<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=us-ascii">
<META content="MSHTML 6.00.3790.3959" name=GENERATOR></HEAD>
<BODY>
<DIV dir=ltr align=left><SPAN class=649462421-20092007><FONT face="Courier New"
color=#0000ff size=2>Valgrind output before the crash:</FONT></SPAN></DIV>
<DIV dir=ltr align=left><SPAN class=649462421-20092007><FONT face="Courier New"
color=#0000ff size=2></FONT></SPAN> </DIV>
<DIV dir=ltr align=left><SPAN class=649462421-20092007><FONT face="Courier New"
color=#0000ff size=2>==17954== <BR>==17954== Invalid read of size
4<BR>==17954== at 0x8267E2D: autocorr
(helpfun.c:36)<BR>==17954== by 0x54B46FA: coder_ld8a (in
/usr/lib/asterisk/modules/codec_g729a.so)<BR>==17954== by
0x54B462E: g729_coder (in
/usr/lib/asterisk/modules/codec_g729a.so)<BR>==17954== by
0x543A4DD: (within
/usr/lib/asterisk/modules/codec_g729a.so)<BR>==17954== by
0x80F585C: ast_translate (translate.c:335)<BR>==17954== by
0x8086DF8: ast_write (channel.c:2877)<BR>==17954== by
0x80AADBD: playtones_generator
(indications.c:191)<BR>==17954== by 0x8083F87:
ast_read_generator_actions (channel.c:2160)<BR>==17954== by
0x80859F9: __ast_read (channel.c:2513)<BR>==17954== by
0x8085BAD: ast_read (channel.c:2549)<BR>==17954== by
0x8130E4D: wait_for_answer (app_dial.c:689)<BR>==17954== by
0x8133EFA: dial_exec_full (app_dial.c:1283)<BR>==17954== Address 0xC is
not stack'd, malloc'd or (recently) free'd<BR>==17954== <BR>==17954== Process
terminating with default action of signal 11 (SIGSEGV): dumping
core<BR>==17954== Access not within mapped region at address
0xC<BR>==17954== at 0x8267E2D: autocorr
(helpfun.c:36)<BR>==17954== by 0x54B46FA: coder_ld8a (in
/usr/lib/asterisk/modules/codec_g729a.so)<BR>==17954== by
0x54B462E: g729_coder (in
/usr/lib/asterisk/modules/codec_g729a.so)<BR>==17954== by
0x543A4DD: (within
/usr/lib/asterisk/modules/codec_g729a.so)<BR>==17954== by
0x80F585C: ast_translate (translate.c:335)<BR>==17954== by
0x8086DF8: ast_write (channel.c:2877)<BR>==17954== by
0x80AADBD: playtones_generator
(indications.c:191)<BR>==17954== by 0x8083F87:
ast_read_generator_actions (channel.c:2160)<BR>==17954== by
0x80859F9: __ast_read (channel.c:2513)<BR>==17954== by
0x8085BAD: ast_read (channel.c:2549)<BR>==17954== by
0x8130E4D: wait_for_answer (app_dial.c:689)<BR>==17954== by
0x8133EFA: dial_exec_full (app_dial.c:1283)<BR>==17954== <BR>==17954== ERROR
SUMMARY: 232375 errors from 415 contexts (suppressed: 7 from 1)<BR>==17954==
malloc/free: in use at exit: 1,484,508 bytes in 7,032 blocks.<BR>==17954==
malloc/free: 22,955 allocs, 15,923 frees, 5,291,035 bytes
allocated.<BR>==17954== For counts of detected errors, rerun with:
-v<BR>==17954== searching for pointers to 7,032 not-freed blocks.<BR>==17954==
checked 12,836,600 bytes.<BR>==17954== <BR>==17954== LEAK
SUMMARY:<BR>==17954== definitely lost: 298 bytes in 2
blocks.<BR>==17954== possibly lost: 3,456 bytes in
24 blocks.<BR>==17954== still reachable: 1,480,754 bytes in
7,006 blocks.<BR>==17954==
suppressed: 0 bytes in 0 blocks.<BR>==17954== Rerun with --leak-check=full to
see details of leaked memory.<BR></FONT></SPAN></DIV>
<DIV dir=ltr align=left><SPAN class=649462421-20092007><FONT face="Courier New"
color=#0000ff size=2>I have added logging to the code to try to deterime what
might be drastically wrong, but i have not seen anything (presuming i would
notice).</DIV></FONT></SPAN><BR>
<BLOCKQUOTE dir=ltr
style="PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #0000ff 2px solid; MARGIN-RIGHT: 0px">
<DIV class=OutlookMessageHeader lang=en-us dir=ltr align=left>
<HR tabIndex=-1>
<FONT face=Tahoma size=2><B>From:</B> asterisk-dev-bounces@lists.digium.com
[mailto:asterisk-dev-bounces@lists.digium.com] <B>On Behalf Of </B>Power, Paul
C.<BR><B>Sent:</B> Thursday, September 20, 2007 8:35 AM<BR><B>To:</B> Asterisk
Developers Mailing List<BR><B>Subject:</B> Re: [asterisk-dev] Coredump upon
receipt of RTP with 183sessionprogress on<BR></FONT><BR></DIV>
<DIV></DIV>
<DIV dir=ltr align=left><SPAN class=394003314-20092007><FONT
face="Courier New" color=#0000ff size=2>Some thing i forgot to mention the
first time:</FONT></SPAN></DIV>
<DIV dir=ltr align=left><SPAN class=394003314-20092007><FONT
face="Courier New" color=#0000ff size=2>when progressinband=never or no, the
call out to the PSTN works like a charm.</FONT></SPAN></DIV><BR>
<BLOCKQUOTE dir=ltr
style="PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #0000ff 2px solid; MARGIN-RIGHT: 0px">
<DIV class=OutlookMessageHeader lang=en-us dir=ltr align=left>
<HR tabIndex=-1>
<FONT face=Tahoma size=2><B>From:</B> asterisk-dev-bounces@lists.digium.com
[mailto:asterisk-dev-bounces@lists.digium.com] <B>On Behalf Of </B>Power,
Paul C.<BR><B>Sent:</B> Wednesday, September 19, 2007 4:37 PM<BR><B>To:</B>
asterisk-dev@lists.digium.com<BR><B>Subject:</B> [asterisk-dev] Coredump
upon receipt of RTP with 183 sessionprogress on<BR></FONT><BR></DIV>
<DIV></DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New" size=2>Hello
every body. </FONT></SPAN></DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New"
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New" size=2>I
originally ran into the problem on * 1.4.10, but am able to replicate quite
nicly on 1.4.11.</FONT></SPAN></DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New"
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New"
size=2>I have asterisk installed on gentoo. Using a Polycom 601 phone,
codec g729. trying to dial out to the PSTN via an openSER proxy with an
Audiocodes gateway.</FONT></SPAN></DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New"
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New"
size=2>progressinband is set to yes.</FONT></SPAN></DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New"
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New" size=2>When i
dial out to the PSTN asterisk dies upon the receipt of the first RTP packet
from the phone. i have traced the problem to the ast_rtp_read call in
rtp.c. i have looked into things to the point that i know when an RTP
packet comes from the phone and rtp->f.samples (line 1300) value is set
to 160 (in my case), the function call does not return to the place it came
from (asterisk crashes). i have experimented a bit by manulally
setting rtp->f.samples to various values.</FONT></SPAN></DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New"
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New" size=2>when set
to 0 asterisk does not die, it contiues to run.</FONT></SPAN></DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New" size=2>when set
to 1 asterisk dies after receiving a few dozen RTP
packets.</FONT></SPAN></DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New" size=2>when set
to 31 asterisk dies after receiving 3-4 RTP packets.</FONT></SPAN></DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New" size=2>so, the
higher the samples value the quicker the death.</FONT></SPAN></DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New"
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New" size=2>(gdb)
bt</FONT></SPAN></DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New" size=2>#0
0x08267e69 in autocorr (r=0x869e6c4, x=0xc, N=-1228178720, order=222647369)
at helpfun.c:38<BR>#1 0xb6f656fb in coder_ld8a () from
/usr/lib/asterisk/modules/codec_g729a.so<BR>#2 0xb6f6562f in
g729_coder () from /usr/lib/asterisk/modules/codec_g729a.so<BR>#3
0xb6eeb4de in ?? () from
/usr/lib/asterisk/modules/codec_g729a.so<BR>#4 0x0869e6c4 in ??
()<BR>#5 0x086a0688 in ?? ()<BR>#6 0x086a4548 in ??
()<BR>#7 0xb6cb7dd8 in ?? ()<BR>#8 0xb78e2ff4 in ?? () from
/lib/libc.so.6<BR>#9 0x00000000 in ?? ()</FONT></SPAN></DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New"
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New" size=2>I am
pretty much at a loss as to where to look or what to do to resolve this
issue.</FONT></SPAN></DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New" size=2>Any
suggestions would be welcomed. If there is any additional information
that people would like to see, i will try to provide.</FONT></SPAN></DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New"
size=2></FONT></SPAN> </DIV>
<DIV><SPAN class=372304821-19092007><FONT face="Courier New"
size=2>-PCPIII</FONT></SPAN></DIV>
<DIV><SPAN class=372304821-19092007></SPAN> </DIV>
<DIV><SPAN class=372304821-19092007><FONT face=Arial
size=2></FONT></SPAN> </DIV>
<DIV><SPAN
class=372304821-19092007></SPAN> </DIV></BLOCKQUOTE></BLOCKQUOTE></BODY></HTML>