summaryrefslogtreecommitdiff
path: root/src (follow)
AgeCommit message (Collapse)Author
2018-03-02Fix a warning due to an unexported symboljvoisin
2018-03-02Add some rules for Typo3, courtesy of @kjojojvoisin
2018-02-27Implements .dump() for unserialize and fix some related testskkadosh
2018-02-27Improve the Readme filejvoisin
2018-02-22php-nightly is now allowed to failjvoisin
PHP is breaking too many things on nightly, we'll only support releases from now on. This should also make our vld-based file-upload checker more resilient: no more random warnings on stderr.
2018-02-22Refactor a bit our rulesjvoisin
2018-02-12Provide a script for upload validationjvoisin
The Python script is using vld (https://derickrethans.nl/projects.html#vld) to check for malicious opcodes.
2018-02-09Add a broken test :'(jvoisin
2018-02-07Add an example rule from the rips calendar for abantecart's XSSkjojo
2018-02-07Use assertions for things that should never happenjvoisin
2018-02-07Bump the changelogv0.2.1jvoisin
2018-02-06Increase a bit the coveragejvoisin
2018-02-06Add a test to make sure that arrays are correctly handledjvoisin
2018-02-06Make our API consistentjvoisin
2018-02-06Add a test to check regexpsjvoisin
2018-02-05Massive simplification of functions hookingjvoisin
2018-02-05Compatibility layer for pcre2jvoisin
This should close #129
2018-02-05Fix a oncst-related warningjvoisin
2018-01-26Fix a segfault in `get_local_var` (#138)Thibault "bui" Koechlin
This commit fixes a segfault where 'get_local_var' would fail if no functions where called yet (`symtable` will be NULL)
2018-01-26Replace two `goto` with `break` instead.jvoisin
2018-01-22switch to commonly used version schema (#136)Remi Collet
* switch to commonly used version schema * update release process
2018-01-19Fix a possible double-executejvoisin
Some extensions might hook `zend_execute_internal` for various reason, although few are doing it. We're not supposed to call the original function in our hook if someone else is hooking it. Thanks to @remicollet for the bug report and troubleshooting
2018-01-19The testsuite is now successfully running under the root userjvoisin
This closes #131
2018-01-18Improve a bit our portability wrt. windowsjvoisin
Thanks to @remicollet for the tip
2018-01-18Remove src from patchRemi Collet
As in pr #126
2018-01-18Bump the changelogjvoisin
2018-01-18Simplify the previous commitjvoisin
2018-01-18Clean up a bit the glob codejvoisin
2018-01-18Minor code improvements in sp_execute.cjvoisin
2018-01-18add missing globfree()Sebastien Blot
2018-01-18Add globbing support for configuration file path (closes #125)Sebastien Blot
2018-01-18Improve the way we're dealing with filtering on parameter positionsjvoisin
This should close #127
2018-01-17Bump a bit the coveragejvoisin
2018-01-17Remove useless "head" member in our linked lists implementationsimon MAGNIN-FEYSOT
This should close #85
2018-01-17Fix a minor warningjvoisin
2018-01-17remove src from path (#126)Remi Collet
2018-01-17Bump a bit our coveragejvoisin
2018-01-17Our configuration files are ending in .rules, not .inijvoisin
This commit fixes the documentation, our shipped configuration files, and the related tests. Thanks to @remicollet for the tip
2018-01-17Make the build system a bit more portablejvoisin
2018-01-15Minor simplificationjvoisin
2018-01-15Fix an other off-by-onejvoisin
2018-01-15Fix an off-by-onejvoisin
2018-01-15Fix some memleaksjvoisin
2018-01-15Minor code cleanupjvoisin
2018-01-12Refactor to improve the scopingjvoisin
2018-01-12Fix a memory leakjvoisin
2018-01-12Minor factorization and symbol exposure reductionjvoisin
2018-01-12Minor refactoringjvoisin
2018-01-12do not prepend $ to the var name if there is one alreadySebastien Blot
2018-01-12Add an ugly hack to our parser to make the writing of configuration rules ↵jvoisin
more obvious.