Uploaded image for project: 'Axis2-C'
  1. Axis2-C
  2. AXIS2C-1171

axis2_http_server remote crash, invalid read in axutil_stream_peek_socket

Attach filesAttach ScreenshotVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 1.4.0
    • Fix Version/s: 1.6.0
    • Component/s: transport/http
    • Labels:
      None
    • Environment:
      linux fc6

      Description

      The following netcat command makes axis2_http_server crash
      nc 127.0.0.1 9090 < echoStringAxutil_stream_peek_socket.txt
      Here the valgrind output:
      ==32180== Thread 3:
      ==32180== Invalid read of size 4
      ==32180== at 0x404CB40: axutil_stream_peek_socket (stream.c:650)
      ==32180== by 0x4012A0D: axis2_simple_http_svr_conn_read_request (simple_http_svr_conn.c:164)
      ==32180== by 0x7A5A5336: ???
      ==32180== Address 0x53794645 is not stack'd, malloc'd or (recently) free'd
      ==32180==
      ==32180== Process terminating with default action of signal 11 (SIGSEGV)
      ==32180== Access not within mapped region at address 0x53794645
      ==32180== at 0x404CB40: axutil_stream_peek_socket (stream.c:650)
      ==32180== by 0x4012A0D: axis2_simple_http_svr_conn_read_request (simple_http_svr_conn.c:164)
      ==32180== by 0x7A5A5336: ???
      ==32180==
      ==32180== ERROR SUMMARY: 1 errors from 1 contexts (suppressed: 65 from 1)
      ==32180== malloc/free: in use at exit: 467,710 bytes in 10,401 blocks.
      ==32180== malloc/free: 17,610 allocs, 7,209 frees, 1,197,675 bytes allocated.
      ==32180== For counts of detected errors, rerun with: -v
      ==32180== searching for pointers to 10,401 not-freed blocks.
      ==32180== checked 21,596,240 bytes.
      ==32180==
      ==32180== LEAK SUMMARY:
      ==32180== definitely lost: 1,222 bytes in 45 blocks.
      ==32180== possibly lost: 272 bytes in 2 blocks.
      ==32180== still reachable: 466,216 bytes in 10,354 blocks.
      ==32180== suppressed: 0 bytes in 0 blocks.
      ==32180== Rerun with --leak-check=full to see details of leaked memory.
      Killed

        Attachments

          Activity

            People

            • Assignee:
              shankar Selvaratnam Uthaiyashankar
              Reporter:
              fredericheem Frederic Heem

              Dates

              • Created:
                Updated:
                Resolved:

                Issue deployment