masaori335 commented on issue #6849:
URL: https://github.com/apache/trafficserver/issues/6849#issuecomment-691739386
I got exactly same crash on my 9.0.x branch
(052b535b0066f3e009b4a1b66e060d483d25c680 + my changes).
```
(gdb) bt
#0 0x00007fd0b41731d9 in waitpid () from /lib64/libpthread.so.0
#1 0x000055d19ba56744 in crash_logger_invoke(int, siginfo_t*, void*)
(signo=6, info=0x7fd0ab50ac70, ctx=0x7fd0ab50ab40)
at traffic_server/Crash.cc:168
#2 <signal handler called>
#3 0x00007fd0b34c1387 in raise () from /lib64/libc.so.6
#4 0x00007fd0b34c2a78 in abort () from /lib64/libc.so.6
#5 0x00007fd0b6014fe4 in ink_abort(char const*, ...)
(message_format=<optimized out>) at ink_error.cc:99
#6 0x00007fd0b6012425 in _ink_assert (expression=0x7fd0b34c1387 <raise+55>
"H=", file=0x196a <Address 0x196a out of bounds>, line=6)
at ink_assert.cc:37
#7 0x000055d19bc5c73b in ssl_read_from_net (sslvc=0x7fd012ace3c0,
lthread=0x7fd0af00d740, ret=<optimized out>)
at SSLNetVConnection.cc:275
#8 SSLNetVConnection::net_read_io(NetHandler*, EThread*)
(this=0x7fd012ace3c0, nh=0x7fd0af0117d0, lthread=0x7fd0af00d740)
at SSLNetVConnection.cc:666
#9 0x000055d19bc7a163 in NetHandler::process_ready_list()
(this=0x7fd0af0117d0) at UnixNet.cc:412
#10 0x000055d19bc7a972 in NetHandler::waitForActivity(long) (this=<optimized
out>, timeout=<optimized out>) at UnixNet.cc:547
#11 0x000055d19bc7aa4d in non-virtual thunk to
NetHandler::waitForActivity(long) ()
#12 0x000055d19bcaf18f in EThread::execute_regular() (this=0x7fd0af00d740)
at UnixEThread.cc:266
#13 0x000055d19bcaf39a in EThread::execute() (this=0x7fd0af00d740) at
UnixEThread.cc:327
#14 0x000055d19bcadf8b in spawn_thread_internal(void*) (a=0x7fd0b2850bd0) at
Thread.cc:92
#15 0x00007fd0b416bea5 in start_thread () from /lib64/libpthread.so.0
#16 0x00007fd0b35898dd in clone () from /lib64/libc.so.6
```
The symptom looks same, the `size_index` of MIOBuffer is garbage
(`140524527145360`).
```
(gdb) frame 7
#7 0x000055d19bc5c73b in ssl_read_from_net (sslvc=0x7fd012ace3c0,
lthread=0x7fd0af00d740, ret=<optimized out>)
at SSLNetVConnection.cc:275
275 ink_release_assert(current_block != nullptr);
(gdb) p *buf.mbuf
$5 = {size_index = 140524527145360, water_mark = 0, _writer = {m_ptr =
0x7fcf0ed17540}, readers = {{accessor = 0x0, mbuf = 0x0,
block = {m_ptr = 0x0}, start_offset = 0, size_limit =
9223372036854775807}, {accessor = 0x0, mbuf = 0x0, block = {m_ptr = 0x0},
start_offset = 0, size_limit = 9223372036854775807}, {accessor = 0x0,
mbuf = 0x0, block = {m_ptr = 0x0}, start_offset = 0,
size_limit = 9223372036854775807}, {accessor = 0x0, mbuf = 0x0, block
= {m_ptr = 0x0}, start_offset = 0,
size_limit = 9223372036854775807}, {accessor = 0x0, mbuf = 0x0, block
= {m_ptr = 0x0}, start_offset = 0,
size_limit = 9223372036854775807}}, _location = 0x55d19bccbe25
"memory/IOBuffer/HttpSM.cc:6876"}
(gdb) p *buf.mbuf->_writer.m_ptr
$9 = {<RefCountObj> = {<> = {_vptr$ForceVFPTToTop = 0x55d19bf76b10 <vtable
for IOBufferBlock+16>}, m_refcount = 1}, _start = 0x0,
_end = 0x0, _buf_end = 0x7fce6a85d181 "\276̛\321U", _location =
0x55d19bccbe25 "memory/IOBuffer/HttpSM.cc:6876", data = {
m_ptr = 0x7fce9d88a0f0}, next = {m_ptr = 0x0}}
```
@sudheerv the 9.0.x branch has all fixes related this?
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
