[jira] Created: (AXIS2C-1171) axis2_http_server remote crash, invalid read in axutil_stream_peek_socket

Fri, 30 May 2008 07:39:06 -0700 

axis2_http_server remote crash, invalid read in axutil_stream_peek_socket
-------------------------------------------------------------------------

                 Key: AXIS2C-1171
                 URL: https://issues.apache.org/jira/browse/AXIS2C-1171
             Project: Axis2-C
          Issue Type: Bug
          Components: transport/http
    Affects Versions: 1.4.0
         Environment: linux fc6
            Reporter: Frederic Heem
            Priority: Blocker
         Attachments: echoStringAxutil_stream_peek_socket.txt

The following netcat command makes axis2_http_server  crash
nc 127.0.0.1 9090 < echoStringAxutil_stream_peek_socket.txt
Here the valgrind output:
==32180== Thread 3:
==32180== Invalid read of size 4
==32180==    at 0x404CB40: axutil_stream_peek_socket (stream.c:650)
==32180==    by 0x4012A0D: axis2_simple_http_svr_conn_read_request 
(simple_http_svr_conn.c:164)
==32180==    by 0x7A5A5336: ???
==32180==  Address 0x53794645 is not stack'd, malloc'd or (recently) free'd
==32180==
==32180== Process terminating with default action of signal 11 (SIGSEGV)
==32180==  Access not within mapped region at address 0x53794645
==32180==    at 0x404CB40: axutil_stream_peek_socket (stream.c:650)
==32180==    by 0x4012A0D: axis2_simple_http_svr_conn_read_request 
(simple_http_svr_conn.c:164)
==32180==    by 0x7A5A5336: ???
==32180==
==32180== ERROR SUMMARY: 1 errors from 1 contexts (suppressed: 65 from 1)
==32180== malloc/free: in use at exit: 467,710 bytes in 10,401 blocks.
==32180== malloc/free: 17,610 allocs, 7,209 frees, 1,197,675 bytes allocated.
==32180== For counts of detected errors, rerun with: -v
==32180== searching for pointers to 10,401 not-freed blocks.
==32180== checked 21,596,240 bytes.
==32180==
==32180== LEAK SUMMARY:
==32180==    definitely lost: 1,222 bytes in 45 blocks.
==32180==      possibly lost: 272 bytes in 2 blocks.
==32180==    still reachable: 466,216 bytes in 10,354 blocks.
==32180==         suppressed: 0 bytes in 0 blocks.
==32180== Rerun with --leak-check=full to see details of leaked memory.
Killed


-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to