Bug #140
closedabort() in Stream engine
Description
The attached pcap causes the following abort when dealing with packet 1719:
#0 0x00d54422 in _kernel_vsyscall ()
#1 0x00ac54d1 in *_GI_raise (sig=6) at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
#2 0x00ac8932 in *__GI_abort () at abort.c:92
#3 0x081c8f59 in PrintList (seg=0x9f43810) at stream-tcp-reassemble.c:298
#4 0x081c9d27 in ReassembleInsertSegment (stream=0x9eea9e8, seg=0x9f43810, p=0x936b708) at stream-tcp-reassemble.c:462
#5 0x081ce288 in StreamTcpReassembleHandleSegmentHandleData (ssn=0x9eea9e0, stream=0x9eea9e8, p=0x936b708) at stream-tcp-reassemble.c:1227
#6 0x081d25aa in StreamTcpReassembleHandleSegment (ra_ctx=0x95d21c8, ssn=0x9eea9e0, stream=0x9eea9e8, p=0x936b708) at stream-tcp-reassemble.c:1888
#7 0x081b4edc in HandleEstablishedPacketToClient (ssn=0x9eea9e0, p=0x936b708, stt=0x95d2080) at stream-tcp.c:1460
#8 0x081b54a7 in StreamTcpPacketStateEstablished (tv=0x95d1ed0, p=0x936b708, stt=0x95d2080, ssn=0x9eea9e0) at stream-tcp.c:1528
#9 0x081bd41a in StreamTcpPacket (tv=0x95d1ed0, p=0x936b708, stt=0x95d2080) at stream-tcp.c:2497
#10 0x081bde6a in StreamTcp (tv=0x95d1ed0, p=0x936b708, data=0x95d2080, pq=0x95d1f60) at stream-tcp.c:2552
#11 0x0819c8bc in TmThreadsSlot1 (td=0x95d1ed0) at tm-threads.c:364
#12 0x0097780e in start_thread (arg=0xb65feb70) at pthread_create.c:300
#13 0x00b678de in clone () at ../sysdeps/unix/sysv/linux/i386/clone.S:130
Files
Updated by Gurvinder Singh over 14 years ago
- File 0001-fixed-the-bug-140-caused-by-the-out-of-range-int32.patch 0001-fixed-the-bug-140-caused-by-the-out-of-range-int32.patch added
- Status changed from New to Resolved
The bug caused by the integer value of 2147484708, it causes the FP in SEQ_LT macro due to conversion from uint32_t to int32_t. The current patch fixes the issue.
Updated by Victor Julien over 14 years ago
- Status changed from Resolved to Closed
- % Done changed from 0 to 100
I've done a slightly different fix.