 Chromium Code Reviews
 Chromium Code Reviews Issue 205583011:
  [Draft] Fix canceling pin prompt causes host overload  (Closed) 
  Base URL: svn://svn.chromium.org/chrome/trunk/src
    
  
    Issue 205583011:
  [Draft] Fix canceling pin prompt causes host overload  (Closed) 
  Base URL: svn://svn.chromium.org/chrome/trunk/src| OLD | NEW | 
|---|---|
| 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. | 
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be | 
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. | 
| 4 | 4 | 
| 5 #include "remoting/host/chromoting_host.h" | 5 #include "remoting/host/chromoting_host.h" | 
| 6 | 6 | 
| 7 #include <algorithm> | 7 #include <algorithm> | 
| 8 | 8 | 
| 9 #include "base/bind.h" | 9 #include "base/bind.h" | 
| 10 #include "base/callback.h" | 10 #include "base/callback.h" | 
| (...skipping 153 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
| 164 DisconnectAllClients(); | 164 DisconnectAllClients(); | 
| 165 } | 165 } | 
| 166 | 166 | 
| 167 void ChromotingHost::SetMaximumSessionDuration( | 167 void ChromotingHost::SetMaximumSessionDuration( | 
| 168 const base::TimeDelta& max_session_duration) { | 168 const base::TimeDelta& max_session_duration) { | 
| 169 max_session_duration_ = max_session_duration; | 169 max_session_duration_ = max_session_duration; | 
| 170 } | 170 } | 
| 171 | 171 | 
| 172 //////////////////////////////////////////////////////////////////////////// | 172 //////////////////////////////////////////////////////////////////////////// | 
| 173 // protocol::ClientSession::EventHandler implementation. | 173 // protocol::ClientSession::EventHandler implementation. | 
| 174 void ChromotingHost::OnSessionAuthenticating(ClientSession* client) { | |
| 175 // We treat each incoming connection as a failure to authenticate, | |
| 176 // and clear the backoff when a connection successfully | |
| 177 // authenticates. This allows the backoff to protect from parallel | |
| 178 // connection attempts as well as sequential ones. | |
| 179 if (login_backoff_.ShouldRejectRequest()) { | |
| 180 LOG(WARNING) << "Disconnecting client due to" | |
| 181 " an overload of failed login attempts."; | |
| 182 client->DisconnectSession(); | |
| 183 return; | |
| 184 } | |
| 185 login_backoff_.InformOfRequest(false); | |
| 186 } | |
| 187 | |
| 174 bool ChromotingHost::OnSessionAuthenticated(ClientSession* client) { | 188 bool ChromotingHost::OnSessionAuthenticated(ClientSession* client) { | 
| 175 DCHECK(CalledOnValidThread()); | 189 DCHECK(CalledOnValidThread()); | 
| 176 | 190 | 
| 177 login_backoff_.Reset(); | 191 login_backoff_.Reset(); | 
| 178 | 192 | 
| 179 // Disconnect all other clients. |it| should be advanced before Disconnect() | 193 // Disconnect all other clients. |it| should be advanced before Disconnect() | 
| 180 // is called to avoid it becoming invalid when the client is removed from | 194 // is called to avoid it becoming invalid when the client is removed from | 
| 181 // the list. | 195 // the list. | 
| 182 ClientList::iterator it = clients_.begin(); | 196 ClientList::iterator it = clients_.begin(); | 
| 183 while (it != clients_.end()) { | 197 while (it != clients_.end()) { | 
| (...skipping 74 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
| 258 protocol::Session* session, | 272 protocol::Session* session, | 
| 259 protocol::SessionManager::IncomingSessionResponse* response) { | 273 protocol::SessionManager::IncomingSessionResponse* response) { | 
| 260 DCHECK(CalledOnValidThread()); | 274 DCHECK(CalledOnValidThread()); | 
| 261 | 275 | 
| 262 if (!started_) { | 276 if (!started_) { | 
| 263 *response = protocol::SessionManager::DECLINE; | 277 *response = protocol::SessionManager::DECLINE; | 
| 264 return; | 278 return; | 
| 265 } | 279 } | 
| 266 | 280 | 
| 267 if (login_backoff_.ShouldRejectRequest()) { | 281 if (login_backoff_.ShouldRejectRequest()) { | 
| 282 LOG(WARNING) << "Rejecting connection due to" | |
| 283 " an overload of failed login attempts."; | |
| 
Sergey Ulanov
2014/04/02 19:49:26
Please log session->jid() here.
 
kelvinp
2014/04/07 18:48:01
Done.
 | |
| 268 *response = protocol::SessionManager::OVERLOAD; | 284 *response = protocol::SessionManager::OVERLOAD; | 
| 269 return; | 285 return; | 
| 270 } | 286 } | 
| 271 | 287 | 
| 272 // We treat each incoming connection as a failure to authenticate, | |
| 273 // and clear the backoff when a connection successfully | |
| 274 // authenticates. This allows the backoff to protect from parallel | |
| 275 // connection attempts as well as sequential ones. | |
| 276 login_backoff_.InformOfRequest(false); | |
| 277 | |
| 278 protocol::SessionConfig config; | 288 protocol::SessionConfig config; | 
| 279 if (!protocol_config_->Select(session->candidate_config(), &config)) { | 289 if (!protocol_config_->Select(session->candidate_config(), &config)) { | 
| 280 LOG(WARNING) << "Rejecting connection from " << session->jid() | 290 LOG(WARNING) << "Rejecting connection from " << session->jid() | 
| 281 << " because no compatible configuration has been found."; | 291 << " because no compatible configuration has been found."; | 
| 282 *response = protocol::SessionManager::INCOMPATIBLE; | 292 *response = protocol::SessionManager::INCOMPATIBLE; | 
| 283 return; | 293 return; | 
| 284 } | 294 } | 
| 285 | 295 | 
| 286 session->set_config(config); | 296 session->set_config(config); | 
| 287 | 297 | 
| (...skipping 31 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
| 319 DCHECK(CalledOnValidThread()); | 329 DCHECK(CalledOnValidThread()); | 
| 320 | 330 | 
| 321 while (!clients_.empty()) { | 331 while (!clients_.empty()) { | 
| 322 size_t size = clients_.size(); | 332 size_t size = clients_.size(); | 
| 323 clients_.front()->DisconnectSession(); | 333 clients_.front()->DisconnectSession(); | 
| 324 CHECK_EQ(clients_.size(), size - 1); | 334 CHECK_EQ(clients_.size(), size - 1); | 
| 325 } | 335 } | 
| 326 } | 336 } | 
| 327 | 337 | 
| 328 } // namespace remoting | 338 } // namespace remoting | 
| OLD | NEW |