X-Git-Url: http://git.indexdata.com/?a=blobdiff_plain;f=src%2Ftcpip.c;h=a55d67c1955221d39dc490245a1cca971b65d94c;hb=b925ea17d6f146a28d745b0d34e9eec6eafda21f;hp=6400e7d841b36342a2eb3f68aa83279323517c58;hpb=aaf5a12c13670c9d034ecf809448201e1ef5d8de;p=yaz-moved-to-github.git diff --git a/src/tcpip.c b/src/tcpip.c index 6400e7d..a55d67c 100644 --- a/src/tcpip.c +++ b/src/tcpip.c @@ -2,7 +2,7 @@ * Copyright (C) 1995-2005, Index Data ApS * See the file LICENSE for details. * - * $Id: tcpip.c,v 1.17 2005-07-19 12:40:52 mike Exp $ + * $Id: tcpip.c,v 1.19 2006-08-24 13:25:45 adam Exp $ */ /** * \file tcpip.c @@ -187,6 +187,7 @@ COMSTACK tcpip_type(int s, int blocking, int protocol, void *vp) p->f_addrstr = tcpip_addrstr; p->f_straddr = tcpip_straddr; p->f_set_blocking = tcpip_set_blocking; + p->max_recv_bytes = 5000000; p->state = new_socket ? CS_ST_UNBND : CS_ST_IDLE; /* state of line */ p->event = CS_NONE; @@ -490,8 +491,7 @@ static int tcpip_bind(COMSTACK h, void *address, int mode) if (sp->ctx_alloc) { int res; - res = SSL_CTX_use_certificate_file (sp->ctx, sp->cert_fname, - SSL_FILETYPE_PEM); + res = SSL_CTX_use_certificate_chain_file(sp->ctx, sp->cert_fname); if (res <= 0) { ERR_print_errors_fp(stderr); @@ -752,11 +752,17 @@ int tcpip_get(COMSTACK h, char **buf, int *bufsize) if (!*bufsize) { if (!(*buf = (char *)xmalloc(*bufsize = CS_TCPIP_BUFCHUNK))) + { + h->cerrno = CSYSERR; return -1; + } } else if (*bufsize - hasread < CS_TCPIP_BUFCHUNK) if (!(*buf =(char *)xrealloc(*buf, *bufsize *= 2))) + { + h->cerrno = CSYSERR; return -1; + } #ifdef __sun__ yaz_set_errno( 0 ); /* unfortunatly, sun sometimes forgets to set errno in recv @@ -801,6 +807,11 @@ int tcpip_get(COMSTACK h, char **buf, int *bufsize) else if (!res) return hasread; hasread += res; + if (hasread > h->max_recv_bytes) + { + h->cerrno = CSBUFSIZE; + return -1; + } } TRC (fprintf (stderr, " Out of read loop with hasread=%d, berlen=%d\n", hasread, berlen));