashed 'src/deps/src/lua-resty-random/' content from commit 17b604f7f
38fdd39d0 Merge commit 'a2800598825bb5a03b577cca2874ff1cfae863f4' as 'src/deps/src/lua-resty-openssl'
a28005988 Squashed 'src/deps/src/lua-resty-openssl/' content from commit b23c072a4
c2fa53ca1 Merge commit '31bf774f63b8b46a3c7b53028853036fff6fa0b8' as 'src/deps/src/lua-resty-mlcache'
31bf774f6 Squashed 'src/deps/src/lua-resty-mlcache/' content from commit f140f5666
7b2273aeb Merge commit 'c82b0bdd27762d2d4a9901a187506d2e5abd74f5' as 'src/deps/src/lua-resty-lrucache'
c82b0bdd2 Squashed 'src/deps/src/lua-resty-lrucache/' content from commit a79615ec9
3dc8cc87c Merge commit '746a6e16d027ab3bddfc610c987e5d61ab9b69d0' as 'src/deps/src/lua-resty-lock'
746a6e16d Squashed 'src/deps/src/lua-resty-lock/' content from commit 9dc550e56
62e740a0b Merge commit '19515d9b26f2f4886ca117b91384509087f0ff3a' as 'src/deps/src/lua-resty-ipmatcher'
19515d9b2 Squashed 'src/deps/src/lua-resty-ipmatcher/' content from commit 7fbb618f7
e566b98af Merge commit '7160fd94e3dc22299ee3c9f8b0e71a5e2c1bb501' as 'src/deps/src/lua-resty-http'
7160fd94e Squashed 'src/deps/src/lua-resty-http/' content from commit 4ab4269cf
cdd42bf25 Merge commit '1a7d4e58be28238599df3f5c15c56380c3e99732' as 'src/deps/src/lua-resty-env'
1a7d4e58b Squashed 'src/deps/src/lua-resty-env/' content from commit adb294def
49db9c24d Merge commit '0f4a0cb0ef514bee6b810f6d6cf982c5ef0abfca' as 'src/deps/src/lua-resty-dns'
0f4a0cb0e Squashed 'src/deps/src/lua-resty-dns/' content from commit 869d2fbb0
fe76b6830 Merge commit 'fd02afef8ec1ceb8a816dc202d05c6ece9887d31' as 'src/deps/src/lua-resty-core'
fd02afef8 Squashed 'src/deps/src/lua-resty-core/' content from commit 31fae862a
29d135bdb Merge commit '36023392a6e3c8fb6aebb46140db759e61da220e' as 'src/deps/src/lua-nginx-module'
36023392a Squashed 'src/deps/src/lua-nginx-module/' content from commit c47084b5d
b01aa0b15 Merge commit '32485e2860c2ea31fcef5b575f446c7a3036a550' as 'src/deps/src/lua-gd'
32485e286 Squashed 'src/deps/src/lua-gd/' content from commit 2ce8e478a
909841ea6 Merge commit 'c46cd666ab76bad7bd05c6261d692cda5b380f32' as 'src/deps/src/lua-ffi-zlib'
c46cd666a Squashed 'src/deps/src/lua-ffi-zlib/' content from commit 1fb69ca50
47ee3884f Merge commit '4f9b885a2e8b7a10653653fee3bb91cf5102b0ef' as 'src/deps/src/lua-cjson'
4f9b885a2 Squashed 'src/deps/src/lua-cjson/' content from commit 881accc8f
e13868c63 Merge commit 'bb450ac96595432625ac34de8f7f42b3d06a5b30' as 'src/deps/src/libmaxminddb'
bb450ac96 Squashed 'src/deps/src/libmaxminddb/' content from commit ac4d0d248
772e05d37 Merge commit '4a7228d2dcb7fe62526016b90a7c497fb6531e76' as 'src/deps/src/libinjection'
4a7228d2d Squashed 'src/deps/src/libinjection/' content from commit 49904c42a
209d4a461 Merge commit 'ae8d8b233d52cbfdee68bd3ba21713149f5659c8' as 'src/deps/src/lbase64'
ae8d8b233 Squashed 'src/deps/src/lbase64/' content from commit c261320ed
992710650 Merge commit '1d1739b4eaa274c25c52b8ceb79ebdc717633ec0' as 'src/deps/src/headers-more-nginx-module'
1d1739b4e Squashed 'src/deps/src/headers-more-nginx-module/' content from commit bea1be3bb
a09d5eb2c Merge commit 'e43880b08395df25663560da3d8154226a167a77' as 'src/deps/src/ngx_devel_kit'
e43880b08 Squashed 'src/deps/src/ngx_devel_kit/' content from commit b4642d6ca
8973eb029 Merge commit '26773844e7bd57df1216bd74360a62ec2dc976e3' as 'src/deps/src/nginx_cookie_flag_module'
26773844e Squashed 'src/deps/src/nginx_cookie_flag_module/' content from commit 4e48acf13
79d1b4459 Merge commit '22e69251d9b5cd2611abf77ef7352abfa4d409d7' as 'src/deps/src/ngx_brotli'
22e69251d Squashed 'src/deps/src/ngx_brotli/' content from commit 6e975bcb0
4cd57ab8f Merge commit 'b99663928782619ef854b4bf10a2bf7450d75266' as 'src/deps/src/nginx'
b99663928 Squashed 'src/deps/src/nginx/' content from commit 84cd72177
d7f25398a Merge commit 'a676d333fda890838d8fc4766720cc3f1d4c5389' as 'src/deps/src/modsecurity-nginx'
a676d333f Squashed 'src/deps/src/modsecurity-nginx/' content from commit d59e4ad12
999fb6b8e Merge commit '7e8f4adc3b2b2a655640c73198fb920a5e8441d5' as 'src/deps/src/modsecurity'
7e8f4adc3 Squashed 'src/deps/src/modsecurity/' content from commit 205dac0e8
6d05b14eb Merge commit '6c0468f62b1120497a6fd0d21101dc41f29e7397' as 'src/deps/src/luajit'
6c0468f62 Squashed 'src/deps/src/luajit/' content from commit 04f33ff0
1141afd20 Fix install.sh for nginx dynamic modules
97406bff4 Add libinjection deps back
a58ad9b50 Remove duplicate lua-ffi-zlib in deps
831ae129c Make init_deps.sh executable
451648fa7 Remove old deps temporarily except lua
185d75076 Update how the deps are initialized
6a048e68f Update how the deps are managed
265123835 Update python deps
b0bc9a1bf Update the documentation
2f7ed064f docs - Fix typo in webhook link in plugins.md
deed39a1f Update lua-resty-openssl to version 0.8.23
dd295729b Add deps project submodules
b27f38349 Update lua-resty-session to version 4.0.4 and remove lua-pack deps as it's no longer needed
aeca252d9 Bump lua-resty-core version to 0.1.27 and lua-nginx-module version to 0.10.25
1ec21261c Revert "Init work with submodules"
718a9305d Revert "Fix .gitmodules file"
a253f4a59 Revert "Remove old folders that are now submodules"
2e1e9a08c Revert "Initialize submodules"
e2f1aba3c Revert "Add other projects to submodules"
d9a98c6fa Revert "Update commit SHA for submodule libinjection"
5ed3ba1d5 Revert "Fix path resolution for modules and remove nginx submodule"
b529d8525 Revert "Update checkout part of workflow to include submodules"
43783edb9 Revert "Add nginx as a submodule"
8417ed132 Add nginx as a submodule
6cbbd0d56 Update timeout for wordpress tests to 120 seconds
d687b228e Fix PERMISSIONS_POLICY authorizing self and links to be aside without spaces
bcc9fdef9 [#533] Fix SERVER_NAME regex to limit domains' size individually instead of the whole setting's value
524a140d2 [#534] [#504] Update ALLOWED_METHODS regex to accept more methods
a197e20d2 [#531] Fix typo in documentation about SSL
07ed136af Update setup-kubernetes of wordpress example
30fec8a14 Remove python submodule, will add it back in the next major
4b4e0f8b3 Update checkout part of workflow to include submodules
c2cfd4dd9 Remove checkout from dev.yml
642da402b Fix dev workflow
4bb6d40a5 Update dev workflow to checkout the code and submodules first
3bcdd9ca2 Merge pull request #536 from bunkerity/submodules
28d59221b Fix path resolution for modules and remove nginx submodule
c8e25bcde Update commit SHA for submodule libinjection
e1a5782a3 Update how the dependencies are being cleaned up
68bea47ed Add other projects to submodules
2cd5c7f45 Initialize submodules
d7d3e2429 Remove old folders that are now submodules
a74727891 Fix .gitmodules file
b5fffc1f3 Init work with submodules
ddc337394 Update log location for nginx and letsencrypt
1c362d078 Remove the deletion of let's encrypt lib and log folders after the job is finished
95c9bad8e Remove unused enums in database model
7a972274f Add database schema to concepts.md in the docs
561499536 Revert "Update README.md links to use local branch files"
4536e328e Update README.md links to use local branch files
89070cfb7 Merge pull request #529 from bunkerity/ui
d6942a46e Update where the scheduler copies its config
8a98da898 Merge pull request #528 from bunkerity/ui
26f831cb4 Merge branch 'dev' into ui
162198bb9 Update db core tests to ignore the added value for env custom configs
7a524b43e Revert back to 30 seconds of sleep in tests ui after creating a custom config
b007916d6 Optimize the scheduler and gen even more (we love threads)
0661916ff Update ui tests to wait more after creating a custom config
2105dc0f3 Update core db tests to use the right hash for plugins_page files
823119821 Fix rare error when hashing dictionaries in the scheduler
1e62626ac Fix KeyError in scheduler
4d984f623 Update CHANGELOG
d0fd6884c Fix shinanigans with the custom configs and plugins jobs
8e6de2bdf Augment authelia timeout
3565dd7b3 Update CHANGELOG.md
df1359e87 Add possibility to download lists and plugins from a file path + Update python deps + Plugins now support tar and tar.gz as well
b756b2d7d Lint py files
f57b6dad1 fix cursor gap on ace editor
91c33f1d4 Merge branch 'dev' into ui
3e871efed Update python deps
9982ec36d Remove useless import
80033642c Add reverse proxy headers back
2a2b7b6f5 Merge pull request #521 from bunkerity/staging
78236abe8 Check Aqua Security
c5ff63a40 Fix CVE CVE-2023-3138
78ef5c482 Fix problems when creating custom configs or plugins and removing them completely
2c190ee96 add writeable /var/run/bunkerweb directory to hardened example
94867d0d6 letsencrypt - use same job name when retrieving data from db
9e00b9dd1 letsencrypt - use same job_name for both new and renew jobs
9adb209a8 lua - fix missing multisite variables in LRU
fdd3367a6 Merge branch 'staging' of github.com:bunkerity/bunkerweb into staging
dcf156135 prepare for 1.5.1 🚀4023e6dc6 road to v1.5.1
af9e125c8 linux - merge change for debian packager
ab6025ec9 linux - fix missing zope modules
7e221eb89 debian working
f1435f231 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
b14dba775 bw - fix multiple variables not loaded in LUA
81bb9ede1 Removing python 3.11 from linux
7e66c577f Removing python 3.11 in linux
236572f58 ui - remove python 3.11 import for Linux integrations
73060e42a Fix limit core tests
df0c03cef Fix UI wrong import
5d7ef69c9 Update limit core tests to avoid false negative
855ae8936 Update limit core tests to avoid false positive
16a1916db Remove useless imports in lua code + lint
605e237fd Remove 404 from Bad behavior status codes
fc8d76f33 Rollback on hcaptcha passive feature
c08e8d151 Update settings.md
44097cad0 Move the COEP, COOP and CORP headers to Cors plugin and change default values
3446e5f9b Upgrade antibot to add a custom CSP on each pages + update plugins order
70f227feb Fix error with multisite variables when requesting default server
f81b0bb4d Fix multisite variables not being added in helpers
978697500 Fix has_variable method of utils
5b0b183a4 Remove no longer needed decode for plugin order from datastore
a2759e377 Add small tweaks on the datastore
b6d879257 Fix how we fetch plugins_order in the default server
94964a910 Update how we handle custom configs
6a1ff499c Fix Lets'encrypt plugin api and internal API
179a7aa34 Fix lua sessions with antibot
a1385fe9b fix ctx usage in reverse proxy + remove useless log in limit
23f9f14a4 Remove old CVEs fixes from Dockerfile
f77150bc2 Test Aqua Security CVEs
ec48e6601 Fix return value when no plugins have been found in api.lua
6ab48d9dd Update python image to tag 3.11.4-alpine
ce24a0482 apply changes to current core
02d940393 perf - ctx caching and per worker LRU for readonly variables
a7069bd60 Update UI to stop using env variables but werkzeug middleware + Send X-Forwarded-Prefix headers to UI service
c39dd78ae Update cors plugin tests
3b459b0e2 Fix shinanigans with API (again)
718310312 Fix shinanigans with the API
5deeacc3d Fix letsencrypt jobs
c18f743d4 Fix PosixPath in jobs
85a53278e Add a charset to cors Content-Type header
e01c14f11 Add Cross-Origin-*-Policy headers management and default values
0b3c1a8a0 Update KEEP_UPSTREAM_HEADERS setting's default value
95f673c1d Update doc about headers
cee7672b5 Update settings.md in the doc
d5ea95da9 Increase load-balancer example test timeout
39e6821a4 Lint lua code
64aa12b70 Update python deps
c392a0b5f Update mmdb files
f93dd34f6 Extend KEEP_UPSTREAM_HEADERS setting to clientcache and reverseproxy core plugins
a23d189d3 Merge pull request #516 from bunkerity/dev
df47ba0e9 Merge pull request #515 from bunkerity/dev
0ca7de1de Add CVEs fixes back
84fcfb726 Test Aqua Security 2
c20bd05d3 Test Aqua Security
c85a4183d Fix Strict-Transport-Security not being sent
654172f43 Update headers core plugin lua code
afe6da4cf Automatically add Content-Security-Policy header to response headers in the UI
5c7cd38b5 Edit headers core plugins to use lua Code + Add new setting KEEP_UPSTREAM_HEADERS
299a0b5c2 Remove apk update at beginning of each Dockerfile
6cc20efe7 Update bad behavior test BAD_BEHAVIOR_COUNT_TIME to 30 seconds
e2a3bfb10 Bad behavior core tests change the ban time to 60 seconds
4bbddf797 Merge pull request #509 from bunkerity/dev
1eeefead9 Core tests sleep between each request
9829ef752 Update UI to automatically set SCRIPT_NAME and ABSOLUTE_URI
b27958a19 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
410a64810 core - patch modsec to use access phase instead of preaccess
f7d986d6a Change the way linux starts and the scheduler
95d4f0f87 Small tweaks on core jobs
4f324231d Fix tmp variables path (again)
dc18f9884 Edit start.sh
3b36965f4 Fix tmp_variables_path in scheduler
ccc051e78 Fix /var/run/bunkerweb in fpm args
8b2517cdf Remove ui cache download test - to much unstable
d1138855e Fix gunicorn config for Docker and Linux
0c8bc97fa Fix UI on Linux not using the right user
a68fb0c06 Refactor to make more sens and avoid specific errors
fff21746a Correcting: Dockerfile-ubuntu End of statement block Jinja
3ab4a59b6 Update debian Dockerfiles to avoid updating apt packages only once
760ec3b3b Add /var/run/bunkerweb removal script when uninstalling BunkerWeb
be459d240 Update pid files paths to /var/run/bunkerweb
8b697d87d Fix Scheduler errors with the internal apis
89a3c8b0b Update bunkerweb-ui file according to the new gunicorn usage
5e237d0d0 Update gunicorn to use a config file as well + Fix headers error + Small fixes
a424d59b1 Add apk update at the beginning of each Dockerfile
1d14db7e1 Update custom cert job to not duplicate certs if the cert is global
7efb82a7e Update python deps
e920cba43 Fix CVE CVE-2023-2650
413b75b04 Fix customcert plugin to accept multisite certs as well
87a9545d9 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
c53394845 various fixes
aca0d6da4 Small refactor on the ApiCaller and the Scheduler
1bd40a877 Removing vmware support in doc
612333d2a Merge pull request #508 from bunkerity/dev
474ecbb41 Fix typo in phases list in plugin.lua
5fa21b3c8 Fix CVE CVE-2023-29491
16a459bf7 Lint antibot html files
fd06a1e71 Add Turnstile antibot
d5e64320c Fix small typo in misc.lua
4d6d95037 Merge pull request #507 from bunkerity/dev
b60657e21 Merge pull request #506 from gin-gitaxias/patch-3
1f2c973a3 Fix docker-compose file for custom cert job
b314f4349 Update integrations to add LOG_LEVEL=warning env variable to docker proxy
0edfb2db3 Update example to add a LOG_LEVEL=warning to the docker proxy
83413aef2 Remove open ports from core tests docker compose files
334be4346 Fix custom-cert core plugin
953128be6 Update scheduler changes check to reduce CPU usage
bb7dcda48 Refactor paths resolutions for core plugins
108827952 whitelist - remove unused IPs of duckduckgo crawler
665b110c6 [#504] Fix ALLOWED_METHODS regex
5a2aa20bc Update plugins.md
168dfc439 Refactor paths resolutions for UI + optimizations on the plugin upload
6e80c7b8d Fix variable being ignored instead of saved inside the database when the value is empty
8dad7a0b7 Starting work on paths resolution refactor
b5a78c3aa Test Acqua Security vulns (2)
ed6bee69c Test Acqua Security vulns
3dba058b4 Fix custom configs not being cleared out once created
d9b093dab Fix plugin example in documentation
162f1d978 Merge pull request #502 from bunkerity/ui
1f2fa95e7 Remove useless line in the head.html file + lint HTML files
1cd356781 Add multiple plugin upload in one compressed folder support for the UI
29673f918 fix font
180493616 Fix CVE CVE-2023-1999
7fe7a997f Merge pull request #501 from bunkerity/ui
5b75894d4 Fix UI latest version checking & Fix conditions in quick settings for services
1f6b3d59a Merge pull request #500 from bunkerity/dev
548630e3e Update python deps
aa299f085 Update plugin update and add to get only the necessary keys
f0126b6d6 Fix update-check job
a7535c300 docs - fix yt preview in readme
340b4a492 change arm server flavor
e7ea3952b ui - add missing dep for docker/x86
3b7d8b6c1 Merge branch 'staging' into dev
6666a25fc edit version, update images on docs and fix bug in Linux script
f84af3402 Add error ignoring when using the rmtree function
0b082bdab Add handling of stderr being None in the scheduler
1f2b550f6 ci/cd - fix swarm examples and init work on release workflow
d5fcc6969 Merge branch 'dev' into staging
eda275589 Merge pull request #485 from bunkerity/dev
7506768c4 Merge branch 'ui' into dev
be3d40f18 Fix CLIENT_CACHE_CONTROL setting's regex to also work with JS
41059fb28 Merge pull request #484 from Hado-K3n/patch-16
88f85b282 Merge branch 'dev' into patch-16
e5e031b6b Merge pull request #483 from Hado-K3n/patch-15
2dbadbd29 Merge pull request #482 from Hado-K3n/patch-14
95c7b5410 Merge pull request #481 from Hado-K3n/patch-13
00739a5ab Merge pull request #480 from Hado-K3n/patch-12
a9f4be475 Merge pull request #479 from Hado-K3n/patch-11
f85f73678 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
f1efe06e9 ci/cd - fix /opt/actions-runner perms for self-hosted runners
ad71be460 login now use local font
dcb800d2b Update k8s.postgres.ui.yml
5a7f7f3c6 Update k8s.postgres.yml
e1f60127e Update k8s.postgres.ui.yml
7553ffb63 fix client_cache_control regex
9324648f2 Update k8s.mysql.yml
eafe006a6 Update k8s.mysql.ui.yml
62a8ec975 Update k8s.mysql.ui.yml
dfcaba9ad Merge pull request #478 from bunkerity/dev
737b999cd Set CLIENT_CACHE_CONTROL setting's regex
9339af44c Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
78f7570e1 core - Fix bwcli condition when checking bans
40e30ed44 use shared redis connection pool in cachestore when we can
d6ca98ed1 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
10a4cefd0 update lua-resty-openssl deps and replace nginx -s calls with signals
97723185b core - Add bwcli tests
ab3b3ea8f ui-tests - update waiting time after creating a custom conf
5adec84d5 fix redis not contacted in subsequent phases and reflect changes on stream configs
1624c4e76 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
eea6d32cd share common objects during the phase and add threading to DNSBL and reverse scan
99f8f69fa Merge pull request #477 from bunkerity/ui
9b58b397c Fix ui tests (again)
ace88d865 Fix plugins fetching for the UI
69b35636e Fix UI tests (once again)
5dfe35b7b Update how the plugins are being fetched by the UI
b75690fdf Change the way python deps are installed
b19ebbe6a Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
c0c646aae Merge pull request #476 from bunkerity/dev
edd6e2ded improved session management and add IP/UA checks
c7ca5a822 Fix Database overriding services_settings if a global_value is set
e1883a04b Merge pull request #475 from bunkerity/dev
af19cc226 core - Add redis tests
0087ae583 Update python deps
8133c134e core - Fix db tests by removing "order" key check
f725d0fe6 Update keys name in datastore
05c478e83 Edit COOKIE_FLAGS regex
b5aaf6266 add forward reverse DNS to whitelist, disable redis in cachestore when sockets are not enabled, fix typo in cachestore and improve dns/rdns caching
8a8dd6fb7 db - remove order from plugin model
93c766e56 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
179beea4d improved core plugin execution order
1d126e1d0 core - fix cors tests with the preflight request
dbb884099 core - Update allowed_methods test method to GET
62cb85453 core - Remove cert verification when testing allowed methods in misc tests
04919e8a0 Fix multiple CVEs
b32f31891 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
4962f786b fix wrong env parsing in init phase, bypass modsec/crs when method is not allowed, refactor ALLOWED_METHODS and improve error page management
10bdf551a core - Add misc tests
7158e7e9a core - Optimize cors tests
3f51f59bc Add check when plugins are configured + Add Semaphore to accelerate jobs execution + Code optimization
4c4fa44fb ci/cd - fix core/cors tests
84d43c84d Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
b58798746 Update mmdb download to check the checksum at start
a9be973d5 use PCRE regex instead of LUA pattern and edit cors doc
4378f18cc fix typo in bunkernet.lua, add missing Origin header in cors tests and fix allow origin expected value
7d84e03a1 fix header plugin phase not called for internal request (fixes CORS), fix bunkernet init_worker bug where ngx.ctx.bw is not available, add CORS_DENY_REQUEST setting and edit values for core/cors tests
838662141 Lint Lua code
36fdec105 core - fix sessions tests
ab54b18e0 core - fix reverse scan cache retrieval
9c6ca6a86 cors - various improvements
991f7ff8d Fix tests core reverse scan wasn't using the image
9c77f77fa Fix test core DB
9ee74aef4 Add up back when retrying to up the stack + remove useless print
7bf4c11bc When docker up fails in core tests retry one time
82aadfa38 Update core db tests to add the settings.json file and optimizations
2a78d2c05 ci/cd - perform all core tests even if one failed
e3fc55be9 deps - add missing hash for python dep async-timeout
5f668aeca ci/cd - fix syntax error in test core wf
e5e336c4f Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
9a2e37984 ci/cd core tests and antibot refactoring
2ac77ee49 Fix deps not being synced
394f5fe4b Move back to images in the whitelist tests
b06210bdf Remove unused files in tests core
e6bb9fb55 Add tests for core plugins
29f020f15 Update python deps
051923b6f fix deprecated external network in compose files, various fixes in the documentation and add ipv6 to doc
2e1296d9a show useful info in BW logs after startup/reload and reduce container images size
a686562f1 performance - cache empty rdns results
e36c743c7 performance - cache dns responses
75f3d6490 init IPv6 support, add missing healthcheck script in UI and purge local cache on init
a258612e4 add global data on settings filter
bc3ea0ed3 change select method check
ab71c484e add global condition for disabled state
5c415afa1 various fixes - ttl on /bans api, dnsbl undercover bug, greylist, whitelist and wrong path in realip job
5c50f57f1 Revert "regular inp and multiple global=true are enabled"
9ceaaa874 regular inp and multiple global=true are enabled
3dde3ac0a Fix no longer save SERVER_NAME when MULTISITE is set to "no"
c01b493c9 Increase compression level of tar files being saved in the database
4f4a8b508 Fix default global values being added to database when MULTISITE is set to "no"
408806718 Add external plugins being updated at the start of the scheduler
402ff16c8 Add "global" key to settings when fetching methods as well
dcdb43cf0 Merge pull request #473 from bunkerity/dev
ca8c56aaa Remove unused function in UI src.Config
905946463 Fix scheduler restarting for no reason when having an external database
8a308b1a8 Fix database not providing the right SERVER_NAME setting value
cf26d7aa2 Fix database saving default values to global_values when multisite was set to "no"
8bb6f63fa Merge pull request #472 from bunkerity/dev
64789276a Update python deps
30194f959 Fix Access-Control-Allow-Credentials not being set to the right value when deactivated
50ee37db0 cors - refactoring
b8d89fe79 Fix customcert plugin
63f4e44c6 Fix CORS when sending an OPTIONS request
ac2e4dd64 Merge branch 'staging' into dev
e14475de4 ci/cd - fix missing version in linux package name
136f68cd3 ci/cd - fix typo in beta wf
d83730cf7 ci/cd - fix linux package name in upload/download steps
ae042854f Fix blacklist download jobs where ignore urls were not being downloaded
86053d3dc Update RDNS regex in jobs files
b2e26fc8f Revert "Revert "Update RDNS regex""
48354fb26 Revert "Update RDNS regex"
a544f18e2 Update update-check job to add stars so that the end of line shows
c6f304b37 Update RDNS regex
14ca85cdb ci/cd - fix package.sh name in linux build wf
dc1cb6a6f ci/cd - fix scp command in linux build wf
73acbe085 ci/cd - fix typo in linux build wf
45c90527c ci/cd - fix linux package generation when arch is ARM
f4590749d linux - fix arch in rhel package image
141f5a1d5 ci/cd - fix typo in beta wf (again)
6e82fde8a ci/cd - fix typo in beta wf
00ba46ebf prepare for 1.5.0-beta update
9a1c09c56 Merge branch 'staging' into beta
df787c75d linux - add pcre dep to fedora package
93e567bb6 linux - fix fedora deps name and add architecture to fpm config
8b6d788c2 ci/cd - fix bitnami chart values
541b64698 increase drupal delay time for tests, fix tmp dir not created for realip-download job and fix has_*_variable check when multisite is yes
59324526c speedup build process for python deps and fix default env value for autoconf/k8s
a58e5c60c deps - upgrade python dependencies
27b1dddb0 linux - pin pip version
fd056102d fix centos repo command in rhel dockerfiles and fix delete infras order for staging wf
fb0373343 ci/cd - use single quote in linux build wf
43cbc79c7 ci/cd - move ARM_* to secrets in linux build wf
7592e5a84 ci/cd - fix typo in staging.yml
39ace8175 fix load-balancer example and add server_name to cache keys when required
48d7e72e5 Merge branch 'dev' into ui
66921b007 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
819ad60a4 fix hcaptcha antibot and refactor ci/cd for staging
20913808c Add .mypy_cache to .gitignore file
a086ff690 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
a286e7bd3 fix wrong container in autoconf/k8s, init work on linux arm and ci/cd refactoring
5a233ff90 Fix Database model types
18b3d7148 Update db model to use SmallIntegers
b36cd924f Add `bw_` prefix to database table names
63ce1afcd Handle errors more gently when API requests fails
d4934cfee Remove test-ui service in the main docker compose file as it's been extracted
500d58e50 Separate the compose file back
21dc67b68 Update test.sh for ui-tests an the compose file
75d2be7db Update tests-ui to fix them
041b7f71e Update ui-tests to make a valid password
1245b8b01 Update regex in ui + Add regex module to requirements
913e9a2c2 Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
97dc6540e ci/cd - fix typo in dev wf
b75ba601b Merge branch 'staging' into dev
573fe8fee Change UI admin password check to a regex
51514df57 Remove not needed file in linux scripts
9ff64426b Fix ui tests with the external plugins
74fe9d5c1 Lint jobs py files
97b362bb1 Fix let's encrypt error when deactivated
964d31893 Fix wrong attribute value when checking for external plugins
914686e78 Fix often occurring bug when testing the web UI
58db1352f Revert "Fix often occurring bug when testing UI"
987af951d Fix often occurring bug when testing UI
1c74c5d8d ci/cd - refactoring
1cc9f5773 prepare for v1.5.0-beta fixes
ac94e5072 fix double .conf suffix in custom conf, migrate /etc/letsencrypt to /var/cache/letsencrypt, fix bunkernet jobs and lua code and fix reload for jobs
773874154 move /etc/letsencrypt to /var/cache/bunkerweb/letsencrypt (wip)
75ca603b7 WIP - fix bunkernet and missing reload for scheduled jobs
027605452 Fix bunkernet initial message when checking connection + add TODO
bddfb58a0 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
c7ab00208 Merge pull request #462 from bunkerity/testmmdb
ef551846b ci/cd Update mmdb - Let only the schedule and change branch to push on
f41c096ec Merge branch 'testmmdb' of https://github.com/bunkerity/bunkerweb into testmmdb
a7b7c2031 ci/cd Update mmdb - Add check for curl commands
fb5529566 Monthly mmdb update
0afb250b9 ci/cd mmdb update - Changed branch to push on
019a927b0 ci/cd remove secret required for auto mmdb update
283a63f16 ci/cd try fixing workflow auto download mmdb
42707ad46 ci/cd test mmdb update
cd57eb423 ci/cd - fix automatic push of doc
01fbacf0f ci/cd - fix pdf path for draft release + fix missing git fetch before deploying doc
d693d065f ci/cd - allow to update release tag, add PDF to release and fix multiline CHANGELOG in release
aa2ada0a0 ci/cd - update git user/mail for push doc wf
a47d7df40 ci/cd - execute apt install as root for doc to pdf workflow
c4093a2d7 ci/cd - increase ARM node storage
01e599493 ci/cd - concurrent builds for ARM + fix version string for RPM packages
aaa070165 linux - fix VERSION path in package script
0b93c6e10 ci/cd - add more cores to ARM instance
88db3fa34 ci/cd - fix build rhel var
5c01bd3f7 ci/cd - various fixes for push workflows
604d4c1a0 Merge pull request #459 from bunkerity/dev
bed6d742f Decrease the compression level when sending configs to BunkerWeb
57cb6e9c4 Update python deps
0d1580cff Small code refactor of the jobs and the scheduler's function that generates configs
766ca0e9c Merge pull request #458 from bunkerity/dev
0ab07678d Merge pull request #457 from bunkerity/ui
5412e6d24 fix logs checkbox
ba7422218 ci/cd - fix push workflows
fda2948e0 ci/cd - fix typo in push docker wf
59e5b1d54 ci/cd - fix push workflows
7ca7d7847 Merge branch 'beta' of github.com:bunkerity/bunkerweb into beta
939545644 add missing postgresql-dev build deps for ARM images
0b5746aba ci/cd - add missing inputs for build arm
94dc501c1 ci/cd - remove load image in buildkit for ARM archs because of docker limitation
8ffaa7cf7 ci/cd - force shutdown when deleting ARM node
6e99e7a98 cicd - fix docker buildx arm driver
2eef2b8bb ci/cd - fix variable share for ARM (again)
406c686e4 ci/cd - fix variable share for ARM
6cecc70c3 ci/cd - fix ssh command for ARM builder
2f992baab Lint py files with black
7befd927d Update python deps
a4ae0d517 Update cached mmdb files
c3d0d7ca7 Add workflow that automatically update cached mmdb files
d4ceb7c10 Remove dev comments for ui tests
b37c86e62 Fix ui tests problem with the logs page
a7b07c959 Fix wrong condition when fetching the logs on Docker
3b237ed3c Fix UI tests
a55a0df5d ci/cd - remove useless condition in create ARM workflow
ae33ca52e ci/cd - fix wait-on variable
8867eb23b ci/cd - fix wrong json keys from scw api
1b79e291e ci/cd - various fixes for arm build
98ce5041d ci/cd - use fixed sha1 commit for scw action in rm arm workflow
66d7216dc ci/cd - fix typo in create arm workflow
45fa4d1c2 ci/cd - ignore /root/.cargo dir for security checks, use fixed sha1 commit for scw actions and add missing deps for ui/arm
9cd13990e ci/cd - pass ARM ID as secret
266383abb ci/cd - dynamic arm build node
4e0d2fce5 add missing dependencies when prebuilt crypto package is not present
823c09195 ci/cd - add missing var for ARM builds
e71dc132e ci/cd - fix typo in container build workflow
0db5f7cf0 ci/cd - fix typo in beta workflow
4bfc5b693 ci/cd - fix wrong cache name in container build workflow
93d0a991a ci/cd - fix typo in push doc workflow
1c178ed75 ci/cd - fix version output for beta/release workflows
ab7e1f624 ci/cd - add missing runs-on in beta/release workflows
0f499c9d3 ci/cd - fix typo in push packagecloud workflow
d0f6d59f6 road to v1.5.0-beta 🚀408662869 ci/cd - fix typo in doc-to-pdf
312757594 ci/cd - fix typo in beta/release (again)
11f86ea75 ci/cd - fix typo in beta/release
ad1606742 use proper links in docs, automatic doc push and add pdf to releases
08e1d157d Fix ui-tests by removing no longer present checks
c8908695b Remove unnecessary prints
641a27f5e ci/cd - remove useless needs for ui branch
468407081 ci/cd - fix typo in staging workflow
6784bd691 ci/cd - fix wrong condition for container-build workflow
ef1897de8 ci/cd - add missing needs to tests-ui staging
9815f22d7 ci/cd fix typo in container-build workflow
65c6e48e9 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
14a4db8bd use current_bw_version for docs, add automatic tests to ui branch and fix letsencrypt permissions for linux
f6b8d23fb Fix ui tests by editing the attributes name to the new ones
58fd04430 ci/cd - fix typo in staging.yml
54a17c775 init work on CI/CD for generic beta releases, remove useless autoconf examples and fix linux postinstall script
4f2c58bd7 temp disable authelia test for k8s and add missing folders for LE on Linux
5e4ce4579 various fixes
fa67c5d7b ci/cd - fix missing arg for copytree
04db308c9 ci/cd - edit staging workflow
5d2045803 ci/cd - edit staging workflow
e7717ba7f Merge branch 'ui' into dev
bbaaad848 docs - last polish
0658230e2 enhance responsive
f5c28b27d Merge branch 'ui' into dev
575312336 harmonize all titles dark color
2f336be77 enhance file manager and jobs svg
81a37a377 enhance actions btns
c3119f04e docs - plugins
ffa91933e docs - add YT demo
5741dce6d Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
7695a839f docs - web UI
5fe0e0bfd Merge pull request #454 from Hado-K3n/patch-7
8c71f7d27 Merge pull request #455 from Hado-K3n/patch-8
124378d7c Merge pull request #456 from Hado-K3n/patch-9
c6a184d90 fix ui integrations and fix stream support in db
d8b7db167 merge from ui
ddd83a808 docs - add stream support info and plugin description to settings page
289b58567 docs - add stream support info on security tuning page
4dda54a11 enhance style
0ca473c69 fix style issue between load and page transition
1145b798f fix filter setting from custom selectors
63e7ccf13 better centering loading logo with text
001a63efc continue custom selectors + fix script + style
4144faa93 fix create service issue + remove stash
72bc9e4bb start creating custom selectors
98de3fc2f docs - quickstart
f118f992f merge from ui
5285a2f4a force stash
1d354c9c6 docs - quickstart (wip)
55a7c8fee force stash
64a9fe4db fix checkbox + style issues + script duplicate
a90d9e627 ui - fix default value for inputs
7e1efcbc6 Merge branch 'ui' into dev
b5f0fe856 docks quickstart wip
01d8c65c9 remove hidden input checkbox + fix script
b7f63450e add special method for mode
bc47f1fa5 Merge branch 'ui' into dev
7089e8b4d fix checked state
d4fd4c473 fix checkbox + template
db5789fcb Merge branch 'ui' into dev
ab20f83b2 Update k8s.postgres.ui.yml
bbea8ba3f Update k8s.mysql.ui.yml
9a2005d1a Update k8s.mariadb.ui.yml
9512de630 docs - quickstart guide (wip)
956a7bd23 Merge pull request #453 from gin-gitaxias/patch-2
f8c5543fd Update plugins.md
667bb3003 docs - quickstart guide (wip)
6b76596a8 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
78c2e16ea add missing cluster config for ui/k8s and start quickstart guide doc
1e6cfe8b0 fix filter disabled issue + reset on modal open
574ecbd6b Lower the environnement variable for the mode
aa3ce13a8 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
6f39fce6d docs - integrations
92fc5d981 Remove ascii art showing in UI logs
ae7e3ddd9 Fix how the ApiCaller is initialized for UI instances
df94bc4af Merge pull request #452 from bunkerity/dev
bf29fa2f9 Show how many plugins there are correctly in the home page
509bd21b0 Add log when deleting plugin
1530745a7 Merge pull request #451 from bunkerity/ui
a87abf3ce update home dark mode + variable
8a5836dd9 add popup darkmode
3a4a6ee5f new service doesn't force method="default"
1321a76c0 update service submit name for new or edit action
53e145b91 show method involved in disabled setting on hover
ceec21faa update web-ui INTERCEPTED_ERROR_CODES
63ba00180 Fix logic when saving a service in the UI
479f18b17 Merge pull request #450 from bunkerity/ui
ab43bf84a Make it so the UI and the scheduler no longer run as root in Linux
a7849a6e7 Fix mic mac with config files and UI
9009859aa Merge pull request #449 from gin-gitaxias/patch-1
0bf2116c4 docs - concepts
3616a9f20 Update security-tuning.md
435aae7cf docs - index and migrating
c0e649d68 fix logs + select custom
1c3bbf1bc stream - add example and fix ssl support
37ebde363 fix logs and plugins dropdown + margin
b64e55f75 Add bigger timeout to loading.html
da4bb8dce Fix condition in helpers.lua
ab509c270 Fix UI with Linux
6916a81c5 bunkerweb is now W3C friendly
c7bc493e3 stream - fix various errors
bc1dbe18a Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
bd577cfb2 country fix (again) and init work on stream
a829528c3 Add bwcli to scheduler and fix it for the autoconf
9d829ebca Finish updating bwcli
94b97a6bb Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
780c0c8c5 api - fix errors in calls and use ngx.ctx instead of ngx.var
5fb0be70a Merge pull request #447 from Hado-K3n/patch-6
6843902db Merge pull request #446 from Hado-K3n/patch-5
3419dca98 Update k8s.postgres.ui.yml
38c71cf94 Update k8s.mysql.ui.yml
b7c260561 [WIP] Update bwcli
995ff250f Update python deps + add redis for the gen
a04490b47 Replace unnecessary import
5112ed46e Merge pull request #445 from Hado-K3n/patch-4
8558785b1 Update k8s.mariadb.ui.yml
95e64d6c8 bw - fix black/grey/whitelist rdns check and country check
8ea94a2e4 Merge pull request #444 from bunkerity/dev
9f1405d69 Remove unnecessary {-raw-} in index.html when loading
9a2f7e9ab Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
93b471444 Add marging to antibot files hcaptcha and recaptcha
93c0cd437 Merge pull request #443 from bunkerity/ui
e7d61a67c update antibot and default template
5d05eaeae Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
a77d233ec bw - add zlib dependency
9a69ca135 Merge pull request #442 from bunkerity/ui
823c12823 fix SERVER_NAME + fix delete form + enhance
52806afe7 Merge pull request #441 from bunkerity/dev
2ea726c22 Merge branch 'ui' into dev
dffc770a9 fix and enhance
12f8b8197 bw - add missing lua-ffi-zlib dependency, fix syntax error for white/black/greylist, fix error for dnsbl and fix limit request not working in local mode
4871a2104 api - add missing ctx fill
bcc5e6bb5 bw - add missing json decode in api and add missing require in country
83428d6cc bw - fix resolvers nil error when doing dns checks
7eefcb8f8 antibot - manage direct access to challenge page
a372ffd52 fix invalid session error handling and remove debug log in whitelist
e55912b34 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
5f9f1e54f load inline multisite values for white/black/grey list core
3b4882d82 Revert "Remove no longer present CVEs fix because these are already fix in the images"
c2e0e5106 limit - use atomic script for redis case
4bc0771d9 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
edf7e06e0 various redis fixes and display ready log
a93d9a7d9 Remove no longer present CVEs fix because these are already fix in the images
e4465d9a1 Fix jobs cache when a database is used
c9af9457e Fix wrong condition when sending files
17a3d933b Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
a60b6f3ad bad behavior - fix 500 error and do not pass objects with another lifetime to timers
c0e8e93ab Fix documentation mistakes when soft merging 1.4 into dev
f1a868c66 Fix when the cache from jobs is saved into DB + sleep 5 seconds when waiting for the database for the UI
d32102376 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
510938fc2 antibot - fix bugs related to session
ed9605c10 Update python script that generates settings.md
3dabd42df Update python deps
834fbaf01 remove antibot back btn + update raw
95c231515 antibot - various fixes, not fully fixed yet
56028b087 update antibot / loading / default page
502d4fcc0 Add back the fact that we don't download the mmdb country if we don't blacklist or whitelist a country
ccd56d3b6 change antibot and misc template style
c949c0232 Update the security tuning's blacklist category according to the settings
671543e6e Add more ignored variables for missing setting name warning
dbd5739ab Fix wrong setting names under `Custom certificate` category
5f26ebc69 Fix php-cookie-flags example
bba26b548 Reorder core plugins to stop having the warning at startup
db166c434 Add small fixes and lint to the error.html page
08f3d93ab Update jobs will now also check and save the cache in the db
63b1fb947 Fix CVE CVE-2023-1255
d5b11b8bb Merge pull request #440 from Hado-K3n/patch-3
92744c091 Merge pull request #439 from Hado-K3n/patch-2
d46337f60 Merge pull request #438 from Hado-K3n/patch-1
9b52a5c3c clusterstore - various bug fixes
3f9d606e1 Update k8s.postgres.ui.yml
7e2f53c8c Update k8s.msql.ui.yml
1f5d8bfab Update k8s.mariadb.ui.yml
7a7d83a75 various fixes for redis/clusterstore - still WIP
a5e08e1c6 refactor of session management
0fdb108fe core - do not execute init() if BW is in loading state
00b50c162 various fixes for core plugins
4ba5d6659 use ngx.ctx to store common values
860cc1a92 Merge branch 'dev' into ui
881d3a00d fix git issue on windows
76a2ff656 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
28ef546a9 refactor - start to use ngx.ctx for per-request data
ed495b99f Add CODE_OF_CONDUCT.md
0bd3e273b Update compression_level of sent tarfiles to 5 instead of 9
348ab7a1e Add feature that allow the copy of code blocks in markdown + Update copyright
cf2938bf2 Update web-ui docs according to the next major version
79a46e2cf Update the logic behind the check for linux os
9a325c7a9 Add new check for integrations in BunkerNet job
707256076 Add now the scheduler will pass his own env as well to jobs
9578ace02 Remove not used INTEGRATION file in BunkerWeb container
8c919c676 Update links in the home page of the web UI
ad64ce22e Remove no longer needed packages that were fixing old CVEs
29cb6fe16 fix header phase and fix error template
d3d18e15a Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
a83254bf2 fix wrong log in access
859343e18 Merge pull request #437 from bunkerity/dev
50829293c Merge branch 'ui' into dev
8e22b1f21 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
9849ce10c fix wrong error check on phases and add missing ttl for *list cache items
3b5c083fc Soft merge branch "1.4" into "dev" + changing versions
4d95e32f1 update error page
1da4b78f0 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
915b51c3b fix error pages for default http server
535f1a055 Merge pull request #436 from bunkerity/staging
0afe038aa WIP Ui
3b6c3815e fix default-server-http.conf
b5fa473ae Merge branch 'refactor' into staging
2fddbd862 refactor - disable asn checks for non global IPs, use resty.template with antibot and various fixes
8d63e3974 refactor - fix various errors and add missing dependencies
23725d483 Update prod shields.io link in README.md
303f380c7 Update demo.gif file
3c375039e Optimization on the download of mmdb files
a7773dae2 Update intro-overview.svg
5eb884fe9 Fix bug when showing cache files for services in the UI
3fac889ff Remove no longer used modsec rules for the UI
c3106e70e Update README.md and edit the demo GIF + edit the .prettierignore file
928ed2d6c refactoring and road to nginx 1.24.0
34ab94640 Update python image in Dockerfiles + Add gevent to requirements for the UI
aa96c8503 update css
649d29b05 change news base url
217d1aa50 enhance style + menu script
e6ff51e20 Refactoring and Linting of py files and json
666b7a1ba refactor - blacklist, errors, greylist, letsencrypt and redis
496edb83a Adding thel documentation
ee83cea7f Add ascii art showing randomly when starting
6d1914d62 Update python deps
648f15e42 Add new core plugin update-check
2075a5d4c refactor - badbehavior, blacklist, bunkernet, cache, cors, country and dnsbl
5dd52186b Fully adding vagrant in the doc
3a03f07f1 Changing vagrant integration
64997bae8 Adding vagrant integration
03ec271e2 refactor - improve clusterstore interface and automatically retrieve variables for plugins
29c57915c antibot inherit from plugin
840c29568 continue work on refactoring
1ec83f256 renamed session to sessions
8c2908157 save work
afc0ac198 init work on refactoring
4cd3fc644 Merge pull request #434 from syrk4web/staging
bfc872be2 change flash logic when login
049e9c1ea Update python deps
bf9b94ebf Avoid Autoconf from running in root
92e698458 magento - fix docker example (again)
a771bdb18 magento - fix docker example
7c21b3da2 deps - update lua-resty-session to v4.0.3
d4fae4b57 session - add missing settings
a85044220 init work on redis session
986f506e7 add missing API_WHITELIST_IP in mattermost and moodle examples
41e8f5c93 fix wrong init of counter in badbehavior and fix nextcloud/docker example
8e7205062 ci/cd - reduce dynamic subdomains for k8s tests because of annotation size limit of 63 chars
1bc42204d ci/cd - use dynamic random subdomains to bypass LE rate limit
a1e44f6e4 Merge pull request #431 from gin-gitaxias/staging
7ccd3ef92 fix moodle/swarm example and disable reverse-proxy-websocket test
8b54073a7 fix missing backslashes in autoconf custom configs and add missing full reload after custom configs update
622f2eb2a autoconf - check if service exists before adding config
5d14813be fix typos after basic testing
9f7060564 autoconf - add missing import and fix double lock release
937cd10ee refactoring and various improvements
6af3b985a fix deadlock in autoconf/swarm and fix missing favicon in default and loading pages
f6ed21b3b autoconf - fix global custom configs not supported in k8s/swarm mode
eee03c4ae autoconf - fix variable typo in k8s watch
ecf4e77b3 autoconf - fix deadlock in watch loop
0b71819d2 watch services for autoconf/k8s and support real IP in default http server
d3d0136bf various redis fixes and improvements
e80965ca9 lua - fix wrong variable name in access
220374db4 ci/cd - fix syntax error in jobs
9b8606d40 fix redis hostname for k8s files and only append tasks with a desired state of running for autoconf/swarm
c843be074 reverse proxy - allow all chars for URL settings
6a65104e7 fix return value of clusterstore.connect and disable auth basic for LE challenges
b429201ec add missing LUA import for clusterstore and fix prestashop docker example
a9ce32c26 added a more precise scan response and modified .json like asked
f4442b642 ci/cd - fix syntax error in k8s test class
1c3c0d63b ci/cd - fix missing k8s create infra job
e8c6d04aa ci/cd - various fixes for k8s tests
1caa9a1e7 adding reverse-scan
5d41a5b98 Merge pull request #1 from gin-gitaxias/reverse-scan
77fb8c420 Add files via upload
1bb79b155 linux - add geoip deps to rhel rpm
cf8644602 Merge branch 'staging' of github.com:bunkerity/bunkerweb into staging
ea1394b04 ci/cd - add linux/rhel tests, fix docker/behind-reverse-proxy, fix missing stream module for linux/fedora and remove placement constraints for swarm
87bd26da0 Add threatmap to README
b3eb64745 ci/cd - temp disable autoconf tests and add missing packages for linux/centos
202f21aab fix syntax error in ApiCaller
55a36f719 fix docker/joomla, fix autoconf/nextcloud and fix API calls for swarm tasks
1c3f094cd ci/cd - fix wrong yaml edit for swarm and append LE settings for k8s
f07c0e66a ci/cd - various fixes
e8ee460ef fix CVE-2023-0464 and CVE-2023-0465
dd2c8cbcd Merge branch 'staging' of github.com:bunkerity/bunkerweb into staging
2d11a1c72 fix nextcloud modsec rule id, fix k8s pvc definition and remove useless logs from linux/start.sh
4f334a577 Add sleep between BunkerNet registering and ping to the API to avoid being rate limited
283828e8f Fix Now support WebDAV methods in the ALLOWED_METHODS setting's regex
e50c92250 various fixes
b8b50b165 Remove check for messages after creating the service - tests-UI
e88406b5d Fix ui tests with the new UI
922b32b2e Merge pull request #429 from syrk4web/staging
671db37f7 fix autoconf/cors, fix docker/wordpress, fix wrong image name for k8s/scheduler and upgrade tests instances for swarm/k8s
be71b0781 format logs instance to avoid error
9e1876fea logs fix + checkbox fix
4d245f9fe change cache/download to jobs/download
6d16a766f fix service delete + change style
5e598e90c fix bw-data volume not reused between docker tests, fix wrong bw-data volume path for autoconf tests, add let's encrypt to autoconf tests and fix temp env not generated for linux
dc8b7dbe7 fix form input
bf22faddc remove php-cookie-flags from tests, use HTTP(S)_PORT for temp nginx on linux and fix wrong volume path for autoconf tests
6c6845a79 enhance some responsive + change api
461789aed ci/cd - fix BW CVEs and fix Linux restart
318228e59 change and fix service logic
fa7c7ac91 ci/cd - add www volumes for autoconf
f88eced33 Handle services settings sent to the UI better
357dc3e3a Merge pull request #428 from syrk4web/staging
283306a07 Remove CVEs fix, it's no longer needed for now
276a96c55 Merge branch 'staging' of github.com:bunkerity/bunkerweb into staging
19870f154 various fixes for linux and get ui tests exit code from container
2485a47b2 Update python deps
bd88f9743 fix id rename error
82d8180d8 Merge branch 'staging' of https://github.com/syrk4web/bunkerweb into staging
41f43c46d fix multiple
0f632803f Merge branch 'staging' of https://github.com/syrk4web/bunkerweb into staging
53f480a66 enhance multiple logic + fix conflict
1cf4a5665 disable healthy checks for docker-poryx and dummy app in ui tests, add --no-reload-linux flag to generator and fix missing self arg in autoconf
041142a4f add healthchecks to ui and autoconf docker images
4f9748cc2 earlier init autoconf in DB, healthcheck for scheduler and fix syntax error in linux/start.sh
54813ecd4 Merge branch 'staging' of github.com:bunkerity/bunkerweb into staging
d97b5e104 various fixes
8031c5060 Start handling disabled checkboxes + multiples
58ab870b2 increase cors/k8s/swarms timeout and fix tests/ui container names
cceda705b update flash count on remove
e91f3dc22 Add a log when database is ready in UI + Small refactor of the Configurator
1e9a55c24 Add small tweaks to the UI and scheduler Dockerfiles
7dc26dafa Fix disabled checkboxes no longer always have the value no with the UI
7dc25b3a5 fix redmine/docker example, remove double AUTOCONF_MODE in integrations, remove useless backslash in start.sh/linux, rename container for ui/tests
55d24a8d1 Change mmdb-country job to download the file only if needed
9e009f7be Merge branch 'staging' of github.com:bunkerity/bunkerweb into staging
73b640bd3 fix cors/docker example, add missing AUTOCONF_MODE=yes to integrations YMLs, proper save_config for Linux and fix image name for UI tests
87bccaad6 Add `AUTOCONF_MODE` setting to scheduler in integrations examples
d331131c0 increase timeout for php-multisite, add API_LISTEN_IP setting, edit default variables.env for Linux and add more logs for tests
578a1a8c8 Add more precise logs in the jobs plugins
cb808c0ad Fix bunkernet-ip.list file not being created in case of an error (same as 1.4)
c8d39ba6b Fix scheduler no longer running as root + Fix permission errors with downloaded plugins
4a67a5f56 Merge pull request #426 from syrk4web/staging
4dea680ac enhance style + some fix
d81088272 Change the category if the user needs to log in in the UI
e003b751d Fix when saving plugins with pages
b829e4edf Fix false positive error with plugin page in web UI
fc3ef3346 Add UI logs into console
ce85bc6b8 Fix openssl no longer prints progression in the console
2e144bf46 Merge pull request #424 from syrk4web/staging
defb2c333 Change the way the error page is rendered
2ae37ce8d Fix regex for ANTIBOT_HCAPTCHA_SITEKEY setting
f335364fc Lint antibot.lua
16842fef1 Fix errors with missing % symbol + fix errors because of the symbol
5f5a5a890 Fix css in antibot html files
ccde5c74f fix real ip jobs
d3402ff3f change loading, error and test files
a02218bc8 end examples refactoring
5845446b9 Revert "Fix errors regex, authorize same path for multiple errors"
be0df4160 Fix errors regex, authorize same path for multiple errors
89812362a continue examples refactoring
5d214497b Fix don't try to add an instance when saving the configuration with the UI
808b7b220 Update jobs connect to the database only when needed
aa0eff749 Fix regex in redis plugin that was breaking the UI + fix ui.conf missing comma + remove unused variables in templates
1ac434a5b Update python deps
9c22f1e97 Refactor the py files
cfe5c6063 examples refactoring
e37e6c346 Fix mixup of swarm and kubernetes when reading env variables + refactoring
0356250d9 Fix problem with the bunkerweb container and plugins
548d157fe Fix check if the Database is on read-only before trying to write
7c5aa4897 Update version string size to support new format
61b9517a8 Fix error when multiple jobs are trying to write in db at the same time
8c67d08ae Lint code
966f57cea init work on examples refactoring
0210ddd88 Add realip settings values to the initial BunkerWeb settings
6f29756dd ci/cd - pull only interesting images for UI tests
2b1dbb1d4 fix default cert path again and ignore pull errors for UI tests
74a11c2ed fix wrong cert/key path for default server
b3769b6e3 fix missing then in blacklist.lua, disable site search in redis.init(), remove counter from reverse-proxy/stream config and fix ui tests compose pull
c7d8b7dc1 update resty core and http lua to support latest version of stream lua and various fixes related to ci/cd
a62ef9f54 add missing init-stream-lua.conf and various fixes for ci/cd
65611020d fix duplicate datastore http/stream, fix missing /var/www/html for linux and various fixes in tests
b28668d68 ci/cd - revert back to old condition for pulling images
706305917 ci/cd - fix wrong autoconf local image name, add missing secrets for tests-ui, fix wrong IMAGE_TAG for tests-k8s and try to fix pcre issue on linux
2d440d26e ci/cd - add missing runs-on for reusable tests-ui
93945f391 ci/cd - add ui tests
5e31b6c4a fix CVE-2022-1304 for autoconf, add missing load_module for ngx_stream_lua_module.so and fix missing -lpcre in configure step
01fab4162 ci/cd - fix CVE-2022-1304 and wrong TEST_DOMAINS
aa614b75a ci/cd - replace Test.py with latest one, fix yaml paths, print logs when k8s stack is not healthy and fix wrong linux docker image name
88a295517 ci/cd - fix log() call
b95d1bc6d ci/cd - add missing log() and fix TYPE for linux tests
2604d9a56 ci/cd - trying a hack to support dynamic runs-on
ed4d94529 ci/cd - trying to fix runs-on problem
53410e831 ci/cd - remove steps
609210021 ci/cd - inherit secrets for tests workflow
a168f2bce ci/cd - fix rhel build and runs-on for tests
8bf211bc5 ci/cd - fix linux package generation (again)
9250faa52 ci/cd - fix linux package generation
139eaa2dd ci/cd - add missing scripts
7149a34cc ci/cd - add empty .trivyignore and rename redhat to rhel
5c5dbcfc7 ci/cd - fix type in push-packagecloud workflow
e826c619f ci/cd - fix wrong quotes in delete-infra workflow
b24cbf73d ci/cd - fix wrong quotes in tests workflow
99e27c430 ci/cd - add missing input in tests workflow
ee0e608de ci/cd - fix negative conditions
10f9658f5 ci/cd - fix wrong jobs name in needs
27bac0382 ci/cd - trying to fix dynamic runs-on
97627cf83 ci/cd - pass runs-on to reusable workflows
8969b1e72 ci/cd - remove version from reusable workflows
8ca292fb3 ci/cd - change reusable workflow paths
8e73eb87c ci/cd - fix syntax errors
46e3078dd ci/cd - crash test incoming
95c5e2e47 ci/cd - move dynamic runs-on from reusable to staging workflow
131857a9b ci/cd - fix wrong indent in staging/delete-infra-*
fc1cab1af ci/cd - remove subfolder and continue work on staging
25729fda7 ci/cd - init work
bb2d868fa Refactor tests
5e3dadbfe Refactor ui
7fe168892 Refactor scheduler
36b5c372e Refactor Instance and remove unused method
596258559 Accept incoming changes for misc jobs
c5a10aaa3 merge default-server-cert job
06acae405 rename *CUSTOM_HTTPS* to *CUSTOM_SSL* and continue work on stream support
6bf59b59a Refactor the plugins jobs
7a8a75901 Fix multiple CVEs (see comment) (finally)
10ec01e7b Fix wrong env var name in realip plugin
947ecf81f stream - add is_stream variable to check if we are in stream or http mode
4f4c8ebf0 init work on stream support
79036e975 add ngx_devel_kit and lua-resty-env deps, support set_by_lua hook for plugins and init work on whitelisting support with modsecurity
c2402b118 fix duplicate root error when bw is starting, add modesec rule to core ui and init work on k8s/swarm integration files
dbd052e9a Remove unnecessary import and use parent list of supported custom conf instead
fb917960b Revert changes on the custom conf regex for the autoconf
26de0a233 Lint files
0faa34ac7 Add a regex to the setting REDIS_HOST
1d9459202 misc - add missing page.conf
1b113236a Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
29b373148 misc - default pages for default server
6cb714be0 Start adding integrations examples
99b85ec8a Fix Apicaller error with swarm
37114ee2f Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
902fe6ad0 bw - init work on redis
7bf034fc9 Fix being able to delete autoconf services from UI (shouldn't be)
916caf2d6 Merge (soft) 1.4 branch into dev branch
f8e31f287 Update mattermost to use a static image
0f35c05ee Ignore multiple CVEs due to missing deps in python:3.11-alpine
846e26e41 Fix multiple CVEs (again)
ebc7fbbce Fix multiple CVEs (see comment)
f4081ebd3 Handle more errors with Bunkernet job
3b01b5144 Upgrade the way the jobs run_once are executed
8fa94d6a5 Edit DockerController regex to handle more custom confs and fix modsec conf mixing
c92d4224f Update python deps + add cryptography for autoconf and MySQL
579975899 Fix checkbox not being sent when unchecked + double settings tab in UI
935805721 Fix CVE CVE-2023-22490 and CVE-2023-23946
c671ccf7a Add unauthorized_handler to UI
5ac64758e Merge pull request #417 from syrk4web/dev
fdd0da35d Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
34d12cd55 Fix file manager always use the database now + create log file for UI if not exists
47ccd9f04 Log events back in the UI
39b0f3f19 fix + show one mult group
7828c0225 add checkbox fallback + DL script
e425eef9a Fix weird shinanigans when saving services config
b75bc0344 Adjusting upgrade on file variables.env
79dabf763 Change the way bunkernet check on which instance type it is
3f462fb3b Optimize logger
84f3a894f Fix cache files not showing on UI
93933bde7 Fix custom conf MODSEC CRS being interpreted as MODSEC only
c22bccc76 Correcting nginx version for debian installation
8bedc9ce6 Correcting doc
3a60b3463 Modifying doc for packagecloud problem
9efa21709 Correcting fedora packagecloud problem
e3410058f Correcting Ubuntu/Debian
60ac00f5f fix inp value
6b13fbb84 change svg
c89205016 Adding Rhel integration
cb77a7010 change logs datepicker
8b0d8a9d3 remove log + fix service tab
facb597ee fix float buttons
89930f1a3 Remove encoding from Database engine args
6122d59d8 Update python deps
d3a02be59 Rhel cannot be supported yet
a51aa27e4 Add some checks and solutions to rare syntax error
ae8e65057 Fedora upgrade working Correcting backup during upgrade Database backuped TroubleShooting some errors with OS Centos working
77f41a059 Backuping old confs working
8fcba30ab Upgrade Debian/Ubuntu working
2e9a0c79e fix select hover style
64961e395 Remove unused imports
b662d8453 Update python deps and remove oracledb
e9d981a56 Fix checkbox being disabled every time
39418790a fix popover content
3d96fdb34 update dashboard
580f33e56 new file el is hidden on nav
4f6244e74 Lint code
1f2076756 Update Python deps
dcf9e301e Fix UI not exiting correctly with gunicorn
f1a28b01b Merge pull request #408 from syrk4web/dev
5739144e3 Fix bwcli /bans command
df7bbb960 Update VERSION to 1.5.0
dd0f56bb0 Add password type for settings
d83d3aa3d Fedora working Modifying centos systemd Adding %postun to rpm Modifying postun deb Centos working
b85e6ee6b Updating to Fedora 37
ca0d88fcc Upgrading script: Ubuntu & Debian working
835f85d5d enhance input field style
c4b5ddb95 Add setting to intercept specifics error codes
86c81a621 Merge pull request #407 from syrk4web/dev
e6cb5b0b0 Made the UI independent + update job download plugins
0ce5f216d handle password inp
44ce5381c Fix CVEs
12b4cfa22 Merge pull request #406 from syrk4web/dev
d7ee3ad66 fix file manager dropdown
efbcfd0e2 Beginning of automation testing for linux packages
50b83790a Merge pull request #405 from syrk4web/dev
bf1d19f33 remove prefix multiple input
4d49f2f4b Improving and correcting problems on packages
f5d87849a Fix errors in the UI when a service have multiple domains
d6d1dd1ce Merge pull request #403 from syrk4web/dev
0f5a73430 add condition for services
a5256dd80 Fix IPv4/Ipv6 CIDR regex
591a20cd8 Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
c56fccbf2 Adjustements to upgrade
a3a5c1c74 Add ui tests requirements to the updated python deps
b1c99e408 Add tests for the UI
65f2bf09b Remove the idea to store logs inside the database
7beb400b4 Fix stop gathering all the logs every time with the auto update
ab163ce13 Fix services settings saves and plugins deletion
6932f3ded Add a new script to update python deps and update python deps
d14372075 Fix tar error when sending /etc/nginx to BW
9edf789ab Update python deps
4b3b9b326 Merge pull request #397 from syrk4web/dev
557db479c refactorise logs script
13f1dadf5 Merge pull request #396 from syrk4web/dev
adf96cadc remove useless files
d2a634e7f plugins + global_config fix
1aaac2dcf Add regex for settings.json
871807b80 Add small fixes and tweaks
4c5172eda Correction of problems
331d58324 Fixing details
e9c1b0cf8 Adjusting some details
c220e5997 Linux UI fix
13fbbfb67 Update job database while locking the threads
ea4ceae7b Fix isPage logic in menu (UI)
8ee0ec88f Remove test files in UI
d81c52654 Lint ui files and change .prettierignore file
5cc80d2ba Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
a6295248c Merge pull request #394 from syrk4web/dev
38b59954a Lint yml files
146338de6 Refactor every .py file
fcd8d8746 open another tab for doc
051192791 change style
9c80cdb32 add plugin page logic to menu
7689dac76 Filter CVEs fixes in Dockerfiles
0c8dfaaab Update bw and autoconf Dockerfiles for let's encrypt
c5d3e77c1 Fix letsencrypt permission error and optimize the ownership commands in scheduler
8304116fd Send more variables to the home page front
4379e21ea Show dirs of every services even if they don't have a custom config
148d9d2d4 Remove user override in the job scheduler when executing jobs
c6498eda7 Add new php-cookie-flags example
f97e056ff Update jobs
13fe4b6ee Edit core plugins regex + make COOKIE_FLAGS multiple + edit DB model accordingly
2b2eadf44 Merge pull request #392 from syrk4web/dev
342fe956f change data creating new service
bb7ca889c enhance darkmode + fix + factorisation
cdc3cfc81 add toggle multiples + style
191c88238 Merge pull request #388 from syrk4web/dev
dbe49bb8f Update intro image
7bdc46057 Change how the edit works in the config (UI)
364ef13b5 Fix error by calling a method on the wrong variable
1142ace55 Fix rare error with the jobs return code
477e87a2f news script + multiples groups
a04f983a0 Merge pull request #385 from syrk4web/dev
e5574fbdc change flash messages style
b1ca47253 Small tweaks and handle services variables better
98bda4d1e Remove unused line in Templator
0b1be727f Optimized the storage in the Database
47526dc8a Merge pull request #384 from syrk4web/dev
00d3073b0 get custom method and check disabled state
02d10f619 Fix datepicker.js not being found because of the caps
da634af4a Accelerate send_files method
be0ee60cd handle stop signals with the web-ui
064f9eef9 Remove lines that will never be use in save_config
ec15a4e88 Handle stop signals from Docker in the scheduler
c49f50da2 Move BunkerWeb entrypoint to the correct dir
48bbb5e39 Merge pull request #382 from syrk4web/dev
b944de9e8 change service multiple script
07ab3deb0 Remove unused lines in selfsigned job
a4e863f09 Update authentik and migrate the example to the 1.5
eeb810546 Migrate authelia example to the 1.5
e2b2505d8 Fix saving config for multiple settings
a0c2db7a0 Fix how the config is get from the database
4595295bd fix tab focus style + dark mode style
0bd6d5655 add flash script to login + enhance style
6f5aab11d fix footer padding
37380b977 fix get multiple settings only
3f6432f4b Merge pull request #381 from TheophileDiot/dev
ff84656cd Update examples + add static versions
0e29d9f1f enhance and fix
c195ffc86 Fix autoconf not working properly with the shared volume
291d64e29 Update community example + linting
4346322f7 fix services settings on modal open
f2daf7368 Merge pull request #380 from TheophileDiot/dev
ba9c16a5d Merge branch 'dev' into dev
0db1550f2 Changed the way jobs' cache files are downloaded
fa54ebd49 Made a few tweaks + change the plugins for the services modals
0290f509e add plugin_name (change values)
77931b623 add plugin_name
6560ca086 test
0d0f1aa95 Merge pull request #378 from TheophileDiot/dev
03e98985e Migrate more examples and lint
016a8cd6d changes
5263be27d Change the way jobs are downloaded + folder created in configs
7813b51db Merge pull request #377 from TheophileDiot/dev
c4bd535ac Add autogen back for docker and the autoconf
243c4ca78 Merge pull request #376 from TheophileDiot/dev
e9687a5b1 Remove unnecessary comments
8537eea89 Merge pull request #375 from TheophileDiot/dev
3c9574dae Linux: Updating nginx to 1.22
9f84e02d8 refactoring services modal logic
b105896b2 add rename form
ff83b342d fix issues
8e31672ac Merge pull request #374 from TheophileDiot/dev
b3d80d7a6 Generate requirements with python3.9 + use new resolver
6bbbe70ee Merge pull request #373 from TheophileDiot/dev
e33bad4b9 Fix comments + updated passbolt to support the 1.5
37f21c5d4 Temporarily comment the post fetching
343d9d09e Show plugin pages even if there are none
0a4f0eb57 Fix error with jobs wrapper
1d4998356 Fix darkmode + Add new variables to pass to the front
547021e7b Fix job fetching for never ran jobs
0954e82f4 Fixes some bugs in the UI related to the plugins
3c5f6002d filter script + manage files + fix css + enhance
e988aacf3 Merge pull request #371 from TheophileDiot/dev
cce181a29 Update customcert job
9ba06b64d Update README
7f2eadacc Update python version for the scheduler and requirements
8d6c3d0b8 Fix db get_config
cc748a048 enhance responsive + add loader
3bafe137d refactorisation
e9dfb59f3 handle settings type multiple (fetch, add, remove) on services
8e5dda520 Changed the way the config is get from db
368122181 start multiple add and delete logic
fee59a51e separate multiple from others inputs
50ba22914 upload plugins + jobs template + global enhance
94b0e6a0d Changes on the flashed messages
2e0a733cd Merge pull request #370 from TheophileDiot/dev
103e4a0ae Update modsec CRS to v3.3.4
f0f9d7dcf Merge pull request #369 from TheophileDiot/dev
4dabe6dae Advancements in the examples migration to 1.5
115bfbdc1 Merge pull request #368 from TheophileDiot/dev
81ad9e9ac Update examples and add docker-proxy
82ab6c7c4 Revert "Remove unsafe deps in the requirements and install setuptools manually"
b578823a1 Remove unsafe deps in the requirements and install setuptools manually
7fb61b5ef No longer dump the jobs to the front
37ece3de1 Merge pull request #367 from TheophileDiot/dev
719d779e0 Start updating the examples to the 1.5
2889b2638 Merge pull request #366 from TheophileDiot/dev
3c3bb7f20 Fix the way we fetch the config from the database (with suffixes)
f0d0dac91 Add the variables back instead of the "_" so it doesn't create an error
62ab9944c Fix scheduler errors with sqlite in autoconf
739190051 Make the bunkernet not run in a thread to avoid errors
840ef8cf8 Fix typo in selfsigned job
5a95e6703 Edit the way the UI updates the config
34b5aba1c Merge pull request #364 from TheophileDiot/dev
b7f60dbdc Update deps and requirements
a0634b573 Merge pull request #363 from TheophileDiot/dev
c0efdf9c0 Replace /usr/sbin/nginx with nginx
db35e575e Rename variables so they make more sens
b22cc44d8 Change the way jobs are sent from the database
4e96e57e0 Make certbot compatible with 1.5
aaeda5300 Change the jobs logic + add support for arm
657722922 enhance templates
844b06e28 Fix how the jobs are sent to the front
3a0727b5c login template done
0f5756cfb enhance logs + prepare jinja variables
08e7c2104 plugins done + add name to settings
6b5d6e07e Revert changes on the check_settings function
3ccc12d78 add dropdown + responsive
3ed3fbe99 Autotonf now update the instances too
e56f96d04 Update database model + Save instances to database + add the option to add logs into the database
c87c3637d start plugins template
3a5d14952 Made few tweaks with the home page + remove useless functions
55e76b280 Fix path for dropzone's scripts
64d261acc Change the way logs are parsed
f13455d11 send timestamp with ms
7aac0c352 fix ms
fb2e41c11 logs params
2967ed98c fix fetch
4f9b2120e test
f1e614fae change ternary operator for fetch
fa5719db7 fetch logs + liveUpdate filter
2a2f2f1e9 Fix scheduler error
208716722 Merge pull request #361 from TheophileDiot/dev
fa98003f2 Thread the jobs run_once
89e8839bb Optimize the regex for the core lists
51c5836ae change logs script/template + continue jobs
f61b4428b Merge pull request #360 from TheophileDiot/1.5
a96771881 Change the logs date format + start editing the logs endpoint
d30adf670 Changing rhel
bf19cfe3d Migrating Linux to 1.5. Still some details to adjust to be perfect
0cd6ed1af When downloading new plugins, update the database properly + update job every time now
8f75af3d6 edit the .dockerignore
4f4beeef9 Create the database variable even when passing the variables, just in case
7347fe9bc update jobs only once
b509ce16e Copy the files after installing the requirements
64601ebf5 Remove useless warnings
c9238f993 Merge custom configs generation to avoid repetition
192c6755c Update db for the jobs that are ran only once
c14765c6c Change the way jobs are sent and how we update external plugins
888bedd51 Change how jobs are send from the database
babb1c72c Revert "indentation"
44c74f9be Revert "indentation"
984b6c5f0 ci/cd - speedup codeql by ignoring some folders not containing python files
355c947a4 start jobs template + enhance menu
272de0b8b ci/cd - fix codeql config path
d9fc713c4 ci/cd - move codeql config to file
c2503d63d ci/cd - add codeql
b098478bd enhance service + darkmode script
fa1739439 ci/cd - init work on dependabot
82df3f17f ci/cd - init work
f02adf300 indentation
c1031cb2c indentation
e8581ecb4 enhance news/menu/base + logs scripts
eb99d00da Revert "enhance news, menu + end logs scripts"
a7d3d0452 enhance news, menu + end logs scripts
c7556a39a Merge pull request #358 from TheophileDiot/1.5
e02e9c9ec Edit how plugins work with the UI
f1d7add73 Merge pull request #357 from TheophileDiot/1.5
1252d1651 Add the jobs feature and add the link when using sqlite
2154c7f54 Update database default DATABASE_URI
7957f63b8 Merge pull request #356 from TheophileDiot/1.5
73668b476 Optimize plugin gathering
b3cfc1f01 Remove unnecessary lines and add plugins_errors endpoint
b57e50db2 Send needed settings with the services in ui
a0e66ab30 Change Database default path for the sqlite file
fdd393826 add ui work in progress
6b9a6a7e3 Merge branch '1.5' of https://github.com/TheophileDiot/bunkerweb into 1.5
277e37bce Revert "add ui"
05d4b77bb Merge branch '1.5' of https://github.com/TheophileDiot/bunkerweb into 1.5
e7e43e64d Add dark_mode to ui
d40a93cb7 Revert "add ui"
d102f027f add ui
b70d97671 add ui
7db7aee7c Merge pull request #355 from TheophileDiot/1.5
70844ca60 Fix database with autoconf
1a7d8978b Merge pull request #353 from TheophileDiot/1.5
93c74154a fix fedora python deps bug
f2eabc0df fix centos python dep bug
d199f124b remove exits in ingress controller
3ec15eb4b Update the docs from dev
5a8f81256 Merge branch 'dev' (softly)
d214352b7 Merge pull request #352 from TheophileDiot/1.5
891757dab Add support for arm + change scheduler python version
8dd377562 Merge pull request #351 from TheophileDiot/1.5
630cf8b88 Change the way services are sent to the UI
b0c09b4de Merge pull request #350 from TheophileDiot/1.5
fa655e6f0 Remove no longer used install.sh and uninstall.sh
c8fbcbeae Merge pull request #349 from TheophileDiot/1.5
32101c3dc Move UI deps, Make the DB compatible with PostgreSQL, MySQL and Oracle
035eed8f6 ui - add custom PYTHONPATH in Dockerfile
2a3e24bd2 Merge pull request #348 from TheophileDiot/1.5
3984c4b0d Separate deps and change prettierignore file and pyproject
47afdc88e Merge pull request #347 from TheophileDiot/1.5
01bb6f5e6 Stop converting the files content to base64 when sending them to front
c35874797 Return dumps of settings instead of the dict
a8f27ccb1 Merge pull request #346 from TheophileDiot/1.5
edce79936 Update the structure and the paths
04578aab3 Changing path Linux folder
5ae714fc7 Merge pull request #344 from TheophileDiot/1.5
f65a4cdd6 SMall tweaks on the UI + edit the ConfigFiles edits
06aa73fcf Merge pull request #343 from TheophileDiot/1.5
0811aad7f Edit scheduler and change DB
858f6e00f Change python version
b279d0240 Fix BunkerWeb gen on start
ef7fa5b4f Merge pull request #342 from TheophileDiot/1.5
11bcd9824 Merge branch '1.5' into 1.5
bacef768c Add integration manually in bunkerweb
5ec179aff The UI get the custom configs from the database
0e6a5f3f9 Merge pull request #341 from TheophileDiot/1.5
eec00ba2b Update the Database and make it easier to gen
479b556fb Merge pull request #340 from TheophileDiot/1.5
375776e7d Fix UI path_to_dict with the cache files
df62fd410 Merge pull request #339 from TheophileDiot/1.5
1f58d0c51 Edit dockerfiles
6c07f9967 Merge pull request #338 from TheophileDiot/1.5
069b45f37 Add some tweaks
850530cd0 Merge pull request #337 from TheophileDiot/1.5
01b414552 Make the Database support every feature + updates
a12d013fc Merge pull request #334 from TheophileDiot/1.5
5f8353c11 Adapt everything so that the UI can work with every integration (some more tests are needed)
fe8962592 Merge pull request #333 from TheophileDiot/1.5
66fb266f8 Centralize Database and optimize requests
7a03ed33f Update pip in Dockerfiles every time
b09c05d3b Update BunkerWeb deps
9c02d5f9e Merge pull request #330 from TheophileDiot/1.5
7d743e198 Update the database and the core plugins accordingly
ce6f01cf0 Merge pull request #329 from TheophileDiot/1.5
9140dc324 Optimize Database connection and ApiCaller
81307c82c Merge pull request #328 from TheophileDiot/1.5
0edef7c52 Use Python 3.11 where we can
fe774e000 temp nginx is dead, long live to the IS_LOADING setting
0bf402fd7 Merge pull request #327 from TheophileDiot/1.5
48242b9a3 Get all config with generator
0b73ea856 Merge pull request #326 from TheophileDiot/1.5
09378458d db.get_config() get entire config and doesn't filter anymore
100849023 Merge pull request #325 from TheophileDiot/1.5
8b54762fc Fix db init with autoconf
cfaeb1013 Merge pull request #324 from TheophileDiot/1.5
7e53bfe55 Fix gen for Docker integration
54530d535 Merge pull request #323 from TheophileDiot/1.5
79eea0e99 Linting + starting to migrate bunkerweb to the 1.5
316b84ad3 Merge pull request #318 from TheophileDiot/Feature-specific-order-for-plugins
ba56c9f55 Merge pull request #317 from TheophileDiot/Fix-scheduler-error-reload-nginx-linux
a8f79e58f Merge pull request #303 from TheophileDiot/Fix-custom-conf-disappearing
b2a7e053b Merge pull request #314 from TheophileDiot/Feature-blacklist-ignore
96e656273 fix indent
01cecf14e Merge pull request #313 from TheophileDiot/Feature-max-client-size-edit-modsec
873ccad9b Add MODSECURITY_SEC_RULE_ENGINE and MODSECURITY_SEC_AUDIT_LOG_PARTS (#292)
97bf473e1 deps - add update checker for deps (#293)
5af2fb778 Complex example using autoconf (#271)
bd4c94e83 Add specific order for core plugins and check them
a96a8a8c2 Fix incorrect message while reloading nginx + more details on error
446ff93a4 Add ignore blacklist feature
5fdcc9e58 add g/G to the available file measurement units
d207aa4bf Variable MAX_CLIENT_SIZE change the SecRequestBodyLimit value
57ad9d7ee Fix old custom configs where never deleted
7860aeab9 Merge pull request #312 from TheophileDiot/dev
cac220023 Fix small typo in autoconf integration
5d9dc88cc Merge pull request #307 from TheophileDiot/Restrict-access-IP-NET
40863f28a Merge branch 'dev' into Restrict-access-IP-NET
67d514b53 Merge branch 'master' into dev
51e96416d Merge pull request #304 from TheophileDiot/Fix-Endless-loading-after-update-service
ace1dfca2 Merge pull request #308 from TheophileDiot/Fix-doc
b9e5badd9 Fix last typos
a9865f850 Fix typo in plugins.md
e3d0120a0 Fix minor typos in the doc
9214bb939 Merge pull request #309 from TheophileDiot/Fix-flask-dev
80c1b225b Replace flask development server with gunicorn
de0954fac Fix typos in the docs
27b4ff330 Add the greylisting feature
06f65ffe2 Change the exposed port to 7000
b0a887a15 Fix errors and warnings when editing a service
803ff8cb5 Fix CUSTOM_CONF_SERVER_HTTP disappearing after 60 minutes (autoconf)
94ce249d7 [#290] Fix typos in docs
478e98018 ci/cd - temp disable k8s test
8f44e108b ci/cd - add docker system prune
72caf907a ci/cd - temp disable swarm tests
01acb1cf3 ci/cd - temp disable nextcloud/swarm
fc3c7892d ci/cd - add missing prepare for prod tests
2a04a5642 ci/cd - update ruby version for CentOS builder
6afdb298f lua - fix pcall for asn/country mmdb lookup
04019a617 tests - fix nextcloud/swarm
34649bf33 docs - add Ansible to README
469a5343e ci/cd - remove old linux packages before building
4244399eb road to v1.4.3 🚀66029a316 tests - edit prod workflow
d0c245ba8 tests - fix bug when testing if a swarm stack is healthy
5633d5ff5 tests - remove mongo-express/swarm
61d57b4eb tests - fix mongo-express/swarm
76f035e21 fix wrong DENY_HTTP_STATUS setting in docs, fix autoconf ghost/prestashop tests and some UI warns/errors
b35dbdffc tests - fix ghost/docker
7e226301d tests - fix prestashop/docker
8f273a929 ci/cd - fix missing comment chars
45f4e06ac road to v1.4.3
7fe58ddd5 tests - disable systemd start limit
561e64a89 tests - road to debian
29933fdeb tests - add unzip package to linux container
7915da6df docker - fix CVE-2022-3209
d8f6c2756 tests - fix configs perms for linux
cb56e7d04 tests - add chown for custom linux configs
e84734314 tests - fix linux/drupal (again)
4caae414d tests - fix linux/drupal
8a23b96bf tests - disable linux/moodle
a4fd701d5 tests - temp disable linux/proxy-protocol
39ed524f0 tests - add missing variables.env for moodle/linux
d0e3f3ae2 tests - call cleanup-linux.sh
b0fa57b05 tests - replace restart with stop+start for linux tests
ec1136085 tests - print logs when setup_test fails
3be348ebe tests - add haproxy cleanup for linux tests
884ca0f6d tests - add missing variables.env files for linux
e4321629f tests - road to linux tests 🚀c277a33e9 tests - add missing which command for fedora
512c60c51 tests - add some debug info when linux/setup fail
e64cc29a8 tests - create /run/php folder for rpm linux distros
42d29743b linux - fix 755 perm on /opt/bunkerweb
505d5c2ae tests - fix behind-reverse-proxy/linux
70992a0b5 tests - fix haproxy logging again
7e5465c59 tests - fix haproxy logging again
f5606b693 tests - fix haproxy directive
265742cd9 tests - haproxy add logs
0580662cc linux - copy current variables.env to make temp one
8e15e2a40 linux - set /opt/bunkerweb permissions to 755
17801caeb temp disable arm
552588adf temp disable arm
5849c66e6 tests - fix www.conf
052dc2346 tests - increase php logs verbosity for linux tests
331c7e954 tests - add debug log file for PHP
f71ad0f65 php - fix fastcgi_params path
34c648830 trying to fix PHP bug in Linux
5c99a4b0e refactor linux/start.sh and fix tests/cors www copy
eb6f0d673 tests - fix purging wrong folder for linux tests
6ea38b1f7 bunkernet - fix wrong import in register job
b5c07dda0 tests - add cleanup for linux tests
17b6b0fdc tests - fix PHP www.conf for Linux
512ed7200 tests - add cors/linux
d8071e4c4 tests - install php-fpm
790fa37ae tests - fix behind-reverse-proxy/linux
6005a8f73 tests - fix behind-reverse-proxy/linux again and again
09f56a1c6 tests - fix behind-reverse-proxy/linux again
0c4d2edf1 tests - fix behind-reverse-proxy/linux
d53c54d4b tests - add behind-reverse-proxy/linux
093d426bc better management of registration with BunkerNet and fix syntax error in LinuxTest
3762c3874 tests - copy variables.env for Linux tests
55525abf1 tests - fix mattermost/k8s
23f8ec957 UI - fix container CVEs
a38ca5138 docker - dont generate config if already present
e92938f00 autoconf - fix container CVEs
c2ad79a79 Docker - fix CVE-2022-37434
8eefb4bf5 examples - fix mattermost/k8s
6d1ef606f examples - fix nextcloud/k8s
95c4ce723 enable bad behavior on default server and various k8s fixes
e295b020e tests - increase redmine timeout and add pvc cleanups
1e499db50 examples - fix gogs/k8s
a64276136 disable bad behavior if client is whitelisted and fix redmine/reverse-proxy-multisite examples
115d517c7 tests - add delays
7c1474cd8 examples - fix moodle/k8s port number
305870cc2 examples - edit moodle/k8s port number
3df0f8505 tests - add delay to moodle
897528b73 tests - fix magento/k8s again
4f4c446f7 examples - fix magento/k8s again
69848dccc examples - fix magento/k8s
0516f0a83 tests - assign bunkerweb-controller to srv1
41524a9e3 tests - force pv
0d44b098f tests - fix prestashop URL
0e315dc5f tests - edit prestashopHost value
5741391de tests - change k8s service type of prestashop to clusterip
6adff9ceb tests - increase timeout and remove pvc for prestashop/k8s
97a2caf06 tests - fix Kubernetes missing variable assign
865f4f1b5 tests - fix prestashop/kubernetes
e8305b0b6 tests - fix missing prestashop/kubernetes.yml
840b875f7 docs - edit plugins page
978bbe9ca examples - fix missing configs subfolder in nextcloud/bw-data
502c9f2fe examples - fix radarr/swarm
1c4f8bf55 tests - automatic volumes prune for swarm tests
b6e2ad22a tests - fix joomla/swarm
216686fc8 tests - add delay parameter
d648b1fbe tests - increase magento timeout
d3b725294 tests - wait until swarm services are running
a48200bc0 examples - fix reverse-proxy-singlesite/swarm
b429dd804 tests - increase timeout for swarm healthy check
0440c61d0 examples - fix gogs/swarm
ae36b9899 docs - quick edit on PHP
9a83fadd8 examples - fix gogs/setup.swarm.sh permissions
09141f204 examples - fix magento/swarm
edf5421bf examples - fix permissions for magento/setup-swarm.sh
c67564c7c tests - increase timeout when doing requests
b07637009 examples - fix mongo-express/swarm
ec35b0a54 examples - fix mattermost/autoconf
95e3022eb examples - fix autoconf/reverse-proxy-singlesite
d63538fd5 examples - fix wordpress custom conf variable name for docker/autoconf
e01b24072 tests - ignore error when replacing patterns in files (binary files)
217924fe4 examples - fix reverse-proxy-singlesite regex
bb6d02e0f examples - escape dollars in reverse-proxy-singlesite compose files
5c42fb58d tests - fix reverse-proxy-singlesite
2f8c5a1e9 examples - fix host for reverse-proxy-multisite
af866e825 edit docs/integrations for ansible and fix examples/mongo-express compose file
e90d4cc7e tests - fix json for reverse-proxy-multisite
70ac3c01b tests - fix missing arg no_copy_container
07a962466 tests - inline configs for docker/autoconf
87c57c67c tests - refactoring on the road, still needs some work
8fb03a317 tests - on the road of refactoring
dc8570ca8 tests - add status type
151378570 tests - refactor mattermost example
4e7d795ea tests - support custom cleanup-kubernetes.sh script and refactor some k8s tests with helm charts
cc9d228ab update compose version to 3.3 for swarm examples so config directive is supported
181957147 remove trailing space in DockerController and add missing bunkerweb prefix for autoconf-configs example
324feb593 autoconf - fix missing configs update for DockerController
22398d567 cors - fix typos in autoconf.yml
5119c8da7 gogs - missing setting for autoconf
0fca93e3e tests - sleep 30s between autoconf tests
17e14f4d5 tests - fix wildcard with sudo
3a46d318e tests - remove only content of subfolders
4eff0c3f9 tests - fix behind reverse proxy url
bf58a17b8 gogs - add setup-docker
08d8bc880 tests - remove whole subfolders in bw-data
b38f7c54e tests - add kubernetes-configs and fix missing s in urls
06f7fb096 tests - fix docker-configs (again)
b7101eb47 tests - fix docker-configs
a08b51bd0 tests - fix gogs expected string
b2bcfb8c7 tests - fix hardened expected string
d3014b42f examples - refactoring in progress
7eae49719 tests - prevent default rate limit
be21b3933 tests - fix sudo cp again
7bb881aa3 tests - fix rename
a607bd67c tests - replace python cp with sudo cp
6d06a32cc tests - list example_data as root
c5526ef2f Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
75b2ae868 tests - fix example_data path for docker
72965e230 Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
201e2cf0f Correction logs Linux
203397444 tests - init cors and fix example_data path for autoconf
d8c8ceab3 tests - fix LinuxTest setup and init work on integrating examples with the new test system
c02d888b3 examples - rename setup scripts for drupal
9a9f9ebf3 examples - fix linux-setup.sh for drupal
6e381ee02 tests - disable copying bw-data files for k8s and swarm tests
0ee09d47d tests - force removing directories with AutoconfTest
da2f6cb4f tests - force removing directories with DockerTest
d1d2e51a3 cleanup tests directory and init tests refactoring for drupal
c14b08faa examples - edit authelia configuration.yml file for Linux integration
80fee58e4 bunkernet - add default api server in jobs
37690a7a4 configs - enable default server if TEMP_NGINX is set
b3fdd109a linux - fix wrong variables.env path when running jobs once
193449512 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
f5ede7897 examples - fix authelia variables.env
767a7ab31 Adjustements doc Ansible/Linux
81b370366 wait until Linux test container is initialized and fix variables.env for authelia
44fbf0315 authelia - extract tarball to tmp
02db54ce0 examples - follow redirect when downloading authelia for linux
14d61854e add sudo to linux dependencies and curl to linux test images
6f35561fa tests - fix cp and end_fun for LinuxTest
2505bc015 tests - add linux to authelia kinds
b1df38374 tests - temp enable docker
410212b15 tests - run docker cp in a shell
f2ac7bca7 tests - fix typo in LinuxTest
a0948923e tests - copy local files for Linux tests
458ebe07f tests - dynamically find deb/rpm name
2205043e7 tests - fix LinuxTest.docker_exec()
d370f1b05 tests - add missing chmod import to LinuxTest
bf6dd93aa tests - replace rmdir with rmtree for LinuxTest
773517311 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
850a8057c ignore CVE-2022-30065 until we have a fix
e6271ccd6 Final proofreading FPM
f0ddb8328 docker - fix CVE-2022-30065 for autoconf
f260bcf23 Small adjustements
fa319ec10 tests - fix argv len check
029406453 tests - fix typo in LinuxTest
f47ab0adc tests - integrated LinuxTest
eca010231 FPM Linux/Ansible Doc
4d61e96e4 tests - LinuxTest on the road
c9c730346 tests - fix linux.sh
58a82ddcd tests - copy Linux packages to local directory
8062d043c tests - fix Linux dockerfile path
0a09f8a75 fix CVE-2022-29458
bb425bc36 tests - init work on Linux tests
aa729daeb examples - remove double $ from kubernetes authelia
7edd55544 fix k8s example for authelia and ignore error code when doing debug_fail for k8s tests
0fd77a809 examples - fix typo in kubernetes authelia
720f36f47 tests - init kubernetes refactoring
ea98b453d tests - use unique domains for swarm tests
4bd0129e4 tests - also edit root domain
6e47b2991 tests - add sleep in the end of SwarmTest.init()
abc500a4d tests - fix domains for SwarmTest
378047794 examples - fix authelia swarm compose version
4a5e50005 fix typo in SwarmTest and fix authelia swarm example
3b73c50c3 tests - ignore docker stack ps return code
ba6fddb56 tests - init swarm refactoring
9ecd2bd98 examples - add missing network aliases to authelia autoconf
7bbf77b7a fix authelia autoconf example and debug fail before cleaning tests
f02fe1ed9 tests - remove only subdirectory on new tests and add cleanup when test failed
0383cadd6 tests - fix compose filename for autoconf tests
aeba0ba72 tests - add missing AutoconfTest object
67608a463 tests - add missing decode
8b3b1291c tests - from replace/rename functions to class method
1c5c81d2c tests - add missing import
fa2d52d80 tests - remove useless log and return boolean from Test.end
68bf5ef85 tests - remove wrong cleanup call
424b37bec tests - change permissions as root
2780ee190 tests - add debug_fail function
07b0bb38d docker - fix CVE-2022-29187 for ui and autoconf
b47c2696e docker - fix CVE-2022-29187
fdb8ca3ca tests - replace internal _log with logger.log
eb59a9377 tests - init refactoring for autoconf
2e0542dbb tests - ignore case when performing test
0a996bf12 tests - replace match with search
48a6ba632 tests - fix rm command
991ddb9eb tests - remove file as root
1e1d7d7f1 tests - replace variable typo in get request
ebc94f515 tests - add missing char when replacing Docker volumes
e4f6017d6 tests - replace example domains with test domains
dfc5f2e79 tests - export runner env
c07f85a42 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
ab57be657 tests - fix missing copytree import and self parameter
5f79aea4b fpm single/multiple docker&autoconf
cc760a646 tests - fix datetime import again
db2c35cb3 tests - fix datetime import
28f1b4f73 tests - rename variable
e1183a0d4 fix tests.json for authelia and exit when test exception occurs
16573a397 tests - do not run as root
de8cee491 tests - add missing imports
56afbd457 tests - run as root
590ad46cd tests - fix missing chmod import and Test.init log call
8d580bc16 tests - fix missing Test import
a91fc7307 tests - fix indent and isfile import
773a37d45 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
b64af8526 tests - DockerTest on the road
0d3e1e2a1 Update the plugins docs
85217b57c Fix a typo in the plugin page in the docs
ba75154d0 Add url_for function to custom plugins templates
c055ec7ec Fix duplication in plugins
2c4efe9d0 Add Plugin Pages feature
795dfc077 Add static map files
8b4b3f3b0 ansible docs
2e4758e94 tests - DockerTest improvement
c155227ec tests - init work on refactoring
dde185141 tests - increase timeout for magento
e62523d1d lua - use pcall with mmdb functions
658ab7504 docs - add ansible diagram
8d6397a6b Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
f5c86cc4e examples - add cors example
8760110fb Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
cc4f0b26a Quickstart Ansible and integration
7b769361a cors - init work on core plugin for CORS
97e607110 linux - rename bunkerweb-ui.env to ui.env
c3ee7929b docs - change target of the web UI demo link to blank
969a1e5d7 Merge branch 'dev' of github.com:bunkerity/bunkerweb into dev
5bf59c85d docs - replace web UI gif with YT video
430f665cd Merge branch 'dev' of https://github.com/bunkerity/bunkerweb into dev
5be21f9bf Adding www folder
afdd4de5a fix regex checks with *_CUSTOM_CONF_* setting, add doc about DENY_STATUS_CODE
5586b3733 misc - add DENY_HTTP_STATUS setting (403 or 444)
90e58f261 fix ui.env path for Linux integration and add docs for autoconf with rootless docker
a00607af2 docs - add instructions for podman
e880b7d59 docs - add infos about Docker in rootless mode
fc925ccb1 edit docs typo for UI and variable typo in autoconf
571422131 ui - fix CVE-2022-2097
287e763e0 autoconf - fix CVE-2022-2097
89f81140a container - fix CVE-2022-2097 (again)
a5c98f709 container - fix CVE-2022-2097
429214727 tests - fix data folder permissions (again)
6b1c5a93e tests - fix data folder permissions
fb85d1d2d autoconf - fix typo in variable
fdcbc8d36 custom conf - fix wrong path with multisite configs
b2bb93bcf examples - fix docker-configs again
2b59086f6 examples - fix docker-configs
e09d4901e containers - fix regex for *^CUSTOM_CONF_*
3594618e4 examples - fix typo in docker-configs (again)
e44311281 examples - fix typo in docker-configs
738e3b6e1 containers - use python hack to get env var values from string
5ac80a135 containers - replace compgen command with a python hack because compgen -e do not display var with dots
8f258486e fix multiple CVE with curl/libcurl and add autoconf/docker CUSTOM_CONF configs examples
2dc18a794 autoconf - support both configs from files and autoconf
e0a700506 autoconf - init support of custom variables using labels
385b7c413 docs - add docs for custom config using labels
e25babe3d custom conf - docker
a5457a164 custom conf - init setting support
0a1e8be71 examples - add missing setup.sh for mattermost
70c60f2a9 tests - add mattermost and radarr
f2dfb0172 examples - edit mattermost and add radarr
1a8eef2c8 fix autoconf import for IngressController and init work on mattermost example
cb106a112 autoconf - fix indent in IngressController
492648eeb autoconf - fix 410 exceptions (k8s)
1425ad0b4 docs - update settings list
f7290b2c7 v1.4.2 release
c0a8a356c linux - include bwcli in /usr/local/bin
40007b086 add slack to official plugins and init work on EXTERNAL_PLUGIN_URLS setting
6478512e4 scheduler - only send /data folder if apis are present
7aa6852d3 autoconf - fix missing scheduler in autoconf mode and missing apis list
7bba81b16 autoconf - fix wrong variable name for environment
5cb61380d autoconf - add missing call to ConfigCaller constructor
b2758cea7 autoconf - init work on _get_static_services method
a18d77aee autoconf - init work on static server configs as env var
4a699ef6c fix missing local Linux images import in ci/cd, and fix bug related to jobs in Linux integration
5690a58ab fix IFS checking permissions
e55928a37 fix bwcli commands when using Linux integration
0f2388b1f fix permissions check when file has space in the name
2b43a9cbf Merge branch 'dev' of https://github.com/bunkerity/bunkerized-nginx into dev
5ecf39ee0 Fix web-ui example with X-Script-Name
ad091493c examples - add various certbot-dns examples
a65606c36 examples - add certbot-dns-ovh
cd0d70b8f cache dev Linux images in ci/cd and disable site config generation for autoconf/swarm/k8s
e21a35017 plugins - support log_default() hook, same as log() but for default server
c563731e8 autoconf - fix overwrite configs file when using Docker autoconf
3c417d2ff linux - fix fedora NGINX version in Dockerfile, fix missing arg when building DEB/RPM and force NGINX version DEB deps
970082f92 linux - force NGINX version in RPM deps
4a2504c3b reflect ci/cd changes to dev
fd0c7b1e5 ci/cd - add automatic build for Linux images
1e6d62ce7 fix packagecloud yank name
1a4e21481 docs - edit supported architectures for prebuilt Docker images
bcaca6f03 v1.4.1 release
424214fd5 add changelog and add missing s in authentik url
82b42d5b9 Merge pull request #259 from Brawdunoir/master
db4e2cf26 update linux docs, minor fix in ingress example and update default value for bunkernet job
0ef82619b temp disable automatic tests for authentik and test automatic arm build on dedicated hardware
f2655e331 remove arm build again, fix proxy_*_timeout directives and add authelia example
d51ae1c1b Remove USE_ before authbasic plugin settings
cd0438b8c support REVERSE_PROXY_*_TIMEOUT settings, remove useless push in CI/CD and try to build arm on GH runners
f9a042526 add docs about compiling BW from source on Linux, add docs about packages pinning on Linux and fix regex for REVERSE_PROXY_AUTH_REQUEST and REVERSE_PROXY_AUTH_REQUEST_SIGNIN_URL
15ac64b05 let's encrypt - fix bug when AUTOCONF_MODE=yes
e0f8895e9 init support for auth_request and add authentik example
e85229835 don't send local IP to BunkerNet on default server, fix certbot new when MULTISITE=no and fix unknown reason in get_reason
972a284ef docker - drop support for prebuilt arm images
5258d8e58 docs - edit linux install procedure
acb4bea97 reflect CI/CD changes for master pushes
42067e864 GHA - temp disable armv7 build until we have a fix for cryptography dependency
217bddabf GHA - different caches for armv7 and armv8 images
c5fba1367 fix GHA typos
1b21f9eac fix UI tag in GHA jobs
389e05094 fix links in docs and change cache location for GHA jobs
05a89c303 fix registry URL in GHA jobs
a0ed8a27e add debug flag to GHA buildx steps
d0ac5e305 update GHA actions version
b16f8f11a update GHA actions version
a23ed06e6 fix typo in GHA jobs
6b9be078b refactoring of GHA jobs
8e198ed82 linux - fix documentation link in systemd unit files
c3b527afe actions - fix RPMs path
972e5471d actions - fix linux deb/rpm generation
b246c6d7e fix wrong branch name in actions and image name for linux tests
b78fd5542 fix freetype CVE
945241339 actions - rename main branch to master
1af2264fa temp stop push to private repo
6f28708c1 docs - add missing setting
a9f886804 bunkerweb 1.4.0
3a078326c Merge pull request #199 from Myzel394/patch-1
d43b82b75 remote API - only do action if 403
3850cacb9 prepare for v1.3.2
c00c7f46a lua - verify certs when doing HTTPS requests
163af4a49 prepare for v1.3.2
98e85eb99 docs - update security tuning sections : distributed blacklist and request limit
2e63bb025 docs - reflect kubernetes/swarm changes into the doc
6546a0edb disable country ban if IP is local, update default values of PERMISSIONS_POLICY and FEATURE_POLICY, upgrade archlinux packages before testing
ab0038174 ui - fix ROOT_FOLDER bug in serve-files.conf
9f7097de0 request limit - fix some LUA code
24d6337a5 limit req - multiple url support
bfb5319c1 limit req - add burst and delay parameters
4c77a1482 use annotations as env var in Ingress definition, fix cidr parsing for reserved ips, fix missing empty when job is external, fix ping check for remote api and init work hour/day support for request limit
4e45fa387 integrations - acme without shared folder when using k8s/swarm
a9a26b82d fixed typo
00d91dcaa jobs - move certbot hooks to python
650ad7ea4 integrations - fix missing acme folder when using Swarm or Kubernetes
7045c0c2b jobs - fix encoding error on CentOS
f0f432487 remote API - ban IP from distributed DB
fdc02be05 remote API - basic send of bad IPs
fb799765a jobs - fix str/bytes hell
d53f02b5b api - client side (untested)
7b9722fac jobs - add remote API
31ed4ff83 centos - update ca-certificates in install script
bc5f3ee88 fix CVEs and add init to Debian test image
a6b21aae8 fix typo in settings.json, bump Debian to bullseyes, init support of Arch Linux
64aa9c253 init work remote API
5d94cc8f4 docs - init changes about storageless
e7ee21cbb antibot - fix path for templates and data
a0f8cbdac antibot - fix LUA typo in recaptcha mode
178d7a684 Merge pull request #182 from Nakinox/patch-2
ca81535bb swarm/k8s - less storage, more API
062fa3e78 integration - continue work on storageless config for k8s and swarm
95f2d2af9 Update docker-compose.yml
e55dff812 api - init work on storageless configuration
f0f1c79d4 v1.3.1 release
3d2f5e238 conf - add REVERSE_PROXY_KEEPALIVE
b079c99fb Merge branch 'patch-15' of github.com:thelittlefireman/bunkerized-nginx into keepalive
2e403c6eb config - add CUSTOM_HEADER
f75a05584 config - add REVERSE_PROXY_BUFFERING
148edf681 tests - add github token to trivy scanner
a19d8aa04 Merge pull request #180 from vepito/vepito-patch-1
480cff86b Merge pull request #179 from thelittlefireman/patch-16
35df3423d missing blank line
29f4069de switch the use cases
72e438459 Fix typo related to non-HTTP configuration
a4a264773 jobs - fix docker reload and only do cron jobs when necessary
892e53369 Missmatch in docs with modsec folder
a05614160 deps - use ModSecurity v3.0.4 instead of v3.0.5 to avoid memory leak
0772a9ba8 docs - edit badge version
33e0ffd5b Merge branch 'master' into dev
4cb3e089e linux - git SHA1 commit in install.sh
8808f161c docs - dev to master links and VERSION upgrade
1c60ec980 tests - fix volume wait with linux tests
b13ff3456 add REDIRECT_TO_REQUEST_URI variable and edit environment variables docs
58f2926e9 docs - various examples fixes
9de628f3e Missing proxy_set_header for keep alive
6cc1abc89 Allow keep alive connection when ws is off
a824e1568 linux - rename cron
fd52bb7c8 linux - fix cron jobs
0938b20eb UI - use sudo for Linux integration
b948e08bd UI - use systemctl on Linux
fde14d162 linux - fix unknown scheme error and do nginx reload as root in UI
8a4eb3f2a remove .site files (gen), uninstall remove folder at the end (linux) and run jobs when reloading local instances (UI)
2a0b84074 ui - fix bug when Docker is used but Swarm is disabled, add jobs from API /reload and fix docker-compose doc
aec22d1a8 ui - edit docs and fix CSRF
028fc61b4 docs - add dns_resolvers and permissions to Linux
a903960b4 docs - fix missing subfolder in Linux quickstart guide
a28f06f08 linux - run temp nginx to solve let's encrypt challenges
6c8bc6b34 tests - fix Linux systemd bug when writing to /tmp folder
2b3b4a5c3 linux - systemd support
57e4247ea linux - systemd unit file
f9d4e9089 docs - edit k8s php service port and append suffix to hosts
4f024ec56 docs - add DNS_RESOLVERS for k8s integration
bc46fc3d4 append suffix to ingress hosts
0be1da18a remove old conf before generation, dynamic DNS for PHP and reverse proxy and swarm fixes in quickstart guide
3cedc0ae1 quickstart guide fixes
f1d5c07cc autoconf - various kubernetes fixes
c9a6b6c27 autoconf - fixed infinite lock
b199464a7 various bug fixes related to Swarm integration
4a9d64d9d add favicon to web UI and fix some tech docs
31536a3fe linux - reload as root
7b47c7304 examples - minor fixes in architecture images
83e7ce9cd examples - polishing before next release
0ad5159a3 docs - add changelog for next version
6240d8e28 ui - read variables.env when Linux is used
2f80f64dd docs - last polish
e98da9b63 docs polishing and fix install.sh gpg --verify
d9f770696 docs - web UI
75f299978 docs - special folders
ef34b2cec docs quickstart / multisite
9b9110214 docs - quickstart guide / php
9e2a8070e docs - quickstart guide / reverse proxy
733136ac1 docs - init quickstart
fa172ce5a docs - linux integration
f6a9184ae docs - k8s integration
d37dc2b62 docs - swarm integration
f7c115edf docs - add autoconf doc to Docker section
dfbb09136 docs - init integrations/Docker
8e4a65fec fix global.env generation and add web UI gif to README
0573ba7b5 ui - centering things without breaking sticky navbar and menu
bcd421de0 ui - various bug fixes more or less related to UI
2ec28c79c docs - fix README toc
fec60a4b1 ui - minor styling fixes
dd7d1a2c7 ui - fix example, subpath behind reverse proxy and add socket proxy rights for swarm
0c1883472 docs - edit kubernetes overview image and add configuration section on the readme
4e6eab794 docs - fix wrong swarm image
b23135b66 docs - add docker and kubernetes images
ace9be397 docs - add autoconf and swarm images
8958e5107 docs - add overview image
b2cfc15c2 security - add security policy
94bef079a examples - add architecture images
50266c228 examples - add the last missing README.md stubs
22e2fe869 examples improvement - added some README.md stubs
55186bbef examples improvement - hardened, joomla, kubernetes, load-balancer and moodle
d8286ced7 examples improvement - certbot cloudflare and wildcard, clamav, crowdsec, ghost and gogs
44de2253d examples improvement - traefik alternative, autoconf reverse proxy and basic website
6d73fbded examples - update authelia and autoconf-php
b6809266a autoconf - let's encrypt support for ingress controller
4e178b474 autoconf - basic ingress controller support for kubernetes
021147f9d autoconf - fix wait and redis
5a26d06c8 autoconf - fix infinite lock and honor DOCKER_HOST env var
bc01427de ignore CVE-2021-36159 and redirect job logs as root when using autoconf
652614f41 autoconf - use DNS for Swarm instances discovery
24d9cce82 autoconf - various bug fixes in Swarm mode
f866ef632 autoconf - minor fixes, prepare Swarm testing
1a32e7c02 autoconf - various bug fixes with DockerController
7180378d0 autoconf - init Config refactoring
6e66571fb various cleaning
f44e41ced jobs - lock and reload management
26db144df autoconf refactoring and fix CVE-2021-36159
a68ad53c3 autoconf - controller classes
01bba1d3f autoconf - init refactoring before k8s integration
059707443 k8s - init work on parsing ingress rules, helpers to setup on k8s, basic examples
bc3c17a2f examples - init k8s example
556836b49 autoconf - init annotations parser for k8s
22612f175 minor edit on Linux tests and init work on k8s API
50c279617 jobs - improved log and reload management
ef8969e2c certbot - add USE_LETS_ENCRYPT_STAGING=yes/no env var for using staging or production servers of let's encrypt
0dc2a5ec2 edit visibility of Job members and integration of a generic checker for nginx
9a207dfdc fix missing import in generator, expand networks to ips in jobs and init work on a generic checker with shared dict and redis support
a60fbbb5b hotfix - fix CVE-2021-33560
a1b9010d9 pull v1.2.8 fixes when applicable
3178545c2 v1.2.8 release
36b8760d4 resolve bugs on the stable version
8bb6676f5 settings - fix PHP_* again
4234f82c0 settings - edit EMAIL_LETS_ENCRYPT regex
b99fb27df fix missing parameter when calling reload in autoconf and edit REMOTE_PHP_PATH regex
876fcd181 conf - add WORKER_PROCESSES
26dc79615 jobs - fix line edit
280d18986 jobs - avoid reload when not necessary
5f845680f jobs - edit referrers and user-agents data and init work on autoconf integration
d12369c90 jobs - various bugs fixed and old files removed
366e39f59 jobs - SelfSignedCert, runner and reloader
71741b2d3 jobs - cache management
2fca4cd01 jobs - logging and error management
fccf14627 jobs - python stubs
b3684efaf jobs - init work on refactoring
82548378a crowdsec - move as external plugin
b926b0db6 examples - use example.com instead of website.com
6713f56ec linux - fix centos install
2b923c05c compile and install LUA 5.1.5 to /opt/bunkerized-nginx/deps and introduced REDIRECT_TO feature
71cf3cf5c use local sources when building Docker image, add LOCAL_PHP and LOCAL_PHP_REMOTE to settings.json and fix pip bug related to removed working directory
8e3dbf1c7 fixed some fedora bugs, support LOCAL_PHP and LOCAL_PHP_PATH and sample variables.env
49ada6a8c linux - init work on fedora support
947e86f7c linux - uninstall script
a12561a85 remove useless nginx-keys folder and add lua_package_cpath to http conf
6b19bd026 deps - add cjson LUA files to deps folder
6738b28b9 deps - move dependencies to dedicated /opt/bunkerized-nginx/deps folder to avoid messing with the system
010c0fd6d rename gen/requirements.py to requirements.txt, add git/bash to Docker deps and fix typos in README
ecf30a71f deps - init work on single install script
ffc4fc950 deps - manual compile/install of libmaxmind and upgrade lua-resty-core
b9955699b Merge pull request #152 from thelittlefireman/patch-11
860fd1ace Upgrade desps
eb5d13fb8 Upgrade lua-nginx module to 0.10.20
ca41987cd Upgrade corerules to 3.3.0 & modsecurity to 3.0.5
3af1b397f UI - digging bugs from services, still some work to do
72a09eac6 UI - add CSRF protection
0d3f7d392 UI - admin authentication and bootstrap update
6be082e0a UI - init work on admin account
4947796c9 UI - fix instances bugs
ba197dfa4 UI - bind gunicorn to 127.0.0.1/0.0.0.0:5000
4dd1ff847 UI - copy from helpers, systemd service and instances page update
f771ec43f ui - init Instances class to support Linux and API for Docker/Swarm
e241b0c93 logs - move everything from /var/log to /var/log/nginx
d03a1a6e3 linux - add jobs.log
2c9c9fb62 linux - run master process as root
deb28c599 autoconf - fix folders
2ea7331da jobs - disable post-jobs when SWARM_MODE=yes on SIGHUP
92ee40819 whitelist - fix /.well-known/acme-challenge whitelist for let's encrypt
2ccfb26e8 docker - fix CVE-2021-33560
70f9f8417 templates - add missing new line when necessary
c4aef1d60 authelia - choose portal or auth basic mode
a385183d8 authelia - various fixes
cec47f3a7 body injection feature and add authelia to documentation
c894c8370 authelia - add variables to settings.json
f73b088f7 authelia - initial work
130c6752d Merge pull request #148 from aFresquetIntech/dev
f97ea6785 Create .env
850429986 Correction
4a8da40cf reverse-proxy-zammad
0114c7b09 examples - edit basic PHP
bebe89afb linux - edit path for default errors, ignore comments in variables.env, install/prepare certbot
b2cceb608 linux - fix centos
37f5e4ed7 linux - fixed debian/ubuntu but still some work needed on centos
98568a57c linux - fix /var/log and typo in daemon directive
499192287 linux - fix daemon directive and rights on /etc/nginx
bcb8acc36 linux - add RX permissions to /opt
a9279053a linux - add executable right to gen/main.py
60057a17e linux - fix tests docker cp and pass single -c argument to su
d0366fcc0 linux - started work on bunkerized-nginx command
b448d91ca actions - fix centos test and docker image name when pushing
e309ce6fd docker - fix permissions on /opt
37090dc66 actions - fix manifest error with buildx and load
6bb6facd8 add load: true when autobuilding images and move from /bin/sh to /bin/bash
a1fcbd4b8 fix actions and configure
09a2a4f9e github actions refactoring
1e02368e8 linux/docker - common /opt/bunkerized-nginx folder
bbb5134a3 fix configure arguments and CRS include
b0f93fb84 fix Dockerfile again
c892f037d fix Dockerfile
731c0f61d linux - init work on installer
93543d396 Linux - use the same dependencies script for Docker
5ec9e6ab4 linux - CentOS 7 install
cc0d0af8d linux - ubuntu installer
43d2097d1 linux - nginx install on Debian
f880e5e2a linux - continued work on install helpers for Debian
9636013f5 linux - started work on installer
15bdb076c hotfix - fix docs get_git_branch
d62c4f466 v1.2.7 release
ad52ef326 autoconf - prevent race condition by checking health state
3bd3b6fd7 Merge pull request #145 from thelittlefireman/patch-10
e41acc20c Upgrade ModSecurity-nginx to v1.0.2
3c721dc2a add HEALTHCHECK to Dockerfile and append 10.0.0.0/8 to DNSBL whitelist
491d879fe jobs - cleaning the mess when using autoconf without swarm mode
52534510e fix bug when AUTO_LETS_ENCRYPT=yes and certbot can't resolve challenges
2c7337576 jobs - fix syntax error
9e4961ccb docs - rename sitemap to bypass rtd rewrite
01857d8ac gen - display the reason when ignoring a variable
ab9f9e0a4 jobs - fix jobs when MULTISITE=yes
29dc64ca3 actions - add Docker cache to speedup auto build on the dev branch
b5cd4e037 docker - build and push images from GitHub actions because of future DockerHub restrictions on autobuild
16101144c self-signed cert - fix bugs
95510e6e1 settings - add underscore to CUSTOM_HTTPS_CERT/KEY regex
dd5890e76 geoip - fix bug when using GeoIP
c3a437fa8 docs - rename the sitemap to avoid conflicts ?
518ddd323 docs - custom robots.txt
177a82ee6 docs - automated sitemap.yml
39db7b368 v1.2.6 release
9442e5914 jobs - fix jobs in Swarm mode
fcc6b3b5e various bug fixes related to Swarm
678ad70b0 docs, various fixes and certbot-cloudflare example
e8f5db0b2 docs - add plugins system
8295f6aeb plugins - clamav example
388fc1a0e plugins - started basic plugin system
62217a321 add contributing guidelines and license
53e433b1a readme - replace some badges
f640157b1 Merge pull request #138 from bunkerity/feature-request-template
d646f3e5b Update issue templates
4b31d005e crowdsec and generator fixes
d2135c19c docs - road to v1.2.6
8cda1baf7 fix web ui multiple variables and add default error pages
445032406 dnsbl - disable checks when IP is local
74fb01536 web UI - init work on using docker-socket-proxy
ee178de6a web ui - mostly finished templating integration (needs some testing)
7323525b6 ui - show only multisite vars for settings
82e47f147 ui - Dockerfile fixes and missing get_config function
2db967ad1 templating - road to web ui
1d96620ae templating - init integration into web ui
99c259bf1 templating - prepare integration into ui
c7b81cfc1 various bug fixes related to HTTPS
dfce0c06d autoconf - fixing various bug when SWARM_MODE=yes
0f8e56a66 templating - fixing bugs with autoconf
f950abdc2 templating - started integration into autoconf
4a73ae819 various bug fixes on templates and nginx update to 1.20.1
e2f02ee91 templating - prepare integration for autoconf
a991b262e remove ClamAV because of GPL and started work on read-only filesystem
a8bc17e83 templating - started integration into docker image
ec19f9308 templating - added missing features in site templates
23aa05300 templating - auth basic support
289ad106c templating - multisite support
bbc5bbc9e templating - fix some site templates
633a07686 templating - init work on site templates
996c45df4 templating - init work on global templates
801530baf templating - road to full jinja2 templates
c65dda391 templating - init work on templating with jinja2
ea891969c templating - updated settings.json with global settings
698ae17c4 templating - init work on generic settings management
664563284 antibot - basic pow with javascript
16e5ede13 antibot - custom templates
8260746fe logs/lua - add logger tool
de560490d fix LUA array variables and add LOG_LEVEL to the troubleshooting section
96db3a450 log - add LOG_LEVEL variable
73543f4b0 hardening - add no-new-privileges
d9bb97be5 lua - move global vars from lua to site config (untested)
863283d09 started work on moving variables from .lua to nginx
600484b16 crowdsec - fix bugs and update example
7c6a13c54 examples - improve nextcloud example so it works with webdav clients
b3bb4ec40 remove unnecessary dependencies and update doc about certificate bundle
69f465720 examples - fix typo BAD_BEHAVIOR_STATUS_CODES
d02985d21 check permissions for missing volumes and add comment about permissions on examples
b0ca85ff7 v1.2.5 - performance improvement
2f115c444 Merge pull request #131 from bunkerity/issue-templates
7f15741ea Update issue templates
288b8eb85 docs improvement + road to v1.2.5
61c08fb97 docs - troubleshooting
01ef47a66 docs - security tuning improvement
71515a910 doc - volumes list
a33d0658c docs - road to a beautiful documentation
0b3ff6a9f bad behavior - move from fail2ban to pure lua
eb2d0d330 performance - rsyslog and fail2ban removing
5bcbb3863 doc - official document started
ca660b250 init work on official doc
3a34436cd add AquaeAtrae example for ROOT_SITE_SUBFOLDER
b1d03cd11 performance - move bad user-agents and referrers checks from nginx to LUA with caching
42c3fb874 add sandbox allow-downloads to the default value of CONTENT_SECURITY_POLICY
f1c043604 add missing backslash in the quickstart guide and update autoconf examples with the depends_on directive
fd61df205 performance - move external blacklists checks from nginx to LUA
009d6fb5a choose connection and nofile numbers, increase error_log level to get modsecurity rules, add MODSECURITY_SEC_AUDIT_ENGINE var
ba4185a42 jobs - fix automatic reload
70976d0fb fix user-agent not blocking and add documentation on bundle when USE_CUSTOM_HTTPS=yes
062a39c63 integrate AquaeAtrae work - add ROOT_SITE_SUBFOLDER
83841b290 jobs - edit adren work on external blacklists
10dc58cb6 Merge pull request #126 from adren/patch-6
668754686 Merge pull request #125 from adren/patch-5
84b1933f6 Merge pull request #124 from adren/patch-4
15f6d0a32 Merge pull request #123 from adren/patch-3
e628361a8 Merge pull request #122 from adren/patch-1
f8d71e067 improved way to generate user-agent file
02ae3b6bd change IFS before subshell
2fb0e7c47 deduplicate list of user-agents
9adcc2f1a more optimized way to generate map referrer file
7b98db4d1 improve the generation of blocking file (abusers)
ddb2b8591 improve generation of block file (Tor exit nodes)
da1a460a6 huge improvement to generate blocking file
07be62684 hotfix - fix API in autoconf swarm mode
3bb164395 hotfix - move API_WHITELIST_IP edit to lua.sh
bc2568a17 v1.2.4 - nginx 1.20.0 support
5ec74880d update README for v1.2.4
f84fd7c9a fix permissions issues for autoconf and fix volume for ghost example
6521d7a27 fix client cache so it works in combination with reverse proxy and examples update
813607fbc improve crowdsec example and disable modsec logging when not necessary
843644f80 log - replace some WARN tags from LUA logs with NOTICE to avoid confusion
19fa0eb25 log - print modsec_audit.log to make debugging easier
b4df28722 log - send logs to remote syslog server
5ce41edc0 api - whitelist IP/network for API
a3cfb50b4 example - fix certbot wildcard
25494acac example - wildcard certificate with certbot
a98dae1fb fix CVE-2021-20205 and examples update
1a7abab57 nginx 1.20.0 support
42b7a57f0 fix autoconf bug when removing config with multiple server name and increase default LIMIT_CONN_MAX for average website with HTTP2
02f9fbe5f autoconf - fix certbot bug when multiple server_name for one service
69fe06677 autoconf - fix bug when multiple server_name for one service
74417abc9 fixing bugs - run as GID 101 instead of 0, different permissions checks in swarm mode and disable including server confs in swarm mode
ba7524a41 fixed LUA bug
b55aafb99 finding the LUA bug
deeb7a76a Merge pull request #117 from thelittlefireman/patch-9
ee8aaa4e7 fix lua crash 2
605d59a45 Fix lua mistake
b85c991b6 bug fixes - /usr/local/lib/lua rights and syntax error in site-config
0d3658adf REVERSE_PROXY_HEADERS - use proxy_set_header instead of more_set_headers
0b22209c9 documentation - userns remap feature
e44a1f3e1 added the uri to limit_req_zone key to limit bruteforce attack on a specific resource instead of the whole service
aa614f82f print error when permissions are wrong on common volumes
c03d410b0 refactored whitelisting of user-agents
e190167bf CIDR support with whitelist/blacklist IP
31e72dce1 fix /usr/local/lib/lua rights and multiple server_name support with autoconf
b8105fc55 feature - whitelist URI
e73c10fd8 crowdsec - fix permissions on /usr/local/lib/lua and on /var/log files
a122a259c minor fix on AutoConf logs and auto disable etag with reverse proxy
7c4894d3b autoconf - fix remove event, generate config from nginx vars, more logs
533c2a103 fix sed script when writing site env
5611d544d remove reference to USE_PHP
397182f18 add link to twitter account
c5c5fb17b v1.2.3 - swarm support
017a7780f README update, default cron update and new parameters to ui
34d9db7a8 web ui - bug fixes
361c66ca6 fixed bugs with MULTISITE variables and swarm example
afc667885 road to v1.2.3 - fixing bugs
c40fb3317 road to swarm - automatic reload after jobs
93ad3c0b5 road to swarm - let's encrypt fix
ceed90488 road to swarm - still some mess to fix
b8027d2ba Merge pull request #102 from thelittlefireman/proxy_custom_headers
8d03a14a6 Merge pull request #103 from thelittlefireman/fix_truncated_3
d16f4517a Enhancement add custom proxy headers #9789ca91b3f Fix truncated variables (last commit)
6a714e2ec road to swarm - fix race condition on initial configuration
0d3da0353 prepare /www directory, fix log socket path and whitelist acme challenges path
33163f65b init work on disabling root processes
a2543384c road to swarm - add openssl to autoconf, fix api_uri in LUA, fix file rights
3591715f2 road to swarm - fixing things
95f7ca5b2 road to swarm support - needs a lot of testing
816fa47cb introducing SWARM_MODE env var
7756c2df3 Merge pull request #98 from mromanelli9/fix/readme
7509ec2f2 basic API to be used in swarm mode
6e93575e1 remove ALLOWALL from X_FRAME_OPTIONS options
ba4c97755 remove old anchor
781e4c8cb autoconf little work on swarm support
e04c783d1 autoconf - init work on swarm mode
e12b656bd Merge branch 'patch-7' of https://github.com/thelittlefireman/bunkerized-nginx into dev
cae05447d custom crontab values
4b58e2265 Merge branch 'patch-5' of https://github.com/thelittlefireman/bunkerized-nginx into dev
6b56e21a0 Merge branch 'whitelist_ua' of https://github.com/thelittlefireman/bunkerized-nginx into dev
544a09e8d Update lua-cs-bouncer
8386dd4a2 custom config outside server block
f052a2516 Merge branch 'pre_server_confs' of https://github.com/thelittlefireman/bunkerized-nginx into dev
43750f553 Merge pull request #73 from thelittlefireman/patch-4
9142afdb5 Merge pull request #72 from thelittlefireman/patch-3
66c4fed79 Fix env variable with space are truncated 2
f41846e9d Fix env variable with space are truncated
92cc705b9 Reduce memory usage : set cron tasks at different hours.
47fb3a05b Upgrade crowdsecurity/lua-cs-bouncer
5940f402c improve default tls security
d9ca275d5 Add before `server {}` config.
8353bd9c8 Allow to add a whitelist by site on user-agent
d902e2f29 Add last missing reverse proxy header
1a8b8043c Add LIMIT_CONN var to server.conf
65120a7e9 Add USE_CONN_LIMIT info to Readme.md
b093a4755 Add default values for LIMIT_CONN
73dbf03c9 add USE_LIMIT_CONN zone to global config
6ee746236 Add USE_LIMIT_CONN to site-config
fa935eb6e edit nginx.conf to add limit_conn
cf231e13c Add limit-conn.conf
d5d699252 v1.2.2 - web UI (beta)
50f95420b README update - road to v1.2.2
dc382c3e0 various fixes - autoconf process order, multisite config and examples
0026328f2 edit default FAIL2BAN_IGNOREIP subnets
9023ab5ae Merge pull request #67 from thelittlefireman/patch-2
124474ad6 Edit README.md to add FAIL2BAN_IGNOREIP
eac9c8f51 Prepare FAIL2BAN_IGNOREIP to avoid self blocking
1ee490de6 Prepare FAIL2BAN_IGNOREIP to avoid self blocking
825e6a747 crowdsec v1 integrated
09a984c86 started crowdsec v1 integration
fd7afa17b fix missing ';' in include
b9b7fdfcc Merge pull request #63 from thelittlefireman/patch-1
58e1d66bc UI - minor alert css fix
7026643f8 UI - fix missing MULTISITE env var when managing services
06f688fe9 fixed stop and reload operations
c65b78b1c UI - instances/services backend update (needs testing)
f9b9b9546 UI - introduced multiple config parameters (like reverse proxy) in frontend
b5fe6335c UI - instances backend started
951f3957f UI - default service values
0f520b891 UI - services backend started
569ad75c4 UI - config.json refactoring
bd7b6af66 UI - load config template from json
459bb8ea1 UI services modals and default CSP update (fix new tab links)
208b5acb3 UI - minor services list improvement
59b2fed41 UI - basic services list
a4871a915 Add missing proxy headers
026783f01 Fix missing reverse proxy headers
811585345 Fix missing proxy headers on site-config.sh
c5f283b00 UI - minor front update
03ce7a648 fix modsec double inclusion when MULTISITE=yes
3f7e2c54b JOBS - fixed some job script and right temp nginx reload
bb0f46d8a JOBS - fix job_log
c5b32dfc4 fix CVE-2020-1971 again
9a4f96ad1 fix CVE-2020-1971
f258426f5 JOBS - fallback to old conf in case reload failed
119e96361 JOBS - be more verbose about jobs failure/success
373988670 Merge pull request #54 from thelittlefireman/patch-4
2a956f2cdFix#5215a37a868 UI - minor UI improvement
3a3d52790 UI - basic read fixes
e6b5f460c UI - basic read from docker API
002e3ed2b security tests for autoconf and ui
7b55acbe8 web UI example and CVE-2020-8231 fix again
559b7835d ui - automated build
4ea01bd93 print some logs when blocking bots
a73891a3b fix CVE-2020-8231
26199f52c remove additional / in modsecurity include
5c3f94a84 edit reverse proxy var name in README
043fcdc13 autoconf - automated build
b86ded3d1 autoconf - multi arch Dockerfile
92569679b dynamic reload of nginx by sending SIGHUP
15e74e486 more work on standalone autoconf
fd0a6412d init work on standalone autoconf
419fdfc86 fix auth basic when MULTISITE=yes
0bc1f652b v1.2.1 - autoconf feature (beta)
6c7461e29 integrate thelittlefireman work
d01bc5e01 Merge branch 'patch-1' of https://github.com/thelittlefireman/bunkerized-nginx into dev
75c69c810 last fixes before next release ?
e26b8482a Add missing EMAIL_LETS_ENCRYPT parameter
f618c73e6 road to v1.2.1
78c1e5c67 examples - same domains for internal tests
481e10d3e reverse proxy - websocket example
aae2a7198 autoconf - php example
f3bf04e39 dirty fix to disable default server when MULTISITE=yes
36cbb927c autoconf - various fixes
95153dbc5 moved UA, referrer and country check after whitelist and blacklist check
26947179a moved UA and referrer check to LUA
88f27bfeb autoconf - reverse proxy example and pass default vars
3cc1615c4 fix user-agent script
8bacf722a Merge branch 'fix/variable-naming' of https://github.com/mromanelli9/bunkerized-nginx into dev
2bfc4b41f first work on automatic configuration
587d4a92e incorrect variable naming
c311d0c82 add crawler-detecter bad UA
0d03f49eb websocket support with reverse proxy
2112c306a custom log format
8f9dcc5ab last fix ?
2fe05d3fd fixing scripts again and again
db04c0345 fix referrers again
ed8bd902b fix referrers script
3a7aa5d9c block bad referrers
9ec9de6ca multiple lets encrypt certificates when MULTISITE=yes
791342cbe fix LUA DNS code when answers is nil
2f23671c3 fail2ban fix when MULTISITE=yes
e350a717f fix default DNS_RESOLVERS
e818acb0d prestashop example
b92f74ed9 dirty fix for CVE-2020-28928
9688e6650 check all vulnerabilities with trivy
700dfc018 v1.2.0 release
42e4298b5 readme update - v1.2.0 changes
813b42cfa php and nextcloud examples fix
58fcf0a72 added Permissions-Policy header
587918380 custom headers to remove
203259688 automatic trivy scan
eaf817d57 php config and examples fixes
dd7768c85 whitelist/blacklist country at LUA level to avoid SEO issues
fe1d724c9 country whitelist/blacklist
0635eb368 various bug fixes
fbf81c94b cached blacklists data
ed451877a examples update and multiple REVERSE_PROXY_* on single site
0f18e9c55 reverse proxy support via env vars
8f7cb5318 proxy caching support
60fbbc101 move some http directives to server
0f0593456 various fixes
8cdc155ac multisite examples and certbot renew fix
1abe1da89 brotli support
f18c054b4 gzip support
4dea1975e client caching
c2b05c463 fix BLOCK_COUNTRY bug and add support for ModSecurity custom confs when multisite=yes
2da51d92a multisite - bug fixes
bd7997497 autotest through github actions
e89e34a84 auto test fix
ff02878dd auto test setup
44b016be9 road to multi server block support
36c4f3e06 v1.1.2 - CrowdSec integration and custom ports
798f6c726 examples - nextcloud fix and tomcat
761c14a0b custom HTTP and HTTPS ports
4a07eca69 crowdsec integration
e1274a608 passbolt example
3ec81cd84 Fix broken line in README
95752ff0c v1.1.1 - TLS 1.2 support
8623510f8 https fix
95a76b11f peterkimzz integration and dhparam
b0e4740a7 [New Features] - Added "HTTPS_PROTOCOLS" environment value to enable to customize TLS version. default value is "TLSv1.3". (because TLSv1.2 sometimes needed) - READMD.md
e84360857 README update - v1.1.0
2f6866789 logrotate copytruncate
1d63838ee examples - fix port number
e4bdd4af5 examples - nextcloud fix and moodle
2c33463af renamed logrotate script
9ff210bed wordpress and nextcloud examples
0b7301886 install CRS by tag in compile.sh
e1356e3eb logrotate.conf update and some cleanup
34a0da444 logging fix again
022a653eb display fail2ban.log and logging bug fix
4c11a9125 automatic docker tags with VERSION
88b52478c automatic Secure flag on cookies
ce82e22db remove integrated PHP
397415211 antibot - check IP with sessions and recaptcha
68d798855 tor hidden service example
16eab0f63 README update
6a22f7711 load balancer example
222426854 Merge pull request #13 from FacundoAcevedo/patch-1
d63c57985 Fix typo in the link in the TOC
e19a7c693 run master nginx process as non-root user
7a8795883 dockerfile fix - compile
01095bd72 gpg fix and secure git clone
0e6729c62 check GPG signature of nginx sources
040b6a223 Merge branch 'patch-1' of https://github.com/fabianmoronzirfas/bunkerized-nginx into dev
5f62120e4 fix(typo): add missing »find«
e8503b9cc ARM build fix
676571e4a use nginx:stable-alpine as base image
34254a09e examples and DNS_RESOLVERS fix
81cff3648 readme update
e166b1fea awesome gif resized
f08bba8cc awesome gif
ccf439228 session secret fix
c1d44387b basic antibot feature through recaptcha v3
135126e3f readme fix
ac251b0f6 Merge branch 'master' of https://github.com/ZILosoft/bunkerized-nginx into dev
ac242c977 Update README.md
2909b7989 basic antibot feature through captcha
446ee3761 basic antibot using javascript
6e1c43c4c basic antibot feature through cookie
652d8ac97 fixed typo in manifest
de1952b5f README - toc update and title fix
16a458db2 README improvement
f27d80e0d various fixes and lua logging
fc3d911ff improved blacklist/whitelist/dnsbl with lua
ef7d842ff arm64v8 auto build and master manifest
0e5704983 manifest for automated builds
aaef37007 improved logging with rsyslog
6e3c2ddcc integrated ajarmoszuk work
919b418d5 Added the ability to self generate SSL certificates
fb1a0182e Added the ability to see Real IPs if Nginx is running under another proxy (such as Traefik).
2e0a8307d i386 fix again
181003efe i386 fix
fca7bb075 automatic builds
764038d40 README update
f4c43a214 block proxies and abusers
3a9afa47b Merge pull request #5 from ajarmoszuk/patch-1
2c12df3b9 update default req_limit values
2f967a9f4 Update entrypoint.sh
eba5f6280 req limit
44155b5d6 dnsbl ipairs fix
829c1c697 some fixes and README update
f3721a50d sitewide auth basic
b56e4e765 dnsbl feature
1654e913a lua support
3e5ca583c remote PHP-FPM support
bcd17dbea automatic geoip update
14ec9f3e6 logrotate and compile fixes
5b5e6e33a awesome logo
1aa1dcf50 logrotate support
f30a06d94 syslog integration and fail2ban improvement
cd19841ec readme - details about modsec include order
94b29a6ca fixed some include orders
bf605ce59 custom root folder and little fixes
b14b09ad5 default CSP update
4f5e5f013 readme improve
76bd069f2 php POST max size and custom HTTPS cert
1d6ab7275 http basic auth fix
472ec31cd readme fix
caa415e12 http basic auth
8561d47be create a customized image
4bede275f fix typo
efcf93710 inspectFile fix
ccaaa8b57 readme fix
b83111ad1 realip, minor fixes and README
a2be2e8ae improved README : format, modsec, fail2ban and clamav
48a0036d2 updated readme
bf0bef289 clamav support
193070b14 fail2ban support
716e54e59 custom http/server confs and better modsec customization
43403f69e disable default server
69ac95b29 block country and various fixes
ecf2de8b7 multiple let's encrypt domains
8427564f4 user-agents escape fix
c56bde4f0 fix certbot-renew.sh syntax
834afa132 http to https redirect
d5f8c7647 custom modules and write access
5bcdb0219 f**k markup ?
3233f3b76 fix readme
62eda8173 improved README
09e6b50e5 custom conf
5d16f6a8f fix README
1b5f6deb2 cookie flags and maxmind update
ea1dbc617 updated readme
0b703ea55 content security policy
1e642e2f1 initial readme
e90060ce6 initial work
70f849fbb Initial commit
REVERT: 205dac0e8 Change release version to v3.0.9
REVERT: 49c056126 CHANGES: wording update
REVERT: dbe107e28 Update some copyright notices
REVERT: 7b1cf0e99 Merge pull request #2890 from martinhsv/v3/master
REVERT: 264dd4831 Fix: possible segfault on reload if duplicate ip+CIDR in ip match list
REVERT: 49281b6c0 Merge pull request #2886 from martinhsv/v3/master
REVERT: db84d8cf7 Add some member varialbe inits in Transaction class
REVERT: 1feaa7d24 CHANGES entry for previous PR
REVERT: ca7040f71 Merge pull request #2876 from martinhsv/v3/master
REVERT: 5f632a5ed Minor updates to v3 issue template
REVERT: 3311dda0e Debug log: enhance message for SecRequestBodyNoFilesLimit
REVERT: 55d6aa94e Resolve memory leak (bison-generated position.filename)
REVERT: ea80d3166 Merge pull request #2864 from martinhsv/v3/master
REVERT: ec1232a69 Support equals sign in XPath expressions
REVERT: dabf79eec CHANGES entry for previous PR
REVERT: 860b1183a Merge pull request #2854 from airween/v3/logescape
REVERT: 6dd00be22 Refactorized multiple prototypes
REVERT: d63d8849a Remove previously removed fn proto from header
REVERT: cb2df476b Merge branch 'v3/master' of https://github.com/SpiderLabs/ModSecurity into v3/logescape
REVERT: 105c5909a Add more fields to encode filter: rev, ver and tag
REVERT: c7306d174 Extend utils::string::toHexIfNeeded() to encode '"' and '\' characters optionally
REVERT: 62ec4edc4 Regression tests: remove dependency on modsecurity.org
REVERT: 69545eade Remove some no-longer-used parser definitions
REVERT: 3b7ca3e44 Escape log field 'data' value
REVERT: 5dfc0a256 minor refactoring and CHANGES update
REVERT: fb01ad94e Minor change to satisfy cppcheck
REVERT: f037bd268 Merge pull request #2791 from wfjsw/feature/pcre2-jit
REVERT: 54ff1ea53 init m_pcje in the constructor of verify_cc.cc
REVERT: 37d3a20da fix
REVERT: 12e6e325d Merge pull request #2839 from martinhsv/v3/master
REVERT: 0c0e4a25c Merge branch 'v3/master' into v3/master
REVERT: 503804beb Add CHANGES entry for previous PR
REVERT: e56f53b71 Merge pull request #2596 from ffontaine/v3/master
REVERT: af860e2ee Support comments in ipMatchFromFile file via '#' token
REVERT: 1550e3017 add fallback for JIT_STACKLIMIT
REVERT: 07514f977 Add CHANGES entry for previous PR
REVERT: 40f7a5067 Merge pull request #2831 from airween/v3/filestmpcontentfix
REVERT: aa44c7b72 Fix FILES_TMP_CONTENT collection key naming mechanism
REVERT: 398e17423 Add CHANGES entry for previous PR
REVERT: 700a9e9ff Merge pull request #2806 from hughmcmaster/as_help_string
REVERT: 933daee34 Merge pull request #2828 from martinhsv/v3/master
REVERT: 791964a0e During configure, do not check for pcre if pcre2 specified
REVERT: f05f32230 Use AS_HELP_STRING instead of the obsolete AC_HELP_STRING macro
REVERT: de01b0273 Add CHANGES entry for previous commmit
REVERT: ec31e04a3 Merge pull request #2714 from hughmcmaster/libxml2
REVERT: d76c52775 build/libxml.m4: Check for libxml2 via pkg-config then xml2-config
REVERT: 82f75dc0c Remove now-unneeded cppcheck suppression
REVERT: 47fe75de3 Fix tests to match previous typo fix
REVERT: 222e09ea0 Fix typo in debug log text
REVERT: 5d2b86c1b Merge pull request #2801 from martinhsv/v3/master
REVERT: e9a7ba4a6 Fix two rule-reload memory leak issues
REVERT: 17f3bb0b3 Merge pull request #2800 from martinhsv/v3/master
REVERT: 53cf6eb6b Correct whitespace handling for Include directive
REVERT: 0840a29c3 Advance bison version to v3.7.6
REVERT: 8f06f9bd3 CHANGES: Preparing for next version
REVERT: 996c7e1e1 Change release version to v3.0.8
REVERT: de3a9b5aa Merge pull request #2796 from martinhsv/v3/master
REVERT: 622eb9e6c Adjust parser activation rules in modsecurity.conf-recommended
REVERT: d6c10885e Merge pull request #2795 from martinhsv/v3/master
REVERT: fa6e41857 Multipart parsing fixes and new MULTIPART_PART_HEADERS collection
REVERT: 651897346 remove jit stack
REVERT: 648cad380 Address some cppcheck complaints
REVERT: b0b459d3a Merge pull request #2707 from liudongmiao/v3-example
REVERT: 36a2231a7 Add CHANGES entry for previous commit
REVERT: f923838e4 Merge pull request #2761 from GetPageSpeed/v3/master
REVERT: af27018de Fix msc_transaction_cleanup function comment typo
REVERT: 8c409149c Merge pull request #2788 from lookat23/v3/master
REVERT: 0d81b636b feat: PCRE2 JIT
REVERT: 228218ae6 Fix the mismatch between comments and code in the msc_transaction_cleanup function
REVERT: 7b094ea84 Merge pull request #2785 from martinhsv/v3/master
REVERT: b41139acd Fix: MULTIPART_INVALID_PART connected to wrong internal variable
REVERT: 369002d70 Create SECURITY.md
REVERT: c3b7a7f4f Change some args from pass-by-value (satisfies cppcheck)
REVERT: d2a1080db Add CHANGES for previous commit
REVERT: 18012e572 Merge pull request #2758 from martinhsv/v3/master
REVERT: a41fc30db CHANGES: Preparing for next version
REVERT: 204908cf5 Prevent segfault for #2755
REVERT: 14c94e2eb Restore Unique_id to include random portion after timestamp
REVERT: 97550881f Add cppcheck suppressions
REVERT: 1bdd04740 Change release version to v3.0.7
REVERT: 841c06a9f Correct CHANGES entry for previous commit
REVERT: 0362af4db Move PCRE2 match block from member variable
REVERT: 770662c0d Add CHANGES entry for previous commit
REVERT: 8d8000132 Merge pull request #2738 from martinhsv/v3/master
REVERT: 76c0c864e Add CHANGES entry for previous commit
REVERT: 844e1bf6e Merge pull request #2727 from liudongmiao/patch-1
REVERT: 7b696d8c5 Add SecArgumentsLimit to modsecurity.conf-recommended
REVERT: 0b6bd39a5 Add CHANGES entry for previous merge
REVERT: 83c302e6a Merge pull request #2688 from ziollek/lmdb_single_env
REVERT: 82326ffe2 shift lmdb initialization to provider constructor which is called only once
REVERT: 00483e400 swtich singleton to thread safe version
REVERT: 606f5721c Change some parms to const reference (satisfies cppcheck)
REVERT: 0be89cc15 Correct CHANGES entry for previous merge
REVERT: 763db3f63 Merge pull request #2732 from martinhsv/v3/master
REVERT: f7f8a9827 Fix initcol error message wording
REVERT: 563fabebf Merge pull request #2731 from martinhsv/v3/master
REVERT: 6e56950cd Tolerate other parameters after boundary in multipart C-T
REVERT: 6b7f2b0d6 fix memory in transaction.cc when log REMOTE_USER
REVERT: 3975f0f8f Fix minor CHANGES typos
REVERT: 59531be2f Merge pull request #2723 from martinhsv/v3/master
REVERT: 1aa7616c1 Add DebugLog message for bad pattern in rx operator
REVERT: ced56c5b0 Merge pull request #2719 from SpiderLabs/v3/dev/pcre2_a
REVERT: f84614fe0 Support PCRE2
REVERT: a1980c841 fix argv in examples
REVERT: 89186b7e3 update lines for modsecurity.cc on supress list for static check
REVERT: 3b50b2634 remove destructor, close environment only once
REVERT: 1fa95ec2e set initialized flag, remove unnecessary semicolon
REVERT: 46f40899e Fix parallel lmdb readonly transactions
REVERT: 5519f6cfa Update CHANGES for SecRequestBodyNoFilesLimit impl
REVERT: f5efd9ab8 Merge pull request #2686 from SpiderLabs/v3/dev/issue_2670_a
REVERT: 4c526fc21 Support SecRequestBodyNoFilesLimit
REVERT: 6bd1c7764 Add exclusions due to newer cppcheck version
REVERT: 5106307cc Change one parm from pass-by-value to reference-to-const
REVERT: 378e31c79 CHANGES: Adds info about #2602
REVERT: d0813fec4 Merge pull request #2602 from LMDB/issue2601
REVERT: 4e37985b2 Update CHANGES file for recent commits
REVERT: b89c737ad Merge pull request #2677 from gleydsonsoares/loadFromUri_zap_duplicate_words
REVERT: 2cde1933a Merge pull request #2680 from SpiderLabs/v3/dev/issue_2606_a
REVERT: cc83a1bac Merge pull request #2673 from martinhsv/v3/master
REVERT: 2d51efae4 Add ctl:auditengine action support
REVERT: b052adf0b tweak loadFromUri: zap duplicate words in comment
REVERT: 3ee6e108d Fix multiMatch msg, etc, population in audit log
REVERT: cb80837e6 Remove old commented-out re: audit log, relevant
REVERT: ef1b8d8d9 Merge pull request #2667 from martinhsv/v3/master
REVERT: 1a965a49a Fix some name handling for ARGS_*NAMES: regex SecRuleUpdateTargetById, etc.
REVERT: 76ce6739b Correct previous CHANGES update
REVERT: 630b1e0a4 CHANGES: Adds info about #2635
REVERT: 2de14cb00 Merge pull request #2635 from Mesar-Ali/patch-1
REVERT: f82b98c04 Confusing variable name in setRequestBody method
REVERT: 52958fa73 Merge pull request #2661 from martinhsv/v3/master
REVERT: f34b49f66 Multipart names may include single quote if double-quote enclosed
REVERT: c072ac29e Merge pull request #2656 from martinhsv/v3/master
REVERT: 0275c8847 Add SecRequestBodyJsonDepthLimit to modsecurity.conf-recommended
REVERT: 19d50f4da Add a const to satisfy cppcheck
REVERT: 13e8be83c CHANGES: Preparing for next version
REVERT: c3d7f4b56 Change release version to v3.0.6
REVERT: d16c3250a Add a few cppcheck suppressions
REVERT: d8afc4029 Merge pull request #2642 from martinhsv/v3/master
REVERT: ac79c1c29 Support configurable limit on depth of JSON parsing
REVERT: 5aec781d3 Confusing variable name in setRequestBody method
REVERT: ec86b242e Update README.md
REVERT: a6e107484 Fix#2601 misuses of LMDB API
REVERT: d2b700d7a build/libmaxmind.m4: fix build with host-pkgconf
REVERT: 465db29b7 docs: correct project name
REVERT: 873a94a73 CHANGES: Preparing for a next version
REVERT: bf881a4ed Change release version to v3.0.5
REVERT: cd5fba897 Handle URI received with uri-fragment
REVERT: faad65d38 Merge pull request #2586 from martinhsv/v3/master
REVERT: bffd68e4d Add commented-out sample rule to engage JSON Processor for more subtypes
REVERT: 5a0ae73ba Update README.md
REVERT: 3bfe4b81a build: Fix pcre's JIT support detection was not working
REVERT: 662c05f89 build: Adding a new path while searching for liblua.
REVERT: a589f6b69 Build: using PKG-CONFIG in a new fashion
REVERT: 754daebfb Update README.md
REVERT: 65e7e474b fix missing parentheses in filename* parsing
REVERT: 7fccb0d22 Cosmetic: pleasing cppcheck
REVERT: 6fdba42c0 Cosmetics: Having cppcheck pleased
REVERT: 66ba7b065 Cosmetic: fix static warning
REVERT: 1e2ccc157 test: Fix optimization test
REVERT: 1376882f7 Fix typo
REVERT: 4127c1bf5 README: States the sponsor note
REVERT: a18d18a28 Revert "Adds hyperscan to the build matrix"
REVERT: 4cdcc1533 Revert "Adds suppor for HyperScan in the bulid system"
REVERT: a496865e9 Adds hyperscan to the build matrix
REVERT: 912704b6d Adds suppor for HyperScan in the bulid system
REVERT: 2e69ce6cc build: Fix curl include path
REVERT: 50fc347ed Fix rules dump
REVERT: 6ca028b6f Fix memory leak in rx operator when pattern includes macro
REVERT: 9764b1fb3 CHANGES: Fix entry for ARGS_NAMES
REVERT: 53d36ab63 Updates libInjection
REVERT: 102f4bdd9 Make the `configure` step more reliable
REVERT: fbea73120 Fix: FILES variable does not use multipart part name for key
REVERT: f1f2527c0 Using setenv instead of putenv on SetEnv action
REVERT: 03b3e472d cosmetics: Please static check
REVERT: e8bd2151f Having _NAMES, variables proxied
REVERT: dd458dedb github workflow: having bison from brew
REVERT: 3748d62f1 Changes copyright dates on the code
REVERT: 33f7b46bc Using GitHub Workflow instead of Travis
REVERT: b3cfd8881 Having Travis working again
REVERT: f948d637f Having the QA on GitHub workflow
REVERT: e6bdadeb6 tests: Prints test number on segfault
REVERT: 9b40a045b Cosmetics: fix some cppcheck complains to please QA
REVERT: 310cbf899 Fix the typo
REVERT: f18595f42 Makes regular expression selection on collections key case insensitive
REVERT: 560f81200 Adding DragonFlyBSD support.
REVERT: afefda53c Fix Path to projekt logo
REVERT: d72be1c47 Fix: Only delete Multipart tmp files after rules have run
REVERT: 1b7aa42c7 Issue-2423: Meta-actions like 'msg' should be applied at end of chain
REVERT: 2672db103 Add support for new operator rxGlobal
REVERT: 785958f9b Fix maxminddb link on FreeBSD
REVERT: 4b425850c Cosmetics: fix cppcheck warnings
REVERT: 8da787a39 Merge pull request #2424 from martinhsv/v3/master
REVERT: 8436c7899 Fix IP address logging in Section A
REVERT: 995f22b3c Having Bison 3.7.2
REVERT: 377fb723c Makes lua 5.1 workable again
REVERT: e9dce44f6 build: Minor fixies on Lua detection
REVERT: 9e6d8b7bb CHANGES: Adds support to lua 5.4
REVERT: 8c85b7836 Adds support to lua 5.4
REVERT: ae3ad5eaa cosmetics: Address some cppcheck complains
REVERT: 51d06d7a8 CHANGES: Adds info about #2378
REVERT: fe1238514 GeoIP: switch to GEOIP_MEMORY_CACHE from GEOIP_INDEX_CACHE
REVERT: 0eb3c123f Merge pull request #2348 from martinhsv/v3/master
REVERT: b9620c26a rx:exit after full match; fix TX population after unused group
REVERT: a1a8c0fda Merge pull request #2342 from martinhsv/v3/master
REVERT: 07ce43cce Correct CHANGES file entry for #2234
REVERT: a2be19d8e Fixing Typo
REVERT: f0f1c2b1a Merge pull request #2317 from nikolas/patch-3
REVERT: feda5b758 Merge pull request #2321 from nikolas/patch-4
REVERT: 45dec2068 readme update: Packing -> Packaging
REVERT: ba1ae16fc Fix typo in readme: GtiHub -> GitHub
REVERT: 3b1de9567 Merge pull request #2315 from nikolas/patch-1
REVERT: 733073998 fix typo in readme: rearchitechted -> rearchitected
REVERT: 7e0bc2691 Using performLogging function
REVERT: a1547eaa3 Regression tests: audit log compare support and test cases
REVERT: 7a48245ae Creates RuleUnconditional
REVERT: f63bd1a45 Moves Rule[WithActions|WithOperator] to their own files
REVERT: 8274be066 Refactoring: Having RuleMarker in a separated file
REVERT: bdedfd246 Refactoring: Renames RuleBase to Rule
REVERT: 59d426888 Refactoring: renames Rule to RuleWithOperator
REVERT: 8eb7b8fe6 Refactoring: Splits Rule into Rule and RuleWithActions
REVERT: 43f8aee6b Splits Rule class into: Rule, RuleBase, RuleMarker
REVERT: fda03c001 Yet another refactoring in Rule
REVERT: b66224853 Refactoring in Rule: Meaningful structures name
REVERT: 96849c07d Makes action name a shared pointer
REVERT: 9c526b364 Avoids copy on the transformation operation
REVERT: 8cfb289ce Lets reserve some memory for rule message
REVERT: a609249d6 Makes m_id a shared pointer
REVERT: 343b86c2a Makes m_fileName a shared pointer
REVERT: 14b2bd77a Makes m_uri_no_query_string_decoded a shared pointer
REVERT: d7d5cd2a9 Makes m_serverIpAddress a shared pointer
REVERT: 8df35dead Makes m_clientIpAddress a shared pointer
REVERT: 196adcae2 Removes reference counter for RulesSet
REVERT: f2f5c9c95 Removes reference counter from audit_log writer
REVERT: 4b88fdc51 Removes reference counter from log write agent
REVERT: 5ebfa5eac Removes referece count from audit logs
REVERT: 4b94fabef Removes reference count form Actions
REVERT: 6b0ad8049 Having default actions as o shared pointer
REVERT: 9d158611c Makes Rule a shared pointer
REVERT: f1d22f9b0 Fix version check
REVERT: 6367e6d5e Having a class Rules
REVERT: fb7714f20 Creates class RulesSetPhases
REVERT: 7a0ad4308 fuzz: minor adjustment on op_test
REVERT: 6de5c5984 Adds some operators to the fuzzing tests
REVERT: edd0a4bb2 Updates the fuzzing example
REVERT: 88789a577 parser: Using bison 3.5.2
REVERT: 1e26bf207 Revert "Creates the RulesSetPhases clas"
REVERT: 072e4edc5 Creates the RulesSetPhases clas
REVERT: 014adabda cppcheck: Adds rules_set_properties.cc supressions
REVERT: 6a742cdf7 Refactoring: Renames RulesProperties to RulesSetProperties
REVERT: bad5892b9 tests: Adds secargumentslimit.json to Makefile.am
REVERT: f57265a3e Support configurable limit on number of arguments processed
REVERT: 4e9ba44d0 build: Keep the installation of rules.h
REVERT: 4671608d5 cppcheck: more suppressions
REVERT: 22ec30773 Fix 7495675d540b3b3ccce681773205a4fe34daeb64
REVERT: b7e28c246 static: fix static checks
REVERT: 7495675d5 Refactoring: Renames Rules to RulesSet
REVERT: 0c3e8b6b5 parser: cosmetics: makes it easy to read
REVERT: 6a0df8ca5 parser: new bison version
REVERT: 136db3e58 Multipart Content-Disposition should allow filename* field
REVERT: 1b1fdc055 Fix rule-update-target exclusions for plain (non-regex) variables
REVERT: f7e4c1d9f CHANGES: Adds info about #2235
REVERT: e9bcaf441 test for uClinux in configure script
REVERT: fe84d2bae Fail when CANONICAL_HOST cannot be determined
REVERT: 2b09e7e01 CHANGES: Adds info about #2253
REVERT: f76a1a667 modsecurity.pc.in: add Libs.private
REVERT: 357c14000 Changens copyright year
REVERT: fe98ce4c7 Cosmetics: address cppcheck warnings
REVERT: 68ef2dece Cosmetics: address cppcheck warnings on src/variables
REVERT: ff9152ed7 Cosmetics: address cppcheck warnings on src/utils
REVERT: ff590174d Cosmetics: address cppcheck warnings on src/operators
REVERT: 9101a8ab1 Cosmetics: address cppcheck warnings on src/actions
REVERT: a6620604d build: fix yajl messages
REVERT: 4f13fecba cppcheck: make static analysis more pedantic
REVERT: cd9b8aa93 cppcheck: Organizes the suppression list
REVERT: 86a5f471a Cosmetics: fixed static analysis issues.
REVERT: 1fc584791 Travis: abusing -j
REVERT: 2e8833733 Test suite: improvements
REVERT: 7c6bf810e CHANGES: Preparing to 3.0.4+
REVERT: 753145fbd Change release version to v3.0.4
REVERT: 047016805 Fix: audit log data omitted when nolog,auditlog
REVERT: 6624a18a4 Fixed inspectFile operator does not pass FILES_TMPNAMES
REVERT: 05e9e7cf3 XML: Remove error messages from stderr
REVERT: 42a16c71c CHANGES: Adds info about #1645
REVERT: 7b1b00b5e filter comment or blank line for pmFromFile operator
REVERT: ea7cacf28 Additional adjustment to Cookie header parsing
REVERT: 6395fe07c Restore chained rule logging to be more like 2.9
REVERT: 038522ad9 Small fixes in log messages to help debugging
REVERT: b8160cce6 Fix Cookie header parsing issues
REVERT: 7ba77631f Replace Cookie parsing method
REVERT: 199a9db3e Fix nolog rules logging to part H
REVERT: 9cac167fa Fix argument key-value pair parsing cases
REVERT: 68c995ca9 Fix: audit log part for response body for JSON format to be E
REVERT: c41ab312f Updates test cases
REVERT: 01c7a2689 Fix test issue-1974
REVERT: d4dc3dbf2 Make sure m_rulesMessages is filled after successfull match
REVERT: 42da29fed Merge pull request #2155 from patros/v3/master
REVERT: 592927793 Avoid using NULL string (match) in Pm::evaluate
REVERT: beedddd6c Fix @pm lookup for possible matches on offset zero
REVERT: 1d552673a Correct minor README.md typo
REVERT: d5b93c101 Update README.md
REVERT: 341a5d01e CHANGES: Regex lookup on the key name instead of COLLECTION:key
REVERT: 2bdc5f9d0 Adds test case to cover issue #2005
REVERT: 74eee9330 CHANGES: Adds info about #2106
REVERT: 96d36afec Add Missing throw in Operator::instantiate
REVERT: 6ab464ab7 negative lookup on the key name instead of COLLECTION:key
REVERT: 47dd9c5df Refactoring on the VariableValue class
REVERT: cbd15ec13 CHANGES: Adds info about #2113, #2111
REVERT: c0142cf32 Changed compared variables of range id intervall in ruleRemoveById ctl action. #2111
REVERT: 9ebebfc83 Fix test case 1960
REVERT: b6995c528 test case: Adds test case for issue 1960
REVERT: f50700e9d CHANGES: Adds info about #1960
REVERT: 50abc072c Make block action execution dependent of the SecEngine status
REVERT: 1cc22966d CHANGES: Adds info on "Having body limits to respect ..."
REVERT: a4e848411 Having body limits to respect the rule engine state
REVERT: c7fe50e5b CHANGES: Adds info about #1872
REVERT: 20b90364f Adds test case for #1872
REVERT: 1b8d69da0 Fix dict element regular expression selection on SecRuleUpdateTargetByTag
REVERT: 547236231 Fix SecRuleUpdateTargetByTag with regular expressions
REVERT: b5823d4e0 CHANGES: Adds info about #2099, #2102
REVERT: 2c136a2d9 Adds test case for #2099 on the test case list
REVERT: 7a93bea8f Added some test cases related to #2099
REVERT: db298696f Adds missing check for runtime ctl:ruleRemoveByTag
REVERT: 7e8782d97 CHANGES: Adds info about #2063
REVERT: 86ce479b5 Adds new operator to check for data leakage of Austrian social security number
REVERT: 6d266fae8 fixes typo
REVERT: f752291af CHANGES: Adds info about #2057
REVERT: 49900eec9 Fix variables output in debug logs
REVERT: 25e444583 CHANGES: Adds info about #2059
REVERT: 75a5c8d33 correct typo validade in log output
REVERT: a0a99319a CHANGES: Adds info about #2068
REVERT: 4a3e9734e fix/minor: Error encoding hexa decimal
REVERT: 033942c92 CHANGES: Adds info about #2073
REVERT: 1acd87a80 Limit log variables to 200 characters
REVERT: 61c11251b parser: Fix filename
REVERT: 0669c2e64 parser: new bison version
REVERT: b57441838 regression: Using github instead of modsecurity.org for SecRemoteRules
REVERT: 4e76c6adf Renames namespace Variables to variables
REVERT: b9ed15022 Fix namespace utilization on seclang-parser.yy
REVERT: 6d5198b1a make check: Updates test cases list
REVERT: ccd90c51c Increment OVECCOUNT value for bigger regex's
REVERT: 44efae6cd CHANGES: Adds info about #2024
REVERT: a6e6bc2b5 Allow empty anchored variable to use
REVERT: b392a1ca3 CHANGES: Adds info about #2016
REVERT: 2d3fbbc56 Modified affected test cases, which checked wrong variables
REVERT: 17d79ed7b Fixed data collecting in multipart parsing
REVERT: ac61bf5fd CHANGES: Adds info about #2017
REVERT: 4b3e6328e Fixed validateByteRange parsing method
REVERT: 3dda0ea2c Adds a regression test strdup to valgrind suppressions list
REVERT: 2dff76826 Removes a memory leak on the JSON parser
REVERT: 145f2f35b tests: Updates secrules-language-tests
REVERT: f77db2cc2 CHANGES: dds info about #2011
REVERT: bd6a02d69 Fix test issue-1831.json on LMDB
REVERT: 37cf60b8d Fix use of deleted Regex copy constructor in LMDB code
REVERT: 79a24ef88 Enable LMDB in Travis CI configuration
REVERT: dc78c0e18 Fix: Extra whitespace in some configuration directives causing error
REVERT: df3c3f62b Cosmetics: coding style
REVERT: ad28de4f1 Refactor regex code
REVERT: e0a0fa05c CHANGES: Info on #2002
REVERT: ae0207634 Fixed buffer overflow in Utils::Md5::hexdigest()
REVERT: 3c1fba278 CHANGES: Adds info about #1990
REVERT: 7c19ffea6 Implemented merge_bodylimitaction_value() for BodyLimitAction
REVERT: 3c41751ed Implemented merge_ruleengine_value() for RuleEngine
REVERT: 161c25633 Implemented merge_boolean_value() for ConfigBoolean
REVERT: 2d11ff1a1 Implemented merge() method for ConfigInt, ConfigDouble, ConfigString
REVERT: 78b7fa4e2 Adds missing drop.h
REVERT: d00ea5111 Adds initial support to drop action
REVERT: ba4273b8e CHANGES: Adds info on #1978
REVERT: 9b24199a2 Complete merging of particular rule properties
REVERT: 428388369 CHANGES: Adds info on #1984
REVERT: 8af8cad90 Use of AC_CHECK_FILE prevents cross compilation.
REVERT: a9e9da869 CHANGES: Adds info on #1980
REVERT: 77854ed1b Fix inet addr handling on 64 bit big endian systems
REVERT: dccb5e9e5 GitHub: Adds issue template
REVERT: 1ecd97130 CHANGES: Updates issue #1973
REVERT: 0a85b599b Fix tests on FreeBSD
REVERT: e756dd039 README: Adds link to v2 repo
REVERT: 07330e53f CHANGES: Updates issue #1969
REVERT: 25bb1f1bc Changes ENV test case to read the default MODSECURTIY env var
REVERT: b736f0292 Regression: Sets MODSECURITY env var during the tests execution
REVERT: 407b6c0f4 Fix setenv action to strdup key=variable
REVERT: af137442d CHANGES: Adds @steven-j-wojcik to 0xb7c36 and 0x5ac20.
REVERT: d2b14de26 Allow 0 length JSON requests
REVERT: d29f2a898 CHANGES: Adds info about #1966
REVERT: 65e866cb3 Fix "make dist" target to include default configuration
REVERT: 2d3d56aa4 CHANGES: Adds info about #1949
REVERT: 3d2030426 Replaced log locking using mutex with fcntl lock
REVERT: 5a4ada39b CHANGES: Adds info about #1959
REVERT: 3b3004d24 Correct the usage of modsecurity::Phases::NUMBER_OF_PHASES
REVERT: ce3abf262 Adds support to multiple ranges in ctl:ruleRemoveById
REVERT: e712d30c5 Fix setvar to understand Rule variable in collections
REVERT: cbf2fe970 Adjust boundary test cases for the less strict parsing
REVERT: b638e523a Make the boundary check less strict as per RFC2046
REVERT: ecad8c6c7 Fix buffer size for utf8toUnicode transformation
REVERT: 454669ffe CHANGES: Preparing to 3.0.4
REVERT: 4e6e4243a Change release version to v3.0.3
REVERT: e4d6d61cf Adds Victor to the AUTHORS file
REVERT: 6cbcdd024 Fix libInjection version on configure summary
REVERT: 9ada0a28c Changes the default configuration to mimic v2 behavior on multipart
REVERT: 31c8d4c52 CHANGES: Adds info about #1943
REVERT: 9d80983e5 Fix on top of #1943 + adding test cases
REVERT: 39f4a5d7d Fix double macros bug
REVERT: 18cdffdbc Encapsulates int[N] in a class to avoid compilation issues
REVERT: e3b9f7c91 Fix SecUnicodeMapFile support
REVERT: 84ece3edc Add test case for SecUnicodeMap
REVERT: 065c2e67b Adds test case for #1850
REVERT: e1e8a01ed Override the default status code if not suitable to redirect action
REVERT: bfe917b6b parser: Fix the support for CRLF configuration files
REVERT: 3f0ea9097 Test case skeleton for #1941
REVERT: 662fe63a4 Add unicode.mapping file to v3/master branch
REVERT: b05901e8a Changes the regression test client to read the interception msg
REVERT: 1e5df5312 CHANGES: Adds info on 0xb7c36 and 0x5ac20
REVERT: 91daeee9f Only calling server log if the message is not disruptive
REVERT: 448897d29 Marking message as disruptive before generate log msg
REVERT: 973c1f102 Fix rule line number
REVERT: fa5f3784f Using shared_ptr instead of unique_ptr on rules exceptions
REVERT: e63344c3d CHANGES: Adds info on 0xb2840 and 0x3094d
REVERT: ef7f65db9 Changes debuglogs schema to avoid unecessary str allocation
REVERT: 23e0d35d2 Fix the SecUnicodeMapFile and SecUnicodeCodePage
REVERT: 3d83ed257 CHANGES: Adds info on 0xca270
REVERT: 69cd61439 Changes the timing to save the rule message
REVERT: 8088d6af7 Fix crash in msc_rules_add_file() when using disruptive action in child rule inside of chain
REVERT: 466a427ab CHANGES: Adds info on #1897
REVERT: ec1112c64 Fix memory leak in AuditLog::init()
REVERT: 8c549c65c CHANGES: Adds info on #1901
REVERT: b12a8f5c6 Fix RulesProperties::appendRules()
REVERT: f1da6dd29 CHANGES: Adds info on 0x3077c
REVERT: 8bda7c0a4 Fix RULE lookup in chained rules.
REVERT: 120108fd3 Adds support for /32 in @ipMatch cidr notation.
REVERT: a5a40a71a Makes matchedvars inline
REVERT: b58018e77 Fix multimatch behavior to match what we have on v2
REVERT: a47738ab0 CHANGES: Adds info about: 0x14316
REVERT: dba73f536 Using values after transformation at MATCHED_VARS
REVERT: 7c50fa7c0 Small fix on @detectXSS test case
REVERT: 85ecd190d Adds full support to UpdateActionById.
REVERT: 3e8e28da4 Refactoring on the RULE variable
REVERT: 554251bad Refactoring on the Rule class
REVERT: 74841779f Adds partial support to UpdateActionById
REVERT: 68398a51f CHANGES: adds info on #1922
REVERT: 004047ef6 Add correct C function prototypes for msc_init and msc_create_rule_set
REVERT: c1925a467 CHANGES: adds info on #1909 and #1185
REVERT: 20ef01d75 Allow LuaJIT 2.1 to be used
REVERT: 28f6f2201 Match m_id JSON log with RuleMessage and v2 format
REVERT: bc3d3f191 Adds support to setenv action
REVERT: 4dd281275 Adds new transaction constructor that accepts the transaction id as parameter.
REVERT: c721e101c Adds request IDs and URIs to the debug log
REVERT: 0e8cd767e CHANGES: Adds info about: 0x028e0 and 0x275a1
REVERT: cdf2da1a0 Adds test case related to issue #1725
REVERT: 98b9ae659 Having a better organization for Variables::
REVERT: ee50fea26 Handling key exceptions on the variable itself
REVERT: 0d53111cb CHANGES: Adds info about: #1859
REVERT: 5aa79c17f Add test cases for m.setvar in Lua scripts
REVERT: 6f458b520 Fix on top of jmx's m.setvar commit for USER collection in Lua scripts
REVERT: 45cdb0ed9 fix: function m.setvar not work in lua script
REVERT: c2bc69526 parser: Fix typo on SanitiseArgs
REVERT: 9c73c09ab parser: Updates the generated parser file
REVERT: a71987145 Fix matching condition and adjust test case
REVERT: 379f37009 Fix SecResponseBodyAccess and ctl:requestBodyAccess directives
REVERT: 5c048e3cc Explicitly include time.h to fix building the examples
REVERT: dce2fed31 Add exception to linker as OpenBSD doesn't like static
REVERT: 0c0b09ec5 Use glob.h when using OpenBSD
REVERT: d97688804 Fix parser to support GeoLookup with MaxMind
REVERT: 0a88e0237 Allow libMaxmind to work with Ubuntu PPA packages
REVERT: dfbff090b test case: Adds test case related to #1831
REVERT: 764a2e43f parser: Fix simple quote setvar in the end of the line.
REVERT: 738e32872 CHANGES: Adds info about: #1847
REVERT: 788b69642 Fix pc file
REVERT: 16ab99ce3 modsec_rules_check: uses the gnu `.la' instead of `.a' file
REVERT: d7b972635 good practices: Initialize variables before use it
REVERT: d302b99ec Adds test case for: #1812
REVERT: 4585216ae Adds more tests to REQUEST_BASENAME
REVERT: a85ca00a5 Fix utf-8 character encoding conversion
REVERT: 90197bdd9 CHANGES: Adds info about: #1807
REVERT: aa158ceef Set the correct variable (m_requestBodyType) and add test case
REVERT: f999f54ed Adds support for ctl:requestBodyProcessor=URLENCODED
REVERT: dc4382da5 CHANGES: fix contributor list on: #1818, #1820, #1810, #1808
REVERT: 0ac23a47c Add LUA compatibility for CentOS and try to use LuaJIT first if available
REVERT: 857bf9da5 Allow LuaJIT to be used
REVERT: 156527a6f CHANGES: Adds info about: #1814
REVERT: dee989844 Implement support for Lua 5.1
REVERT: eed6b5f86 CHANGES: Adds info about: #1818, #1820, #1810, #1808
REVERT: d810de916 #1818: Variable names must match fully, not partially; also revert to hash table lookup instead of linear search; add test case
REVERT: 65aa7ae5e Improves the performance while loading the rules
REVERT: 4e3a1f715 CHANGES: Adds info about: #1785
REVERT: fd8e72fd9 Allow empty strings to be evaluated by regex::searchAll
REVERT: 7def498c4 Added some documentation for multipart boundary check
REVERT: a3980bbea CHANGES: Adds info about: #1790
REVERT: ae38c23bb Adjustments on top of #1790
REVERT: 544fb50c1 Add basic pkg-config info
REVERT: 81708a6cf CHANGES: Adds info about: #1787
REVERT: e51297b43 Improvements on top of #1787
REVERT: edb5993d5 Fixed LMDB collection errors
REVERT: 1527f4e2f Updates the test cases described on Makefile.am
REVERT: 6a25ebb2b CHANGES: Adds info about: #1747
REVERT: 76887b8b2 Added new tests, aligned to new UNMATCHED_BOUNDARY flag value
REVERT: 4d0ca9449 Modified the false pos. UNMATCHED_BOUNDARY error flag
REVERT: af4afd348 Fixed false positive MULTIPART_UNMATCHED_BOUNDARY errors
REVERT: 95048d5fc Fix ip tree lookup on netmask content
REVERT: 202a15bea Changes the behavior of the default sec actions
REVERT: 61c956e3f CHANGES: Adds info about: #1754 & #1778
REVERT: 892beb536 Refactoring on {global,ip,resources,session,tx,user} collections
REVERT: 550e9d3f3 CHANGES: Adds info about: #1786
REVERT: f928e4476 Revert "Fix memory leak in msc_rules_* C APIs"
REVERT: b85a64561 Fix race condition in UniqueId::uniqueId()
REVERT: b586fa9c1 Cosmetics on README
REVERT: 19d4f2007 Experimenting with SonarQube/SonarCloud
REVERT: f533ca999 CHANGES: Adds info about: #1765
REVERT: 58701e7e1 Fix memory leak in msc_rules_* C APIs
REVERT: 6db26cee8 CHANGES: Adds info about: #1783
REVERT: 45e531236 Return false in SharedFiles::open() when an error happens
REVERT: a02bd3a3b CHANGES: Adds info about: #1769
REVERT: fd9a161e7 Use rvalue reference in ModSecurity::serverLog to avoid string copy
REVERT: ccd7b9f67 travis: Temporarily disables -jN
REVERT: 87e64e3c2 Actually fix setvar parsing of quoted data
REVERT: e4c822e66 Code cleanup: Initialize variables and others good practice
REVERT: a278bb673 Testing travis with parallel build
REVERT: b0b484f45 Build in parallel.
REVERT: 137bd88b2 CHANGES: Fix info about: #1771
REVERT: b5528bb8d fix when multiple lines for curl version
REVERT: 42a472adb Check if response body inspection is enabled before process it
REVERT: 389cc2535 CHANGES: Adds info about: #1757
REVERT: 2669add8e Fix memory leak in processContentOffset
REVERT: cc7203503 Remove an unused variable
REVERT: 8750ee5d3 CHANGES: Adds info about: #1759 and #1733
REVERT: 5e4085069 Fix setvar parsing of quoted data
REVERT: e47125c55 CHANGES: Adds info about: #1758
REVERT: 98b4e7546 Fix LDFLAGS for unit tests.
REVERT: e48fa2f81 HANGES: Adds info about: #1761
REVERT: cd1a058c3 Code cosmetics: Clean up MD5 hexdigest
REVERT: d0b423fdd Adds time stamp back to the audit logs
REVERT: 6f92c8914 Disables skip counter if debug log is disabled
REVERT: a1b6cceb6 CHANGES: Adds info about: #1737
REVERT: d0a63aac0 Define m_secmarker_skipped as an integer type
REVERT: bb2ecdf4d Add missing escapeSeqDecode, urlEncode and trimLeft/Right tfns to parser
REVERT: a939d19fa CHANGES: Adds info about: #1738
REVERT: 6d5bb42bd Normalizes Bison version
REVERT: 2037a08b3 Fix STATUS var parsing and accept STATUS_LINE var for v2 backward compatibility
REVERT: a806f26be CHANGES: Adds info about: #1750
REVERT: 268f34bbc Fix memory leak in modsecurity::utils::expandEnv()
REVERT: f888f4e5e CHANGES: Adds info about: #1751
REVERT: e7ea5433d Initialize m_dtd member in ValidateDTD class as NULL
REVERT: 3ee65a31c CHANGES: Adds info about: #1739
REVERT: f7beb1757 Fix broken @detectxss operator regression test
REVERT: 6a710b3a4 CHANGES: Adds info about: #1743, #1744
REVERT: 3d06e1b8b Fix github_issue reference in regression test
REVERT: 5e65d560f Fix utils::string::ssplit() to handle delimiter in the end of string
REVERT: 501835837 Fix variable FILES_TMPNAMES
REVERT: 077b18252 CHANGES: Adds info about: #1729, #1730
REVERT: 8285a9746 Fix memory leak in Collections
REVERT: ea7d1ff54 CHANGES: Adds to be released marking
REVERT: 8d0f51bed Change release version to v3.0.2
REVERT: 871a13186 CHANGES: Adds info about version issue
REVERT: 2e87c4e75 Fix version number on libtool
REVERT: f67ff0aa6 Change release version to v3.0.1
REVERT: 01625bbb3 CHANGES: The correct is: ruleRemoveByTag not ruleRemoveById
REVERT: ff0d451a5 Fix maxmind test case
REVERT: 0ca599474 Adds support for ctl:ruleRemoveByTag action
REVERT: 9537cfcee Fix SecUploadDir configuration merge
REVERT: ab3afb2ed CHANGES: Adds info about: #1716
REVERT: dcbb06be4 Include all prerequisites for "make check" into dist archive
REVERT: 9505ca7e6 CHANGES: Adds info about: #1715
REVERT: 601e0d704 Adjust tests for @inspectFile operator
REVERT: 138e30169 Reverse logic of checking output in @inspectFile
REVERT: c61155424 Adds support to libMaxMind
REVERT: 15b38fbe5 Travis: adds --without-maxmind option
REVERT: df169ea10 Adds support for libMaxMind
REVERT: 7bff76d79 Parser: Updates the generated parser files
REVERT: 480a2f89d Disable SecCollectionTimeout parser error
REVERT: 22334c9bb Adds capture action to detectXSS
REVERT: b59d19e95 CHANGES: Adds info about #1701
REVERT: e50c317b7 Temporarily accept invalid MULTIPART_SEMICOLON_MISSING operator
REVERT: 70ace0faa Adds capture action to detectSQLi
REVERT: 0f361b706 Adds capture action to RBL
REVERT: df25c48f5 Adds capture action to verifyCC
REVERT: 77a885da5 Adds capture action to verifySSN
REVERT: 60b246909 Updates bison parser
REVERT: 0b494c4cd Adds capture action to verifyCPF
REVERT: 64ce41280 Prettier error messages for unsupported configurations (UX)
REVERT: a66acebc0 Add missing verify*** transformation statements to parser
REVERT: 8bb64c3ee Code cosmetics: removes an unused piece of code
REVERT: 450c966da Fix a set of compilation warnings
REVERT: c8666fae3 Check for disruptive action on SecDefaultAction
REVERT: 6842d4bba Fix block-block infinite loop.
REVERT: c51e3e242 CHANGES: Adds info about #1636
REVERT: 4ac14a262 Cosmetics on top of: #1636
REVERT: a0bea7356 Correction remove_by_tag and remove_by_msg
REVERT: 5e8062cf7 CHANGES: Adds info about #1691
REVERT: 8d61a3df9 Fix LMDB compile error
REVERT: 854a661a2 Fix gcc compilation issue
REVERT: dca642369 Fix on top of #1677
REVERT: f16eb8b54 CHANGES: Adds info about #1640
REVERT: ebc068b8c Fix msc_who_am_i() to return pointer to a valid C string
REVERT: 3fa3094ee CHANGES: Adds info about #1652
REVERT: 9dff36f59 Added some cosmetics to autoconf related code
REVERT: ccb1068e8 CHANGES: Adds info about #1678
REVERT: b50658d1e Fix "make dist" target to include necessary headers for Lua
REVERT: 93ccad191 CHANGES: Adds info about #1677
REVERT: ccc1f2031 Fix "include /foo/*.conf" for single matched object in directory
REVERT: 3539c59a6 Adds regression for base64 transformation
REVERT: ab78b0cfb Add missing Base64 transformation statements to parser
REVERT: e3b6b4ccf Fix resource load on ip match from file
REVERT: 6f718f9d4 Updates on CHANGES
REVERT: 0461c1c06 Fix examples compilation while using disable-shared
REVERT: ac100785d Fix compilation issue while xml is disabled
REVERT: ff782ddfa Having LDADD and LDFLAGS organized on Makefile.am
REVERT: 2b052b0ed Checking std::deque size before use it
REVERT: eeec7efb6 Renames collection::Variable to VariableValue
REVERT: de7c5c89b Using shared var for variables names
REVERT: 6f7fdd949 Using direct variable access instead m_collections
REVERT: 43bba3f94 Removes the depricated MacroExpansion class
REVERT: f17af9572 Using RunTimeString on setvar action
REVERT: a6830c76f parser refactoring: ops no longer carry a payload
REVERT: a299997e0 Using run time string on the operators
REVERT: 6a97dbee7 Using stack to save parser state
REVERT: b5e996602 Removes useless state
REVERT: 2d892a317 Adds support for multipart vars on the parser
REVERT: 6fe8655ed Adds support for RunTimeString
REVERT: cd30509f3 Fix the debuglogs for the regression tests
REVERT: c3b19e7f8 Updates CHANGES file
REVERT: 2ba788d2d perf improvement: Checks debuglog level before format debug msg
REVERT: a03772630 Updates CHANGES file
REVERT: 768a76a61 perf. improvement/rx: Only compute dynamic regex in case of macro
REVERT: 4a23891c8 Updates the CHANGES file to reflect the changes on bench utility
REVERT: d162d4e20 Fix uri on the benchmark utility
REVERT: e6712358f Merge pull request #1639 from defanator/v3/skip_lua51
REVERT: f4a05b6e1 Configure: actually disable Lua on systems with liblua5.1
REVERT: c1cd668ac Change release version to v3.0.0
REVERT: eaa4770c5 Fix issue related to Lua script load
REVERT: c98e66547 Improvements on LUA build scripts and support for LUA 5.2
REVERT: de36fca86 Adds info about 0xfd84e on the changes file
REVERT: e9f3312ea fixed compilation error with disable_debug_log flag
REVERT: 81e1cdced Adds info about issue 1615 on the changes file
REVERT: 8bcef4187 Improve benchmark tool
REVERT: e98be6dc5 Adds info about issue 1622 on the changes file
REVERT: af7e6ee16 Correction lua header
REVERT: 9c0ed6109 Fix assorted minor memory management issues
REVERT: b7698d689 Fix memory leak in @fuzzyHash
REVERT: 68152d8d2 Adds test case for issue #1576
REVERT: 3fb71f32d Coding style fixes
REVERT: 023e7acba Refactoring on the JSON parser
REVERT: 23cf656f9 Adds support to WEBAPPID variable
REVERT: 082a3e328 Adds support to SecWebAppID
REVERT: 37c34f3e6 Adds missing cflags for LUA and SSDEEP
REVERT: ec667a460 Adds support for SecRuleRemoveByTag
REVERT: 381cf8ac2 Makes ssdeep enabled by default on the build scripts
REVERT: 4d7fd5c30 Adds support for update target by message
REVERT: 7d7c0c03c Adds missing SecRuleScript test case
REVERT: bff326e80 Adds lua as a travis option
REVERT: 7fa5ca9ba Makes lua optional
REVERT: e52bd7d63 Adds support to SecRuleScript directive
REVERT: cb3363c7d Adds support for the exec action
REVERT: 7bec78a5a Adds support for transformations inside Lua engine
REVERT: a676f313c Initial support for Lua script engine
REVERT: 1866a3a9e Adds support for the @inspectFile operator
REVERT: 1189e9b0e Adds support to LUA in configure scripts
REVERT: 9369efcb9 Adds support to the collection RESOURCE
REVERT: a9d54c30a Fix on ssdeep search script
REVERT: e6106ae0e Fix regression tests for fuzzyHash
REVERT: 9c83b39ea travis: Adds ssdeep option to our regression soup
REVERT: 7622866f9 Adds support for @fuzzyHash
REVERT: 4ecfed316 Adds CHANGES info about #1598
REVERT: 968d83f1f Fix build on non x86 arch build failed on ppc64/ppc64le/arch64/armv7hl/s390x due to how this arch represent chars
REVERT: 371fc0321 Fix memory issue while changing rule target dynamic
REVERT: 351beb056 Adds missing info to the CHANGES file
REVERT: c4fcb36f4 Fix log while displaying the name of a dict selection by regex
REVERT: 93e18ca5e Support pipes inside quoted variable selection
REVERT: 34e8b140e Setting http response code on the auditlog
REVERT: 274f9e5aa Refactoring on RuleMessage class, now accepting http code as parameter
REVERT: 39fb75c34 Having disruptive msgs as disruptive [instead of warnings] on audit log
REVERT: 30797a458 Parser: Pipes are no longer welcomed inside regex dict element selection.
REVERT: 1518c43d6 Adds test case for issue #1565
REVERT: 1ad95254c Avoids unicode initialization on every rules block
REVERT: 20edf9ab7 Removes xml initialization from CURL if/def
REVERT: 41bf7f716 Calls xml init and xml cleanup to avoid memory leak
REVERT: 30364628a Makes clear to the user when audit log is empty due to missing JSON sup.
REVERT: d3f979f1d Makes auditlog more verbose on debug logs
REVERT: e09304a08 CHANGES: Adds info about #1583
REVERT: d285bc02b Add missing statements
REVERT: 63bef3d14 Support to JSON stuff on serial logging
REVERT: 2988c5bb0 CHANGES: add info about #1536
REVERT: fa7973a4e Removes a regex optimization added at #1536
REVERT: 9e9db08b8 add @rx macro expansion test to list in Makefile
REVERT: 10c4f9b1b add a test for macro expansion in @rx
REVERT: a76030256 support macro expansion in @rx
REVERT: 210e72aa2 Consideres under quote variable while loading the rules
REVERT: 658c9b5da Adds CHANGES info for #1571
REVERT: a5266d6d1 Store the connection and url parameters in std::string
REVERT: ba4e2e373 Adds CHANGES info for #1572
REVERT: 495b47d8a Eliminate some reorder and sign warnings
REVERT: 490971399 Adds CHANGES info for #1562
REVERT: 082a0d3ac Adds ios::[open|app] to the parallel.cc to fix write over SELinux
REVERT: 48be601ca Very first version of our changes file
REVERT: 1c91e8077 Extends acmp_prepare to pm_from_file
REVERT: 7d786b335 Makes pm mutex optional via configuration flag
REVERT: 119a6fc07 test-only: Placing a mutex while evaluating the pm operator
REVERT: a2427df27 fix: ignore .git directory while generating the release file
REVERT: 04f700998 Adds a simple release script
REVERT: cca364253 Changes release tag to -rc1
REVERT: 224f6ef26 Fix configuration schema on the configure summary
REVERT: 7ac6bf724 Fix memory issues while resolving variables
REVERT: 003a8e8e5 Uses shared_ptr on variable names
REVERT: 9d062f53a Merge pull request #1543 from defanator/remove-SecRequestBodyInMemoryLimit-from-conf
REVERT: 5c737c2c0 Treat _NAMES variables as collections (#5)
REVERT: 9069a453e Revert "Treating ARGS_NAMES as an array instead of scalar"
REVERT: 43e3ff91e Fixes a bug with an unitialized variable.
REVERT: 3a048ee2d Support --enable-debug-logs=no option of configure script (#2)
REVERT: f6af42c23 Remove SecRequestBodyInMemoryLimit from configuration template
REVERT: 1d3c4c670 Treating ARGS_NAMES as an array instead of scalar
REVERT: 81879cd13 parser: SecRequestBodyInMemoryLimit is now returning an error msg
REVERT: 2cf636cf7 parser: Adds generated parser files after 0xfce65
REVERT: 0be821ded change parsing of SetVar actions
REVERT: e0ebf2854 Adds `$' as a valid character in ruleRemoveTargetById
REVERT: 4b9bd499e Fix to_hex_if_need function on string utils
REVERT: 8d6209f65 gitignore: Adds binaries from examples to the ignore list
REVERT: 5e76d8563 Update test cases to include test propesed at #1523
REVERT: 31f1d0446 add validateByteRange regression test to list in Makefile
REVERT: 58872e7ed adds a test for validateByteRange with bytes > 127
REVERT: 86e74fac5 validateByteRange: correctly handle bytes > 127
REVERT: 7665d96a1 Improve action-allow test titles
REVERT: fc06915cc Extend RESPONSE_BODY test case.
REVERT: 31655e2c9 Updates secrules-language-tests
REVERT: 0a3dd824f Updates libinjection to v3.10.0
REVERT: b8789ab9f add a test for negated implicit @rx operator
REVERT: 039bd2cc8 fix negated implicit @rx operator
REVERT: ca9cbf4dd Fix for @rbl operator to correctly recognize known supported RBL providers
REVERT: 9d4ed5251 test: Counts the disabled tests as skiped on the test summary
REVERT: d66f0c7e0 Add support for disabled test cases.
REVERT: ab14b7c08 Add support for disabling test cases.
REVERT: c22658ec8 Adds `msc_update_status_code' method to the libmodsec api
REVERT: fff5a5765 Changes auditlog type to serial by default
REVERT: bf281eb4d Relaxing the audit log sanity checks to allow empty relevant status
REVERT: 09ee47149 Handle zero byte rule files correctly.
REVERT: 945ee27a8 parser: Adds SecRuleUpdateActionById is not yet supported
REVERT: d7eab6b7a Adds support to SecRuleRemoveByMsg
REVERT: 562c2b2f5 parser: Adds support to tag action without quotes
REVERT: b4051246b Adds support to SecResponseBodyMimeTypesClear
REVERT: 48f147026 Adds support to SecArgumentSeparator
REVERT: a30253852 parser: Adds SecWebAppId not supported note
REVERT: 2c4e65f7e parser: Adds support to quoted paramenter in SecDataDir
REVERT: bb2fe0e03 parser: Adds note saying that SecServerSignature is not supported
REVERT: e6cfd5379 parser: Adds SecRuleScript not implemented note
REVERT: cd533e00e parser: Adds support to quoted arguments on SecUploadDir
REVERT: b5d0dc240 paser: Adds support for quoted argument on SecTmpDir
REVERT: 5ffc5c163 parser: Adds support to quoted arguments in asorted configurations
REVERT: 9abc37157 parser: Adds msg: ContentInjection is not yet supported
REVERT: 06447ea3d parser: Adds support to double quotes on adit logs file
REVERT: c525cbfb2 parser: Adds ability to inform auditlog status without quotes
REVERT: 9ee412735 parser: Improves the reading for the url in the redirect action
REVERT: 8c66a1b4c Adds support to double quotes on debug logs conf
REVERT: 0508395f8 Forces REQBODY_ERROR to zero whenever there is a valid XML
REVERT: b36c4260c Adds a graceful error if there is no memory for request body inspection
REVERT: 9a41942ce Optimization on the macro expansion function
REVERT: 53ff0e1a5 Adds initial support to SecHttpBlKey
REVERT: 515e07350 Rename FromNowOneAllowType to FromNowOnAllowType.
REVERT: bce5ef770 Add the missing g in Transaction::GetReponseBodyLenth()
REVERT: 56baef5f1 Fix test case as consequence of the changes at #1514
REVERT: 5e06a67fb Demote log lines to improve debug log SNR.
REVERT: 5c7892ce8 Reduce use of underscores in log output.
REVERT: e3b9e6061 Ignore droppings from make check.
REVERT: 4d1739a2c Ignore built files.
REVERT: 024264661 Adds test case for the ctl:ruleEngine action
REVERT: 4bec6b001 Adds support to ctl:ruleEngine
REVERT: 1f1e8324b Includes HTTP version and response code on auditlogs/F
REVERT: 43cb8ed65 Adds support to C section on auditlogs
REVERT: 15ca5ceab Yet another change on the audit log permissions
REVERT: b58c8fe7e Changes the default file creation permission to 1600
REVERT: 27a8abc05 Changes the auditlog new derectories permission to 1872
REVERT: 337216fd8 fix: remove target by {id,tag} are now considering collections
REVERT: 7c2dbf48c Typo in the debuglogs for rules::getFinalVars
REVERT: e14dc602e Adds support to SecRuleUpdateTargetById
REVERT: 9ce7d022c Fix memory leak in the regression utility
REVERT: 52c5631ae Adds test case to UpdateTargetByTag
REVERT: fba9c20ea Adds initial support to SecRuleUpdateTargetByTag
REVERT: 65bd06fb7 Adds verifyCPF operator to the unit test list
REVERT: 74bb022a2 Updates unit test cases
REVERT: 25175dd80 Adds support to verify CPF operator
REVERT: 787b388f8 Yet another update on the unit test repository
REVERT: ddac1fb6f Upgrades the unit test repo to the most recent version
REVERT: a7f7532a2 Adds verify ssn operator to the unit test list
REVERT: ad8182e2a Adds support to the verify ssn operator
REVERT: d465c2f1a Removes the beauty of the JSON logging
REVERT: 1edd3570e Adds a set of sanity checks to validate API inputs (2 of 2)
REVERT: 508a2b5a4 Adds sanity check on SecRemoteRules directive input
REVERT: 49b7ea99e Adds a set of sanity checks to validate API inputs (1 of 2)
REVERT: 5a32b389b chunks example: Sets the freed variables to NULL
REVERT: 6d77c76b2 Implements intervention support inside using chunks example
REVERT: f5b47a807 Duplicates the url variable in the disruptive action
REVERT: c3a0d8d9b Fix collections element selection by regex
REVERT: 3ebc2d61f Enables random number generation
REVERT: 4726912ec Audit Log: Adds space after response size
REVERT: 20134ef24 Fix examples/using_bodies_in_chunks compilation
REVERT: e1f52a1cf Adds using bodies in chunks example
REVERT: 9cb3f23b5 Adds support to setrsc action
REVERT: 616a95bfe Adds -lpthread to the reading_logs_via_rule_message example
REVERT: e795253ec Fix crash on SecRuleRemoveById malformated parameter
REVERT: 2a5085255 Using multiple threads in reading logs via rule message example
REVERT: 8fbb9e812 Using pthreads to avoid concurrent access to the collection
REVERT: 37868d153 Add missing feature: t:uppercase transformation
REVERT: 9d70345d3 Add missing hexDecode transformation to seclang parser
REVERT: a90b2a3ff Code cosmetics: init a vector.
REVERT: e1d3abc8e Removes memory leak on the counter variable modificator
REVERT: c49688fd7 Verify if a certain resource exists before do any other sanity check
REVERT: 6143eb99e Removes LMDB from the default configuration options
REVERT: 37619bae7 Removes local cache for transformations
REVERT: 0e05b7bb8 Avoids to load a directory structure as a rules file
REVERT: c97db2f36 Adds verbose message when a resource is not found.
REVERT: 77a658c7c Updates libinjection version
REVERT: 6421ff087 Forces disruptive to be first-rule-only
REVERT: 7e5925006 Fix JSON parsing error message
REVERT: b58f713fe add support for soap+xml
REVERT: e2bbe9858 XML Parser: removes unnecessary message from debug logs
REVERT: ba070c9ea Speeds up utils::string::toupper function
REVERT: b3c8e97ff Parse fix: accepting variables in between quotes
REVERT: c7053e572 Postponing the decision to whenever save or not a log message to the last rule
REVERT: 4d03ef512 Fix TX dictionary element name on logs
REVERT: 5f60bb522 Yet another fix on the debuglogs merge
REVERT: cf4deaa3a Using uint64_t instead of u_int64_t
REVERT: d15b57895 Fix the Multipart parser error for unknown content type
REVERT: 80cfca6fa Fix the debug log level merge function
REVERT: 2a54bf23e Fix the debug log merge function
REVERT: eb12b1514 Flush [shared-] file after write it
REVERT: dbcf5a719 API CHANGE: Rules::merge signature was change to includes error msg
REVERT: 5e59d1912 Improves macro expansion speed and variable set attribution
REVERT: f17da09fc Avoids call `toupper' twice while resolving a variable
REVERT: 85f98c8a6 Fix "make dist" after recent changes to parser
REVERT: c290c73f9 Updates travis' badge
REVERT: 53485c7f7 Fix pcre_exec offset values
REVERT: e79712095 Minor fix in the decision on whenever the log callback should be called
REVERT: e2af60e76 Expands log_cb to share ruleMessage structure instead text
REVERT: 9ea5b475b Fix missing initialization on rules-check utility
REVERT: 6d61bd6b5 Adds rules-check utility
REVERT: d2c5b31b1 Uses FILE instead of _IO_FILE
REVERT: e2bd87d07 Fix minor parser errors
REVERT: c3cb23f47 Removes the ';' from the x-www-form-urlencoded body-processor comparison
REVERT: d6363607a Accept quoted regexp in the collection selection
REVERT: 39761ce7b Discards the `charset' from the C-T while checking for body processors
REVERT: 7ab192e90 Using method instead of procol in the audit logs.
REVERT: fcad29015 Having the DebugLogs using the SharedFile schema
REVERT: 7f9cd7661 Improvements on the SharedFiles class
REVERT: 01c13da51 Fix segfault due to invalid memory access on SharedFiles class
REVERT: 87f6b478f Fix typo in returned string
REVERT: cc25390dc Fix copy/paste typo
REVERT: 027d50b76 Adds first version of `processContentOffset'
REVERT: 7aae5dc18 Fix Regex::searchAll to behave like global modifier
REVERT: 4d66481bf travis: Installs cppcheck on MacOS X
REVERT: 616cf84c3 Adds check-static to travis.yaml
REVERT: 4ad3574cf Adds offset regression tests and assorted fixes on var's offsets
REVERT: 795994bb0 Adds support to error_log in the regression tests
REVERT: ae8c2a486 Adds ZenHub Badge to Readme
REVERT: 073b0f6d6 Small changes in the README, including: having ModSecurity logo
REVERT: aba68a7b6 Adds ModSec log to the git repository
REVERT: efb90bb55 Adds OWASP rules to the gitignore list
REVERT: 71a9677f3 Adds configure.h to system.cc in oder to read the MACOSX def
REVERT: 09cfa2869 Removes dup on travis build matrix
REVERT: 44121bdee Updates secrules-language-tests
REVERT: 158ec7b2e Adds support to resources on the unit tests
REVERT: b021c15e4 Adds a little more build options to the travis file
REVERT: c06daba39 Adds support for curl resource on the regression tests
REVERT: f9552ede2 Adds missing file
REVERT: 36ab4b952 Fix lmdb compilation issue
REVERT: 6f4746211 Fix compilation when YAJL is not present
REVERT: 9d3399055 Very first travis file
REVERT: d85169952 Adds references to the collection variables
REVERT: e95efa05c Fix assorted memory and static analysis errors
REVERT: 8d0583eda Increments the cppcheck suppression list
REVERT: f40a6edec Adds valgrind suppression list
REVERT: f2d149fc5 Extends the direct access model to other collections
REVERT: ca24b6bb0 PoC: Adds support to direct access on ARGS collection
REVERT: 17e5a6357 Removes memory leak on the "offset" feature
REVERT: c1f11ab4e Cosmetics: assorted fixes on the coding style
REVERT: a88dc8efa Changes the check script to detect segfaults
REVERT: ff65d618e Adds missing Makefile.am file
REVERT: ecbf292f6 Adds first PoC for the operator offset feature
REVERT: 9a8fc3116 Instantiates the Class variable earlier
REVERT: ba6b972ca Makes global collection allowed to be set by setVar
REVERT: b516cc6de Adds operation unset to setVar action
REVERT: e95555132 Contionuation of 1 time variable patch
REVERT: 703da3c4f Adds PoC about 1-time variable resolution and draft for offset
REVERT: 6abbb7e91 Fix regular expression test case and updates the test list
REVERT: 1e8b37411 Removes the depency on bison/flex if it is not a parser build
REVERT: 3eccfaf1f Disables parser generation on all builds
REVERT: 03d0570e9 Deletes the Rule object in case of a parser failure
REVERT: 1aa2a9c01 Avoids memory leak by cleaning loc stack on Driver's destructor
REVERT: 8edffe353 Dirty hack to make the parser workable
REVERT: 839ac6258 Fix memory leaks in parser failures
REVERT: a6f07f621 Makes the lexical errors a little bit more verbose
REVERT: 5880524db cosmetics: Improves the tokens organization
REVERT: 9a1faab66 Deletes driver in case of parser failure
REVERT: 808fd2335 Avoids a second initialization of the Audit Log class
REVERT: 557c29fd4 Changes variables destructor to virtual
REVERT: 0c37ba336 Fixed utf8ToUnicode bad memory access
REVERT: a8e5cce74 Moving the rules deletion to the RuleProperties class
REVERT: 068a3eb51 Fixed bad memory access in utf8ToUnicode class
REVERT: fd341145d Fixed memory leak in the acmp implementation
REVERT: 60402d8b8 Renames defaultActions to m_defaultActions in RulesProperties
REVERT: 7927ddda9 Renames rules to m_rules in RulesProperties
REVERT: 5086fef49 Fix parser while continuation line is used between var and op
REVERT: 59114dd59 Refactoring on the operators parsers (2/2)
REVERT: 9cda4c0be cosmetics: Having the parser in a better shape regarding operators 1/2
REVERT: 3a413080f Fix string size on regexp search all
REVERT: 36d6bb966 Fix substring constructor in regex search all
REVERT: e181cb7e0 Fix lmdb collections backend
REVERT: b12cc9128 Adds valgrind suppression regarding rules load
REVERT: 8bd5f03a3 Fix memory leak on the regression tests
REVERT: f62dc287c Uses pointer instead of std::string copies while applying transformations
REVERT: 63f3f2fd8 Avoids unnecessary elapsed time calculations
REVERT: a7f465cf3 Avoids string copy by working with pointers while resolving variables
REVERT: 7834cf857 Fix memory leak on the benchmark utility
REVERT: 168fa22e1 Collections cleanup: removes resolveFirstCopy method
REVERT: 6fff8c954 Performance improvement: makes the collections lookup faster
REVERT: 15b81d09e Refactoring on the transformation classes
REVERT: bbb61d560 Changes the saving selection for the audit logs
REVERT: 10cdf8fed Enforces that relevant status on the AuditLogs
REVERT: 88fb456a1 Cosmetics: Reduces the static analysis warnings
REVERT: 9c7416da9 Refactoring the actions classes
REVERT: 73877d403 Adds support to section "E" in the auditlogs
REVERT: 317808fe5 Adds section "H" to serial audit log
REVERT: 2d29740ca Cosmetics: better format the serial audit logs
REVERT: c1e96d6c2 Fix rules messages in the audit logs
REVERT: 1218d8c84 Fix the audit log engine status selection
REVERT: 2e9a35c35 Refactoring on the audit logs implementation
REVERT: 9707d46e4 Adds `debug_log' headers in the no install list
REVERT: 64e292792 Moves debuglog stuff inside the debug_log namespace
REVERT: a3787fedb Fix building with -Wl,--as-needed linker option with older ld versions
REVERT: 31d5d7908 Removes charset=UTF-8 from content-type variable
REVERT: 8f1665059 Fix install and dist targets after 768cc74f, 9733cacd, bfc30dad
REVERT: 47f2e7ff4 Use correct debugging CFLAGS in readme.
REVERT: 89987806c Add (void) argument to be ANSI C compliant
REVERT: 1719e1d7e test-cases: updates the remote reference
REVERT: cce6179dc Refactoring: new structure for logging alerts
REVERT: bfc30dad3 Refactoring: how to report to error logs
REVERT: e6b58014d Cosmetics: Fix some static analysis report
REVERT: 9bd37ccb6 Refactoring: Rule class
REVERT: a776cce6d Changes RULE variable group to be save at transient collection
REVERT: 2930d40d5 Changes the actions to affect the ruleMessage instead of transaction
REVERT: 8fa0523fe Adds initial support to the multiMatch action
REVERT: 9116a19bc Using the decoded uri in REQUEST_URI instead of the encoded one
REVERT: 7a36499f2 Makes @pm compatible with the brand new capture schema
REVERT: eecb90cfd setvar: needs review
REVERT: c339194c0 Changes operator rx to use regexp::searchAll
REVERT: 9c7988d88 Adds support to regexp::searchAll
REVERT: d3a4ec760 Removes slash from REQUEST_BASENAME
REVERT: 293a84966 Adds m_uri_no_query_string_decoded to transaction
REVERT: ab8808315 parser: Fix the expanded list inclusion
REVERT: c98be42f8 Limits the transformation output to 80 chars in the debug logs
REVERT: f5898e94c Fix documentation typos
REVERT: 85edff522 Fix return value of msc_rules_merge()
REVERT: 464350150 parser: Improves the include error when the file does not exist
REVERT: 8b4f1bc46 Fix rule file inclusion path
REVERT: 361ec8340 benchmark: Removes the \n\r on the user agent
REVERT: 8ceaf99d5 Updates the CRS script to target the recent v3.0.0 release
REVERT: 3ab5c8057 Updates the fuzzer sub-project
REVERT: ee996a837 Adds configure option to [disa|ena]ble the library examples
REVERT: 936ec0b47 ~Rule will delete chainedRule
REVERT: 1b2877681 Fixed install and dist targets after 3ee7b24
REVERT: 3ee7b2492 Adds refCounter to actions
REVERT: ad05c74c3 Moves mbedtls to others and renames msc_string.h to string.h
REVERT: 2244e874e Moves static methods from class String to the namespace string
REVERT: 62a0cb468 Renames utils/msc_string.[h|cc] to utils/string.[h|cc]
REVERT: 424418f54 Renames msc_system.[h|cc] to system.[h|cc]
REVERT: 4ced1d18e Using full path in the header inclusion
REVERT: 768cc74f0 Moves RuleMessage to its own file
REVERT: ac4cb53d0 parser: Better understands escaped quotes in operator parameters
REVERT: 1bf53c057 Deletes ruleMessage by the end of the rule execution
REVERT: 5fa02f17c Fix Utils::hexdigest
REVERT: 507ec44cc Refactoring on `utils.cc' and adjacents
REVERT: b48dccff7 Removes unused `urldecode_uni_nonstrict_inplace_ex'
REVERT: 78d6d2098 Moves `phase' related functions from `utils' to `utils/phase'
REVERT: f1e742c15 Moves system related functions from `utils' to `utils/system'
REVERT: 73c4d6917 Moves string related functions from `utils' to `utils/string'
REVERT: 9733cacd4 Refactoring: moves ctl_ actions into ctl namespace
REVERT: 2bb9d7988 Cosmetics: huge refactoring in the parser
REVERT: d3de1c743 Adds missing action-ctl_rule_remove_by_id.json
REVERT: 721983a05 Adds missing ctl_request_body.*
REVERT: 75a5000b1 Cosmetics: coding style
REVERT: 471164460 dds support to CtlRequestBodyAccess
REVERT: 10d263cd3 parser: Relax the characters accepted by ctl:ruleRemoveByX
REVERT: fead97155 Cosmetics: Fix typo. Remove not Remote
REVERT: 1c21d1aeb Adds support to action CtlRuleRemoveById
REVERT: 161cc36ac Adds support to action CtlRuleRemoteTargetById
REVERT: 9245369a5 Adds support to action CtlRuleRemoteTargetByTag
REVERT: 730d7dbd2 Cosmetic: Coding style fixes.
REVERT: 8757840bc Refactoring on the operators: negation is now being handled globally
REVERT: 28a44b966 SecLang uses RESPONSE_STATUS as variable, not STATUS
REVERT: 678a97d0f Refectoring on the DebugLog mechanism
REVERT: f3bbcfc7e Removes SecDebugLog directive from the test cases
REVERT: 8ac15e291 Removes wrong test case: there is not transformation ge
REVERT: 4e3a599f6 Add hack to fix MacOS X build
REVERT: 049f1abb6 Fix compilation error
REVERT: b48e4b3a3 refactoring: Moves Phases enum to outside ModSecurity class
REVERT: c680ddf2c Refactoring on rulesProperties class
REVERT: ae8698d8c Makes JIT support in PCRE to be optional
REVERT: 13b6a3ecf Fix: Rules ID are validated during a set merge
REVERT: ecd3fd0dc build: avoids compilation problems due to non existence of the lmdb.h
REVERT: 8f5c1c3cf parser: avoids parser error while loading an empty file
REVERT: 5553b2a5b Moves web server message to appropriate place and removing the garbage
REVERT: 16b8ef98f Fix: placed missing variable initialization
REVERT: 56cbbeff5 Adjust the phase value between the core and the rules
REVERT: 115afffe3 Cosmetic: Limit the matched log size
REVERT: a1a1c71d6 Makes LMDB support optional
REVERT: 0a22f880d Adds support to custom operator's message in case of a match
REVERT: ad6183811 Considering collection RULE independent of the case at macro expansion
REVERT: 241269eed Adds missing `nog_log' action
REVERT: c3378ec52 Fix the size of the rules and actions vectors
REVERT: 8d84ff6f4 Accepting both: normalizePath and normalisePath
REVERT: fb0afdb34 Fix @validateByteRange initialization
REVERT: ed18c73cd include pre-generated parser sources into the distribution
REVERT: 062dd17f1 Cosmetics: reducing the compilation warnings
REVERT: 0e5f72977 Changes MATCHED_VAR behaviour
REVERT: 665df0451 Cosmetics: avoid compilation warnings
REVERT: 5febc7b26 Looking for lmdb in the right location under MacOS
REVERT: 7f7bd9984 Adds missing file: rules_exceptions
REVERT: f723870f1 Fix case sensitive variable resolution in in memory backend
REVERT: 5d64f7381 Makes RULE collection to be resolved inside a macro expansion
REVERT: 5514b6614 Adds missing file: rules_exceptions.h
REVERT: 52808b6cf Allows REQUEST_HEADERS:Content-Type to be null
REVERT: c961373fc Adds missing header
REVERT: 8416eca98 Initializes m_maturity in the rule class
REVERT: 37079ef66 Adds support to SecRuleRemoveById
REVERT: d781b00f7 Fix the `log' action and the webserver error callback
REVERT: 8d9abfb46 Makes tests output buildbot friendly
REVERT: c0ebd45a6 Reduces bison required version to test it over the buildbots
REVERT: 8a135cff9 Extends the possible names for liblmdb0
REVERT: 75e2e9d4d Fixing multiprocess_c compile error
REVERT: 4cf6c714a Cosmetics: Fix coding style
REVERT: 3615c84ee Adds check-coding-style target to our Makefiles
REVERT: f26824bcf Adds more suppressions to the cppcheck
REVERT: 4078677b7 Cosmetic changes: applies changes suggested by static analysis
REVERT: 247f24c5b Removes check-valgrind files after a maintainer-clean
REVERT: 46f4b84a0 Removes collections db after maintainer-clean
REVERT: 3f38b5668 Renames `testdb' to `modsec-shared-collections'
REVERT: 4c8aa5409 build: Adds missing lmdb.m4
REVERT: 085d50c12 include test cases into the distribution
REVERT: 063850a4c exclude build-time required headers from install target
REVERT: 2aa1d1447 fixed build of unit tests (broken by 34e0284)
REVERT: 649365481 automake: include all needed files into "make dist" target.
REVERT: ee9f3ebc5 configure: conditional creation of Makefiles in test subdir.
REVERT: 38b338d1d Adds test case for regular express selection
REVERT: ad481be09 lmdb backend: Adds support to select variables using regex
REVERT: de8245d8f in-memory backend: Adds support to select variables using regex
REVERT: 4daf9d8ab Adds a test case for WEBSERVER_ERROR_LOG
REVERT: 833089eb7 Adds method resolveFirstCopy to collections
REVERT: 6e4226ee4 Adds support to global collections shared among different process
REVERT: ac6498327 Adds cppcheck target on makefile
REVERT: 7bcc9cf0d Bug fix: variable resolution inside global collections
REVERT: 20689145d Renames examples/multithread_c to multiprocess_c
REVERT: cd5a116ca Simplifies the multi thread sample
REVERT: 5daf4873b build: Searching for LMDB during the configuration phase
REVERT: afd7a21d1 Correctly handle return values from pcre_study(3)
REVERT: e231503bc Simplifies the collection interface
REVERT: f43704dbe Add explicit 'return true;' for Transaction::extractArguments()
REVERT: 45850d17d Fix typo (= vs ==)
REVERT: 71acdaf8c Accept new line + caridge return in the rules parser
REVERT: 578dabea8 Informs the https client a key if any is given
REVERT: 3d1d0514f Fix pass action behaviour: now only ingore actions within the same rule
REVERT: b332018cc Adds regressiont test for issue #1152
REVERT: f72bd587e Adds support to the allow action
REVERT: e77e4c4c1 Adds missing test case to Makefile.am and initializes the skip var
REVERT: b0f69b126 Adds support to the `skip' action
REVERT: f00e625c8 Unbreak build with custom location of libyajl.so
REVERT: 90adb5393 Adds support to JSON request body parser
REVERT: 247747060 Adds support to the resource collection
REVERT: bad3e1361 parser: Fix commented SecRule parser
REVERT: 7d06c32b0 Adds error messages while failed to init a collection
REVERT: 193fa2e80 Changes regressions tests to fit the recent modification on the parser
REVERT: 0c0a9b308 Accepts component signature between brackets
REVERT: 74a34261a Adds function removeBracketsIfNeeded to utils
REVERT: 731707994 parser: Reporting the right column position in case of error
REVERT: 37c18326c parser: Avoid to duplicate the invalid character
REVERT: 0fdde5253 Fix setvar action to accept equals nothing
REVERT: cf2ffe7e1 Fix the line counter while showing an parser error
REVERT: e5583c24b Removed parserError from the rules class
REVERT: 02909f7cd parser: arbitraty text can be used instead of operator
REVERT: 0d53dda1a Adds support to @unconditionalMatch
REVERT: 60be385eb Adds support to the SERVER_NAME variable
REVERT: df1f7c5e0 Adds support to the RESPONSE_PROTOCOL variable
REVERT: b8bd0c596 API CHANGE: response status is now set on processResponseHeaders
REVERT: a36b2da86 Adds support to the STATUS variable
REVERT: 56d084a7f Adds support the variable rule
REVERT: 45bfb594b Adds missing tests cases
REVERT: 6052d2628 Adds support to URLENCODED_ERROR variable
REVERT: c5262d54f Fix argument uri decode order
REVERT: dbaf79fb8 Adds extractArguments facilitator method
REVERT: 5c088c8be Adds addArgument method to transaction class
REVERT: ebe842475 Adds support to REQBODY_ERROR_MSG and REQBODY_ERROR
REVERT: 7bd6e9a2b Makes XML request body processor to be selected only by ctl:equestBodyProcessor
REVERT: 7cb27eb9f Implements the support to fill the REQBODY_PROCESSOR variable
REVERT: 734f63bd0 Adds support to REQBODY_* varibales in the libmodsec parser
REVERT: 767289c8d Fix compilation for libpthread users.
REVERT: 647019a80 Use internal PCRE based implementation of regular expressions instead of std C++ regex library.
REVERT: 21777aec4 Fix invalid memory read in msc_tree
REVERT: 8b9041c2d Fix memory leak on VerifyCC operator
REVERT: a4c7d534f Fix invalid memory write on base64 forgiven decode
REVERT: 7be5fde62 Fix memory leak on the @pm operator
REVERT: 1b35e57c4 Adds more suppressions to the valgrind list
REVERT: 9cec9db79 Fix memory leak in the method toJSON from Transaction class
REVERT: f833a6108 Fix memory leak on html dentity decode transformation
REVERT: e6c542c5b Fix invalid read on sql hex decode transformation
REVERT: 991902662 Fixes regarding memory management
REVERT: cb91af537 Enforce bison requirement to 3.0.4.
REVERT: 32f22d1a7 Use explicit variable size for copying char.
REVERT: 57ad70bb2 Add missing 'retrun's for functions declared return value. This change fixes SIGILLs on executable built with clang 3.4.
REVERT: 1e6b40ebe Fix some improperly formatted test cases
REVERT: 8cdb13807 Adds support to make check-valgrind
REVERT: f0155e3f3 Adds support to `make check`
REVERT: 2e3da7ea2 Better support for multipart
REVERT: 9e5cf2de8 Adds Upload configuration paramters to the libmodsec parser
REVERT: 967c8c90f Fixed minor behavior on the trasnformations and added sha1-mbedtls
REVERT: f35d28b8d Loads the transformations test cases during the unit test
REVERT: 8d4990327 Adds support to the transformations parity[even|odd|zero]7bit
REVERT: 59b1fe030 Adds sqlHexDecode tranformation to libmodsecurity parser
REVERT: 1fe0e3420 Adds support to sqlHexDecode transformation
REVERT: bd2e95953 Adds support to the hexDecode transformation
REVERT: 2b056485d Adds support to Utf8ToUnicode transformation
REVERT: d70f08d01 test: Using regexp to transform binary representation into binary blobs
REVERT: b7e82261c Adds support to removeComments transformation on libmodsec
REVERT: 08df949bf Adds md5 transformation to the libmodsecurity parser
REVERT: 7ccf54d33 Adds md5 transformation
REVERT: bf4a9d763 Adds support to base64DecodeExt transformation
REVERT: 056753d57 Adds support to base64 encode transformation
REVERT: bb5cbc969 Fix return value of Utilis::Base64::decode
REVERT: e48f468cb Adds support to base64 decode transformation
REVERT: 348cf3bfa Adds support to the REMOTE_USER variable
REVERT: a3ae686f2 Adds base64 support via mbedtls
REVERT: 4b9cff3ec Partially adds the REMOTE_USER variable support
REVERT: f989ecd5c Adds support to SecXMLExternalEntity
REVERT: 6a7b970fe Adds support to ctl:requestBodyProcessor=XML
REVERT: 9202ffb17 Replacing include subdirectory name, transaction --> collection
REVERT: 1f45d6cea Adds full support to the libxml action
REVERT: a9e6716c6 Variables are now receiving the rule instance as parameter
REVERT: 8c714af8e Actions refactoring: now there is a clear definiation on the action name
REVERT: 1b88947d9 Adds support 'xmlns' action to the libmodsec parser
REVERT: 3e8defb85 Adds support to the operator @validateDTD
REVERT: 6a4075250 Adds XML variable, xml body request processor and @validateSchema
REVERT: 35636674e Adds the missing regression tests for USERID
REVERT: 758ecb5d6 Adds support to USER collection, setuid action and USERID variable
REVERT: ff9aa5c7c Adds support to the variable SESSIONID
REVERT: a2a47798e Adds support to the collection SESSION and setsid action
REVERT: 33a704e91 Fix macro expansion: no more % abandoned by the end of variable
REVERT: 572811027 Declaring variable outside the for loop
REVERT: c85529158 Adds support to the cmd_line transformation
REVERT: d0e000228 Fix the regression tests as reported on #1142
REVERT: 3062ff2aa Using Collection instead of GlobalCollection
REVERT: 64c4f23a4 Collection class was changed to be a simple interface
REVERT: bc887cdcf Fix Valgrind regression test script
REVERT: 5643d2fa2 Warming up to the remote collections support
REVERT: ff165a403 Adds support to the multithread example
REVERT: 1539a8c3e Fix the coding style of the pull request #1115
REVERT: 8b3b01406 updated transformation file to include removeWhitespace transformation
REVERT: 883b804d9 adding removeWhitespace transformation
REVERT: 0a60924c8 Reduces the amount of warnings
REVERT: 6f93563fc Fix in parser: now understanding the removeCommentsChar transformation
REVERT: 19137452c Updates `secrules-language-tests' reference.
REVERT: a5a21ea19 added remove_comments_char to address issue #971
REVERT: 8da49842d Fix typo on the audit logs.
REVERT: 85d8b8e9b Fixed typo error in the HTTPS client implementation
REVERT: 8d052853a Adds support to https audit log output
REVERT: e5acc95de First version of `global' and `ip' collections
REVERT: 214cc1578 Cosmetics: Reduce the coding style warnings
REVERT: c43391072 Fix some issues reported by the static analysis
REVERT: 28008be61 Build: Adds /usr/lib64 as possible path for YAJL
REVERT: d528b8ea6 Build: Looking for YAJL's LD flags instead of CFLAGS
REVERT: e3dd2937e Installs the library file in the right path [lib|lib64]
REVERT: 88ca73654 Avoids the installation of test utilities during `make install'
REVERT: e0926fee3 Fix parser error while dealing with operator negation
REVERT: 47a62b98b Saves `MATCHED_VAR' and related before execute the actions
REVERT: 778db259c Treats the keys of the sec language variables as case-insensitive
REVERT: 30d9ade19 Fix macro expansion: Now support } and/or }% to close a variable
REVERT: f44143436 Fix parser error on free text operator
REVERT: 1f68075a2 Process the logging phase on the benchmark utility
REVERT: 1e3cafb73 Fix memory management on the rules' messages (try 2)
REVERT: 71970915b Using `clear' to clean up lists instead of clean via integration
REVERT: 163483e8d Fix memory management on the rules' messages
REVERT: ed8b0c85d Fix `capture' memory management
REVERT: e34645437 Fix memory leaks on the collections/variables management
REVERT: 49fc1f8b7 Fix memory leak on the benchmark utility
REVERT: 8647d63e9 Fix m accuracy initialization inside the Rule class
REVERT: a2ffb3615 Adds "matched" line to the audit logs
REVERT: 362b376ac Adds verbose logs to audit logs while deciding or not to save a request
REVERT: 77a1dcab9 parser: fix issue with skipAfter action
REVERT: 049e4eb69 Adds support to the @rbl operator
REVERT: 4bdb4ed63 Fix chained rules execution order
REVERT: 8143f8ea8 Adds support to the action `maturity'
REVERT: 714df8db2 Adds support to the action `accuracy'
REVERT: 5a2a81a56 Adds support to the action `ver'
REVERT: 77900ed4e Fix rules `messages' on the auditlog
REVERT: 947437326 General improvements on audit logs information
REVERT: 31117d757 Fix error on older systems
REVERT: b9b3e8290 Fix AuditLog parts selection
REVERT: 934394239 Adds mutex around the write operation on the auditlogs
REVERT: b4691aa74 Updates python bindings version
REVERT: b46dc3457 Temporarily disable the HTML ENTITY DECODE transformation
REVERT: a102b5ce2 Improves the method fill the ARGS collection
REVERT: 98f45f357 Using a better number generator to avoid conflicts
REVERT: 36dfe81da Adds YAJL_CFLAGS to the project core
REVERT: fc225ff00 Fix whoAmI() call on Transaction
REVERT: b06eaadac Places the classes related to audit log into a separate namespace
REVERT: 2830525f8 Adds missing file: script.lua
REVERT: aaf995cc7 Adds missing file: transaction.h and removes assay.cc from git
REVERT: e45ad3b08 Updates Python bindings git hash
REVERT: 4db5cc7d2 Refactoring on Transaction class: adding comments and renaming variables
REVERT: 6f1e6f37d Fix trasanction cleanup on the C API
REVERT: a51e70751 Renames class Assay to Transaction
REVERT: f3fd5d662 Adds owasp/2 experiemntal rules on the test set for benchmark
REVERT: d780fd629 Fix the parse to distinguish between @pm content and a variable
REVERT: 702551ed4 Adds support to action `exec' to sec lang parser
REVERT: 331df90ba Enables OWASP CRS optional_rules on becnhmark test case
REVERT: 923620fbd Adds support to the action `allow' in the sec parser
REVERT: 7901c2c89 Adds the actions SetSID and SetUID to the seclang parser
REVERT: ab92bed6f Parser improvement: Supporting variables selection with regex
REVERT: 3acc013e4 Improves the secrules parser
REVERT: ed13cab9f Adds script to download and configure benchmark script to use owasp v[3,2]
REVERT: f23908f14 Improves the secrules parser
REVERT: a4d8dfd5e Adds ModSecurity recommended configuration file
REVERT: 29680d69a Updated geoip m4 file to support from path
REVERT: 527325826 Fix libxml configure script
REVERT: 8c7b6199f Optimization on the tolower function
REVERT: 076289236 Small fix on pull request #982
REVERT: e38a468a2 Updated with suggestions from @zimmerle for code style
REVERT: b3ab9a408 Support for correct implimentation of REQUEST_URI
REVERT: dd35b4776 Removes initcol debug messages
REVERT: a225f8b5b Fix SecResponseBodyMimeType test case
REVERT: 6ebe6dfd8 Merge pull request #1038 from pwnbus/update_readme_shell_syntax
REVERT: ebf2c8855 Update readme to use shell syntax
REVERT: decf04d26 Adds support to SecResponseBodyMimeType
REVERT: c2d9a153c Adds support to afl fuzzer in the build system
REVERT: 7cebc632e Adds Python bindings to the main ModSecurity git repo
REVERT: 913e22a77 Adds initial support to initcol action
REVERT: fb3696ac0 Fix a few things to provide an easy interface for script bindings
REVERT: ac10d8863 Changes the operator evaluate method to only support two arguments
REVERT: 215c4d107 Fix ARGS_POST and ARGS_GET variables order on the parser
REVERT: 2a950a435 Fix various minor bugs in the regression test suite
REVERT: 42ce0475b Coding style: changes the namespace in the comments
REVERT: 0694cd30c Adds support to libxml2 detection on the build system
REVERT: 80b82d370 Adds the Global LDADD option and fed according to the platform
REVERT: 467c977af Fix compilation without the GeoIP headers installed on the system
REVERT: 854ca4c1c Removes libinjection sources from the main project and add it as subfolder
REVERT: ea636e80e Clarifies conditional by placing its parts into parentheses
REVERT: b5a43871e Changes library namespace from ModSecurity to modsecurity
REVERT: a69e49a1b Makes DebugLogs optional by compilation flag
REVERT: fbf8ea74f Makes YAJL dependency to be optional
REVERT: cf4377df7 Makes libCurl optional during configure
REVERT: d8793e444 Prints rules language tests version on the configure summary
REVERT: 43c9b9216 Adds information about libInjection version at configure summary
REVERT: 45711b522 Update issue-960.json with 3rd test.
REVERT: d8361d57c Adds a regression test for issue #960
REVERT: 8c0e96f31 Prints a fancy summary after the configure script
REVERT: 18c862a84 Adds the concept of `resources' to the regression test utility
REVERT: 09a958544 Makes @geoLookup optional depending on the availability of libGeoIP
REVERT: 21cae53d4 Improves the libgeoip detection during configure
REVERT: 283c8c818 Fix some static analysis warnings
REVERT: ac61d1c40 Adds missing file
REVERT: de7984828 Code cosmetics
REVERT: 3c45a5713 Fix regression tests structure : using method instead of protocol
REVERT: c035e76ed Avoid segfault if parser `ref' is empty
REVERT: f65b08b06 Fix parser to accept redirect action without single quote
REVERT: 7a300eb94 Fix pcre cflags variable and adds LDFLAGS for dependencies
REVERT: 47233adf3 Revert "Adds experimental operator cache"
REVERT: 4dcefa104 Adds more plausible names for libgeoip
REVERT: ca33ba420 Temporary adds the missing optimization.cc
REVERT: 9e295dedc Adds rules optimization test app
REVERT: 326696976 Adds experimental operator cache
REVERT: c204f1f00 test: Increases the cache size of the urldecode transformation
REVERT: bb30d42b5 Speed up the random number generation
REVERT: 45638ccc9 Limit the amount of transformations inside the cache storage
REVERT: 5bef19aa4 Variables resolution results now stored into a std::vector instead of std::list
REVERT: 2ee5d4ca8 Testing performance enhancements by enabling transformations cache
REVERT: e641c3cc1 Huge improve in the variables resolution time
REVERT: 4a771f8c2 Fix pkginclude_HEADERS
REVERT: 48704c27a Removes some memory leaks
REVERT: 061ba0131 Refactoring: Create class Collection to hold collection properties
REVERT: b6ae0585c Refactoring: Place m_variables inside Collections
REVERT: 787be9812 Refactoring: Pass all the control over the variables to the Variables class
REVERT: 6f617e6ca Refactoring: Move Variables and Variable to independent files
REVERT: 776502e02 Refactoring: changes ModSecurityStringVar to transaction::Variable
REVERT: 7afc07914 Cosmetics: Fix static analysis warnings
REVERT: 11a1045f4 Adds support to capture this fingerprint of the detectSQLi operator
REVERT: 93031d93d Cosmetics: Fix coding style issues
REVERT: ffb973700 Replaces libpcrecpp by libpcre
REVERT: 2a062b7fe Not using pcrecpp on verifycc anymore
REVERT: 4168ebc2b Adds support to EscapeSeqDecode transformation
REVERT: 1716add77 Adds support to replaceNulls transformation
REVERT: 993247870 Adds support to hexDecode transformation
REVERT: 93c3bc804 Adds hexEncode transformation
REVERT: 0ae09201f Adds support to replaceComments transformation
REVERT: 7e826633f Adds support to the transformation normalisePath and normalisePathWin
REVERT: 7ab75ac01 Adds support to length transformation
REVERT: 8d78952e1 Fix jsDecode transformation
REVERT: 333174417 Fix cssDecode transformation
REVERT: 743fb651d Adds partially support to t:sha1 transformation
REVERT: 91d29d284 Adds support to urlEncode transformation
REVERT: e3e8bac13 Adds support to URL decode transformation
REVERT: 0227fe9d6 Adds support to t:compressWhitespace
REVERT: 3d2ec2a3f Fix unit test utility to get it working with t:removeNulls
REVERT: 17faef565 Adds support for trim, left and right trim
REVERT: 59af8ab84 Cosmetics: fixed the coding style
REVERT: 90c74beca Fix the init method signature in some operators
REVERT: 4a5e6b3e5 Fixed bad test cases
REVERT: e7803ebd0 Fix bug on regexp matched results
REVERT: 3fff34300 Adds missing variables
REVERT: 827b15f5c Marks redirect action as disruptive
REVERT: c1e3eac09 Fix variable exclusion regression test (label only)
REVERT: e65f0db13 Fix on the variable parser
REVERT: 95a707964 Warn about parser error during the regression test
REVERT: c800214e6 Fix pcre_exec matched string
REVERT: 0285c944f Fix collections resolution
REVERT: b0089cfde Adds MODSEC_NO_LOGS option to be part of the configure
REVERT: 74045beab Performance improvement while expanding macros
REVERT: 335133855 Performance improvement of setVar action
REVERT: e57ee8908 Searches for included configuration using the resource policy
REVERT: e54ef7205 Looks for external resources in the same path of the rule
REVERT: 5cc9e9450 Splits operator into OPERATOR and FREE_TEXT on sec lang grammar
REVERT: df819dc43 Removes SPACE token form the GRAMMAR
REVERT: 54c51e251 Fix parser shift/reduce problem on state 133
REVERT: 03eabd9c1 Fix shift/reduce conflict in the sec lang grammar.
REVERT: 941b9e75c Adds support to rules with actions without quotes
REVERT: 0087a602f Fix phases execution
REVERT: 8255ce86c Adds reference to filename and line number to lexer errors
REVERT: 900af2cd4 Adds possibility to use include with wildcards and env vars
REVERT: cb9524ffd Adds support to collection in the parser
REVERT: d084ab5f2 Fix the "line counting" on parser errors
REVERT: 70e2a4b37 Adds support to include path between quotes
REVERT: b49709101 Cosmetics: Fix coding style
REVERT: f6e0b447b Merge branch 'libmodsecurity' of https://github.com/SpiderLabs/ModSecurity into libmodsecurity
REVERT: 1cf1e313c Added some comments about msc_set_log_cb
REVERT: d044c7aae Removed some extra comments
REVERT: 2c39f83b5 Fix the regression test regexp validation
REVERT: f93c0de94 Disable NO_LOGS by default
REVERT: 076a02951 Huge performance improvement: passing variables as pointers avoiding copies
REVERT: 2451bf05d Using pcre (with JIT) instead of pcrecpp
REVERT: ed86c24df Adds checks for the NO_LOGS definition and improved the vars resolution time
REVERT: 3e067e740 Core is now ready to deal with SecRulesEngine set to Off
REVERT: 11e1a67d5 Fix disruptive action flow while RuleEngine is in DetectionOnly
REVERT: 490ad23e4 Uses macro expansion before apply redirect action
REVERT: 90df21bbb Removes the \' from setvar before name the collections
REVERT: d0c215d78 Adds support for the server log integration
REVERT: 5228b685b Fix disruptive actions execution
REVERT: 081fe235a Cosmetic: fix variable-REQUEST_BODY.json format
REVERT: 6782fd098 Cosmetic: Makes the parser error more verbose on the regression tests
REVERT: 5b18db779 Makes multipart debug messages goes over modsec debug log not stdout
REVERT: a52a3a71e Fix some regression tests to fit the most recent changes
REVERT: 639ccf7dd Fix the rule execution debug log, so that tests won't complain
REVERT: 7f747d1dd Fix multipart parser in crlf blobs
REVERT: c8f91ca85 Adds expected results when a regression test failed due to unexpected debug logs
REVERT: e88d2120f Including space in the list of readable characters for debuglog
REVERT: 7a468a8fb Cosmetic: Prints regression test results in a better shape
REVERT: 9d60dc6df Adds macro expansion for all operators
REVERT: 320bcde89 Adds rule number to the debug logs and printing expaded variables
REVERT: 4bf7f7a44 Adds 'expandKeepOriginal' method to macro expansion class
REVERT: c425b24ff Extends redirect action to support url without quotes
REVERT: 530b15831 Adds scripts to call the tests using valgrind
REVERT: b1e845211 Limits the variable size into the debuglogs and print it in hex if needed
REVERT: 8772daec4 Adds functions limitTo and toHexIfNeed into utils.cc
REVERT: 97214edf6 Fix multipart parser on binary content
REVERT: 23d843259 Fix rule.h include on modsecurity.cc and seclang-parser.yy
REVERT: a0a2d2c77 Adds support to read request body from a file
REVERT: 140a62a2b Changes rule_id to long in order to have it visible by systemtap
REVERT: 2a8f45b89 Adds transformations removeComments and replaceComments to the seclang parsers
REVERT: 3c5386991 Adds transformation normalisePath to seclang parser
REVERT: 92563da93 Adds t:utf8toUnicode and variable XML to the seclang parser
REVERT: 736183b7f Adds ctl:forceRequestBodyVariable to the seclang parser
REVERT: 4095ae7b5 Adds action accuracy to the parser
REVERT: 1079b5ba5 Adds action maturity to the parser
REVERT: 09651baf9 Adds action ver to the seclang parser
REVERT: 254b29265 Adds action expirevar to the parser and fix the line counting
REVERT: ee8b88637 Adds parser support to ctl:[auditEngine|ruleEngine]
REVERT: ec6a5a0cd Adds support to t:sha1 and t:hexEncode at seclang parser
REVERT: d1fa2cfa7 Parser: Fix redirect action and adds SecRule first line-only comment syle
REVERT: 5c3a4b608 Adds support to SecMarker and skipAfter
REVERT: b048794f4 Adds support to unconditional rules
REVERT: 4e8bb276b Fixing compilation problem on newer versions of gcc (Fedora 22+)
REVERT: 010c18f63 Adds support to SecDefaultAction configuration directive
REVERT: f2ed890ea Now accept SecRules regardless of the letter case
REVERT: 8675383c0 Updated build instructions for Fedora
REVERT: 9a0c9d493 Updated build instructions for Fedora
REVERT: 84eba7ad1 Updated build instructions for Fedora
REVERT: 9cd9f7f11 Updated readme to reflect required Fedora packages
REVERT: d963e2dc2 Updated readme to reflect required Fedora packages
REVERT: 3cd54e753 Updated readme to reflect required Fedora packages
REVERT: 7afd93196 Adds contains to the list of operators compatibles with the capture action
REVERT: 3de845fac Fix macro expansion string replacement
REVERT: 45d81e1c0 Adds sanity check to the rule id action
REVERT: 6ab88472b Adds a simple regression test for the operator @rx
REVERT: a63aa50f1 Changes the default operator to be @rx not @pm
REVERT: ea4cd5322 Accepts phases with its name instead of a number
REVERT: 035040cd1 Adds sanity check to confirm that the rule has an ID and it is not duplicated
REVERT: aae8036c0 Cosmetics: Fix debug log message
REVERT: 5d24b237b Fix default parts to be logged on audit logs
REVERT: fa4f72d90 Adds support to ctl:auditLogParts variation
REVERT: e89e395a3 Fix various minor issues on the auditlog schema
REVERT: 24b7d7266 DebugLogs are now being redirected to the correct files
REVERT: 01542e28c Allows blank line (or line with space) at the end of a rules file
REVERT: e76af0eab Correctly handling nginx configuration merge
REVERT: 004ef066e Fix rules chain and action execution
REVERT: f2da6bb81 Fix the ruturn value while loading the rules
REVERT: c586ba017 Removes an unused state from the seclang parser
REVERT: 15893e312 Fix regression test and example: checking if rules are loaded ok
REVERT: e94226f1d Fix some build issues
REVERT: fd8578351 Fix segmentation fault in the regression tests
REVERT: a16850271 Adds missing file
REVERT: 1065e297b Fix several minor issues on the seclang grammar
REVERT: e78d7f5b9 Makes the parser understand some missing configuration directives
REVERT: a453a656c Fix continuation line and VARIABLENOCOLON
REVERT: 0b225f023 Parser: adds support to SecRequestBodyInMemoryLimit
REVERT: 2d56aa521 Cosmetics: fix actions on yy file
REVERT: a230a4ff3 parser: Adds support for continuation lines
REVERT: ef9961540 parser: Understanding @pm if no operator is provided
REVERT: 101fddfc9 Extends DICT_ELEMENT to support "-"
REVERT: d5bf95502 Using DetectionOnly instead of DetectOnly
REVERT: b7fb65fe6 seclanguage: ignore lines starting with "#"
REVERT: cff74e7ce Fix ValidateUrlEncoding corner case
REVERT: 1de6d07df Adds support to the @detectSQLi operator
REVERT: 4baee88eb Adds support to the @detectXSS operator
REVERT: f0535ae11 Adds libinjection repo as submodule
REVERT: ad65a1abe Adds @noMatch operator
REVERT: 73c6c8cf7 build: searching for pcre/geoip on /opt/local directory
REVERT: d5fe21ce3 Code cosmetics: reduce the amount of cppcheck warnings
REVERT: 21400ba45 Adds support to the @verifyCC operator
REVERT: 1b0a91833 Adds support to the @validateUrlEncoding operator
REVERT: b325834f1 Disables c++11 mutex, until we have a better approach
REVERT: ac2f0bfd0 Cosmetic: avoiding warning by including full path instead of file.h
REVERT: 2ff0a44df Eliminates the sec language grammar shift-reduce problem
REVERT: a324ff931 Fix validate byte range table initizliation
REVERT: 187be64ed Fix operator instantiation/selection
REVERT: 9a7506f9e Adds support to the beginsWith operator
REVERT: 209a3db47 Adds support to the @endsWith operator
REVERT: 577736abb Code cosmetics: Fix the coding style.
REVERT: fb161a69a Removes some warnings by adding missing returns
REVERT: c5a435534 Fix geolookup operator instantiation
REVERT: 64cbb1533 Adds support to the @containsWord operator
REVERT: 2f81b62d1 Adds missing return to ValidateByteRange::init
REVERT: b883888c0 Adds support to the operator @within
REVERT: 218eab641 Fix libgeoip lookup during the build
REVERT: 52c419df6 Updates secrules-language-tests version
REVERT: f231df16a Adds support to the ValidateUtf8Encoding operator
REVERT: 9096055ea Reduces bison dependency to 3.0
REVERT: 70c2621af Adds support to the strmatch operator
REVERT: f62e17c67 Adds support to the @eq operator
REVERT: 2f1bcf6cb Ignores the parameters order on the test case
REVERT: 9231f507b Fill PATH_INFO with decoded value
REVERT: 9431678f8 Adds missing return true on RequestBodyProcessor::Multipart
REVERT: 7c406529e Prints "failed!" for failed test cases
REVERT: 317c71e81 Using raw uri value to feed QUERY_STRING variable
REVERT: 70b25668b Checks if assay is set before calling the log method
REVERT: 0a91f2aa4 Changes the rule in the example folder to something really simple
REVERT: ce0d81c0d Adds sanity check for inputs
REVERT: 5cc38abfe Updates the reference for secrules-language-tests
REVERT: c06179f18 Adds support for Log and Rev actions
REVERT: ad9393a8c Adds support for the tag action
REVERT: f519717bd Adds support to the msg action
REVERT: 5fdb5b7d2 Adds support to macro expansion in setvar action
REVERT: e12d95b10 Adds support to the TX collection and setvar action
REVERT: a9e0fbb41 Adds variable variations test cases
REVERT: 88c53575b Adds support to & (count) and ! (exclusion) as variables variations
REVERT: 4308ee028 Adds t:none transformation
REVERT: 522f195aa Adds support to urlDecodeUni transformation
REVERT: 6dad6af4a Adds RemoveNulls trasnformation
REVERT: 62d004cf0 Adds support to the transformation normalisePathWin
REVERT: 1353403c9 Adds support to the HtmlEntityDecode transformation
REVERT: ce298165d Adds support to the cssDecode transformation
REVERT: 1924b4ebc Adds lowercase transformation
REVERT: 391002c66 Adds support for jsDecode transformation
REVERT: 4f47651a6 Adds variable TX and action "capture".
REVERT: be4a0cb41 Adds REQUEST_COOKIES and REQUEST_COOKIES_NAMES variables
REVERT: 0720fd479 Adds operator @pmFromFile and @pmF
REVERT: 57ceef1fe Update test cases submodule
REVERT: d4dd9c86d Accepts Suricata format on @pm operator
REVERT: 95efb99a8 Adds support to the @pm operator
REVERT: 774d89735 Adds support to the operator @ipMatchFromFile and @ipMatchF
REVERT: 6cd4c0492 Adds support to the Rx operator
REVERT: 3a4cef6fb cosmetic: Fix ValidateByteRange coding style.
REVERT: 8575c1078 unit-test: Fix the geoip debug code
REVERT: 17f88f582 Using libpcre instead of c++11 regex
REVERT: 2f4d4691c Disables @containsWord operator to enable the libpcre migration
REVERT: a4cf218a3 Removes chrono references to make it compile with gcc 4.8.x
REVERT: 933ade596 Cosmetics: 1st paragraph of README file is now with lines smaller than 80 chars
REVERT: 7ff38e901 Temporarily disable Geo Lookup logs to avoid crash on unit tests
REVERT: f811ec651 Adds support to @ipMatch operator
REVERT: bf0169b52 unit-tests: Releases operator after use
REVERT: a05fa8287 Adds support to the validateByteRange operator
REVERT: c2d33823f Adds method init to Operator class
REVERT: 7b4554216 Adds support to the operator le
REVERT: 606f03be4 Adds support to the operator gt
REVERT: 235bf9c01 Adds support to the operator gt
REVERT: 170cb60c8 Adds support to the @streq operator
REVERT: 35901c1eb Adds support to the operator ge
REVERT: 4462fd84e Adds support to negative on the contains operator
REVERT: f41f9e1f0 Adds "negation" property to the operators signature
REVERT: 2f3a8f088 Updated wording and grammer in README
REVERT: 6beca48c5 Fix C api signatures
REVERT: e016b72a8 Handles better the memory utilization
REVERT: 0e7c13e3c Adds more regression tests to SecRemoteRules
REVERT: 7ba5c76c7 Returns elegant errors if rules load operation failed
REVERT: b8f7fb441 Adds support to SecRemoteRules and Include directives
REVERT: ec9a97324 Fix actions: returning string copy after evaluation
REVERT: b2bbe24e2 Process the request body even if there is nothing to be done
REVERT: 76b34af35 Adds support to load remote rules
REVERT: 70bc15cb7 Adds support to quoted ID action
REVERT: 64543e3aa Using A-Z instead of A-z while parsing with ?i: to avoid warnings
REVERT: b5ca607e7 Places class Driver under the Parser namespace
REVERT: 9c2158958 parser: Loads content straight from buffer.
REVERT: d3eb0fd91 Driver class is extending the Rules class instead of duplicate elements
REVERT: dc0b13ad7 Cosmetic: fix copyright header
REVERT: 16bb253d0 Adds all variables to the 'Variables' name space
REVERT: 261ee9f11 Adds support to BodyLimitAction and support for parser errors
REVERT: 30b2624ec Adds support to parser error
REVERT: 5b3fd479f regression: better format errors, making easy to read the output
REVERT: 3f883df76 regression: Sorts test cases by file, making easy to read
REVERT: 3f8fa64c9 regression: Allows to specify a single file or directory
REVERT: a4af4f32c Fix transformations regression test
REVERT: 667586c42 Adds UNIQUE_ID variable
REVERT: d20a47fb0 Adds support to the variables: REMOTE_HOST, SERVER_{ADDR,PORT}
REVERT: ae81bb143 Adds support to the variables: RESPONSE{BODY,CONTENT_LENGTH,CONTENT_TYPE}
REVERT: ec34f676c Adds support to variables: REQUEST_{METHOD,PROTOCOL,URI,URI_RAW}
REVERT: bc925e01e Adds support to the REQUEST_LINE variable
REVERT: cb722c74b Adds support to REQUEST_HEADERS{_NAMES} and RESPONSE_HEADERS{_NAMES} vars
REVERT: 97c0d561f Adds suppor to the REQUEST_FILENAME variable
REVERT: 94eddfcf4 Adds support to the REQUEST_BODY_LENGTH variable
REVERT: b6221c981 Adds support to REQUEST_BODY and REQUEST_BASENAME variables
REVERT: 6f7d3fa67 Adds support to the TIME* variables
REVERT: ad442fb20 Fix transformation regression test
REVERT: dbbb2c526 Adds support to REMOTE_PORT variable
REVERT: e8476771e Adds support to REMOTE_HOST variable
REVERT: cc576533b Adds regression test to the REMOTE_HOST variable
REVERT: f05632acb Adds regression test for the REMOTE_ADDR variable
REVERT: 6af9e8e42 Fix QUERY_STRING variable
REVERT: 7f76bb6df Adds PATH_INFO variable
REVERT: 62fece782 Adds support to SecResponseBodyLimit directive and OUTBOUND_DATA_ERROR var
REVERT: 8e59b1822 Adds support to variable MULTIPART_UNMATCHED_BOUNDARY
REVERT: a9147b76a Adds support to the MULTIPART_STRICT_ERROR variable
REVERT: 09beb1a5c Adds support to MULTIPART_NAME variable
REVERT: 954e275b3 Adds support to MULTIPART_FILENAME variable
REVERT: abec93263 Adds support to MULTIPART_CRLF_LF_LINES variable
REVERT: 21f4c49a0 Adds support to MATCHED_VAR_NAME variable
REVERT: b089c44c1 Adds support to MATCHED_VARS_NAMES variable
REVERT: 09867791c Adds support to MATCHED_VARS variable
REVERT: 9d6950196 Adds support to MATCHED_VAR variable
REVERT: 4f20f5bf7 Adds initial support to chained rules
REVERT: 9c066e319 Adds support to the INBOUND_DATA_ERROR variable and SecRequestBodyLimit direc.
REVERT: 95c2fed89 Adds support to severity action and HIGHEST_SEVERITY variable
REVERT: e189055ec Adds support to GeoIP operator and variables.
REVERT: 41bf1490b Adds MODSEC_BUILD variable
REVERT: 6e46c5c7f Adds support to FULL_REQUEST_LENGTH variable
REVERT: e516ded1e Adds FULL_REQUEST variable
REVERT: a264fc11c Adds support to the FILES_TMP_CONTENT variable
REVERT: b6cccc798 Adds support to the FILES_SIZES variable
REVERT: ebb16d043 Adds support to FILES_COMBINED_SIZE variable
REVERT: e1cff89b4 Adds support to FILES_NAMES variable
REVERT: fe6a9913c Adds test case for FILES variable
REVERT: 5d5e10bfd Adds support for basic Multipart process
REVERT: d0b7a9966 Adds support to the ENV variable
REVERT: 27252bc80 Adds support to the variable DURATION
REVERT: 33dff0f1b Refactoring on the variables resoluvtion method
REVERT: 8c408ebcd Adds support to AUTH_TYPE variable
REVERT: d86427f1d Minor fix on the auditlog regression tests
REVERT: f0624bb08 Adds support to ARGS_GET_NAMES variable
REVERT: e7ec09623 Adds support to ARGS_POST_NAMES variable
REVERT: bc0553e72 Adds support to the variable ARGS_NAMES
REVERT: 92c132b64 Adds support to the ARGS_GET variable
REVERT: 492526cfc Minor fix on the actions test case
REVERT: 85f065363 Adds support to the variable ARGS_POST
REVERT: 228a5ce7c Adds support to ARGS_COMBINED_SIZE variable
REVERT: 76b769cc8 Decodes the url content before assing values to varibles
REVERT: b2954ff22 Fills ARGS variable even on POST
REVERT: 9f869a6aa Adds test case for the variable ARGS
REVERT: 80f13437e Refactoring on the variable read/store methods
REVERT: f13a1bd88 Adds support the Parallel audit log index creation
REVERT: 96a777a5c Adds initial serial audit logging support
REVERT: 001d5ebf7 Properly deal with classes destructors
REVERT: 0c98bdc80 Adds support to SecAuditLogParts
REVERT: 5e33a1a3c Opens auditlog files and directories with the correct mode
REVERT: c9620ac50 Writes audit log in parallel mode
REVERT: 693238b23 Process the log phase independent of disruptive actions
REVERT: 5e80e001e Adds Components information to the audit logs
REVERT: 1ddb36a78 Adds SecComponentSignature configuration directive
REVERT: 4aa521df6 Adds SecRuleEngine state information to the audit logs
REVERT: 75a9cfa27 Uses an enumeration to determine the state of the SecRuleEngine
REVERT: cb8d6249a Adds connector information to the audit logs
REVERT: 2138dd136 Adds method setConnectorInformation to ModSecurity class
REVERT: e42e7545d Adds ModSecurity version information to the audit logs
REVERT: 8dab5ac30 Adds whoAmI method to ModSecurity class
REVERT: aa8dc9115 Adds first version of Assay's materialization in a JSON format
REVERT: 610b10bcd Adds ascTime function to utils
REVERT: 888b9622c Adds random id to each assay
REVERT: 311279402 Adds a time stamp to assay class
REVERT: 278b51393 Adds protocol and http version to processUri method's signature
REVERT: 210991084 Adds support to the server ID generation
REVERT: aadbacf85 Adds basic regression test for AuditLog functionalities
REVERT: fd8f26f76 Adds all auditlog related directives to the configuration parser
REVERT: fc622c27d Checks if an assay is relevant to be saved as an auditlog
REVERT: 0beae17b4 Adds 'http_returned_code' property to Assay class
REVERT: 885fe14f3 Adds AuditLogWriter{Serial,Parallel} classes
REVERT: e44d6e280 Adds actions 'auditlog' and 'noauditlog'
REVERT: 71eb27bbe Adds a new constructor to Action it now receives kind as parameter
REVERT: 616a2ae6d Adds AuditLog class
REVERT: 7ea9ff883 Code cosmetic: Having the code following our coding style
REVERT: 73154b51a Adds processLogging phase to regression tests
REVERT: 64a34584c Build system fixes
REVERT: 344aa901b Updates README.md: highlight that the project still under development
REVERT: f262b404c Fixed issue #905 that dealt with compilation on c++ 5.x >
REVERT: b9507e396 Decreases the bison requirement from 3.0.4 to 3.0.2
REVERT: 721f95115 Adds transformation functions stub
REVERT: 95cb4c56a Very first commit: libmodsecurity
REVERT: 33cbe0452 Opens space for libmodsecurity
REVERT: 4a49d5b8d Adds information about the issue #871 on the CHANGES file
REVERT: d9bebfb87 Compiles against ssdeep in non-standard location
REVERT: 25666005e Modifies the CHANGES file to cite issue #609
REVERT: 1ed95ad93 Fix invalid storage reference by apr_psprintf() when creating a string from salt[]. salt[] is not '\0'-terminated, so apr_psprintf() needs to be told the extent of the bytes to read.
REVERT: a9a39255b Version 2.9.0
REVERT: b304ab1aa Improves SecRemoteRules messages on IIS
REVERT: f7c7a30db Uses our own version of ap_find_command
REVERT: 462308be7 Improves the accuracy of version identification on status calls
REVERT: a235b536a Fix apr_crypto.h include in modsecurity.h and msc_remote_rules.c
REVERT: 2e09b8e54 Fixed comment incorrect comment
REVERT: de74b131c Version 2.9.0-RC2
REVERT: b1e4954a8 Closes a file handle that was left opened on fuzzy hash
REVERT: f6d6cea01 IIS: Creates IIS_VERSION definition
REVERT: 6c0cdab35 IIS: Changes Curl version and removes OpenSSL dependency
REVERT: 0d2d01ba2 Disables mlogc compilation with Curl was not found
REVERT: 069122194 Reducing the amount of compilation warnings
REVERT: fa77c9358 Fix typo on fuzzy hash match message
REVERT: dc81e4f85 Informs problems and successfully loaded external resources during reload
REVERT: fe22446bd Adds missing 'ModSecurity:' prefix to log messages
REVERT: ce4cf24f6 Refactoring external resources download warn messages
REVERT: d4a055e78 Checks HTTP code after performing a resource download
REVERT: 87a401af0 Fix remote resources download while hosting SSL site on Apache
REVERT: 23823bb2c Makes Curl no longer a mandatory depedency for ModSecurity core
REVERT: 94fd570e3 Fix parser segfault on parser while parsing downloaded content
REVERT: 23f6f6e6e Version 2.9.0-RC1
REVERT: b019f6056 fix typo
REVERT: 277f2e1e6 iis: adds openssl to the build scripts
REVERT: 9fe72b72d Improves the CA validation
REVERT: b02256cf1 IIS: temporary removes ssdeep support on IIS
REVERT: 85c7ba0c7 IIS: Adds ssdeep/libfuzzy to msi installer
REVERT: 858d480ec iis: Copy yajl.dll into release files folder
REVERT: 9f005c3de mlgoc: Adds option to enable or disable the SSL checks
REVERT: 73d7955ac Fix the compatible IIS versions
REVERT: eb61e891a Build: New alternative to identify the presence of libfuzzy
REVERT: 723336f1f Adds regression test for FILE_TMP_CONTENT
REVERT: 86787f2af Adds SecRemoteRules regression tests.
REVERT: b5398abaf Forces downloads using https-only for resources or rules
REVERT: 59fc24350 Adds the `crypto' option to SecRemoteRules directive
REVERT: c54bb746c Adds SecRemoteRules as an build option
REVERT: 38b992470 Adds the SecRemoteRulesFailAction directive
REVERT: 9b836b652 Initial support to load rules from a remote server
REVERT: 899ee0c36 Adds support to load remote resources to pmFromFile and ipMatchFromFile
REVERT: 81bde0842 Adds curl support to main core
REVERT: f45c6fe87 Build: fix the build script that looks for yajl
REVERT: 288fedfd2 Adds real_server_signature symbol to msc_test
REVERT: 59a1746be Using real server signature on status call
REVERT: 8305600d5 Trims long `apache version' in the status call
REVERT: cee205b10 Adds Status test case with the SecServerSignature being used
REVERT: 2615a5dfc mlogc: Checks if curl supports CURL_SSLVERSION_TLSv1_2 before use it
REVERT: 54bf71f8b mlogc: Changes the default SSL algo to TLS 1.2
REVERT: d554b94d1 Include apr-util's LDFLAGS
REVERT: 66bb840a5 Adds doxygen configuration files
REVERT: f2b45bfaf Automake: Using ../ instead of $(top_srcdir)
REVERT: 11ede79bc Adds automake subdir-objects option
REVERT: c64a681c6 Temporarily disable a test that is leading nginx buildbot to fail.
REVERT: de1c028d1 Declares msre_var *rvar at the beggining of the function
REVERT: a45fe95ed FuzzyHash: if disable giving an run time error instead of config
REVERT: fa0c97ea7 Adds regression test to cover the @fuzzeHash operator
REVERT: 7affec82a iis: Adds ssdeep support
REVERT: 96865a92d Adds fuzzyHash operator
REVERT: 873c628b1 Adds ssdeep support in our build system
REVERT: accb1820e Adds collection FILES_TMP_CONTENT
REVERT: 87df4827d Print YAJL version on startup. Closing issue: #703
REVERT: 79639b5e4 Accepts random port on FULL_REQUEST regression test
REVERT: 6b5e9b127 Merge branch '0xbin-master'
REVERT: ed52c5462 typo rectify
REVERT: 046b55373 Fix ipMatch entry on ErrorLog and DebugLog
REVERT: 5d92e448a Fixes subnets representations using slash notation
REVERT: 731466cff Adds @ipMatch operator unit test.
REVERT: d4c2b96b8 IIS: Changes event ID (Issue #676)
REVERT: 0f7cbced8 IIS: Cosmetics: Removes CLFR.
REVERT: 1d3c8349f IIS: Adds a VS Custom build to speed up the dev process
REVERT: 3a7def63a IIS: Adds mlogc to ModSecurity solution
REVERT: 90c5a420d IIS: Cosmetics: Files are better grouped in VS
REVERT: c4a5a1e11 Version 2.8.0
REVERT: 50e4961dd Uses autotools to idenfiy if sys/utsname.h is present
REVERT: 33231378d Increases the package version on the configure.ac
REVERT: 480f6bac7 Merge pull request #692 from rcbarnett/master
REVERT: 62a76e1ed Update CHANGES
REVERT: ad5824c00 Fix type on the CHANGES file.
REVERT: 0826380ac Version 2.8.0
REVERT: 385a2828e Code cosmetics: Reduces the amounts of warning.
REVERT: 1e63e49db Uses %zu to print size_t instead of %d.
REVERT: 503e8f6c8 Updates the libinjection
REVERT: 66939d059 Adds initial support to @detectXSS
REVERT: 47f5cf92d Removes forced chartset
REVERT: efef989dd Renames Sec{Read|Write}StateLimits
REVERT: 48d85c7d6 Places connection filter engine in a separated configuration
REVERT: a15f8813e Honor the SecRuleEngine while filtering connections
REVERT: 0037a0732 Using RadixTree instead of list to storage IPs
REVERT: 80185e2a9 Bugfix: Missing ipv6 support check
REVERT: b9fdc4fe3 Adds support to suspicious and whitelist to Read and Write limits
REVERT: 8ff3de5b6 iis: Disables installer repair
REVERT: d6dd1f0e9 iis: Adding VC110 files to the Windows installer
REVERT: 28d4f9fce iis: Checks Win version before declare inet_pton
REVERT: bd0980f63 Reverts commit: a4202146b8d26b6615bbab986383fe0afae60d77
REVERT: 93b12df72 iis: Removes unnecessary files.
REVERT: fe727c702 iis: Updated OWASP crs to version 2.2.9
REVERT: 10db38431 iis: Adds cleanup methods to the installer
REVERT: f8f06f793 IIS: Updates build_msi.bat to fit the new WiX install options
REVERT: 4d7d1ba82 iis: Adds listing dependencies script
REVERT: 619758c0c iis: Adds condition to avoid the use of 32b msi on a 64b os
REVERT: 93a86f6f3 iis: Adds Visual C++ 12.0 Runtime to be part of the msi package
REVERT: ec61749a6 Changes JSON parser to not accept parcial contents
REVERT: 966e7e1ff Adds verification before access the strcmp
REVERT: c5c269080 Adds origin to the paramenters that cames from JSON
REVERT: 52bef20ce Adds unit test to the JSON parser
REVERT: a95f37196 Adds JSON support on ISS port
REVERT: 0787b4548 Adds support to JSON parser in the nginx module
REVERT: 09ced44ff Supports the yajl version 2
REVERT: 8d4c3e4f5 Makes the build system to look for yajl using a macro file
REVERT: e90874a69 Added sample JSON content-type rule
REVERT: c23097ce1 Added support for JSON body processor
REVERT: 410aca9d7 Optimization on the status engine call
REVERT: 20014c808 Adds modsecStatusEngineCall to standalone API
REVERT: d75e443b9 Adds regression test to SecStatusEngine
REVERT: a6d93441c Places StatusEngine to be Off by default
REVERT: e131e2222 Adds support to status engine on IIS version
REVERT: f86a71f7a Adds SecStatusEngine On/Off switch
REVERT: 0c6a661c6 First version of the status engine implementation
REVERT: d93ce9cee Adds REQUEST_FULL and REQUEST_FULL_LENGTH variables
REVERT: 62f3d0289 Adds utf8toUnicode.t to our unit tests
REVERT: 5b0c933cf Fixes UTF8 to Unicode conversion bug in 4-byte encodings
REVERT: 7e459827e Log why writing to audit log failed
REVERT: 607dfd229 Fix segmentation fault if writing to audit log fails
REVERT: 5342f3616 iis: Uses code 400 instead of 44 in modsecurity.conf
REVERT: a0ed3dbbe Merge pull request #666 from derhansen/master
REVERT: dda91f168 Standalone: independently destroy the connection and request pools
REVERT: 27dd513ab Flip allocations that happen during initialization (typically) over to use non-global apr memory pools.
REVERT: 31d7fc6d3 Code cosmetics: Place copy_rules in nice shape.
REVERT: 62a6f228f Fixes for Parfait errors - mostly unhandled NULL pointer dereference and data type mismatch
REVERT: 5f996d45f Adds regression test to SecRequestBodyLimitAction
REVERT: 498b9b2e7 Don't reject a large request with ProcessPartial set
REVERT: ab9aede2e Update status code for rule 200002
REVERT: 063dd640e Adds internal error messages while parsing the configutarion
REVERT: da2ec008b Fixes a typo on the README.txt
REVERT: 1694a0cf3 Merge branch 'nginx_regression'
REVERT: f043ba33a Adds .a to the list of expected liblua extension
REVERT: 5d2e3d432 test: 10-misc-directives.t is not considering log anymore
REVERT: 8804b55cd test: Makes regression test mac friendly
REVERT: 8314791c9 test: nginx: Adds timeout while listening for a socket.
REVERT: 215042af2 test: nginx: Points the !# to envoriment.
REVERT: d26e63951 test: nginx: Speeds up regression test in nginx.
REVERT: fe14d9df4 nginx: Considering modsec state before apply any rules
REVERT: 9bf1f6a2b test: removes uncessary ifDefine at 10-tfn-cache.t
REVERT: 94097103c test: nginx: Adds missing environment variables.
REVERT: 6c106b1fd test: disabling: SecAuditLogType Concurrent
REVERT: 8e390899e test: nginx: Increses the timeout while reading the audit log.
REVERT: 3cf170179 test: Adds loading tests also to nginx.
REVERT: 795d6a64d nginx: Warn about not workable 'proxy'
REVERT: 7478faa5c test: Adds support to handle different content in log depending on the version
REVERT: 7ac515ee2 nginx: Adds proper support to SecServerSignature
REVERT: 2a4358939 nginx: Removes problematic performance improvement
REVERT: 21e25c50a test: nginx: Adds missing files
REVERT: 176396ddc tests: nginx: Allow POSTs in static files
REVERT: e20c80004 nginx: fix missing headers while SecResponseBodyAccess was On
REVERT: 445783d06 tests: Sleeps over 20 seconds if nginx failed to exit immediately
REVERT: fb4e1f1b6 tests: Adds random data to a post making it workable in nginx
REVERT: 450d621ca tests: adds test-regression-nginx to the makefile
REVERT: 96ad8267e tests: Marks the run-regression-tests-nginx.pl script as executable.
REVERT: 93c5b8c6a Merge branch 'regression'
REVERT: 0ad390d12 Tests: fixes tests/regression/rule/10-xml.t
REVERT: ba0818ca3 tests: cleans up the apache configuration file
REVERT: 6325ed8d4 Tests: fixes regression/misc/10-tfn-cache.t
REVERT: ddb4fceb6 Tests: fixes regression/rule/20-exceptions.t
REVERT: 0c99063aa Tests: fixes regression/rule/00-basics.t
REVERT: 7c9ebfeb2 Tests: fixes regression/action/10-logging.t
REVERT: 11287a6b9 test: fixes regression/misc/00-multipart-parser.t
REVERT: b0025c88f tests: fixes regression/config/10-request-directives.t
REVERT: e5560a6a4 tests: fixes regression/config/10-misc-directives.t
REVERT: 0ddd2b463 Add mod_extract_forwarded.c to run before mod_security2.c
REVERT: b788ce260 Clean the garbage character after the duplicated charset property
REVERT: 74ec78400 libinjection sync
REVERT: 227de9fb8 Reverts commit b1cbccdc6b18a0f3a4edda8a5dfa9f6621485e81
REVERT: 2f5af6af7 Merge tag 'refs/tags/v2.7.7'
REVERT: 87115e770 Adds a default config script to nginx
REVERT: 537b85edf Changes SecUnicodeMapFile in recommend configuration
REVERT: 90a44f688 Updates the changes file
REVERT: c473aabb4 Changes release version to 2.7.7
REVERT: b1cbccdc6 Added new directive (SecPdfProtectMethod) to enable the user to choose between using token redirection (falling back on forced download in some cases) and forced download (in all cases).
REVERT: 9543e136c Fix typo causing build issues
REVERT: 4a7d439de Merge branch 'release_2_7_6-rc2'
REVERT: 6d3606aad Updates CHANGES files.
REVERT: 1cde4d2dd Organizes all Makefile.am
REVERT: 351b9cc35 nginx: generates config file using configure input.
REVERT: da16d9e5d nginx: adds lua support
REVERT: 5046c8327 iis: Cosmetics fixies on sqli.
REVERT: ae252ee87 Regression tests: makes configuration compatible with 2.2 and 2.4 (try 2)
REVERT: 65d9272fd nginx: Trying apxs and apxs2 while compiling nginx module
REVERT: 35fd75d85 nginx: Trying apxs and apxs2 while compiling nginx module
REVERT: 751a9f4e4 macos: Using glibtoolize instead of libtoolize
REVERT: 6fc4cac37 regression-tests: makes configuration compatible with 2.2 and 2.4
REVERT: e9813cd0d Regression test: get it working with apache 2.4
REVERT: 7366f35c1 Code cosmetics.
REVERT: 9bf2959c9 iis: Waiting for 5 seconds before move curl directory
REVERT: f70f6f428 Redefines unixd_set_global_mutex_perms on tests
REVERT: cef72855e test: Avoids conflict of fuctions definition
REVERT: cc982ae42 test: Makes the unit tests to work again
REVERT: ad330a44b iis: Avoids directory link while building
REVERT: 69c5ccac6 QA: Avoids the utilization of 3rd filedescriptor
REVERT: baaf50236 Supports WarningCountingShellCommand in cppcheck and vera
REVERT: 388943440 Adds verbose quality check
REVERT: b77e90152 Adds support for coding style and quality check
REVERT: 7b1537058 iis: Using base_rules instead of activated_rules
REVERT: 2ea5a74a7 iis: New improvements on the Wix installer
REVERT: 1a12648c9 iis: Removes the installer helper dependency
REVERT: 550d5aae2 iis: Remove readme.html
REVERT: a2c5fc831 iis: Adds batch script to compile Wix
REVERT: 3604763e1 iis: Adds Wix installer resources
REVERT: a4202146b iis: Fix inet_pton build problem
REVERT: b32cb7d9a iis: Adds Wix installer xml file.c
REVERT: 7e03e3f84 iis: build_modsecurity.bat fixies
REVERT: 947711890 iis: Adds release script
REVERT: 79875b1af iis: fixies the Installer.cpp coding style
REVERT: 91738f93b iis: Removes AppWizard remade file
REVERT: adfbeb85d iss: Removes pre-compiled headers
REVERT: 6adf25667 iis: Moves installer to InstallerHelper
REVERT: 8c3b8d81b iss: Removes fart dependencies
REVERT: 192599bf6 iss: Better err handling in build scripts.
REVERT: e25c6b2e8 iis: Moves build_module.bat to build_modsecurity.bat
REVERT: 9b7663fa7 iis: Fix mlogc build on windows
REVERT: 28bbde1bb iss: Removes Post-Build event.
REVERT: 368617ddb iis: Relative paths on the VS project file
REVERT: cf5de78df iis: Identifies arch before unzip apache
REVERT: 1447766e8 iis: Renamves winbuild to dependencies
REVERT: 9f8cbf6ed iis: Removes unnecessary files from winbuild dir
REVERT: b277e538f iis: Improves the iis build system
REVERT: a946a163f iis: Fixes the vcxproj file
REVERT: 26738d2e3 iis: Removes unecessary files from the build system
REVERT: 0a772cb07 iss: Changes httpd version 2.4.6
REVERT: 3e6fb41d3 iis: Changes the version of the dependencies
REVERT: e3c19d53d Removes standalone/Makefile.in
REVERT: 1734221d9 Fix#154, Uses addn instead of apr_table_setn
REVERT: 61e54f206 Merge pull request #579 from zimmerle/revert_139
REVERT: 7f7d00fa2 Revert "Merge pull request #139 from chaizhenhua/remotes/trunk"
REVERT: b0c397784 Merge pull request #578 from client9/remotes/trunk
REVERT: a5f175d79 libinjection sync
REVERT: 88ebf8a0b Merge pull request #152 from client9/remotes/trunk
REVERT: fcb6dc13e libinjection sync
REVERT: f52242a01 libinjection sync
REVERT: b76e26d81 Merge pull request #148 from zimmerle/bugfix_charset_missing_string_terminator
REVERT: ff19dcd5c Bugfix: missing string terminator while mounting the charset (nginx)
REVERT: 786773189 Merge pull request #147 from zimmerle/fix_nginx_build_config_top_of_trunk
REVERT: 57330da9a nginx: Makes the build script to check for deps
REVERT: 9a630eea2 Merge pull request #141 from client9/remotes/trunk
REVERT: 11217207e libinjection sync
REVERT: f8d441cd2 Fix Chunked string case sensitive issue - CVE-2013-5705
REVERT: 3901128f1 Revert "Fix Chuncked string case sensitive issue"
REVERT: 16a815a3c Fix Chuncked string case sensitive issue
REVERT: 10fd40fb0 Merge pull request #139 from chaizhenhua/remotes/trunk
REVERT: 414033aaf Merge pull request #138 from client9/remotes/trunk
REVERT: e0993fcd7 Fixed fd leackage after reload
REVERT: 2268626c2 libinjection sync
REVERT: 7e0a9ecf7 Fix logical disjunction and conjunction issues
REVERT: 876d4f5f9 Merge pull request #136 from SpiderLabs/remotes/trunk
REVERT: 2c2adc20f Fix IIS Makefile.win typo
REVERT: 370069a08 Update CHANGES
REVERT: 88a9282c6 standalone: fix mutex compilation error with apache 2.4
REVERT: 464ac1eca Fix crash when use SessionID as paramenter in SecHashKey
REVERT: e6f94eac4 Update CHANGES
REVERT: 50f9d0140 Merge pull request #130 from client9/remotes/trunk
REVERT: 8b6efc013 Fix make (rx regex) test
REVERT: cefddebe1 libinjection sync
REVERT: 3f080fa8c Merge pull request #128 from client9/remotes/trunk
REVERT: 15f3a3040 libinjection v3.3.0 sync
REVERT: 65e97684b libinjection v3.2.0
REVERT: 7ca8830a3 Update CHANGES
REVERT: 0fc4142a3 Change strncpy to memcpy
REVERT: f44a535c9 Merge pull request #125 from client9/remotes/trunk
REVERT: a6fd09b69 Fix null byte convertion into utf8toUnicode
REVERT: 229d4e4fe Merge pull request #124 from client9/remotes/trunk
REVERT: 9eca8b5ca v3.1.0
REVERT: b1f61617b Merge pull request #122 from client9/remotes/trunk
REVERT: 83fdf34dd sync with 3.0.0 tag
REVERT: c07b9a536 libinjection v3.0.0pre21 take 2
REVERT: 4064e74cc Fixed: Libjection 3.0.0 compilation errors
REVERT: 9bf132334 Merge pull request #121 from client9/remotes/trunk
REVERT: bebb45f3b SecUnicodeMapFile now accepts the code page. SecUnicodeCodePage is deprecated
REVERT: 034bf1912 Fix double free
REVERT: 885eeecef Fix outbound size of salt variable
REVERT: b362ab0d9 Fix standalone makefile.am
REVERT: a79e81849 Merge pull request #116 from chaizhenhua/remotes/trunk
REVERT: 4ffdf9bf6 Nginx: Fixed segfaults on reload
REVERT: 9851769ea Fixed: increasing compatibility with older versions of install
REVERT: 5cf5ff043 Fixed: flush libxml2 output buffer
REVERT: df0b04825 Setting crypt outpur buffer as libxml2 output size
REVERT: 9517c3475 Fixed: URL normalization for SecHashEngine
REVERT: 1b3b38e6d Added: Release to 2.7.5
REVERT: f955ba7e7 Added: severity action now supports strings
REVERT: 5ee4c1786 Fix libjection Makefile
REVERT: 867843c8a Merge pull request #113 from client9/remotes/trunk
REVERT: 69b109594 fix makefiles
REVERT: 4af03f208 Update to libinjection 3.0.0-pre8
REVERT: 760314a1c Fix make test
REVERT: dafd9aeeb Fix make test
REVERT: 0532d20e4 update to 3.0.0-pre2
REVERT: f003243d9 Merge pull request #106 from client9/remotes/trunk
REVERT: 41111ba47 Merge pull request #110 from SpiderLabs/remotes/trunk
REVERT: 0e269f1b3 Update CHANGES
REVERT: ed24a6176 Merge pull request #108 from SpiderLabs/remotes/trunk
REVERT: 9835a32c3 Merge pull request #107 from gwroblew/remotes/trunk
REVERT: cf9493aaf Fixing build makefile for IIS version.
REVERT: 3a3fda25f libinjection 2.0.0
REVERT: 2cf6cd5af Merge pull request #103 from SpiderLabs/remotes/trunk
REVERT: b9a4322a3 Nginx: set to STABLE
REVERT: 82593f1f2 Merge pull request #99 from SpiderLabs/remotes/trunk
REVERT: 31df14919 Merge pull request #97 from SpiderLabs/remotes/trunk
REVERT: bad458627 Nginx: Try to fix eats 100% cpu in ngx_event_pipe_write_to_downstream issue
REVERT: 400a5f5f5 Nginx: Fix implicit declaration of base64 encode funtion
REVERT: 35b36b703 Nginx: Fix UNIQUE_ID
REVERT: 612637489 Merge pull request #96 from chaizhenhua/remotes/trunk
REVERT: ffbd350d9 Merge pull request #94 from SpiderLabs/remotes/trunk
REVERT: f31724e20 Merge pull request #93 from SpiderLabs/remotes/trunk
REVERT: 1f4757d17 Reverting Quality of Nginx. CPU issue is not fixed
REVERT: fed38c810 Fixed: return msgs at detectSQLi
REVERT: db964c422 Fixed: return msgs at detectSQLi
REVERT: 4bc068e58 Sync to 1.2.0, fix regression in small sqli detection
REVERT: 2585964b6 NGINX set to STABLE
REVERT: b2d76750c Update CHANGES
REVERT: cd31b39ce Removed SecDefineRemoteAddr and fixed Apache 2.4 mod_remoteip integration
REVERT: 06fc5e56c Merge pull request #85 from client9/remotes/trunk
REVERT: d30cf4153 Merge pull request #83 from client9/remotes/trunk
REVERT: ebcfe2c18 Update libinjection to version 1.1.0
REVERT: 1f271fdca Fixed: Rule 200003 returning default status
REVERT: 84d27cca1 Remove unwanted comment
REVERT: 6e038228c Update CHANGES security issues
REVERT: 29ed5c4dc Added: SDBM_DELETE_ERROR variable
REVERT: eb9538457 Fixed: SecPerfRuleTimes storing unwanted rules
REVERT: 86d939fbe MODSEC-362
REVERT: 6cd3a14db MODSEC-362
REVERT: 08471afaf Merge pull request #80 from client9/remotes/trunk
REVERT: 3ca159e7b sync with upstream, fix read-past-end errors
REVERT: 9f36e55ad Merge pull request #78 from client9/remotes/trunk
REVERT: c10551dcf sync with upstream: c89 support, win32 support, more detection, less false postives
REVERT: b6b284ea6 test
REVERT: 9aca58c3d Updated release version
REVERT: aa18ec7f4 Updated copyright dates
REVERT: 72d26e80e Fixed: libinjection for windows
REVERT: 835661964 Fixed: tests for detectSQLi
REVERT: 2c833f1c0 MODSEC-392
REVERT: c5e460504 Added Libjection tests
REVERT: e97c12f8a Added Libjection
REVERT: 417d7daf2 Added Libjection
REVERT: f10669b34 Merge pull request #72 from chaizhenhua/remotes/trunk
REVERT: fd2c30fa2 Nginx: minor improve
REVERT: 9b13d245e Merge pull request #70 from chaizhenhua/remotes/trunk
REVERT: fdf0ba540 Nginx Improved: set filter_need_in_memory flag so that nginx transfer response in memory, we do not need read from file buffer.
REVERT: 1919c3a44 Merge pull request #67 from chaizhenhua/remotes/trunk
REVERT: 74278a8e9 Nginx Improved response body filter, issue #56 might be fixed
REVERT: 72a3389b6 Merge pull request #65 from chaizhenhua/remotes/trunk
REVERT: e553761ae Nginx Improved: if "SecResponseBodyAccess off" do not copy response body buffer
REVERT: 3da87da15 Fixed: typo
REVERT: 20947937f Merge pull request #61 from chaizhenhua/remotes/trunk
REVERT: ddd6bd2a7 Nginx Improved: modsec terminate handling
REVERT: c30bb6d6d Fixed: SDBM deadlock
REVERT: 3bd497946 Fixed: possible memory leak in rsub
REVERT: 0840b1361 Fixed: chuck null pointer when unknown CT is sent and over in-memory limit
REVERT: d8262fc6c Fixed: standalone Makefile.am
REVERT: c71ef0508 Merge pull request #57 from chaizhenhua/remotes/trunk
REVERT: 5ce1818a9 Nginx Fixed if "master_process off" is set nginx will crash at exit
REVERT: 36c2e1bcc Merge pull request #54 from chaizhenhua/regression-tests
REVERT: a951a83ee Nginx: Improved redirect action work for phases except log
REVERT: e9af8a3ab Added Nginx regression test
REVERT: 088c660d5 Improved build script
REVERT: 04cdca84e Merge pull request #52 from SpiderLabs/remotes/trunk
REVERT: d93be4804 Fixed: Regression tests with no ID present
REVERT: ca78eba85 Fixed: Regression tests with no ID present
REVERT: e8189d97b Merge pull request #50 from chaizhenhua/Bugfix
REVERT: 42e9a5ab2 Nginx: Fixed internal request finalized after rewrite with regex
REVERT: 86871ccab Fixed: Nginx crash in ngx_pool_context.c
REVERT: 9b1d6bfc0 Merge pull request #49 from chaizhenhua/Bugfix
REVERT: 6934acf0e Nginx: Fixed memory leakage
REVERT: a87b06f9f Nginx: Fixed config file
REVERT: a77e5dc0f Merge pull request #48 from gwroblew/remotes/trunk
REVERT: b7d3a084c Fixed config.c to compile on Unix.
REVERT: 22b8e6cfd Fixed: Nginx crash in ngx_pool_context.c
REVERT: 022d5db21 Fixed config and memory leakage
REVERT: a47a4ce4f Fixed two crashing bugs: race condition when module was initialized and failing config commands in libapr.
REVERT: 601d3ed63 Fixed config.c to compile on Unix.
REVERT: 5457ebe0d Nginx: fix makefile
REVERT: 2fcc08952 Nginx: fix makefile
REVERT: 5303c003b Update master to 2.7.3
REVERT: 3ff17fcd1 Update CHANGES
REVERT: f73635ab5 Merge pull request #45 from gwroblew/remotes/trunk
REVERT: bc235a855 Merge pull request #44 from chaizhenhua/SecDisableBackendCompression
REVERT: 177b5b9c9 Nginx: Added SecDisableBackendCompression support Nginx: Added internel redirected request processing
REVERT: 55850a9c8 Update CHANGES
REVERT: a5c149204 [MODSEC-386] Added error msg for update target by id function
REVERT: 43162f52c Fixed: Nginx return 500 when request body is off
REVERT: df383b9b8 Better error messages for sdbm code
REVERT: d4d80b38a Added SecXmlExternalEntity
REVERT: 4db1f51f3 Added MULTIPART_NAME and MULTIPART_FILENAME variables
REVERT: bc65c3e40 MODSEC-58
REVERT: 5fefb6a2c MODSEC-58
REVERT: 2472dcb54 Change release version
REVERT: 25c4146eb Merge pull request #39 from gwroblew/remotes/trunk
REVERT: 1ead2f631 Removing OWASP CRS copy.
REVERT: c1ba71ab1 Fixed files overwriting in installer; added OWASP CRS.
REVERT: 9725e71f0 ModSecurity: improving duplicate ID search
REVERT: 8816254cc ModSecurity: fixed compiling with lua 5.2
REVERT: f9b113b86 Nginx: fixed compiling with lua
REVERT: 4a8e536b0 Nginx: fixed SecRequestBodyAccess
REVERT: 154e80750 Nginx: fixed crash in pcre
REVERT: 34d5289e7 Merge pull request #36 from chaizhenhua/remotes/trunk
REVERT: 1a89b6b8a Fixed deny not work in response phase, Fixed debug log message
REVERT: 65d889664 Fixed Action Deny not Work
REVERT: ed1d3d927 Fixed Action Drop not work
REVERT: eabc39ad8 Added SecCookieV0Separator
REVERT: b3418be75 Merge pull request #35 from chaizhenhua/remotes/trunk
REVERT: ae0bee062 Merge pull request #34 from chaizhenhua/remotes/trunk
REVERT: 972d9e2ab Added Response Phase for Nginx
REVERT: 48bd09939 dos2unix standalone/api.c
REVERT: df7cafe85 Merge pull request #33 from gwroblew/remotes/trunk
REVERT: 635a57389 New IIS installer project files.
REVERT: 406d48200 Fix issue in ipmatchf
REVERT: 067e7d197 Fix issue in ipmatchf
REVERT: ff335fddc Update CHANGES
REVERT: 8148a8071 Update CHANGES
REVERT: 49c505156 Merging 2.7.2 into master
REVERT: adb38adc7 IIS version as stable
REVERT: e15bbac21 Merge pull request #31 from gwroblew/remotes/trunk
REVERT: c53e743c8 IIS version improvements
REVERT: 54245c924 Merge pull request #27 from chaizhenhua/read_client_request_body
REVERT: 0566d652c Fixed hang up when post multiple request
REVERT: 22b8293fd Fixed content length error
REVERT: 275cb28a0 Added 'ngx_modsecurity_write_body_cb' so that NGINX can deal with STREAM_INPUT_BODY
REVERT: 604643c4b change CRLF to LF
REVERT: d5a6df167 promote modsecurity_handler from CONTENT_PHASE to PREACCESS_PHASE, so that we can process and pass request to backend without internal redirect.
REVERT: fc7b3ef22 Fixed valgrind complain
REVERT: 213cd1e84 Fixed: detect comma plus white space as a cookie separator - change variable names
REVERT: 80146b2c7 Fixed: detect comma plus white space as a cookie separator
REVERT: 86e045572 Fixed compile error
REVERT: 48030ca05 Merge pull request #22 from chaizhenhua/read_client_request_body
REVERT: 82d44071d Fixed 'request body is larger ...' error
REVERT: 231921ce2 Revert "Fixed request body is larger"
REVERT: ee47cccb6 Fixed request body is larger
REVERT: 3f6c14de5 Fixed msc_test crash using pcre jit in some platforms
REVERT: f6bf1a2b9 Fixed compat issue with automake >= 1.12
REVERT: 973bfae33 Fixed compat lua_load() with lua 5.2.x
REVERT: 21b877048 Added dirs to build nginx on Fedora
REVERT: 344ec7dfa Added cleanup handler for finalize request
REVERT: 5f97bec8d read client body in a better manner
REVERT: 77ccd0b7b Fixed: ngx_http_read_client_request_body returned unexpected buffer type
REVERT: cc6e8532f Merge pull request #18 from chaizhenhua/remotes/trunk
REVERT: 6815d1769 Added drop action for nginx
REVERT: f920303e8 Fixed change from double to single quotes in find_pcre.m4
REVERT: 7ed0c305f Fixed MODSEC-364
REVERT: 18e0c45e3 Fixed MODSEC-360
REVERT: adca6e4b2 Merge pull request #13 from hideaki/cpf_verify_fix
REVERT: c98da92cf fixed bugs in cpf_verify
REVERT: fc45a3fe3 Fixed compilation issue under Windows when APR ipv6 is disabled
REVERT: bd3cb0c72 MODSEC-359
REVERT: 4564c6548 MODSEC-359
REVERT: 5c6bdb90f change msc_release.h to 2.7.2
REVERT: c4e9dbaed added APR_HAVE_ARPA_INET_H pre-compile macro
REVERT: ac4815f49 modsecurity_config.h was empty breaking SecUploadModeFile directive
REVERT: 2f7a1ac0e Merge pull request #12 from gwroblew/remotes/trunk
REVERT: 0e2b07b00 Fixed \ handling in Include command on Windows.
REVERT: a4c75689f remotestrunk
REVERT: 0265607df Merge pull request #11 from gwroblew/remotes/trunk
REVERT: bfdb28e2a Fix for broken logging of IP client address in some cases.
REVERT: 42aa05408 remotestrunk
REVERT: c2c491861 fix for issues in ssn_verify such as infinite loop.
REVERT: 91e5f85cc fix for issues in ssn_verify such as infinite loop.
REVERT: bd3d07024 Merge pull request #10 from hideaki/verifyssn_infinite_loop
REVERT: 7beb244df fix for issues in ssn_verify such as infinite loop.
REVERT: 00b22f0c5 Fixed NGINX compilation issues
REVERT: d7280c61f Fixed NGINX compilation issues
REVERT: 8560642b9 Update CHANGES
REVERT: 19d71f794 Update CHANGES
REVERT: 179b53661 Fixed crash with invalid commands and marked IIS server as non-virtua… …
REVERT: d1c002d6c handle invalid escape sequence passed to strmatch operator
REVERT: dc8d464e9 Merge pull request #9 from gwroblew/remotes/trunk
REVERT: b31f83b29 Merge pull request #8 from hideaki/strmatch_coredump
REVERT: 74b8daaad Fixed crash with invalid commands and marked IIS server as non-virtual, so many commands would work (like SecDataDir).
REVERT: 9e6dddff8 handle invalid escape sequence passed to strmatch operator
REVERT: 2b1c1ad74 Merge pull request #7 from gwroblew/remotes/trunk
REVERT: f14eaeb3d Fixed build on Apache 2.4.
REVERT: ee1112530 Merge pull request #6 from gwroblew/remotes/trunk
REVERT: 2336cf929 Minor changes to IIS module.
REVERT: b353bd60a Fixed build on Apache 2.4.
REVERT: 267bfe6ca Minor changes to IIS module
REVERT: 408f37015 Fixed byte conversion issue during logging under zlinux
REVERT: ce3cf00a2 Fixed byte conversion issue during logging under zlinux
REVERT: f22bca10f Fix error_message type
REVERT: 6d9327f4a Fix error_message type
REVERT: a01b85b89 Update CHANGES and doc/
REVERT: 9027fbbfd Update CHANGES and doc/
REVERT: 428cbcb6b Change names of HMAC feature to HASH
REVERT: eb41bd44f Change names of HMAC feature to HASH
REVERT: 451041cd8 Change names of HMAC feature to HASH
REVERT: 208d9d3a9 Change names of HMAC feature to HASH
REVERT: 5f98d8008 Change names of HMAC feature to HASH
REVERT: 0757a9f87 Added -R option to libtool with pcre lib path
REVERT: a528e1c92 Added -R option to libtool with pcre lib path
REVERT: 53d422e9d Change names of HMAC feature to HASH
REVERT: 3bca8d41f Change names of HMAC feature to HASH
REVERT: af22ddf87 Merge pull request #3 from bnordgren/install
REVERT: f23dbcba7 Merge pull request #2 from alanjumpi/remotes/trunk
REVERT: 606cd72f9 Fixed small bug in install phase, where mod_security2.so ignores $DESTDIR
REVERT: 18c42d513 TODO updated
REVERT: 76fc19401 Merging with master
REVERT: 3ef77de11 Merging to release 2.7.1
REVERT: f4fe08f7e Update CHANGES
REVERT: 18429396a Fixed bug when used ctl:ruleRemoveByTag
REVERT: b58598988 Update CRS info into README.txt
REVERT: 05e3a1798 Update CRS info into README.txt
REVERT: 95211c820 Update CHANGES
REVERT: c0c722ccb Update CHANGES
REVERT: 52a535cca Update CHANGES
REVERT: 9fe676406 Update CHANGES
REVERT: afea6dbe6 Fixed drop action was disabled by mistake for apache2
REVERT: a3a39a21d Update CHANGES
REVERT: 14eff8470 Update CHANGES
REVERT: d4bd47893 Update CHANGES
REVERT: 3ab2289ec Fixed drop action was disabled by mistake for apache2
REVERT: 4346e54a1 Update CHANGES
REVERT: 9f4bd2188 Update CHANGES
REVERT: 2403a1a54 Fix some strange breakline situation in apache24
REVERT: 612d9e473 Fix some strange breakline situation in apache24
REVERT: b64185024 Update msc_release.h
REVERT: ed74a60bf Update msc_release.h
REVERT: df58972ab Update documentation
REVERT: bfab0397f Update documentation
REVERT: a27e3a901 Removed prng() function and added apr_generate_random_bytes
REVERT: 6bc9ae2c4 Removed prng() function and added apr_generate_random_bytes
REVERT: 8aa17b546 Removed prng() function and added apr_generate_random_bytes
REVERT: 6f13bd11f Removed prng() function and added apr_generate_random_bytes
REVERT: ee31c5ba9 Fix LibXml2.9.0 issue
REVERT: d3164f8db Fix LibXml2.9.0 issue
REVERT: a9266d4ca Updated getkey function
REVERT: 75a5e1d3f Updated getkey function
REVERT: 75a7cfb1b Update msc_release.h
REVERT: 190afbfc3 Update msc_release.h
REVERT: 79423f9cf Minor fix, two functions name change.
REVERT: 72b079139 Minor fix, two functions name change.
REVERT: 7dea71bd7 Update Reference Manual
REVERT: 53cdabdf8 Update Reference Manual
REVERT: 87c47a882 Fix rule 200002
REVERT: 6e107a8b1 Fix rule 200002
REVERT: 30526c6e4 Update CHANGES and msc_release.h
REVERT: 8fd1c0f76 Update CHANGES and msc_release.h
REVERT: ef3fa0b1f Added MULTIPART_INVALID_PART flag
REVERT: 6335e5426 Added MULTIPART_INVALID_PART flag
REVERT: af537253d Merging rev 2079 with the branch 2.7.x
REVERT: 6900616fa Standalone: added Include command IIS: added locking, response processing check, fixed file chunk reading bugs
REVERT: d7b9ad862 Update Reference Manual and CHANGES
REVERT: f00cb1a4e Update Reference Manual and CHANGES
REVERT: 513dba260 MODSEC-337
REVERT: 060cf0ab3 MODSEC-337
REVERT: 80abe0fdf MODSEC-226
REVERT: 0e85d9f75 MODSEC-226
REVERT: 7de3f1e50 MODSEC-297
REVERT: 735510071 MODSEC-297
REVERT: e6afef5c1 MODSEC-297
REVERT: 5c5107a86 MODSEC-297
REVERT: 88513bd28 MODSEC-336
REVERT: 2d519ff85 MODSEC-336
REVERT: 10e2eec5b MODSEC-336
REVERT: 0d2307192 MODSEC-336
REVERT: 9661ac4de MODSEC-261
REVERT: dc8352852 MODSEC-261
REVERT: 724060a29 Reverted SecCookiev0Separator
REVERT: 919e3f5e2 Reverted SecCookiev0Separator
REVERT: 4c7ab5974 MODSEC-261
REVERT: aee22ea46 MODSEC-261
REVERT: 73e87c035 module bugfixes (kyprizel)
REVERT: 031080c72 Added unicode mapping directives to recommended file
REVERT: 0499f1444 Added unicode mapping directives to recommended file
REVERT: 20cd5d069 Added unicode mapping directives to recommended file
REVERT: 57b80fedc Added unicode mapping directives to recommended file
REVERT: 081a0af6e Update to release 2.6.8
REVERT: a9ab4632f Update to release 2.6.8
REVERT: 100168260 Fix MODSEC-315
REVERT: 18f98e755 Fix MODSEC-315
REVERT: 6059fc144 Fix MODSEC-333
REVERT: e821aaf04 Fix MODSEC-333
REVERT: db73e14ed branch 2.7.x
REVERT: 09450c266 branch 2.7.x
REVERT: 35a9a6c3e Changes from kyprizel (Eldar Zaitov)
REVERT: ecb39070e branch 2.7.x
REVERT: 22b1e2fb1 Fix typo
REVERT: 203e34651 update msc_release.h
REVERT: 8dc9ae913 Added client IP passing to IIS and two missing IIS installer files.
REVERT: e4d2dabe0 Improved IIS build process and more fixes to handle Apache 2.4.
REVERT: a63008b16 Changes from kyprizel.
REVERT: 3425aa9b4 Fixing Apache 2.2 build.
REVERT: 040d4469d Enable warning message with over SecRequestBodyNoFilesLimit
REVERT: d5ccfbafc Fix compilation issues in server.c
REVERT: 092559a58 Added missing functions to make non-Apache versions compile with Apache 2.4.
REVERT: 9eaa6a9a4 Update CHANGES
REVERT: dc4ec2df4 Fixed format string issue in ngx_log_error
REVERT: 7ea0e1223 Libxml2 must be at least 2.6.29 for 2.7.0
REVERT: eeb331ca4 Added utf8toUnicode tfn - fix typo
REVERT: 781a506bc Added utf8toUnicode tfn
REVERT: 499819e23 standalone module enabled by --enable-standalone-module configure option
REVERT: 1e7fd3e5f for build standalone infrastructure necessary for IIS/NGINX
REVERT: 7b014be28 Update CHANGES
REVERT: 1d36512c0 Standalone module shouldnt be default
REVERT: d36120b41 Fix compilation issues in server.c and config.c
REVERT: ada16d3e9 Fix compilation issues in server.c. Looks like unixd_config is different in apache major and minor versions
REVERT: 054e015de Fix compilation issues in api.c
REVERT: c9202a44b Update license
REVERT: 1df668c94 Remove CRLF from Makefile.am
REVERT: 2dbe4ab4f Second part of IIS/nginx merge into M2 trunk.
REVERT: f3e31c75a Merging IIS and nginx code into M2 trunk.
REVERT: 7f33b00f7 Fixed some dereferenced pointers
REVERT: 8d5131a18 Fixed some dereferenced pointers
REVERT: c09d6e57d Fixed some dereferenced
REVERT: 221aba605 Fixed some dereferenced
REVERT: d267142bb Fixed check if s->name & value is NULL
REVERT: fc8edbb46 Fixed check if s->name & value is NULL
REVERT: a95f337ed Fixed check if ip_strv is NULL
REVERT: 7385b120a Fixed check if ip_strv is NULL
REVERT: 928ae2a22 Fixed unused error_msg in msc_crypt
REVERT: c24eaec77 Fixed unused error_msg in msc_crypt
REVERT: 9d19e7b06 Make internal m_strcasestr default
REVERT: 8cec8c7e6 Make internal m_strcasestr default
REVERT: a4c68c863 Revert configure.ac. Waiting for the merge
REVERT: bc5930086 Add license to standalone/
REVERT: 22b763257 Fixing missing code between branches
REVERT: 429ba6ac4 Fixing missing code between branches
REVERT: 76925c6e7 Update CHANGES
REVERT: f624802d3 Update CHANGES
REVERT: bdcecf50f MODSEC-328
REVERT: ecc2ee8fd MODSEC-328
REVERT: bf5cd6211 MODSEC-326
REVERT: eb7a9ed7a MODSEC-326
REVERT: e8bd4c05f Revert pcre message warning mismatch
REVERT: 16376f075 Revert pcre message warning mismatch
REVERT: 4460061d2 Fix return msgs
REVERT: c4b12060c Fix return msgs
REVERT: 5f6985183 Init variables
REVERT: fdee16ddd Init variables
REVERT: 592ec392d Remove ctl:ruleUpdateTarget* and add ctl:ruleRemovetarget*
REVERT: 890a1cfb7 Remove ctl:ruleUpdateTarget* and add ctl:ruleRemovetarget*
REVERT: 543a7db8a Check for strcasestr
REVERT: 6b943dbb2 Check for strcasestr
REVERT: 1e8259b4a Avoid double close() for multipart file descriptors
REVERT: 912606fc3 Avoid double close() for multipart file descriptors
REVERT: 1c3efe02f Update Reference Manual
REVERT: 60960a1f0 Update Reference Manual
REVERT: 71c1e7813 Fix replacing targets
REVERT: 67cf78cd4 Fix replacing targets
REVERT: f4d446574 Fix pcre version mismatch warning
REVERT: d5866ff3e Fix pcre version mismatch warning
REVERT: 3a05349e0 Fix setting key len for child conf
REVERT: 2e055003c Fix setting key len for child conf
REVERT: 21e21b23a Release 2.7.0-rc2
REVERT: 9c73ad68e Release 2.7.0-rc2
REVERT: 245f6dc61 Release 2.7.0-rc2
REVERT: ef64c7070 Release 2.7.0-rc2
REVERT: c22376aa5 Fix warnings
REVERT: 027ae6eea Fix warnings
REVERT: f896591fc Fix warnings
REVERT: 3bb931e18 Fix warnings
REVERT: 89fb40248 change release to 2.7.0-rc2
REVERT: 21be05c7f change release to 2.7.0-rc2
REVERT: 2791e7766 Fix code for windows
REVERT: 81b74ba63 Fix code for windows
REVERT: 5b46e6c61 Fix code for windows
REVERT: 35d97d586 Fix code for windows
REVERT: 6223499dd Update CHANGES
REVERT: e2d0715c1 Update CHANGES
REVERT: ad059c9e6 Add inet_pton for windows
REVERT: de56a8bcf Add inet_pton for windows
REVERT: ead368268 Add inet_pton for windows
REVERT: 780db2039 Add inet_pton for windows
REVERT: ab4d5acce Fix windows error compilation
REVERT: 22e20c699 Fix windows error compilation
REVERT: 88331d122 Fix windows error compilation
REVERT: 04fa8bbd0 Fix windows error compilation
REVERT: 8bf46a3d8 Fix PRNG code and windows compilation errors
REVERT: 4ab785c19 Fix PRNG code and windows compilation errors
REVERT: a958dfd49 Fix PRNG code
REVERT: 575356f10 Fix PRNG code
REVERT: d20354917 Improve random number generator
REVERT: 4ef3cc8eb Improve random number generator
REVERT: 3caaf60fa Improve random number generator
REVERT: f72ba4d36 Improve random number generator
REVERT: 517abc595 Improve random number generator
REVERT: 39fcad456 Improve random number generator
REVERT: 0ed1a1b8b Fix loop into getkey
REVERT: 563017fce Fix loop into getkey
REVERT: 51067c23d update CHANGES
REVERT: 24b5c96c2 update CHANGES
REVERT: 9d2b4568f 2.7.x
REVERT: 56a396519 backport HURD and KfreeBSD build support
REVERT: c5cc0bfa9 Update CHANGES
REVERT: 28621131a Update Reference manual
REVERT: e584123ab Fix quote validation in multipart code
REVERT: 988e78e9a Fix quote validation in multipart code
REVERT: 8ead49a9b Added id to recommended file rules
REVERT: b6414bbdf Update reference manual
REVERT: f16240985 Added null pointer check
REVERT: 3457fcbd5 Added support to KfreeBSD and HURD
REVERT: d88a24da1 fix rsub input parsing and add maturity, ver and accuracy actions
REVERT: 480af9375 update CHANGES
REVERT: 14156d831 Add ipmatchFromfile
REVERT: d3ad05e9c MODSEC-312
REVERT: 4ed9015ea README.txt
REVERT: c19269dc4 Update mlogc code
REVERT: f0fab2a80 Fix apache 2.4 compilation issue during make test
REVERT: 4888769e7 Update trunk for 2.7
REVERT: 866cb6d6b Update trunk for 2.7
REVERT: 4bebeb6dd Revert any lua change
REVERT: 24ac0c4a9 Fix typo in CHANGES
REVERT: 864212074 Code cleanups
REVERT: 5b82006fe Code cleanup
REVERT: 25d1816c2 MODSEC-282
REVERT: 9948c424a Fix typo
REVERT: 2be4d8b02 Fix new apache api
REVERT: 2046a43bf Fixed AP_SERVER_MINOR instead of AP_SERVER_MAJOR
REVERT: e1e43cfa1 Fixed new apache API
REVERT: 2e00ae0f4 Fixed new apache API
REVERT: 992d075d8 Update doc/
REVERT: 7d327e8df Update lastest Apache API
REVERT: 76e909c5a Rename collection timeout diretive
REVERT: 6cf207ce3 update CHANGES
REVERT: f92f8219d fix stream vars memory leak
REVERT: 1daafed72 fix arg name with double dot in SecUpdateTargetById
REVERT: f47fb8ebf Dont create new lua vms
REVERT: 3090edd85 sqlHexDecode fully hex decode
REVERT: 9cbc44eea Fix PCRE jit issue when not enable jit in configure
REVERT: c48d84313 Enable default configure options
REVERT: 3cb5edde2 Add extra debug info for pcre jit
REVERT: 1c0ed192d Add pcre JIT support - experimental
REVERT: 2a585fba8 Check for X in uppercase into sqlHexDecode
REVERT: 162f219f1 MODSEC-273
REVERT: 16ae74172 Fix issue in sqlhexdecode
REVERT: f6e53252b add collection timeout in the trunk
REVERT: c3b0cfc35 add sqlHexDecode tfn
REVERT: 150bc418d Fix issue in sqlHexDecode
REVERT: d4079971c MODSEC-160
REVERT: 1bf5f4532 MODSEC-272
REVERT: 82dfd037c MODSEC-272
REVERT: c99d14797 MODSEC-270
REVERT: a4f0957b0 Revert hexDecode and add new sqlHexDecode
REVERT: 5d0e3f910 change release version, doc, CHANGES
REVERT: a16c002f3 Fix make test
REVERT: ce0f5522b force pointers to null after free()
REVERT: ea09d6848 fix free() typo
REVERT: a2b45bfeb update CHANGES
REVERT: 3ec3d652a fix multiple variables when appending new targets
REVERT: 31183499e MODSEC-254
REVERT: b0e9468d6 MODSEC-249
REVERT: d43c7e0bf MODSEC-132
REVERT: 8a5a53431 MODSEC-258
REVERT: 0ae09036b MODSEC-255
REVERT: 5cacf63b3 MODSEC-142
REVERT: 77c4c70f5 Fix windows makefile
REVERT: 9f526bbea Fixes on autogen.sh
REVERT: 8ed0c1051 Fix build system with PCRE_ vars
REVERT: 78880129b Fix urbl whitelist msg
REVERT: 1cc9ac781 Update CHANGES
REVERT: 3517f8659 update manual
REVERT: cf7eecbe8 update msc_release
REVERT: 6c89afcf7 MODSEC-211
REVERT: 6c71b2698 [Reverted] Check POST request for SecWriteStateLimit
REVERT: 644d0b58f Check POST request for SecWriteStateLimit
REVERT: 152164b77 CHANGES
REVERT: de02ea5e4 Add new unicode map settings and fix requet body truncate bug
REVERT: b2a486e4b Only reinject stream if data is changed by rsub
REVERT: ad168c801 Only reinject stream if data is changed by rsub
REVERT: 3d69126de Build and code fixes
REVERT: d0da1372f Build and code fixes
REVERT: 06dd5907b Build and code fixes
REVERT: dc41b967b Fixed building with LUA
REVERT: c41c3cee2 Fixed building with LUA
REVERT: 9623fbd5b Cleanup unicode map file
REVERT: f59591910 Implement unicode map
REVERT: 646564cd4 Renaming GSB functions
REVERT: c8d292105 Renaming GSB functions
REVERT: 9ece2422c Remove unused geo code
REVERT: 1341c4983 Remove log part K from default configuration
REVERT: edf039b8a Fix MODSEC-245
REVERT: 6d7781754 Fix MODSEC-247
REVERT: 0cf21202e Update CHANGES - fix Marc name
REVERT: d84face22 Update CHANGES
REVERT: e1025d0f0 Change apr version macro by apache one
REVERT: de463a85c Fixed matched_var bug
REVERT: 3e0acbe16 Fixed matched_var bug
REVERT: 50293aef9 Add domain to tx.1 whe gsblookup matchs
REVERT: 5eaa1a734 Added SecWriteStateLimit for slow post DoS
REVERT: c78903e98 Fix problem when buffering in input filter
REVERT: 241f222a1 Wrong lenght information in input filter when forward stream variable
REVERT: 1bfbe0c14 Fix issue counting requet body len
REVERT: aa3fa1450 Fix issue in MATCHED_VARS_NAMES
REVERT: 21c81331c Uncomment input stream
REVERT: 352fc200b Remove extra useless files
REVERT: b3b68d1e3 Edit CHANGES
REVERT: 21dcfde3c Remove unused defines
REVERT: b19f32bb3 Make clean and maintainer-clean removes unused files, also add # when rule chain doenst match
REVERT: d4d349753 clean stream buffer
REVERT: 0ee85b348 clean stream buffer
REVERT: 0cc30904b Fix issue in input stream
REVERT: 1aa4cace6 Fix compiler warnings
REVERT: f468224a4 Change log_escape_nq to log_escape
REVERT: 6b7edc4d4 Fixes, code cleanups, improvements
REVERT: 0b3ed4181 Avoid *FLAGS resetting - Diego Elio
REVERT: 162e0ff81 Remove unused localtime function
REVERT: 123018cfc Rewriting parser for gsblookup
REVERT: ab339c7b1 Rewriting parser for gsblookup
REVERT: 8c8c583de Rewriting parser for gsblookup
REVERT: 5328bcdea Rewriting parser for gsblookup
REVERT: 3ed70ea17 Rewriting parser for gsblookup
REVERT: 0eb1f68da Improvements on gsblookup - reduce multiple slashes
REVERT: ab8c7e6f4 Improvements on gsblookup
REVERT: cf97731cc Fix logging MATCHED_VARS issue
REVERT: 352514f7d Fix comment to reflext the base64DecodeExt change
REVERT: 808a7bbc1 Add support to AIX and HPUX build (untested)
REVERT: 4ae9a91d7 Only change stream var->value if we have the realloced buffer
REVERT: c1d3fd636 Applied patches from Diego
REVERT: 9fb9aeb6a Detele useless files
REVERT: 15338bbf9 Rename DecodeBase64Ext to base64DecodeExt
REVERT: 7493f01ef Delete useless files
REVERT: 0e4f88630 Delete useless files
REVERT: f3f7d6488 Delete useless files
REVERT: ef56f47b4 delete useless files
REVERT: 748aea7b6 delete useless files
REVERT: c4f3d121f Fix without-lua into trunk - Diego Elio
REVERT: 43e3ea65b update recommended configuration
REVERT: ec29fb539 update release trunk for 2.7.x
REVERT: a21e03eaf Update CHANGES and Reference Manual
REVERT: d68731a38 APR-Ipmatch operator
REVERT: 4c6419cf7 Remove extra debug msg for log section K
REVERT: 9cd2efd97 Added extra debug msg for log section K
REVERT: 025d41f71 Added extra debug msg for log section K
REVERT: 5bfb2973e Change rule comparing to log section K
REVERT: 502e97642 Author at README_WINDOWS
REVERT: ba651304d Fix make test
REVERT: 6ea5cba17 Move version() to mod_security2
REVERT: 57140c25f MODSEC-37
REVERT: 30da07b59 MODSEC-37
REVERT: f64b5544a Move version() to mod_security2
REVERT: 371df205d Change license on msc_test
REVERT: 9ca34a322 Change apr_cpystr to strncpy
REVERT: 6047658d0 Cleaning stream out buf
REVERT: d98231e11 Cleaning stream out buf
REVERT: eec65ea29 Include sucess msg in ipmatch
REVERT: 775f10598 MODSEC-221
REVERT: 843f7fc01 Test makefile
REVERT: 7635bd5f1 Improvements in detection only
REVERT: a9557a66c Add more char to escape in log_escape_re
REVERT: 34d2f43a1 fixes for solaris compilation
REVERT: 4643799ba fixes for solaris compilation
REVERT: d878fce0c fixes for solaris compilation
REVERT: 3b4c46f27 Improvements in detection only
REVERT: 9c5e0a4f9 Improvements in detection only
REVERT: b8828ad3f Improvements in detection only
REVERT: 13980bd04 Improvements in detection only
REVERT: ae006f7a8 Improvements in detection only
REVERT: cb3353f13 Improvements in detection only
REVERT: 3377831b3 Improvements in detection only
REVERT: 50205ebf6 Improvements in detection only
REVERT: 0f5b0debe Print when request is blocked when it is larger than the configuration
REVERT: 6e3bb889c Print when request is blocked when it is larger than the configuration
REVERT: 1e2f836b3 Print when request is blocked when it is larger than the configuration
REVERT: ed06ed2ae Fix issue in detection only
REVERT: 2a8c8a747 force process partial when use ctl to detectiononly
REVERT: ed4e98c64 Fix issue on solaris
REVERT: a75f2c0c6 Testing new approach to tag macro expansion
REVERT: b64d28eb5 Testing new approach to tag macro expansion
REVERT: 6b7c138a9 Testing new approach to tag macro expansion
REVERT: f524cfee4 Testing new approach to tag macro expansion
REVERT: 6d3b3802d return value to unique_id
REVERT: 41f338a4d Include arpa/inet.h to *nix
REVERT: 97bc9b056 Fix typo issue
REVERT: cd41e9327 Fix typo issue
REVERT: b2140ab72 include msc_gsb.h into re_operators.c
REVERT: 6703a7df0 include msc_util.h into re_operators.c
REVERT: 9ed1200c1 Fix ipmatch issues
REVERT: 0d32c17c3 Memory pool fixes and code cleanup
REVERT: 82a9652ae Tag test
REVERT: 093cb2495 Tag test
REVERT: 6031e7fda Improvements, bug fixes and cleanup from Tom Donavan
REVERT: f0d6a06a9 Fix ipv6 bug to solaris
REVERT: 463b0df78 MODSEC-219
REVERT: 5d540e059 MODSEC-219
REVERT: 5e480d85a Fix bug in pmf
REVERT: b7a926c20 Fix bug in pmf
REVERT: 9ddad65f0 Rsub escaping
REVERT: 4aba02a10 rbl improvements
REVERT: 2ff42243f Add escape option to rsub and rbl improvements
REVERT: d69634166 ErrorDocuments and internal redirect hook is available for testing
REVERT: 53b0276b0 set base url to tx when canon #2
REVERT: a99ca02d9 change return code at rsub
REVERT: 8642c0134 gsb now saves the base url in tx.1 when match a full url
REVERT: 0c8161081 add util remove escape function and apply it for gsb
REVERT: c43867d64 change remove_escape function name
REVERT: a9e010084 update license text
REVERT: b3243374f New doc
REVERT: 104f0de46 New License
REVERT: 1a2d377e3 MODSEC-178
REVERT: a5ddb8189 Remove extra debug msgs
REVERT: a2f01d31a Experimental reallocation memory for rsub
REVERT: 3c5eae03b fix free function because of double free
REVERT: 117cc1352 revert free operation
REVERT: c0a097304 Remove free function because of double free
REVERT: ede971a9e Fix unknown error msg on rsub
REVERT: b5607ea87 Fix memory leak rsub
REVERT: 21e422318 Fix ipmatch
REVERT: c2504b100 Fix rsub
REVERT: 49732256f Improvements, fixes and new features
REVERT: 4f1ab2f71 Allow replace with substrings
REVERT: a6c240537 Adjust gsb error msg
REVERT: 7bd27c400 Gsb matched urls set into tx variable
REVERT: a13887065 Gsb matched urls set into tx variable
REVERT: 9380fdbdd Rename gsb db directive
REVERT: 69551d2d0 Add Google safe browsing lookup
REVERT: caa6d89f8 revert MODSEC-171
REVERT: c04a4edb4 MODSEC-144
REVERT: 8b52a7d1e MODSEC-173
REVERT: fa8c45e7c MODSEC-171
REVERT: d0c2a5d34 Add verifyCPF
REVERT: 5464f300e Renaming opt and args of SecRequestProcessPartial(on,off) to SecRequestBodyLimitAction(ProcessPartial,Reject)
REVERT: 98e6a1c28 Cleanup ipmatch function
REVERT: 74666fe2c MODSEC-181
REVERT: c4100a184 rename Stream options to SecStream
REVERT: e267c6ffe MODSEC-204
REVERT: 8cbcf7898 Add initial plataform check code into autotools
REVERT: 7235a14b3 Add initial plataform check code into autotools
REVERT: 7f838acdf Ipmatch now is not supported under windows
REVERT: 3f1d91183 Make ipv6 portable
REVERT: 8b907225e Make ipv6 portable
REVERT: d170dd4eb MODSEC-57
REVERT: e0a49f0b0 Change ipmatch to msre_ipmatch
REVERT: 025ca49cc Change ipmatch to ipMatch
REVERT: f536ba11a Ipmatch mistake
REVERT: d4d97505d Under CentOS inet_pton return invalid address for valid ip6, remove the return code for now
REVERT: cd31e80b8 Cleanup ipmatch
REVERT: 3c53fe5be Add ifdef when print lua version
REVERT: 882e537c9 MODSEC-140
REVERT: 7f52d86e4 Include data edition, sanitizematched and few fixes
REVERT: 37e8cba18 change old lookup algorithm
REVERT: 8e9582bed MODSEC-196
REVERT: d0e2546f9 MODSEC-21
REVERT: fdded3383 MODSEC-60
REVERT: 8907f66f3 MODSEC-127
REVERT: 5040c5568 MODSEC-70 change loglevel to 3
REVERT: 86cc9d6e3 Request process partial under detectiononly
REVERT: 1260d2b09 MODSEC-104
REVERT: 56fc2ea71 MODSEC-148 fix issues
REVERT: c8033a59f MODSEC-148
REVERT: 60a1725d0 MODSEC-12
REVERT: 52c33e7c5 MODEC-105
REVERT: 549f05948 move 2.5.13 into trunk
REVERT: df61af462 add breno user to authors file
REVERT: d3293916e Change scope of state var so multiMatch works once again.
REVERT: 68f79e7f0 Add the git-svn authors mapping file.
REVERT: 78dfd8d82 Add the example lua script to doc dir.
REVERT: 3a10f9fb8 Fix autoconf header and include path so trunk builds.
REVERT: 7aa83b5c9 Change copyright date on alp2 files.
REVERT: 86e9b42db Added alp2 as a build option.
REVERT: b186e7349 Add some missing files.
REVERT: ea34defc0 Added mod_remoteip.c to to postread_beforeme_list (MODSEC-158).
REVERT: c7c65f9dd Change default install prefix to /usr/local/modsecurity.
REVERT: 058283fb5 Add the ability to build custom request body parser extensions. Add an example for a request body parser extension.
REVERT: f7f305991 Add license headers to extension examples.
REVERT: 8553cab4a Moved api examples to "ext" dir and hooked them into autotools for building with "--enable-extentions". Upgraded to autoconf 2.65.
REVERT: cea87f408 Fixed test/test-gregression build targets.
REVERT: 42b981319 Update doc for new build system.
REVERT: eb6b9274a Redo build system to properly use autotools and avoid compilation with apxs util.
REVERT: 972e46825 Add an option to grab the latest release candidate or stable which is intended to be used on dev servers to stage production.
REVERT: 98982e296 Added the SecDisableBackendCompression directive
REVERT: b784acd31 Merged in 2.5.x changes into trunk.
REVERT: f925a978a Update CHANGES
REVERT: b48fdddf4 Merged changes from 2.5.x to trunk.
REVERT: 6f548e91f Fixed bad merge in CHANGES.
REVERT: 08edc0c26 Merge 2.5.x (2.5.12) changes into trunk.
REVERT: ed11e27e0 Moving performance logging from level 3 to level 4 to prevent it from polluting the error log
REVERT: e0f160840 Move writing to collections and GC earlier so that the results can be logged.
REVERT: 0ecfe86c3 Add PERF_GC.
REVERT: 5448b3fc2 Log the duration of garbage collection at level 3.
REVERT: 5c4733f1a Add REQUEST_BODY_LENGTH.
REVERT: b8837bbfb Change the format string from m (already taken) to M.
REVERT: 4cd09b9da Revert unneeded changes in r1459.
REVERT: c24e61ac8 Added missing conditional debug logging.
REVERT: 9bd9f3359 Run phase 5 prior to mod_log_config. Now for real.
REVERT: 86407062e Do not use 'total' to refer to PERF_COMBINED in the logs. Use 'combined' instead.'
REVERT: 221af6f5c Add PERF_ALL, sepearate PERF_STORAGE into PERF_SREAD and PERF_SWRITE.
REVERT: bc35ab7e0 Implement variables for access to performance measurements.
REVERT: a4d5d50be Integrate with mod_log_config (MODSEC-108).
REVERT: 7b56982f2 Implemented a new time-measuring mechanism. Added Stopwatch2.
REVERT: d25937333 Add DURATION.
REVERT: 51e7bfcc0 Document phase 5 changes in CHANGES
REVERT: f740b4f22 Run phase 5 prior to mod_log_config.
REVERT: ce106df27 Generate error messages when registration fails. Change all examples to use modsecurity.h to avoid the duplication of the optional function declarations.
REVERT: c60ab6bfd Merged changes from 2.5.x into trunk.
REVERT: c341899b4 Merge in changes from 2.5.x.
REVERT: ea4b75d8b Document changes
REVERT: d1c38bf02 Change SECACTION_TARGETS and SECMARKET_TARGETS to REMOTE_ADDR
REVERT: 6d5e752cb Added URLENCODED_ERROR, which is raised when invalid URL encoding is encountered
REVERT: 62f7e6823 Update CHANGES retroactively
REVERT: 6a2930820 Remove one missed reference to the PDF UXSS filter
REVERT: aa3b20ecc Optimise the unsetting of the previous data capture variables
REVERT: 23c3237d1 Added missing log level checks before logging.
REVERT: 7916942fe Remove unused variable
REVERT: 76583d80f Added the missing log messages for the ctl action; optimised the existing log messages (MODSEC-99).
REVERT: 839b7f81e Removed the obsolete PDF UXSS functionality (MODSEC-96).
REVERT: 853b1f9fc Convert 'normalise' into 'normalize' throughout, but support the previous version for backward compatibility (MODSEC-103)
REVERT: 1fb6f974d Update the documentation referring to phase processing
REVERT: cb8b76f4e Process phase 1 in the same Apache hook as phase 2 (MODSEC-98)
REVERT: 3b1298968 Merge 2.5.x changes into trunk.
REVERT: b01f8190e Merged 2.5.x changes for 2.5.11 into trunk.
REVERT: 8fe278e84 Change 'sanitise' to 'sanitize' everywhere, preserving the 'sanitise' action variants for backward compatibility.
REVERT: 6d83f91b2 More updates to build, removing Apache based build files.
REVERT: 9a526c090 Merge in 2.5.x build changes into trunk.
REVERT: 55f54e17e Merge 2.5.x changes into trunk.
REVERT: a1a67592f Do not log debugging message as a warning (MODSEC-91)
REVERT: 21ecf99da Merge 2.5.x changes into trunk.
REVERT: aa1e05302 Fix typo
REVERT: 91b215562 Merge 2.5.x doc changes into trunk.
REVERT: 826124b37 Merge 2.5.x changes to trunk.
REVERT: 7379a4fb3 Merge 2.5.x changes into trunk.
REVERT: 155608be3 Really remove the rules dir this time (not just contents).
REVERT: 67f7f9377 Merge changes from 2.5.x, removing rules dir to its own structure.
REVERT: 6adc53fd4 Merge 2.5.x changes to trunk.
REVERT: 73fb8eae5 Merge latest 2.5.x changes to trunk.
REVERT: 08e651a1c Merge in some doc typos from 2.5 branch (MODSEC-77).
REVERT: 05bd24334 Merge 2.5.x changes into trunk.
REVERT: e5becf840 Merge 2.5.x changes to trunk.
REVERT: 12b9bcd33 Merge 2.5.x changes into trunk.
REVERT: ffc5d968e Merge 2.5.x changes into trunk.
REVERT: 944a08822 Merged 2.5.x changes back to trunk.
REVERT: 31ddf4c86 Merge 2.5.x changes into trunk.
REVERT: a16eb9677 Merge 2.5.x changes into trunk.
REVERT: 9d26b16e2 Merge 2.5.x changes into trunk.
REVERT: 48981bb7c Merge in changes from 2.5.x branch.
REVERT: 5fcca65fc Merge 2.5.x build changes back to trunk.
REVERT: 84099df54 Metadata.
REVERT: 25a394452 Cleanup docs.
REVERT: e30176125 Merge in 2.5 doc changes. Cleanup doc formatting.
REVERT: f905bf083 Cleanup the API examples and add more docs.
REVERT: dc0a2161a Merge 2.5.9 changes into trunk.
REVERT: fa96c349e Merge 2.5 changes.
REVERT: a06d8f8ce Fixed strict compiler warnings for mlogc. Updated mlogc copyright year.
REVERT: bef5c53c0 Removed "make -C ..." in favor of a more portable method. Added verbose output option to configure.
REVERT: 4f3c9d991 Small clarifications.
REVERT: 9c3c0d8c8 Update the reference manual to refer to the new data formats documentation.
REVERT: fd5cf18ca Add the data formats documentation.
REVERT: facacae23 Fix a typo in the SecRuleInheritance example.
REVERT: c012db7e6 Make a note of configure options that can affect performance (MODSEC-28).
REVERT: 4a336dadf Removed an invalid "Internal error" message forcing auditing of a request (MODSEC-29). Cleaned up error messages prior to using send_error_bucket().
REVERT: c3c822ea0 Revert r1205 as it was fixed in mod_jk upstream.
REVERT: becf69403 Updated REQUEST_BODY documentation.
REVERT: 7b0e71f92 CHANGES text describing when REQUEST_BODY is populated was not accurate.
REVERT: 3848ff5b3 Worked around mod_jk issue where a 401 response was not including the WWW-Authentication header (MODSEC-16).
REVERT: 67c48bfdf Added ability to use ctl:requestBodyAccess=off in phase:1 to avoid limit check. Added regression tests for this as well.
REVERT: c5e258f0b Added additional check for XML well formed.
REVERT: b2c7424a9 Added a comment.
REVERT: 309510d70 Change from ctl:requestBodyBuffering to ctl:forceRequestBodyVariable.
REVERT: 5740f7a3e Tidy up.
REVERT: 2ee69ce46 Document css_inplace_decode().
REVERT: 2f7ff8f7a Tidy up.
REVERT: ec49ce05c Updated docs to point out some features are not available on all OSes. MODSEC-9
REVERT: ac767de86 Typo in SecRuleUpdateActionById example.
REVERT: f20059b00 Make sure we fail to validate DTD/schema after a parsing error. Fixes MODSEC-5.
REVERT: f5af5ef42 Remove declaration of an unused variable.
REVERT: 34798e9ab Allow ability to force request body buffering to memory. Fixes MODSEC-2.
REVERT: 139d651bb Updated the CHANGES.
REVERT: deb6a816b Fixed MODSEC-2 by using the msr->hostname (ap_get_server_name(r)) vs r->hostname in the log.
REVERT: 20cc39551 Added mlogc source.
REVERT: 2818e66a9 Tidy up the code for the performance-measurement mode. Remove the per-phase measurements, which don't seem to work (at least not in my case).
REVERT: acec75be4 Make PERFORMANCE_MEASUREMENT more accurate by removing stray msr_log() invocation. Clean the code a bit.
REVERT: 9997cee04 Clarified that SecMarker IDs are the same thing as rule IDs.
REVERT: 1b977e610 Clarifications in response to comments from Kiyohiko Kajihara.
REVERT: a686b0633 Update configure to better find lua libs.
REVERT: ab5cd9261 Update a regression test due to changed error message.
REVERT: 7eef5ce7a Update test stup with new msr_log_* wrappers.
REVERT: d419a2168 Update CHANGES. Sync up docs.
REVERT: 225339525 Allow disabling processing of request body size limit in phase 1. See #518.
REVERT: 5298e2954 Added XML warn/error output to debug log. See #519.
REVERT: 458fe8423 Add parity transformations. See #516.
REVERT: 94370b2c7 Update default action in unit test stub.
REVERT: bb2e4b9a3 Fix cssDecode. See #512.
REVERT: 5f648db89 Updated regression suite to use full path to LoadModule.
REVERT: 10713fbd3 Sync up branches/2.5.x and trunk.
REVERT: 9c6b26744 Change licence file to Unix format.
REVERT: a05445e33 Tidy up whitespace. More characters in the commit messages than in the change itself! Way, way, more. This is what happens when you work too much.
REVERT: 924ce68c5 Update readme to point to new exception filename.
REVERT: 7899b5c6e Update licensing.
REVERT: 6a33fedc8 Regression suite cleanup merged from 2.5.x.
REVERT: 478389d5a Added regression tests for ctl:ruleRemoveById and disruptive actions in DetectionOnly mode.
REVERT: ae40b8c21 Implemented cssDecode.
REVERT: e6e06bff7 Update trunk CHANGES with 2.5.5 release.
REVERT: 200d9e5fe Firewalls not fireballs ;)
REVERT: 326208d02 Newer apaches default to text/plain instead of null. Make matching files a bit more robust.
REVERT: 21f305095 Fixed warning for mixed CRLF/LF lines and LF lines in changeset:1070. See #504.
REVERT: f072738c8 Remove an extraneous debug statement and update version date.
REVERT: 0b1e2d674 Fix a minor typo in a comment.
REVERT: d9ba0e98b Fixed a typo from changeset:1072. See #498.
REVERT: 493e71a9e Tweak some regression tests.
REVERT: e1e200c00 Disabled phase 5 after interception by mistake. Fixed
REVERT: c3fd0231d Prevent phases from being processed more than once.
REVERT: b2119411d Minor code cleanup.
REVERT: 81d98de28 Log strict multipart errors at level 4.
REVERT: 83ff6c479 Re-enable error output filter with a fix after more testing/tracing of code. See #498. Update versions to ready for release of 2.5.5.
REVERT: 230837d4a Update/reorg some regression tests.
REVERT: 16acbe494 Fixed issue where logging was not occuring unless "auditlog" was enabled. See #497, #4, #451 and #445.
REVERT: f2449c6f3 Enable "auditlog" action by default. See #445 and #451.
REVERT: e209cb768 More regression testing updates.
REVERT: 6cd8459bc Update docs on persistant storage. See #479 and #495.
REVERT: 0c95f9c64 Backport fix to improve request body processing error messages. See #504.
REVERT: 4d2fa2741 Backported changeset:1056 to 2.5.x which handles a lacking new line after the final multipart boundary. See #502.
REVERT: 6241dfe96 Fixed XML multithreading crash. See #501.
REVERT: 0c1f2f2e0 Fixed blocking in phase 3 by reverting changeset:591 (for now). See #65 and #498.
REVERT: 81145fe2b (Changeset Tracker. See #1234.)
REVERT: c8e35797f Improve request body processing error messages (#504).
REVERT: d06a3beab More tested regression tests. Cleaned up script.
REVERT: 043a5d608 Handle the case when there isn't a new line after the final boundary in a multipart request. This fix takes care of the WordPress Flash file uploader problem.
REVERT: 8844813c9 Some more updates/tweaks to the regression suite. Allow the ability to "make test-regression".
REVERT: 3e58e99be Another small update to the regression tests.
REVERT: 7ad2766e7 Some more updates for regression testing.
REVERT: 4bc1fc39f Some reorg of regression tests.
REVERT: 49e63a3e3 More regression updates.
REVERT: 59629a6af Add/update regression tests.
REVERT: 29cd97b24 Reorg.
REVERT: 813127aa1 Added some basic regression tests.
REVERT: f90ffeb97 Add the beginnings of a regression test suite.
REVERT: eb77be6e0 Fixed issue where transformation cache used default (fixed in 2.5.4).
REVERT: f394c6faa Add atomic updates for persistent counters. See #20.
REVERT: 5f6cb3aea Update msc_test with -N, better error support and support for actions.
REVERT: 8f7b861d9 Added mod_rpaf-2.0 and mod_custom_header to the beforeme list.
REVERT: ec19e2517 Update changes with 2.5.4 release.
REVERT: e74a17117 Update docs to show Lua as optional in the install instructions.
REVERT: 56e9aba04 Add an action directory for tests.
REVERT: 248bd0971 Update generated configure.
REVERT: c63d0ea21 Update the performance unit test generation example scripts.
REVERT: 6d3da8c39 Add the configure script (even though it is generated) to make it easier for others.
REVERT: 40fba3355 Allow actions to be unit tested. Allow unit tests to be performance tested. Add an example script to generate @rx vs @pm tests.
REVERT: cfeb3b976 Update CRS to 1.6.1. See #484.
REVERT: 06eeb7ef0 Fixed crash if a persistent variable name was more than 126 characters. See #478.
REVERT: 5735d5fc6 Fixed issue where the exec action may not be able to execute shell scripts. See #475.
REVERT: b4f473f87 Expand macros in expirevar and deprecatevar. See #477. Cleaned up debug logs in actions. Warn on mismatched curly braces in macro expansion.
REVERT: d37ab9482 Minor tweaks to msc_test build.
REVERT: 27601f6b4 Remove some extraneous debugging.
REVERT: 070e0bb0c Update CHANGES with current releases.
REVERT: fa3462f48 Add the MODSEC_2.5 define to 2.6 for compatibility.
REVERT: 563a8e0f0 Fixed issue where the exec action may not be able to execute shell scripts. See #475.
REVERT: c50e5b0b3 Update versions for release.
REVERT: 955163389 Add docs for macro expansion. See #462.
REVERT: aa6be1614 Make sure all filehandles are closed at the end of a trasaction. See #464 and #465. Fixes a few typos in some error messages when we are over the limits.
REVERT: b74b65911 Update version for trunk.
REVERT: 5f09dbb3e Sync up trunk with changes from 2.5.x.
REVERT: d797619fc Cleanup and update docs for 2.5.0.
REVERT: 7a1e2db14 Fixed code according to Ivan's review.
REVERT: bdc746baf Update rules to 1.6.0.
REVERT: e4eaade2c Make Lua support optional since it is still experimental (--without-lua). If someone still uses SecRuleScript, however, it iignores it and just warns on Apache startup.
REVERT: 63bccf793 Add additional CRS files.
REVERT: aef091a84 Reverted r950 which moved the periods from the message to after the "[offset ...]" tag. This tag was intended to be interpreted as metadata. Enhanced the documentation from r951 to reflect "[offset ...]" as metadata and not the message.
REVERT: 1fbf0c97f Update CHANGES, versions and dates for 2.5.0.
REVERT: 8cf74f5c9 Update version dates. Fix a small typo in Lua example: nil, not null.
REVERT: fb9585735 Add operator messages to documentation.
REVERT: 258ef32ad Minor changes to operator messages.
REVERT: 7ef661217 Make sure the test target gets the APR/APU CFLAGS.
REVERT: f00e15cc0 More updates for Windows builds suggested by Tom Donovan at apachelounge.
REVERT: cc2110b18 Updates to build on Windows with MS VC++ 8.
REVERT: 1789b9935 Remove the generated apxs-wrapper on dist-clean.
REVERT: 20bc34a53 Update core rules to 1.6.0-rc3.
REVERT: de115fc4e Update core rules to 1.6.0-rc3.
REVERT: 731ac3321 Update version date for 2.5.0-rc3.
REVERT: 935677a78 Do not add alert message when a transformation is not specified in a Lua rule.
REVERT: 2c74c55d4 Add the copywrite blurb in msc_lua.c.
REVERT: e9d1a44ce Explicitly define the target msc_test.lo target output file.
REVERT: 94f617ae1 Update CHANGES and release dates.
REVERT: d3831d679 Include the pmFromFile data file.
REVERT: 06715a0de Make sure to include the apxs cflags and apr cflags when building msc_test.
REVERT: 96b3ea6f2 Update unit test framework to build with libtool and show test name in debug log.
REVERT: 45e85e4c8 Update CHANGES and version dates.
REVERT: d24976a83 Add message to failed tests as well.
REVERT: 8e4310782 Add target name to validateUrlEncoding message.
REVERT: 83c13abfe Add/update more unit tests.
REVERT: 16b2821d5 Update string match text for @within to not include the target test. Make sure the empty string always matches (it does in @rx and @m so it should in other string operators).
REVERT: 827a5831e A pattern of "" (empty string) should always match.
REVERT: b579e704a Added unit tests for numeric comparison operators.
REVERT: 50a9f76dd Fixed getting exit code for determining test status.
REVERT: ac449776f Add pm operator unit tests.
REVERT: 540de37e7 Fixed error detection for operator init.
REVERT: b93466003 Cleanup unit test debug log on make clean.
REVERT: f428d3768 Cleanup - remove extraneous whitespace and tabs.
REVERT: 4b55882c4 Made msr_log() work with unit tests. Now display the message generated by operators for unit tests.
REVERT: 46cb2beeb Cleanup build to be more portable at searching for libs.
REVERT: fd8f4e319 Update CHANGES and versions for 2.5.0-rc3.
REVERT: e2ad283fd Fix some sprintf formatters so they do not generate warnings.
REVERT: d3d4c6694 Allow "none" transformation to start the transformation chain over and not crash. See #456.
REVERT: 13b5cdd5f Expand macros in setenv (name and value). See #458.
REVERT: 7250e4d03 Fix crash when there is no parameter to ENV target var. See #459.
REVERT: 3232a2d41 Fix debug log "Expanded" msg to only print when expanded.
REVERT: 7540f7118 Remove the "Experimental" tag from PDF and content injection functions.
REVERT: e12a2f08d The apu is under the apr dir on Solaris.
REVERT: 0903a061a Fix regression on non-solaris for lua (lua5.1, not lua51).
REVERT: 8d05c9966 Add some further searching for apr/apu/lua for solaris.
REVERT: 698bff5fa Make sure solaris can find the stupid httpd included pcre lib if need be.
REVERT: 588b4fba8 Fix apr_size_t formatting. Do not bother with formatting errors on solaris.
REVERT: b39bd8679 Fixed typo in lua finding script.
REVERT: 229b1f9db Fix CPPFLAGS when building against httpd src libs.
REVERT: 764fe94ab Wrap the apxs command so we can fix -R option not working on solaris.
REVERT: d350c5f5d Add in a hack to find lua binary install.
REVERT: 8f6f8c7c0 Add download links for lixml2 and lua in the docs.
REVERT: af69a4514 Add some extra build files to clean up with "make dist-clean".
REVERT: 4535b2e67 Cleanup CHANGES and set release dates for 2.5.0-rc2.
REVERT: 8b207a536 Note in docs that the K part has fully qualified rules.
REVERT: ed581b56f Revert part of the noauditlog fix in changelog:878. See #451.
REVERT: 751ce0684 Add signature verification support to the rulset updater script. See #280.
REVERT: 17219368c Added reading options from a config file, unpacking rulesets and email notifications to rules-updater.pl. See #280.
REVERT: 7777c35a6 Add new type parameter to msre_rule_create() for msc_test.
REVERT: f8dedc940 Update make to put mlogc in the tools dir.
REVERT: 2aca5f63f Add a basic auto-rule-update script that can download the latest version. See #280.
REVERT: 4c6dccada Fixed noauditlog. See #451.
REVERT: 52ccced72 Cleanup building actionsets and use minimal default. See #445. Fully resolve all rules before logging.
REVERT: 946a35004 Fixed removing cained rules with ctl action.
REVERT: ef6f75f4f Update docs for SecUploadFileMode to include the "default" value.
REVERT: f8adea949 Implemented SecUploadFileMode. See #448.
REVERT: 09ada31a2 Fixed potential crash if actionset was NULL. See #441 and #442.
REVERT: a3584993f Implement "block" pseudo-action. See #441.
REVERT: 9dbc7807d Remove query string from error log. See #447.
REVERT: e0c0d6690 Update severity documentation, deprecate numerical values.
REVERT: 00731cc70 Update versions in preparation for 2.5.0-rc2.
REVERT: c72057bc5 Cleanup CHANGES.
REVERT: 85e0b4d96 Add parens for clarity.
REVERT: 18e9ef080 Remove default transformations. See #445.
REVERT: c4e1ede35 Fixed merging actionsets so we can build a more accurate rule for auditing.
REVERT: 0d24a08f3 Implemented SecRuleUpdateActionById. See #442.
REVERT: be096d8f7 Explain how to install mlogc after building.
REVERT: c6c400394 More configure cleanup. Update docs for new install: configure && make && make install Spell check the docs.
REVERT: 96ff268f6 Replace TABs with 4 spaces.
REVERT: f4a44bc32 Remove an extraneous debug log.
REVERT: c68beb2fa Update text version of my review (removed areas that were invalid and/or fixed).
REVERT: 9fb03d277 Fixing code based on review comments... Cleaned up what vars are cacheable. Added parens around "*foo++" where it clarified the operation to be "*(foo++)". Added " at VARNAME" to operator matches where needed. Escaped var->name in the var generation (user-supplied data). Marked a bunch of TODOs as ENHs instead. Transformed some C++ style comments to C style. Removed the %0-9 macros code which was commented out. Optimized some ctl action code so that multiple ifs are else ifs. Implemented some error messages marked as ENH. Make commented out acmp debugging a configure-time option. Cleanup GEO debug log messages. Added relative filename support for geo dbs. Added help text to Sec* directives.
REVERT: 99c41afc3 Added a check that SecServerSignature actually worked (Apache changed some of this code as of 2.2.4 and could potentially change it again and break this). Cleaned up some configure code. Cleaned up some extraneous cache logging. Cleaned up the output from the test script.
REVERT: fabeaf505 Final mlogc configure cleanup.
REVERT: 62dfbeb80 Do not bother with libcurl if there is no mlogc-src.
REVERT: bc6c0c76a Add the ability to find curl for mlogc.
REVERT: 0a6ac0559 Add the ability to build mlogc if it is in the mlogc-src subdir.
REVERT: b5033e6e2 It is 2008 now :)
REVERT: 800dacd74 Add text version of review.
REVERT: 2d034c5ce Finished with pre-2.5 source code review.
REVERT: 0b9c2810e Fix speling.
REVERT: d8fa66515 Document data formats.
REVERT: d106a5c4d Yet more review data.
REVERT: b0f7dc1fc More review updates.
REVERT: f15ef01be Tweak error message to make it clear it's not our fault.
REVERT: b6446dc83 Fixed an old bug in ctl:auditLogParts that was fixed in 2.1.x, but not trunk.
REVERT: 4b05cfe3d Update current review data.
REVERT: 106a54f87 Fixed partial transformation caching and reduced some debugging output.
REVERT: 31e3ada84 Fixed phase 5 rules not being excludable.
REVERT: 433ecf342 Cleanup configure and add support for using apache src included libs (--with-httpd-src).
REVERT: 7baf94992 Add --enable-FEATURE options to configure.
REVERT: 4473e483c Update current review and report generation script.
REVERT: c622e7ec9 Expand PERFORMANCE_MEASUREMENT output to break down the full rule timing into transformation, operator and full. Add a "Transformation completed in N usec." debug line to compliment the operator timing.
REVERT: a53969a99 Add the beginings of a pre-2.5 code review ala Jupiter.
REVERT: 2ab009ee9 Add files to support using eclipse w/Jupiter code review plugin.
REVERT: 36dbd608c Add a review dir for testing/using Jupiter eclipse plugin. See: http://csdl.ics.hawaii.edu/Tools/Jupiter/
REVERT: baac392bf More configure cleanup.
REVERT: 40c57f871 Cleanup configure script and add back unit tests (make test).
REVERT: badb2791f Initial 'configure' based compilation (buildconf generates configure script).
REVERT: be9931e00 Make sure all tests pass.
REVERT: 402f6318b More test updates.
REVERT: 2068357af Added m.getvars() and finalised Lua support.
REVERT: 8924f605d Add some more test cases.
REVERT: 6dd615646 Fixed returns for urlDecodeUni, urlDecode, urlEncode and normalisePathWin. See #439.
REVERT: 9551218d2 Fixed URL decoding with invalid encoding. See #439.
REVERT: a210e7325 Fixed return codes for base64Decode, base64Encode, compressWhitespace as well as replaceComments not adding the space for a comment w/o ending. See #439.
REVERT: ef18503f0 More cleanup and fixes in the testing framework.
REVERT: 78f83198d Remove \0ooo support from t:escapeSeqDecode. See #423.
REVERT: 4104e261e Update verifyCC checks w/data Ofer sent me.
REVERT: 9504be7d7 Fix a bug in testing framework where NUL is lost in parameter and add support for running only a single test in a conf file.
REVERT: 246ed9cbc Make sure a zero-length CC# does not verify.
REVERT: 59685455d Update core rules to 1.5.1.
REVERT: f64c7c39e Lua: Added support for scripting to @inspectFile.
REVERT: 4cecdf4c5 Added support for Lua to the exec action.
REVERT: a45c4bb55 Lua: Fix compile warnings.
REVERT: 4fcd787b9 Lua: Support relative filenames in SecRuleScript.
REVERT: 235fd2c07 Lua: Add ability to retrieve values from persistent collections.
REVERT: fa4738e86 Lua: Preserve entire scripts, not just main(). This allows for more complex logic to be written as the user can now use functions. It also allows room for future expansion.
REVERT: 3860a702a Added support for unit testing operators. Only verifyCC tests written.
REVERT: 3a8e0a4df Some more reorg of tests.
REVERT: a04e03b2c Some reorg of tests.
REVERT: 61e4623ba Move around some code to make unit tests easier to build.
REVERT: 2103fb560 Rename msc-test to msc_test.
REVERT: 4e7c243c3 Make libxml2 *required*.
REVERT: 6974a1c78 Fixed l_log to prevent percentage characters from Lua interfering with formatting.
REVERT: a0198a9e6 Polish up docs for md5/sha1.
REVERT: f3fae3155 Adjust Lua debugging levels to 8, to avoid logging at level 9 from skewing the results.
REVERT: 80aa065d2 Document the Lua functionality added so far.
REVERT: e834a860d Avoid double close of DBM on error.
REVERT: a96cbc0f6 Merge in Lua to test framework.
REVERT: e357bb55a Add quoting to unparsed rule generation.
REVERT: cdcb3bdb1 Lua: Added support for retrieving parametarised parameters (e.g. ARGS:p).
REVERT: 4414cb852 Lua: Support retrieval of individual variables from scripts.
REVERT: aef5a460b Fix Lua support. Enable logging from Lua scripts (using m.log()).
REVERT: e0c444953 Update Makefile to compile with Lua support
REVERT: afd3cbf14 Implemented SecRuleScript LUA_SCRIPT [ACTIONS].
REVERT: 6f6934e9d Code polish.
REVERT: d2dee97a3 Fix jsDecode \xHH to verify HH is there and valid hex. See #439.
REVERT: 5da9a05d1 Remove the callback from the verifyCC regex (not used anymore).
REVERT: 499c3f316 Add initial unit testing framework. See #438.
REVERT: 2657154ea Update docs for t:md5 and t:sha1 to note that they are in binary form and should be hex encoded to be human readable.
REVERT: 8360aacc2 Use use new msr->rule_was_intercepted flag. See #425.
REVERT: a99357ad5 Add ability to use <IfDefine MODSEC_2.5>. See #436.
REVERT: a703c9c62 Minor allow bug fix.
REVERT: dc081c5df Removed some code that implemented SecRequestEncoding. Left the directive in, as well as the structure member as they are harmless.
REVERT: b9a28882b Enhanced allow.
REVERT: 9b0ce5ae6 Move an extraneous debug log line from level 4 to level 9.
REVERT: 8a1687bf3 Make phase 5 more strict and catch an inherited disruptive action. See #429.
REVERT: 5bd9e0640 Add CHANGES entry. See #425.
REVERT: 32100608e Handle actionset being NULL. See #66 and #429.
REVERT: 05c8ccd07 Moved modsecurity_crs_55_marketing.conf.
REVERT: d6beae556 Should have moved this not added.
REVERT: f12cc94f9 Update props for rules.
REVERT: 3c4eacf6f Update Core Rules to those in 2.1.4.
REVERT: 4602f7d90 Remove tabs from CHANGES.
REVERT: 9136d391d Forgoten CHANGES entry for last commit.
REVERT: 476684e6e Stricter configuration parsing. See #66 and #429.
REVERT: cd51a1004 Allow all rules to run in phase 5. See #425.
REVERT: 515290434 Add 2.1.4 changes to trunk CHANGES.
REVERT: f68f0156c Cleanup CHANGES.
REVERT: 5065852df More efficient collection persistance and deletion on retrieval. See #345 and #426.
REVERT: 4c11791a9 Escape cache value in log.
REVERT: aa68fff10 Fixed decoding \9 with t:escapeSeqDecode. See #423.
REVERT: 8aa31fd09 Change jsDecodeuni to jsDecode which also decodes all the other JS escapes. See #193.
REVERT: b0de65913 Added t:jsDecodeUni handling unicode similar to t:urlDecodeUni. See #193.
REVERT: cbf79d43b Update version to ready for 2.5.0-rc1.
REVERT: 54cac6461 Add IS_NEW and IS_EXPIRED collection variables. See #345.
REVERT: 220342850 Prefer "offset" to "pos".
REVERT: e7e975696 Add var name to validateUtf8Encoding message. See #408.
REVERT: 3c1d5a021 More efficient multimatch support and cleaned up debugging and messages. See #69.
REVERT: 2dff0fb9f Speed up luhn algorithm and add multimatching capabilities to verifyCC. See #69.
REVERT: 423fd0eea Update skipAfter docs to mention markers. See #416.
REVERT: 715a8eae5 Implement SecMarker. See #416.
REVERT: 37f5231cc Minor code fixes.
REVERT: bbcf1d08f Added an APR-Util variant of character encoding conversion.
REVERT: c25071b83 Initial experimental implementation of SecRequestEncoding. See #390 for more details.
REVERT: 22873995f Rename placeholder type from RULE_PH_TARGET to RULE_PH_SKIPAFTER.
REVERT: 2bf4556cd Checkin fix to rule removal code to avoid placeholders.
REVERT: 9e9bb318b Rewrite the luhn algorithm to be faster and easier to read. See #69.
REVERT: 13e209909 Add in verifyCC operator from mod_security2_op_verifyCC.c. See #69. This still needs to be fixed.
REVERT: a6c2d867f Improvements to audit logging matching rules. See #93.
REVERT: dcdce0cbc Added matching rules to audit log data. See #93.
REVERT: 85053718d Cleanup log output for skipAfter. See #258.
REVERT: ff12e6f1c Remove comment that is not needed.
REVERT: 526bcc0b5 More informative change log message for fixing utf-8 validation.
REVERT: c5c759d6f Forgot to update CHANGES.
REVERT: d3a0a2887 Fix utf-8 validation (again\!\!\!).
REVERT: 575e86388 Implemented SecRequestBodyNoFilesLimit (#103).
REVERT: fd5e4fb32 Fix bugs introduced by the recent change to audit logging.
REVERT: ab6a81fe7 Remove unused reqbody_status from modsec_rec.
REVERT: 1cfc906fa Fixed apr_size_t formatting warnings by using portable %APR_SIZE_T_FMT instead of %lu.
REVERT: 8cec4dd25 Some more debugging and fixes for skipAfter. See #258.
REVERT: 4a08d7e6b Handle out-of-disk-space conditions gracefully when writing to audit log.
REVERT: 800cfc2cc Added missing #else block for printf attributes.
REVERT: e47fdeb42 Changed %p formatter to APRs %pp (wish that was documented). Marked msr_log() as a printf style function so GNU compiler can check formatting types. Fixed a few other warnings with msr_log() formatters.
REVERT: 9447ae67b Added placeholder support for skipAfter so that it works with removed rules. See #258.
REVERT: 1860e2a35 Renamed SecGeoLookupsDb to SecGeoLookupDB.
REVERT: 6ca5b831f Document SecComponentSignature. Update CHANGES.
REVERT: b163864ba Implemented SecComponentSignature.
REVERT: e467d3cac Unified messages in the error log and in the audit log.
REVERT: f0be2ff6b Added warning message when XML request body parser fails.
REVERT: 2cefbda2e Fix quotes in an example.
REVERT: 40c5b2004 Remove extraneous 'void *' cast.
REVERT: aff690053 Initial full pass through code to fix issues with 64-bit/mismatch sign/mismatch size printf style formatters. Still need to look more into how we are handling time and convert to apr_time_t (or time_t) where appropriate. Still need to look into our use of 'long' as windows is LLP64 where 'long' is still 32-bit.
REVERT: b9defc0ad Warn in the debug log when request body processing fails.
REVERT: cd2287a41 Fix for an evasion false positive.
REVERT: 83fb4b4da Fix more formatting errors/warnings on 64bit systems.
REVERT: 7f71ae377 Fix another warning on %u used where %lu needed.
REVERT: e45ea12fc Fix warnings on Solaris and/or 64bit builds.
REVERT: faec5b8e9 Fix a possible loss of data warning when compiling 64bit reported by Marc Stern.
REVERT: 2b346dd08 Updated input filter insertion code for sub-requests.
REVERT: 8e9909006 Add the input filter if we have read the body (even if a sub-request). See #335.
REVERT: 9d49adf02 Basic implementation of skipAfter (still need to implement placeholders so it works with removed rules). See #258.
REVERT: 974298a76 Added ctl:ruleRemoveById action. See #259.
REVERT: 9efa02f42 Change ctl parameters to be case insensitive. Initial implementation of ctl:removeRuleById. See #259.
REVERT: f66e8c5b3 Document MULTIPART_CRLF_LF_LINES.
REVERT: b0d514478 Fix blocking multipart FP, which affected Safari.
REVERT: d5f3b9ce5 Fix multipart parser blocking FP with Safari ( (#317).
REVERT: 793b57670 Added support for MATCHED_VAR and MATCHED_VAR_NAME. See #123.
REVERT: b784e6cb7 Change from TX:LAST_MATCHED_VAR_NAME to MATCHED_VAR. See #123.
REVERT: 83a788607 Now use memcmp() vs strncmp() in string comparison operators since we already short-circuit when the match will not fit in the target. Added @containsWord. See #182.
REVERT: a6cf7957b Update ModSecurity chroot documentation.
REVERT: da1399f0b Added TX:LAST_MATCHED_VAR_NAME. See #123.
REVERT: e0e031d16 Oops, too fast to blame apr :) This bug was a forgotten NULL in the apr_pstrcat function. Apparently newer APRs can handle this.
REVERT: dc71842ce Revert to apr_psprintf (vs apr_pstrcat) to get around what appears to be an apr bug with FC4.
REVERT: 9d4965b29 Fix macro expansion in setvar. See #126.
REVERT: 2d526f143 Fix typo in a comment.
REVERT: b66157497 Document the 'tag' action. See #276.
REVERT: 27ba3027b Move init of msr->msc_rule_mptmp before msr storage.
REVERT: fe1021e36 More cleanup of error messages and marking as relevant. See #4.
REVERT: 8b6f0e72a Wrap PERFORMANCE_MEASUREMENT variable as conditional compile.
REVERT: 63a47c370 Prefer %d string formatter to %i so we do not get warnings on some platforms.
REVERT: f3a8854fe Mark any error conditions/alerts as 'relevant'. Clean up/add error messages where this can happen.
REVERT: 5022ddcad Cleanup more subrequest code. Do not run with subrequests in phase 3-4. Still need to look at phase 5 to see what I can cleanup there. See #135.
REVERT: 86c9a9bf1 Cleanup CHANGES.
REVERT: 9f898a0e0 Fixed comment.
REVERT: 7c393c487 Fixed the wrong status being displayed in the error page. See #3.
REVERT: 72f814933 Do not process subrequests in phase 2. See #135.
REVERT: 426ce1aea Fixed deprecatevar. See #59.
REVERT: a1955d09e Add crude performance measurement.
REVERT: 009c3b0fa Document SecResponseBodyLimitAction.
REVERT: 9ed3cf9e5 Added support for partial response body processing.
REVERT: 59333a6a8 Update CHANGES.
REVERT: 79ee3a6a7 Process debug log statements only if the debug log level is sufficiently high.
REVERT: dfe09ff1b Fix content injection C++ style comments.
REVERT: 2a707d437 Enable our output filters to intercept bodies of error responses (#65).
REVERT: eb6b456f5 Fix potential buffer overrun by 1 byte in base64Decode caused by bad docs from APR-Util. See #255.
REVERT: b217e4262 Merge in fix for ErrorDocument.
REVERT: ad940d1ff Partially corrected the filter error code. See #3.
REVERT: 53011819d Cleanup some doc formatting. Prepare trunk for use as 2.5.0-devN tree.
REVERT: c8e5c7fcd Sync trunk from branches/2.1.x (merge in branch fixes).
REVERT: 8a54517f0 Updated copyright dates in xsl files. See #253.
REVERT: 1e603d8a3 Detect and use new API calls to get the server version/banner when available.
REVERT: 8549546b5 Add a cast to unsigned char * to avoid warning.
REVERT: b95cc3b37 Updated the manuals (trunk and the 2.1.x branch) to cover the new multipart stuff. More detail is needed but there is not enough time for that today. Also added back the impedance mismatch stuff and the PHP peculiarities.
REVERT: ba85c17b0 Update minimal configuration template to use strict multipart parsing.
REVERT: fa2b97ddb Tidy code. Small bug fixes.
REVERT: 0769f2378 More multipart improvements. Added MULTIPART_MISSING_SEMICOLON.
REVERT: d7a92cac2 Adjust hook placement so mod_breach_trans fixes the request before us.
REVERT: 70e8246ae Update CHANGES.
REVERT: 9e08017b3 Force rpaf and similar modules before mod_security2.
REVERT: 9301461b3 Allow multipart C-T header to be up to 1024 bytes long. Some code cleanup (really ;).
REVERT: 608f7f2b4 Fix LF line detection, add MULTIPART_CRLF_LINE, MULTIPART_CRLF_LF_LINES.
REVERT: 239fa0095 Fix silly errors, typos.
REVERT: baf6f59df Multipart parsing improvements.
REVERT: e27516246 Quiet "warning: int format, pid_t arg" type warnings.
REVERT: 28d44486e Fixed data corruption in the multipart parser.
REVERT: 222f1f6f7 Cleanup. MULTIPART_STRICT_ERROR now returns 1 on parsing error too.
REVERT: 323f9f81a Better discovery of partial quoting evasion.
REVERT: b1949b7eb Another check for evasion through partial quoting of multipart boundary.
REVERT: d0ac05c3e Add check for evasion using double quote inside multipart boundary.
REVERT: 25fb1b262 Moved XML request body processor error to debug level 1.
REVERT: 5898e9e11 Fixed a potential segmentation fault, introduced with recent changes.
REVERT: 7c856eef1 Fix typo and make clearer the intent by using defined(). See #198.
REVERT: 716d0fd41 Added a check for nul bytes in multipart part headers.
REVERT: c85773b34 Added MULTIPART_UNMATCHED_BOUNDARY. Not very reliable, as it detects anything that looks like a boundary, which means any line that begins with -- but we don't think it's a boundary.
REVERT: 70324713e Added checks to detect quoted boundary evasion (although we are not susceptable any more) and to detect duplicate final bounary.
REVERT: 32905f9d4 Add ability to compile without API support (-DNO_MODSEC_API). See #198.
REVERT: f4389c9a5 Update docs and CHANGES for logdata action.
REVERT: 8f6385f78 Added logdata action (still needs byte limit). See #40.
REVERT: 765dfd027 Fixed typo.
REVERT: 9cfdd8f0d Rename TX_SEVERITY to HIGHEST_SEVERITY, fix and document.
REVERT: b71687c7f Add ARGS_GET* and ARGS_POST docs.
REVERT: c520886e1 Detect and prevent multipart evasion.
REVERT: cb0cb9375 Sorted variables in the registration code.
REVERT: 648037fdb Added TX_SEVERITY variable. See #60.
REVERT: d2fd881c0 Fix typo in CHANGES.
REVERT: f41c27a28 Added ARGS_GET, ARGS_POST, ARGS_GET_NAME, ARGS_POST_NAMES variables. See #136.
REVERT: fe8c564ed Added MODSEC_BUILD variable. See #38.
REVERT: 2ec596e83 Fix error message in validateByteRange to include the target variable name. See #157.
REVERT: 5a6ce0142 Added logging of target variable expansion. See #62.
REVERT: 820ba5f1d Add debug message when not buffering response body due to MIME type not configured. See trac #63.
REVERT: 892938dee Enhanced multipart parsing to support quotted boundaries and LF line terminators (RFC demands CRLF but some applications use only LF).
REVERT: 9695f2b81 Improvements in transformation cache (add options, document). Update CHANGES.
REVERT: 43f7fa72f Remove non-ASCII characters.
REVERT: b761c1c01 Merge in some doc changes. Fix some doc formatting issues. Update the CHANGES file.
REVERT: 72832c1b3 Working on cache enhancements. See trac #14.
REVERT: 3e5e2a06b Stricter validation for @validateUtf8Encoding. Capture the match in TX:0 when using "capture" action w/@pm operators.
REVERT: 5a38dde99 Disable XML parsing by default in the included core rules.
REVERT: bafe8ad77 Remove old comment.
REVERT: 31f119664 Updated README files to refer to GPLv2.
REVERT: 3facacf92 Emphasize the need to check REQBODY_PROCESSOR_ERROR in configuration example.
REVERT: 73706c8bc Update documentation to emphasize the importance of REQBODY_PROCESSOR_ERROR handling.
REVERT: 8b9d914ed Merge in code fixes to create msr context on request failure.
REVERT: 4d03b029f Remove the error message on a failed request so we can handle it in a pater phase.
REVERT: 9be72c39d Update to core rules 1.4.3
REVERT: e251a9bd5 Add back code to send an alert on request failure.
REVERT: 656021c20 Fix typo.
REVERT: bff23e3eb Updated the rule IDs documentation (reserved ranges).
REVERT: 96edb02fe Updated documentation to specify libxml is no longer optional.
REVERT: 881e8e66c Update LICENSE removing part that is not the licence (but can cause confusion).
REVERT: 7fbf664ec Added cygwin to list of compilers that do not support hidden visibility attribute.
REVERT: 8cd8f42d2 Clarified which variables are URL-decoded and which aren't.
REVERT: f19622b04 Clarified that we are a GPLv2-only project.
REVERT: 129a5ab25 Reserved a rule ID range for ScallyWack.
REVERT: 698955aae Update changes to reflect the 2.2 -> 2.5 change.
REVERT: 8dea31635 Update @within docs according to Ofer's comments. See #134.
REVERT: 19887f9cc Added @within string comparison operator with support for macro expansion. See #134.
REVERT: b58efb346 Update CHANGES. Reversion from 2.2. to 2.5. Update @pmFromFile to base relative filenames off of rule file path.
REVERT: de739c60c Updated documentation for RESPONSE_CONTENT_TYPE and RESPONSE_CONTENT_LENGTH.
REVERT: 8de8e44e0 Removed RESPONSE_CONTENT_ENCODING, which never worked as intended.
REVERT: 5cb4823c4 Documented that we do not support atomic updates of persistent variables at this time.
REVERT: 1c639cf7d Added two payload examples for XPath expression examples.
REVERT: efe52d4e7 Initialize rules tmp pool properly. Update to latest core rules.
REVERT: a4835b73f Fix bad merge of mem pool fix from trunk. Update to latest core rules.
REVERT: 6569c444d Make rules/README UNIX style EOL. Merge another branch/2.1.x change.
REVERT: d55e023bf Revert msr_log as macro (still work-in-progress)
REVERT: 81d0f84ad Update copyright text to Breach Security, Inc. Merge in changes from branches/2.1.x
REVERT: c39723c3a Document SecPdfProtectMethod.
REVERT: 74738b29b Added new directive (SecPdfProtectMethod) to enable the user to choose between using token redirection (falling back on forced download in some cases) and forced download (in all cases).
REVERT: 8b843127b Revert incorrect change to GET/HEAD detection code. This will teach me to always compile before I commit.
REVERT: c7f5dc335 Configure PDF protection by token redirection to only work on GET and HEAD requests. If we attempted to work on other request methods we would probably break something as there is no way to preserve request bodies. The default was previously been to work on all requests. This behavious can still be changed using the SecPdfProtectInterceptGETOnly directive but I am going to leave it undocumented.
REVERT: eec279c8d Cleanup code.
REVERT: 6350e2bad Do not log alert message for subrequests. See #124. Cleanup CHANGES.
REVERT: 23bd6b433 Do not pause if we are not the main request. See #124.
REVERT: 46d7a5ec6 Move transformation cache rec def re.h from modsecurity.h
REVERT: 71eb6e17a Added XPath references.
REVERT: dd6755985 Move the transformation cache recort into re.h. See #14.
REVERT: 11456dd87 Use pmFromFile instead of pmfile and p=phrase instead of parallel in docs. See #16.
REVERT: e5c00d156 Added rule file/line to audit log messages. See #49.
REVERT: f1607d007 Cleanup message output. See #16.
REVERT: 86f648d26 Remove extraneous debug log message.
REVERT: 84c0ca303 Fixed patch for subrequests to be more complete. See #124.
REVERT: e887faac2 Add @pm/@pmfile operators (parallel patch). See #16.
REVERT: f53c4241f Add entry to CHANGES.
REVERT: db04c6442 Cleanup
REVERT: af6160b9c Fixed problem with subrequests not being intercepted. See #124.
REVERT: c594c205c Fix new string operators to all resolve macros. Rename startsWith operator in code to match docs. See #54.
REVERT: 6cc0173cf Add caching for transformations. See #14.
REVERT: 61238ca22 Argh! That last one was not meant to be checked in - reverting 281.
REVERT: e11ff8542 Fixed log_escape_raw when length was <= 0
REVERT: 220abd344 Quiet uninitialized warning.
REVERT: a1a0c24b8 Do not compile on Solaris with visibility attributes.
REVERT: 3fbf2b93c Modify docs for t:urlDecodeUni. (See #122)
REVERT: a627e96c7 Lessen "capture" debug log messages.
REVERT: eaa8e444d Fixed decoding full-width unicode in t:urlDecodeUni for ASCII range 0xFF01-0xFF5E. Probably need more work/testing. (See #122)
REVERT: 97a1718d3 Only calculate debug data when we are debugging. NOTE: Last commit message was wrong.
REVERT: e03ea11f9 Only calculate debug data when we are debugging.
REVERT: b60f20697 Remove use of GNU extention strnlen(). Fix CHANGES.
REVERT: a68eb0488 Add geo lookup support. See #22.
REVERT: d8abb48ad Fixed a problem with content injection that resulted in content being injected twice.
REVERT: 2733cc739 Do not try to intercept a request after a failed rule. (See #53)
REVERT: dfde8169e Documented the PDF XSS protection functionality. It's not much but it will do for now.
REVERT: f1d4e0e2f Documented RESPONSE_CONTENT_LENGTH and RESPONSE_CONTENT_TYPE.
REVERT: d8418c3aa Documented SecContentInjection, append, and prepend.
REVERT: c0c5d8d89 Removed extraneous symbols from dso via DSOLOCAL.
REVERT: fca9eabaf Merged the PDF XSS protection functionality into ModSecurity.
REVERT: c559f3ee2 Change @eq to @streq. See #54.
REVERT: 2aa6e6160 Exported API for registering custom variables. See #120. Simple example in api/mod_var_remote_host_port.c
REVERT: b47059a5b Remove docs for HTTP_* vars. See #23.
REVERT: cd62f2002 Add docs for new transformations and operators. See #54, #55 and #117.
REVERT: 0c234c115 Cleanup debug log output: add rev to 'Invoking rule' line, remove clearing mem pool line.
REVERT: fa13b02f7 Updated the CHANGES file with the RESPONSE_* variable changes.
REVERT: e0a860292 Added experiemental support for content injection.
REVERT: 20c0b11dd Added experimental RESPONSE_CONTENT_LENGTH, RESPONSE_CONTENT_TYPE.
REVERT: 3661a294a Added experimental RESPONSE_CONTENT_ENCODING.
REVERT: 3f7fc7c75 Added string comparison operators: @contains, @is, @beginsWith and @endsWith with support for macro expansion. See #54.
REVERT: 0a1610f85 More debug log enhancements - quote values to easier see whitespace.
REVERT: a3c3f25ae Fix macro expansion. See #118. Fix some debug log output to escape NULs properly in preparation for #54. Up version to prepare for 2.2.0 pre-releases.
REVERT: b93eef9db Added t:length to transform a value to its character length. See #55.
REVERT: 5482606c3 Added t:trimLeft, t:trimRight, t:trim to remove whitespace from a value on the left, right or both. (see trac #117)
REVERT: d9a26780a Add SecAuditLog2 directive (trac #102)
REVERT: e556a914f Remove tabs
REVERT: f2c96bae2 I added notes about accessing response headers in phase:3 and phase:5.
REVERT: e72540b0a I added the XML and HTML files for the Migration Matrix doc.
REVERT: 82fdc7cf3 Format CHANGES to add space before '*'
REVERT: 51a5418b4 Update changes to reflect merges into 2.1.x branch
REVERT: eab433187 Add PCRE_DOLLAR_ENDONLY to doc
REVERT: 00dcb2714 Add the PCRE_DOLLAR_ENDONLY option when compiling regular expression for the @rx operator and variables. (trac #57)
REVERT: a93c77e9a Updated line/num/id debug output with a format that is easier to parse. (trac #47)
REVERT: 9e669fcc7 Better CHANGES entry. (trac #43)
REVERT: 383119a14 Really set PCRE_DOTALL option when compiling the regular expression for the @rx operator as the docs state. (trac #51)
REVERT: f6de76b05 Removed CGI style HTTP_* variables in favor of REQUEST_HEADERS:Header-Name. (trac #23)
REVERT: 485c664a4 Enhance debug log output for capturing to detect all regex/capture mismatches (trac #21).
REVERT: 891859f9c Revert back to using captured regex execution as it seems to be more effecient as the ovector can be used for working space even if it is not used for captures. Warn when captures are used in the regex, but "capture" not specified.
REVERT: 59928bfe6 This was not meant to be checked in yet (trac #42)
REVERT: 4676132ed Add the file/line to the rule so we can use it in the debug log and eventually in the alerts.
REVERT: 58afede3f Do not log 'allow' action as intercepted in the debug log.
REVERT: d1ada359d Optimize regex execution to not capture unless 'capture' action used.
REVERT: 09b704f11 Recycle the mptmp pool (trac #43).
REVERT: 8876a03ab Recycle the mptmp pool (trac #43).
REVERT: f508c0a33 Fix a compile warning.
REVERT: 473a471bb Oops, forgot my parens.
REVERT: bce096216 Fixed collection variable name printing in debug log (trac #45)
REVERT: ab55a8716 Fix potential memory corruption in msre_create_var_ex allocating per-request data out of global pool.
REVERT: 8898759c4 Add back the check for overflow on length
REVERT: 9b56d6314 More generic Makefile
REVERT: 4370819f7 Fixed potential DIV0 when a collection var was fetched in the same second as creation
REVERT: 4e02be621 Fixed parsing of ASCIIZ for application/x-www-form-urlencoded forms
REVERT: cf024ded0 Fix segfault when logging NULL text during request reading errors and upcoming fix for sending alerts on such errors.
REVERT: ebdd0400d Generate an alerts for error log entries for requests we did not process *if* it has a UNIQUE_ID available.
REVERT: 8aeff06fc Fixed faulty REQUEST_FILENAME.
REVERT: f4fb4ed4f Updates to quiet some compiler warnings.
REVERT: 79d232ccf Fixed some casting issues for compiling on NetWare (Guenter Knauf).
REVERT: 3e95d3c34 Changed version number to 2.1.0.
REVERT: 98188bd9b Document was not valid DocBook. Fixed.
REVERT: 6ebecdb3e Small fixes.
REVERT: f9999c440 Downgraded 'Connection reset by peer' from ERROR to NOTICE, as it has nothing to do with us.
REVERT: b57a1f024 Fixed an invalid conversion specifier.
REVERT: 6c5d19ed8 Removed the (harmless) message mentioning LAST_UPDATE_TIME missing.
REVERT: 8eb0aa7e4 Updated fix message.
REVERT: f807697e3 SecRuleRemoveById was unable to remove a phase 4 rule.
REVERT: 08c231a6b Fix some spelling, grammer and formatting issues.
REVERT: c48277409 Branched 2.1.0-rc7
REVERT: 3f80fdac3 Import ModSecurity 2.1.0-rc7
git-subtree-dir: src/deps/src/modsecurity
git-subtree-split: bbccedbdd5
Théophile Diot
florian
Théophile Diot