Uploaded image for project: 'Couchbase Lite'
  1. Couchbase Lite
  2. CBL-5646

Null dereference crash in gotHTTPResponse

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Major
    • Beryllium
    • 3.1.6
    • LiteCore
    • Security Level: Public
    • None
    • LiteCore 130
    • 2

    Description

      Crash log (Only copy the LiteCore stack) :

      04-10 20:21:06.097 25996 25996 F DEBUG   : *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
      04-10 20:21:06.097 25996 25996 F DEBUG   : Build fingerprint: 'google/cheetah/cheetah:13/TD1A.220804.009.A2/8940162:user/release-keys'
      04-10 20:21:06.097 25996 25996 F DEBUG   : Revision: 'MP1.0'
      04-10 20:21:06.097 25996 25996 F DEBUG   : ABI: 'arm64'
      04-10 20:21:06.097 25996 25996 F DEBUG   : Timestamp: 2024-04-10 20:21:05.602324654-0400
      04-10 20:21:06.097 25996 25996 F DEBUG   : Process uptime: 1257s
      04-10 20:21:06.097 25996 25996 F DEBUG   : Cmdline: com.xxxxxx.yyy.android.debug
      04-10 20:21:06.097 25996 25996 F DEBUG   : pid: 22033, tid: 25195, name: .xxxxxx.com/...  >>> com.xxxxxx.yyy.android.debug <<<
      04-10 20:21:06.097 25996 25996 F DEBUG   : uid: 10646
      04-10 20:21:06.097 25996 25996 F DEBUG   : tagged_addr_ctrl: 0000000000000001 (PR_TAGGED_ADDR_ENABLE)
      04-10 20:21:06.097 25996 25996 F DEBUG   : signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000048
      04-10 20:21:06.097 25996 25996 F DEBUG   : Cause: null pointer dereference
      04-10 20:21:06.097 25996 25996 F DEBUG   :     x0  0000000000000000  x1  0000000000000065  x2  000000759a898b70  x3  000000759a898b4c
      04-10 20:21:06.097 25996 25996 F DEBUG   :     x4  000000759a898b70  x5  000000764cf8a82d  x6  0000000000000000  x7  0000000000000000
      04-10 20:21:06.097 25996 25996 F DEBUG   :     x8  00000075af35e1f0  x9  00000075af545c28  x10 0000000000000003  x11 0000000000000000
      04-10 20:21:06.097 25996 25996 F DEBUG   :     x12 0000000000004748  x13 0000000000000008  x14 e319906a688d8380  x15 00000000ffffe034
      04-10 20:21:06.097 25996 25996 F DEBUG   :     x16 00000075af567988  x17 000000797edaeb00  x18 000000745a896000  x19 b4000077e988ca20
      04-10 20:21:06.097 25996 25996 F DEBUG   :     x20 0000000000000003  x21 000000759a89d000  x22 000000759a898b70  x23 0000007600337490
      04-10 20:21:06.097 25996 25996 F DEBUG   :     x24 000000759a898f10  x25 b400007829754930  x26 0000000000004071  x27 0000007600337590
      04-10 20:21:06.097 25996 25996 F DEBUG   :     x28 000000759a898dd0  x29 000000759a898b00
      04-10 20:21:06.097 25996 25996 F DEBUG   :     lr  00000075af3673d4  sp  000000759a898af0  pc  00000075af35cd14  pst 0000000020001000
      04-10 20:21:06.097 25996 25996 F DEBUG   : backtrace:
      04-10 20:21:06.097 25996 25996 F DEBUG   :       #04 pc 0000000000234d14  /data/app/~~Uw94FclFgdxYUCT0mxB9Cg==/com.xxxxxx.yyy.android.debug-N9wUHw_lXrTlESY24iPPCw==/lib/arm64/libLiteCore.so (c4socket_gotHTTPResponse+16) (BuildId: 5a2f59a0c2d7ac3056f8b8f783b3ace25b38b0e8)
      04-10 20:21:06.097 25996 25996 F DEBUG   :       #05 pc 000000000001e004  /data/app/~~Uw94FclFgdxYUCT0mxB9Cg==/com.xxxxxx.yyy.android.debug-N9wUHw_lXrTlESY24iPPCw==/lib/arm64/libLiteCoreJNI.so (Java_com_couchbase_lite_internal_core_impl_NativeC4Socket_gotHTTPResponse+72) (BuildId: 5bb25d7960b65bbda15cb24845b84d9ca26fe257)
      04-10 20:21:06.097 25996 25996 F DEBUG   :       #11 pc 000000000034ea60  [anon:dalvik-classes12.dex extracted in memory from /data/app/~~Uw94FclFgdxYUCT0mxB9Cg==/com.xxxxxx.yyy.android.debug-N9wUHw_lXrTlESY24iPPCw==/base.apk!classes12.dex] (com.couchbase.lite.internal.core.impl.NativeC4Socket.nGotHTTPResponse+0)
      04-10 20:21:06.097 25996 25996 F DEBUG   :       #11 pc 000000000034ea60  [anon:dalvik-classes12.dex extracted in memory from /data/app/~~Uw94FclFgdxYUCT0mxB9Cg==/com.xxxxxx.yyy.android.debug-N9wUHw_lXrTlESY24iPPCw==/base.apk!classes12.dex] (com.couchbase.lite.internal.core.impl.NativeC4Socket.nGotHTTPResponse+0)
      04-10 20:21:06.097 25996 25996 F DEBUG   :       #16 pc 000000000034d4d0  [anon:dalvik-classes12.dex extracted in memory from /data/app/~~Uw94FclFgdxYUCT0mxB9Cg==/com.xxxxxx.yyy.android.debug-N9wUHw_lXrTlESY24iPPCw==/base.apk!classes12.dex] (com.couchbase.lite.internal.core.C4Socket.lambda$ackOpenToCore$5+0)
      04-10 20:21:06.097 25996 25996 F DEBUG   :       #21 pc 000000000034d0cc  [anon:dalvik-classes12.dex extracted in memory from /data/app/~~Uw94FclFgdxYUCT0mxB9Cg==/com.xxxxxx.yyy.android.debug-N9wUHw_lXrTlESY24iPPCw==/base.apk!classes12.dex] (com.couchbase.lite.internal.core.C4Socket.c+0)
      04-10 20:21:06.097 25996 25996 F DEBUG   :       #26 pc 000000000034cda4  [anon:dalvik-classes12.dex extracted in memory from /data/app/~~Uw94FclFgdxYUCT0mxB9Cg==/com.xxxxxx.yyy.android.debug-N9wUHw_lXrTlESY24iPPCw==/base.apk!classes12.dex] (com.couchbase.lite.internal.core.g2.accept+0)
      04-10 20:21:06.097 25996 25996 F DEBUG   :       #30 pc 000000000211386c  /memfd:jit-cache (deleted) (com.couchbase.lite.internal.core.C4NativePeer.withPeer+252)
      04-10 20:21:06.098 25996 25996 F DEBUG   :       #35 pc 000000000034d23c  [anon:dalvik-classes12.dex extracted in memory from /data/app/~~Uw94FclFgdxYUCT0mxB9Cg==/com.xxxxxx.yyy.android.debug-N9wUHw_lXrTlESY24iPPCw==/base.apk!classes12.dex] (com.couchbase.lite.internal.core.C4Socket.ackOpenToCore+0)
      04-10 20:21:06.098 25996 25996 F DEBUG   :       #40 pc 0000000000354130  [anon:dalvik-classes12.dex extracted in memory from /data/app/~~Uw94FclFgdxYUCT0mxB9Cg==/com.xxxxxx.yyy.android.debug-N9wUHw_lXrTlESY24iPPCw==/base.apk!classes12.dex] (com.couchbase.lite.internal.replicator.AbstractCBLWebSocket.remoteOpened+0)
      04-10 20:21:06.098 25996 25996 F DEBUG   :       #45 pc 0000000000356b38  [anon:dalvik-classes12.dex extracted in memory from /data/app/~~Uw94FclFgdxYUCT0mxB9Cg==/com.xxxxxx.yyy.android.debug-N9wUHw_lXrTlESY24iPPCw==/base.apk!classes12.dex] (com.couchbase.lite.internal.sockets.OkHttpSocket.onOpen+0)
      

      There is no much info or log for the issue but from the stacktrace, it seems like either the socket is null or the response header is null.

      Source : vf3_test_results-a49c2dcafc20d3c3.zip in CBSE-16662

      Attachments

        Issue Links

          Activity

            People

              jianmin.zhao Jianmin Zhao
              pasin Pasin Suriyentrakorn
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                PagerDuty