I'd like to use ASN1_item_d2i_bio() (or something similar) to parse an incoming message. However, given that types like ASN1_OCTET_STRING have (essentially) unbounded length, how do I prevent an attacker from DOS'ing via OOM?
Is there some way to set a max packet size? Nathaniel _______________________________________________ openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
