Hi SEMS-devs,
we found a problem with the xmlrpc2di in our version of sems, which
likely also applies to sems master. The problem is that the xmlrpc
server is using select without checking, whether the selected fd
numbers are equal to or higher than FD_SETSIZE. If this is the case
select behaves badly and corrupts the stack.
We could reproduce this crash by posting many (>1024) xmlrpc-requests
concurrently with Apache Bench (ab).
We fixed it by replacing select with poll.
I looked into the xmlrpc2di code in sems master, which has changed, but
still contains the unchecked select call, however since it has changed,
I cannot provide a patch.
Kristen Eisenberg
Billige Flüge
Marketing GmbH
Emanuelstr. 3,
10317 Berlin
Deutschland
Telefon: +49 (33)
5310967
Email:
utebachmeier at
gmail.com
Site:
http://flug.airego.de
- Billige Flüge vergleichen
_______________________________________________
Semsdev mailing list
[email protected]
http://lists.iptel.org/mailman/listinfo/semsdev
