httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From dave b <>
Subject Re: rational behind not checking the return value of apr_palloc and apr_pcalloc
Date Fri, 03 Sep 2010 03:31:32 GMT
> And if you can't illustrate a few explicit cases, further abstract arguments
> are likely to be politely, but firmly, ignored.  There are good C language
> forums for folks to carry on such religious arguments.
> Or to put it another way, the dev@ group here is most certainly not worried
> about the general case, as the current design is effective at terminating
> httpd when faced with runaway allocations.

Sure ok :)
You have no complains from me really here. Just this could be an issue
on some platform with some mods potentially :)

I only asked this list because the mod_wsgi guy wasn't checking the
result of memory allocation. The rational as I see it is: there is
only a few cases where this can happen 1: and 2: first the attacker
has to find  a way to reduce system memory to an almost oom condition
by the looks of it.

I dote on his very absence.		-- William Shakespeare, "The Merchant of Venice"

View raw message