memset (a, 0, sizeof (*a));
a->app_index = app->index;
cert_len = clib_net_to_host_u16 (mp->cert_len);
+ if (cert_len > 10000)
+ {
+ rv = VNET_API_ERROR_INVALID_VALUE;
+ goto done;
+ }
vec_validate (a->cert, cert_len);
clib_memcpy (a->cert, mp->cert, cert_len);
if ((error = vnet_app_add_tls_cert (a)))
memset (a, 0, sizeof (*a));
a->app_index = app->index;
key_len = clib_net_to_host_u16 (mp->key_len);
+ if (key_len > 10000)
+ {
+ rv = VNET_API_ERROR_INVALID_VALUE;
+ goto done;
+ }
vec_validate (a->key, key_len);
clib_memcpy (a->key, mp->key, key_len);
if ((error = vnet_app_add_tls_key (a)))
{
application_t *app;
app = application_get_if_valid (app_session->app_index);
- tls_add_app_q_evt (app, app_session);
+ if (PREDICT_TRUE (app != 0))
+ tls_add_app_q_evt (app, app_session);
}
int