nginx.git/src, branch release-1.6.3 nginx Overflow detection in ngx_http_parse_chunked(). 2015-03-16T21:26:27+00:00 Ruslan Ermilov ru@nginx.com 2015-03-16T21:26:27+00:00 405b7f34297989a8790943797ca61a68baacc206 






Overflow detection in ngx_http_range_parse().
2015-03-16T21:26:24+00:00

Ruslan Ermilov
ru@nginx.com

2015-03-16T21:26:24+00:00

dabbd1f6a63778269ae3e007fa905daa009f1d0e












Overflow detection in ngx_inet_addr().
2015-03-16T21:26:22+00:00

Ruslan Ermilov
ru@nginx.com

2015-03-16T21:26:22+00:00

166a3a13a497c7218d052a7fae4a9a5456268575












Core: overflow detection in ngx_parse_time() (ticket #732).
2015-03-16T21:26:20+00:00

Ruslan Ermilov
ru@nginx.com

2015-03-16T21:26:20+00:00

7523e71888d3f2b62e4752c8b7df7c554ae679f6












Refactored ngx_parse_time().
2015-03-16T21:26:18+00:00

Ruslan Ermilov
ru@nginx.com

2015-03-16T21:26:18+00:00

ea13aadd303ed8afa404e1aff0b2f33aad79c1a8

No functional changes.





No functional changes.







Core: overflow detection in number parsing functions.
2015-03-16T21:26:15+00:00

Ruslan Ermilov
ru@nginx.com

2015-03-16T21:26:15+00:00

d5d9d7092087a434c75dc034148bd3b5d862da84












Core: expose maximum values of time_t and ngx_int_t.
2015-03-16T21:24:34+00:00

Ruslan Ermilov
ru@nginx.com

2015-03-16T21:24:34+00:00

44a2b97bd2773dc679ebce32eaf3c6f4f665f36c

These are needed to detect overflows.





These are needed to detect overflows.







Core: fixed potential buffer overrun when initializing hash.
2015-02-24T15:37:14+00:00

Maxim Dounin
mdounin@mdounin.ru

2015-02-24T15:37:14+00:00

0071fbb9e6685b76a4865f460cb674020dfdf8ec

Initial size as calculated from the number of elements may be bigger
than max_size.  If this happens, make sure to set size to max_size.

Reported by Chris West.





Initial size as calculated from the number of elements may be bigger
than max_size.  If this happens, make sure to set size to max_size.

Reported by Chris West.







Core: fixed a race resulting in extra sem_post()'s.
2015-02-04T13:22:43+00:00

Roman Arutyunyan
arut@nginx.com

2015-02-04T13:22:43+00:00

06d72320ff5d5cd717b576920bc27c3e26329774

The mtx->wait counter was not decremented if we were able to obtain the lock
right after incrementing it.  This resulted in unneeded sem_post() calls,
eventually leading to EOVERFLOW errors being logged, "sem_post() failed
while wake shmtx (75: Value too large for defined data type)".

To close the race, mtx->wait is now decremented if we obtain the lock right
after incrementing it in ngx_shmtx_lock().  The result can become -1 if a
concurrent ngx_shmtx_unlock() decrements mtx->wait before the added code does.
However, that only leads to one extra iteration in the next call of
ngx_shmtx_lock().





The mtx->wait counter was not decremented if we were able to obtain the lock
right after incrementing it.  This resulted in unneeded sem_post() calls,
eventually leading to EOVERFLOW errors being logged, "sem_post() failed
while wake shmtx (75: Value too large for defined data type)".

To close the race, mtx->wait is now decremented if we obtain the lock right
after incrementing it in ngx_shmtx_lock().  The result can become -1 if a
concurrent ngx_shmtx_unlock() decrements mtx->wait before the added code does.
However, that only leads to one extra iteration in the next call of
ngx_shmtx_lock().







Fixed post_action to not trigger "header already sent" alert.
2014-11-28T13:57:50+00:00

Maxim Dounin
mdounin@mdounin.ru

2014-11-28T13:57:50+00:00

cb451bd6a46dd4b3053bc4ec2f667d4970c41665

The alert was introduced in 03ff14058272 (1.5.4), and was triggered on each
post_action invocation.

There is no real need to call header filters in case of post_action,
so return NGX_OK from ngx_http_send_header() if r->post_action is set.





The alert was introduced in 03ff14058272 (1.5.4), and was triggered on each
post_action invocation.

There is no real need to call header filters in case of post_action,
so return NGX_OK from ngx_http_send_header() if r->post_action is set.