Nginx: minor improve

chaizhenhua · chaizhenhua · commit fd2c30fa2311 · 2013-04-17T11:17:17.000+08:00
diff --git a/nginx/modsecurity/ngx_http_modsecurity.c b/nginx/modsecurity/ngx_http_modsecurity.c
@@ -1108,7 +1108,7 @@ ngx_http_modsecurity_header_filter(ngx_http_request_t *r) {
         return ngx_http_next_header_filter(r);
     }
 
-    if (r != r->main || !cf->enable || ctx->complete) {
+    if (r != r->main || !cf->enable || ctx == NULL ||ctx->complete) {
         return ngx_http_next_header_filter(r);
     }
 
@@ -1140,6 +1140,10 @@ ngx_http_modsecurity_header_filter(ngx_http_request_t *r) {
     }
 
     /* SecResponseBodyAccess on, process rules in body filter */
+
+    /* pretend we are ngx_http_header_filter */
+    r->header_sent = 1;
+
     r->filter_need_in_memory = 1;
     return NGX_OK;
 }
@@ -1156,7 +1160,7 @@ ngx_http_modsecurity_body_filter(ngx_http_request_t *r, ngx_chain_t *in)
     cf = ngx_http_get_module_loc_conf(r, ngx_http_modsecurity);
     ctx = ngx_http_get_module_ctx(r, ngx_http_modsecurity);
 
-    if (r != r->main || !cf->enable || ctx->complete) {
+    if (r != r->main || !cf->enable || ctx == NULL || ctx->complete) {
         return ngx_http_next_body_filter(r, in);
     }
 
@@ -1212,6 +1216,7 @@ ngx_http_modsecurity_body_filter(ngx_http_request_t *r, ngx_chain_t *in)
         r->headers_out.content_length = NULL; /* header filter will set this */
     }
 
+    r->header_sent = 0;
     rc = ngx_http_next_header_filter(r);
 
     if (rc == NGX_ERROR || rc > NGX_OK) {
diff --git a/nginx/modsecurity/ngx_pool_context.c b/nginx/modsecurity/ngx_pool_context.c
@@ -196,7 +196,7 @@ ngx_pool_context_init_conf(ngx_cycle_t *cycle, void *conf)
 {
     ngx_pool_context_conf_t      *pcf = conf;
 
-    ngx_conf_init_uint_value(pcf->size, NGX_POOL_CTX_SIZE);
+    ngx_conf_init_uint_value(pcf->size, cycle->connection_n);
 
     ngx_pool_context_hash_size = pcf->size;
 

Original file line number	Diff line number	Diff line change
`@@ -1108,7 +1108,7 @@ ngx_http_modsecurity_header_filter(ngx_http_request_t *r) {`
`1108`	`1108`	`return ngx_http_next_header_filter(r);`
`1109`	`1109`	`}`
`1110`	`1110`
`1111`		`- if (r != r->main \|\| !cf->enable \|\| ctx->complete) {`
	`1111`	`+ if (r != r->main \|\| !cf->enable \|\| ctx == NULL \|\|ctx->complete) {`
`1112`	`1112`	`return ngx_http_next_header_filter(r);`
`1113`	`1113`	`}`
`1114`	`1114`
`@@ -1140,6 +1140,10 @@ ngx_http_modsecurity_header_filter(ngx_http_request_t *r) {`
`1140`	`1140`	`}`
`1141`	`1141`
`1142`	`1142`	`/* SecResponseBodyAccess on, process rules in body filter */`
	`1143`	`+`
	`1144`	`+ /* pretend we are ngx_http_header_filter */`
	`1145`	`+ r->header_sent = 1;`
	`1146`	`+`
`1143`	`1147`	`r->filter_need_in_memory = 1;`
`1144`	`1148`	`return NGX_OK;`
`1145`	`1149`	`}`
`@@ -1156,7 +1160,7 @@ ngx_http_modsecurity_body_filter(ngx_http_request_t r, ngx_chain_t in)`
`1156`	`1160`	`cf = ngx_http_get_module_loc_conf(r, ngx_http_modsecurity);`
`1157`	`1161`	`ctx = ngx_http_get_module_ctx(r, ngx_http_modsecurity);`
`1158`	`1162`
`1159`		`- if (r != r->main \|\| !cf->enable \|\| ctx->complete) {`
	`1163`	`+ if (r != r->main \|\| !cf->enable \|\| ctx == NULL \|\| ctx->complete) {`
`1160`	`1164`	`return ngx_http_next_body_filter(r, in);`
`1161`	`1165`	`}`
`1162`	`1166`
`@@ -1212,6 +1216,7 @@ ngx_http_modsecurity_body_filter(ngx_http_request_t r, ngx_chain_t in)`
`1212`	`1216`	`r->headers_out.content_length = NULL; /* header filter will set this */`
`1213`	`1217`	`}`
`1214`	`1218`
	`1219`	`+ r->header_sent = 0;`
`1215`	`1220`	`rc = ngx_http_next_header_filter(r);`
`1216`	`1221`
`1217`	`1222`	`if (rc == NGX_ERROR \|\| rc > NGX_OK) {`
Original file line number	Diff line number	Diff line change
`@@ -196,7 +196,7 @@ ngx_pool_context_init_conf(ngx_cycle_t cycle, void conf)`
`196`	`196`	`{`
`197`	`197`	`ngx_pool_context_conf_t *pcf = conf;`
`198`	`198`
`199`		`- ngx_conf_init_uint_value(pcf->size, NGX_POOL_CTX_SIZE);`
	`199`	`+ ngx_conf_init_uint_value(pcf->size, cycle->connection_n);`
`200`	`200`
`201`	`201`	`ngx_pool_context_hash_size = pcf->size;`
`202`	`202`