Zsh Mailing List Archive Messages sorted by: Reverse Date, Date, Thread, Author

Re: Memory leak in math expression parser

X-seq: zsh-workers 53738
From: Peter Stephenson <p.w.stephenson@xxxxxxxxxxxx>
To: Ben Kallus <benjamin.p.kallus.gr@xxxxxxxxxxxxx>, zsh-workers@xxxxxxx
Subject: Re: Memory leak in math expression parser
Date: Fri, 6 Jun 2025 09:40:24 +0100 (BST)
Archived-at: <https://zsh.org/workers/53738>
Feedback-id: 20250606-p.w.stephenson@xxxxxxxxxxxx:oxsmtp-prd-nl-vmo:Authrelay:p.w.stephenson@xxxxxxxxxxxx
Importance: Normal
In-reply-to: <CAB6pCSZ+ygbMTDpREzmBci8XZitZ0jGribN4gpK0LTGzuqrtXA@mail.gmail.com>
List-id: <zsh-workers.zsh.org>
References: <CAB6pCSZ+ygbMTDpREzmBci8XZitZ0jGribN4gpK0LTGzuqrtXA@mail.gmail.com>

> On 06/06/2025 04:25 BST Ben Kallus <benjamin.p.kallus.gr@xxxxxxxxxxxxx> wrote:
> Zsh leaks 24 bytes when you run the following command:
> ```
> zsh -c '$((\(<< 0))'
> ```

Yes, that's real, thanks.  Valgrind pointed to assigning a here-document
structure --- this is in a special parse context for the $(...)
subcommand, and the structure isn't freed when that context is popped.

I believe it really is a question of discarding the context completely
at that point, so I think this should do it.

pws

diff --git a/Src/parse.c b/Src/parse.c
index 8edc701..4ce5a46 100644
--- a/Src/parse.c
+++ b/Src/parse.c
@@ -340,6 +340,7 @@ parse_context_restore(const struct parse_stack *ps, int toplevel)
     inrepeat_ = ps->inrepeat_;
     intypeset = ps->intypeset;

+    clear_hdocs();
     hdocs = ps->hdocs;
     eclen = ps->eclen;
     ecused = ps->ecused;
@@ -583,6 +584,7 @@ empty_eprog(Eprog p)
     return (!p || !p->prog || *p->prog == WCB_END());
 }

+/**/
 static void
 clear_hdocs(void)
 {

References:
- Memory leak in math expression parser
  - From: Ben Kallus

Messages sorted by: Reverse Date, Date, Thread, Author