[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#7237) Crash abandoning freed/unused operation

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#7237) Crash abandoning freed/unused operation
From: h.b.furuseth@usit.uio.no
Date: Mon, 9 Apr 2012 09:28:48 GMT
Auto-submitted: auto-generated (OpenLDAP-ITS)

 On Sun, 8 Apr 2012 00:49:28 GMT, h.b.furuseth@usit.uio.no wrote:
> './run -b ldif test045-syncreplication-proxied' crashed
> in connection_abandon() with LDAP_MEMORY_DEBUG:
> It dereferenced o_hdr which is NULL in the uninitialized or
> freed op 'o'.  (op 'o' is full of 0xFF bytes, which I
> assume is the poiosin from liblber/memory.c.)

 Reproduced with bdb.  It's a freed op sitting in the
 c->c_ops list when entering connection_abandon().
 (Checked my modifying the "poison" in liblber and
 inspecting the list before the be_abandon loop.)
 Not reproduced under valgrind so far.

-- 
 Hallvard

Prev by Date: Re: (ITS#7238) Multiple txns in same thread break mdb
Next by Date: Re: (ITS#7238) Multiple txns in same thread break mdb
Index(es):
- Chronological
- Thread