Extra modification

apache2/mod_security2.c

@@ -196,7 +196,7 @@
             msc_string *var = (msc_string *)apr_pcalloc(msr->mp, sizeof(msc_string));
 
             var->value = (char *)actionset->intercept_pause;
             var->value_len = strlen(actionset->intercept_pause);
             expand_macros(msr, var, NULL, msr->mp);
 
             pause = atoi(var->value);
@@ -343,7 +343,7 @@
                 msc_string *var = (msc_string *)apr_pcalloc(msr->mp, sizeof(msc_string));
 
                 var->value = (char *)actionset->intercept_uri;
                 var->value_len = strlen(actionset->intercept_uri);
                 expand_macros(msr, var, NULL, msr->mp);
 
                 apr_table_setn(msr->r->headers_out, "Location", var->value);
@@ -1217,7 +1217,7 @@
         }
     }
 
     limit = limit - strlen(str2) - 5;
     if (limit <= 0) {
         msr_log(msr, 1, "Audit Log: Atomic PIPE write buffer too small: %d", PIPE_BUF);
         return;
@@ -1664,7 +1664,11 @@
 
     /* Add the MODSEC_a.b define */
     *(char **)apr_array_push(ap_server_config_defines) = apr_psprintf(mp, "MODSEC_%s.%s", MODSEC_VERSION_MAJOR, MODSEC_VERSION_MINOR);
-
+    *(char **)apr_array_push(ap_server_config_defines) = apr_pstrdup(mp, "MODSEC_AnalyseMultipartHeaders");
+    *(char **)apr_array_push(ap_server_config_defines) = apr_pstrdup(mp, "MODSEC_ARGS_COMBINED_SIZE_NONAME");
+#ifndef WITH_PCRE
+    *(char **)apr_array_push(ap_server_config_defines) = apr_pstrdup(mp, "MODSEC_PCRE2");
+#endif
 #if (!defined(NO_MODSEC_API))
     /* Export optional functions. */
     APR_REGISTER_OPTIONAL_FN(modsec_register_tfn);

apache2/msc_util.c

@@ -2261,6 +2261,8 @@ char *construct_single_var(modsec_rec *msr, char *name) {
     msre_var *vx = NULL;
     char *my_error_msg = NULL;
 
+    if (msr->msc_rule_mptmp == NULL) return NULL;
+
     /* Extract variable name and its parameter from the script. */
     varname = apr_pstrdup(msr->mp, name);
     if (varname == NULL) return NULL;