[asterisk-bugs] [Asterisk 0010351]: Help command in CLI dumps core under Solaris 10 X86
noreply at bugs.digium.com
noreply at bugs.digium.com
Wed Aug 1 09:27:56 CDT 2007
The following issue has been ASSIGNED.
======================================================================
http://bugs.digium.com/view.php?id=10351
======================================================================
Reported By: ftarz
Assigned To: file
======================================================================
Project: Asterisk
Issue ID: 10351
Category: Core/ManagerInterface
Reproducibility: always
Severity: crash
Priority: normal
Status: assigned
Asterisk Version: 1.4.9
SVN Branch (only for SVN checkouts, not tarball releases): N/A
SVN Revision (number only!):
Disclaimer on File?: N/A
Request Review:
======================================================================
Date Submitted: 07-31-2007 23:03 CDT
Last Modified: 08-01-2007 09:27 CDT
======================================================================
Summary: Help command in CLI dumps core under Solaris 10 X86
Description:
I've been trying to get Asterisk 1.4.X running under Solaris 10 x86 with
limited success.
I can build Asterisk and get it started but have run in to a problem with
a segmentation fault with the "help" command in the CLI.
When I start Asterisk:
# ./asterisk -vvvgc
Asterisk 1.4.9, Copyright (C) 1999 - 2007 Digium, Inc. and others.
Created by Mark Spencer <markster at digium.com>
Asterisk comes with ABSOLUTELY NO WARRANTY; type 'core show warranty' for
details.
This is free software, with components licensed under the GNU General
Public
License version 2 and other licenses; you are welcome to redistribute it
under
certain conditions. Type 'core show license' for details.
=========================================================================
== Parsing '/var/etc/asterisk/asterisk.conf': Found
.
.
.
== Registered application 'Skel'
app_skel.so => (Skeleton (sample) Application)
Asterisk Ready.
*CLI>
If I type "help"
*CLI> help
! Execute a shell command
abort halt Cancel a running halt
ael debug contexts Enable AEL contexts debug (does nothing)
.
.
.
say load set/show the say mode
show parkedcalls Lists parked calls
Segmentation Fault - core dumped
#
This problem only seems to occur with the "help" command in the CLI.
gdb shows this:
gdb ./asterisk core
GNU gdb 6.2.1
Copyright 2004 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you
are
welcome to change it and/or distribute copies of it under certain
conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB. Type "show warranty" for
details.
This GDB was configured as "i386-pc-solaris2.10"...
Core was generated by `./asterisk -vvvgc'.
Program terminated with signal 11, Segmentation fault.
Reading symbols from /usr/lib/libcurses.so.1...done.
.
.
.
Loaded symbols for /opt/asterisk/lib/modules/app_skel.so
http://bugs.digium.com/view.php?id=0 0xfebd4d0c in strlen () from
/usr/lib/libc.so.1
(gdb) bt
http://bugs.digium.com/view.php?id=0 0xfebd4d0c in strlen () from
/usr/lib/libc.so.1
http://bugs.digium.com/view.php?id=1 0xfec2a386 in _ndoprnt () from
/usr/lib/libc.so.1
http://bugs.digium.com/view.php?id=2 0xfec2d4bb in vsnprintf () from
/usr/lib/libc.so.1
http://bugs.digium.com/view.php?id=3 0x080e994a in
ast_dynamic_str_thread_build_va (buf=0x817625b,
max_len=0,
ts=0x8149720, append=0, fmt=0x811eefd "%25.25s %s\n",
ap=0x8046f18 "Pb\027\b") at utils.c:969
http://bugs.digium.com/view.php?id=4 0x08089ad8 in ast_cli (fd=1, fmt=0x811eefd
"%25.25s %s\n") at
cli.c:69
http://bugs.digium.com/view.php?id=5 0x0808d33e in help1 (fd=1,
match=0x8047084, locked=1) at cli.c:1746
http://bugs.digium.com/view.php?id=6 0x0808d45f in handle_help (fd=1, argc=0,
argv=0x8047080) at
cli.c:1773
http://bugs.digium.com/view.php?id=7 0x0808e05c in ast_cli_command (fd=1,
s=0x0) at cli.c:1979
http://bugs.digium.com/view.php?id=8 0x08074127 in main (argc=135688218,
argv=0x80471fc) at
asterisk.c:1388
(gdb) q
#
The segmentation fault is caused by the call to vsnprintf in this function
in utils.c:
int ast_dynamic_str_thread_build_va(struct ast_dynamic_str **buf, size_t
max_len,
struct ast_threadstorage *ts, int append, const char *fmt, va_list
ap)
{
int res;
int offset = (append && (*buf)->len) ? strlen((*buf)->str) : 0;
#if defined(DEBUG_THREADLOCALS)
struct ast_dynamic_str *old_buf = *buf;
#endif /* defined(DEBUG_THREADLOCALS) */
res = vsnprintf((*buf)->str + offset, (*buf)->len - offset, fmt,
ap);
/* Check to see if there was not enough space in the string buffer
to prepare
* the string. Also, if a maximum length is present, make sure the
current
* length is less than the maximum before increasing the size. */
if ((res + offset + 1) > (*buf)->len && (max_len ? ((*buf)->len <
max_len) : 1)) {
/* Set the new size of the string buffer to be the size
needed
* to hold the resulting string (res) plus one byte for
the
* terminating '\0'. If this size is greater than the max,
set
* the new length to be the maximum allowed. */
if (max_len)
(*buf)->len = ((res + offset + 1) < max_len) ? (res
+ offset + 1) : max_len;
else
(*buf)->len = res + offset + 1;
if (!(*buf = ast_realloc(*buf, (*buf)->len +
sizeof(*(*buf)))))
return AST_DYNSTR_BUILD_FAILED;
if (append)
(*buf)->str[offset] = '\0';
if (ts) {
pthread_setspecific(ts->key, *buf);
#if defined(DEBUG_THREADLOCALS)
__ast_threadstorage_object_replace(old_buf, *buf,
(*buf)->len + sizeof(*(*buf)));
#endif /* defined(DEBUG_THREADLOCALS) */
}
/* va_end() and va_start() must be done before calling
* vsnprintf() again. */
return AST_DYNSTR_BUILD_RETRY;
}
return res;
}
I think the fault is caused by a NULL pointer somewhere,but I can't
figure-out what's wrong.
======================================================================
Issue History
Date Modified Username Field Change
======================================================================
08-01-07 09:27 file Status new => assigned
08-01-07 09:27 file Assigned To => file
======================================================================
More information about the asterisk-bugs
mailing list