New issue
Advanced search Search tips

Issue 882772 link

Starred by 1 user

Issue metadata

Status: Unconfirmed
Owner: ----
EstimatedDays: ----
NextAction: ----
OS: Android
Pri: 2
Type: Bug



Sign in to add a comment

ERROR: AddressSanitizer: SEGV on unknown address 0x00000000

Reported by xiaosong...@gmail.com, Sep 11

Issue description

Steps to reproduce the problem:
0. Download chromium src 71.0.3549.0
1. Build chrome_public_apk with ASan support
   gn args out/asan
     is_clang = true
     is_asan = true
     is_debug = false
     is_component_build = false
     target_os = "android"
2. Re-package the ChromePublic.apk with wrap.sh & asan runtime libs by following the guide @ https://developer.android.com/ndk/guides/wrap-script
The content of the wrap.sh:
#!/system/bin/sh
HERE="$(cd "$(dirname "$0")" && pwd)"
export ASAN_OPTIONS=color=false,log_to_syslog=false,allow_user_segv_handler=1
export LD_PRELOAD=$HERE/libclang_rt.asan-arm-android.so
$@

3. Run the asan-enabled apk on Huawei P20

What is the expected behavior?
ASan works as expected on Android

What went wrong?
Crash with

09-11 15:11:13.106 22583 22583 F DEBUG   : *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
09-11 15:11:13.106 22583 22583 F DEBUG   : Build fingerprint: 'HUAWEI/EML-AL00/HWEML:8.1.0/HUAWEIEML-AL00/109(SP5C00):user/release-keys'
09-11 15:11:13.106 22583 22583 F DEBUG   : Revision: '0'
09-11 15:11:13.107 22583 22583 F DEBUG   : ABI: 'arm'
09-11 15:11:13.107 22583 22583 F DEBUG   : pid: 22356, tid: 22447, name: TaskSchedulerFo  >>> org.chromium.chrome <<<
09-11 15:11:13.107 22583 22583 F DEBUG   : signal 6 (SIGABRT), code -6 (SI_TKILL), fault addr --------
09-11 15:11:13.108 22583 22583 F DEBUG   : Abort message: '=================================================================
09-11 15:11:13.108 22583 22583 F DEBUG   : ==22356==ERROR: AddressSanitizer: SEGV on unknown address 0x00000000 (pc 0x9f49dab4 bp 0x925fa53c sp 0x925f9bc0 T48)
09-11 15:11:13.108 22583 22583 F DEBUG   : ==22356==The signal is caused by a READ memory access.
09-11 15:11:13.108 22583 22583 F DEBUG   : ==22356==Hint: address points to the zero page.
09-11 15:11:13.108 22583 22583 F DEBUG   :     #0 0x9f49dab0  (/data/app/org.chromium.chrome-USMXBa1aSOYF26NW916Z4A==/lib/arm/libchrome.so+0x95bfab0)
09-11 15:11:13.108 22583 22583 F DEBUG   :     #1 0xa2dcb24e  (/data/app/org.chromium.chrome-USMXBa1aSOYF26NW916Z4A==/lib/arm/libchrome.so+0xceed

source code @ libchrome.so+0x95bfab0
https://cs.chromium.org/chromium/src/third_party/icu/source/i18n/coll.cpp?q=coll.cpp&sq=package:chromium&g=0&l=454

Without asan-enabled, everything works fine.

Crashed report ID: 

How much crashed? Just one tab

Is it a problem with a plugin? N/A 

Did this work before? N/A 

Chrome version: 71.0.3549.0  Channel: dev
OS Version: 8.1
Flash Version:
 

Sign in to add a comment