[asterisk-bugs] [JIRA] (ASTERISK-29376) Coredump with t.140 RED enabled

Joshua C. Colp (JIRA) noreply at issues.asterisk.org
Tue Mar 30 08:40:15 CDT 2021


     [ https://issues.asterisk.org/jira/browse/ASTERISK-29376?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Joshua C. Colp updated ASTERISK-29376:
--------------------------------------

    Description: Asterisk will randomly coredump if RED is allowed.  The exception is in an apparent scheduled callback to red_write.   I tried modifying the function to check for NULL pointers, but it still crashes due to possibly an invalid pointer.  (was: Asterisk will randomly coredump if RED is allowed.  The exception is in an apparent scheduled callback to red_write.   I tried modifying the function to check for NULL pointers, but it still crashes due to possibly an invalid pointer.

I do not see how to attach files, so here is the log entry from /var/log/messages:
messages-20210328:Mar 25 16:18:36 ipswitchdev9 systemd-coredump[2695202]: Process 2364610 (asterisk) of user 1000 dumped core.#012#012Stack trace of thread 2364773:#012#0  0x00007fd034dd1c34 red_write (res_rtp_asterisk.so)#012#1  0x00000000005596fc ast_sched_runq (asterisk)#012#2  0x00007fd0a46cadff do_monitor (chan_sip.so)#012#3  0x0000000000592529 dummy_start (asterisk)#012#4  0x00007fd0a942315a start_thread (libpthread.so.0)#012#5  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2686012:#012#0  0x00007fd0a894faa8 re_search_internal (libc.so.6)#012#1  0x00007fd0a895565b regexec@@GLIBC_2.3.4 (libc.so.6)#012#2  0x00000000005e0920 whitefilter_cmp_fn (asterisk)#012#3  0x000000000045d1f0 internal_ao2_traverse (asterisk)#012#4  0x000000000045d68e __ao2_callback_data (asterisk)#012#5  0x00000000005e0892 match_filter (asterisk)#012#6  0x00000000005e2d3f process_events (asterisk)#012#7  0x00000000005f1078 do_message (asterisk)#012#8  0x0000000000592529 dummy_start (asterisk)#012#9  0x00007fd0a942315a start_thread (libpthread.so.0)#012#10 0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364619:#012#0  0x00007fd0a893d018 __nanosleep (libc.so.6)#012#1  0x00007fd0a893cf1e sleep (libc.so.6)#012#2  0x00000000004c57b7 db_sync_thread (asterisk)#012#3  0x0000000000592529 dummy_start (asterisk)#012#4  0x00007fd0a942315a start_thread (libpthread.so.0)#012#5  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364633:#012#0  0x00007fd0a942930c pthread_cond_wait@@GLIBC_2.3.2 (libpthread.so.0)#012#1  0x0000000000559922 sched_run (asterisk)#012#2  0x0000000000592529 dummy_start (asterisk)#012#3  0x00007fd0a942315a start_thread (libpthread.so.0)#012#4  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364627:#012#0  0x00007fd0a8965cf1 __poll (libc.so.6)#012#1  0x0000000000457f0e poll (asterisk)#012#2  0x0000000000592529 dummy_start (asterisk)#012#3  0x00007fd0a942315a start_thread (libpthread.so.0)#012#4  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364675:#012#0  0x00007fd0a942bbe6 do_futex_wait.constprop.1 (libpthread.so.0)#012#1  0x00007fd0a942bcd8 __new_sem_wait_slow.constprop.0 (libpthread.so.0)#012#2  0x00000000005847e8 ast_sem_wait (asterisk)#012#3  0x0000000000592529 dummy_start (asterisk)#012#4  0x00007fd0a942315a start_thread (libpthread.so.0)#012#5  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364632:#012#0  0x00007fd0a942930c pthread_cond_wait@@GLIBC_2.3.2 (libpthread.so.0)#012#1  0x00000000004c93d6 do_devstate_changes (asterisk)#012#2  0x0000000000592529 dummy_start (asterisk)#012#3  0x00007fd0a942315a start_thread (libpthread.so.0)#012#4  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364686:#012#0  0x00007fd0a942bbe6 do_futex_wait.constprop.1 (libpthread.so.0)#012#1  0x00007fd0a942bcd8 __new_sem_wait_slow.constprop.0 (libpthread.so.0)#012#2  0x00000000005847e8 ast_sem_wait (asterisk)#012#3  0x0000000000592529 dummy_start (asterisk)#012#4  0x00007fd0a942315a start_thread (libpthread.so.0)#012#5  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364680:#012#0  0x00007fd0a8965cf1 __poll (libc.so.6)#012#1  0x00000000005940da poll (asterisk)#012#2  0x0000000000585bec ast_tcptls_server_root (asterisk)#012#3  0x0000000000592529 dummy_start (asterisk)#012#4  0x00007fd0a942315a start_thread (libpthread.so.0)#012#5  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364701:#012#0  0x00007fd0a942965a pthread_cond_timedwait@@GLIBC_2.3.2 (libpthread.so.0)#012#1  0x0000000000559872 sched_run (asterisk)#012#2  0x0000000000592529 dummy_start (asterisk)#012#3  0x00007fd0a942315a start_thread (libpthread.so.0)#012#4  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364699:#012#0  0x00007fd0a942bbe6 do_futex_wait.constprop.1 (libpthread.so.0)#012#1  0x00007fd0a942bcd8 __new_sem_wait_slow.constprop.0 (libpthread.so.0)#012#2  0x00000000005847e8 ast_sem_wait (asterisk)#012#3  0x0000000000592529 dummy_start (asterisk)#012#4  0x00007fd0a942315a start_thread (libpthread.so.0)#012#5  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364702:#012#0  0x00007fd0a893d018 __nanosleep (libc.so.6)#012#1  0x00007fd0a893cf1e sleep (libc.so.6)#012#2  0x00007fd0394cb22d keepalive_transport_thread (res_pjsip.so)#012#3  0x0000000000592529 dummy_start (asterisk)#012#4  0x00007fd0a942315a start_thread (libpthread.so.0)#012#5  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364700:#012#0  0x00007fd0a942930c pthread_cond_wait@@GLIBC_2.3.2 (libpthread.so.0)#012#1  0x0000000000559922 sched_run (asterisk)#012#2  0x0000000000592529 dummy_start (asterisk)#012#3  0x00007fd0a942315a start_thread (libpthread.so.0)#012#4  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364706:#012#0  0x00007fd0a89712a7 epoll_wait (libc.so.6)#012#1  0x00007fd0abda1c6b pj_ioqueue_poll (libasteriskpj.so.2)#012#2  0x00007fd034dc5335 timer_worker_thread (res_rtp_asterisk.so)#012#3  0x00007fd0abda3090 thread_main (libasteriskpj.so.2)#012#4  0x00007fd0a942315a start_thread (libpthread.so.0)#012#5  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364703:#012#0  0x00007fd0a8965cf1 __poll (libc.so.6)#012#1  0x00000000005940da poll (asterisk)#012#2  0x00007fd03e543fb9 unbound_resolver_thread (res_resolver_unbound.so)#012#3  0x0000000000592529 dummy_start (asterisk)#012#4  0x00007fd0a942315a start_thread (libpthread.so.0)#012#5  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364776:#012#0  0x00007fd0a942bbe6 do_futex_wait.constprop.1 (libpthread.so.0)#012#1  0x00007fd0a942bcd8 __new_sem_wait_slow.constprop.0 (libpthread.so.0)#012#2  0x00000000005847e8 ast_sem_wait (asterisk)#012#3  0x0000000000592529 dummy_start (asterisk)#012#4  0x00007fd0a942315a start_thread (libpthread.so.0)#012#5  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364708:#012#0  0x00007fd0a942bbe6 do_futex_wait.constprop.1 (libpthread.so.0)#012#1  0x00007fd0a942bcd8 __new_sem_wait_slow.constprop.0 (libpthread.so.0)#012#2  0x00000000005847e8 ast_sem_wait (asterisk)#012#3  0x0000000000592529 dummy_start (asterisk)#012#4  0x00007fd0a942315a start_thread (libpthread.so.0)#012#5  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364777:#012#0  0x00007fd0a942bbe6 do_futex_wait.constprop.1 (libpthread.so.0)#012#1  0x00007fd0a942bcd8 __new_sem_wait_slow.constprop.0 (libpthread.so.0)#012#2  0x00000000005847e8 ast_sem_wait (asterisk)#012#3  0x0000000000592529 dummy_start (asterisk)#012#4  0x00007fd0a942315a start_thread (libpthread.so.0)#012#5  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364709:#012#0  0x00007fd0a942930c pthread_cond_wait@@GLIBC_2.3.2 (libpthread.so.0)#012#1  0x0000000000559922 sched_run (asterisk)#012#2  0x0000000000592529 dummy_start (asterisk)#012#3  0x00007fd0a942315a start_thread (libpthread.so.0)#012#4  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364710:#012#0  0x00007fd0a942bbe6 do_futex_wait.constprop.1 (libpthread.so.0)#012#1  0x00007fd0a942bcd8 __new_sem_wait_slow.constprop.0 (libpthread.so.0)#012#2  0x00000000005847e8 ast_sem_wait (asterisk)#012#3  0x0000000000592529 dummy_start (asterisk)#012#4  0x00007fd0a942315a start_thread (libpthread.so.0)#012#5  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364782:#012#0  0x00007fd0a942965a pthread_cond_timedwait@@GLIBC_2.3.2 (libpthread.so.0)#012#1  0x00007fd0396ef6e8 do_refresh (res_calendar.so)#012#2  0x0000000000592529 dummy_start (asterisk)#012#3  0x00007fd0a942315a start_thread (libpthread.so.0)#012#4  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364711:#012#0  0x00007fd0a942930c pthread_cond_wait@@GLIBC_2.3.2 (libpthread.so.0)#012#1  0x00007fd0a4da150a iax2_process_thread (chan_iax2.so)#012#2  0x0000000000592529 dummy_start (asterisk)#012#3  0x00007fd0a942315a start_thread (libpthread.so.0)#012#4  0x00007fd0a8970f73 __clone (libc.so.6)#012#012Stack trace of thread 2364793:#012#0  0x00007fd0a942965a pthread_cond_timedwait@@GLIBC_2.3.
)

> Coredump with t.140 RED enabled
> -------------------------------
>
>                 Key: ASTERISK-29376
>                 URL: https://issues.asterisk.org/jira/browse/ASTERISK-29376
>             Project: Asterisk
>          Issue Type: Bug
>      Security Level: None
>          Components: Resources/res_rtp_asterisk
>    Affects Versions: 17.8.1
>         Environment: RedHat 8
>            Reporter: Thomas Johnson
>
> Asterisk will randomly coredump if RED is allowed.  The exception is in an apparent scheduled callback to red_write.   I tried modifying the function to check for NULL pointers, but it still crashes due to possibly an invalid pointer.



--
This message was sent by Atlassian JIRA
(v6.2#6252)



More information about the asterisk-bugs mailing list