ACL: request max body size

This patch add a new ACL type: max_body_size. This will be matched when
the client's HTTP request body is greater than X bytes.

Example:

acl users max_body_size 100000

Comments and suggestions are welcome...

diff -Nur squid-2.5.STABLE4-20040208/src/acl.c squid-2.5.STABLE4-20040208-diegows/src/acl.c
--- squid-2.5.STABLE4-20040208/src/acl.c Thu Jan 15 04:43:57 2004
+++ squid-2.5.STABLE4-20040208-diegows/src/acl.c Sun Feb 8 15:49:57 2004
@@ -178,6 +178,8 @@
         return ACL_MAX_USER_IP;
     if (!strcmp(s, "external"))
         return ACL_EXTERNAL;
+ if (!strcmp(s, "max_body_size"))
+ return ACL_MAX_BODY_SIZE;
     if (!strcmp(s, "urllogin"))
         return ACL_URLLOGIN;
     return ACL_NONE;
@@ -254,6 +256,8 @@
         return "max_user_ip";
     if (type == ACL_EXTERNAL)
         return "external";
+ if (type == ACL_MAX_BODY_SIZE)
+ return "max_body_size";
     if (type == ACL_URLLOGIN)
         return "urllogin";
     return "ERROR";
@@ -757,6 +761,7 @@
     case ACL_SRC_ASN:
     case ACL_MAXCONN:
     case ACL_DST_ASN:
+ case ACL_MAX_BODY_SIZE:
         aclParseIntlist(&A->data);
         break;
     case ACL_MAX_USER_IP:
@@ -1587,6 +1592,8 @@
         k = clientdbEstablished(checklist->src_addr, 0);
         return ((k > ((intlist *) ae->data)->i) ? 1 : 0);
         /* NOTREACHED */
+ case ACL_MAX_BODY_SIZE:
+ return ((r->content_length > ((intlist *) ae->data)->i) ? 1 : 0);
     case ACL_URL_PORT:
         return aclMatchIntegerRange(ae->data, (int) r->port);
         /* NOTREACHED */
@@ -2149,6 +2156,9 @@
         case ACL_MAXCONN:
             intlistDestroy((intlist **) & a->data);
             break;
+ case ACL_MAX_BODY_SIZE:
+ intlistDestroy((intlist **) & a->data);
+ break;
         case ACL_MAX_USER_IP:
             aclDestroyUserMaxIP(&a->data);
             break;
@@ -2557,6 +2567,7 @@
     case ACL_SRC_ASN:
     case ACL_MAXCONN:
     case ACL_DST_ASN:
+ case ACL_MAX_BODY_SIZE:
         return aclDumpIntlistList(a->data);
     case ACL_MAX_USER_IP:
         return aclDumpUserMaxIP(a->data);
diff -Nur squid-2.5.STABLE4-20040208/src/cf.data.pre squid-2.5.STABLE4-20040208-diegows/src/cf.data.pre
--- squid-2.5.STABLE4-20040208/src/cf.data.pre Wed Feb 4 14:42:28 2004
+++ squid-2.5.STABLE4-20040208-diegows/src/cf.data.pre Sun Feb 8 19:29:05 2004
@@ -2082,6 +2082,10 @@
           # effect in rules that affect the reply data stream such as
           # http_reply_access.
 
+ acl aclname max_body_size <bytes>
+ # This will be matched when the client's HTTP Request Body is
+ # greater than <bytes>.
+
         acl acl_name external class_name [arguments...]
           # external ACL lookup via a helper class defined by the
           # external_acl_type directive.
diff -Nur squid-2.5.STABLE4-20040208/src/enums.h squid-2.5.STABLE4-20040208-diegows/src/enums.h
--- squid-2.5.STABLE4-20040208/src/enums.h Wed Feb 4 14:42:28 2004
+++ squid-2.5.STABLE4-20040208-diegows/src/enums.h Sun Feb 8 15:34:06 2004
@@ -137,6 +137,7 @@
     ACL_MAX_USER_IP,
     ACL_EXTERNAL,
     ACL_URLLOGIN,
+ ACL_MAX_BODY_SIZE,
     ACL_ENUM_MAX
 } squid_acl;
 
Received on Thu Feb 12 2004 - 06:51:12 MST