Implement max packet size

Details

  • Type: Improvement Improvement
  • Status: Closed Closed
  • Priority: Major Major
  • Resolution: Duplicate
  • Affects Version/s: 2.2.0 Beta 1
  • Fix Version/s: 3.2.1
  • Component/s: Core
  • Labels:
    None

Description

Add support for a maximum packet size to help prevent denial of service attacks. The parser should keep track of the number of bytes read per packet. When the max packet size is exceeded, it should stop reading the packet into the DOM. The major question is what to do after we hit the max packet size. I see two options:

1) Return stream error and close stream.
2) Read rest of packet but throw away contents as its being read. After finished reading, return packet error. This would mean that your connection isn't closed due to sending too large of a packet.

Perhaps a good default max packet size would be 512KB?

Issue Links

duplicates

Bug - A problem which impairs or prevents the functions of the product. JM-980 Close connection from client that tries to send a never ending packet

  • Critical - Crashes, loss of data, severe memory leak.
  • Closed - The issue is considered finished, the resolution is correct. Issues which are not closed can be reopened.

Activity

There are no comments yet on this issue.

People

  • Assignee:
    Gaston Dombiak
    Reporter:
    Matt Tucker
Vote (1)
Watch (0)

Dates

  • Created:
    Updated:
    Resolved: