Reduce code duplication by adding modsecurity_request_body_enable_partial_processing_for_no_files_length

Author: hnakamur

apache2/msc_multipart.c

@@ -251,6 +251,23 @@ static int multipart_parse_content_disposition(modsec_rec *msr, char *c_d_value)
     return 1;
 }
 
+/* Enable partial processing if no_files_len exceeds limit and action is ProcessPartial */
+static void modsecurity_request_body_enable_partial_processing_for_no_files_length(modsec_rec *msr,
+    int *length)
+{
+    /* Enable partial processing if no_files_len exceeds limit and action is ProcessPartial */
+    if (   (msr->msc_reqbody_no_files_length > (unsigned long)msr->txcfg->reqbody_no_files_limit)
+        && (msr->txcfg->if_limit_action == REQUEST_BODY_LIMIT_ACTION_PARTIAL))
+    {
+        *length -= msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit;
+        if (msr->txcfg->debuglog_level >= 9) {
+            msr_log(msr, 9, "MULTIPART: length shortened by %" APR_SIZE_T_FMT " bytes because of no_files_len limit.",
+                    msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit);
+        }
+        modsecurity_request_body_enable_partial_processing(msr);
+    }
+}
+
 /**
  *
  */
@@ -272,18 +289,7 @@ static int multipart_process_part_header(modsec_rec *msr, char **error_msg) {
 
     /* The buffer is data so increase the data length counter. */
     msr->msc_reqbody_no_files_length += (MULTIPART_BUF_SIZE - msr->mpd->bufleft);
-
-    /* Enable partial processing if the no_files_length exceeds the limit and the limit action is ProcessPartial. */
-    if ((msr->msc_reqbody_no_files_length > (unsigned long)msr->txcfg->reqbody_no_files_limit)
-        && (msr->txcfg->if_limit_action == REQUEST_BODY_LIMIT_ACTION_PARTIAL))
-    {
-        msr->mpd->bufleft -= msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit;
-        if (msr->txcfg->debuglog_level >= 9) {
-            msr_log(msr, 9, "MULTIPART: length shortend by %" APR_SIZE_T_FMT " bytes because of no_files_len limit.",
-                    msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit);
-        }
-        modsecurity_request_body_enable_partial_processing(msr);
-    }
+    modsecurity_request_body_enable_partial_processing_for_no_files_length(msr, &msr->mpd->bufleft);
 
     if (len > 1) {
         if (msr->mpd->buf[len - 2] == '\r') {
@@ -598,18 +604,7 @@ static int multipart_process_part_data(modsec_rec *msr, char **error_msg) {
 
         /* The buffer contains data so increase the data length counter. */
         msr->msc_reqbody_no_files_length += (MULTIPART_BUF_SIZE - msr->mpd->bufleft) + msr->mpd->reserve[0];
-
-        /* Enable partial processing if the no_files_length exceeds the limit and the limit action is ProcessPartial. */
-        if ((msr->msc_reqbody_no_files_length > (unsigned long)msr->txcfg->reqbody_no_files_limit)
-            && (msr->txcfg->if_limit_action == REQUEST_BODY_LIMIT_ACTION_PARTIAL))
-        {
-            msr->mpd->bufleft -= msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit;
-            if (msr->txcfg->debuglog_level >= 9) {
-                msr_log(msr, 9, "MULTIPART: length shortend by %" APR_SIZE_T_FMT " bytes because of no_files_len limit.",
-                        msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit);
-            }
-            modsecurity_request_body_enable_partial_processing(msr);
-        }
+        modsecurity_request_body_enable_partial_processing_for_no_files_length(msr, &msr->mpd->bufleft);
 
         /* add this part to the list of parts */
 

apache2/msc_reqbody.c

@@ -312,6 +312,24 @@ static apr_status_t modsecurity_request_body_store_memory(modsec_rec *msr,
     return 1;
 }
 
+/* Enable partial processing if no_files_len exceeds limit and action is ProcessPartial */
+static void modsecurity_request_body_enable_partial_processing_for_no_files_length(modsec_rec *msr,
+    apr_size_t *length, const char *reqbody_processor)
+{
+    /* Enable partial processing if no_files_len exceeds limit and action is ProcessPartial */
+    if (   (msr->msc_reqbody_no_files_length > (unsigned long)msr->txcfg->reqbody_no_files_limit)
+        && (msr->txcfg->if_limit_action == REQUEST_BODY_LIMIT_ACTION_PARTIAL))
+    {
+        *length -= msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit;
+        if (msr->txcfg->debuglog_level >= 9) {
+            msr_log(msr, 9, "%s: length shortened by %" APR_SIZE_T_FMT " bytes because of no_files_len limit.",
+                    reqbody_processor,
+                    msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit);
+        }
+        modsecurity_request_body_enable_partial_processing(msr);
+    }
+}
+
 /**
  * Stores one chunk of request body data. Returns -1 on error.
  */
@@ -361,18 +379,7 @@ apr_status_t modsecurity_request_body_store(modsec_rec *msr,
         else if (strcmp(msr->msc_reqbody_processor, "XML") == 0) {
             /* Increase per-request data length counter. */
             msr->msc_reqbody_no_files_length += length;
-
-            /* Enable partial processing if no_files_len exceeds limit and action is ProcessPartial */
-            if (   (msr->msc_reqbody_no_files_length > (unsigned long)msr->txcfg->reqbody_no_files_limit)
-                && (msr->txcfg->if_limit_action == REQUEST_BODY_LIMIT_ACTION_PARTIAL))
-            {
-                length -= msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit;
-                if (msr->txcfg->debuglog_level >= 9) {
-                    msr_log(msr, 9, "XML: length shortened by %" APR_SIZE_T_FMT " bytes because of no_files_len limit.",
-                            msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit);
-                }
-                modsecurity_request_body_enable_partial_processing(msr);
-            }
+            modsecurity_request_body_enable_partial_processing_for_no_files_length(msr, &length, "XML");
 
             /* Process data as XML. */
             if (xml_process_chunk(msr, data, length, &my_error_msg) < 0) {
@@ -385,18 +392,7 @@ apr_status_t modsecurity_request_body_store(modsec_rec *msr,
         else if (strcmp(msr->msc_reqbody_processor, "JSON") == 0) {
             /* Increase per-request data length counter. */
             msr->msc_reqbody_no_files_length += length;
-
-            /* Enable partial processing if no_files_len exceeds limit and action is ProcessPartial */
-            if (   (msr->msc_reqbody_no_files_length > (unsigned long)msr->txcfg->reqbody_no_files_limit)
-                && (msr->txcfg->if_limit_action == REQUEST_BODY_LIMIT_ACTION_PARTIAL))
-            {
-                length -= msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit;
-                if (msr->txcfg->debuglog_level >= 9) {
-                    msr_log(msr, 9, "JSON: length shortened by %" APR_SIZE_T_FMT " bytes because of no_files_len limit.",
-                            msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit);
-                }
-                modsecurity_request_body_enable_partial_processing(msr);
-            }
+            modsecurity_request_body_enable_partial_processing_for_no_files_length(msr, &length, "JSON");
 
             /* Process data as JSON. */
 #ifdef WITH_YAJL
@@ -416,18 +412,7 @@ apr_status_t modsecurity_request_body_store(modsec_rec *msr,
         else if (strcmp(msr->msc_reqbody_processor, "URLENCODED") == 0) {
             /* Increase per-request data length counter. */
             msr->msc_reqbody_no_files_length += length;
-
-            /* Enable partial processing if no_files_len exceeds limit and action is ProcessPartial */
-            if (   (msr->msc_reqbody_no_files_length > (unsigned long)msr->txcfg->reqbody_no_files_limit)
-                && (msr->txcfg->if_limit_action == REQUEST_BODY_LIMIT_ACTION_PARTIAL))
-            {
-                length -= msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit;
-                if (msr->txcfg->debuglog_level >= 9) {
-                    msr_log(msr, 9, "URLENCODED: length shortened by %" APR_SIZE_T_FMT " bytes because of no_files_len limit.",
-                            msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit);
-                }
-                modsecurity_request_body_enable_partial_processing(msr);
-            }
+            modsecurity_request_body_enable_partial_processing_for_no_files_length(msr, &length, "URLENCODED");
 
             /* Do nothing else, URLENCODED processor does not support streaming. */
         }
@@ -439,18 +424,7 @@ apr_status_t modsecurity_request_body_store(modsec_rec *msr,
     } else if (msr->txcfg->reqbody_buffering != REQUEST_BODY_FORCEBUF_OFF) {
         /* Increase per-request data length counter if forcing buffering. */
         msr->msc_reqbody_no_files_length += length;
-
-        /* Enable partial processing if no_files_len exceeds limit and action is ProcessPartial */
-        if (   (msr->msc_reqbody_no_files_length > (unsigned long)msr->txcfg->reqbody_no_files_limit)
-            && (msr->txcfg->if_limit_action == REQUEST_BODY_LIMIT_ACTION_PARTIAL))
-        {
-            length -= msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit;
-            if (msr->txcfg->debuglog_level >= 9) {
-                msr_log(msr, 9, "forceBuf: length shortened by %" APR_SIZE_T_FMT " bytes because of no_files_len limit.",
-                        msr->msc_reqbody_no_files_length - (unsigned long)msr->txcfg->reqbody_no_files_limit);
-            }
-            modsecurity_request_body_enable_partial_processing(msr);
-        }
+        modsecurity_request_body_enable_partial_processing_for_no_files_length(msr, &length, "forceBuf");
     }
 
     /* Check that we are not over the request body no files limit. */