ndk
ndk copied to clipboard
Published
20 hours ago •
android
android
[Bug]: paho.mqtt.cpp crashes with SEGV_ACCERR in make_shared when built with optimizations
trafficstars
Description
When any level of optimizations different than 0 is enabled, paho.mqtt.cpp crashes in shared_ptr related code, for example, here, or in message:
10-21 15:35:50.265 1624 1778 F libc : Fatal signal 11 (SIGSEGV), code 2 (SEGV_ACCERR), fault addr 0x78c40b354cd0 in tid 1778 (com.mypackage), pid 1624 (com.mypackage)
10-21 12:35:51.630 0 0 E audit : rate limit exceeded
10-21 15:35:50.469 2223 2223 F DEBUG : *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
10-21 15:35:50.469 2223 2223 F DEBUG : Build fingerprint: 'Android/sdk_phone_x86_64/emulator_x86_64:12/SP2A.220505.008/eng.user.20241021.101248:eng/test-keys'
10-21 15:35:50.469 2223 2223 F DEBUG : Revision: '0'
10-21 15:35:50.469 2223 2223 F DEBUG : ABI: 'x86_64'
10-21 15:35:50.469 2223 2223 F DEBUG : Timestamp: 2024-10-21 15:35:50.297193046+0300
10-21 15:35:50.469 2223 2223 F DEBUG : Process uptime: 3s
10-21 15:35:50.469 2223 2223 F DEBUG : Cmdline: com.mypackage
10-21 15:35:50.469 2223 2223 F DEBUG : pid: 1624, tid: 1778, name: com.mypackage >>> com.mypackage <<<
10-21 15:35:50.469 2223 2223 F DEBUG : uid: 10106
10-21 15:35:50.469 2223 2223 F DEBUG : signal 11 (SIGSEGV), code 2 (SEGV_ACCERR), fault addr 0x78c40b354cd0
10-21 15:35:50.469 2223 2223 F DEBUG : rax 0000000000000001 rbx 000078c46661b458 rcx 0000000000000001 rdx 000078c52468c400
10-21 15:35:50.469 2223 2223 F DEBUG : r8 0000000000000000 r9 000078c40d88594d r10 000078c508030df8 r11 0000000000000246
10-21 15:35:50.469 2223 2223 F DEBUG : r12 000078c46661b440 r13 000078c52468c400 r14 000078c404411518 r15 000078c52468c400
10-21 15:35:50.469 2223 2223 F DEBUG : rdi 000078c40d96d1b8 rsi 000078c40b354cd0
10-21 15:35:50.469 2223 2223 F DEBUG : rbp 000078c46661b458 rsp 000078c40afa8870 rip 000078c40b50e412
10-21 15:35:50.469 2223 2223 F DEBUG : backtrace:
10-21 15:35:50.469 2223 2223 F DEBUG : #00 pc 000000000025e412 /data/local/lib64/libmylib.so (void std::__ndk1::allocator<mqtt::delivery_token>::construct[abi:ne180000]<mqtt::delivery_token, mqtt::iasync_client&, std::__ndk1::shared_ptr<mqtt::message const>&>(mqtt::delivery_token*, mqtt::iasync_client&, std::__ndk1::shared_ptr<mqtt::message const>&)+178) (BuildId: ecc1ffc5da396c51af7f96a5a98c83d75a6b812d)
10-21 15:35:50.469 2223 2223 F DEBUG : #01 pc 000000000025ae5c /data/local/lib64/libmylib.so (mqtt::async_client::publish(std::__ndk1::shared_ptr<mqtt::message const>)+140) (BuildId: ecc1ffc5da396c51af7f96a5a98c83d75a6b812d)
10-21 15:35:50.469 2223 2223 F DEBUG : #02 pc 000000000025aa6f /data/local/lib64/libmylib.so (mqtt::async_client::publish(mqtt::buffer_ref<char>, mqtt::buffer_ref<char>, int, bool)+319) (BuildId: ecc1ffc5da396c51af7f96a5a98c83d75a6b812d)
10-21 15:35:50.469 2223 2223 F DEBUG : #03 pc 0000000000120735 /data/local/lib64/libmylib.so (MqttClient::publish(std::__ndk1::basic_string<char, std::__ndk1::char_traits<char>, std::__ndk1::allocator<char> > const&, std::__ndk1::basic_string<char, std::__ndk1::char_traits<char>, std::__ndk1::allocator<char> > const&, int, bool)+405) (BuildId: ecc1ffc5da396c51af7f96a5a98c83d75a6b812d)
CMake options:
-DCMAKE_CXX_FLAGS="-fPIE -fPIC -lstdc++ -O1"
-DCMAKE_AR="${ANDROID_NDK}/toolchains/llvm/prebuilt/linux-x86_64/bin/llvm-ar"
-DCMAKE_RANLIB="${ANDROID_NDK}/toolchains/llvm/prebuilt/linux-x86_64/bin/llvm-ranlib"
-DCMAKE_CXX_COMPILER_CLANG_SCAN_DEPS="${ANDROID_NDK}/toolchains/llvm/prebuilt/linux-x86_64/bin/clang-scan-deps"
-DCMAKE_TOOLCHAIN_FILE="${ANDROID_NDK}/build/cmake/android.toolchain.cmake"
-DANDROID_ABI=x86_64
-DANDROID_PLATFORM=android-32
Here is the minimal project to reproduce: https://github.com/RankoR/paho-mqtt-crash-demo
It happens only on Android, I couldn't reproduce it on Linux even with -O3, so I assume this is an NDK-related issue.
Upstream bug
No response
Commit to cherry-pick
No response
Affected versions
r27
Canary version
No response
Host OS
Linux
Host OS version
Arch
Affected ABIs
arm64-v8a, x86_64
