[asterisk-bugs] [JIRA] (ASTERISK-20499) Crash in libsrtp srtp_unprotect_rtcp when SIP channel is bridged with non-optimizing Local channel

[Jonathan Rose (JIRA)]

    [ https://issues.asterisk.org/jira/browse/ASTERISK-20499?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=199853#comment-199853 ] 

Jonathan Rose edited comment on ASTERISK-20499 at 11/19/12 9:42 AM:
--------------------------------------------------------------------

Is that the only srtp_diagnostic_patch message in the log? I was kinda hoping you'd post a log file containing everything from the start of the run to the crash :P

EDIT:  Also, the gdb.txt you posted most recently appears to not be using the patch. The backtrace.txt is however, so I'm guessing it's just an old core dump or something? It doesn't really matter since what I'm trying to look at are log messages anyway.

I'm a little bothered that the log messages might be being deferred before the crash occurs, so I'm going to update the patch real quick to include a sleep before what appears to be the offending line.

I kinda have a feeling that we shouldn't be attempting to srtp_dealloc when srtp_alloc failed and that might be causing the crash here, but that still wouldn't explain why your srtp_alloc is failing in the first place.  That said, I think it might be a 64-bit OS compatibility problem (assuming you are using 64 bit Fedora).  I'll have to try reproducing this again on my other machine since the one I tried to reproduce it on the first time is using a 32 bit operating system.
                
      was (Author: jrose):
    Is that the only srtp_diagnostic_patch message in the log? I was kinda hoping you'd post a log file containing everything from the start of the run to the crash :P

EDIT:  Also, the gdb.txt you posted most recently appears to not be using the patch. The backtrace.txt is however, so I'm guessing it's just an old core dump or something? It doesn't really matter since what I'm trying to look at are log messages anyway.

I'm a little bothered that the log messages might be being deferred before the crash occurs, so I'm going to update the patch real quick to include a sleep before what appears to be the offending line.
                  
> Crash in libsrtp srtp_unprotect_rtcp when SIP channel is bridged with non-optimizing Local channel
> --------------------------------------------------------------------------------------------------
>
>                 Key: ASTERISK-20499
>                 URL: https://issues.asterisk.org/jira/browse/ASTERISK-20499
>             Project: Asterisk
>          Issue Type: Bug
>      Security Level: None
>          Components: Channels/chan_sip/SRTP
>    Affects Versions: 10.8.0
>         Environment: RHEL 5.8 on IBM X3650 M4 - 12 core - Xeon E5-2640 @ 2,50 ghz
>            Reporter: tootai
>            Assignee: tootai
>            Severity: Critical
>         Attachments: backtrace.txt, backtrace.txt, backtrace.txt, coredump20121001205609.txt, gdb.txt, gdb.txt, gdb.txt, libsrtp-1.4.4-fix_crash_on_rtcp_decode.patch, srtp_diagnostic_patch.diff, srtp_diagnostic_with_sleep.diff
>
>
> A call from snom320 in SRTP mode to echo test or to another phone *NOT* using SRTP is OK. Now we installed PhonerLite softphone with TLS/SRTP stuf and test with echo test: everything is OK too.
> Now PhonerLite calls the snom: asterisk coredump after 3~5 seconds and we are NOT able to make anymore SRTP calls after this, they all crash asterisk. We had this issue with 10.7.0 and 10.8.0
> We have logfiel from strace as well as coredump.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira