[asterisk-bugs] [JIRA] (ASTERISK-30183) SegFault / TCP Stack

Tim (JIRA) noreply at issues.asterisk.org
Wed Aug 17 05:27:09 CDT 2022 

Tim created ASTERISK-30183:
------------------------------

             Summary: SegFault / TCP Stack
                 Key: ASTERISK-30183
                 URL: https://issues.asterisk.org/jira/browse/ASTERISK-30183
             Project: Asterisk
          Issue Type: Bug
      Security Level: None
          Components: pjproject/pjsip
    Affects Versions: 18.10.0
         Environment: VM, 8 cores, 8GB ram
            Reporter: Tim
            Severity: Critical


We seem to be getting seg faults on a few of our asterisk 18 servers, when reading the backtraces I noticed they appear to all be from ast_sip_send_stateful_response? please see below a snip from the backtrace:

Core was generated by `/usr/sbin/asterisk -f -vvvg -c'.
Program terminated with signal 11, Segmentation fault.
#0  pj_lock_acquire (lock=0x6764697262206568) at ../src/pj/lock.c:180
180	    return (*lock->acquire)(lock->lock_object);
#0  pj_lock_acquire (lock=0x6764697262206568) at ../src/pj/lock.c:180
        lock = 0x6764697262206568
#1  0x00007f8f849ae4c1 in grp_lock_acquire (p=0x7f8eb8086848) at ../src/pj/lock.c:290
        glock = 0x7f8eb8086848
        lck = 0x218cf68
#2  pj_grp_lock_acquire (grp_lock=0x7f8eb8086848) at ../src/pj/lock.c:478
No locals.
#3  0x00007f8f8493cf3c in pjsip_tsx_send_msg (tsx=0x7f8f48ae9388, tdata=tdata at entry=0x7f8eb81ad5f8) at ../src/pjsip/sip_transaction.c:1788
        event = {prev = 0x7f8f48ae9388, next = 0x1, type = PJSIP_EVENT_TX_MSG, body = {timer = {entry = 0x7f8eb81ad5f8}, tsx_state = {src = {rdata = 0x7f8eb81ad5f8, tdata = 0x7f8eb81ad5f8, timer = 0x7f8eb81ad5f8, status = -1206200840, data = 0x7f8eb81ad5f8}, tsx = 0x7f8f404c9e90, prev_state = -1206200840, type = 32654}, tx_msg = {tdata = 0x7f8eb81ad5f8}, tx_error = {tdata = 0x7f8eb81ad5f8, tsx = 0x7f8f404c9e90}, rx_msg = {rdata = 0x7f8eb81ad5f8}, user = {user1 = 0x7f8eb81ad5f8, user2 = 0x7f8f404c9e90, user3 = 0x7f8eb81ad5f8, user4 = 0x7f8e70c81e88}}}
        status = <optimized out>
#4  0x00007f8f339a1b5e in ast_sip_send_stateful_response (rdata=rdata at entry=0x7f8e70c81e88, tdata=0x7f8eb81ad5f8, sip_endpoint=sip_endpoint at entry=0x7f8eb804aa88) at res_pjsip.c:5505
        tsx = 0x7f8f48ae9388
        __PRETTY_FUNCTION__ = "ast_sip_send_stateful_response"
#5  0x00007f8f26e72a1e in register_aor (aor_name=0x7f8eb8040d50 "extension-Client", aor=0x7f8eb814fe00, endpoint=0x7f8eb804aa88, rdata=0x7f8e70c81e88) at res_pjsip_registrar.c:1023
        response = {tdata = 0x7f8eb81ad5f8, code = 500}
        contacts = 0x7f8eb804e508
#6  registrar_on_rx_request (rdata=0x7f8e70c81e88) at res_pjsip_registrar.c:1218
        endpoint = 0x7f8eb804aa88
        aor = 0x7f8eb814fe00
        aor_name = 0x7f8eb8040d50 "extension-Client"
        __FUNCTION__ = "registrar_on_rx_request"
        __PRETTY_FUNCTION__ = "registrar_on_rx_request"


I can send you multiple backtraces but I cant attach them here.





--
This message was sent by Atlassian JIRA
(v6.2#6252)

More information about the asterisk-bugs mailing list