os-OPNWAF Offer option to adjust SecPcreMatchLimit and SecPcreMatchLimitRecursion parameters in UI

[Dmeier-F]

Important notices
Before you add a new report, we ask you kindly to acknowledge the following:

• [ x] I have read the contributing guide lines at https://github.com/opnsense/plugins/blob/master/CONTRIBUTING.md
• [x ] I have searched the existing issues, open and closed, and I'm convinced that mine is new.
• [x ] The title contains the plugin to which this issue belongs

Describe the bug

Hi,

The values "SecPrcreMatchLimit" and "SecPcreMatchLimitRecursion" are set to "1000", which is way too low for most current applications. Therefore there are lots of error messages (Execution error - PCRE limits exceeded) in the Web Error log and lots of IDs of rules need to be manually whitelisted. It would be great if those two options could be made available in the UI of the Plugin.

Thanks

Environment
OPNsense 25.10.2

[Monviech]

Which web app has issues?

If I browse here I do not find a lot of open issues regarding this.
https://github.com/coreruleset/coreruleset/issues?q=is%3Aissue%20PCRE%20limit

Right now the crs version we offer is 4.18.0.

We will update it soon again to the latest release, maybe that fixes some of the issues without offering Regex specific tunables, since it's most likely bugs in rules or specific needs for some web apps to exclude rules (e.g. for Nextcloud).

If you have issues with a specific rule it might be an issue you could post in the coreruleset repository.