B2BUA(top hiding) leads to segmentation fault

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

B2BUA(top hiding) leads to segmentation fault

Franz Edler-3
Hi,

I observed the following behaviour with B2BUA(top hiding scenario):

Whenever the ringing phase lasts e few seconds longer a segmentation fault
is issued.
Below is the backtrace of three such cases of Segmentation fault (core
dumped):

(gdb) bt
#0  0x080e1003 in fm_malloc (qm=0xb5781000, size=288) at mem/f_malloc.c:172
#1  0xb78e0431 in b2b_dlg_copy (dlg=0xbfdbf0d0) at
../tm/../../mem/shm_mem.h:202
#2  0xb78e4103 in b2b_new_dlg (msg=0x81b7df4, on_reply=1) at dlg.c:670
#3  0xb78e507a in b2b_tm_cback (htable=0xb590d284, ps=0xb798a0b4) at
dlg.c:1351
#4  0xb78ddf1b in b2b_client_tm_cback (t=0xb59194c4, type=1024,
ps=0xb798a0b4) at client.c:44
#5  0xb796570b in run_trans_callbacks (type=1024, trans=0xb59194c4, req=0x0,
rpl=0x81b7df4, code=180) at t_hooks.c:208
#6  0xb797bd29 in local_reply (t=0xb59194c4, p_msg=0x81b7df4, branch=0,
msg_status=180, cancel_bitmap=0xbfdbf460) at t_reply.c:1333
#7  0xb797d211 in reply_received (p_msg=0x81b7df4) at t_reply.c:1484
#8  0x08068ca3 in forward_reply (msg=0x81b7df4) at forward.c:559
#9  0x08099796 in receive_msg (
    buf=0x818a4c0 "SIP/2.0 180 Ringing\r\nVia: SIP/2.0/UDP
10.0.0.5;branch=z9hG4bK165f.1c0d4de2.0\r\nContact:
<sip:bob@10.0.0.1:11026>\r\nTo:
<sip:bob@10.0.0.1:11026>;tag=0170bb0b\r\nFrom:
<sip:[hidden email]>;tag=7ff38bb96eae"..., len=339, rcv_info=0xbfdbf584) at
receive.c:200
#10 0x080daee4 in udp_rcv_loop () at udp_server.c:492
#11 0x0806ff66 in main (argc=3, argv=0xbfdbf724) at main.c:711

(gdb) bt
#0  0x080e1003 in fm_malloc (qm=0xb575e000, size=24) at mem/f_malloc.c:172
#1  0xb7941dd2 in insert_tmcb (cb_list=0xb58f73e8, types=1536, f=0xb78c37a0
<b2b_server_tm_cback>, param=0xb58f5024,
    release_func=0xb78bc917 <shm_free_param>) at ../../mem/shm_mem.h:202
#2  0xb795b33c in t_uac (method=0xbf87c534, headers=0xbf87c448, body=0x0,
dialog=0x81b7f0c, cb=0xb78c37a0 <b2b_server_tm_cback>, cbp=0xb58f5024,
    release_func=0xb78bc917 <shm_free_param>) at uac.c:252
#3  0xb795cace in req_within (method=0xbf87c534, headers=0xbf87c448,
body=0x0, dialog=0x81b7f0c, completion_cb=0xb78c37a0 <b2b_server_tm_cback>,
    cbp=0xb58f5024, release_func=0xb78bc917 <shm_free_param>) at uac.c:390
#4  0xb78c02ac in b2b_send_request (et=B2B_SERVER, b2b_key=0xb58f626c,
method=0xbf87c534, extra_headers=0x0, body=0x0) at dlg.c:1054
#5  0xb78b26be in b2b_logic_notify (src=1, msg=0x81b7998, key=0xbf87c6d8,
type=0, param=0xb58f2f00) at logic.c:711
#6  0xb78b4343 in b2b_client_notify (msg=0x81b7998, key=0xbf87c6d8, type=0,
param=0xb58f2f00) at logic.c:938
#7  0xb78bec93 in b2b_prescript_f (msg=0x81b7998, uparam=0x0) at dlg.c:455
#8  0x080aedca in exec_pre_req_cb (msg=0x81b7998) at script_cb.c:155
#9  0x08099570 in receive_msg (
    buf=0x818a4c0 "BYE sip:sa@10.0.0.5:5060 SIP/2.0\r\nVia: SIP/2.0/UDP
10.0.0.1:11026;branch=z9hG4bK-d8754z-d3d94b4bafce1803-1---d8754z-\r\nMax-For
wards: 70\r\nContact: <sip:bob@10.0.0.1:11026>\r\nTo:
<sip:[hidden email]>;tag"..., len=434, rcv_info=0xbf87c7c4) at
receive.c:156
#10 0x080daee4 in udp_rcv_loop () at udp_server.c:492
#11 0x0806ff66 in main (argc=3, argv=0xbf87c964) at main.c:711

(gdb) bt
#0  0x080e1003 in fm_malloc (qm=0xb5715000, size=112) at mem/f_malloc.c:172
#1  0xb7864ca1 in b2bl_create_new_entity (type=B2B_CLIENT,
entity_id=0x81b8aa0, to_uri=0xbfc79414, from_uri=0xbfc7940c, ssid=0x0) at
../../mem/shm_mem.h:202
#2  0xb7865cbf in create_top_hiding_entities (msg=0x81b7998,
to_uri=0xbfc79414, from_uri=0xbfc7940c) at logic.c:1043
#3  0xb786812e in b2b_init_request (msg=0x81b7998, arg1=0x0, arg2=0x0,
arg3=0x0, arg4=0x0, arg5=0x0, arg6=0x0) at logic.c:1205
#4  0x080577e9 in do_action (a=0x81b4570, msg=0x81b7998) at action.c:967
#5  0x0805668e in run_action_list (a=0x81b4570, msg=0x81b7998) at
action.c:139
#6  0x080596e5 in do_action (a=0x81b4648, msg=0x81b7998) at action.c:706
#7  0x0805668e in run_action_list (a=0x81b4100, msg=0x81b7998) at
action.c:139
#8  0x08059b47 in do_action (a=0x81b4a00, msg=0x81b7998) at action.c:712
#9  0x0805668e in run_action_list (a=0x81b4a00, msg=0x81b7998) at
action.c:139
#10 0x08059b47 in do_action (a=0x81b4a6c, msg=0x81b7998) at action.c:712
#11 0x0805668e in run_action_list (a=0x81b3700, msg=0x81b7998) at
action.c:139
#12 0x080596e5 in do_action (a=0x81b4dc0, msg=0x81b7998) at action.c:706
#13 0x0805668e in run_action_list (a=0x81b1ed0, msg=0x81b7998) at
action.c:139
#14 0x0805a663 in run_top_route (a=0x81b1ed0, msg=0x81b7998) at action.c:119
#15 0x080996e3 in receive_msg (
    buf=0x818a4c0 "INVITE sip:[hidden email] SIP/2.0\r\nVia: SIP/2.0/UDP
10.0.0.1:9570;branch=z9hG4bK-d8754z-1d2b253308357a1c-1---d8754z-\r\nMax-Forw
ards: 69\r\nContact: <sip:alice@10.0.0.1:9570;transport=udp>\r\nTo:
\"sip:bob@ne"..., len=800, rcv_info=0xbfc7a004) at receive.c:162
#16 0x080daee4 in udp_rcv_loop () at udp_server.c:492
#17 0x0806ff66 in main (argc=3, argv=0xbfc7a1a4) at main.c:711


I hope that helps to clarify the issue.

Regards
Franz



_______________________________________________
Users mailing list
[hidden email]
http://lists.opensips.org/cgi-bin/mailman/listinfo/users
Reply | Threaded
Open this post in threaded view
|

Re: B2BUA(top hiding) leads to segmentation fault

Anca Vamanu-2
Hi Franz,

Please update to svn branch, it contains a much stable version of b2b.

Regards,

--
Anca Vamanu
www.voice-system.ro



Franz Edler wrote:

> Hi,
>
> I observed the following behaviour with B2BUA(top hiding scenario):
>
> Whenever the ringing phase lasts e few seconds longer a segmentation fault
> is issued.
> Below is the backtrace of three such cases of Segmentation fault (core
> dumped):
>
> (gdb) bt
> #0  0x080e1003 in fm_malloc (qm=0xb5781000, size=288) at mem/f_malloc.c:172
> #1  0xb78e0431 in b2b_dlg_copy (dlg=0xbfdbf0d0) at
> ../tm/../../mem/shm_mem.h:202
> #2  0xb78e4103 in b2b_new_dlg (msg=0x81b7df4, on_reply=1) at dlg.c:670
> #3  0xb78e507a in b2b_tm_cback (htable=0xb590d284, ps=0xb798a0b4) at
> dlg.c:1351
> #4  0xb78ddf1b in b2b_client_tm_cback (t=0xb59194c4, type=1024,
> ps=0xb798a0b4) at client.c:44
> #5  0xb796570b in run_trans_callbacks (type=1024, trans=0xb59194c4, req=0x0,
> rpl=0x81b7df4, code=180) at t_hooks.c:208
> #6  0xb797bd29 in local_reply (t=0xb59194c4, p_msg=0x81b7df4, branch=0,
> msg_status=180, cancel_bitmap=0xbfdbf460) at t_reply.c:1333
> #7  0xb797d211 in reply_received (p_msg=0x81b7df4) at t_reply.c:1484
> #8  0x08068ca3 in forward_reply (msg=0x81b7df4) at forward.c:559
> #9  0x08099796 in receive_msg (
>     buf=0x818a4c0 "SIP/2.0 180 Ringing\r\nVia: SIP/2.0/UDP
> 10.0.0.5;branch=z9hG4bK165f.1c0d4de2.0\r\nContact:
> <sip:bob@10.0.0.1:11026>\r\nTo:
> <sip:bob@10.0.0.1:11026>;tag=0170bb0b\r\nFrom:
> <sip:[hidden email]>;tag=7ff38bb96eae"..., len=339, rcv_info=0xbfdbf584) at
> receive.c:200
> #10 0x080daee4 in udp_rcv_loop () at udp_server.c:492
> #11 0x0806ff66 in main (argc=3, argv=0xbfdbf724) at main.c:711
>
> (gdb) bt
> #0  0x080e1003 in fm_malloc (qm=0xb575e000, size=24) at mem/f_malloc.c:172
> #1  0xb7941dd2 in insert_tmcb (cb_list=0xb58f73e8, types=1536, f=0xb78c37a0
> <b2b_server_tm_cback>, param=0xb58f5024,
>     release_func=0xb78bc917 <shm_free_param>) at ../../mem/shm_mem.h:202
> #2  0xb795b33c in t_uac (method=0xbf87c534, headers=0xbf87c448, body=0x0,
> dialog=0x81b7f0c, cb=0xb78c37a0 <b2b_server_tm_cback>, cbp=0xb58f5024,
>     release_func=0xb78bc917 <shm_free_param>) at uac.c:252
> #3  0xb795cace in req_within (method=0xbf87c534, headers=0xbf87c448,
> body=0x0, dialog=0x81b7f0c, completion_cb=0xb78c37a0 <b2b_server_tm_cback>,
>     cbp=0xb58f5024, release_func=0xb78bc917 <shm_free_param>) at uac.c:390
> #4  0xb78c02ac in b2b_send_request (et=B2B_SERVER, b2b_key=0xb58f626c,
> method=0xbf87c534, extra_headers=0x0, body=0x0) at dlg.c:1054
> #5  0xb78b26be in b2b_logic_notify (src=1, msg=0x81b7998, key=0xbf87c6d8,
> type=0, param=0xb58f2f00) at logic.c:711
> #6  0xb78b4343 in b2b_client_notify (msg=0x81b7998, key=0xbf87c6d8, type=0,
> param=0xb58f2f00) at logic.c:938
> #7  0xb78bec93 in b2b_prescript_f (msg=0x81b7998, uparam=0x0) at dlg.c:455
> #8  0x080aedca in exec_pre_req_cb (msg=0x81b7998) at script_cb.c:155
> #9  0x08099570 in receive_msg (
>     buf=0x818a4c0 "BYE sip:sa@10.0.0.5:5060 SIP/2.0\r\nVia: SIP/2.0/UDP
> 10.0.0.1:11026;branch=z9hG4bK-d8754z-d3d94b4bafce1803-1---d8754z-\r\nMax-For
> wards: 70\r\nContact: <sip:bob@10.0.0.1:11026>\r\nTo:
> <sip:[hidden email]>;tag"..., len=434, rcv_info=0xbf87c7c4) at
> receive.c:156
> #10 0x080daee4 in udp_rcv_loop () at udp_server.c:492
> #11 0x0806ff66 in main (argc=3, argv=0xbf87c964) at main.c:711
>
> (gdb) bt
> #0  0x080e1003 in fm_malloc (qm=0xb5715000, size=112) at mem/f_malloc.c:172
> #1  0xb7864ca1 in b2bl_create_new_entity (type=B2B_CLIENT,
> entity_id=0x81b8aa0, to_uri=0xbfc79414, from_uri=0xbfc7940c, ssid=0x0) at
> ../../mem/shm_mem.h:202
> #2  0xb7865cbf in create_top_hiding_entities (msg=0x81b7998,
> to_uri=0xbfc79414, from_uri=0xbfc7940c) at logic.c:1043
> #3  0xb786812e in b2b_init_request (msg=0x81b7998, arg1=0x0, arg2=0x0,
> arg3=0x0, arg4=0x0, arg5=0x0, arg6=0x0) at logic.c:1205
> #4  0x080577e9 in do_action (a=0x81b4570, msg=0x81b7998) at action.c:967
> #5  0x0805668e in run_action_list (a=0x81b4570, msg=0x81b7998) at
> action.c:139
> #6  0x080596e5 in do_action (a=0x81b4648, msg=0x81b7998) at action.c:706
> #7  0x0805668e in run_action_list (a=0x81b4100, msg=0x81b7998) at
> action.c:139
> #8  0x08059b47 in do_action (a=0x81b4a00, msg=0x81b7998) at action.c:712
> #9  0x0805668e in run_action_list (a=0x81b4a00, msg=0x81b7998) at
> action.c:139
> #10 0x08059b47 in do_action (a=0x81b4a6c, msg=0x81b7998) at action.c:712
> #11 0x0805668e in run_action_list (a=0x81b3700, msg=0x81b7998) at
> action.c:139
> #12 0x080596e5 in do_action (a=0x81b4dc0, msg=0x81b7998) at action.c:706
> #13 0x0805668e in run_action_list (a=0x81b1ed0, msg=0x81b7998) at
> action.c:139
> #14 0x0805a663 in run_top_route (a=0x81b1ed0, msg=0x81b7998) at action.c:119
> #15 0x080996e3 in receive_msg (
>     buf=0x818a4c0 "INVITE sip:[hidden email] SIP/2.0\r\nVia: SIP/2.0/UDP
> 10.0.0.1:9570;branch=z9hG4bK-d8754z-1d2b253308357a1c-1---d8754z-\r\nMax-Forw
> ards: 69\r\nContact: <sip:alice@10.0.0.1:9570;transport=udp>\r\nTo:
> \"sip:bob@ne"..., len=800, rcv_info=0xbfc7a004) at receive.c:162
> #16 0x080daee4 in udp_rcv_loop () at udp_server.c:492
> #17 0x0806ff66 in main (argc=3, argv=0xbfc7a1a4) at main.c:711
>
>
> I hope that helps to clarify the issue.
>
> Regards
> Franz
>
>
>
> _______________________________________________
> Users mailing list
> [hidden email]
> http://lists.opensips.org/cgi-bin/mailman/listinfo/users
>
>  

_______________________________________________
Users mailing list
[hidden email]
http://lists.opensips.org/cgi-bin/mailman/listinfo/users