[CMake] HTTP Content-Length missing
Martin Baute
solar at rootdirectory.de
Mon Mar 4 13:03:36 EST 2013
Hi there,
I'm trying to get the CMake / CTest / CDash trinity going. Unfortunately
my webserver doesn't like what CTest is asking for:
$ make Experimental
...
Submit files (using http)
Using HTTP submit method
Drop site:http://example.com/submit.php?project=MyProject
Submit failed, waiting 5 seconds...
...
Error when uploading file:
/home/solar/project/Testing/20130304-1755/Build.xml
Error message was: The requested URL returned error: 403
Problems when submitting via HTTP
Errors while running CTest
make[3]: *** [CMakeFiles/Experimental] Error 64
make[2]: *** [CMakeFiles/Experimental.dir/all] Error 2
make[1]: *** [CMakeFiles/Experimental.dir/rule] Error 2
make: *** [Experimental] Error 2
Checking the error_log of the webserver, I found this corresponding
entry:
ModSecurity: Access denied with code 403 (phase 2).
Pattern match "(.*)" at
TX:960904-PROTOCOL_VIOLATION/MISSING_HEADER-REQUEST_HEADERS:Content-Length.
[file
"/etc/apache2/mod_security/activated_rules/modsecurity_crs_49_inbound_blocking.conf"]
[line "26"] [id "981176"] [msg "Inbound Anomaly Score Exceeded (Total
Score: 5, SQLi=, XSS=): Last Matched Message: Method is not allowed by
policy"] [data "Last Matched Data: 960"]
So, it seems that the submit request by CTest doesn't carry the
Content-Length header. Now, one solution would be to bugger the
web hoster into relaxing his security protocols, but the other -
IMHO better - one would be to *provide* the Content-Length.
Or am I doing something wrong here?
I'm also asking myself if I'm missing something crucial in the
setup, but is it correct that anyone is free to submit test data
to my CDash? Because I don't see any kind of authentication going
on...?!?
Regards,
--
Martin Baute
solar at rootdirectory.de
More information about the CMake
mailing list