The above leak avnd_evt_tmr_cbk_resp_evh is not reproducible.
The following leaks can be reroduced and fixed
avnd_evt_mds_ava_dn_evh() and
avsv_create_association_class_dn()
==197== Invalid read of size 1
==197== at 0x4C35086: __GI_mempcpy (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==197== by 0x616C6CD: _IO_default_xsputn (genops.c:438)
==197== by 0x613F50A: vfprintf (vfprintf.c:1632)
==197== by 0x6207895: __vsnprintf_chk (vsnprintf_chk.c:63)
==197== by 0x56DB357: vsnprintf (stdio2.h:78)
==197== by 0x56DB357: Write<512ul> (log_message.h:265)
==197== by 0x56DB357:
LogTraceClient::CreateLogEntryInternal(base::LogMessage::Severity, char const*,
__va_list_tag*) (logtrace_client.cc:129)
==197== by 0x56DB8A9:
LogTraceClient::LogInternal(base::LogMessage::Severity, char const*,
__va_list_tag*) (logtrace_client.cc:107)
==197== by 0x56D8769: trace_output (logtrace.cc:91)
==197== by 0x56D8918: logtrace_trace (logtrace.cc:177)
==197== by 0x4E44753: avsv_create_association_class_dn (util.c:245)
==197== by 0x131528: comp_init(avnd_comp_tag*, SaImmAttrValuesT_2 const**)
(compdb.cc:1320)
==197== by 0x133B1A: avnd_comp_create (compdb.cc:1531)
==197== by 0x133B1A: avnd_comp_config_get_su(avnd_su_tag*) (compdb.cc:1670)
==197== by 0x153926: avnd_evt_avd_reg_su_evh(avnd_cb_tag*, avnd_evt_tag*)
(su.cc:159)
==197== Address 0x754cd72 is 2 bytes inside a block of size 85 free'd
==197== at 0x4C2EDEB: free (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==197== by 0x4E4470D: avsv_create_association_class_dn (util.c:243)
==197== by 0x131528: comp_init(avnd_comp_tag*, SaImmAttrValuesT_2 const**)
(compdb.cc:1320)
==197== by 0x133B1A: avnd_comp_create (compdb.cc:1531)
==197== by 0x133B1A: avnd_comp_config_get_su(avnd_su_tag*) (compdb.cc:1670)
==197== by 0x153926: avnd_evt_avd_reg_su_evh(avnd_cb_tag*, avnd_evt_tag*)
(su.cc:159)
==197== by 0x144F59: avnd_evt_process (main.cc:671)
==197== by 0x144F59: avnd_main_process() (main.cc:623)
==197== by 0x1173BF: main (main.cc:216)
==197== Block was alloc'd at
==197== at 0x4C2FB55: calloc (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==197== by 0x4E44669: avsv_create_association_class_dn (util.c:221)
==197== by 0x131528: comp_init(avnd_comp_tag*, SaImmAttrValuesT_2 const**)
(compdb.cc:1320)
==197== by 0x133B1A: avnd_comp_create (compdb.cc:1531)
==197== by 0x133B1A: avnd_comp_config_get_su(avnd_su_tag*) (compdb.cc:1670)
==197== by 0x153926: avnd_evt_avd_reg_su_evh(avnd_cb_tag*, avnd_evt_tag*)
(su.cc:159)
==197== by 0x144F59: avnd_evt_process (main.cc:671)
==197== by 0x144F59: avnd_main_process() (main.cc:623)
==197== by 0x1173BF: main (main.cc:216)
==197==
==197== Invalid read of size 4
==197== at 0x13062A: avnd_evt_mds_ava_dn_evh(avnd_cb_tag*, avnd_evt_tag*)
(comp.cc:432)
==197== by 0x144F59: avnd_evt_process (main.cc:671)
==197== by 0x144F59: avnd_main_process() (main.cc:623)
==197== by 0x1173BF: main (main.cc:216)
==197== Address 0x9060260 is 0 bytes inside a block of size 112 free'd
==197== at 0x4C2F24B: operator delete(void*) (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==197== by 0x119487: avnd_comp_cbq_del(avnd_cb_tag*, avnd_comp_tag*, bool)
(cbq.cc:926)
==197== by 0x12A18B: avnd_comp_curr_info_del(avnd_cb_tag*, avnd_comp_tag*)
(comp.cc:1957)
==197== by 0x11FBA9: avnd_comp_clc_terming_termsucc_hdler(avnd_cb_tag*,
avnd_comp_tag*) (clc.cc:2397)
==197== by 0x125BBE: avnd_comp_clc_fsm_run(avnd_cb_tag*, avnd_comp_tag*,
avnd_comp_clc_pres_fsm_ev) (clc.cc:871)
==197== by 0x13061D: avnd_evt_mds_ava_dn_evh(avnd_cb_tag*, avnd_evt_tag*)
(comp.cc:431)
==197== by 0x144F59: avnd_evt_process (main.cc:671)
==197== by 0x144F59: avnd_main_process() (main.cc:623)
==197== by 0x1173BF: main (main.cc:216)
==197== Block was alloc'd at
==197== at 0x4C2E0EF: operator new(unsigned long) (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==197== by 0x11B6B8: avnd_comp_cbq_rec_add(avnd_cb_tag*, avnd_comp_tag*,
avsv_amf_cbk_info_tag*, unsigned long*, long long) (cbq.cc:997)
==197== by 0x11B82B: avnd_comp_cbq_send(avnd_cb_tag*, avnd_comp_tag*,
unsigned long*, unsigned long long, avsv_amf_cbk_info_tag*, long long)
(cbq.cc:756)
==197== by 0x12CC71: avnd_comp_cbk_send(avnd_cb_tag*, avnd_comp_tag*,
avsv_amf_cbk_type, avnd_hc_rec_tag*, avnd_comp_csi_rec*) (comp.cc:2192)
==197== by 0x1249F0: avnd_comp_clc_inst_term_hdler(avnd_cb_tag*,
avnd_comp_tag*) (clc.cc:2120)
==197== by 0x125BBE: avnd_comp_clc_fsm_run(avnd_cb_tag*, avnd_comp_tag*,
avnd_comp_clc_pres_fsm_ev) (clc.cc:871)
==197== by 0x15788E: avnd_su_pres_inst_suterm_hdler(avnd_cb_tag*,
avnd_su_tag*, avnd_comp_tag*) (susm.cc:2498)
==197== by 0x15A79E: avnd_su_pres_fsm_run(avnd_cb_tag*, avnd_su_tag*,
avnd_comp_tag*, avnd_su_pres_fsm_ev) (susm.cc:1591)
==197== by 0x15F59E: avnd_evt_avd_su_pres_evh(avnd_cb_tag*, avnd_evt_tag*)
(susm.cc:1471)
==197== by 0x144F59: avnd_evt_process (main.cc:671)
==197== by 0x144F59: avnd_main_process() (main.cc:623)
==197== by 0x1173BF: main (main.cc:216)
---
** [tickets:#2568] amfnd: invalid read in cbq.cc**
**Status:** unassigned
**Milestone:** future
**Created:** Fri Sep 01, 2017 05:31 AM UTC by Gary Lee
**Last Updated:** Wed Jan 09, 2019 09:44 PM UTC
**Owner:** nobody
Noticed when running valgrind.
==195== Invalid read of size 8
==195== at 0x118F70: avnd_evt_tmr_cbk_resp_evh(avnd_cb_tag*, avnd_evt_tag*)
(cbq.cc:636)
==195== by 0x142DEA: avnd_evt_process (main.cc:658)
==195== by 0x142DEA: avnd_main_process() (main.cc:610)
==195== by 0x116B81: main (main.cc:203)
==195== Address 0x800b1c0 is 64 bytes inside a block of size 112 free'd
==195== at 0x4C2F24B: operator delete(void*) (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==195== by 0x118CBE: avnd_comp_cbq_rec_pop_and_del(avnd_cb_tag*,
avnd_comp_tag*, avnd_cbk_tag*, bool) (cbq.cc:930)
==195== by 0x118F6F: avnd_evt_tmr_cbk_resp_evh(avnd_cb_tag*, avnd_evt_tag*)
(cbq.cc:636)
==195== by 0x142DEA: avnd_evt_process (main.cc:658)
==195== by 0x142DEA: avnd_main_process() (main.cc:610)
==195== by 0x116B81: main (main.cc:203)
==195== Block was alloc'd at
==195== at 0x4C2E0EF: operator new(unsigned long) (in
/usr/lib/valgrind/vgpreload_memcheck-amd64-linux.so)
==195== by 0x11AD18: avnd_comp_cbq_rec_add(avnd_cb_tag*, avnd_comp_tag*,
avsv_amf_cbk_info_tag*, unsigned long*, long long) (cbq.cc:955)
==195== by 0x11AE85: avnd_comp_cbq_send(avnd_cb_tag*, avnd_comp_tag*,
unsigned long*, unsigned long long, avsv_amf_cbk_info_tag*, long long)
(cbq.cc:715)
==195== by 0x128162: avnd_comp_cbk_send(avnd_cb_tag*, avnd_comp_tag*,
avsv_amf_cbk_type, avnd_hc_rec_tag*, avnd_comp_csi_rec*) (comp.cc:2164)
==195== by 0x123558: avnd_comp_clc_inst_restart_hdler(avnd_cb_tag*,
avnd_comp_tag*) (clc.cc:2218)
==195== by 0x124B5C: avnd_comp_clc_fsm_run(avnd_cb_tag*, avnd_comp_tag*,
avnd_comp_clc_pres_fsm_ev) (clc.cc:861)
==195== by 0x12C1BF: comp_restart_initiate(avnd_comp_tag*) (comp.cc:2767)
==195== by 0x12C4EB: avnd_evt_comp_admin_op_req(avnd_cb_tag*, avnd_evt_tag*)
(comp.cc:2822)
==195== by 0x1361AA: avnd_evt_avd_admin_op_req_evh(avnd_cb_tag*,
avnd_evt_tag*) (di.cc:1583)
==195== by 0x142DEA: avnd_evt_process (main.cc:658)
==195== by 0x142DEA: avnd_main_process() (main.cc:610)
==195== by 0x116B81: main (main.cc:203)
---
Sent from sourceforge.net because [email protected] is
subscribed to https://sourceforge.net/p/opensaf/tickets/
To unsubscribe from further messages, a project admin can change settings at
https://sourceforge.net/p/opensaf/admin/tickets/options. Or, if this is a
mailing list, you can unsubscribe from the mailing list.
_______________________________________________
Opensaf-tickets mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/opensaf-tickets
