Problems suspected to be related to _output() rework

This is merely a historical archive of years 2008-2021, before the migration to mailman3.

A maintained and still updated list archive can be found at https://lists.osmocom.org/hyperkitty/list/OpenBSC@lists.osmocom.org/.

Harald Welte laforge at gnumonks.org
Wed May 18 10:15:01 UTC 2011 

On Wed, May 18, 2011 at 01:01:58AM +0200, Pablo Neira Ayuso wrote:
> On 17/05/11 20:37, Holger Hans Peter Freyther wrote:
> > On 05/17/2011 08:04 PM, Pablo Neira Ayuso wrote:
> > 
> >>
> >> Sorry, I'm completely lost here, how can I set up log messages over telnet?
> >>
> > 
> > logging enable
> > logging filter all 1
> > 
> > should be enough for that (on the telnet interface)
> 
> thanks, I'll keep investigating this tomorrow. This tastes like a memory
> corruption, but not sure that this occurs in the _output() function.

thanks a lot.  I am currently busy in Egypt giving all-day training
courses, so I don't have much time for testing.  I've re-compiled
libosmocore, openbsc and everything (with make clean)

I also have some occasional crashes regarding to log/debug messages,
see the attached file...  I suspect they might be related.

-- 
- Harald Welte <laforge at gnumonks.org>           http://laforge.gnumonks.org/
============================================================================
"Privacy in residential applications is a desirable marketing option."
                                                  (ETSI EN 300 175-7 Ch. A6)
-------------- next part --------------
GNU gdb (GDB) 7.2-debian
Copyright (C) 2010 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "x86_64-linux-gnu".
For bug reporting instructions, please see:
<http://www.gnu.org/software/gdb/bugs/>...
Reading symbols from /home/laforge/projects/git/openbsc/openbsc/src/osmo-nitb/osmo-nitb...done.
[New Thread 8168]
Reading symbols from /usr/local/lib/libosmocore.so.0...done.
Loaded symbols for /usr/local/lib/libosmocore.so.0
Reading symbols from /usr/local/lib/libosmogsm.so.0...done.
Loaded symbols for /usr/local/lib/libosmogsm.so.0
Reading symbols from /lib/libdl.so.2...Reading symbols from /usr/lib/debug/lib/libdl-2.13.so...done.
done.
Loaded symbols for /lib/libdl.so.2
Reading symbols from /usr/lib/libdbi.so.0...(no debugging symbols found)...done.
Loaded symbols for /usr/lib/libdbi.so.0
Reading symbols from /usr/local/lib/libosmovty.so.0...done.
Loaded symbols for /usr/local/lib/libosmovty.so.0
Reading symbols from /usr/local/lib/libgtp.so.0...done.
Loaded symbols for /usr/local/lib/libgtp.so.0
Reading symbols from /lib/libcrypt.so.1...Reading symbols from /usr/lib/debug/lib/libcrypt-2.13.so...done.
done.
Loaded symbols for /lib/libcrypt.so.1
Reading symbols from /lib/libc.so.6...Reading symbols from /usr/lib/debug/lib/libc-2.13.so...done.
done.
Loaded symbols for /lib/libc.so.6
Reading symbols from /lib64/ld-linux-x86-64.so.2...Reading symbols from /usr/lib/debug/lib/ld-2.13.so...done.
done.
Loaded symbols for /lib64/ld-linux-x86-64.so.2
Reading symbols from /lib/libm.so.6...Reading symbols from /usr/lib/debug/lib/libm-2.13.so...done.
done.
Loaded symbols for /lib/libm.so.6
Reading symbols from /usr/lib/dbd/libdbdsqlite3.so...(no debugging symbols found)...done.
Loaded symbols for /usr/lib/dbd/libdbdsqlite3.so
Reading symbols from /usr/lib/libsqlite3.so.0...(no debugging symbols found)...done.
Loaded symbols for /usr/lib/libsqlite3.so.0
Reading symbols from /lib/libpthread.so.0...Reading symbols from /usr/lib/debug/lib/libpthread-2.13.so...done.
done.
Loaded symbols for /lib/libpthread.so.0
Core was generated by `./osmo-nitb -d DRSL:DMM:DRR:DNM'.
Program terminated with signal 11, Segmentation fault.
#0  0x00007f955a3bd008 in _IO_vfprintf_internal (s=0x7fff887a1fe0, format=0x4406d3 "SI%s: %s\n", ap=0x7fff887a3230) at vfprintf.c:1620
	in vfprintf.c
(gdb) fbacktrace full
#0  0x00007f955a3bd008 in _IO_vfprintf_internal (s=0x7fff887a1fe0, format=0x4406d3 "SI%s: %s\n", ap=0x7fff887a3230) at vfprintf.c:1620
        len = <value optimized out>
        string_malloced = <value optimized out>
        step0_jumps = {0, -15179, -14483, -14390, -14293, -14199, -15032, -14766, -13119, -13894, -13811, -13241, -12583, -2939, -3410, -3367, -3217, -3202, -10653, -8358, -2123, -12480, -2322, -2771, 
          -1385, -1830, -2607, -3126, -3022, -14856}
        space = 0
        is_short = 0
        use_outdigits = 0
        step1_jumps = {0, 0, 0, 0, 0, 0, 0, 0, 0, -13894, -13811, -13241, -12583, -2939, -3410, -3367, -3217, -3202, -10653, -8358, -2123, -12480, -2322, -2771, -1385, -1830, -2607, -3126, -3022, 0}
        group = 0
        prec = <value optimized out>
        step2_jumps = {0, 0, 0, 0, 0, 0, 0, 0, 0, 0, -13811, -13241, -12583, -2939, -3410, -3367, -3217, -3202, -10653, -8358, -2123, -12480, -2322, -2771, -1385, -1830, -2607, -3126, -3022, 0}
        string = 0x367 <Address 0x367 out of bounds>
        left = 0
        is_long_double = 0
        width = <value optimized out>
        step3a_jumps = {0, 0, 0, 0, 0, 0, 0, 0, 0, 0, -13341, 0, 0, 0, -3410, -3367, -3217, -3202, -10653, 0, 0, 0, 0, -2771, 0, 0, 0, 0, 0, 0}
        alt = 0
        showsign = 0
        is_long = 0
        is_char = 0
        pad = <value optimized out>
        step3b_jumps = {0 <repeats 11 times>, -12583, 0, 0, -3410, -3367, -3217, -3202, -10653, -8358, -2123, -12480, -2322, -2771, -1385, -1830, -2607, 0, 0, 0}
        step4_jumps = {0 <repeats 14 times>, -3410, -3367, -3217, -3202, -10653, -8358, -2123, -12480, -2322, -2771, -1385, -1830, -2607, 0, 0, 0}
        is_negative = <value optimized out>
        base = -2005263712
        the_arg = {pa_wchar = -2005261961 L'w', pa_int = -2005261961, pa_long_int = 140735483093367, pa_long_long_int = 140735483093367, pa_u_int = 2289705335, pa_u_long_int = 140735483093367, 
          pa_u_long_long_int = 140735483093367, pa_double = 6.9532567347304201e-310, pa_long_double = <invalid float value>, 
          pa_string = 0x7fff887a2177 "<0003> bsc_init.c:105 SI(null):  19 8f b3 80 00 00 00 00 00 00 00 00 00 00 00 00 00 e5 04 00 2b \n\033[0;m", 
          pa_wstring = 0x7fff887a2177 L"\x3030303c\x62203e33\x695f6373\x2e74696e\x30313a63\x49532035\x6c756e28\x203a296c\x20393120\x62206638\x30382033\x20303020\x30203030\x30302030\x20303020\x30203030\x30302030\x20303020\x30203030\x30302030\x20303020\x30203565\x30302034\x20623220\x305b1b0a\x20006d3b\x3d434e4d\x34333531\x39353134\x4c203534\x303d4341\x44494320\x3230333d\x30353535\x53422034\x313d4349\x53542034\x35313d43\x35353633\x30343630\x305b1b0a?", pa_pointer = 0x7fff887a2177, pa_user = 0x7fff887a2177}
        spec = <value optimized out>
        _buffer = {__routine = 0, __arg = 0x0, __canceltype = 0, __prev = 0x7fff887a1f00}
        _avail = 0
        thousands_sep = 0x0
        grouping = 0xffffffffffffffff <Address 0xffffffffffffffff out of bounds>
        done = 10
        f = <value optimized out>
        lead_str_end = 0x4406d5 "%s: %s\n"
        work_buffer = "0\034z\210\377\177\000\000\002\017>Z\225\177\000\000\001\200\255\373\377\177\000\000\060\034z\210\377\177\000\000\060\034z\210\377\177\000\000\060\034z\210\377\177\000\000\060\034z\210\377\177\000\000\061\034z\210\377\177\000\000/ z\210\377\177\000\000\060\034z\210\377\177\000\000/ z\210\377\177", '\000' <repeats 42 times>, "`~oZ\000\000\000\000h\020\000\000\000\000\000\000\000\000\361Z\225\177\000\000\000\000\000\000\000\000\000\000\005\000\000\000\000\000\000\000\360\003?Z\225\177\000\000\377\377\377\377", '\000' <repeats 12 times>, "\030\020\000\000\000\000\000\000@\345\317\001\000\000\000\000\377\377\377\377\225\177\000\000ITu[\225\177\000\000\000\000\000\000\000\000\000\000\300OoZ\225\177\000\000\000\000\000\000\000\000\000\000E\b\362Z\225\177\000\000\255\000\000\000\000\000\000\000\020\034z\210\377\177\000\000\220\345\317\001\000\000\000\000\372p\361Z\225\177"...
        workstart = 0x0
        workend = 0x7fff887a1e98 ""
        ap_save = {{gp_offset = 48, fp_offset = 48, overflow_arg_area = 0x7fff887a3318, reg_save_area = 0x7fff887a3250}}
        nspecs_done = <value optimized out>
        save_errno = 22
        readonly_format = 0
        jump_table = "\001\000\000\004\000\016\000\006\000\000\a\002\000\003\t\000\005\b\b\b\b\b\b\b\b\b\000\000\000\000\000\000\000\032\000\031\000\023\023\023\000\035\000\000\f\000\000\000\000\000\000\025\000\000\000\000\022\000\r\000\000\000\000\000\000\032\000\024\017\023\023\023\n\017\034\000\v\030\027\021\026\f\000\025\033\020\000\000\022\000\r"
        __PRETTY_FUNCTION__ = "_IO_vfprintf_internal"
#1  0x00007f955a3e0f02 in _IO_vsnprintf (string=0x7fff887a218d "SI(null):  19 8f b3 80 00 00 00 00 00 00 00 00 00 00 00 00 00 e5 04 00 2b \n\033[0;m", maxlen=<value optimized out>, 
    format=0x4406d3 "SI%s: %s\n", args=0x7fff887a3230) at vsnprintf.c:120
        sf = {f = {_sbf = {_f = {_flags = -72515583, _IO_read_ptr = 0x7fff887a218d "SI(null):  19 8f b3 80 00 00 00 00 00 00 00 00 00 00 00 00 00 e5 04 00 2b \n\033[0;m", 
                _IO_read_end = 0x7fff887a218d "SI(null):  19 8f b3 80 00 00 00 00 00 00 00 00 00 00 00 00 00 e5 04 00 2b \n\033[0;m", 
                _IO_read_base = 0x7fff887a218d "SI(null):  19 8f b3 80 00 00 00 00 00 00 00 00 00 00 00 00 00 e5 04 00 2b \n\033[0;m", 
                _IO_write_base = 0x7fff887a218d "SI(null):  19 8f b3 80 00 00 00 00 00 00 00 00 00 00 00 00 00 e5 04 00 2b \n\033[0;m", 
                _IO_write_ptr = 0x7fff887a2197 " 19 8f b3 80 00 00 00 00 00 00 00 00 00 00 00 00 00 e5 04 00 2b \n\033[0;m", _IO_write_end = 0x7fff887a316f "", 
                _IO_buf_base = 0x7fff887a218d "SI(null):  19 8f b3 80 00 00 00 00 00 00 00 00 00 00 00 00 00 e5 04 00 2b \n\033[0;m", _IO_buf_end = 0x7fff887a316f "", _IO_save_base = 0x0, 
                _IO_backup_base = 0x0, _IO_save_end = 0x0, _markers = 0x0, _chain = 0x0, _fileno = 3, _flags2 = 0, _old_offset = 140279440761395, _cur_column = 0, _vtable_offset = 0 '\000', 
                _shortbuf = "", _lock = 0x0, _offset = 140735483093120, _codecvt = 0x7f955a6f6880, _wide_data = 0x7f955a6f6880, _freeres_list = 0x0, _freeres_buf = 0x6d, _freeres_size = 3, _mode = -1, 
                _unused2 = "\000\000\000\000i\000\000\000\000\000\000\000\200hoZ\225\177\000"}, vtable = 0x7f955a6f4fc0}, _s = {_allocate_buffer = 0, 
              _free_buffer = 0x7f955a3e761e <_IO_new_file_xsputn+510>}}, 
          overflow_buf = "\000\000\000\000\000\000\000\000\200hoZ\225\177\000\000p!z\210\377\177\000\000m\000\000\000\000\000\000\000\035\000\000\000\000\000\000\000\003\000\000\000\000\000\000\000\001\000\000\000\000\000\000\000l\322=Z\225\177\000"}
        ret = 0
#2  0x00007f955b751671 in _output (target=0x1cfdda0, subsys=3, level=1, file=0x4406c8 "bsc_init.c", line=<value optimized out>, cont=<value optimized out>, format=0x4406d3 "SI%s: %s\n", 
    ap=0x7fff887a3230) at logging.c:177
        buf = "\033[1;34m<0003> bsc_init.c:105 SI(null):  19 8f b3 80 00 00 00 00 00 00 00 00 00 00 00 00 00 e5 04 00 2b \n\033[0;m\000 MNC=1534415945 LAC=0 CID=30255504 BSIC=14 TSC=1536550640\n\033[0;m", '\000' <repeats 115 times>"\260, \257\315\001\000\000\000\000\003~oZ\225\177\000\000\060[\317\001\000\000\000\000"...
        ret = <value optimized out>
        len = <value optimized out>
        offset = 29
        rem = 4067
#3  0x00007f955b751879 in _logp (subsys=3, level=1, file=0x4406c8 "bsc_init.c", line=105, cont=0, format=0x4406d3 "SI%s: %s\n", ap=0x7fff887a3230) at logging.c:227
        output = <value optimized out>
        tar = 0x1cfdda0
#4  0x00007f955b751b41 in logp (subsys=<value optimized out>, file=<value optimized out>, line=<value optimized out>, cont=<value optimized out>, format=<value optimized out>) at logging.c:237
        ap = {{gp_offset = 48, fp_offset = 48, overflow_arg_area = 0x7fff887a3328, reg_save_area = 0x7fff887a3250}}
#5  0x000000000041025e in generate_and_rsl_si (subsys=<value optimized out>, signal=<value optimized out>, handler_data=<value optimized out>, signal_data=<value optimized out>) at bsc_init.c:104
        bts = <value optimized out>
        si_len = 23
        rc = 23
        j = <value optimized out>
#6  set_system_infos (subsys=<value optimized out>, signal=<value optimized out>, handler_data=<value optimized out>, signal_data=<value optimized out>) at bsc_init.c:172
        i = <value optimized out>
        bts = 0x1cdafb0
#7  bootstrap_rsl (subsys=<value optimized out>, signal=<value optimized out>, handler_data=<value optimized out>, signal_data=<value optimized out>) at bsc_init.c:252
        i = <value optimized out>
#8  inp_sig_cb (subsys=<value optimized out>, signal=<value optimized out>, handler_data=<value optimized out>, signal_data=<value optimized out>) at bsc_init.c:272
        isd = <value optimized out>
        trx = 0x1cdc5b0
        ts_no = <value optimized out>
        lchan_no = <value optimized out>
#9  0x00007f955b75068c in osmo_signal_dispatch (subsys=14, signal=1, signal_data=0x7fff887a33f0) at signal.c:85
        handler = 0x1cda990
#10 0x0000000000434629 in e1inp_event (ts=<value optimized out>, evt=<value optimized out>, tei=<value optimized out>, sapi=<value optimized out>) at e1_input.c:579
        link = 0x7fff887a1e98
        isd = {link_type = 2, tei = 0 '\000', sapi = 0 '\000', trx = 0x1cdc5b0, line = 0x1}
#11 0x0000000000436c7c in handle_ts1_read (bfd=0x1d17188, what=1) at input/ipaccess.c:537
        line = <value optimized out>
        link = <value optimized out>
        msg = 0x1cfa7b0
        hh = 0x1cfa838
        ret = 0
        ts_nr = <value optimized out>
        e1i_ts = 0x1d16bf0
        error = <value optimized out>
#12 ipaccess_fd_cb (bfd=0x1d17188, what=1) at input/ipaccess.c:657
        line = <value optimized out>
        ts_nr = <value optimized out>
        idx = <value optimized out>
        e1i_ts = <value optimized out>
        rc = 0
#13 0x00007f955b75041a in osmo_select_main (polling=0) at select.c:132
        flags = <value optimized out>
        ufd = <value optimized out>
        tmp = <value optimized out>
        readset = {__fds_bits = {0 <repeats 16 times>}}
        writeset = {__fds_bits = {0 <repeats 16 times>}}
        exceptset = {__fds_bits = {0 <repeats 16 times>}}
        work = 1
        rc = <value optimized out>
        no_time = {tv_sec = 0, tv_usec = 0}
#14 0x000000000040555c in main (argc=3, argv=0x7fff887a3758) at bsc_hack.c:306
        rc = <value optimized out>
(gdb) frame 5
#5  0x000000000041025e in generate_and_rsl_si (subsys=<value optimized out>, signal=<value optimized out>, handler_data=<value optimized out>, signal_data=<value optimized out>) at bsc_init.c:104
104		DEBUGP(DRR, "SI%s: %s\n", gsm_sitype_name(i),
(gdb) p i
$1 = SYSINFO_TYPE_1
(gdb) fquit

More information about the OpenBSC mailing list