[sr-dev] [kamailio/kamailio] ims_ipsec_pcscf crashes after the call (Issue #2970)

Tue Dec 28 17:53:15 CET 2021

Thanks for the tips. The old core is gone, but the new one.

```
GNU gdb (Debian 10.1-1.7) 10.1.90.20210103-git
Copyright (C) 2021 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Type "show copying" and "show warranty" for details.
This GDB was configured as "i686-linux-gnu".
Type "show configuration" for configuration details.
For bug reporting instructions, please see:
<https://www.gnu.org/software/gdb/bugs/>.
Find the GDB manual and other documentation resources online at:
    <http://www.gnu.org/software/gdb/documentation/>.

For help, type "help".
Type "apropos word" to search for commands related to "word"...
Reading symbols from /sbin/kamailio...
Reading symbols from /usr/lib/debug/.build-id/f0/69ca129a40c5415b1162a2672ca9a1eb6443a0.debug...

warning: Can't open file /dev/zero (deleted) during file-backed mapping note processing
[New LWP 32251]
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/i386-linux-gnu/libthread_db.so.1".
Core was generated by `/usr/sbin/kamailio -P /run/kamailio/kamailio.pid -f /etc/kamailio/kamailio.cfg'.
Program terminated with signal SIGABRT, Aborted.
#0  0xb7fcb559 in __kernel_vsyscall ()
(gdb) bt full
#0  0xb7fcb559 in __kernel_vsyscall ()
No symbol table info available.
#1  0xb7cc2e02 in __libc_signal_restore_set (set=0xbfb295ec) at ../sysdeps/unix/sysv/linux/internal-signals.h:86
        resultvar = <optimized out>
#2  __GI_raise (sig=6) at ../sysdeps/unix/sysv/linux/raise.c:48
        set = {__val = {8192, 0, 0, 2021, 0, 0, 3083523171, 400, 0, 3216152096, 3085381632, 3085383488, 79848, 1, 0, 1, 23021476, 23021468, 15, 23021468, 1844847104, 3216152452, 0, 3083925755, 
            3085383488, 23021448, 3086841612, 3083491989, 5012815, 3085381632, 0, 3216152352}}
        pid = <optimized out>
        tid = <optimized out>
        ret = 0
#3  0xb7cab306 in __GI_abort () at abort.c:79
        save_stage = <optimized out>
        act = {__sigaction_handler = {sa_handler = 0xb7fc5c70, sa_sigaction = 0xb7fc5c70}, sa_mask = {__val = {0, 10800, 22903096, 0, 0, 0, 0, 0, 4979331, 1, 0, 9883664, 3086866326, 4979331, 
              3086977408, 3216152596, 3086977856, 3086770192, 1, 1, 0, 0, 9883648, 3086974976, 4927488, 3216152744, 3084441447, 130, 3083435384, 3216152632, 0, 3086866153}}, sa_flags = 9883648, 
          sa_restorer = 0x897078}
        sigs = {__val = {32, 0 <repeats 31 times>}}
#4  0x004d14cf in sig_alarm_abort (signo=14) at main.c:699
        __func__ = "sig_alarm_abort"
#5  <signal handler called>
No symbol table info available.
#6  0xb7fcb557 in __kernel_vsyscall ()
No symbol table info available.
#7  0xb7d8da07 in syscall () at ../sysdeps/unix/sysv/linux/i386/syscall.S:29
No locals.
#8  0xb6f3f936 in futex_get (lock=0xb08d3b6c) at ../../core/mem/../futexlock.h:121
        v = 1
        i = -1225347072
#9  0xb6f41668 in lock_ulslot (_d=0xb08e5b88, i=206) at udomain.c:295
No locals.
#10 0xb6f40be1 in free_udomain (_d=0xb08e5b88) at udomain.c:156
        i = 206
        __func__ = "free_udomain"
#11 0xb6f36508 in free_all_udomains () at dlist.c:296
        ptr = 0xb08e5b04
        __func__ = "free_all_udomains"
#12 0xb6f39c69 in destroy () at ims_usrloc_pcscf_mod.c:253
No locals.
#13 0x006d3660 in destroy_modules () at core/sr_module.c:839
        t = 0xb75253a4
        foo = 0xb7524d3c
        __func__ = "destroy_modules"
#14 0x004d002b in cleanup (show_status=1) at main.c:575
        memlog = 0
        __func__ = "cleanup"
#15 0x004d182b in shutdown_children (sig=15, show_status=1) at main.c:718
        __func__ = "shutdown_children"
#16 0x004d4612 in handle_sigs () at main.c:816
        chld = 0
        chld_status = 139
        any_chld_stopped = 1
        memlog = 5041487
        __func__ = "handle_sigs"
#17 0x004e0af6 in main_loop () at main.c:1903
--Type <RET> for more, q to quit, c to continue without paging--
        i = 16
        pid = 32331
        si = 0x0
        si_desc = "udp receiver child=15 sock=0.0.0.0:5064\000\060:5060\000\277\000Ж\000\371}\000\000\254\245\262\277裲\277\a\267e\000\210\234V\267\f\000\000\000\060\232Q\267ζe\000\000\000\000\000\226\301\215\000\005\000\000\000\000\000\000\000\334uTue De\030\244\262\277\365\267e\000\344(\232\000\332\vN\000\062\061\n"
        nrprocs = 16
        woneinit = 1
        __func__ = "main_loop"
#18 0x004e9bd0 in main (argc=9, argv=0xbfb2a884) at main.c:3053
        cfg_stream = 0x15101c0
        c = -1
        r = 0
        tmp = 0xbfb2ae7a ""
        tmp_len = 1
        port = 0
        proto = -1209441992
        ahost = 0x0
        aport = 0
        options = 0x899ef0 ":f:cm:M:dVIhEeb:l:L:n:vKrRDTN:W:w:t:u:g:P:G:SQ:O:a:A:x:X:Y:"
        ret = -1
        seed = 2727312077
        rfd = 4
        debug_save = 0
        debug_flag = 0
        dont_fork_cnt = 0
        n_lst = 0xbfb2a67f
        p = 0x1 <error: Cannot access memory at address 0x1>
        st = {st_dev = 22, __pad1 = 0, st_ino = 931, st_mode = 16888, st_nlink = 2, st_uid = 111, st_gid = 115, st_rdev = 0, __pad2 = 0, st_size = 40, st_blksize = 4096, st_blocks = 0, 
          st_atim = {tv_sec = 1640709398, tv_nsec = 701244783}, st_mtim = {tv_sec = 1640709398, tv_nsec = 701244783}, st_ctim = {tv_sec = 1640709398, tv_nsec = 701244783}, __glibc_reserved4 = 0, 
          __glibc_reserved5 = 0}
        tbuf = "\000\000\000\000\000\000\000\000\004\000\000\020\000\360\377\377Linux", '\000' <repeats 60 times>, "pcscf.ims.mnc001.mcc001.3gppnetwork.org", '\000' <repeats 26 times>, "\065.10.0-9-686-pae", '\000' <repeats 22 times>, "\fw\375\267\225ZʷO}L", '\000' <repeats 16 times>...
        option_index = 0
        long_options = {{name = 0x89c26a "help", has_arg = 0, flag = 0x0, val = 104}, {name = 0x8974d6 "version", has_arg = 0, flag = 0x0, val = 118}, {name = 0x89c26f "alias", has_arg = 1, 
            flag = 0x0, val = 1024}, {name = 0x89c275 "subst", has_arg = 1, flag = 0x0, val = 1025}, {name = 0x89c27b "substdef", has_arg = 1, flag = 0x0, val = 1026}, {
            name = 0x89c284 "substdefs", has_arg = 1, flag = 0x0, val = 1027}, {name = 0x89c28e "server-id", has_arg = 1, flag = 0x0, val = 1028}, {name = 0x89c298 "loadmodule", has_arg = 1, 
            flag = 0x0, val = 1029}, {name = 0x89c2a3 "modparam", has_arg = 1, flag = 0x0, val = 1030}, {name = 0x89c2ac "log-engine", has_arg = 1, flag = 0x0, val = 1031}, {
            name = 0x89c2b7 "debug", has_arg = 1, flag = 0x0, val = 1032}, {name = 0x89c2bd "cfg-print", has_arg = 0, flag = 0x0, val = 1033}, {name = 0x89c2c7 "atexit", has_arg = 1, flag = 0x0, 
            val = 1034}, {name = 0x0, has_arg = 0, flag = 0x0, val = 0}}
        __func__ = "main"

```

-- 
Reply to this email directly or view it on GitHub:
https://github.com/kamailio/kamailio/issues/2970#issuecomment-1002195086
You are receiving this because you commented.

Message ID: <kamailio/kamailio/issues/2970/1002195086 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.kamailio.org/pipermail/sr-dev/attachments/20211228/c8205248/attachment-0001.htm>