We cannot simply `release_sample_expr(rule->arg.vars.expr)` for a
`struct act_rule`, because `rule->arg` is a union that might not
contain valid `vars`. This leads to a crash on a configuration using
`http-request redirect` and possibly others:
frontend http
mode http
bind 127.0.0.1:80
http-request redirect scheme https
Instead a `struct act_rule` has a `release_ptr` that must be used
to properly free any additional storage allocated.
This patch fixes a regression in commit
ff78fcdd7f15c8626c7e70add7a935221ee2920c.
It must be backported to whereever that patch is backported.
It has be verified that the configuration above no longer crashes.
It has also been verified that the configuration in
ff78fcdd7f15c8626c7e70add7a935221ee2920c
does not leak.
list_for_each_entry_safe(rule, ruleb, rules, list) {
LIST_DEL(&rule->list);
deinit_acl_cond(rule->cond);
- release_sample_expr(rule->arg.vars.expr);
if (rule->release_ptr)
rule->release_ptr(rule);
free(rule);
return ACT_RET_CONT;
}
+static void release_store_rule(struct act_rule *rule)
+{
+ release_sample_expr(rule->arg.vars.expr);
+}
+
/* This two function checks the variable name and replace the
* configuration string name by the global string name. its
* the same string, but the global pointer can be easy to
if (!set_var) {
rule->action = ACT_CUSTOM;
rule->action_ptr = action_clear;
+ rule->release_ptr = release_store_rule;
return ACT_RET_PRS_OK;
}
rule->action = ACT_CUSTOM;
rule->action_ptr = action_store;
+ rule->release_ptr = release_store_rule;
return ACT_RET_PRS_OK;
}
projects / thirdparty / haproxy.git / commitdiff
