[asterisk-bugs] [Asterisk 0013256]: crash if hangup during wait to read

Asterisk Bug Tracker noreply at bugs.digium.com
Thu Sep 11 14:34:04 CDT 2008 

A NOTE has been added to this issue. 
====================================================================== 
http://bugs.digium.com/view.php?id=13256 
====================================================================== 
Reported By:                travishein
Assigned To:                
====================================================================== 
Project:                    Asterisk
Issue ID:                   13256
Category:                   Channels/General
Reproducibility:            unable to reproduce
Severity:                   minor
Priority:                   normal
Status:                     feedback
Asterisk Version:           1.4.20 
SVN Branch (only for SVN checkouts, not tarball releases):  1.4  
SVN Revision (number only!):  
Disclaimer on File?:        N/A 
Request Review:              
====================================================================== 
Date Submitted:             2008-08-07 21:11 CDT
Last Modified:              2008-09-11 14:34 CDT
====================================================================== 
Summary:                    crash if hangup during wait to read
Description: 
t is as though the read generator feature was not initialized in the
channel when this was called.


====================================================================== 

---------------------------------------------------------------------- 
 (0092360) efutch (reporter) - 2008-09-11 14:34
 http://bugs.digium.com/view.php?id=13256#c92360 
---------------------------------------------------------------------- 
Our production PBX just crashed (segmentation fault) in the same spot a
little while ago.  We're on version 1.4.21.2.  Asterisk is messing with a
NULL pointer.

The code in channel.c line 1910 is as follows:
if (chan->generator->generate) {

Here's relevant parts of what I found in GDB:
(gdb) bt 1
http://bugs.digium.com/view.php?id=0  ast_read_generator_actions
(chan=0xb7b59690, f=0xa241cac) at
channel.c:1910
(gdb) print chan.generator
$9 = (struct ast_generator *) 0x0

All of this is still fresh on my PBX if you need any more information from
me, let me know.  This does explain the crash though. 

Issue History 
Date Modified    Username       Field                    Change               
====================================================================== 
2008-09-11 14:34 efutch         Note Added: 0092360                          
======================================================================

More information about the asterisk-bugs mailing list