[
https://issues.apache.org/jira/browse/TS-4790?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15439463#comment-15439463
]
James Peach commented on TS-4790:
---------------------------------
{noformat}
Dump of assembler code for function UnixNetVConnection::startEvent(int, Event*):
0x0000000000746730 <+0>: push %r13
0x0000000000746732 <+2>: mov %rdx,%r13
0x0000000000746735 <+5>: push %r12
0x0000000000746737 <+7>: mov %rdi,%r12
0x000000000074673a <+10>: push %rbp
0x000000000074673b <+11>: push %rbx
0x000000000074673c <+12>: xor %ebx,%ebx
0x000000000074673e <+14>: sub $0x18,%rsp
0x0000000000746742 <+18>: mov 0x20(%rdx),%rbp
0x0000000000746746 <+22>: mov 0x8a54ab(%rip),%rax # 0xfebbf8
<unix_netProcessor+24>
0x000000000074674d <+29>: mov 0x18(%rbp,%rax,1),%rax
0x0000000000746752 <+34>: test %rax,%rax
0x0000000000746755 <+37>: mov %rax,(%rsp)
0x0000000000746759 <+41>: je 0x746764
<UnixNetVConnection::startEvent(int, Event*)+52>
0x000000000074675b <+43>: lock addl $0x1,0x8(%rax)
0x0000000000746760 <+48>: mov (%rsp),%rbx
0x0000000000746764 <+52>: mov 0x8a6446(%rip),%edi # 0xfecbb0
<_ZN6Thread15thread_data_keyE>
0x000000000074676a <+58>: callq 0x4920d0 <pthread_getspecific@plt>
0x000000000074676f <+63>: mov 0x38(%rbx),%rax
^^^
%rbx is a NULL pointer
0x0000000000746773 <+67>: cmp %rax,%rbp
0x0000000000746776 <+70>: je 0x746789
<UnixNetVConnection::startEvent(int, Event*)+89>
{noformat}
> Unknown crash in UnixNetVConnection::startEvent
> -----------------------------------------------
>
> Key: TS-4790
> URL: https://issues.apache.org/jira/browse/TS-4790
> Project: Traffic Server
> Issue Type: Bug
> Components: Core
> Reporter: James Peach
>
> Seeing this crash:
> {noformat}
> Signal Status:
> siginfo.si_signo: 11 (Segmentation fault)
> siginfo.si_pid: 56 siginfo.si_uid: 0
> siginfo.si_code: 0x1 (1) siginfo.si_addr: 0x0000000000000038
> No object mapped at address 0x0000000000000038
> CPU Registers:
> R8 :0x0000000000000000 R9 :0x0000000057c0617a R10:0x146e656fbbaf1913
> R11:0x0000000000000246
> R12:0x00002b3c6c015d80 R13:0x0000000001d1e860 R14:0x146e656fbf42a013
> R15:0x0000000000000000
> RDI:0x0000000000000020 RSI:0x0000000000000001 RBP:0x00002b3c691d4010
> RBX:0x0000000000000000
> RDX:0x00002b3c694d6a30 RAX:0x00002b3c691d4010 RCX:0x00002b3c5b194320
> RSP:0x00002b3c694d5dd0
> RIP:0x000000000074676f EFL:0x0000000000010246 CSGSFS:0x0000000000000033
> ERR:0x0000000000000004
> TRAPNO:0x000000000000000e OLDMASK:0x0000000000000000 CR2:0x0000000000000038
> Thread 29117, [ET_TASK 1]:
> 0 0x00000000004acb62 crash_logger_invoke(int, siginfo_t*, void*) + 0x72
> 1 0x00002b3c5af8b330 __restore_rt + (nil)
> 2 0x000000000074676f UnixNetVConnection::startEvent(int, Event*) + 0x3f
> 3 0x000000000076d3a0 EThread::process_event(Event*, int) + 0x120
> 4 0x000000000076e05b EThread::execute() + 0x7fb
> 5 0x000000000076ce2a spawn_thread_internal(void*) + 0x4a
> 6 0x00002b3c5af83184 start_thread + 0xc4
> 7 0x00002b3c5bcb737d clone + 0x6d
> 8 0x0000000000000000 0x0 + 0x6d
> {noformat}
> So it is a NULL-dereference in {{UnixNetVConnection::startEvent}}. I suspect
> the {{stale_while_revalidate_plugin}}.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
