max_message_count = 0 disables limit
authorAndreas Steffen <andreas.steffen@strongswan.org>
Mon, 9 Jul 2012 07:47:18 +0000 (09:47 +0200)
committerAndreas Steffen <andreas.steffen@strongswan.org>
Wed, 11 Jul 2012 15:09:04 +0000 (17:09 +0200)
man/strongswan.conf.5.in
src/libtls/tls_eap.c

index da6013c..af46c3c 100644 (file)
@@ -302,7 +302,7 @@ PAM service to be used for authentication
 Maximum size of an EAP-PEAP packet
 .TP
 .BR charon.plugins.eap-peap.max_message_count " [32]"
-Maximum number of processed EAP-PEAP packets
+Maximum number of processed EAP-PEAP packets (0 = no limit)
 .TP
 .BR charon.plugins.eap-peap.include_length " [no]"
 Include length in non-fragmented EAP-PEAP packets
@@ -394,7 +394,7 @@ Number of sockets (ports) to use, increase for high load
 Maximum size of an EAP-TLS packet
 .TP
 .BR charon.plugins.eap-tls.max_message_count " [32]"
-Maximum number of processed EAP-TLS packets
+Maximum number of processed EAP-TLS packets (0 = no limit)
 .TP
 .BR charon.plugins.eap-tls.include_length " [yes]"
 Include length in non-fragmented EAP-TLS packets
@@ -403,7 +403,7 @@ Include length in non-fragmented EAP-TLS packets
 Maximum size of an EAP-TNC packet
 .TP
 .BR charon.plugins.eap-tnc.max_message_count " [10]"
-Maximum number of processed EAP-TNC packets
+Maximum number of processed EAP-TNC packets (0 = no limit)
 .TP
 .BR charon.plugins.eap-tnc.include_length " [yes]"
 Include length in non-fragmented EAP-TNC packets
@@ -412,7 +412,7 @@ Include length in non-fragmented EAP-TNC packets
 Maximum size of an EAP-TTLS packet
 .TP
 .BR charon.plugins.eap-ttls.max_message_count " [32]"
-Maximum number of processed EAP-TTLS packets
+Maximum number of processed EAP-TTLS packets (0 = no limit)
 .TP
 .BR charon.plugins.eap-ttls.include_length " [yes]"
 Include length in non-fragmented EAP-TTLS packets
index 9cd5721..1354fa1 100644 (file)
@@ -320,7 +320,7 @@ METHOD(tls_eap_t, process, status_t,
        eap_tls_packet_t *pkt;
        status_t status;
 
-       if (++this->processed > this->max_msg_count)
+       if (this->max_msg_count && ++this->processed > this->max_msg_count)
        {
                DBG1(DBG_TLS, "%N packet count exceeded (%d > %d)",
                         eap_type_names, this->type,