[asterisk-bugs] [Asterisk 0015109]: [patch] Abort by memory allocator, possibly in moh_files_generator

Asterisk Bug Tracker noreply at bugs.digium.com
Tue Sep 1 15:45:32 CDT 2009 

A NOTE has been added to this issue. 
====================================================================== 
https://issues.asterisk.org/view.php?id=15109 
====================================================================== 
Reported By:                jvandal
Assigned To:                russell
====================================================================== 
Project:                    Asterisk
Issue ID:                   15109
Category:                   Resources/res_musiconhold
Reproducibility:            random
Severity:                   block
Priority:                   normal
Status:                     closed
Target Version:             1.4.27
Asterisk Version:           1.4.24 
Regression:                 No 
SVN Branch (only for SVN checkouts, not tarball releases): N/A 
SVN Revision (number only!):  
Request Review:              
Resolution:                 fixed
Fixed in Version:           
====================================================================== 
Date Submitted:             2009-05-14 10:49 CDT
Last Modified:              2009-09-01 15:45 CDT
====================================================================== 
Summary:                    [patch] Abort by memory allocator, possibly in
moh_files_generator
Description: 
I have a server running with Asterisk 1.4.24.1 where it randomly segfault
for "unknown" reason.

I'm not sure if this is related to moh_files_generator function or with
filestream_descructor.

Let me know what needed in order to fix this crash, if GDB traces aren't
enough. 

Asterisk is compiled with DONT_OPTIMIZE and others flag needed for "gdb".

======================================================================
Relationships       ID      Summary
----------------------------------------------------------------------
related to          0014958 Segfault Asterisk 1.4.24.1
related to          0015123 out of bounds crash and core dump
related to          0015506 Asterisk 1.4.26rc5 (revision 202945 ) d...
related to          0015041 Crash on attended transfer
related to          0015719 Crash in ast_readaudio_callback
parent of           0015396 app_queue segfault
has duplicate       0015195 double free or corruption (!prev) in mo...
has duplicate       0015781 crash: in "ast_fdleak_fclose"...
related to          0015735 Asterisk Chrashes Daily
related to          0015609 WARNING[23025]: channel.c:952 __ast_que...
related to          0015460 Asterisk Crashed When made a attended T...
====================================================================== 

---------------------------------------------------------------------- 
 (0109953) svnbot (reporter) - 2009-09-01 15:45
 https://issues.asterisk.org/view.php?id=15109#c109953 
---------------------------------------------------------------------- 
Repository: asterisk
Revision: 215213

_U  branches/1.6.2/

------------------------------------------------------------------------
r215213 | russell | 2009-09-01 15:45:26 -0500 (Tue, 01 Sep 2009) | 51
lines

Blocked revisions 215212 via svnmerge

........
  r215212 | russell | 2009-09-01 15:44:13 -0500 (Tue, 01 Sep 2009) | 45
lines
  
  Fix memory corruption caused by format_mp3.
  
  format_mp3 claimed that it provided AST_FRIENDLY_OFFSET in frames
returned by
  read().  However, it lied.  This means that other parts of the code that
  attempted to make use of the offset buffer would end up corrupting the
fields
  in the ast_filestream structure.  This resulted in quite a few crashes
due to
  unexpected values for fields in ast_filestream.
  
  This patch closes out quite a few bugs.  However, some of these bugs
have been
  open for a while and have been an area where more than one bug has been
  discussed.  So with that said, anyone that is following one of the
issues
  closed here, if you still have a problem, please open a new bug report
for the
  specific problem you are still having.  If you do, please ensure that
the bug
  report is based on the newest version of Asterisk, and that this patch
is
  applied if format_mp3 is in use.  Thanks!
  
  (closes issue https://issues.asterisk.org/view.php?id=15109)
  Reported by: jvandal
  Tested by: aragon, russell, zerohalo, marhbere, rgj
  
  (closes issue https://issues.asterisk.org/view.php?id=14958)
  Reported by: aragon
  
  (closes issue https://issues.asterisk.org/view.php?id=15123)
  Reported by: axisinternet
  
  (closes issue https://issues.asterisk.org/view.php?id=15041)
  Reported by: maxnuv
  
  (closes issue https://issues.asterisk.org/view.php?id=15396)
  Reported by: aragon
  
  (closes issue https://issues.asterisk.org/view.php?id=15195)
  Reported by: amorsen
  Tested by: amorsen
  
  (closes issue https://issues.asterisk.org/view.php?id=15781)
  Reported by: jensvb
  
  (closes issue https://issues.asterisk.org/view.php?id=15735)
  Reported by: thom4fun
  
  (closes issue https://issues.asterisk.org/view.php?id=15460)
  Reported by: marhbere
........

------------------------------------------------------------------------

http://svn.digium.com/view/asterisk?view=rev&revision=215213 

Issue History 
Date Modified    Username       Field                    Change               
====================================================================== 
2009-09-01 15:45 svnbot         Checkin                                      
2009-09-01 15:45 svnbot         Note Added: 0109953                          
======================================================================

More information about the asterisk-bugs mailing list