commit ba26e9ebfd72824f81642c64e105032db7ed0e63
author Paul Bakker <p.j.bakker@polarssl.org> Tue Oct 23 22:18:28 2012 +0000
committer Paul Bakker <p.j.bakker@polarssl.org> Tue Oct 23 22:18:28 2012 +0000
tree a0ccd9534715b4de60c78082dcd2f5fa29a910be
parent 0fd018efb29ea5a953c89b5236dbf76016d7b67c

 - Cache now only allows a maximum of entries in cache for preventing memory overrun

include/polarssl/ssl_cache.h

diff --git a/include/polarssl/ssl_cache.h b/include/polarssl/ssl_cache.h
index e13c087..85e0ed1 100644
--- a/include/polarssl/ssl_cache.h
+++ b/include/polarssl/ssl_cache.h
@@ -29,7 +29,8 @@
 
 #include "ssl.h"
 
-#define SSL_CACHE_DEFAULT_TIMEOUT 86400 /*!< 1 day  */
+#define SSL_CACHE_DEFAULT_TIMEOUT       86400   /*!< 1 day  */
+#define SSL_CACHE_DEFAULT_MAX_ENTRIES      50   /*!< Maximum entries in cache */
 
 #ifdef __cplusplus
 extern "C" {
@@ -53,8 +54,9 @@
  */
 struct _ssl_cache_context
 {
-    ssl_cache_entry *chain;     /*!< start of the chain */
-    int timeout;                /*!< cache timeout      */
+    ssl_cache_entry *chain;     /*!< start of the chain     */
+    int timeout;                /*!< cache entry timeout    */
+    int max_entries;            /*!< maximum entries        */
 };
 
 /**
@@ -92,6 +94,15 @@
 void ssl_cache_set_timeout( ssl_cache_context *cache, int timeout );
 
 /**
+ * \brief          Set the cache timeout
+ *                 (Default: SSL_CACHE_DEFAULT_MAX_ENTRIES (50))
+ *
+ * \param cache    SSL cache context
+ * \param max      cache entry maximum
+ */
+void ssl_cache_set_max_entries( ssl_cache_context *cache, int max );
+
+/**
  * \brief          Free referenced items in a cache context and clear memory
  *
  * \param cache    SSL cache context