[SR-Users] Kamailio recvfrom out of bounds
José Seabra
joseseabra4 at gmail.com
Fri Sep 25 19:53:03 CEST 2015
Adding more information to my last email, when kamailio starts receiving
calls, after more or less 40 seconds it stops processing some sip messages.
I'm using the kamailio version 4.3.2
Best Regards
2015-09-25 18:34 GMT+01:00 José Seabra <joseseabra4 at gmail.com>:
> I have one kamailio server listening in 2 network interfaces, kamailio
> receives sip messages from interface A and then send it to destine through
> interface B.
> When we start kamailio service then run gdb for each kamailio network
> interface process, execute the command "bt full" the result is the
> following:
>
> *tmp = 0x5f801b994c4715bd <Address 0x5f801b994c4715bd out of bounds>*
>
>
> interface - A
>
> bt full
> #0 0x00007fb01bfa40c3 in recvfrom () from /lib64/libc.so.6
> No symbol table info available.
> #1 0x000000000047f2ba in udp_rcv_loop () at udp_server.c:421
> len = 13
> buf = '\000' <repeats 65535 times>
> tmp = 0x5f801b994c4715bd <Address 0x5f801b994c4715bd out of bounds>
> from = 0x7faf9bf38bb8
> fromlen = 16
> ri = {src_ip = {af = 2309178400, len = 32765, u = {addrl =
> {5458819, 4284160}, addr32 = {5458819, 0, 4284160, 0}, addr16 = {19331, 83,
> 0, 0, 24320, 65, 0, 0},
> addr = "\203KS\000\000\000\000\000\000_A\000\000\000\000"}},
> dst_ip = {af = 2, len = 4, u = {addrl = {80026686, 0}, addr32 = {80026686,
> 0, 0, 0},
> addr16 = {7230, 1221, 0, 0, 0, 0, 0, 0}, addr =
> ">\034\305\004", '\000' <repeats 11 times>}}, src_port = 55576, dst_port =
> 5060, proto_reserved1 = 0,
> proto_reserved2 = 0, src_su = {s = {sa_family = 32687, sa_data =
> "\000\000\200D\243\211\375\177\000\000\213\337D"}, sin = {sin_family =
> 32687, sin_port = 0,
> sin_addr = {s_addr = 2309178496}, sin_zero =
> "\375\177\000\000\213\337D"}, sin6 = {sin6_family = 32687, sin6_port = 0,
> sin6_flowinfo = 2309178496,
> sin6_addr = {__in6_u = {__u6_addr8 =
> "\375\177\000\000\213\337D\000\000\000\000\000p", <incomplete sequence
> \372\233>, __u6_addr16 = {32765, 0, 57227,
> 68, 0, 0, 21616, 39930}, __u6_addr32 = {32765,
> 4513675, 0, 2616874096}}}, sin6_scope_id = 32687}}, bind_address =
> 0x7faf9becd7d8, proto = 1 '\001'}
> __FUNCTION__ = "udp_rcv_loop"
> #2 0x0000000000525eae in main_loop () at main.c:1573
> i = 0
> pid = 0
> si = 0x7faf9becd7d8
> si_desc = "udp receiver child=0 sock=62.28.197.4:5060
> \000\000\000\000\000\000\001\000\000\000\000\000\000\000\260\244r\023n\000\000\000\071\263q\000\000\000\000\000\020\243q\000\000\000\000\000\b\000\000\000\001\000\000\000\260\373\371\233\257\177\000\000\220E\243\211\375\177\000\000|\351O\000\000\000\000\000\000\266\253\023\257\177\000\000\260\244r\023\257\177\000"
> ---Type <return> to continue, or q <return> to quit---
> nrprocs = 32
> __FUNCTION__ = "main_loop"
> #3 0x000000000052c395 in main (argc=11, argv=0x7ffd89a34848) at
> main.c:2533
> cfg_stream = 0x2296010
> c = -1
> r = 0
> tmp = 0x7ffd89a35f61 ""
> tmp_len = 0
> port = 0
> proto = 32688
> options = 0x725010
> ":f:cm:M:dVIhEeb:l:L:n:vKrRDTN:W:w:t:u:g:P:G:SQ:O:a:A:"
> ret = -1
> seed = 1641321572
> rfd = 4
> debug_save = 0
> debug_flag = 0
> dont_fork_cnt = 0
> n_lst = 0x7ffd89a34710
> p = 0x7fb01bf4c646 <intel_check_word+166>
> "H\205\300t\025\017\266P\003\017\266\312D9\371\017\204", <incomplete
> sequence \305>
> __FUNCTION__ = "main"
>
>
>
> interface B
> bt full
> #0 0x00007fb01bfa40c3 in recvfrom () from /lib64/libc.so.6
> No symbol table info available.
> #1 0x000000000047f2ba in udp_rcv_loop () at udp_server.c:421
> len = 45
>
> buf = '\000' <repeats 65535 times>
> tmp = 0x13cb2f24296000e9 <Address 0x13cb2f24296000e9 out of bounds>
> from = 0x7faf9bf38bb8
> fromlen = 16
> ri = {src_ip = {af = 2309178400, len = 32765, u = {addrl =
> {5458819, 4284160}, addr32 = {5458819, 0, 4284160, 0}, addr16 = {19331, 83,
> 0, 0, 24320, 65, 0, 0}, addr =
> "\203KS\000\000\000\000\000\000_A\000\000\000\000"}},
> dst_ip = {af = 2, len = 4, u = {addrl = {2764381246, 0}, addr32
> = {2764381246, 0, 0, 0}, addr16 = {7230, 42181, 0, 0, 0, 0, 0, 0}, addr =
> ">\034Ť", '\000' <repeats 11 times>}}, src_port = 56136, dst_port = 5060,
> proto_reserved1 = 0, proto_reserved2 = 0, src_su = {s =
> {sa_family = 32687, sa_data =
> "\000\000\200D\243\211\375\177\000\000\213\337D"}, sin = {sin_family =
> 32687, sin_port = 0, sin_addr = {s_addr = 2309178496},
> sin_zero = "\375\177\000\000\213\337D"}, sin6 = {sin6_family
> = 32687, sin6_port = 0, sin6_flowinfo = 2309178496, sin6_addr = {__in6_u = {
> __u6_addr8 =
> "\375\177\000\000\213\337D\000\000\000\000\000p", <incomplete sequence
> \372\233>, __u6_addr16 = {32765, 0, 57227, 68, 0, 0, 21616, 39930},
> __u6_addr32 = {32765, 4513675, 0, 2616874096}}},
> sin6_scope_id = 32687}}, bind_address = 0x7faf9becda08,
> proto = 1 '\001'}
> __FUNCTION__ = "udp_rcv_loop"
> #2 0x0000000000525eae in main_loop () at main.c:1573
> ---Type <return> to continue, or q <return> to quit---
> i = 0
> pid = 0
> si = 0x7faf9becda08
> si_desc = "udp receiver child=0 sock=62.28.197.164:5060
> \000\000\000\000\001\000\000\000\000\000\000\000\260\244r\023n\000\000\000\071\263q\000\000\000\000\000\020\243q\000\000\000\000\000\b\000\000\000\001\000\000\000\260\373\371\233\257\177\000\000\220E\243\211\375\177\000\000|\351O\000\000\000\000\000\000\266\253\023\257\177\000\000\260\244r\023\257\177\000"
> nrprocs = 32
> __FUNCTION__ = "main_loop"
> #3 0x000000000052c395 in main (argc=11, argv=0x7ffd89a34848) at
> main.c:2533
> cfg_stream = 0x2296010
> c = -1
> r = 0
> tmp = 0x7ffd89a35f61 ""
> tmp_len = 0
> port = 0
> proto = 32688
> options = 0x725010
> ":f:cm:M:dVIhEeb:l:L:n:vKrRDTN:W:w:t:u:g:P:G:SQ:O:a:A:"
> ---Type <return> to continue, or q <return> to quit---
> ret = -1
> seed = 1641321572
> rfd = 4
> debug_save = 0
> debug_flag = 0
> dont_fork_cnt = 0
> n_lst = 0x7ffd89a34710
> p = 0x7fb01bf4c646 <intel_check_word+166>
> "H\205\300t\025\017\266P\003\017\266\312D9\371\017\204", <incomplete
> sequence \305>
> __FUNCTION__ = "main"
>
>
>
>
> [root at c4-srv1 kamailio]# kamctl stats shmem
> shmem:fragments = 2552
> shmem:free_size = 2082764040
> shmem:max_used_size = 66449600
> shmem:real_used_size = 64719608
> shmem:total_size = 2147483648
> shmem:used_size = 54355992
>
> Can anyone explain the meaning of
> *tmp = 0x5f801b994c4715bd <Address 0x5f801b994c4715bd out of bounds>*
>
> Best Regards
> José Seabra
>
>
--
Cumprimentos
José Seabra
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sip-router.org/pipermail/sr-users/attachments/20150925/b6d3681f/attachment.html>
More information about the sr-users
mailing list