Bug #2864
closed
OsmoMSC is crashing/asserting if IMSI length too long
Added by laforge over 6 years ago.
Updated almost 6 years ago.
Category:
A interface (general)
Description
When we send an ID RESPONSE with IMSI longer than 15 digits, OsmoMSC will crash/abort as follows:
Assert failed bcd_len <= sizeof(bcd_buf) gsup.c:494
backtrace() returned 25 addresses
/usr/local/stow/libosmocore/lib/libosmogsm.so.8(osmo_gsup_encode+0x1183) [0x7efd0bbf0163]
see attached pcap file.
Files
- Status changed from New to In Progress
- % Done changed from 0 to 10
Related gerrit 6009 was sent for review.
- % Done changed from 10 to 20
Related gerrit 6197, 6009 are merged, 6010 is under review.
Is there some way to trigger this crash easily?
On Mon, Feb 05, 2018 at 03:38:12PM +0000, msuraev [REDMINE] wrote:
Is there some way to trigger this crash easily?
just send a too long imsi from any of the TTCN3 test cases.
- Status changed from In Progress to Stalled
Related gerrit 6388, 6460, 6475, 6484 are under review. Alternatively/in addition to it we should implement this in TTCN3.
- Assignee changed from msuraev to stsp
- Status changed from Stalled to New
- Status changed from New to In Progress
- Status changed from In Progress to Resolved
Above patches have been merged.
Also available in: Atom
PDF