Ervin Hegedus

Hi @as-rail, finally I had some time to take a look at this issue. There is a tool I made to test different regexes to emulate ModSecurity engine's behavior: [msc_retest](https://github.com/digitalwave/msc_retest)....

Hi @as-rail, finally I could finish implementing of [msc_retest](https://github.com/digitalwave/msc_retest). It's not released yet but I spent a lot of time to analyze working of `@rx` operator both in ModSecurity v2...

Hi @chenuduss, thanks again for the report. Please explain how did you get this result. Btw I think this is not a libmodsecurity3 issue, but a libinjection: ``` READ of...

No worries, and feel free to report any suspicious thing. Have you tested your setup with the modified libinjection?

I tried to review the script again, and fixed two small things in bbe5239: * switched to `select()` from `sleep()` * clear the buffer which hold the read log Also...

Okay, I think the reason is visible now but unknown: see the [output](https://github.com/owasp-modsecurity/ModSecurity/actions/runs/19179956252/job/54834056605?pr=3456) of the last test. The Apache stop time is terrible slow. And I don't know why... @theseion,...

Thanks for ideas, > 1. Test request should be sent with `Connection: close` All requests send `Connection: close` header (I checked with `tcpdump`), eg: ``` 10:55:19.058098 IP localhost.omniorb > localhost.33008:...

> > I'm afraid I have to reorganize the complete start/stop mechanism. > > How are you killing the process(es)? here is the current [routine](https://github.com/owasp-modsecurity/ModSecurity/blob/575314fe59ed8a153611e66661af450d3bfd0b8a/tests/run-regression-tests.pl.in#L628-L674) which stops `httpd`. [This](https://github.com/owasp-modsecurity/ModSecurity/blob/575314fe59ed8a153611e66661af450d3bfd0b8a/tests/run-regression-tests.pl.in#L630-L639) section...

Hi @kabe-gh, thanks for reporting this issue. Unfortunately I was able to reproduce your issue. Beside of that, I ran into a few other issues too. This quick patch fixes...

@kabe-gh just FYI: I've added a PR to [haproxy/spoa-modsecurity](https://github.com/haproxy/spoa-modsecurity/pulls). And I hope I can fix this issue too soon - but the spoa module maintainers need to merge that PR,...