Update from 1.0.0-stable.

This commit is contained in:
Dr. Stephen Henson
2009-05-16 16:18:45 +00:00
parent efa59b8d59
commit 6bf4ca0840
3 changed files with 19 additions and 0 deletions

View File

@@ -234,3 +234,17 @@ pqueue_next(pitem **item)
return ret; return ret;
} }
int
pqueue_size(pqueue_s *pq)
{
pitem *item = pq->items;
int count = 0;
while(item != NULL)
{
count++;
item = item->next;
}
return count;
}

View File

@@ -91,5 +91,6 @@ pitem *pqueue_iterator(pqueue pq);
pitem *pqueue_next(piterator *iter); pitem *pqueue_next(piterator *iter);
void pqueue_print(pqueue pq); void pqueue_print(pqueue pq);
int pqueue_size(pqueue pq);
#endif /* ! HEADER_PQUEUE_H */ #endif /* ! HEADER_PQUEUE_H */

View File

@@ -167,6 +167,10 @@ dtls1_buffer_record(SSL *s, record_pqueue *queue, PQ_64BIT priority)
DTLS1_RECORD_DATA *rdata; DTLS1_RECORD_DATA *rdata;
pitem *item; pitem *item;
/* Limit the size of the queue to prevent DOS attacks */
if (pqueue_size(queue->q) >= 100)
return 0;
rdata = OPENSSL_malloc(sizeof(DTLS1_RECORD_DATA)); rdata = OPENSSL_malloc(sizeof(DTLS1_RECORD_DATA));
item = pitem_new(priority, rdata); item = pitem_new(priority, rdata);
if (rdata == NULL || item == NULL) if (rdata == NULL || item == NULL)