ethstats: set readlimit on ethstats server connection (#26207)

This prevents DoS when connected to a malicious ethstats server.

ethstats: set readlimit on ethstats server connection (#26207)
This prevents DoS when connected to a malicious ethstats server.
c2e0abce · Martin Holst Swende · GitHub · 97c563e0 · c2e0abce
Unverified Commit c2e0abce authored Nov 17, 2022 by Martin Holst Swende Committed by GitHub Nov 17, 2022
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 0 deletions

ethstats.go ethstats/ethstats.go +3 -0

No files found.
--- a/ethstats/ethstats.go
+++ b/ethstats/ethstats.go
@@ -57,6 +57,8 @@ const (
 	txChanSize = 4096
 	// chainHeadChanSize is the size of channel listening to ChainHeadEvent.
 	chainHeadChanSize = 10
+
+	messageSizeLimit = 15 * 1024 * 1024
 )

 // backend encompasses the bare-minimum functionality needed for ethstats reporting
@@ -121,6 +123,7 @@ type connWrapper struct {
 }

 func newConnectionWrapper(conn *websocket.Conn) *connWrapper {
+	conn.SetReadLimit(messageSizeLimit)
 	return &connWrapper{conn: conn}
 }