[asterisk-bugs] [JIRA] Updated: (ASTERISK-19435) Asterisk segfaults in app_alarmreceiver

Pedro Kiefer (JIRA) noreply at issues.asterisk.org
Fri Jul 20 12:21:21 CDT 2012 

     [ https://issues.asterisk.org/jira/browse/ASTERISK-19435?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Pedro Kiefer updated ASTERISK-19435:
------------------------------------

    Attachment: 0001-Fix-bug-ASTERISK-19435.patch

Set ast_frame.src to __FUNCTION__ as per app_fax, app_festival and app_mp3.

> Asterisk segfaults in app_alarmreceiver
> ---------------------------------------
>
>                 Key: ASTERISK-19435
>                 URL: https://issues.asterisk.org/jira/browse/ASTERISK-19435
>             Project: Asterisk
>          Issue Type: Bug
>      Security Level: None
>          Components: Applications/app_alarmreceiver
>    Affects Versions: 1.8.9.0, 1.8.9.2
>         Environment: Linux Centos 5.7 (updated) (32bit)
> Asterisk 1.8.9.2 (from asterisk-1.8 repos) (Problem also existed on 1.6.2)
>            Reporter: Deon George
>         Attachments: 0001-Fix-bug-ASTERISK-19435.patch, asterisk-alarmreceiver.patch
>
>
> App alarm receive causes an asterisk segfault when receiving an alarm from an alarm panel.
> GDB-backtrace:
> Core was generated by `/usr/sbin/asterisk -f -U asterisk -G asterisk -vvvg -c'.
> Program terminated with signal 11, Segmentation fault.
> #0  0x008d9979 in strcasecmp () from /lib/libc.so.6
> (gdb) bt
> #0  0x008d9979 in strcasecmp () from /lib/libc.so.6
> #1  0x080b936c in ast_write ()
> #2  0x00d5a64d in send_tone_burst (chan=0x9649cc8, freq=1400, duration=100, tldn=2048) at app_alarmreceiver.c:212
> #3  0x00d5b2b5 in receive_ademco_contact_id (chan=0x9649cc8, data=0x81be1de "") at app_alarmreceiver.c:450
> #4  alarmreceiver_exec (chan=0x9649cc8, data=0x81be1de "") at app_alarmreceiver.c:615
> #5  0x081405db in pbx_exec ()
> #6  0x081512ed in pbx_extension_helper ()
> #7  0x0815469f in __ast_pbx_run ()
> #8  0x08157230 in pbx_thread ()
> #9  0x081946ab in dummy_start ()
> #10 0x0038d832 in start_thread () from /lib/libpthread.so.0
> #11 0x0093a46e in clone () from /lib/libc.so.6
> From what I can see, the problem could be that fr->src is used in ast_write() {strcasecmp(fr->src, "ast_prod")}, however fr->src (which is wf->src) is not set in app_alarmreceiver.c.
> This seems to be introduced in changeset 276652

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the asterisk-bugs mailing list