Bug #5488
Running Manual OTA EPG Grab causes crash
Status:
Fixed
Priority:
Normal
Assignee:
-
Category:
-
Target version:
-
Start date:
2019-01-09
Due date:
% Done:
100%
Estimated time:
Found in version:
4.3-1716~g6d57bb619
Affected Versions:
Description
When I click on "Trigger OTA EPG Grabber", this happens:
Jan 9 17:56:53 tvheadend[3281]: CRASH: Signal: 11 in PRG: /usr/bin/tvheadend (4.3-1716~g6d57bb619) [31c0b15a8128ff57be8d6db82d74d117c43c3902] CWD: / Jan 9 17:56:53 tvheadend[3281]: CRASH: Fault address (nil) (Address not mapped) Jan 9 17:56:53 tvheadend[3281]: CRASH: Loaded libraries: linux-vdso.so.1 /usr/lib/x86_64-linux-gnu/libdvbcsa.so.1 /usr/lib/x86_64-linux-gnu/libssl.so.1.1 /usr/lib/x86_64-linux-gnu/libcrypto.so.1.1/lib/x86_64-linux-gnu/libz.so.1 /lib/x86_64-linux-gnu/libpcre.so.3 /usr/lib/x86_64-linux-gnu/liburiparser.so.1 /lib/x86_64-linux-gnu/libdbus-1.so.3 /lib/x86_64-linux-gnu/libdl.so.2 /lib/x86_64-linux-gnu/libpthread.so.0 /lib/x86_64-linux-gnu/libm.so.6 /lib/x86_64-linux-gnu/librt.so.1 /lib/x86_64-linux-gnu/libmvec.so.1 /lib/x86_64-linux-gnu/libbz2.so.1.0 /usr/lib/x86_64-linux-gnu/libstdc++.so.6 /usr/lib/x86_64-linux-gnu/libvdpau.so.1 /usr/lib/x86_64-linux-gnu/libX11.so.6 /lib/x86_64-linux-gnu/libc.so.6 /lib/x86_64-linux-gnu/libsystemd.so.0 /lib64/ld-linux-x86-64.so.2 /lib/x86_64-linux-gnu/libgcc_s.so.1 /usr/lib/x86_64-linux-gnu/libXext.so.6 /usr/lib/x86_64-linux-gnu/libxcb.so.1 /lib/x86_64-linux-gnu/liblzma.so.5 /usr/lib/x86_64-linux-gnu/liblz4.so.1 /lib/x86_64-linux-gnu/libgcrypt.so.20 /usr/lib/x86_64-linux-gnu/libXau.so.6 /usr/lib/x86_64-linux-gn Jan 9 17:56:53 tvheadend[3281]: CRASH: Register dump [23]: 000055b5a54b436800007f9490f74c7000007f9490f74ba0000000000000000600007f9490f75b400000000000000000000055b5a71ec01000007ffd160c1c40000055b5a7318690000055b5a76f137000007f9490f74e500000000000000000000055b5a73186900000000000000000000055b5a76f137000007f9490f74e0800000000000000000000000000010246002b0000000000330000000000000014000000000000000efffffffe7ffbba130000000000000000 Jan 9 17:56:53 tvheadend[3281]: CRASH: STACKTRACE Jan 9 17:56:53 tvheadend[3281]: CRASH: /Daten/Build/tvheadend/src/trap.c:176 0x55b5a443446e 0x55b5a41fc000 Jan 9 17:56:54 tvheadend[3281]: CRASH: ??:0 0x7f9495c42890 0x7f9495c30000
Debugging this in GDB shows this:
Thread 7 "tvh:mtimer" received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x7f68c89e8700 (LWP 13996)]
0x0000000000000000 in ?? ()
(gdb) bt
#0 0x0000000000000000 in ?? ()
#1 0x000055bcb24089e4 in epggrab_ota_start (om=0x55bcb5a00820, mm=0x55bcb5dc7350) at src/epggrab/otamux.c:342
#2 0x000055bcb2408ac4 in epggrab_mux_start (mm=0x55bcb5dc7350, p=0x0) at src/epggrab/otamux.c:369
#3 0x000055bcb23e159e in mpegts_mux_instance_start (mmiptr=0x7f68c89e7030, t=0x55bcb90ded10, weight=4) at src/input/mpegts/mpegts_mux.c:272
#4 0x000055bcb23e75e7 in mpegts_service_start (t=0x55bcb90ded10, instance=11, weight=4, flags=33152) at src/input/mpegts/mpegts_service.c:403
#5 0x000055bcb22ff479 in service_start (t=0x55bcb90ded10, instance=11, weight=4, flags=33152, timeout=0, postpone=0) at src/service.c:331
#6 0x000055bcb22ffe11 in service_find_instance (s=0x55bcb90ded10, ch=0x0, ti=0x0, prch=0x0, sil=0x55bcb908de68, error=0x7f68c89e72d4, weight=4, flags=33152, timeout=0, postpone=0) at src/service.c:531
#7 0x000055bcb22fb8a0 in subscription_start_instance (s=0x55bcb908dcc0, error=0x7f68c89e72d4) at src/subscriptions.c:336
#8 0x000055bcb22fd564 in subscription_create_from_channel_or_service (prch=0x7f68c89e72e0, ti=0x0, weight=4, name=0x55bcb339cc94 "epggrab", flags=33152, hostname=0x0, username=0x0, client=0x0,
error=0x7f68c89e72d4, service=0x55bcb90ded10) at src/subscriptions.c:881
#9 0x000055bcb22fd761 in subscription_create_from_mux (prch=0x7f68c89e72e0, ti=0x0, weight=4, name=0x55bcb339cc94 "epggrab", flags=33152, hostname=0x0, username=0x0, client=0x0, error=0x7f68c89e72d4)
at src/subscriptions.c:951
#10 0x000055bcb23e5dc1 in mpegts_mux_subscribe (mm=0x55bcb5dc7350, mi=0x0, name=0x55bcb339cc94 "epggrab", weight=4, flags=33152) at src/input/mpegts/mpegts_mux.c:1437
#11 0x000055bcb240a1e0 in epggrab_ota_kick_cb (p=0x0) at src/epggrab/otamux.c:669
#12 0x000055bcb22afa7b in mtimer_thread (aux=0x0) at src/main.c:706
#13 0x000055bcb22c7ac8 in thread_wrapper (p=0x55bcb58c1400) at src/tvh_thread.c:91
#14 0x00007f68cd6a96db in start_thread (arg=0x7f68c89e8700) at pthread_create.c:463
#15 0x00007f68cc12d88f in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95
I have a core file, so in case you need anything else let me know
Associated revisions
History
#1
Updated by Jaroslav Kysela 10 days ago
Updated by - Status changed from New to Fixed
- % Done changed from 0 to 100
Applied in changeset tvheadend|8e0dd2bee6373156907bde8da7b659948a915e12.
otamux: fix NULL dereference, fixes #5488