[asterisk-bugs] [JIRA] (ASTERISK-27235) Crash when freeing frame in bridge
Richard Kenner (JIRA)
noreply at issues.asterisk.org
Wed Aug 30 18:27:07 CDT 2017
[ https://issues.asterisk.org/jira/browse/ASTERISK-27235?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=238334#comment-238334 ]
Richard Kenner commented on ASTERISK-27235:
-------------------------------------------
Oh, the frame is:
(gdb) print *fr
$1 = {frametype = 671088760, subclass = {integer = 671088760,
format = 0x1ada980, frame_ending = 0}, datalen = 0, samples = 640,
mallocd = 1, mallocd_hdr_len = 215, offset = 64,
src = 0x7f092800d7c8 "siren14tolin32", data = {ptr = 0x0, uint32 = 0,
pad = "\000\000\000\000\000\000\000"}, delivery = {tv_sec = 1504129163,
tv_usec = 810700}, frame_list = {next = 0x0}, flags = 0, ts = 0, len = 0,
seqno = 0}
> Crash when freeing frame in bridge
> ----------------------------------
>
> Key: ASTERISK-27235
> URL: https://issues.asterisk.org/jira/browse/ASTERISK-27235
> Project: Asterisk
> Issue Type: Bug
> Security Level: None
> Components: Core/Bridging
> Affects Versions: 14.6.0
> Environment: Centos *
> Reporter: Richard Kenner
>
> I have a crash in freeing a frame, called from bridge_frame_free. This was a three-way video conference between a Polycom Trio and two Linphone Desktop applications. The full traceback is:
> #0 0x00007f0962b6d1d7 in raise () from /lib64/libc.so.6
> #1 0x00007f0962b6e8c8 in abort () from /lib64/libc.so.6
> #2 0x00007f0962bacf07 in __libc_message () from /lib64/libc.so.6
> #3 0x00007f0962bb4503 in _int_free () from /lib64/libc.so.6
> #4 0x0000000000523dff in __frame_free (cache=1, fr=0x7f092800d700)
> at frame.c:157
> #5 ast_frame_free (frame=frame at entry=0x7f092800d700, cache=cache at entry=1)
> at frame.c:171
> #6 0x0000000000483268 in bridge_frame_free (frame=<optimized out>)
> at bridge_channel.c:969
> #7 bridge_channel_handle_write (bridge_channel=<optimized out>)
> at bridge_channel.c:2349
> #8 bridge_channel_wait (bridge_channel=0x7f092800f1c8)
> at bridge_channel.c:2622
> #9 bridge_channel_internal_join (
> bridge_channel=bridge_channel at entry=0x7f092800f1c8)
> at bridge_channel.c:2757
> #10 0x000000000046d47e in ast_bridge_join (bridge=0x7f0918007518,
> chan=chan at entry=0x7f08dc01a338, swap=swap at entry=0x0,
> features=features at entry=0x7f08bb07c538,
> tech_args=tech_args at entry=0x7f08bb07c560, flags=flags at entry=(unknown: 0))
> at bridge.c:1715
> #11 0x00007f08ec8ad8de in confbridge_exec (chan=0x7f08dc01a338,
> ---Type <return> to continue, or q <return> to quit---
> data=<optimized out>) at app_confbridge.c:2448
> #12 0x00000000005895a6 in pbx_exec (c=c at entry=0x7f08dc01a338,
> app=app at entry=0x2039310,
> data=data at entry=0x7f08bb07cb20 "206,,,default_menu") at pbx_app.c:491
> #13 0x000000000057d9f9 in pbx_extension_helper (c=c at entry=0x7f08dc01a338,
> context=0x7f08dc01ad08 "Conferences",
> exten=exten at entry=0x7f08dc01ad58 "206", priority=priority at entry=5,
> label=label at entry=0x0, callerid=callerid at entry=0x7f08dc0080e0 "198",
> action=action at entry=E_SPAWN, found=found at entry=0x7f08bb07eba0,
> combined_find_spawn=combined_find_spawn at entry=1, con=0x0) at pbx.c:2923
> #14 0x000000000057f903 in ast_spawn_extension (combined_find_spawn=1,
> found=0x7f08bb07eba0, callerid=0x7f08dc0080e0 "198", priority=5,
> exten=0x7f08dc01ad58 "206", context=<optimized out>, c=0x7f08dc01a338)
> at pbx.c:4154
> #15 __ast_pbx_run (c=c at entry=0x7f08dc01a338, args=args at entry=0x0)
> at pbx.c:4328
> #16 0x0000000000580e23 in pbx_thread (data=data at entry=0x7f08dc01a338)
> at pbx.c:4650
> #17 0x00000000005f917a in dummy_start (data=<optimized out>) at utils.c:1233
> #18 0x00007f096396fdc5 in start_thread () from /lib64/libpthread.so.0
> #19 0x00007f0962c2f76d in clone () from /lib64/libc.so.6
--
This message was sent by Atlassian JIRA
(v6.2#6252)
More information about the asterisk-bugs
mailing list