tyler.durden
/
openssh-portable
mirror of https://github.com/PowerShell/openssh-portable.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

upstream: stricter check for overfull tables in penalty record path 

OpenBSD-Commit-ID: 7df01e648a0723418c554e64a9f2b6d38db060a6
This commit is contained in:
djm@openbsd.org 2024-06-20 00:18:05 +00:00 committed by Damien Miller
parent d9336d344e
commit e9b6471c59
No known key found for this signature in database
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
srclimit.c
View File

@ -405,7 +405,7 @@ srclimit_penalise(struct xaddr *addr, int penalty_type)
penalty_cfg.overflow_mode : penalty_cfg.overflow_mode6;
npenaltiesp = addr->af == AF_INET ? &npenalties4 : &npenalties6;
t = addr->af == AF_INET ? "ipv4" : "ipv6";
if (*npenaltiesp > (size_t)max_sources &&
if (*npenaltiesp >= (size_t)max_sources &&
overflow_mode == PER_SOURCE_PENALTY_OVERFLOW_DENY_ALL) {
verbose_f("%s penalty table full, cannot penalise %s for %s", t,
addrnetmask, reason);