Hello,
can anyone help with fix?
Mobile application crashing all time:


root@aero-bts:/with_sim/osmocom-bb/src/host/layer23/src/mobile# ./mobile

Copyright (C) 2008-2010 ...

Contributions by ...


License GPLv2+: GNU GPL version 2 or later <http://gnu.org/licenses/gpl.html>

This is free software: you are free to change and redistribute it.

There is NO WARRANTY, to the extent permitted by law.


<000f> sim.c:1223 init SIM client

<0006> gsm48_cc.c:63 init Call Control

<0007> gsm480_ss.c:231 init SS

<0019> gsm411_sms.c:63 init SMS

<0001> gsm48_rr.c:5500 init Radio Ressource process

<0005> gsm48_mm.c:1324 init Mobility Management process

<0005> gsm48_mm.c:1037 Selecting PLMN SEARCH state, because no SIM.

<0002> gsm322.c:5037 init PLMN process

<0003> gsm322.c:5038 init Cell Selection process

<0003> gsm322.c:5095 Read stored BA list (mcc=214 mnc=07  Spain, movistar)

Mobile '1' initialized, please start phone now!

VTY available on port 4247.

<0005> subscriber.c:600 Requesting SIM file 0x2fe2

<000f> sim.c:209 got new job: SIM_JOB_READ_BINARY (handle=00000004)

<000f> sim.c:697 go MF

<000f> sim.c:241 SELECT (file=0x3f00)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x1e)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=30)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=30 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:241 SELECT (file=0x2fe2)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x0f)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=15)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=15 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:1065 selected file (len 10)

<000f> sim.c:277 READ BINARY (offset=0 len=10)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xb0)

<000f> sim.c:876 received APDU (len=10 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:151 sending result to callback function (type=0)

<0005> subscriber.c:232 received ICCID 8934076100140610329 from SIM

<0005> subscriber.c:600 Requesting SIM file 0x6f07

<000f> sim.c:209 got new job: SIM_JOB_READ_BINARY (handle=00000004)

<000f> sim.c:706 requested path is longer, go child DFgsm

<000f> sim.c:241 SELECT (file=0x7f20)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x1e)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=30)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=30 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:241 SELECT (file=0x6f07)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x0f)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=15)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=15 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:1065 selected file (len 9)

<000f> sim.c:277 READ BINARY (offset=0 len=9)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xb0)

<000f> sim.c:876 received APDU (len=9 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:151 sending result to callback function (type=0)

<0005> subscriber.c:262 received IMSI 214075542695571 from SIM

<0005> subscriber.c:600 Requesting SIM file 0x6f7e

<000f> sim.c:209 got new job: SIM_JOB_READ_BINARY (handle=00000004)

<000f> sim.c:241 SELECT (file=0x6f7e)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x0f)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=15)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=15 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:1065 selected file (len 11)

<000f> sim.c:277 READ BINARY (offset=0 len=11)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xb0)

<000f> sim.c:876 received APDU (len=11 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:151 sending result to callback function (type=0)

<0005> subscriber.c:299 received LOCI from SIM (mcc=214 mnc=07 lac=0x0b58 U1)

<0005> subscriber.c:600 Requesting SIM file 0x6f20

<000f> sim.c:209 got new job: SIM_JOB_READ_BINARY (handle=00000004)

<000f> sim.c:241 SELECT (file=0x6f20)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x0f)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=15)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=15 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:1065 selected file (len 9)

<000f> sim.c:277 READ BINARY (offset=0 len=9)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xb0)

<000f> sim.c:876 received APDU (len=9 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:151 sending result to callback function (type=0)

<0005> subscriber.c:376 received KEY from SIM

<0005> subscriber.c:600 Requesting SIM file 0x6f30

<000f> sim.c:209 got new job: SIM_JOB_READ_BINARY (handle=00000004)

<000f> sim.c:241 SELECT (file=0x6f30)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x0f)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=15)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=15 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:1065 selected file (len 48)

<000f> sim.c:277 READ BINARY (offset=0 len=48)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xb0)

<000f> sim.c:876 received APDU (len=48 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:151 sending result to callback function (type=0)

<0005> subscriber.c:414 received PLMN selector (mcc=208 mnc=01) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=208 mnc=20) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=234 mnc=10) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=268 mnc=06) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=268 mnc=03) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=222 mnc=01) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=262 mnc=07) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=204 mnc=08) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=604 mnc=00) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=232 mnc=03) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=228 mnc=02) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=272 mnc=02) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=334 mnc=030) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=202 mnc=10) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=226 mnc=10) from SIM

<0005> subscriber.c:414 received PLMN selector (mcc=226 mnc=03) from SIM

<0005> subscriber.c:600 Requesting SIM file 0x6f31

<000f> sim.c:209 got new job: SIM_JOB_READ_BINARY (handle=00000004)

<000f> sim.c:241 SELECT (file=0x6f31)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x0f)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=15)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=15 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:1065 selected file (len 1)

<000f> sim.c:277 READ BINARY (offset=0 len=1)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xb0)

<000f> sim.c:876 received APDU (len=1 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:151 sending result to callback function (type=0)

<0005> subscriber.c:435 received HPPLMN 5 (30 mins) from SIM

<0005> subscriber.c:600 Requesting SIM file 0x6f46

<000f> sim.c:209 got new job: SIM_JOB_READ_BINARY (handle=00000004)

<000f> sim.c:241 SELECT (file=0x6f46)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x0f)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=15)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=15 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:1065 selected file (len 17)

<000f> sim.c:277 READ BINARY (offset=0 len=17)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xb0)

<000f> sim.c:876 received APDU (len=17 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:151 sending result to callback function (type=0)

<0005> subscriber.c:687 SIM reading failed, file invalid

<0005> subscriber.c:600 Requesting SIM file 0x6f78

<000f> sim.c:209 got new job: SIM_JOB_READ_BINARY (handle=00000004)

<000f> sim.c:241 SELECT (file=0x6f78)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x0f)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=15)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=15 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:1065 selected file (len 2)

<000f> sim.c:277 READ BINARY (offset=0 len=2)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xb0)

<000f> sim.c:876 received APDU (len=2 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:151 sending result to callback function (type=0)

<0005> subscriber.c:476 received ACC 0002 from SIM

<0005> subscriber.c:600 Requesting SIM file 0x6f7b

<000f> sim.c:209 got new job: SIM_JOB_READ_BINARY (handle=00000004)

<000f> sim.c:241 SELECT (file=0x6f7b)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x0f)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=15)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=15 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:1065 selected file (len 12)

<000f> sim.c:277 READ BINARY (offset=0 len=12)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xb0)

<000f> sim.c:876 received APDU (len=12 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:151 sending result to callback function (type=0)

<0005> subscriber.c:515 received Forbidden PLMN 214 01 from SIM

<0005> subscriber.c:515 received Forbidden PLMN 214 03 from SIM

<0005> subscriber.c:600 Requesting SIM file 0x6f40

<000f> sim.c:209 got new job: SIM_JOB_READ_RECORD (handle=00000004)

<000f> sim.c:697 go MF

<000f> sim.c:241 SELECT (file=0x3f00)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x1e)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=30)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=30 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:706 requested path is longer, go child DFtelecom

<000f> sim.c:241 SELECT (file=0x7f10)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x1e)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=30)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=30 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:241 SELECT (file=0x6f40)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x0f)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=15)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=15 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:1060 selected record (len 28 structure 1)

<000f> sim.c:312 READ RECORD (rec_no=1 mode=4 len=28)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xb2)

<000f> sim.c:876 received APDU (len=28 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:151 sending result to callback function (type=0)

<0005> subscriber.c:327 received MSISDN  from SIM

<0005> subscriber.c:600 Requesting SIM file 0x6f42

<000f> sim.c:209 got new job: SIM_JOB_READ_RECORD (handle=00000004)

<000f> sim.c:241 SELECT (file=0x6f42)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xa4)

<000f> sim.c:876 received APDU (len=0 sw1=0x9f sw2=0x0f)

<000f> sim.c:949 command successfull

<000f> sim.c:571 GET RESPONSE (len=15)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xc0)

<000f> sim.c:876 received APDU (len=15 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:1060 selected record (len 42 structure 1)

<000f> sim.c:312 READ RECORD (rec_no=1 mode=4 len=42)

<000f> sim.c:187 sending APDU (class 0xa0, ins 0xb2)

<000f> sim.c:876 received APDU (len=42 sw1=0x90 sw2=0x00)

<000f> sim.c:949 command successfull

<000f> sim.c:151 sending result to callback function (type=0)

<0005> subscriber.c:357 received SMSP from SIM (sca=+34609090909)

<0005> subscriber.c:560 (ms 1) Done reading SIM card (IMSI=214075542695571 Spain, movistar)

<0005> subscriber.c:572 -> SIM card registered to 214 07 (Spain, movistar)

<0005> gsm48_mm.c:4388 (ms 1) Received 'MMR_REG_REQ' event

<0002> gsm322.c:3818 (ms 1) Event 'EVENT_SIM_INSERT' for automatic PLMN selection in state 'A0 null'

<000e> gsm322.c:1378 Start search of last registered PLMN (mcc=214 mnc=07  Spain, movistar)

<0002> gsm322.c:1382 Use RPLMN (mcc=214 mnc=07  Spain, movistar)

<0002> gsm322.c:806 new state 'A0 null' -> 'A1 trying RPLMN'

<0003> gsm322.c:4049 (ms 1) Event 'EVENT_NEW_PLMN' for Cell selection in state 'C0 null'

<000e> gsm322.c:3631 Selecting PLMN (mcc=214 mnc=07  Spain, movistar)

<0003> gsm322.c:3637 Start stored cell selection.

<0003> gsm322.c:829 new state 'C0 null' -> 'C2 stored cell selection'

<0003> gsm322.c:2793 Scanning power for stored BA list.

<0003> gsm322.c:2861 Scanning frequencies. (3..3)

<0003> gsm322.c:2910 Found signal (ARFCN 3 rxlev -90 (20))

<0003> gsm322.c:2922 Done with power scanning range.

<0003> gsm322.c:2793 Scanning power for stored BA list.

<0003> gsm322.c:2861 Scanning frequencies. (5..5)

<0003> gsm322.c:2910 Found signal (ARFCN 5 rxlev -82 (28))

<0003> gsm322.c:2922 Done with power scanning range.

<0003> gsm322.c:2793 Scanning power for stored BA list.

<0003> gsm322.c:2861 Scanning frequencies. (7..8)

<0003> gsm322.c:2910 Found signal (ARFCN 7 rxlev -101 (9))

<0003> gsm322.c:2910 Found signal (ARFCN 8 rxlev -86 (24))

<0003> gsm322.c:2922 Done with power scanning range.

<0003> gsm322.c:2793 Scanning power for stored BA list.

<0003> gsm322.c:2861 Scanning frequencies. (10..19)

<0003> gsm322.c:2910 Found signal (ARFCN 10 rxlev -81 (29))

<0003> gsm322.c:2910 Found signal (ARFCN 11 rxlev -88 (22))

<0003> gsm322.c:2910 Found signal (ARFCN 12 rxlev -76 (34))

<0003> gsm322.c:2910 Found signal (ARFCN 13 rxlev -57 (53))

<0003> gsm322.c:2910 Found signal (ARFCN 14 rxlev -75 (35))

<0003> gsm322.c:2910 Found signal (ARFCN 15 rxlev -77 (33))

<0003> gsm322.c:2910 Found signal (ARFCN 16 rxlev -98 (12))

<0003> gsm322.c:2910 Found signal (ARFCN 17 rxlev -97 (13))

<0003> gsm322.c:2910 Found signal (ARFCN 18 rxlev -73 (37))

<0003> gsm322.c:2910 Found signal (ARFCN 19 rxlev -92 (18))

<0003> gsm322.c:2922 Done with power scanning range.

<0003> gsm322.c:2793 Scanning power for stored BA list.

<0003> gsm322.c:2861 Scanning frequencies. (21..22)

<0003> gsm322.c:2910 Found signal (ARFCN 21 rxlev -93 (17))

<0003> gsm322.c:2910 Found signal (ARFCN 22 rxlev -87 (23))

<0003> gsm322.c:2922 Done with power scanning range.

<0003> gsm322.c:2793 Scanning power for stored BA list.

<0003> gsm322.c:2861 Scanning frequencies. (69..69)

<0003> gsm322.c:2910 Found signal (ARFCN 69 rxlev -101 (9))

<0003> gsm322.c:2922 Done with power scanning range.

<0003> gsm322.c:2793 Scanning power for stored BA list.

<0003> gsm322.c:2836 Found 17 frequencies.

<0003> gsm322.c:2255 Scanning frequency 13 (rxlev -57).

<0003> gsm322.c:474 Sync to ARFCN=13 rxlev=-57 (No sysinfo yet, ccch mode NONE)

<0003> gsm322.c:2947 Channel synched. (ARFCN=13, snr=16, BSIC=7)

<0003> gsm322.c:698 Starting CS timer with 4 seconds.

<0001> gsm322.c:2968 using DSC of 90

<0003> gsm48_rr.c:4820 Channel provides data.

<0003> gsm322.c:698 Starting CS timer with 4 seconds.

<0001> gsm48_rr.c:1882 New SYSTEM INFORMATION 2ter

<0001> sysinfo.c:705 New SYSTEM INFORMATION 3 (mcc 214 mnc 07 lac 0x0b58)

<0001> gsm48_rr.c:1916 Changing CCCH_MODE to 1

<0001> gsm48_rr.c:2159 PAGING ignored, we are not camping.

<0001> gsm48_rr.c:2214 PAGING ignored, we are not camping.

<0001> gsm48_rr.c:2159 PAGING ignored, we are not camping.

<0001> gsm48_rr.c:1950 New SYSTEM INFORMATION 4 (mcc 214 mnc 07 lac 0x0b58)

<0001> gsm48_rr.c:2159 PAGING ignored, we are not camping.

<0001> gsm48_rr.c:2159 PAGING ignored, we are not camping.

<0001> gsm48_rr.c:2159 PAGING ignored, we are not camping.

<0001> gsm48_rr.c:2159 PAGING ignored, we are not camping.

<0001> gsm48_rr.c:2159 PAGING ignored, we are not camping.

<0001> sysinfo.c:616 Now updating previously received SYSTEM INFORMATION 4

<0001> gsm48_rr.c:1795 New SYSTEM INFORMATION 1

<0001> gsm48_rr.c:2159 PAGING ignored, we are not camping.

<0001> gsm48_rr.c:2159 PAGING ignored, we are not camping.

<0001> gsm48_rr.c:2159 PAGING ignored, we are not camping.

<0001> gsm48_rr.c:2159 PAGING ignored, we are not camping.

<0001> gsm48_rr.c:1824 New SYSTEM INFORMATION 2

<0003> gsm322.c:2714 Received relevant sysinfo.

<0003> gsm322.c:708 stopping pending CS timer.

<0003> gsm322.c:2325 Scan frequency 13: Cell found. (rxlev -57 mcc 214 mnc 07 lac 0b58)

<0003> gsm322.c:1836 Select using access class 

<0003> gsm322.c:379 A (RLA_C (-57) - RXLEV_ACC_MIN (-102)) = 45

<0003> gsm322.c:381 B (MS_TXPWR_MAX_CCH (33) - p (33)) = 0

<0003> gsm322.c:382 C1 (A - MAX(B,0)) = 45

<0003> gsm322.c:1955 Cell ARFCN 13: Cell found, (rxlev=-57 mcc=214 mnc=07 lac=0b58  Spain, movistar)

<0003> gsm322.c:1966 Cell ARFCN 13 selected.

<0003> gsm322.c:2423 Tune to frequency 13.

<0003> gsm322.c:468 Sync to ARFCN=13 rxlev=-57 (Sysinfo, ccch mode NON-COMB)

<0003> gsm322.c:2450 Cell available.

<0003> gsm322.c:4049 (ms 1) Event 'EVENT_CELL_FOUND' for Cell selection in state 'C2 stored cell selection'

<000e> gsm322.c:3383 Camping normally on cell (ARFCN=13 mcc=214 mnc=07  Spain, movistar)

<0003> gsm322.c:829 new state 'C2 stored cell selection' -> 'C3 camped normally'

<0005> gsm48_mm.c:4320 (ms 1) Received 'MM_EVENT_CELL_SELECTED' event in state MM IDLE, PLMN search

<0005> gsm48_mm.c:909 new MM IDLE state PLMN search -> location updating needed

<0005> gsm48_mm.c:909 new MM IDLE state location updating needed -> attempting to update

<0005> gsm48_mm.c:426 starting T3212 (periodic loc. upd. delay) with 14400 seconds

<0005> gsm48_mm.c:2287 Do Loc. upd. for IMSI attach.

<000e> gsm48_mm.c:2208 Perform location update (MCC 214, MNC 07 LAC 0x0b58)

<0005> gsm48_mm.c:2342 LOCATION UPDATING REQUEST

<0005> gsm48_mm.c:2364  using LAI (mcc 214 mnc 07 lac 0x0b58)

<0005> gsm48_mm.c:2372  using TMSI 0x8800ea74

<0005> gsm48_mm.c:914 new state MM IDLE, attempting to update -> wait for RR connection (location updating)

<0001> gsm48_rr.c:5449 (ms 1) Message 'RR_EST_REQ' received in state idle (sapi 0)

<000e> gsm48_rr.c:1307 Establish radio link due to mobility management request

<0003> gsm322.c:4049 (ms 1) Event 'EVENT_LEAVE_IDLE' for Cell selection in state 'C3 camped normally'

<0003> gsm322.c:829 new state 'C3 camped normally' -> 'connected mode 1'

<0003> gsm322.c:3665 Going to camping (normal) ARFCN 13.

<0003> gsm322.c:452 Sync to ARFCN=13, but there is a sync already pending

<0001> gsm48_rr.c:355 new state idle -> connection pending

<0001> gsm48_rr.c:1459 CHANNEL REQUEST: 00 (Location Update no NECI)

<0003> gsm322.c:2947 Channel synched. (ARFCN=13, snr=16, BSIC=7)

<0001> gsm322.c:2968 using DSC of 90

<0003> gsm48_rr.c:4820 Channel provides data.

<0001> gsm48_rr.c:1590 RANDOM ACCESS (requests left 5)

<0001> gsm48_rr.c:1647 RANDOM ACCESS (Tx-integer 10 combined no S(lots) 0 ra 0x0f)

<0001> gsm48_rr.c:1686 Use MS-TXPWR-MAX-CCH power value 5 (33 dBm)

msgb(0x1ed6a40): Not enough headroom msgb_push (4262630712 < 7)

backtrace() returned 11 addresses

/usr/local/lib/libosmocore.so.4(osmo_panic+0xb8) [0x7fb0c623e918]

/usr/local/lib/libosmogsm.so.5(+0x18986) [0x7fb0c5e0a986]

/usr/local/lib/libosmogsm.so.5(lapdm_phsap_up+0x188) [0x7fb0c5e0b628]

./mobile() [0x437599]

./mobile() [0x43989e]

/usr/local/lib/libosmocore.so.4(osmo_wqueue_bfd_cb+0x93) [0x7fb0c623c033]

/usr/local/lib/libosmocore.so.4(osmo_select_main+0x19a) [0x7fb0c623aefa]

./mobile() [0x404917]

/lib/libc.so.6(__libc_start_main+0xfd) [0x7fb0c58acc8d]

./mobile() [0x404489]


Signal 6 received.

full talloc report on 'layer2 context' (total  31816 bytes in  30 blocks)

    Layer2                         contains    424 bytes in   1 blocks (ref 0) 0x1ed6a40

    GSM 04.08 L3                   contains    456 bytes in   1 blocks (ref 0) 0x1ed7cf0

    struct gsm48_sysinfo           contains   1452 bytes in   1 blocks (ref 0) 0x1ed72e0

    struct gsm_sub_plmn_na         contains     24 bytes in   1 blocks (ref 0) 0x1ed7270

    struct gsm_sub_plmn_na         contains     24 bytes in   1 blocks (ref 0) 0x1ed7200

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ed7190

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ed7120

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ed70b0

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ed7040

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ed6fd0

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ed6f60

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ed6ef0

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ed6e80

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ed6e10

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ed6da0

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ecf440

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ecf3d0

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ecf360

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ecf0c0

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ecf050

    struct gsm_sub_plmn_list       contains     24 bytes in   1 blocks (ref 0) 0x1ed6650

    struct gsm_sim_handler         contains     32 bytes in   1 blocks (ref 0) 0x1ed68c0

    struct gsm_sim_handler         contains     32 bytes in   1 blocks (ref 0) 0x1ed6940

    struct gsm_sim_handler         contains     32 bytes in   1 blocks (ref 0) 0x1ed69c0

    telnet_connection              contains      1 bytes in   1 blocks (ref 0) 0x1ecf510

    struct gsm322_ba_list          contains    192 bytes in   1 blocks (ref 0) 0x1ed6c80

    struct osmocom_ms              contains  28704 bytes in   1 blocks (ref 0) 0x1ecf5d0

    /root/.osmocom/bb              contains     29 bytes in   1 blocks (ref 0) 0x1e6c770

    main.c:240                     contains     29 bytes in   1 blocks (ref 0) 0x1e6c6f0

Aborted (core dumped)




Thx a lot,
Yury