search

GrapheneOS / os-issue-tracker

Issue tracker for GrapheneOS Android Open Source Project hardening work. Standalone projects like Auditor, AttestationServer and hardened_malloc have their own dedicated trackers.
https://grapheneos.org/
363 stars 21 forks source link

Bluetooth crash when trying to play from car #4338

Open dieseltravis opened 1 week ago

dieseltravis commented 1 week ago 
type: crash
flags: dev options enabled
osVersion: google/akita/akita:15/AP3A.241105.007/2024110700:user/release-keys
uid: 1002 (u:r:bluetooth:s0)
cmdline: com.android.bluetooth
processUptime: 0s

signal: 11 (SIGSEGV), code 9 (SEGV_MTESERR), faultAddr f00c6d89dbb2c38
threadName: bt_main_thread
MTE: enabled

backtrace:
    /apex/com.android.btservices/lib64/libbluetooth_jni.so (bta_av_setconfig_rej(tBTA_AV_SCB*, tBTA_AV_DATA*)+176, pc 6d2510)
    /apex/com.android.btservices/lib64/libbluetooth_jni.so (bta_av_ssm_execute(tBTA_AV_SCB*, unsigned short, tBTA_AV_DATA*)+2432, pc 6cd480)
    /apex/com.android.btservices/lib64/libbluetooth_jni.so (bta_av_hdl_event(BT_HDR_RIGID const*)+576, pc 6ca380)
    /apex/com.android.btservices/lib64/libbluetooth_jni.so (bta_sys_event(BT_HDR_RIGID*)+180, pc 587e84)
    /apex/com.android.btservices/lib64/libbluetooth_jni.so (base::debug::TaskAnnotator::RunTask(char const*, base::PendingTask*)+204, pc abf46c)
    /apex/com.android.btservices/lib64/libbluetooth_jni.so (base::MessageLoop::RunTask(base::PendingTask*)+360, pc abe958)
    /apex/com.android.btservices/lib64/libbluetooth_jni.so (base::MessageLoop::DoWork()+520, pc abecb8)
    /apex/com.android.btservices/lib64/libbluetooth_jni.so (base::MessagePumpDefault::Run(base::MessagePump::Delegate*)+96, pc ac1460)
    /apex/com.android.btservices/lib64/libbluetooth_jni.so (base::RunLoop::Run()+72, pc ace7b8)
    /apex/com.android.btservices/lib64/libbluetooth_jni.so (bluetooth::common::MessageLoopThread::Run(std::__1::promise<void>)+328, pc aabfc8)
    /apex/com.android.btservices/lib64/libbluetooth_jni.so (bluetooth::common::MessageLoopThread::RunThread(bluetooth::common::MessageLoopThread*, std::__1::promise<void>)+56, pc aabb58)
    /apex/com.android.btservices/lib64/libbluetooth_jni.so (void* std::__1::__thread_proxy[abi:nn180000]<std::__1::tuple<std::__1::unique_ptr<std::__1::__thread_struct, std::__1::default_delete<std::__1::__thread_struct>>, void (*)(bluetooth::common::MessageLoopThread*, std::__1::promise<void>), bluetooth::common::MessageLoopThread*, std::__1::promise<void>>>(void*)+92, pc aac9cc)
    /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+200, pc 7afe8)
    /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+68, pc 6b164)