Mercurial > hg > webserver / changeset

changeset

fix user-after-free in case evt_add_request/ev_pollin fails

Wed, 29 Oct 2025 16:51:36 +0100

author
Olaf Wintermann <olaf.wintermann@gmail.com>
date
Wed, 29 Oct 2025 16:51:36 +0100
changeset 616
7a0a364a1d67
parent 615
1ffc6fce045d
child 617
01228719b3ce

fix user-after-free in case evt_add_request/ev_pollin fails

configure file | annotate | diff | comparison | revisions
make/project.xml file | annotate | diff | comparison | revisions
src/server/daemon/sessionhandler.c file | annotate | diff | comparison | revisions 
--- a/configure	Sun Oct 26 15:31:50 2025 +0100
+++ b/configure	Wed Oct 29 16:51:36 2025 +0100
@@ -151,9 +151,8 @@
 # custom variables
 if true \
       ; then
-    HOST=`uname -n`
-    PREFIX="`pwd`/work"
-    INSTALL_DIR="$PREFIX"
+    host=`uname -n`
+    prefix="`pwd`/work"
 fi
 
 # features
@@ -536,6 +535,19 @@
     done
     break
 done
+while true
+do
+    while true
+    do
+
+        cat >> "$TEMP_DIR/make.mk" << __EOF__
+HOST = $host
+INSTALL_DIR = $prefix
+__EOF__
+        break
+    done
+    break
+done
 
 # build type
 if [ "$BUILD_TYPE" = "debug" ]; then
--- a/make/project.xml	Sun Oct 26 15:31:50 2025 +0100
+++ b/make/project.xml	Wed Oct 29 16:51:36 2025 +0100
@@ -2,9 +2,8 @@
 <project version="0.3" xmlns="http://unixwork.de/uwproj">
 	<!-- makefile config -->
 	<config>
-		<var name="HOST" exec="true">uname -n</var>
-		<var name="PREFIX">`pwd`/work</var>
-		<var name="INSTALL_DIR">$PREFIX</var>
+		<var name="host" exec="true">uname -n</var>
+		<var name="prefix">`pwd`/work</var>
 	</config>
 	
 	<dependency>
@@ -79,6 +78,11 @@
 APP_EXT =
 		</make>
 	</dependency>
+	
+	<dependency>
+		<make>HOST = $host</make>
+		<make>INSTALL_DIR = $prefix</make>
+	</dependency>
 
 	<!-- library dependencies -->
 	<dependency name="libxml2">
--- a/src/server/daemon/sessionhandler.c	Sun Oct 26 15:31:50 2025 +0100
+++ b/src/server/daemon/sessionhandler.c	Wed Oct 29 16:51:36 2025 +0100
@@ -246,7 +246,7 @@
     if(ev_pollin(h, conn->fd, io->io_event) != 0) {
         // TODO: ev_pollin should log, intercept some errors here
         log_ereport(LOG_FAILURE, "Cannot enqueue connection");
-        evt_request_error(h, event);
+        event->finish = evt_request_error;
     } else {
         // add request timeout
         io->watch.intdata = 1;
@@ -579,7 +579,7 @@
     http_parser_free(parser);
     
     free(io);
-    free(event);
+    free(event); // TODO: is this safe??
     log_ereport(LOG_DEBUG, "trace reqid: %016llx free event", (unsigned long long int)reqid);
     
     return 0;

Mercurial Repository: webserver

mercurial