You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@qpid.apache.org by "ASF subversion and git services (JIRA)" <ji...@apache.org> on 2018/05/13 00:55:00 UTC

[jira] [Commented] (PROTON-1773) Access after free in pn_proactor_disconnect

    [ https://issues.apache.org/jira/browse/PROTON-1773?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16473320#comment-16473320 ] 

ASF subversion and git services commented on PROTON-1773:
---------------------------------------------------------

Commit cd2783fae628cec6b789bf03c5b173ad933d50f1 in qpid-proton's branch refs/heads/master from Clifford Jansen
[ https://git-wip-us.apache.org/repos/asf?p=qpid-proton.git;h=cd2783f ]

PROTON-1844: Windows proactor memory corruption fix (from epoll fix PROTON-1773)


> Access after free in pn_proactor_disconnect
> -------------------------------------------
>
>                 Key: PROTON-1773
>                 URL: https://issues.apache.org/jira/browse/PROTON-1773
>             Project: Qpid Proton
>          Issue Type: Bug
>          Components: cpp-binding, proton-c
>    Affects Versions: proton-c-0.21.0
>            Reporter: Andrew Stitcher
>            Assignee: Alan Conway
>            Priority: Blocker
>             Fix For: proton-c-0.21.0
>
>
> The fix for PROTON-1734 may have caused a sporadic access after free problem detected in one of the new tests in cpp-container_test.
> {noformat}
> 10: TEST: test_container_mt_stop()
> 10: ==11269== Invalid read of size 8
> 10: ==11269==    at 0x59772E4: pn_proactor_disconnect (epoll.c:2128)
> 10: ==11269==    by 0x4E6156F: proton::container::impl::stop(proton::error_condition const&) (proactor_container_impl.cpp:763)
> 10: ==11269==    by 0x4E5F2D8: proton::container::stop() (container.cpp:80)
> 10: ==11269==    by 0x409ED4: (anonymous namespace)::test_container_mt_stop() (container_test.cpp:344)
> 10: ==11269==    by 0x404811: main (container_test.cpp:368)
> 10: ==11269==  Address 0x6e27748 is 1,256 bytes inside a block of size 1,808 free'd
> 10: ==11269==    at 0x4C2BDEC: free (in /usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
> 10: ==11269==    by 0x5975221: pconnection_process (epoll.c:1174)
> 10: ==11269==    by 0x5975C3E: process_inbound_wake (epoll.c:1962)
> 10: ==11269==    by 0x5975C3E: proactor_do_epoll (epoll.c:1999)
> 10: ==11269==    by 0x4E6336B: proton::container::impl::thread() (proactor_container_impl.cpp:670)
> 10: ==11269==    by 0x4E639A3: proton::container::impl::run(int) (proactor_container_impl.cpp:721)
> 10: ==11269==    by 0x513EA5F: ??? (in /usr/lib/x86_64-linux-gnu/libstdc++.so.6.0.19)
> 10: ==11269==    by 0x60C3183: start_thread (pthread_create.c:312)
> 10: ==11269==    by 0x56A503C: clone (clone.S:111)
> 10: ==11269== 
> 10/46 Test #10: cpp-container_test ...............***Failed    2.53 sec
> {noformat}



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org