Best practices advices by @defanator on top of #104

Felipe Zimmerle · Felipe Zimmerle · commit d1047eae9348 · 2018-05-03T10:49:36.000-03:00
diff --git a/src/ngx_http_modsecurity_body_filter.c b/src/ngx_http_modsecurity_body_filter.c
@@ -152,7 +152,8 @@ ngx_http_modsecurity_body_filter(ngx_http_request_t *r, ngx_chain_t *in)
         {
             u_char *data = chain->buf->pos;
 
-            msc_append_response_body(ctx->modsec_transaction, data, chain->buf->last - data);
+            msc_append_response_body(ctx->modsec_transaction, data,
+                                     ngx_buf_size(chain->buf));
             ret = ngx_http_modsecurity_process_intervention(ctx->modsec_transaction, r);
             if (ret > 0) {
                 return ngx_http_filter_finalize_request(r,
diff --git a/src/ngx_http_modsecurity_pre_access.c b/src/ngx_http_modsecurity_pre_access.c
@@ -131,8 +131,6 @@ ngx_http_modsecurity_pre_access_handler(ngx_http_request_t *r)
 
         dd("request body is ready to be processed");
 
-        ngx_chain_t *chain = r->request_body->bufs;
-
         /**
          * TODO: Speed up the analysis by sending chunk while they arrive.
          *
@@ -161,12 +159,13 @@ ngx_http_modsecurity_pre_access_handler(ngx_http_request_t *r)
             dd("inspection request body in memory.");
         }
 
+        ngx_chain_t *chain = r->request_body->bufs;
         while (chain && !already_inspected)
         {
             u_char *data = chain->buf->pos;
 
             msc_append_request_body(ctx->modsec_transaction, data,
-                chain->buf->last - data);
+                                    ngx_buf_size(chain->buf));
 
             if (chain->buf->last_buf) {
                 break;

Original file line number	Diff line number	Diff line change
`@@ -152,7 +152,8 @@ ngx_http_modsecurity_body_filter(ngx_http_request_t r, ngx_chain_t in)`
`152`	`152`	`{`
`153`	`153`	`u_char *data = chain->buf->pos;`
`154`	`154`
`155`		`- msc_append_response_body(ctx->modsec_transaction, data, chain->buf->last - data);`
	`155`	`+ msc_append_response_body(ctx->modsec_transaction, data,`
	`156`	`+ ngx_buf_size(chain->buf));`
`156`	`157`	`ret = ngx_http_modsecurity_process_intervention(ctx->modsec_transaction, r);`
`157`	`158`	`if (ret > 0) {`
`158`	`159`	`return ngx_http_filter_finalize_request(r,`
Original file line number	Diff line number	Diff line change
`@@ -131,8 +131,6 @@ ngx_http_modsecurity_pre_access_handler(ngx_http_request_t *r)`
`131`	`131`
`132`	`132`	`dd("request body is ready to be processed");`
`133`	`133`
`134`		`- ngx_chain_t *chain = r->request_body->bufs;`
`135`		`-`
`136`	`134`	`/**`
`137`	`135`	`* TODO: Speed up the analysis by sending chunk while they arrive.`
`138`	`136`	`*`
`@@ -161,12 +159,13 @@ ngx_http_modsecurity_pre_access_handler(ngx_http_request_t *r)`
`161`	`159`	`dd("inspection request body in memory.");`
`162`	`160`	`}`
`163`	`161`
	`162`	`+ ngx_chain_t *chain = r->request_body->bufs;`
`164`	`163`	`while (chain && !already_inspected)`
`165`	`164`	`{`
`166`	`165`	`u_char *data = chain->buf->pos;`
`167`	`166`
`168`	`167`	`msc_append_request_body(ctx->modsec_transaction, data,`
`169`		`- chain->buf->last - data);`
	`168`	`+ ngx_buf_size(chain->buf));`
`170`	`169`
`171`	`170`	`if (chain->buf->last_buf) {`
`172`	`171`	`break;`