Actions
Bug #4948
closedns2/framerelay segfault when running ttcn3-gbproxy-test-fr
Start date:
01/14/2021
Due date:
% Done:
100%
Spec Reference:
Description
Not sure what caused this, recent change was moving the SGSN side to SNS-IP
gdb session:
(gdb) bt #0 osmo_fr_tx_dlc (msg=0x55d55835bcd0) at frame_relay.c:789 #1 0x00007fba9b8cfdc1 in gprs_ns2_st_alive_onenter (fi=<optimized out>, old_state=0) at gprs_ns2_vc_fsm.c:366 #2 0x00007fba9b464bdf in state_chg (fi=0x55d55835b940, new_state=<optimized out>, keep_timer=keep_timer@entry=false, timeout_ms=3000, T=<optimized out>, file=<optimized out>, line=227) at fsm.c:699 #3 0x00007fba9b464efd in _osmo_fsm_inst_state_chg (fi=<optimized out>, new_state=<optimized out>, timeout_secs=<optimized out>, T=<optimized out>, file=<optimized out>, line=<optimized out>) at fsm.c:748 #4 0x00007fba9b4650a4 in _osmo_fsm_inst_dispatch (fi=0x55d55835b940, event=event@entry=0, data=data@entry=0x0, file=file@entry=0x7fba9b8e5dd4 "gprs_ns2_vc_fsm.c", line=line@entry=641) at fsm.c:877 #5 0x00007fba9b8d03a6 in gprs_ns2_vc_fsm_start (nsvc=nsvc@entry=0x55d55835b290) at gprs_ns2_vc_fsm.c:641 #6 0x00007fba9b8cba26 in gprs_ns2_start_alive_all_nsvcs (nse=nse@entry=0x55d558341e40) at gprs_ns2.c:1200 #7 0x00007fba9b8d275e in ns_sns_st_config_sgsn_ip4 (data=<optimized out>, event=4, fi=0x55d558345f80) at gprs_ns2_sns.c:907 #8 ns2_sns_st_config_sgsn (fi=0x55d558345f80, event=4, data=<optimized out>) at gprs_ns2_sns.c:984 #9 0x00007fba9b4650a4 in _osmo_fsm_inst_dispatch (fi=0x55d558345f80, event=event@entry=4, data=data@entry=0x7fff9e8018a0, file=file@entry=0x7fba9b8e5ee9 "gprs_ns2_sns.c", line=line@entry=1457) at fsm.c:877 #10 0x00007fba9b8d2e05 in gprs_ns2_sns_rx (nsvc=nsvc@entry=0x55d55834d9f0, msg=msg@entry=0x55d5583587b0, tp=tp@entry=0x7fff9e8018a0) at gprs_ns2_sns.c:1457 #11 0x00007fba9b8cb5c4 in ns2_recv_vc (nsvc=0x55d55834d9f0, msg=msg@entry=0x55d5583587b0) at gprs_ns2.c:1047 #12 0x00007fba9b8cc976 in handle_nsip_read (bfd=0x55d558345dd0) at gprs_ns2_udp.c:243 #13 nsip_fd_cb (bfd=0x55d558345dd0, what=1) at gprs_ns2_udp.c:261 #14 0x00007fba9b460a18 in poll_disp_fds (n_fd=<optimized out>) at select.c:350 #15 _osmo_select_main (polling=<optimized out>) at select.c:378 #16 0x00007fba9b460a96 in osmo_select_main (polling=<optimized out>) at select.c:417 #17 0x000055d5570792d1 in main (argc=3, argv=0x7fff9e802bc8) at gb_proxy_main.c:332 (gdb) p msg $1 = (struct msgb *) 0x55d55835bcd0 (gdb) p *msg $2 = {list = {next = 0x0, prev = 0x0}, {dst = 0xcf1, trx = 0xcf1}, lchan = 0x0, l1h = 0x0, l2h = 0x55d55835bd6c "\n", l3h = 0x0, l4h = 0x0, cb = {0, 0, 0, 0, 0}, data_len = 3072, len = 1, head = 0x55d55835bd58 "", tail = 0x55d55835bd6d "", data = 0x55d55835bd6c "\n", _data = 0x55d55835bd58 ""} (gdb) p msg->dst $3 = (void *) 0xcf1 (gdb) p dlc $4 = (struct osmo_fr_dlc *) 0xcf1 (gdb) p *dlc Cannot access memory at address 0xcf1
Actions