Actions
Bug #4817
closedgtp_delete_context_req2() called with NULL pctx->ggsn
Status:
Closed
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Start date:
10/18/2020
Due date:
% Done:
70%
Spec Reference:
Description
SGSN in production still seems to be crashing often. I enabled core dumps on one system and caught this Backtrace:
Program terminated with signal SIGSEGV, Segmentation fault. #0 0x00005627bb8c9c7d in sgsn_delete_pdp_ctx (pctx=0x5627bdafacc0) at sgsn_libgtp.c:321 321 sgsn_libgtp.c: No such file or directory. (gdb) bt #0 0x00005627bb8c9c7d in sgsn_delete_pdp_ctx (pctx=0x5627bdafacc0) at sgsn_libgtp.c:321 #1 0x00005627bb8be8ff in gsm48_rx_gsm_deact_pdp_req (msg=0x0, mm=0x5627bdb5bb30) at gprs_sm.c:642 #2 gsm0408_rcv_gsm (mmctx=mmctx@entry=0x5627bdb5bb30, msg=msg@entry=0x5627bda33550, llme=llme@entry=0x5627bdb30c20) at gprs_sm.c:730 #3 0x00005627bb8b414e in gsm0408_gprs_rcvmsg_gb (msg=msg@entry=0x5627bda33550, llme=0x5627bdb30c20, drop_cipherable=drop_cipherable@entry=false) at gprs_gb.c:69 #4 0x00005627bb8cbe95 in gprs_llc_rcvmsg (msg=0x5627bda33550, tv=<optimized out>) at gprs_llc.c:1011 #5 0x00007f3b2ae8dc51 in bssgp_rcvmsg () from /lib/x86_64-linux-gnu/libosmogb.so.11 #6 0x00007f3b2ae87744 in ?? () from /lib/x86_64-linux-gnu/libosmogb.so.11 #7 0x00007f3b2ae8936a in gprs_ns_rcvmsg () from /lib/x86_64-linux-gnu/libosmogb.so.11 #8 0x00007f3b2ae894d9 in ?? () from /lib/x86_64-linux-gnu/libosmogb.so.11 #9 0x00007f3b2ae2f514 in ?? () from /lib/x86_64-linux-gnu/libosmocore.so.16 #10 0x00007f3b2ae2fc26 in osmo_select_main () from /lib/x86_64-linux-gnu/libosmocore.so.16 #11 0x00005627bb8b3d6a in main (argc=<optimized out>, argv=0x7fffba9dbbd8) at sgsn_main.c:556
(gdb) p *pctx $1 = {list = {next = 0x5627bdb5bcc8, prev = 0x5627bdb5bcc8}, g_list = {next = 0x5627bda82940, prev = 0x5627bdb736f0}, mm = 0x5627bdb5bb30, destroy_ggsn = 0, ggsn = 0x0, ggsn_list = {next = 0x100100, prev = 0x200200}, ctrg = 0x5627bd99ca50, lib = 0x0, state = PDP_STATE_CR_REQ, type = PDP_TYPE_NONE, address = 0, apn_subscribed = 0x0, nsapi = 5, sapi = 11, ti = 0 '\000', vplmn_allowed = 0, qos_profile_subscr = 0, radio_prio = 0 '\000', timer = {node = {rb_parent_color = 94728684322873, rb_right = 0x5627bd942938, rb_left = 0x5627bd95b0e0}, list = {next = 0x5627bdafad60, prev = 0x5627bdafad60}, timeout = {tv_sec = 1603034867, tv_usec = 862976}, active = 1, cb = 0x5627bb8bd0d0 <pdpctx_timer_cb>, data = 0x5627bdafacc0}, T = 3395, num_T_exp = 0, cdr_timer = {node = {rb_parent_color = 94728686758337, rb_right = 0x0, rb_left = 0x0}, list = {next = 0x5627bdafadb8, prev = 0x5627bdafadb8}, timeout = {tv_sec = 1603035414, tv_usec = 613457}, active = 1, cb = 0x5627bb8d00d0 <cdr_pdp_timeout>, data = 0x5627bdafacc0}, cdr_start = {tv_sec = 55141, tv_nsec = 130687750}, cdr_bytes_in = 12878, cdr_bytes_out = 17074, cdr_charging_id = 99}
^^ ggsn = 0x0
Sorry, no leading log available right now.
Actions