The following commit has been merged in the master branch:
commit a0ffea098d8c5c5b46c6bf86a12d28d6e7096685
Author: Andrew Deason <[email protected]>
Date: Tue Mar 12 09:51:39 2013 -0500
ptserver: Limit length on namelist, idlist
namelist and idlist are used as IN parameters to ptserver RPCs that
can be issued by unauthenticated clients. Not having a length limit on
them means anyone can use up a ton of ptserver memory by just issuing
those RPCs with a very large length.
So, put a limit on them. PR_MAXLIST is a constant that already exists,
but is small enough to potentially limit real use, so define a new
OpenAFS-internal value for this purpose.
prlist and prentries are returned from the ptserver to clients, so
also limit them in the same way.
Change-Id: Iaf45639bbae401093354adbfb4daa172fe97ede1
Reviewed-on: http://gerrit.openafs.org/9588
Tested-by: BuildBot <[email protected]>
Reviewed-by: Daria Brashear <[email protected]>
src/ptserver/ptint.xg | 12 ++++++++----
1 files changed, 8 insertions(+), 4 deletions(-)
--
OpenAFS Master Repository
_______________________________________________
OpenAFS-cvs mailing list
[email protected]
https://lists.openafs.org/mailman/listinfo/openafs-cvs
