On Tue, Sep 12, 2017 at 2:01 AM, Daniel P. Berrange
<berra...@redhat.com> wrote:
The problem is in the qio_channel_websock_read_wire method we refuse
to read more than 4k into encinput. So if the ping payload is greater
than 4k this will just loop forever.
The RFC limits the payload length of control messages to 126 bytes, ,
limiting the total message size to 132 bytes. This is enforced in
qio_channel_websock_decode_header(). If anything larger is sent in a
control message, including pings, the connection is immediately closed.
--
Brandon Carpenter | Software Engineer
Cypherpath, Inc.
400 Columbia Point Drive Ste 101 | Richland, Washington USA
Office: (650) 713-3060
--
CONFIDENTIALITY NOTICE: This e-mail message, including any attachments, is
for the sole use of the intended recipient(s) and may contain proprietary,
confidential or privileged information or otherwise be protected by law.
Any unauthorized review, use, disclosure or distribution is prohibited. If
you are not the intended recipient, please notify the sender and destroy
all copies and the original message.
