On Tue, May 12, 2015 at 05:34:58PM -0400, Bertrand PROVOST wrote:
> I found a crash in relayd when using http relay. `bev` pointer is
> used after a free in `relay_http.c` lines: 438, 492 and 609
Thanks for the bug report and analysis. I have added test cases
in /usr/src/regress/usr.sbin/relayd/
Hi,
thanks. I'll have a look at it, I would be happy if this provides a
way to get rid of calling the bev->readcb callbacks again.
Reyk
On Tue, May 12, 2015 at 05:34:58PM -0400, Bertrand PROVOST wrote:
> Hi,
>
> I found a crash in relayd when using http relay. `bev` pointer is
> used after a f
Apparently Google remove tabulations when I copy/paste the patch.
Please download attachment to gets patch with tabulations.
--
Bertrand PROVOST
Index: http.h
===
RCS file: /cvs/src/usr.sbin/relayd/http.h,v
retrieving revision 1.5
d
Hi,
I found a crash in relayd when using http relay. `bev` pointer is
used after a free in `relay_http.c` lines: 438, 492 and 609
In `relay_http.c` there is 3 functions, used as read callback for
libevent buffer:
* `relay_read_http`: parse http headers
* `relay_read_httpcontent`: parse simple h
