https://bz.apache.org/bugzilla/show_bug.cgi?id=61228
Alex CHEN <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |WORKSFORME Status|NEW |RESOLVED --- Comment #2 from Alex CHEN <[email protected]> --- (In reply to Yann Ylavic from comment #1) > As their name suggests, "transient" buckets can point to stack memory, where > the creator of such buckets is responsible for the scope. > > In this case, the transient bucket 'e' will be either setaside (moved to > heap memory) by subsequent filters in ap_pass_brigade(), or cleaned up with > its brigade 'b' before the end of the function. > > So it won't "leak" (hence be accessed) outside the function, AFAICT. I see, `apr_brigade_cleanup` unlinks all 'e' from their brigade, b cannot reference its 'e' (e->data, stack memory) anymore (since the destroy callback of `apr_bucket_type_transient` is a empty function, but the unlinking from b will do the job). Really thanks for your concerns and clarification @Ylavic -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
