---
** [tickets:#1321] amfnd: core dump due to double free of cbk_info**
**Status:** accepted
**Milestone:** 4.5.2
**Created:** Tue Apr 21, 2015 12:55 AM UTC by Gary Lee
**Last Updated:** Tue Apr 21, 2015 12:55 AM UTC
**Owner:** Gary Lee
We noticed a core dump of amfnd due to double freeing of cbk_info in
avnd_pg_cbk_send().
If msg is not sent successfully for some reason, cbk_info is freed a second
time. It has already been freed in avnd_pg_cbk_msg_send().
Backtrace:
Core was generated by `/usr/lib64/opensaf/osafamfnd'.
Program terminated with signal 6, Aborted.
0 0x00007fd887ed9885 in raise () from /lib64/libc.so.6
No symbol table info available.
1 0x00007fd887edae61 in abort () from /lib64/libc.so.6
No symbol table info available.
2 0x00007fd887f1a87f in __libc_message () from /lib64/libc.so.6
No symbol table info available.
3 0x00007fd887f20088 in malloc_printerr () from /lib64/libc.so.6
No symbol table info available.
4 0x00007fd887f250cc in free () from /lib64/libc.so.6
No symbol table info available.
5 0x000000000042e8cc in avnd_pg_cbk_send (cb=0x661780 <_avnd_cb>,
pg=0x7fd88004cc80, trk=0x7fd880012300, chg_mem=0x7fd88004e5b0) at pg.cc:788
curr_mem = <optimized out>
cbk_info = 0x7fd88004ef10
i = <optimized out>
rc = <optimized out>
number_of_items = <optimized out>
__FUNCTION__ = "avnd_pg_cbk_send"
6 0x000000000042eca9 in avnd_evt_avd_pg_upd_evh (cb=0x661780
<_avnd_cb>, evt=<optimized out>) at pg.cc:511
pg = 0x7fd88004cc80
curr = 0x7fd880012300
chg_mem = 0x7fd88004e5b0
rc = 1
__FUNCTION__ = "avnd_evt_avd_pg_upd_evh"
7 0x0000000000429406 in avnd_evt_process (evt=0x7fd88004e470) at
main.cc:703
cb = 0x661780 <_avnd_cb>
rc = 0
__FUNCTION__ = "avnd_evt_process"
8 0x000000000042a03d in avnd_main_process () at main.cc:644
ret = 0
mbx_fd = <optimized out>
fds = {{fd = 11, events = 1, revents = 1}, {fd = 15, events =
1, revents = 0}, {fd = 13, events = 1, revents = 0}, {fd = 0, events = 0,
revents = 0}}
result = <optimized out>
rc = 0
__FUNCTION__ = "avnd_main_process"
9 0x000000000042a252 in main (argc=1, argv=0x7fff366b0db8) at
main.cc:196
error = 32767
ret = <optimized out>
---
Sent from sourceforge.net because [email protected] is
subscribed to https://sourceforge.net/p/opensaf/tickets/
To unsubscribe from further messages, a project admin can change settings at
https://sourceforge.net/p/opensaf/admin/tickets/options. Or, if this is a
mailing list, you can unsubscribe from the mailing list.------------------------------------------------------------------------------
BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT
Develop your own process in accordance with the BPMN 2 standard
Learn Process modeling best practices with Bonita BPM through live exercises
http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_
source=Sourceforge_BPM_Camp_5_6_15&utm_medium=email&utm_campaign=VA_SF
_______________________________________________
Opensaf-tickets mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/opensaf-tickets
