Actions
Bug #5325
closedttcn3-bts-test[-latest] provokes a segfault
Start date:
11/24/2021
Due date:
% Done:
100%
Spec Reference:
Description
Build artifacts of the recent ttcn3-bts-test[-latest] runs contain core dumps:
https://jenkins.osmocom.org/jenkins/view/TTCN3/job/ttcn3-bts-test/1479/artifact/logs/bts/
https://jenkins.osmocom.org/jenkins/view/TTCN3/job/ttcn3-bts-test-latest/1153/artifact/logs/bts/
Looks like double free to me:
(gdb) bt #0 __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51 #1 0x00007f60624f642a in __GI_abort () at abort.c:89 #2 0x00007f606334bd7c in ?? () from /usr/lib/x86_64-linux-gnu/libtalloc.so.2 #3 0x00007f606334b949 in _talloc_free () from /usr/lib/x86_64-linux-gnu/libtalloc.so.2 #4 0x0000557d09d77752 in bts_smscb_state_reset (bts_ss=bts_ss@entry=0x557d0c068ef8) at cbch.c:336 #5 0x0000557d09d77d90 in bts_cbch_reset (bts=bts@entry=0x557d0c065bc0) at cbch.c:341 #6 0x0000557d09d7acfa in st_op_disabled_notinstalled_on_enter (fi=<optimized out>, prev_state=<optimized out>) at nm_bts_fsm.c:64 #7 0x00007f6062c9491f in ?? () from /usr/lib/x86_64-linux-gnu/libosmocore.so.18 #8 0x00007f6062c94c3d in _osmo_fsm_inst_state_chg () from /usr/lib/x86_64-linux-gnu/libosmocore.so.18 #9 0x00007f6062c94e14 in _osmo_fsm_inst_dispatch () from /usr/lib/x86_64-linux-gnu/libosmocore.so.18 #10 0x0000557d09d7aa54 in ev_dispatch_children (event=6, site_mgr=0x557d0c065d30) at nm_bts_sm_fsm.c:48 #11 nm_bts_sm_allstate (fi=0x557d0c069250, event=<optimized out>, data=<optimized out>) at nm_bts_sm_fsm.c:135 #12 0x00007f6062c94e14 in _osmo_fsm_inst_dispatch () from /usr/lib/x86_64-linux-gnu/libosmocore.so.18 #13 0x0000557d09d72f1d in st_exit_on_enter (fi=0x557d0c069020, prev_state=<optimized out>) at bts_shutdown_fsm.c:164 #14 0x00007f6062c9491f in ?? () from /usr/lib/x86_64-linux-gnu/libosmocore.so.18 #15 0x00007f6062c94c3d in _osmo_fsm_inst_state_chg () from /usr/lib/x86_64-linux-gnu/libosmocore.so.18 #16 0x0000557d09d72b57 in st_wait_trx_closed (fi=0x557d0c069020, event=<optimized out>, data=<optimized out>) at bts_shutdown_fsm.c:155 #17 0x00007f6062c94de4 in _osmo_fsm_inst_dispatch () from /usr/lib/x86_64-linux-gnu/libosmocore.so.18 #18 0x0000557d09d7318c in bts_model_trx_close_cb (trx=<optimized out>, rc=<optimized out>) at bts_shutdown_fsm.c:277 #19 0x0000557d09d546cb in trx_prov_fsm_apply_close (plink=0x557d0c06fec0, rc=0) at trx_provision_fsm.c:316 #20 0x00007f6062c94de4 in _osmo_fsm_inst_dispatch () from /usr/lib/x86_64-linux-gnu/libosmocore.so.18 #21 0x0000557d09d49fc2 in trx_ctrl_rx_rsp_poweroff (rsp=0x7ffdbf202540, rsp=0x7ffdbf202540, l1h=0x557d0c07d790) at trx_if.c:518 #22 trx_ctrl_rx_rsp (tcm=0x557d0c404bc0, rsp=0x7ffdbf202540, l1h=0x557d0c07d790) at trx_if.c:637 #23 trx_ctrl_read_cb (ofd=<optimized out>, what=<optimized out>) at trx_if.c:733 #24 0x00007f6062c906fc in ?? () from /usr/lib/x86_64-linux-gnu/libosmocore.so.18 #25 0x00007f6062c907a6 in osmo_select_main () from /usr/lib/x86_64-linux-gnu/libosmocore.so.18 #26 0x0000557d09d79284 in bts_main (argc=3, argv=0x7ffdbf202db8) at main.c:437 #27 0x00007f60624e22e1 in __libc_start_main (main=0x557d09d48aa0 <main>, argc=3, argv=0x7ffdbf202db8, init=<optimized out>, fini=<optimized out>, rtld_fini=<optimized out>, stack_end=0x7ffdbf202da8) at ../csu/libc-start.c:291 #28 0x0000557d09d48d0a in _start ()
Actions