stackforge/libra
Code Issues Proposed changes

[API] Fix Monitoring limits

Browse Source 
Set reasonable limits for delay/timeout (0 < x <= 3600) and path length (2000).

Change-Id: Icc6225363eef017c31dc615c3a4870d2f2ba8829
This commit is contained in:
Marc Pilon
2013-11-21 10:01:12 -05:00
committed by Andrew Hutchings
parent 343c2e5c75
commit 68a8ccc82d
1 changed files with 27 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
libra/api/controllers/health_monitor.py
View File

@@ -27,6 +27,11 @@ from libra.api.library.exp import NotFound, ImmutableEntity, ImmutableStates
class HealthMonitorController(RestController):
TIMEOUT_LIMIT = 3600
DELAY_LIMIT = 3600
PATH_LIMIT = 2000
"""functions for /loadbalancers/{loadBalancerId}/healthmonitor routing"""
def __init__(self, load_balancer_id=None):
self.lbid = load_balancer_id
@@ -143,6 +148,12 @@ class HealthMonitorController(RestController):
raise ClientSideError(
"Path must begin with leading /"
)
if len(data["path"]) > self.PATH_LIMIT:
raise ClientSideError(
"Path must be less than {0} characters"
.format(self.PATH_LIMIT)
)
else:
if body.type != "CONNECT":
session.rollback()
@@ -151,6 +162,22 @@ class HealthMonitorController(RestController):
)
data["path"] = None
# Check timeout limits. Must be > 0 and limited to 1 hour
if data["timeout"] < 1 or data["timeout"] > self.TIMEOUT_LIMIT:
session.rollback()
raise ClientSideError(
"timeout must be between 1 and {0} seconds"
.format(self.TIMEOUT_LIMIT)
)
# Check delay limits. Must be > 0 and limited to 1 hour
if data["delay"] < 1 or data["delay"] > self.DELAY_LIMIT:
session.rollback()
raise ClientSideError(
"delay must be between 1 and {0} seconds"
.format(self.DELAY_LIMIT)
)
if data["timeout"] > data["delay"]:
session.rollback()
raise ClientSideError(