Home - Waterfall Grid T-Grid Console Builders Recent Builds Buildslaves Changesources - JSON API - About

Console View


Categories: Apache Doxygen IIS Nginx (Mainline) Nginx (Stable)
Legend:   Passed Failed Warnings Failed Again Running Exception Offline No data

Apache Doxygen IIS Nginx (Mainline) Nginx (Stable)
Felipe Zimmerle
Modifies the CHANGES file to cite issue #837
  • Linux64-lua52 - Apache: regression [8097] failed -  stdio
  • Linux64-lua53 - Apache: (ModSec) Compilation failed -  stdio
  • MacOSMaveriks - Apache: regression [8106] failed -  stdio
  • Linux64-lua52 - Nginx (Mainline): regression [8098] failed -  stdio
  • Linux64-lua53 - Nginx (Mainline): (ModSec) Compilation failed -  stdio
  • MacOSMaveriks - Nginx (Mainline): regression [8107] failed -  stdio
  • Linux32 - Nginx (Stable): regression [8081] failed -  stdio
  • Linux64-lua52 - Nginx (Stable): regression [8096] failed -  stdio
  • Linux64-lua53 - Nginx (Stable): (ModSec) Compilation failed -  stdio
  • MacOSMaveriks - Nginx (Stable): regression [8105] failed -  stdio
Felipe Zimmerle
Modifies the CHANGES file to cite issue #837
  • Linux64 - Apache: regression [8085] failed -  stdio
  • Linux64 - Nginx (Mainline): regression [8086] failed -  stdio
  • Linux64-no-curl - Nginx (Stable): regression [8087] failed -  stdio
Athmane Madjoudj
Fix build issue with Lua >= 5.3
  • Linux64 - Apache: regression [8085] failed -  stdio
  • Linux64 - Nginx (Mainline): regression [8086] failed -  stdio
  • Linux64-no-curl - Nginx (Stable): regression [8087] failed -  stdio
Felipe Zimmerle
Modifies the CHANGES file to cite issue #609
  • freebsd10 - Apache: regression [8103] failed -  stdio
  • Linux64 - Nginx (Mainline): regression [8086] failed -  stdio
  • Linux64-no-curl - Nginx (Mainline): regression [8089] failed -  stdio
  • freebsd9 - Nginx (Mainline): regression [8101] failed -  stdio
  • Linux32 - Nginx (Stable): regression [8081] failed -  stdio
  • Linux64 - Nginx (Stable): regression [8084] failed -  stdio
Jeff Trawick
Fix invalid storage reference by apr_psprintf() when creating a string from salt[]. salt[] is not '\0'-terminated, so apr_psprintf() needs to be told the extent of the bytes to read.

It is easy to test old/new code standalone with valgrind;
jst insert the getkey() function into this template:

-----------getkey() goes here-----------------

int main(void)
{
    apr_pool_t *p;

    apr_initialize();
    apr_pool_create(&p, NULL);

    printf("%s\n", getkey(p));
    return 0;
}
  • freebsd10 - Apache: regression [8103] failed -  stdio
  • Linux64 - Nginx (Mainline): regression [8086] failed -  stdio
  • Linux64-no-curl - Nginx (Mainline): regression [8089] failed -  stdio
  • freebsd9 - Nginx (Mainline): regression [8101] failed -  stdio
  • Linux32 - Nginx (Stable): regression [8081] failed -  stdio
  • Linux64 - Nginx (Stable): regression [8084] failed -  stdio
Felipe Zimmerle
Avoids segfault while running with proxy_pass

Duplicates the headers variables while coping data from/to ModSecurity.
This seems to fix the segfault that was happening while using proxy_pass.
The variable is later cleaned, which means that we don't have a leak
because of that.
Felipe Zimmerle
Avoids segfault while running with proxy_pass

Duplicates the headers variables while coping data from/to ModSecurity.
This seems to fix the segfault that was happening while using proxy_pass.
The variable is later cleaned, which means that we don't have a leak
because of that.
Fabricio Oliveira
Fix missing status_line when logging in nginx.
Ramandeep
Allow non-zero Content-Length for HEAD requests
Ramandeep Singh
Passthrough the saved Response headers in the response

Tickets: https://github.com/SpiderLabs/ModSecurity/issues/735
Felipe Zimmerle
nginx: fixing fuzzyHash test case for nginx

POST was happening on a file that was not allowed by nginx to receive a POST.
Nginx was returning 405 instead of 200 making the test to fail. Fixed by
change the URL to one that is allowed to receive POST.
Andrei Belov
Obtain port from r->connection->local_sockaddr.

This eliminates segfaults caused by unset (NULL) r->port_start
and non-NULL r->port_end. In fact, r->port_start is always NULL,
so it is useless to rely on this pointer.
Andrei Belov
Removed unneeded and invalid initialization.
paulyang
Bugfix: add -P option in test script

Otherwise nginx's installation directory could not be specified.

Signed-off-by: paulyang <paulyang.inf@gmail.com>
Felipe Zimmerle
niginx: cosmetics: Changes CRLF to LF
Felipe Zimmerle
nginx: cosmetics: Removes trailing whitespace
Felipe Zimmerle
nginx: cosmetics: Splits lines longer than 80 characters
Felipe Zimmerle
nginx: copies the req body chain to be processed instead of move

Add a check for the definition MOVE_REQUEST_CHAIN_TO_MODSEC, whenever it is
set the chain will be moved into the brigade. If it was not set the chain
will be only copied. Moving was causing segfaults on the following
regression tests:

#15 - SecRequestBodyInMemoryLimit
#16 - SecRequestBodyInMemoryLimit (greater)
#19 - SecRequestBodyLimitAction ProcessPartial (multipart/greater - chunked)
(from: regression/config/10-request-directives.t)
Felipe Zimmerle
nginx: better dealing with chunked request body
Felipe Zimmerle
nginx: looking for segfaults on the regression test.

If nginx segfaults it will return, warning that the test failed.
Felipe Zimmerle
nginx refactoring

Refactoring on the nginx module, including:
- Better handling larger posts;
- Now using nginx echo module during the regression tests.
- Better interacting with neginx chain rules
- Separation of the request handling and content filters.
- Better handling nginx sessions and resource counts to allow a
  more efficient garbage collector.
- Handling both http/1.0 and 1.1, including keep-alive.
- Tests are now capable to test nginx as a proxy or end-server.
- Tested agains nginx 1.6 and 1.7.
Felipe Zimmerle
Version 2.9.0

Increasing version to 2.9.0.
Felipe Zimmerle
Version 2.9.0

Increasing version to 2.9.0.
Felipe Zimmerle
Enables support to APU_CRYPTO on IIS build
Felipe Zimmerle
Version 2.9.0

Increasing version to 2.9.0.
Felipe Zimmerle
Enables support to APU_CRYPTO on IIS build
Felipe Zimmerle
Improves SecRemoteRules messages on IIS

IIS was not displaying correctly the error messages and the amount of
loaded rules while the operator SecRemoteRules was used.
Felipe Zimmerle
Uses our own version of ap_find_command

Keep compatibility among different versions of Apache is not a simple
task, in this case it can be avoided by the creation of our own version
of ap_find_command, that is now used by msc_remote_rules.
Felipe Zimmerle
yet another test
  • freebsd9 - Apache: regression [8100] failed -  stdio
  • Linux32 - Nginx (Stable): regression [8081] failed -  stdio
Felipe Zimmerle
yet another test
  • MacOSLeopard - Apache: updating -  stdio
  • Win7 - (VS 2011 32b) - IIS: build modsec failed -  stdiowarnings (12)
  • Win7 - (VS 2011 64b) - IIS: build modsec failed -  stdiowarnings (816)
  • Win7 - (VS 2012 32b) - IIS: updating -  stdio
  • Win7 - (VS 2012 64b) - IIS: updating -  stdio
  • Linux64-apache22 - Nginx (Mainline): updating -  stdio
  • Linux32 - Nginx (Stable): regression [8081] failed -  stdio
Felipe Zimmerle
yet another test
  • Linux64 - Nginx (Stable): regression [8084] failed -  stdio
Felipe Zimmerle
yet another test
  • Linux32 - Apache: updating -  stdio
  • Linux64 - Apache: updating -  stdio
  • Linux64-apache22 - Apache: updating -  stdio
  • Win7 - (VS 2011 32b) - IIS: build modsec failed -  stdiowarnings (12)
  • Win7 - (VS 2011 64b) - IIS: build modsec failed -  stdiowarnings (816)
  • Win7 - (VS 2012 32b) - IIS: build modsec failed -  stdiowarnings (12)
  • Win7 - (VS 2012 64b) - IIS: build modsec failed -  stdiowarnings (816)
  • Win8 - (VS 2011 32b) - IIS: updating -  stdio
  • Win8 - (VS 2011 64b) - IIS: updating -  stdio
  • Win8 - (VS 2012 32b) - IIS: build modsec failed -  stdiowarnings (12)
  • Win8 - (VS 2012 64b) - IIS: build modsec failed -  stdiowarnings (816)
  • Linux64 - Nginx (Mainline): updating -  stdio
  • freebsd9 - Nginx (Mainline): updating -  stdio
  • Linux32 - Nginx (Stable): regression [8081] failed -  stdio
  • MacOSLeopard - Nginx (Stable): updating -  stdio
  • freebsd9 - Nginx (Stable): updating -  stdio
Felipe Zimmerle
yet another test
  • Linux64-no-curl - Apache: (ModSec) Compilation failed -  stdio
  • freebsd9 - Apache: regression [8100] failed -  stdio
  • Linux32 - Nginx (Mainline): regression [8083] failed -  stdio
  • Linux64-no-curl - Nginx (Mainline): (ModSec) Compilation failed -  stdio
  • Linux64-no-curl - Nginx (Stable): (ModSec) Compilation failed -  stdio
Felipe Zimmerle
Version 2.9.0

Increasing version to 2.9.0.
  • Linux64 - Apache: regression [8085] failed -  stdio
  • Linux32 - Nginx (Mainline): regression [8083] failed -  stdio
  • Linux64-no-curl - Nginx (Mainline): regression [8089] failed -  stdio
  • Linux64 - Nginx (Stable): regression [8084] failed -  stdio
  • Linux64-no-curl - Nginx (Stable): (ModSec) Compilation failed -  stdio
Felipe Zimmerle
Improves SecRemoteRules messages on IIS

IIS was not displaying correctly the error messages and the amount of
loaded rules while the operator SecRemoteRules was used.
  • Linux64 - Apache: regression [8085] failed -  stdio
  • Linux32 - Nginx (Mainline): regression [8083] failed -  stdio
  • Linux64-no-curl - Nginx (Mainline): regression [8089] failed -  stdio
  • Linux64 - Nginx (Stable): regression [8084] failed -  stdio
  • Linux64-no-curl - Nginx (Stable): (ModSec) Compilation failed -  stdio
Felipe Zimmerle
Version 2.9.0

Increasing version to 2.9.0.
  • Linux32 - Nginx (Mainline): regression [8083] failed -  stdio
Felipe Zimmerle
Uses our own version of ap_find_command

Keep compatibility among different versions of Apache is not a simple
task, in this case it can be avoided by the creation of our own version
of ap_find_command, that is now used by msc_remote_rules.
  • Linux32 - Nginx (Mainline): regression [8083] failed -  stdio
Felipe Zimmerle
Improves the accuracy of version identification on status calls

Trying to differentiate among IIS, Apache, NGINX, and Standalone builds.
  • Linux32 - Nginx (Mainline): regression [8083] failed -  stdio
Felipe Zimmerle
Improves the accuracy of version identification on status calls

Trying to differentiate among IIS, Apache, NGINX, and Standalone builds.
  • LinuxARM - Apache: updating -  stdio
  • freebsd9 - Apache: regression [8097] failed -  stdio
  • freebsd10 - Apache: regression [8100] failed -  stdio
  • LinuxARM - Nginx (Mainline): updating -  stdio
  • Linux32 - Nginx (Stable): regression [8081] failed -  stdio
  • LinuxARM - Nginx (Stable): regression [8090] failed -  stdio
Felipe Zimmerle
Version 2.9.0

Increasing version to 2.9.0.
  • LinuxARM - Apache: updating -  stdio
  • Linux64 - Nginx (Mainline): regression [8086] failed -  stdio
  • LinuxARM - Nginx (Mainline): updating -  stdio
  • LinuxARM - Nginx (Stable): regression [8090] failed -  stdio