From 58afede3f3b54d51abb03c3fb665c310217ea8fa Mon Sep 17 00:00:00 2001 From: brectanus Date: Wed, 21 Mar 2007 14:38:57 +0000 Subject: [PATCH] Do not log 'allow' action as intercepted in the debug log. --- CHANGES | 4 +++- apache2/mod_security2.c | 3 +++ 2 files changed, 6 insertions(+), 1 deletion(-) diff --git a/CHANGES b/CHANGES index b8841df0..b809ddfd 100644 --- a/CHANGES +++ b/CHANGES @@ -1,7 +1,9 @@ -20 Mar 2007 - trunk +21 Mar 2007 - trunk ------------------- +* Do not log 'allow' action as intercepted in the debug log. + * Optimize regex execution to not capture unless 'capture' action used. * Performance improvements in memory management. diff --git a/apache2/mod_security2.c b/apache2/mod_security2.c index 69da5d35..c77d18c5 100644 --- a/apache2/mod_security2.c +++ b/apache2/mod_security2.c @@ -61,11 +61,13 @@ int perform_interception(modsec_rec *msr) { if (msr->was_intercepted == 0) { msr_log(msr, 1, "Internal Error: Asked to intercept request but was_intercepted is zero"); + msr->was_intercepted = 0; return DECLINED; } if (msr->phase > 4) { msr_log(msr, 1, "Internal Error: Asked to intercept request in phase %i.", msr->phase); + msr->was_intercepted = 0; return DECLINED; } @@ -184,6 +186,7 @@ int perform_interception(modsec_rec *msr) { case ACTION_ALLOW : status = DECLINED; message = apr_psprintf(msr->mp, "Access allowed%s.", phase_text); + msr->was_intercepted = 0; break; default :