Boost C++ Libraries: Ticket #6561: pool.free() crashes if given a null pointer

component changed; owner set

anonymous — Fri, 24 Feb 2012 17:51:54 GMT

owner set to Chris Newbold
component None → pool

owner, status changed

edupuis — Thu, 03 May 2012 16:48:15 GMT

owner changed from Chris Newbold to edupuis
status new → assigned

status changed; resolution set

edupuis — Thu, 03 May 2012 18:53:13 GMT

status assigned → closed
resolution → fixed

(In [78317]) Pool no longer crashes when freeing a null pointer. This is somewhat like the free() function and the delete operator and fixes #6561.

status changed; resolution deleted

edupuis — Mon, 21 May 2012 05:59:51 GMT

status closed → reopened
resolution fixed

owner, status, type changed

edupuis — Mon, 16 Jul 2012 20:01:25 GMT

owner changed from edupuis to John Maddock
status reopened → new
type Feature Requests → Bugs

https://svn.boost.org/svn/boost/sandbox/pool at revision 79460 contains a solution for tickets #3789, #5902, #6561, #6610, #6701, #6718, #6865 and #6867. Related test cases are also present.

https://svn.boost.org/svn/boost/sandbox/pool at revision 79460 does not contain any other new features or modifications other than those related to the above tickets.

Boost.Pool currently has no maintainer and is thus orphaned.

James E. King, III — Sat, 12 May 2018 21:30:05 GMT

I can confirm this is still an issue in 1.67.0:

boost@ee79ac718c30:/boost/libs/pool/test$ cat test_bug_6561.cpp
/* Copyright (C) 2018 James E. King III
*
* Use, modification and distribution is subject to the
* Boost Software License, Version 1.0. (See accompanying
* file LICENSE_1_0.txt or http://www.boost.org/LICENSE_1_0.txt)
*/
// Test of bug #6561 (https://svn.boost.org/trac/boost/ticket/6561)
#include <boost/assert.hpp>
#include <boost/pool/simple_segregated_storage.hpp>
#include <boost/smart_ptr/scoped_ptr.hpp>
int main()
{
    boost::simple_segregated_storage<std::size_t> storage;
    storage.free(0);
    return 0;
}

That will produce a segfault.