[asterisk-bugs] [JIRA] (ASTERISK-25371) Crash in hangup at chan_pjsip.c:1749 when Asterisk attempts to generate hangup event

Abhay Gupta (JIRA) noreply at issues.asterisk.org
Tue Jun 11 01:48:47 CDT 2019 

    [ https://issues.asterisk.org/jira/browse/ASTERISK-25371?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=247343#comment-247343 ] 

Abhay Gupta commented on ASTERISK-25371:
----------------------------------------

Since the issue remains the same and being an issue with race condition of threads this issue crops up only once a while in a month or two and it is difficult to generate and so there is no point in creating a fresh issue since i know the race condition that leads  to this issue . 

I have submitted the patch for asterisk latest version since it is a mistake in the code in hangup function of all versions which tries to access members of a structure without checking if they exist and tries to free them as well .  The patch ensures that it checks the channel and session data structure before trying to access it which will solve this issue . 

> Crash in hangup at chan_pjsip.c:1749 when Asterisk attempts to generate hangup event
> ------------------------------------------------------------------------------------
>
>                 Key: ASTERISK-25371
>                 URL: https://issues.asterisk.org/jira/browse/ASTERISK-25371
>             Project: Asterisk
>          Issue Type: Bug
>      Security Level: None
>          Components: Channels/chan_pjsip
>    Affects Versions: 13.5.0, 16.4.0
>         Environment: Linux ubuntu 3.16.0-30-generic #40~14.04.1-Ubuntu SMP Thu Jan 15 17:43:14 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux
>            Reporter: Abhay Gupta
>            Assignee: Abhay Gupta
>              Labels: pjsip
>         Attachments: 8sep.txt, first.txt, fourth.txt, full.txt, full.txt, putty1.log, second.txt, succ_fail.txt, third.txt
>
>
> Asterisk frequently crashes in hangup function of chan_pjsip.c at line chan_pjsip.c:1749
> #0  0x00007f8413ab2d42 in hangup (data=0x7f84840b17e8) at chan_pjsip.c:1749
> and it looks like that channel is NULL
> #0  0x00007f8413ab2d42 in hangup (data=0x7f84840b17e8) at chan_pjsip.c:1749
>         h_data = 0x7f84840b17e8
>         ast = 0x7f8484003cb8
>         channel = 0x0
>         pvt = 0x7f8448905bb0
>         session = 0x7f848402a2e0
>         cause = 0
> All the coredumps with bt , bt full and thread apply all bt is attached 



--
This message was sent by Atlassian JIRA
(v6.2#6252)

More information about the asterisk-bugs mailing list