#379 Opensips Crashes with CDR

1.6.x
closed-out-of-date
modules (454)
2
2012-02-22
2011-05-12
Patrick Ferguson
No

ACC causes crash on line 1248 in store_core_leg_values (SET_LEN(cdr_buf.s,nr_values).

Backtrace:

#0 0x0000000041ce0002 in store_core_leg_values (dlg=0x200000000, req=0x0) at acc.c:1248
1248 SET_LEN(cdr_buf.s,nr_values);
(gdb) bt
#0 0x0000000041ce0002 in store_core_leg_values (dlg=0x200000000, req=0x0) at acc.c:1248
#1 0x0000000000728de0 in mem_pool ()
#2 0x000000000000001c in ?? ()
#3 0x000000000041d8dc in insert_new_lump_after (after=0x38, new_hdr=0x134 <Address 0x134 out of bounds>, len=1118843304, type=55)
at data_lump.c:120
#4 0x000000004226ca49 in restore_uri (msg=0x200, rr_param=0x4142a870, check_from=0) at replace.c:420
#5 0x000000004248d3e8 in ?? ()
#6 0x000000000071e278 in mem_pool ()
#7 0x0000000000727f70 in mem_pool ()
#8 0x000000000000000f in ?? ()
#9 0x000000004154a9d0 in last_dir.9589 () from /usr/local/opensips/lib64/opensips/modules/rr.so
#10 0x0000000000673621 in buf.4301 ()
#11 0x000000004144769a in run_rr_callbacks (req=0x727f70, rr_params=0x500000004) at rr_cb.c:99
#12 0x00000000414434d2 in after_loose (_m=0x727f70, preloaded=0) at loose.c:934
#13 0x0000000041444598 in loose_route (_m=0x727f70, _s1=Variable "_s1" is not available.
) at loose.c:973
#14 0x000000000040ef2d in do_action (a=0x6b02c0, msg=0x727f70) at action.c:1195
#15 0x0000000000412b62 in run_action_list (a=Variable "a" is not available.
) at action.c:140
#16 0x0000000000469de9 in eval_elem (e=0x6b0398, msg=0x727f70, val=0x0) at route.c:1354
#17 0x000000000046c885 in eval_expr (e=0x6b0398, msg=0x727f70, val=0x0) at route.c:1696
#18 0x000000000046c86a in eval_expr (e=0x6b03e8, msg=0x727f70, val=0x0) at route.c:1717
#19 0x000000000040ee36 in do_action (a=0x6b1138, msg=0x727f70) at action.c:802
#20 0x0000000000412b62 in run_action_list (a=Variable "a" is not available.
) at action.c:140
#21 0x000000000041156e in do_action (a=0x6b12e8, msg=0x727f70) at action.c:819
#22 0x0000000000412b62 in run_action_list (a=Variable "a" is not available.
) at action.c:140
#23 0x0000000000412efd in run_top_route (a=0x6aec28, msg=0x727f70) at action.c:120
#24 0x0000000000459758 in receive_msg (
buf=0x673440 "BYE sip:xxxxxxxxxx@xxx.xxx.xxx.xxx:5060 SIP/2.0\r\nFrom: <sip:yyyyyyyyyy@xxx.xxx.xxx.xxx>;tag=1ce6d720-100007f-13c4-55013-1d710d-11d6c586-1d710d\r\nTo: <sip:xxxxxxxxxx@xxx.xxx.xxx.xxx>;tag=gK07680e12\r\nCall-ID:"..., len=585, rcv_info=0x7fffffffebe0)
at receive.c:162
#25 0x00000000004aaa27 in udp_rcv_loop () at udp_server.c:492
#26 0x000000000042a916 in main (argc=Variable "argc" is not available.
) at main.c:824

Discussion

    • priority: 5 --> 7
     
  • Anca Vamanu
    Anca Vamanu
    2011-05-16

    Hi Patrick,

    What opensips version are you using? There was a problem with overflow fixed in acc with dialog. Can you please update acc module from svn to use that fix? Let us know if you still see crashes with that.

    Regards,
    Anca

     
  • with revision 7940, it it still crashed:

    #0 0x000000004224289a in prebuild_string (value_str=Variable "value_str" is not available.
    ) at acc.c:1296
    #1 0x0000000042242fc9 in acc_log_cdrs_request (dlg=Variable "dlg" is not available.
    ) at acc.c:238

     
    • assigned_to: nobody --> razvancrainea
     
  • Razvan Crainea
    Razvan Crainea
    2011-06-21

    Hi Patrick,

    Have you managed to solve this issue?

    Regards,
    Razvan

     
  • Razvan Crainea
    Razvan Crainea
    2011-06-30

    • priority: 7 --> 2
     
  • Razvan Crainea
    Razvan Crainea
    2012-02-22

    • status: open --> closed-out-of-date