Summary

Hangs in Netatalk which causes it to stop responding to connections. The master afpd process gets stuck in a poll loop, being repeatedly notified that there are connections on its socket, but never actually doesn anything with them.

Analysis

Analysis with gdb revealed that the dat astructure dealing with the main AFP socket and the IPC client sockets was smashed. This could happen because the function fdset_add_fd() doesn't do bound checking itself but relied on other parts of the code that enforce a connection limit.

Unfortunately, for low-level AFP connections that don't result in a full AFP login these checks come too late resulting in a buffer overflow.

Fix

Add a bound check. While we're at it, rewrite the fdset code to use a full blown data structure encapsultating the implementation details.

Discussion

Ralph Böhme - 2014-07-10

Fixed for 3.1.4 in [e9391ff790167e35ff92adc20d4779f1d9d651aa].

Related

Commit: [e9391f]

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Ralph Böhme - 2014-07-10

status: open --> closed

Group: -->
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Hangs in Netatalk which causes it to stop responding to connections

Group

Searches

Help

#572 Hangs in Netatalk which causes it to stop responding to connections

Summary

Analysis

Fix

Discussion

Related