Re: [Mod-security-developers] Make test failed
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
Re: [Mod-security-developers] Make test failed
|
From: Breno S. <bre...@gm...> - 2013-05-22 12:43:00
|
I can just reproduce it running ./msc_test alone:
root@ubuntu:/home/brenosilva/modsecurity-apache_2.7.4/tests# ./msc_test
"-t" "op" "-n" "rx" "-p" "(?^i:^([^=])\s*=\s*((?:abc)+(?:def|ghi){2})$)"
"-D" "0" "-r" "1"
ERROR: Failed to create rule for op "rx": Error creating rule: Error
compiling pattern (offset 2): unrecognized character after (? or (?-
Segmentation fault
However when running with make test it works fine.
On Wed, May 22, 2013 at 9:41 AM, Breno Silva <bre...@gm...> wrote:
> Oops you should change the binary to msc_test :)
>
>
> On Wed, May 22, 2013 at 9:37 AM, Breno Silva <bre...@gm...>wrote:
>
>> Could you also send me your error.log?
>>
>>
>> On Wed, May 22, 2013 at 9:36 AM, Breno Silva <bre...@gm...>wrote:
>>
>>> You should do:
>>>
>>> Make sure there is a core dump area with something like:
>>>
>>> CoreDumpDirectory /tmp
>>>
>>> Make sure limits are set to dump core:
>>>
>>> ulimit -c unlimited
>>>
>>> Restart and trigger the error. A core file should be in the directory
>>> you specified.
>>>
>>> Then use gdb to get a backtrace:
>>>
>>> gdb /path/to/httpd /path/to/core --batch --quiet \
>>> -ex "thread apply all bt full" > backtrace.log
>>>
>>>
>>> On Wed, May 22, 2013 at 9:32 AM, Pavel Mateja <pa...@ne...> wrote:
>>>
>>>> > Hello Pavel,
>>>> >
>>>> > Are you running make CFLAGS=-DMSC_TEST test right ?
>>>>
>>>> Yes, I am.
>>>>
>>>> > Can you send me your backtrace ?
>>>>
>>>> Sure. What exactly do you need?
>>>>
>>>> > Thanks
>>>> >
>>>> > On Wed, May 22, 2013 at 8:05 AM, Rainer Jung <rai...@ki...
>>>> >wrote:
>>>> > > On 22.05.2013 10:22, Pavel Mateja wrote:
>>>> > > > Hi guys,
>>>> > > > I've upgraded our debian servers from wheezy to squeeze and I
>>>> can't
>>>> > > > pass
>>>> > >
>>>> > > "make
>>>> > >
>>>> > > > test" of modsecurity any more:
>>>> > > >
>>>> > > > Loaded 8 tests from ./op/rx.t
>>>> > > >
>>>> > > > 1) op "rx": passed (Pattern match "" at UNIT_TEST.)
>>>> > > > 2) op "rx": passed
>>>> > > > 3) op "rx": passed (Pattern match "" at UNIT_TEST.)
>>>> > > > 4) op "rx": passed (Pattern match "abc" at UNIT_TEST.)
>>>> > > > 5) op "rx": passed (Pattern match "def" at UNIT_TEST.)
>>>> > > > 6) op "rx": passed (Pattern match "ghi" at UNIT_TEST.)
>>>> > > > 7) op "rx": passed
>>>> > > >
>>>> > > > ERROR: Failed to create rule for op "rx": Error creating rule:
>>>> Error
>>>> > >
>>>> > > compiling
>>>> > >
>>>> > > > pattern (offset 2): unrecognized character after (? or (?-
>>>> > > > Test exited with signal 11.
>>>> > > > Executed: ./msc_test "-t" "op" "-n" "rx" "-p"
>>>> > > > "(?^i:^([^=])\s*=\s*((?:abc)+(?:def|ghi){2})$)" "-D" "0" "-r" "1"
>>>> > > >
>>>> > > > 8) op "rx": failed
>>>> > > >
>>>> > > > Passed: 7; Failed: 1
>>>> > > >
>>>> > > > I've tried version 2.7.2 which passed test on old debian and
>>>> latest
>>>> > >
>>>> > > 2.7.3.
>>>> > >
>>>> > > > Both failed on the same place.
>>>> > > >
>>>> > > > Compilation parameters were:
>>>> > > > ./configure --prefix=/apache/modules/ --with-apxs=/apache/bin/apxs
>>>> > >
>>>> > > --with-
>>>> > >
>>>> > > > apr=/apache/bin/apr-1-config --with-apu=/apache/bin/apu-1-config
>>>> > >
>>>> > > --enable-pcre-
>>>> > >
>>>> > > > match-limit=50000 --enable-pcre-match-limit-recursion=10000
>>>> > >
>>>> > > --disable-mlogc
>>>> > >
>>>> > > Since it exits with signal 11 it might be related to this bug:
>>>> > >
>>>> > > https://github.com/SpiderLabs/ModSecurity/issues/23
>>>> > >
>>>> > > It was fixed in this commit
>>>> > >
>>>> > >
>>>> > >
>>>> https://github.com/SpiderLabs/ModSecurity/commit/3f6c14de5993b8b2c66e6317
>>>> > > af1680f2a007aead
>>>> > >
>>>> > > and should be part of 2.7.2 and later. Maybe the fix didn't catch
>>>> all
>>>> > > similar situations?
>>>> > >
>>>> > > Regards,
>>>> > >
>>>> > > Rainer
>>>> > >
>>>> > >
>>>> > >
>>>> -------------------------------------------------------------------------
>>>> > > ----- Try New Relic Now & We'll Send You this Cool Shirt
>>>> > > New Relic is the only SaaS-based application performance monitoring
>>>> > > service that delivers powerful full stack analytics. Optimize and
>>>> > > monitor your browser, app, & servers with just a few lines of code.
>>>> Try
>>>> > > New Relic and get this awesome Nerd Life shirt!
>>>> > > http://p.sf.net/sfu/newrelic_d2d_may
>>>> > > _______________________________________________
>>>> > > mod-security-developers mailing list
>>>> > > mod...@li...
>>>> > >
>>>> https://lists.sourceforge.net/lists/listinfo/mod-security-developers
>>>> > > ModSecurity Services from Trustwave's SpiderLabs:
>>>> > > https://www.trustwave.com/spiderLabs.php
>>>> --
>>>> Pavel Mateja
>>>>
>>>>
>>>> ------------------------------------------------------------------------------
>>>> Try New Relic Now & We'll Send You this Cool Shirt
>>>> New Relic is the only SaaS-based application performance monitoring
>>>> service
>>>> that delivers powerful full stack analytics. Optimize and monitor your
>>>> browser, app, & servers with just a few lines of code. Try New Relic
>>>> and get this awesome Nerd Life shirt!
>>>> http://p.sf.net/sfu/newrelic_d2d_may
>>>> _______________________________________________
>>>> mod-security-developers mailing list
>>>> mod...@li...
>>>> https://lists.sourceforge.net/lists/listinfo/mod-security-developers
>>>> ModSecurity Services from Trustwave's SpiderLabs:
>>>> https://www.trustwave.com/spiderLabs.php
>>>>
>>>
>>>
>>
>
|
