Treat _NAMES variables as collections (owasp-modsecurity#5)

* Treat _NAMES variables as collections

* Fix an issue with the offset of ARGS_NAMES.

* Fix regression tests for the new behaviour.

* Add generated seclang files.

Author: mirkodziadzka-avi

headers/modsecurity/transaction.h

@@ -95,8 +95,8 @@ class TransactionAnchoredVariables {
  public:
     explicit TransactionAnchoredVariables(Transaction *t)
         : m_variableArgsNames(t, "ARGS_NAMES"),
-        m_variableArgGetNames(t, "ARGS_GET_NAMES"),
-        m_variableArgPostNames(t, "ARGS_POST_NAMES"),
+        m_variableArgsGetNames(t, "ARGS_GET_NAMES"),
+        m_variableArgsPostNames(t, "ARGS_POST_NAMES"),
         m_variableRequestHeadersNames(t, "REQUEST_HEADERS_NAMES"),
         m_variableResponseContentType(t, "RESPONSE_CONTENT_TYPE"),
         m_variableResponseHeadersNames(t, "RESPONSE_HEADERS_NAMES"),
@@ -172,12 +172,12 @@ class TransactionAnchoredVariables {
         m_variableOffset(0)
         { }
 
-    AnchoredVariable m_variableArgsNames;
-    AnchoredVariable m_variableArgGetNames;
-    AnchoredVariable m_variableArgPostNames;
-    AnchoredVariable m_variableRequestHeadersNames;
+    AnchoredSetVariable m_variableArgsNames;
+    AnchoredSetVariable m_variableArgsGetNames;
+    AnchoredSetVariable m_variableArgsPostNames;
+    AnchoredSetVariable m_variableRequestHeadersNames;
     AnchoredVariable m_variableResponseContentType;
-    AnchoredVariable m_variableResponseHeadersNames;
+    AnchoredSetVariable m_variableResponseHeadersNames;
     AnchoredVariable m_variableARGScombinedSize;
     AnchoredVariable m_variableAuthType;
     AnchoredVariable m_variableFilesCombinedSize;

src/macro_expansion.cc

@@ -73,24 +73,9 @@ std::string MacroExpansion::expand(const std::string& input,
             collection = variable.find(":");
         }
         if (collection == std::string::npos) {
-            if (compareStrNoCase(variable, "ARGS_NAMES")) {
-                variableValue = transaction->m_variableArgsNames.resolveFirst();
-            }
-            else if (compareStrNoCase(variable, "ARGS_GET_NAMES")) {
-                variableValue = transaction->m_variableArgGetNames.resolveFirst();
-            }
-            else if (compareStrNoCase(variable, "ARGS_POST_NAMES")) {
-                variableValue = transaction->m_variableArgPostNames.resolveFirst();
-            }
-            else if (compareStrNoCase(variable, "REQUEST_HEADERS_NAMES")) {
-                variableValue = transaction->m_variableRequestHeadersNames.resolveFirst();
-            }
-            else if (compareStrNoCase(variable, "RESPONSE_CONTENT_TYPE")) {
+            if (compareStrNoCase(variable, "RESPONSE_CONTENT_TYPE")) {
                 variableValue = transaction->m_variableResponseContentType.resolveFirst();
             }
-            else if (compareStrNoCase(variable, "RESPONSE_HEADERS_NAMES")) {
-                variableValue = transaction->m_variableResponseHeadersNames.resolveFirst();
-            }
             else if (compareStrNoCase(variable, "ARGS_COMBINED_SIZE")) {
                 variableValue = transaction->m_variableARGScombinedSize.resolveFirst();
             }
@@ -245,6 +230,15 @@ std::string MacroExpansion::expand(const std::string& input,
             if (compareStrNoCase(col, "ARGS")) {
                 variableValue = transaction->m_variableArgs.resolveFirst(var);
             }
+            else if (compareStrNoCase(variable, "ARGS_NAMES")) {
+                variableValue = transaction->m_variableArgsNames.resolveFirst(var);
+            }
+            else if (compareStrNoCase(variable, "ARGS_GET_NAMES")) {
+                variableValue = transaction->m_variableArgsGetNames.resolveFirst(var);
+            }
+            else if (compareStrNoCase(variable, "ARGS_POST_NAMES")) {
+                variableValue = transaction->m_variableArgsPostNames.resolveFirst(var);
+            }
             else if (compareStrNoCase(col, "RULE")) {
                 variableValue = transaction->m_variableRule.resolveFirst(var);
             }
@@ -284,9 +278,15 @@ std::string MacroExpansion::expand(const std::string& input,
             else if (compareStrNoCase(col, "REQUEST_HEADERS")) {
                 variableValue = transaction->m_variableRequestHeaders.resolveFirst(var);
             }
+            else if (compareStrNoCase(variable, "REQUEST_HEADERS_NAMES")) {
+                variableValue = transaction->m_variableRequestHeadersNames.resolveFirst(var);
+            }
             else if (compareStrNoCase(col, "RESPONSE_HEADERS")) {
                 variableValue = transaction->m_variableResponseHeaders.resolveFirst(var);
             }
+            else if (compareStrNoCase(variable, "RESPONSE_HEADERS_NAMES")) {
+                variableValue = transaction->m_variableResponseHeadersNames.resolveFirst(var);
+            }
             else if (compareStrNoCase(col, "GEO")) {
                 variableValue = transaction->m_variableGeo.resolveFirst(var);
             }