When a bound evhttp socket triggers for an accept with no free file descriptors, it fails with EMFILE or ENFILE, the event isn't cleared and thus continues to call the accept handler until the connection is dropped. This seems like a denial of service vulnerability.
I've been thinking about how to handle this elegantly, and I'm wondering if it makes sense for the calling program to allocate libevent a certain number of file descriptors. Then, libevent can do something smart (allow incoming connections to pile up until we have a free fd? disallow keep-alives if we're low on fds?). Thoughts? Brian
_______________________________________________ Libevent-users mailing list Libevent-users@monkey.org http://monkeymail.org/mailman/listinfo/libevent-users
