You are viewing a plain text version of this content. The canonical link for it is here.
Posted to c-dev@axis.apache.org by "Nabeel Yoosuf (JIRA)" <ji...@apache.org> on 2006/06/04 15:46:29 UTC
[jira] Created: (AXIS2C-181) The engine segfaults when the msg ctx
is free'ed
The engine segfaults when the msg ctx is free'ed
------------------------------------------------
Key: AXIS2C-181
URL: http://issues.apache.org/jira/browse/AXIS2C-181
Project: Axis2-C
Type: Bug
Components: xml/parser
Versions: 0.92
Environment: All
Reporter: Nabeel Yoosuf
Fix For: 0.92
The engine segfaults when the msg ctx is free'ed.
this happens when freeing the following in sequence. msg_ctx->envelope->payload->reader. This scenario has not been seen so far since the payload was never built through the reader.
Strack trace is attached.
Program received signal SIGSEGV, Segmentation fault.
0x0021c72b in __gconv_close () from /lib/libc.so.6
(gdb) bt
#0 0x0021c72b in __gconv_close () from /lib/libc.so.6
#1 0x0021bd48 in iconv_close () from /lib/libc.so.6
#2 0x04963ead in xmlCharEncCloseFunc () from /usr/lib/libxml2.so.2
#3 0x0498bc7a in xmlFreeParserInputBuffer () from /usr/lib/libxml2.so.2
#4 0x049680da in xmlFreeInputStream () from /usr/lib/libxml2.so.2
#5 0x04968639 in xmlFreeParserCtxt () from /usr/lib/libxml2.so.2
#6 0x049fd46b in xmlFreeTextReader () from /usr/lib/libxml2.so.2
#7 0x00c8336b in axis2_libxml2_reader_wrapper_free (parser=0x95f2f78, env=0x95ffbe8) at libxml2_reader_wrapper.c:552
#8 0x001eff30 in axis2_om_stax_builder_free (builder=0x96185d0, env=0x95ffbe8) at om_stax_builder.c:815
#9 0x001fc9b2 in axis2_soap_builder_free (builder=0x9611008, env=0x95ffbe8) at soap_builder.c:282
#10 0x001fb376 in axis2_soap_envelope_free (envelope=0x9602170, env=0x95ffbe8) at soap_envelope.c:259
#11 0x00652f6b in axis2_msg_ctx_free (msg_ctx=0x9610538, env=0x95ffbe8) at msg_ctx.c:693
#12 0x0066a679 in axis2_http_worker_process_request (http_worker=0x95f2068, env=0x95ffbe8, svr_conn=0x9618650,
simple_request=0x9610710) at http_worker.c:415
#13 0x00adc61f in worker_func (thd=0x9618678, data=0x9618668) at http_svr_thread.c:309
#14 0x0013fef0 in dummy_worker (opaque=0x9618678) at thread_unix.c:84
#15 0x0011fb80 in start_thread () from /lib/libpthread.so.0
#16 0x002d0dee in clone () from /lib/libc.so.6
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: axis-c-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: axis-c-dev-help@ws.apache.org
[jira] Updated: (AXIS2C-181) The engine segfaults when the msg ctx
is free'ed
Posted by "Nabeel Yoosuf (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/AXIS2C-181?page=all ]
Nabeel Yoosuf updated AXIS2C-181:
---------------------------------
Attachment: diff_reader
On the inspection it was found that the reader gets free'ed twice. The attached minor diff prevents the segfault. I am having problem committing it to svn; please someone commit if for me.
Thanks!
> The engine segfaults when the msg ctx is free'ed
> ------------------------------------------------
>
> Key: AXIS2C-181
> URL: http://issues.apache.org/jira/browse/AXIS2C-181
> Project: Axis2-C
> Type: Bug
> Components: xml/parser
> Versions: 0.92
> Environment: All
> Reporter: Nabeel Yoosuf
> Assignee: Nabeel Yoosuf
> Fix For: 0.92
> Attachments: diff_reader
>
> The engine segfaults when the msg ctx is free'ed.
> this happens when freeing the following in sequence. msg_ctx->envelope->payload->reader. This scenario has not been seen so far since the payload was never built through the reader.
> Strack trace is attached.
> Program received signal SIGSEGV, Segmentation fault.
> 0x0021c72b in __gconv_close () from /lib/libc.so.6
> (gdb) bt
> #0 0x0021c72b in __gconv_close () from /lib/libc.so.6
> #1 0x0021bd48 in iconv_close () from /lib/libc.so.6
> #2 0x04963ead in xmlCharEncCloseFunc () from /usr/lib/libxml2.so.2
> #3 0x0498bc7a in xmlFreeParserInputBuffer () from /usr/lib/libxml2.so.2
> #4 0x049680da in xmlFreeInputStream () from /usr/lib/libxml2.so.2
> #5 0x04968639 in xmlFreeParserCtxt () from /usr/lib/libxml2.so.2
> #6 0x049fd46b in xmlFreeTextReader () from /usr/lib/libxml2.so.2
> #7 0x00c8336b in axis2_libxml2_reader_wrapper_free (parser=0x95f2f78, env=0x95ffbe8) at libxml2_reader_wrapper.c:552
> #8 0x001eff30 in axis2_om_stax_builder_free (builder=0x96185d0, env=0x95ffbe8) at om_stax_builder.c:815
> #9 0x001fc9b2 in axis2_soap_builder_free (builder=0x9611008, env=0x95ffbe8) at soap_builder.c:282
> #10 0x001fb376 in axis2_soap_envelope_free (envelope=0x9602170, env=0x95ffbe8) at soap_envelope.c:259
> #11 0x00652f6b in axis2_msg_ctx_free (msg_ctx=0x9610538, env=0x95ffbe8) at msg_ctx.c:693
> #12 0x0066a679 in axis2_http_worker_process_request (http_worker=0x95f2068, env=0x95ffbe8, svr_conn=0x9618650,
> simple_request=0x9610710) at http_worker.c:415
> #13 0x00adc61f in worker_func (thd=0x9618678, data=0x9618668) at http_svr_thread.c:309
> #14 0x0013fef0 in dummy_worker (opaque=0x9618678) at thread_unix.c:84
> #15 0x0011fb80 in start_thread () from /lib/libpthread.so.0
> #16 0x002d0dee in clone () from /lib/libc.so.6
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: axis-c-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: axis-c-dev-help@ws.apache.org
[jira] Resolved: (AXIS2C-181) The engine segfaults when the msg ctx
is free'ed
Posted by "Nabeel Yoosuf (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/AXIS2C-181?page=all ]
Nabeel Yoosuf resolved AXIS2C-181:
----------------------------------
Resolution: Fixed
> The engine segfaults when the msg ctx is free'ed
> ------------------------------------------------
>
> Key: AXIS2C-181
> URL: http://issues.apache.org/jira/browse/AXIS2C-181
> Project: Axis2-C
> Type: Bug
> Components: xml/parser
> Versions: 0.92
> Environment: All
> Reporter: Nabeel Yoosuf
> Assignee: Nabeel Yoosuf
> Fix For: 0.92
> Attachments: diff_reader
>
> The engine segfaults when the msg ctx is free'ed.
> this happens when freeing the following in sequence. msg_ctx->envelope->payload->reader. This scenario has not been seen so far since the payload was never built through the reader.
> Strack trace is attached.
> Program received signal SIGSEGV, Segmentation fault.
> 0x0021c72b in __gconv_close () from /lib/libc.so.6
> (gdb) bt
> #0 0x0021c72b in __gconv_close () from /lib/libc.so.6
> #1 0x0021bd48 in iconv_close () from /lib/libc.so.6
> #2 0x04963ead in xmlCharEncCloseFunc () from /usr/lib/libxml2.so.2
> #3 0x0498bc7a in xmlFreeParserInputBuffer () from /usr/lib/libxml2.so.2
> #4 0x049680da in xmlFreeInputStream () from /usr/lib/libxml2.so.2
> #5 0x04968639 in xmlFreeParserCtxt () from /usr/lib/libxml2.so.2
> #6 0x049fd46b in xmlFreeTextReader () from /usr/lib/libxml2.so.2
> #7 0x00c8336b in axis2_libxml2_reader_wrapper_free (parser=0x95f2f78, env=0x95ffbe8) at libxml2_reader_wrapper.c:552
> #8 0x001eff30 in axis2_om_stax_builder_free (builder=0x96185d0, env=0x95ffbe8) at om_stax_builder.c:815
> #9 0x001fc9b2 in axis2_soap_builder_free (builder=0x9611008, env=0x95ffbe8) at soap_builder.c:282
> #10 0x001fb376 in axis2_soap_envelope_free (envelope=0x9602170, env=0x95ffbe8) at soap_envelope.c:259
> #11 0x00652f6b in axis2_msg_ctx_free (msg_ctx=0x9610538, env=0x95ffbe8) at msg_ctx.c:693
> #12 0x0066a679 in axis2_http_worker_process_request (http_worker=0x95f2068, env=0x95ffbe8, svr_conn=0x9618650,
> simple_request=0x9610710) at http_worker.c:415
> #13 0x00adc61f in worker_func (thd=0x9618678, data=0x9618668) at http_svr_thread.c:309
> #14 0x0013fef0 in dummy_worker (opaque=0x9618678) at thread_unix.c:84
> #15 0x0011fb80 in start_thread () from /lib/libpthread.so.0
> #16 0x002d0dee in clone () from /lib/libc.so.6
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: axis-c-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: axis-c-dev-help@ws.apache.org
[jira] Assigned: (AXIS2C-181) The engine segfaults when the msg ctx
is free'ed
Posted by "Nabeel Yoosuf (JIRA)" <ji...@apache.org>.
[ http://issues.apache.org/jira/browse/AXIS2C-181?page=all ]
Nabeel Yoosuf reassigned AXIS2C-181:
------------------------------------
Assign To: Nabeel Yoosuf
> The engine segfaults when the msg ctx is free'ed
> ------------------------------------------------
>
> Key: AXIS2C-181
> URL: http://issues.apache.org/jira/browse/AXIS2C-181
> Project: Axis2-C
> Type: Bug
> Components: xml/parser
> Versions: 0.92
> Environment: All
> Reporter: Nabeel Yoosuf
> Assignee: Nabeel Yoosuf
> Fix For: 0.92
>
> The engine segfaults when the msg ctx is free'ed.
> this happens when freeing the following in sequence. msg_ctx->envelope->payload->reader. This scenario has not been seen so far since the payload was never built through the reader.
> Strack trace is attached.
> Program received signal SIGSEGV, Segmentation fault.
> 0x0021c72b in __gconv_close () from /lib/libc.so.6
> (gdb) bt
> #0 0x0021c72b in __gconv_close () from /lib/libc.so.6
> #1 0x0021bd48 in iconv_close () from /lib/libc.so.6
> #2 0x04963ead in xmlCharEncCloseFunc () from /usr/lib/libxml2.so.2
> #3 0x0498bc7a in xmlFreeParserInputBuffer () from /usr/lib/libxml2.so.2
> #4 0x049680da in xmlFreeInputStream () from /usr/lib/libxml2.so.2
> #5 0x04968639 in xmlFreeParserCtxt () from /usr/lib/libxml2.so.2
> #6 0x049fd46b in xmlFreeTextReader () from /usr/lib/libxml2.so.2
> #7 0x00c8336b in axis2_libxml2_reader_wrapper_free (parser=0x95f2f78, env=0x95ffbe8) at libxml2_reader_wrapper.c:552
> #8 0x001eff30 in axis2_om_stax_builder_free (builder=0x96185d0, env=0x95ffbe8) at om_stax_builder.c:815
> #9 0x001fc9b2 in axis2_soap_builder_free (builder=0x9611008, env=0x95ffbe8) at soap_builder.c:282
> #10 0x001fb376 in axis2_soap_envelope_free (envelope=0x9602170, env=0x95ffbe8) at soap_envelope.c:259
> #11 0x00652f6b in axis2_msg_ctx_free (msg_ctx=0x9610538, env=0x95ffbe8) at msg_ctx.c:693
> #12 0x0066a679 in axis2_http_worker_process_request (http_worker=0x95f2068, env=0x95ffbe8, svr_conn=0x9618650,
> simple_request=0x9610710) at http_worker.c:415
> #13 0x00adc61f in worker_func (thd=0x9618678, data=0x9618668) at http_svr_thread.c:309
> #14 0x0013fef0 in dummy_worker (opaque=0x9618678) at thread_unix.c:84
> #15 0x0011fb80 in start_thread () from /lib/libpthread.so.0
> #16 0x002d0dee in clone () from /lib/libc.so.6
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
---------------------------------------------------------------------
To unsubscribe, e-mail: axis-c-dev-unsubscribe@ws.apache.org
For additional commands, e-mail: axis-c-dev-help@ws.apache.org