Return-Path: Delivered-To: apmail-httpd-dev-archive@httpd.apache.org Received: (qmail 82260 invoked by uid 500); 1 Nov 2001 20:46:59 -0000 Mailing-List: contact dev-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: dev@httpd.apache.org list-help: list-unsubscribe: list-post: Delivered-To: mailing list dev@httpd.apache.org Received: (qmail 82247 invoked from network); 1 Nov 2001 20:46:58 -0000 Content-Type: text/plain; charset="iso-8859-1" From: Ryan Bloom Reply-To: rbb@covalent.net Organization: Covalent Technologies To: dev@httpd.apache.org, Cliff Woolley Subject: Re: chunked input core dump on daedalus Date: Thu, 1 Nov 2001 12:49:07 -0800 X-Mailer: KMail [version 1.3] References: In-Reply-To: MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-Id: <20011101204908.E596E46DFC@koj.rkbloom.net> X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N On Thursday 01 November 2001 12:45 pm, Cliff Woolley wrote: > On Thu, 1 Nov 2001, Greg Ames wrote: > > Our magic overloaded mode field: > > > > (gdb) p *readbytes > > $12 = -3 > > > > core_input_filter thinks this means "read a block, no more than -3 > > long", and ends up trying to partition at offset -3. I believe the > > whole thing was looping, possibly driven by ap_get_client_block, until > > we run out of memory and seg fault. > > It'd be nice if it were checking the return value from > apr_brigade_partition(), which returns APR_EINVAL if given a negative > offset... besides, you never know when _partition() might get a failure > when trying to read a bucket for some reason. ++1 Ryan ______________________________________________________________ Ryan Bloom rbb@apache.org Covalent Technologies rbb@covalent.net --------------------------------------------------------------