kenmirrors/asterisk
1
0
Fork 0
mirror of https://github.com/asterisk/asterisk.git synced 2025-10-02 10:22:46 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fix unintential memory retention in stringfields.

Browse Source 
* Fix missing / unreachable calls to __ast_string_field_release_active.
* Reset pool->used to zero when the current pool->active reaches zero.

ASTERISK-24307 #close
Reported by: Etienne Lessard
Tested by: ibercom, Etienne Lessard
Review: https://reviewboard.asterisk.org/r/4114/
........

Merged revisions 427380 from http://svn.asterisk.org/svn/asterisk/branches/1.8
........

Merged revisions 427381 from http://svn.asterisk.org/svn/asterisk/branches/11
........

Merged revisions 427382 from http://svn.asterisk.org/svn/asterisk/branches/12


git-svn-id: https://origsvn.digium.com/svn/asterisk/branches/13@427384 65c4cc65-6c06-0410-ace0-fbb531ad65f3
This commit is contained in:
Corey Farrell
2014-11-06 09:17:50 +00:00
parent c056506d84
commit 433366ab90
2 changed files with 34 additions and 23 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
include/asterisk/stringfields.h
View File

@@ -322,14 +322,16 @@ void __ast_string_field_release_active(struct ast_string_field_pool *pool_head,
const char *__d__ = (data); \ const char *__d__ = (data); \
size_t __dlen__ = (__d__) ? strlen(__d__) + 1 : 1; \ size_t __dlen__ = (__d__) ? strlen(__d__) + 1 : 1; \
ast_string_field *__p__ = (ast_string_field *) (ptr); \ ast_string_field *__p__ = (ast_string_field *) (ptr); \
ast_string_field target = *__p__; \
if (__dlen__ == 1) { \ if (__dlen__ == 1) { \
__ast_string_field_release_active(field_mgr_pool, *__p__); \ __ast_string_field_release_active(field_mgr_pool, *__p__); \
*__p__ = __ast_string_field_empty; \ *__p__ = __ast_string_field_empty; \
} else if ((__dlen__ <= AST_STRING_FIELD_ALLOCATION(*__p__)) || \ } else if ((__dlen__ <= AST_STRING_FIELD_ALLOCATION(*__p__)) || \
(!__ast_string_field_ptr_grow(&field_mgr, &field_mgr_pool, __dlen__, __p__)) || \ (!__ast_string_field_ptr_grow(&field_mgr, &field_mgr_pool, __dlen__, __p__)) || \
(*__p__ = __ast_string_field_alloc_space(&field_mgr, &field_mgr_pool, __dlen__))) { \ (target = __ast_string_field_alloc_space(&field_mgr, &field_mgr_pool, __dlen__))) { \
if (*__p__ != (*ptr)) { \ if (target != *__p__) { \
__ast_string_field_release_active(field_mgr_pool, (*ptr)); \ __ast_string_field_release_active(field_mgr_pool, *__p__); \
*__p__ = target; \
} \ } \
memcpy(* (void **) __p__, __d__, __dlen__); \ memcpy(* (void **) __p__, __d__, __dlen__); \
} else { \ } else { \

11
main/utils.c
View File

@@ -2099,9 +2099,13 @@ void __ast_string_field_release_active(struct ast_string_field_pool *pool_head,
for (pool = pool_head, prev = NULL; pool; prev = pool, pool = pool->prev) { for (pool = pool_head, prev = NULL; pool; prev = pool, pool = pool->prev) {
if ((ptr >= pool->base) && (ptr <= (pool->base + pool->size))) { if ((ptr >= pool->base) && (ptr <= (pool->base + pool->size))) {
pool->active -= AST_STRING_FIELD_ALLOCATION(ptr); pool->active -= AST_STRING_FIELD_ALLOCATION(ptr);
if ((pool->active == 0) && prev) { if (pool->active == 0) {
if (prev) {
prev->prev = pool->prev; prev->prev = pool->prev;
ast_free(pool); ast_free(pool);
} else {
pool->used = 0;
}
} }
break; break;
} }
@@ -2150,6 +2154,11 @@ void __ast_string_field_ptr_build_va(struct ast_string_field_mgr *mgr,
/* Are we out of memory? */ /* Are we out of memory? */
return; return;
} }
if (res == 0) {
__ast_string_field_release_active(*pool_head, *ptr);
*ptr = __ast_string_field_empty;
return;
}
needed = (size_t)res + 1; /* NUL byte */ needed = (size_t)res + 1; /* NUL byte */
if (needed > available) { if (needed > available) {