proxmox-mirrors/mirror_corosync
1
0
Fork 0
mirror of https://git.proxmox.com/git/mirror_corosync synced 2025-06-03 09:41:02 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

defect 897

Browse Source 
fix new_message_queue can be overwritten


git-svn-id: http://svn.fedorahosted.org/svn/corosync/trunk@825 fd59a12c-fef9-0310-b244-a6a79926bd2f
This commit is contained in:
Steven Dake 2005-09-26 21:27:57 +00:00
parent 0dc7b0267a
commit 90181d3dd1
1 changed files with 15 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
exec/totempg.c
View File

@ -172,7 +172,7 @@ int assembly_list_entries = 0;
* fragment_contuation indicates whether the first packed message in
* the buffer is a continuation of a previously packed fragment.
*/
static unsigned char fragmentation_data[MESSAGE_SIZE_MAX];
static unsigned char *fragmentation_data;
int fragment_size = 0;
int fragment_continuation = 0;
@ -478,6 +478,11 @@ int totempg_initialize (
totempg_totem_config = totem_config;
fragmentation_data = malloc (TOTEMPG_PACKET_SIZE);
if (fragmentation_data == 0) {
return (-1);
}
res = totemmrp_initialize (
poll_handle,
totemsrp_handle,
@ -527,10 +532,19 @@ int totempg_mcast (
mcast_packed_msg_lens[mcast_packed_msg_count] = 0;
/*
* Check if we would overwrite new message queue
*/
for (i = 0; i < iov_len; i++) {
total_size += iovec[i].iov_len;
}
if( totempg_send_ok (total_size + sizeof(unsigned short) *
(mcast_packed_msg_count+1)) == 0) {
return(-1);
}
for (i = 0; i < iov_len; ) {
mcast.fragmented = 0;
mcast.continuation = fragment_continuation;