New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bad HTTP response causing 'double free detected in tcache 2' #11101
Comments
I'm able to reproduce this on git HEAD using your sample program. I would have expected this draft test case to show the problem as well, but |
For the record, reusing the handle is perfectly valid and this should not crash. |
N.B. I did find that |
The "prevhead" pointer is used for the headers storage but was not cleared correctly in init, which made it possible to act up when a handle is reused. Reported-by: Steve Herrell Fixes #11101
I made #11103 which at least for me stopped the bug from reproducing. |
Thanks for the quick response. #11103 fixed the issue for me. |
Reproduces the isue #11101 and verifies the fix.
Reproduces the isue #11101 and verifies the fix. Verifies a17b2a503f
I did this
I have an old device I need to support that returns badly formatted HTTP responses for certain requests. I noticed that if I reuse a handle I get a
SIGABRT
incurl_dbg_realloc
.I managed to reproduce it with the following code:
And using the following badly formed header:
Which I serve with
cat index.html | nc -l -C 12000
.The error I'm seeing is
And the back trace shows
A couple of things:
I expected the following
When I use a valid response I see the following:
curl/libcurl version
Note,
7.81.0
curl shows no such issue.operating system
Thanks for reading, if I haven't provided enough information let me know.
The text was updated successfully, but these errors were encountered: