There's a potential DoS attack if the server sends a large number of ADD_ADDRESS frames. While the client could silently drop addresses above a certain limit, this seems less than ideal. An explicit limit seems preferable, but the current makes this hard to achieve, since there's no ordering between ADD_ADDRESS and REMOVE_ADDRESS frames.
There's a potential DoS attack if the server sends a large number of ADD_ADDRESS frames. While the client could silently drop addresses above a certain limit, this seems less than ideal. An explicit limit seems preferable, but the current makes this hard to achieve, since there's no ordering between ADD_ADDRESS and REMOVE_ADDRESS frames.