nginx: Bug Report: ngx_palloc.c:ngx_reset

nginx: Bug Report: ngx_palloc.c:ngx_reset_pool" --- nginx-0.8.35/src/core/ngx_palloc.c 2009-12-17 04:25:46.000000000 -0800 +++ nginx-0.8.35.fixed/src/core/ngx_palloc.c 2010-04-18 19:28:43.680353209 -0700 @@ -105,9 +105,10 @@ } pool->large = NULL; + pool->d.last = (u_char *) pool + sizeof(ngx_pool_t); - for (p = pool; p; p = p->d.next) { - p->d.last = (u_char *) p + sizeof(ngx_pool_t); + for (p = pool->d.next; p; p = p->d.next) { + p->d.last = (u_char *) p + sizeof(ngx_pool_data_t); } } This is my first time bug reporting so please be careful reading this bug report. Only the first pool in the linked list uses ngx_pool_t, the others use ngx_pool_data_t. The problem is when the pools resets through ngx_reset_pool it resets all pools d->last to pool + sizeof(ngx_pool_t) and therefore creating an unsued memory chunk through further allocations. The program should reset d->last of the first pool to pool + sizeof(ngx_pool_t) and the rest to pool + sizeof(ngx_pool_data_t). Best regards, Fredrik Yhlen _______________________________________________ nginx-devel mailing list nginx-devel@nginx.org http://nginx.org/mailman/listinfo/nginx-develhttp://forum.nginx.org/read.php?29,98287,98287#msg-98287Wed, 19 Jun 2013 14:17:11 -0400 Phorum 5.2.16 http://forum.nginx.org/read.php?29,98287,98287#msg-98287 nginx: Bug Report: ngx_palloc.c:ngx_reset_pool"http://forum.nginx.org/read.php?29,98287,98287#msg-98287-0800
+++ nginx-0.8.35.fixed/src/core/ngx_palloc.c 2010-04-18
19:28:43.680353209 -0700
@@ -105,9 +105,10 @@
}

pool->large = NULL;
+ pool->d.last = (u_char *) pool + sizeof(ngx_pool_t);

- for (p = pool; p; p = p->d.next) {
- p->d.last = (u_char *) p + sizeof(ngx_pool_t);
+ for (p = pool->d.next; p; p = p->d.next) {
+ p->d.last = (u_char *) p + sizeof(ngx_pool_data_t);
}
}

This is my first time bug reporting so please be careful reading this bug
report.

Only the first pool in the linked list uses ngx_pool_t, the others use
ngx_pool_data_t.
The problem is when the pools resets through ngx_reset_pool it resets all
pools d->last to pool + sizeof(ngx_pool_t) and therefore creating
an unsued memory chunk through further allocations.

The program should reset d->last of the first pool to pool +
sizeof(ngx_pool_t) and the rest to pool + sizeof(ngx_pool_data_t).

Best regards, Fredrik Yhlen
_______________________________________________
nginx-devel mailing list
nginx-devel@nginx.org
http://nginx.org/mailman/listinfo/nginx-devel]]> kanelglass Nginx DevelopmentTue, 15 Jun 2010 01:44:01 -0400