You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by bu...@apache.org on 2002/08/02 16:36:08 UTC

DO NOT REPLY [Bug 11417] New: - Coyote HTTP connector livelocks (possible DOS vulnerability)

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=11417>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=11417

Coyote HTTP connector livelocks (possible DOS vulnerability)

           Summary: Coyote HTTP connector livelocks (possible DOS
                    vulnerability)
           Product: Tomcat 4
           Version: 4.0.4 Final
          Platform: PC
        OS/Version: Other
            Status: NEW
          Severity: Normal
          Priority: Other
         Component: Connector:Coyote HTTP/1.1
        AssignedTo: tomcat-dev@jakarta.apache.org
        ReportedBy: amund.elstad@ergo.no


Using Coyote behind Apache's 2.0.39 mod_proxy, I have experienced a livelock in 
Tomcat.

I created a stacktrace with jdb of the looping thread and it appears to be 
stuck inside Coyote (Apache is not doing anything). 

Coyote was built from CVS 11/7. It does not appear to be any commits that could 
have solved the problem since then. 

Stacktrace:

 [1] org.apache.coyote.http11.InternalInputBuffer.fill 
(InternalInputBuffer.java:777)
 [2] org.apache.coyote.http11.InternalInputBuffer$InputStreamInputBuffer.doRead 
(InternalInputBuffer.java:807)
 [3] org.apache.coyote.http11.filters.IdentityInputFilter.end 
(IdentityInputFilter.java:203)
 [4] org.apache.coyote.http11.InternalInputBuffer.endRequest 
(InternalInputBuffer.java:398)
 [5] org.apache.coyote.http11.Http11Processor.process (Http11Processor.java:418)
 [6] 
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnectio
n (Http11Protocol.java:380)
 [7] org.apache.tomcat.util.net.TcpWorkerThread.runIt (PoolTcpEndpoint.java:508)
 [8] org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run 
(ThreadPool.java:518)
 [9] java.lang.Thread.run (Thread.java:536)

--
To unsubscribe, e-mail:   <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>