NotificationsYou must be signed in to change notification settings
Fork0
Star0

Commit5d92e44

Felipe Zimmerle

committed

Fixes subnets representations using slash notation

The ipv4 representation was only accepting slash notation with masksrepresented in 2 digits. In the ipv6 implementation several fixies were made:The maximum value to a bitmask was 64 which is not the reality, as ipv6 canhandle 128 bits. The second change was also to enable mask representation withmore and less than 2 digits. A more general fix was added to allow the unittests to work even if a invalid ip/range was informed during the creation ofthe "tree", now it is checking if the tree is NULL while performing theexecution of the operator. Initial problem was reported at the issue:owasp-modsecurity#706.

1 parent731466c commit5d92e44Copy full SHA for 5d92e44

File tree

3 files changed

+36

-13

lines changed

apache2

3 files changed

+36

-13

lines changed

`‎apache2/msc_tree.c‎`

Lines changed: 30 additions & 9 deletions

Original file line number	Diff line number	Diff line change
`@@ -820,35 +820,46 @@ TreeNode TreeAddIP(const char buffer, CPTTree *tree, int type) {`
`820`	`820`	`charip_strv4[NETMASK_32],ip_strv6[NETMASK_128];`
`821`	`821`	`structin_addraddr4;`
`822`	`822`	`structin6_addraddr6;`
	`823`	`+intpos=0;`
`823`	`824`	`char*ptr=NULL;`
`824`	`825`
`825`	`826`	`if(tree==NULL)`
`826`	`827`	`returnNULL;`
`827`	`828`
	`829`	`+pos=strchr(buffer,'/')-buffer;`
	`830`	`+`
`828`	`831`	`switch(type) {`
`829`	`832`
`830`	`833`	`caseIPV4_TREE:`
`831`	`834`	`memset(&addr4,0,sizeof(addr4));`
`832`	`835`	`memset(ip_strv4,0x0,NETMASK_32);`
`833`	`836`
`834`		`-strncpy(ip_strv4,buffer,sizeof(ip_strv4)-2);`
	`837`	`+strncpy(ip_strv4,buffer,sizeof(ip_strv4));`
`835`	`838`	`*(ip_strv4+ (sizeof(ip_strv4)-1))='\0';`
`836`	`839`
`837`	`840`	`ptr=strdup(ip_strv4);`
`838`	`841`	`netmask_v4=is_netmask_v4(ptr);`
`839`	`842`
	`843`	`+if (netmask_v4>NETMASK_32) {`
	`844`	`+free(ptr);`
	`845`	`+ptr=NULL;`
	`846`	`+returnNULL;`
	`847`	`+ }`
	`848`	`+`
`840`	`849`	`if(ptr!=NULL) {`
`841`	`850`	`free(ptr);`
`842`	`851`	`ptr=NULL;`
`843`	`852`	`}`
`844`	`853`
`845`		`-if(netmask_v4==0)`
	`854`	`+if(netmask_v4==0) {`
`846`	`855`	`returnNULL;`
`847`		`-elseif(netmask_v4!=NETMASK_32) {`
`848`		`-ip_strv4[strlen(ip_strv4)-3]='\0';`
	`856`	`+ }`
	`857`	`+elseif (netmask_v4!=NETMASK_32&&pos<strlen(ip_strv4)) {`
	`858`	`+ip_strv4[pos]='\0';`
`849`	`859`	`}`
`850`	`860`
`851`	`861`	`ret=inet_pton(AF_INET,ip_strv4,&addr4);`
	`862`	`+`
`852`	`863`	`if (ret <=0) {`
`853`	`864`	`returnNULL;`
`854`	`865`	`}`
`@@ -863,26 +874,36 @@ TreeNode TreeAddIP(const char buffer, CPTTree *tree, int type) {`
`863`	`874`	`memset(&addr6,0,sizeof(addr6));`
`864`	`875`	`memset(ip_strv6,0x0,NETMASK_128);`
`865`	`876`
`866`		`-strncpy(ip_strv6,buffer,sizeof(ip_strv6)-2);`
	`877`	`+strncpy(ip_strv6,buffer,sizeof(ip_strv6));`
`867`	`878`	`*(ip_strv6+sizeof(ip_strv6)-1)='\0';`
`868`	`879`
`869`	`880`	`ptr=strdup(ip_strv6);`
`870`	`881`	`netmask_v6=is_netmask_v6(ptr);`
`871`	`882`
	`883`	`+if (netmask_v6>NETMASK_128) {`
	`884`	`+free(ptr);`
	`885`	`+ptr=NULL;`
	`886`	`+returnNULL;`
	`887`	`+ }`
	`888`	`+`
`872`	`889`	`if(ptr!=NULL) {`
`873`	`890`	`free(ptr);`
`874`	`891`	`ptr=NULL;`
`875`	`892`	`}`
`876`	`893`
`877`		`-if(netmask_v6==0)`
	`894`	`+if(netmask_v6==0) {`
`878`	`895`	`returnNULL;`
`879`		`-elseif (netmask_v6!=NETMASK_64) {`
`880`		`-ip_strv4[strlen(ip_strv6)-3]='\0';`
	`896`	`+ }`
	`897`	`+elseif (netmask_v6!=NETMASK_128&&pos<strlen(ip_strv6)) {`
	`898`	`+ip_strv6[pos]='\0';`
`881`	`899`	`}`
`882`	`900`
`883`	`901`	`ret=inet_pton(AF_INET6,ip_strv6,&addr6);`
`884`		`-if(ret <=0)`
	`902`	`+`
	`903`	`+if (ret <=0)`
	`904`	`+ {`
`885`	`905`	`returnNULL;`
	`906`	`+ }`
`886`	`907`
`887`	`908`	`tree->count++;`
`888`	`909`

`‎apache2/msc_util.c‎`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -364,12 +364,12 @@ unsigned char is_netmask_v6(char *ip_strv6) {`
`364`	`364`	`if ((mask_str=strchr(ip_strv6,'/'))) {`
`365`	`365`	`*(mask_str++)='\0';`
`366`	`366`
`367`		`-if (strchr(mask_str,'.')!=NULL) {`
	`367`	`+if (strchr(mask_str,':')!=NULL) {`
`368`	`368`	`return0;`
`369`	`369`	`}`
`370`	`370`
`371`	`371`	`cidr=atoi(mask_str);`
`372`		`-if ((cidr<0)\|\| (cidr>64)) {`
	`372`	`+if ((cidr<0)\|\| (cidr>128)) {`
`373`	`373`	`return0;`
`374`	`374`	`}`
`375`	`375`	`netmask_v6= (unsignedchar)cidr;`

`‎apache2/re_operators.c‎`

Lines changed: 4 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -122,19 +122,21 @@ static int msre_op_ipmatch_param_init(msre_rule rule, char *error_msg) {`
`122`	`122`	`* \retval 0 On No Match`
`123`	`123`	`*/`
`124`	`124`	`staticintmsre_op_ipmatch_execute(modsec_recmsr,msre_rulerule,msre_varvar,char*error_msg) {`
`125`		`-TreeRoot*rtree=rule->ip_op;`
	`125`	`+TreeRoot*rtree=NULL;`
`126`	`126`	`intres=0;`
`127`	`127`
`128`	`128`	`if (error_msg==NULL)`
`129`	`129`	`return-1;`
`130`	`130`	`else`
`131`	`131`	`*error_msg=NULL;`
`132`	`132`
`133`		`-if (rtree==NULL) {`
	`133`	`+if (rule==NULL\|\|rule->ip_op==NULL) {`
`134`	`134`	`msr_log(msr,1,"ipMatch Internal Error: ipmatch value is null.");`
`135`	`135`	`return0;`
`136`	`136`	`}`
`137`	`137`
	`138`	`+rtree=rule->ip_op;`
	`139`	`+`
`138`	`140`	`res=tree_contains_ip(msr->mp,rtree,var->value,NULL,error_msg);`
`139`	`141`
`140`	`142`	`if (res<0) {`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit5d92e44

File tree

3 files changed

3 files changed

`‎apache2/msc_tree.c‎`

`‎apache2/msc_util.c‎`

`‎apache2/re_operators.c‎`

0 commit comments