From 0d4109a9f1f119e336d73039251ad17c0e2a56f4 Mon Sep 17 00:00:00 2001
From: Adam Ierymenko <adam.ierymenko@gmail.com>
Date: Fri, 9 Sep 2016 08:43:58 -0700
Subject: More refactoring to clean up code, and add a gate function to make
 sure we do not handle OK packets we did not expect. This hardens up a few
 potential edge cases around security, since such messages might be used to
 e.g. pollute a cache and DOS under certain conditions.

---
 node/Network.cpp | 10 ++++++++++
 1 file changed, 10 insertions(+)

(limited to 'node/Network.cpp')

diff --git a/node/Network.cpp b/node/Network.cpp
index 2a5f213c..710e70dd 100644
--- a/node/Network.cpp
+++ b/node/Network.cpp
@@ -1054,6 +1054,7 @@ void Network::requestConfiguration()
 	} else {
 		outp.append((unsigned char)0,16);
 	}
+	RR->node->expectReplyTo(outp.packetId());
 	outp.compress();
 	RR->sw->send(outp,true);
 
@@ -1092,6 +1093,15 @@ bool Network::gate(const SharedPtr<Peer> &peer,const Packet::Verb verb,const uin
 	return false;
 }
 
+bool Network::recentlyAllowedOnNetwork(const SharedPtr<Peer> &peer) const
+{
+	Mutex::Lock _l(_lock);
+	const Membership *m = _memberships.get(peer->address());
+	if (m)
+		return m->recentlyAllowedOnNetwork(_config);
+	return false;
+}
+
 void Network::clean()
 {
 	const uint64_t now = RR->node->now();
-- 
cgit v1.2.3