[CMake] HTTP Content-Length missing
Jean-Christophe Fillion-Robin
jchris.fillionr at kitware.com
Mon Mar 4 17:11:47 EST 2013
FYI - The discussion has been moved to the CDash mailing list.
See http://public.kitware.com/pipermail/cdash/2013-March/001274.html
Jc
On Mon, Mar 4, 2013 at 1:03 PM, Martin Baute <solar at rootdirectory.de> wrote:
> Hi there,
>
> I'm trying to get the CMake / CTest / CDash trinity going. Unfortunately
> my webserver doesn't like what CTest is asking for:
>
> $ make Experimental
> ...
> Submit files (using http)
> Using HTTP submit method
> Drop site:http://example.com/**submit.php?project=MyProject<http://example.com/submit.php?project=MyProject>
> Submit failed, waiting 5 seconds...
> ...
> Error when uploading file: /home/solar/project/Testing/**
> 20130304-1755/Build.xml
> Error message was: The requested URL returned error: 403
> Problems when submitting via HTTP
> Errors while running CTest
> make[3]: *** [CMakeFiles/Experimental] Error 64
> make[2]: *** [CMakeFiles/Experimental.dir/**all] Error 2
> make[1]: *** [CMakeFiles/Experimental.dir/**rule] Error 2
> make: *** [Experimental] Error 2
>
>
> Checking the error_log of the webserver, I found this corresponding
> entry:
>
> ModSecurity: Access denied with code 403 (phase 2).
> Pattern match "(.*)" at TX:960904-PROTOCOL_VIOLATION/**
> MISSING_HEADER-REQUEST_**HEADERS:Content-Length.
> [file "/etc/apache2/mod_security/**activated_rules/modsecurity_**crs_49_inbound_blocking.conf"]
> [line "26"] [id "981176"] [msg "Inbound Anomaly Score Exceeded (Total
> Score: 5, SQLi=, XSS=): Last Matched Message: Method is not allowed by
> policy"] [data "Last Matched Data: 960"]
>
>
> So, it seems that the submit request by CTest doesn't carry the
> Content-Length header. Now, one solution would be to bugger the
> web hoster into relaxing his security protocols, but the other -
> IMHO better - one would be to *provide* the Content-Length.
>
> Or am I doing something wrong here?
>
> I'm also asking myself if I'm missing something crucial in the
> setup, but is it correct that anyone is free to submit test data
> to my CDash? Because I don't see any kind of authentication going
> on...?!?
>
> Regards,
> --
> Martin Baute
> solar at rootdirectory.de
> --
>
> Powered by www.kitware.com
>
> Visit other Kitware open-source projects at http://www.kitware.com/**
> opensource/opensource.html<http://www.kitware.com/opensource/opensource.html>
>
> Please keep messages on-topic and check the CMake FAQ at:
> http://www.cmake.org/Wiki/**CMake_FAQ<http://www.cmake.org/Wiki/CMake_FAQ>
>
> Follow this link to subscribe/unsubscribe:
> http://www.cmake.org/mailman/**listinfo/cmake<http://www.cmake.org/mailman/listinfo/cmake>
>
--
+1 919 869 8849
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.cmake.org/pipermail/cmake/attachments/20130304/3c29497f/attachment-0001.htm>
More information about the CMake
mailing list