diff options
author | Fabian Groffen <grobian@gentoo.org> | 2024-01-28 19:18:46 +0100 |
---|---|---|
committer | Fabian Groffen <grobian@gentoo.org> | 2024-01-28 19:20:00 +0100 |
commit | 662e4585eef68252845c897c989764dddd350141 (patch) | |
tree | a8d8dc38048e00b9d81b27e7523861e5fac5ebe5 /mail-mta | |
parent | dev-db/lmdb: QA: remove empty global assignment (diff) | |
download | gentoo-662e4585eef68252845c897c989764dddd350141.tar.gz gentoo-662e4585eef68252845c897c989764dddd350141.tar.bz2 gentoo-662e4585eef68252845c897c989764dddd350141.zip |
mail-mta/exim-4.97.1-r2: update upstream patches for pcre2 memory usage
Bug: https://bugs.gentoo.org/922780
Signed-off-by: Fabian Groffen <grobian@gentoo.org>
Diffstat (limited to 'mail-mta')
-rw-r--r-- | mail-mta/exim/exim-4.97.1-r2.ebuild (renamed from mail-mta/exim/exim-4.97.1-r1.ebuild) | 0 | ||||
-rw-r--r-- | mail-mta/exim/files/exim-4.97.1-memory-usage-bug-3047.patch | 210 |
2 files changed, 190 insertions, 20 deletions
diff --git a/mail-mta/exim/exim-4.97.1-r1.ebuild b/mail-mta/exim/exim-4.97.1-r2.ebuild index 8ac924524bb1..8ac924524bb1 100644 --- a/mail-mta/exim/exim-4.97.1-r1.ebuild +++ b/mail-mta/exim/exim-4.97.1-r2.ebuild diff --git a/mail-mta/exim/files/exim-4.97.1-memory-usage-bug-3047.patch b/mail-mta/exim/files/exim-4.97.1-memory-usage-bug-3047.patch index f141d08bb7b4..75e5d1a42781 100644 --- a/mail-mta/exim/files/exim-4.97.1-memory-usage-bug-3047.patch +++ b/mail-mta/exim/files/exim-4.97.1-memory-usage-bug-3047.patch @@ -1,36 +1,60 @@ -https://bugs.exim.org/show_bug.cgi?id=3047 -https://bugs.gentoo.org/922780 +From b4e7527561f1c68b821d5cf25efe29ae63d1d434 Mon Sep 17 00:00:00 2001 +From: Jeremy Harris <jgh146exb@wizmail.org> +Date: Thu, 25 Jan 2024 17:48:43 +0000 +Subject: [PATCH] Appendfile: release regex-match store every thousand files. + Bug 3047 -diff --git a/src/src/transports/appendfile.c b/src/src/transports/appendfile.c -index ec41ca035..91b353079 100644 ---- a/src/transports/appendfile.c -+++ b/src/transports/appendfile.c -@@ -153,6 +153,10 @@ static const char *mailbox_formats[] = { - (!ob->quota_warn_threshold_is_percent || ob->quota_value > 0)) +From 35aacb69f5c839a4b77158464e401d86eb422ed6 Mon Sep 17 00:00:00 2001 +From: Jeremy Harris <jgh146exb@wizmail.org> +Date: Fri, 26 Jan 2024 21:58:59 +0000 +Subject: [PATCH] ACL: in "regex" condition, release store every thousand + lines. Bug 3047 + + +diff --git a/src/src/exim.c b/src/src/exim.c +--- a/src/exim.c ++++ b/src/exim.c +@@ -49,6 +49,8 @@ optimize out the tail recursion and so not make them too expensive. */ + static void * + function_store_malloc(PCRE2_SIZE size, void * tag) + { ++if (size > INT_MAX) ++ log_write(0, LOG_MAIN|LOG_PANIC_DIE, "excessive memory alloc request"); + return store_malloc((int)size); + } +@@ -63,12 +65,15 @@ if (block) store_free(block); + static void * + function_store_get(PCRE2_SIZE size, void * tag) + { ++if (size > INT_MAX) ++ log_write(0, LOG_MAIN|LOG_PANIC_DIE, "excessive memory alloc request"); + return store_get((int)size, GET_UNTAINTED); /* loses track of taint */ + } + + static void + function_store_nullfree(void * block, void * tag) + { ++/* We cannot free memory allocated using store_get() */ + } -+/* Free memory allocated by PCRE2 every so often, because a recent version -+is now using 20kB for every match call */ -+ -+#define RESET_STORE_FILECNT 1000 - /************************************************* - * Setup entry point * +diff --git a/src/src/transports/appendfile.c b/src/src/transports/appendfile.c +--- a/src/transports/appendfile.c ++++ b/src/transports/appendfile.c @@ -661,13 +665,14 @@ Returns: the sum of the sizes of the stattable files off_t check_dir_size(const uschar * dirname, int * countptr, const pcre2_code * re) { --DIR *dir; -+DIR * dir; + DIR *dir; off_t sum = 0; -int count = *countptr; -+int count = *countptr, lcount = RESET_STORE_FILECNT; ++int count = *countptr, lcount = REGEX_LOOPCOUNT_STORE_RESET; +rmark reset_point = store_mark(); if (!(dir = exim_opendir(dirname))) return 0; --for (struct dirent *ent; ent = readdir(dir); ) -+for (struct dirent * ent; ent = readdir(dir); ) + for (struct dirent *ent; ent = readdir(dir); ) { uschar * path, * name = US ent->d_name; struct stat statbuf; @@ -41,7 +65,7 @@ index ec41ca035..91b353079 100644 + if (--lcount == 0) + { + store_reset(reset_point); reset_point = store_mark(); -+ lcount = RESET_STORE_FILECNT; ++ lcount = REGEX_LOOPCOUNT_STORE_RESET; + } /* If there's a regex, try to find the size using it */ @@ -54,3 +78,149 @@ index ec41ca035..91b353079 100644 *countptr = count; return sum; } +diff --git a/src/src/macros.h b/src/src/macros.h +--- a/src/macros.h ++++ b/src/macros.h +@@ -1185,4 +1185,9 @@ typedef enum { + sw_mrc_tx_fail, /* transmit failed */ + } sw_mrc_t; + ++/* Recent versions of PCRE2 are allocating 20kB per match, rather than the previous 112 B. ++When doing en extended loop of matching, release store periodically. */ ++ ++#define REGEX_LOOPCOUNT_STORE_RESET 1000 ++ + /* End of macros.h */ +diff --git a/src/src/regex.c b/src/src/regex.c +--- a/src/regex.c ++++ b/src/regex.c +@@ -31,12 +31,11 @@ extern uschar *mime_current_boundary; + + + static pcre_list * +-compile(const uschar * list, BOOL cacheable) ++compile(const uschar * list, BOOL cacheable, int * cntp) + { +-int sep = 0; ++int sep = 0, cnt = 0; + uschar * regex_string; +-pcre_list * re_list_head = NULL; +-pcre_list * ri; ++pcre_list * re_list_head = NULL, * ri; + + /* precompile our regexes */ + while ((regex_string = string_nextinlist(&list, &sep, NULL, 0))) +@@ -58,7 +57,9 @@ while ((regex_string = string_nextinlist(&list, &sep, NULL, 0))) + ri->pcre_text = regex_string; + ri->next = re_list_head; + re_list_head = ri; ++ cnt++; + } ++if (cntp) *cntp = cnt; + return re_list_head; + } + +@@ -112,7 +113,8 @@ FILE * mbox_file; + pcre_list * re_list_head; + uschar * linebuffer; + long f_pos = 0; +-int ret = FAIL; ++int ret = FAIL, cnt, lcount = REGEX_LOOPCOUNT_STORE_RESET; ++rmark reset_point; + + regex_vars_clear(); + +@@ -136,26 +138,34 @@ else + mbox_file = mime_stream; + } + +-/* precompile our regexes */ +-if (!(re_list_head = compile(*listptr, cacheable))) +- return FAIL; /* no regexes -> nothing to do */ +- +-/* match each line against all regexes */ +-linebuffer = store_get(32767, GET_TAINTED); +-while (fgets(CS linebuffer, 32767, mbox_file)) ++reset_point = store_mark(); + { +- if ( mime_stream && mime_current_boundary /* check boundary */ +- && Ustrncmp(linebuffer, "--", 2) == 0 +- && Ustrncmp((linebuffer+2), mime_current_boundary, +- Ustrlen(mime_current_boundary)) == 0) +- break; /* found boundary */ +- +- if ((ret = matcher(re_list_head, linebuffer, (int)Ustrlen(linebuffer))) == OK) +- goto done; ++ /* precompile our regexes */ ++ if ((re_list_head = compile(*listptr, cacheable, &cnt))) ++ { ++ /* match each line against all regexes */ ++ linebuffer = store_get(32767, GET_TAINTED); ++ while (fgets(CS linebuffer, 32767, mbox_file)) ++ { ++ if ( mime_stream && mime_current_boundary /* check boundary */ ++ && Ustrncmp(linebuffer, "--", 2) == 0 ++ && Ustrncmp((linebuffer+2), mime_current_boundary, ++ Ustrlen(mime_current_boundary)) == 0) ++ break; /* found boundary */ ++ ++ if ((ret = matcher(re_list_head, linebuffer, (int)Ustrlen(linebuffer))) == OK) ++ break; ++ ++ if ((lcount -= cnt) <= 0) ++ { ++ store_reset(reset_point); reset_point = store_mark(); ++ lcount = REGEX_LOOPCOUNT_STORE_RESET; ++ } ++ } ++ } + } +-/* no matches ... */ ++store_reset(reset_point); + +-done: + if (!mime_stream) + (void)fclose(mbox_file); + else +@@ -180,14 +190,11 @@ pcre_list * re_list_head = NULL; + FILE * f; + uschar * mime_subject = NULL; + int mime_subject_len = 0; +-int ret; ++int ret = FAIL; ++rmark reset_point; + + regex_vars_clear(); + +-/* precompile our regexes */ +-if (!(re_list_head = compile(*listptr, cacheable))) +- return FAIL; /* no regexes -> nothing to do */ +- + /* check if the file is already decoded */ + if (!mime_decoded_filename) + { /* no, decode it first */ +@@ -210,12 +217,20 @@ if (!(f = fopen(CS mime_decoded_filename, "rb"))) + return DEFER; + } + +-/* get 32k memory, tainted */ +-mime_subject = store_get(32767, GET_TAINTED); ++reset_point = store_mark(); ++ { ++ /* precompile our regexes */ ++ if ((re_list_head = compile(*listptr, cacheable, NULL))) ++ { ++ /* get 32k memory, tainted */ ++ mime_subject = store_get(32767, GET_TAINTED); + +-mime_subject_len = fread(mime_subject, 1, 32766, f); ++ mime_subject_len = fread(mime_subject, 1, 32766, f); + +-ret = matcher(re_list_head, mime_subject, mime_subject_len); ++ ret = matcher(re_list_head, mime_subject, mime_subject_len); ++ } ++ } ++store_reset(reset_point); + (void)fclose(f); + return ret; + } |