[asterisk-bugs] [Asterisk 0017227]: Segmentation fault with unanswered inbound call via chan_ooh323

Asterisk Bug Tracker noreply at bugs.digium.com
Tue Jun 1 12:36:34 CDT 2010 

A NOTE has been added to this issue. 
====================================================================== 
https://issues.asterisk.org/view.php?id=17227 
====================================================================== 
Reported By:                jin
Assigned To:                may213
====================================================================== 
Project:                    Asterisk
Issue ID:                   17227
Category:                   Addons/chan_ooh323
Reproducibility:            always
Severity:                   crash
Priority:                   normal
Status:                     feedback
Asterisk Version:           Addons-1.6.2.1 
JIRA:                        
Regression:                 No 
Reviewboard Link:            
SVN Branch (only for SVN checkouts, not tarball releases): N/A 
SVN Revision (number only!):  
Request Review:              
====================================================================== 
Date Submitted:             2010-04-21 16:39 CDT
Last Modified:              2010-06-01 12:36 CDT
====================================================================== 
Summary:                    Segmentation fault with unanswered inbound call via
chan_ooh323
Description: 
If i configure a sip phone to hangup a call after 30 seconds of ring time
from a inbound call, the chan_ooh323 module crash and asterisk segfault...
tested using grandstream gxw-4024 gateway and linksys spa921 phone.

attached 4 logs:

the phone is configured to hangup after 60 seconds:
1-ooh323-normal-hangup.txt
2-asterisk-normal-hangup.txt

the phone is configured to hangup after 30 seconds:
3-ooh323-crash-hangup.txt
4-asterisk-crash-hangup.txt

asterisk seem to crash only when the cause of hangup is:
22:01:35:395  Cleaning Call (incoming, ooh323c_2)-
reason:OO_REASON_LOCAL_CONGESTED

if the cause of hangup is the following, asterisk doesn't crash:
21:57:45:129  Cleaning Call (incoming, ooh323c_1)-
reason:OO_REASON_REMOTE_CLEARED

so, if the phone doesn't hangup the call before 60 seconds of ring time,
asterisk doesn't crash.

actual work around: configure all phones to hangup after 60 secs of rings

outgoing calls doesn't have any problems.

====================================================================== 

---------------------------------------------------------------------- 
 (0122712) jin (reporter) - 2010-06-01 12:36
 https://issues.asterisk.org/view.php?id=17227#c122712 
---------------------------------------------------------------------- 
Just recompiled asterisk 1.6.2.7 and asterisk addons-1.6.2.1 with the
following compile flags

MENUSELECT_CFLAGS=DONT_OPTIMIZE DEBUG_THREADS LOADABLE_MODULES
MALLOC_DEBUG

attached the new backstrace 6-asterisk-crash-gdb-backtrace.txt

into /var/log/asterisk/mmlog I see only:

1275413189 - New session
1275413251 - New session

first possible I'try the trunk version of asterisk and asterisk-addons,
however the backtrace now is more verbose:

Core was generated by `/usr/sbin/asterisk -f -vvvg -c'.
Program terminated with signal 11, Segmentation fault.
https://issues.asterisk.org/view.php?id=0  0x00002aaab2294c06 in
asn1PD_H225CryptoH323Token_cryptoGKPwdHash ()
from /usr/lib/asterisk/modules/chan_ooh323.so
(gdb) bt
https://issues.asterisk.org/view.php?id=0  0x00002aaab2294c06 in
asn1PD_H225CryptoH323Token_cryptoGKPwdHash ()
from /usr/lib/asterisk/modules/chan_ooh323.so
https://issues.asterisk.org/view.php?id=1  0x00002aaab2297ca8 in ?? () from
/usr/lib/asterisk/modules/chan_ooh323.so
https://issues.asterisk.org/view.php?id=2  0x000000000046a6e9 in __ast_read
(chan=0x1c5fbcb8, dropaudio=0) at
channel.c:2802
https://issues.asterisk.org/view.php?id=3  0x000000000046c1e8 in ast_read
(chan=0x1c5fbcb8) at channel.c:3102
https://issues.asterisk.org/view.php?id=4  0x0000000000465f79 in
ast_safe_sleep_conditional (chan=0x1c5fbcb8,
ms=3, cond=0, data=0x0) at channel.c:1349
https://issues.asterisk.org/view.php?id=5  0x0000000000465fdf in ast_safe_sleep
(chan=0x1c5fbcb8, ms=10000) at
channel.c:1369
https://issues.asterisk.org/view.php?id=6  0x0000000000509a23 in wait_for_hangup
(chan=0x1c5fbcb8,
data=0x405381d0) at pbx.c:8433
https://issues.asterisk.org/view.php?id=7  0x0000000000509b7d in
pbx_builtin_congestion (chan=0x1c5fbcb8,
data=0x405381d0) at pbx.c:8497
https://issues.asterisk.org/view.php?id=8  0x00000000004ef04f in pbx_exec
(c=0x1c5fbcb8, app=0x1c470ca8,
data=0x405381d0) at pbx.c:1348
https://issues.asterisk.org/view.php?id=9  0x00000000004f90a8 in
pbx_extension_helper (c=0x1c5fbcb8, con=0x0,
context=0x1c5fcc30 "macro-exten-vm", exten=0x1c5fcc80 "s-CONGESTION",
priority=4, label=0x0, callerid=0x1c5679d8 "0575250438", 
    action=E_SPAWN, found=0x4053abf4, combined_find_spawn=1) at
pbx.c:3711
https://issues.asterisk.org/view.php?id=10 0x00000000004fa894 in
ast_spawn_extension (c=0x1c5fbcb8,
context=0x1c5fcc30 "macro-exten-vm", exten=0x1c5fcc80 "s-CONGESTION",
priority=4, callerid=0x1c5679d8 "0575250438", found=0x4053abf4, 
    combined_find_spawn=1) at pbx.c:4170
https://issues.asterisk.org/view.php?id=11 0x00002aaac96b7c8e in _macro_exec
(chan=0x1c5fbcb8, data=0x4053d8a0,
exclusive=0) at app_macro.c:398
https://issues.asterisk.org/view.php?id=12 0x00002aaac96b9804 in macro_exec
(chan=0x1c5fbcb8, data=0x4053d8a0) at
app_macro.c:561
https://issues.asterisk.org/view.php?id=13 0x00000000004ef04f in pbx_exec
(c=0x1c5fbcb8, app=0x1c394398,
data=0x4053d8a0) at pbx.c:1348
https://issues.asterisk.org/view.php?id=14 0x00000000004f90a8 in
pbx_extension_helper (c=0x1c5fbcb8, con=0x0,
context=0x1c5fcc30 "macro-exten-vm", exten=0x1c5fcc80 "s-CONGESTION",
priority=1, label=0x0, callerid=0x1c5679d8 "0575250438", 
    action=E_SPAWN, found=0x4053ffa4, combined_find_spawn=1) at
pbx.c:3711
https://issues.asterisk.org/view.php?id=15 0x00000000004fa894 in
ast_spawn_extension (c=0x1c5fbcb8,
context=0x1c5fcc30 "macro-exten-vm", exten=0x1c5fcc80 "s-CONGESTION",
priority=1, callerid=0x1c5679d8 "0575250438", found=0x4053ffa4, 
    combined_find_spawn=1) at pbx.c:4170
https://issues.asterisk.org/view.php?id=16 0x00000000004fb03c in __ast_pbx_run
(c=0x1c5fbcb8, args=0x0) at
pbx.c:4264
https://issues.asterisk.org/view.php?id=17 0x00000000004fc63c in pbx_thread
(data=0x1c5fbcb8) at pbx.c:4551
https://issues.asterisk.org/view.php?id=18 0x000000000056160a in dummy_start
(data=0x1c56ba88) at utils.c:968
https://issues.asterisk.org/view.php?id=19 0x000000328920673d in start_thread ()
from /lib64/libpthread.so.0
https://issues.asterisk.org/view.php?id=20 0x00000032886d3d1d in clone () from
/lib64/libc.so.6

Best regards 

Issue History 
Date Modified    Username       Field                    Change               
====================================================================== 
2010-06-01 12:36 jin            Note Added: 0122712                          
======================================================================

More information about the asterisk-bugs mailing list