Project

General

Profile

Actions
Copy link

Bug #295

closed

Segfault when deleting Automatic Recorder entry

Added by Lasse Bang Mikkelsen - about 15 years ago. Updated about 15 years ago.

Status:
Fixed
Priority:
High
Assignee:
Andreas Smas
Category:
General
Target version:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Found in version:
Affected Versions:

Description

Tvheadend segfaults when deleting Automatic Recorder entry called "lærkevej". Might be related to #294.

HTS Tvheadend version SVN-r5421

Program received signal SIGABRT, Aborted.
[Switching to Thread 0xb03f2b70 (LWP 24414)]
0xb7fe2430 in kernel_vsyscall ()
(gdb) info reg
eax 0x0 0
ecx 0x5f5e 24414
edx 0x6 6
ebx 0x5f47 24391
esp 0xb03f1678 0xb03f1678
ebp 0xb03f1690 0xb03f1690
esi 0xb6c00788 1228929144
edi 0xb7f35ff4 -1208786956
eip 0xb7fe2430 0xb7fe2430 <+kernel_vsyscall+16>
eflags 0x200206 [ PF IF ID ]
cs 0x73 115
ss 0x7b 123
ds 0x7b 123
es 0x7b 123
fs 0x0 0
gs 0x33 51
(gdb) disassemble $pc-32,$pc+32
Dump of assembler code from 0xb7fe2410 to 0xb7fe2450:
0xb7fe2410 <+kernel_rt_sigreturn+0>: mov $0xad,%eax
0xb7fe2415 <+kernel_rt_sigreturn+5>: int $0x80
0xb7fe2417 <+kernel_rt_sigreturn+7>: nop
0xb7fe2418: nop
0xb7fe2419: lea 0x0(%esi,%eiz,1),%esi
0xb7fe2420 <+kernel_vsyscall+0>: push %ecx
0xb7fe2421 <+kernel_vsyscall+1>: push %edx
0xb7fe2422 <+kernel_vsyscall+2>: push %ebp
0xb7fe2423 <+kernel_vsyscall+3>: mov %esp,%ebp
0xb7fe2425 <+kernel_vsyscall+5>: sysenter
0xb7fe2427 <+kernel_vsyscall+7>: nop
0xb7fe2428 <+kernel_vsyscall+8>: nop
0xb7fe2429 <+kernel_vsyscall+9>: nop
0xb7fe242a <+kernel_vsyscall+10>: nop
0xb7fe242b <+kernel_vsyscall+11>: nop
0xb7fe242c <+kernel_vsyscall+12>: nop
0xb7fe242d <+kernel_vsyscall+13>: nop
0xb7fe242e <+kernel_vsyscall+14>: jmp 0xb7fe2423 <+kernel_vsyscall+3>
=> 0xb7fe2430 <+kernel_vsyscall+16>: pop %ebp
0xb7fe2431 <+kernel_vsyscall+17>: pop %edx
0xb7fe2432 <+kernel_vsyscall+18>: pop %ecx
0xb7fe2433 <+kernel_vsyscall+19>: ret
---Type <return> to continue, or q <return> to quit--
0xb7fe2434: add %ch,(%esi)
0xb7fe2436: jae 0xb7fe24a0
0xb7fe2438: jae 0xb7fe24ae
0xb7fe243a: jb 0xb7fe24b0
0xb7fe243c: popa
0xb7fe243d: bound %eax,(%eax)
0xb7fe243f: cs
0xb7fe2440: push $0x687361
0xb7fe2445: cs
0xb7fe2446: fs
0xb7fe2447: jns 0xb7fe24b7
0xb7fe2449: jae 0xb7fe24c4
0xb7fe244b: insl (%dx),%es:(%edi)
0xb7fe244c: add %ch,(%esi)
0xb7fe244e: fs
0xb7fe244f: jns 0xb7fe24bf
End of assembler dump.
(gdb) bt full
#0 0xb7fe2430 in +kernel_vsyscall ()
No symbol table info available.
#1 0xb7e0a651 in raise () from /lib/tls/i686/cmov/libc.so.6
No symbol table info available.
#2 0xb7e0da82 in abort () from /lib/tls/i686/cmov/libc.so.6
No symbol table info available.
#3 0x0806cf82 in dvr_entry_cancel (de=0x8373198)
at /home/lbm/tvheadend/src/dvr/dvr_db.c:683
No locals.
#4 0x0806e16d in dvr_autorec_purge_spawns (dae=0x80dad20)
at /home/lbm/tvheadend/src/dvr/dvr_autorec.c:56
de = 0x0
#5 autorec_entry_destroy (dae=0x80dad20)
at /home/lbm/tvheadend/src/dvr/dvr_autorec.c:165
No locals.
#6 0x0806eb27 in autorec_record_delete (opaque=0x0, id=0xb6c00788 "5")
at /home/lbm/tvheadend/src/dvr/dvr_autorec.c:386
dae = 0x0
#7 0x0804d3c2 in dtable_record_delete (dt=0x81d2ea8, id=0xb6c00788 "5")
at /home/lbm/tvheadend/src/dtable.c:149
No locals.
#8 0x0804d425 in dtable_record_delete_by_array (dt=0x81d2ea8, msg=0xb6c00738)
at /home/lbm/tvheadend/src/dtable.c:168
---Type <return> to continue, or q <return> to quit---
f = 0xb6c00760
id = 0x0
changed = 1
#9 0x0807c69f in extjs_tablemgr (hc=0xb03f2288, remain=0x0, opaque=0x0)
at /home/lbm/tvheadend/src/webui/extjs.c:262
dt = 0x81d2ea8
out = <value optimized out>
in = 0xb6c00738
array = <value optimized out>
tablename = <value optimized out>
op = <value optimized out>
entries = <value optimized out>
#10 0x0804eab9 in http_exec (hc=0xb03f2288, hp=0x81213b8, remain=0x0)
at /home/lbm/tvheadend/src/http.c:330
err = 6
#11 0x0804eec2 in http_cmd_post (hc=0xb03f2288, spill=<value optimized out>)
at /home/lbm/tvheadend/src/http.c:420
hp = <value optimized out>
remain = 0x0
argv = {0xb6c00e38 "application/x-www-form-urlencoded",
0xb6c00e5b "charset=UTF-8"}
args = 0x0
v = <value optimized out>
---Type <return> to continue, or q <return> to quit---
n = <value optimized out>
#12 http_process_request (hc=0xb03f2288, spill=<value optimized out>)
at /home/lbm/tvheadend/src/http.c:441
No locals.
#13 process_request (hc=0xb03f2288, spill=<value optimized out>)
at /home/lbm/tvheadend/src/http.c:506
v = <value optimized out>
argv = {
0xb7e4dafd "\213}\350\215\223\331\314\375\377\213E\334\215\213\353\311\375\377\215\263\377\312\375\377\211U\324\203\307\060\301\350\003\211}\360\211E\264\211M\320\211u\310\213}\334\307E\344", 0x0}
n = <value optimized out>
rval = 0
authbuf = "\344\267\365\003\000\000\005\000\000\000\070\000\000\000$\000\300\266\005\000\000\000\037\000\000\000\363*\361\267H\000\300\266\337)\361\267\315,\361\267(\000\000\000(\000\000\000\003\000\000\000\n\361\267\020\000\300\266/\000\357\267\340\n\300\266\215x\006\b<\032?\260\310\b\300\266\001\000\000\000\234\377\344\267\020\000\300\266\020\000\002\000\360\"?\260\001\000\000\000g\002\000\000\000\000\000\000\070\002\000\000\000\000\000\000\360\"?\260\037\000\000\000\370\031?\260\a\333\004\b\360\"?\260\001\000\000\000\001\000\000"
#14 0x0804f136 in http_serve_requests (hc=0xb03f2288, spill=0xb03f22f0)
at /home/lbm/tvheadend/src/http.c:734
cmdline = "POST\000/tablemgr\000HTTP/1.1\000\000es/images/default/window---Type <return> to continue, or q <return> to quit---
/icon-question.gif\000HTTP/1.1", '\000' <repeats 947 times>
hdrline = "\000\000cept-Charset\000\000ISO-8859-1,utf-8;q=0.7,*;q=0.3\000\000=0.4\000\000\061\060_6_4; en-US) <removed>", '\000' <repeats 886 times>
argv = {0xb03f1a3c "", 0xb03f1a4c "ISO-8859-1,utf-8;q=0.7,*;q=0.3",
0xb03f1e4b "HTTP/1.1"}
n = <value optimized out>
#15 0x0804f234 in http_serve (fd=31, opaque=0x0, peer=0xb6c00b3c,
self=0xb6c00b4c) at /home/lbm/tvheadend/src/http.c:777
spill = {hq_q = {tqh_first = 0x0, tqh_last = 0xb03f22f0}, hq_size = 0,
hq_maxsize = 2147483647}
hc = {hc_fd = 31, hc_peer = 0xb6c00b3c, hc_self = 0xb6c00b4c,
hc_representative = 0xb6c01050 "10.0.0.11",
hc_url = 0xb03f1e41 "/tablemgr",
hc_url_orig = 0xb03f18f0 "/tablemgr", hc_keep_alive = 1, hc_reply = {
hq_q = {tqh_first = 0x0, tqh_last = 0xb03f22a4}, hq_size = 0,
hq_maxsize = 2147483647}, hc_args = {tqh_first = 0xb6c00a80,
tqh_last = 0xb6c00ff8}, hc_req_args = {tqh_first = 0xb6c00690,
tqh_last = 0xb6c00700}, hc_state = HTTP_CON_WAIT_REQUEST,
hc_cmd = HTTP_CMD_POST, hc_version = HTTP_VERSION_1_1,
hc_username = 0x0, hc_password = 0x0, hc_authenticated = 0,
hc_user_config = 0x0, hc_no_output = 0,
hc_post_data = 0xb6c01078 "op", hc_post_len = 45,
---Type <return> to continue, or q <return> to quit---
hc_rtsp_session = 0x0}
#16 0x0804d7f3 in tcp_server_start (aux=0xb6c00b30)
at /home/lbm/tvheadend/src/tcp.c:397
val = 1
#17 0xb7f6696e in start_thread () from /lib/tls/i686/cmov/libpthread.so.0
No symbol table info available.
#18 0xb7eada4e in clone () from /lib/tls/i686/cmov/libc.so.6
No symbol table info available.

Actions
Copy link
 #2

Updated by Hein Rigolo about 15 years ago

  • Status changed from New to Fixed
  • Found in version set to invalid

same as #271

Actions
Copy link

Also available in: Atom PDF