ah: reuse at end of transaction has no timeout If we complete a transaction but end up keeping the ah, we must force a timeout on it. Otherwise a bad bot could keep the socket open and exhaust the ah pool.

commit: 5da9ce2f06bec73b41cf96052acf3e6d1ddc1ce0 [log] [tgz]
author: Andy Green <andy@warmcat.com> Tue Aug 15 07:58:53 2017 +0800
committer: Andy Green <andy@warmcat.com> Tue Aug 15 07:58:53 2017 +0800
tree: a8c1d422266f7ace5dcd6abef596f01af2af63b0
parent: b93c057472aa6f42ee2d8b4aa60b46facbf1b47c [diff]
diff --git a/lib/server.c b/lib/server.c
index 16e3808..6e7c8b0 100644
--- a/lib/server.c
+++ b/lib/server.c

@@ -1889,8 +1889,17 @@
 				return 1;
 			}
 #endif
-		} else
+		} else {
 			lws_header_table_reset(wsi, 1);
+			/*
+			 * If we kept the ah, we should restrict the amount
+			 * of time we are willing to keep it.  Otherwise it
+			 * will be bound the whole time the connection remains
+			 * open.
+			 */
+			lws_set_timeout(wsi, PENDING_TIMEOUT_HOLDING_AH,
+					wsi->vhost->keepalive_timeout);
+		}
 	}
 
 	/* If we're (re)starting on headers, need other implied init */
commit	5da9ce2f06bec73b41cf96052acf3e6d1ddc1ce0	[log] [tgz]
author	Andy Green <andy@warmcat.com>	Tue Aug 15 07:58:53 2017 +0800
committer	Andy Green <andy@warmcat.com>	Tue Aug 15 07:58:53 2017 +0800
tree	a8c1d422266f7ace5dcd6abef596f01af2af63b0
parent	b93c057472aa6f42ee2d8b4aa60b46facbf1b47c [diff]