https://issues.apache.org/bugzilla/show_bug.cgi?id=51590
Bug #: 51590
Summary: The DEFLATE output filter loops infinitely if the
first brigade it gets contains only a flush bucket
Product: Apache httpd-2
Version: 2.3-HEAD
Platform: PC
OS/Version: Linux
Status: NEW
Severity: normal
Priority: P2
Component: mod_deflate
AssignedTo: [email protected]
ReportedBy: [email protected]
Classification: Unclassified
Created attachment 27332
--> https://issues.apache.org/bugzilla/attachment.cgi?id=27332
a fix
The DEFLATE output filter contains this piece of code (as of server magic
number 20110724)
if (!ctx) {
char *token;
const char *encoding;
/* Delay initialization until we have seen some data */
e = APR_BRIGADE_FIRST(bb);
while (1) {
apr_status_t rc;
if (e == APR_BRIGADE_SENTINEL(bb))
return ap_pass_brigade(f->next, bb);
if (APR_BUCKET_IS_EOS(e)) {
ap_remove_output_filter(f);
return ap_pass_brigade(f->next, bb);
}
if (APR_BUCKET_IS_METADATA(e))
continue;
If there is no filter context yet and the passed brigade contains only a
metadata bucket (a flush bucket for example) the "continue" statement is hit
without changing "e". Hence, it enters an infinite loop.
The last "if" statement should read as follows to fix the problem:
if (APR_BUCKET_IS_METADATA(e)) {
e = APR_BUCKET_NEXT(e);
continue;
}
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
