Home Esplora Aiuto
Accedi
sengler
/
tor-parallel-relay-conn
1
0
Forka 0
File Problemi 0 Pull Requests 0 Wiki
Sfoglia il codice sorgente

Merge branch 'maint-0.3.3' into maint-0.3.4

Nick Mathewson 6 anni fa
parent
508002a4c2 be84ed1a64
commit
5062647918
2 ha cambiato i file con 6 aggiunte e 1 eliminazioni
Visualizzazione separata Mostra Diff Stats
  1. 5 0
      changes/ticket29168
  2. 1 1
      src/or/scheduler_kist.c

+ 5 - 0
changes/ticket29168
Vedi File 

@@ -0,0 +1,5 @@
 
+  o Major bugfixes (cell scheduler, KIST):
 
+    - Make KIST to always take into account the outbuf length when computing
 
+      what we can actually put in the outbuf. This could lead to the outbuf
 
+      being filled up and thus a possible memory DoS vector. TROVE-2019-001.
 
+      Fixes bug 29168; bugfix on 0.3.2.1-alpha.

+ 1 - 1
src/or/scheduler_kist.c
Vedi File 

@@ -278,7 +278,7 @@ update_socket_info_impl, (socket_table_ent_t *ent))
 
   extra_space =
 
     clamp_double_to_int64(
 
                  (ent->cwnd * (int64_t)ent->mss) * sock_buf_size_factor) -
 
-    ent->notsent;
 
+    ent->notsent - (int64_t)channel_outbuf_length((channel_t *) ent->chan);
 
   if ((tcp_space + extra_space) < 0) {
 
     /* This means that the "notsent" queue is just too big so we shouldn't put
 
      * more in the kernel for now. */