[sr-dev] [kamailio/kamailio] Crashes on handling of BYE with 5.3.0 (#2121)

Nathan Whitehorn notifications at github.com
Wed Nov 6 04:43:54 CET 2019


Here is the actual backtrace, after ~ half a week this time:

```
(lldb) bt
* thread #1, name = 'kamailio', stop reason = signal SIGABRT
  * frame #0: 0x0000000800a8645a libc.so.7`_thr_kill + 10
    frame #1: 0x0000000800a84844 libc.so.7`_raise + 52
    frame #2: 0x00000008009f7079 libc.so.7`abort + 73
    frame #3: 0x0000000000706ffe kamailio`___lldb_unnamed_symbol817$$kamailio + 5934
    frame #4: 0x0000000000708b32 kamailio`qm_free + 6418
    frame #5: 0x00000000005ab45c kamailio`do_action + 38716
    frame #6: 0x0000000801ea45a9 pv.so`pv_set_ruri + 2777
    frame #7: 0x000000000057e80c kamailio`___lldb_unnamed_symbol454$$kamailio + 6172
    frame #8: 0x000000000057ae98 kamailio`lval_assign + 3176
    frame #9: 0x00000000005bf4e6 kamailio`do_action + 120774
    frame #10: 0x00000000005c278d kamailio`run_actions + 3245
    frame #11: 0x00000000005af198 kamailio`do_action + 54392
    frame #12: 0x00000000005c278d kamailio`run_actions + 3245
    frame #13: 0x00000000005af198 kamailio`do_action + 54392
    frame #14: 0x00000000005c278d kamailio`run_actions + 3245
    frame #15: 0x00000000005a9823 kamailio`do_action + 31491
    frame #16: 0x00000000005c278d kamailio`run_actions + 3245
    frame #17: 0x00000000005c3493 kamailio`run_top_route + 179
    frame #18: 0x000000000036553c kamailio`receive_msg + 24332
    frame #19: 0x000000000064b938 kamailio`receive_tcp_msg + 312
    frame #20: 0x000000000065132c kamailio`tcp_read_req + 13740
    frame #21: 0x0000000000664971 kamailio`___lldb_unnamed_symbol650$$kamailio + 10817
    frame #22: 0x000000000065e671 kamailio`___lldb_unnamed_symbol637$$kamailio + 4561
    frame #23: 0x0000000000657954 kamailio`tcp_receive_loop + 1556
    frame #24: 0x00000000004b9fed kamailio`tcp_init_children + 3805
    frame #25: 0x00000000002fa5df kamailio`main_loop + 35311
    frame #26: 0x0000000000307d2b kamailio`main + 50267
    frame #27: 0x00000000002e311b kamailio`_start + 283
```

This time the crash happened on ACK, rather than BYE:

```
Nov  5 19:13:03 home /usr/local/sbin/kamailio[16259]: CRITICAL: {1 952554 ACK !!
:R7p-RGMbyGRCR9j0aFpFaFhbakp0yAK0yAKYR7pVRcNL} <core> [core/mem/q_malloc.c:149]:
 qm_debug_check_frag(): BUG: qm: prev. fragm. tail overwritten(c0c0c000, abcdefed)[0x801544380:0x8015443b8]! Memory allocator was called from core: core/action.c:754. Fragment marked by core: core/dset.c:733. Exec from core/mem/q_malloc.c:504.
Nov  5 19:14:56 home /usr/local/sbin/kamailio[16260]: CRITICAL: <core> [core/pass_fd.c:277]: receive_fd(): EOF on 22
Nov  5 19:14:56 home kernel: pid 16259 (kamailio), uid 0: exited on signal 6 (core dumped)
```


-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/kamailio/kamailio/issues/2121#issuecomment-550129626
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.kamailio.org/pipermail/sr-dev/attachments/20191105/5f133d25/attachment.html>


More information about the sr-dev mailing list