Remove Cid from PrivacyGuard's notification icon #5
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Contributor
|
Hi there; This is an automated reply, to let you know LineageOS doesn't merge pull You can submit your change requests through our public review system, That review system is an installation of Google's Gerrit code review. Thanks! |
Rashed97
pushed a commit
to Rashed97/android_frameworks_base
that referenced
this pull request
Dec 24, 2017
AKA the pixel navbar This is a combination of 8 commits. This is the 1st commit message: Pixel Navbar, reverse engineered from smali. Notes: - This is forcing the Pixel Home button on people, and it looks ugly with the other nav buttons being hollow - There MAY still be a few fixes yet to be found in this code because it WAS a big file to RE from smali. I have yet to find any, but time is the best tester. - Shoutout to @bigrushdog for providing a decompiled form used to verify the smali and as a guideline for the more obsure smali sections. It was a big help. - Tagging myself here to see adoption rate. @USA-RedDragon PureNexus Edits: By: @BeansTown106 *squashed with the landscape fix *cleaned up some of the if statements and removed the unused constants *removed the renamed icons, this was unnecessary as we will vectorize pixel icons Change-Id: Ia45fc89e4f1518fcabc379c4790d1955a026daee This is the commit message LineageOS#2: Vectorize all navbar icons (pixel theme) fix landscape bug *the only thing navbar related that is not vectorized is the lightsout/carmode/menu icons This is the commit message LineageOS#3: Pixel navbar: allow disabling based on config Create new config_allowOpaLayout bool to allow themers to disable the Pixel Navbar Fixes the dreaded "yellow" home button Change-Id: I69ad9a0d87317c9d9732b08b33ceabd096afee77 This is the commit message LineageOS#4: Pixel Navbar animation toggle [1/2] *made to work with the exposure for themers to disable navbar animation Change-Id: Icb057edaf0c49933d6a882df3af627a076a14561 This is the commit message LineageOS#5: Pixel navbar: remove this. and OpaLayout references, cleanup Since it's all on the same file, I don't think they are needed (?) Replace some hardcoded int values with meaningful variables, like MotionEvent Change-Id: I4d7b2fe57d3e1bf2fa034bf81efb11d37a5ebfba This is the commit message LineageOS#6: Pixel navbar: Fix Home button FC Change-Id: I7c463999a76ee02f1f5af615ddcff3c05ca4e4f2 This is the commit message LineageOS#7: Reload Pixel Home Animation without reboot Change-Id: I4d7b2fe57d3e1bf2fa034bf81efb11d37a5ebfba
Rashed97
pushed a commit
to Rashed97/android_frameworks_base
that referenced
this pull request
Jan 5, 2018
AKA the pixel navbar This is a combination of 8 commits. This is the 1st commit message: Pixel Navbar, reverse engineered from smali. Notes: - This is forcing the Pixel Home button on people, and it looks ugly with the other nav buttons being hollow - There MAY still be a few fixes yet to be found in this code because it WAS a big file to RE from smali. I have yet to find any, but time is the best tester. - Shoutout to @bigrushdog for providing a decompiled form used to verify the smali and as a guideline for the more obsure smali sections. It was a big help. - Tagging myself here to see adoption rate. @USA-RedDragon PureNexus Edits: By: @BeansTown106 *squashed with the landscape fix *cleaned up some of the if statements and removed the unused constants *removed the renamed icons, this was unnecessary as we will vectorize pixel icons Change-Id: Ia45fc89e4f1518fcabc379c4790d1955a026daee This is the commit message LineageOS#2: Vectorize all navbar icons (pixel theme) fix landscape bug *the only thing navbar related that is not vectorized is the lightsout/carmode/menu icons This is the commit message LineageOS#3: Pixel navbar: allow disabling based on config Create new config_allowOpaLayout bool to allow themers to disable the Pixel Navbar Fixes the dreaded "yellow" home button Change-Id: I69ad9a0d87317c9d9732b08b33ceabd096afee77 This is the commit message LineageOS#4: Pixel Navbar animation toggle [1/2] *made to work with the exposure for themers to disable navbar animation Change-Id: Icb057edaf0c49933d6a882df3af627a076a14561 This is the commit message LineageOS#5: Pixel navbar: remove this. and OpaLayout references, cleanup Since it's all on the same file, I don't think they are needed (?) Replace some hardcoded int values with meaningful variables, like MotionEvent Change-Id: I4d7b2fe57d3e1bf2fa034bf81efb11d37a5ebfba This is the commit message LineageOS#6: Pixel navbar: Fix Home button FC Change-Id: I7c463999a76ee02f1f5af615ddcff3c05ca4e4f2 This is the commit message LineageOS#7: Reload Pixel Home Animation without reboot Change-Id: I4d7b2fe57d3e1bf2fa034bf81efb11d37a5ebfba
Rashed97
pushed a commit
to Rashed97/android_frameworks_base
that referenced
this pull request
Mar 30, 2018
AKA the pixel navbar This is a combination of 8 commits. This is the 1st commit message: Pixel Navbar, reverse engineered from smali. Notes: - This is forcing the Pixel Home button on people, and it looks ugly with the other nav buttons being hollow - There MAY still be a few fixes yet to be found in this code because it WAS a big file to RE from smali. I have yet to find any, but time is the best tester. - Shoutout to @bigrushdog for providing a decompiled form used to verify the smali and as a guideline for the more obsure smali sections. It was a big help. - Tagging myself here to see adoption rate. @USA-RedDragon PureNexus Edits: By: @BeansTown106 *squashed with the landscape fix *cleaned up some of the if statements and removed the unused constants *removed the renamed icons, this was unnecessary as we will vectorize pixel icons Change-Id: Ia45fc89e4f1518fcabc379c4790d1955a026daee This is the commit message LineageOS#2: Vectorize all navbar icons (pixel theme) fix landscape bug *the only thing navbar related that is not vectorized is the lightsout/carmode/menu icons This is the commit message LineageOS#3: Pixel navbar: allow disabling based on config Create new config_allowOpaLayout bool to allow themers to disable the Pixel Navbar Fixes the dreaded "yellow" home button Change-Id: I69ad9a0d87317c9d9732b08b33ceabd096afee77 This is the commit message LineageOS#4: Pixel Navbar animation toggle [1/2] *made to work with the exposure for themers to disable navbar animation Change-Id: Icb057edaf0c49933d6a882df3af627a076a14561 This is the commit message LineageOS#5: Pixel navbar: remove this. and OpaLayout references, cleanup Since it's all on the same file, I don't think they are needed (?) Replace some hardcoded int values with meaningful variables, like MotionEvent Change-Id: I4d7b2fe57d3e1bf2fa034bf81efb11d37a5ebfba This is the commit message LineageOS#6: Pixel navbar: Fix Home button FC Change-Id: I7c463999a76ee02f1f5af615ddcff3c05ca4e4f2 This is the commit message LineageOS#7: Reload Pixel Home Animation without reboot Change-Id: I4d7b2fe57d3e1bf2fa034bf81efb11d37a5ebfba
Koloses
pushed a commit
to GalaxyFork/android_frameworks_base
that referenced
this pull request
May 29, 2018
If mSurface has already been released in another thread, this would result in a null-pointer dereference in SurfaceSession contructor i.e. in nativeCreateScoped(). 7757 7757 F DEBUG : pid: 1402, tid: 1583, name: android.anim >>> system_server <<< 7757 7757 F DEBUG : signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0xd0 7757 7757 F DEBUG : Cause: null pointer dereference ... <trimmed> 7757 7757 F DEBUG : backtrace: 7757 7757 F DEBUG : #00 pc 000000000007fe58 /system/lib64/libgui.so (android::Surface::getIGraphicBufferProducer() const) 7757 7757 F DEBUG : LineageOS#1 pc 00000000000ff000 /system/lib64/libandroid_runtime.so (android::nativeCreateScoped(_JNIEnv*, _jclass*, long)+52) 7757 7757 F DEBUG : LineageOS#2 pc 0000000000ac8968 /system/framework/arm64/boot-framework.oat (offset 0x614000) (android.content.res.XmlBlock.nativeCreateParseState [DEDUPED]+152) 7757 7757 F DEBUG : LineageOS#3 pc 0000000001327d24 /system/framework/arm64/boot-framework.oat (offset 0x614000) (android.view.SurfaceSession.<init>+52) 7757 7757 F DEBUG : LineageOS#4 pc 00000000014b7320 /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.TaskSnapshotSurface.drawSizeMismatchSnapshot+128) 7757 7757 F DEBUG : LineageOS#5 pc 00000000014b784c /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.TaskSnapshotSurface.drawSnapshot+188) 7757 7757 F DEBUG : LineageOS#6 pc 00000000014b6f2c /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.TaskSnapshotSurface.create+2684) 7757 7757 F DEBUG : LineageOS#7 pc 00000000014b0158 /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.TaskSnapshotController.createStartingSurface+72) 7757 7757 F DEBUG : LineageOS#8 pc 00000000014a5ca0 /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.SnapshotStartingData.createStartingSurface+96) 7757 7757 F DEBUG : LineageOS#9 pc 000000000144b030 /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.AppWindowContainerController.lambda$-com_android_server_wm_AppWindowContainerController_4735+496) ... <trimmed> Change-Id: I41268c7680d3885c85fc3b682d0eba7415674062 Signed-off-by: Adesh15 <[email protected]>
i81u812
pushed a commit
to i81u812/android_frameworks_base
that referenced
this pull request
Jul 30, 2018
If mSurface has already been released in another thread, this would result in a null-pointer dereference in SurfaceSession contructor i.e. in nativeCreateScoped(). 7757 7757 F DEBUG : pid: 1402, tid: 1583, name: android.anim >>> system_server <<< 7757 7757 F DEBUG : signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0xd0 7757 7757 F DEBUG : Cause: null pointer dereference ... <trimmed> 7757 7757 F DEBUG : backtrace: 7757 7757 F DEBUG : #00 pc 000000000007fe58 /system/lib64/libgui.so (android::Surface::getIGraphicBufferProducer() const) 7757 7757 F DEBUG : LineageOS#1 pc 00000000000ff000 /system/lib64/libandroid_runtime.so (android::nativeCreateScoped(_JNIEnv*, _jclass*, long)+52) 7757 7757 F DEBUG : LineageOS#2 pc 0000000000ac8968 /system/framework/arm64/boot-framework.oat (offset 0x614000) (android.content.res.XmlBlock.nativeCreateParseState [DEDUPED]+152) 7757 7757 F DEBUG : LineageOS#3 pc 0000000001327d24 /system/framework/arm64/boot-framework.oat (offset 0x614000) (android.view.SurfaceSession.<init>+52) 7757 7757 F DEBUG : LineageOS#4 pc 00000000014b7320 /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.TaskSnapshotSurface.drawSizeMismatchSnapshot+128) 7757 7757 F DEBUG : LineageOS#5 pc 00000000014b784c /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.TaskSnapshotSurface.drawSnapshot+188) 7757 7757 F DEBUG : LineageOS#6 pc 00000000014b6f2c /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.TaskSnapshotSurface.create+2684) 7757 7757 F DEBUG : LineageOS#7 pc 00000000014b0158 /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.TaskSnapshotController.createStartingSurface+72) 7757 7757 F DEBUG : LineageOS#8 pc 00000000014a5ca0 /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.SnapshotStartingData.createStartingSurface+96) 7757 7757 F DEBUG : LineageOS#9 pc 000000000144b030 /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.AppWindowContainerController.lambda$-com_android_server_wm_AppWindowContainerController_4735+496) ... <trimmed> Change-Id: I41268c7680d3885c85fc3b682d0eba7415674062 Signed-off-by: Pranav Vashi <[email protected]>
i81u812
pushed a commit
to i81u812/android_frameworks_base
that referenced
this pull request
Jul 30, 2018
AKA the pixel navbar This is a combination of 8 commits. This is the 1st commit message: Pixel Navbar, reverse engineered from smali. Notes: - This is forcing the Pixel Home button on people, and it looks ugly with the other nav buttons being hollow - There MAY still be a few fixes yet to be found in this code because it WAS a big file to RE from smali. I have yet to find any, but time is the best tester. - Shoutout to @bigrushdog for providing a decompiled form used to verify the smali and as a guideline for the more obsure smali sections. It was a big help. - Tagging myself here to see adoption rate. @USA-RedDragon PureNexus Edits: By: @BeansTown106 *squashed with the landscape fix *cleaned up some of the if statements and removed the unused constants *removed the renamed icons, this was unnecessary as we will vectorize pixel icons Change-Id: Ia45fc89e4f1518fcabc379c4790d1955a026daee This is the commit message LineageOS#2: Vectorize all navbar icons (pixel theme) fix landscape bug *the only thing navbar related that is not vectorized is the lightsout/carmode/menu icons This is the commit message LineageOS#3: Pixel navbar: allow disabling based on config Create new config_allowOpaLayout bool to allow themers to disable the Pixel Navbar Fixes the dreaded "yellow" home button Change-Id: I69ad9a0d87317c9d9732b08b33ceabd096afee77 This is the commit message LineageOS#4: Pixel Navbar animation toggle [1/2] *made to work with the exposure for themers to disable navbar animation Change-Id: Icb057edaf0c49933d6a882df3af627a076a14561 This is the commit message LineageOS#5: Pixel navbar: remove this. and OpaLayout references, cleanup Since it's all on the same file, I don't think they are needed (?) Replace some hardcoded int values with meaningful variables, like MotionEvent Change-Id: I4d7b2fe57d3e1bf2fa034bf81efb11d37a5ebfba This is the commit message LineageOS#6: Pixel navbar: Fix Home button FC Change-Id: I7c463999a76ee02f1f5af615ddcff3c05ca4e4f2 This is the commit message LineageOS#7: Reload Pixel Home Animation without reboot Change-Id: I4d7b2fe57d3e1bf2fa034bf81efb11d37a5ebfba Signed-off-by: Erfan Abdi <[email protected]>
Rashed97
pushed a commit
to Rashed97/android_frameworks_base
that referenced
this pull request
Aug 4, 2018
AKA the pixel navbar This is a combination of 8 commits. This is the 1st commit message: Pixel Navbar, reverse engineered from smali. Notes: - This is forcing the Pixel Home button on people, and it looks ugly with the other nav buttons being hollow - There MAY still be a few fixes yet to be found in this code because it WAS a big file to RE from smali. I have yet to find any, but time is the best tester. - Shoutout to @bigrushdog for providing a decompiled form used to verify the smali and as a guideline for the more obsure smali sections. It was a big help. - Tagging myself here to see adoption rate. @USA-RedDragon PureNexus Edits: By: @BeansTown106 *squashed with the landscape fix *cleaned up some of the if statements and removed the unused constants *removed the renamed icons, this was unnecessary as we will vectorize pixel icons Change-Id: Ia45fc89e4f1518fcabc379c4790d1955a026daee This is the commit message LineageOS#2: Vectorize all navbar icons (pixel theme) fix landscape bug *the only thing navbar related that is not vectorized is the lightsout/carmode/menu icons This is the commit message LineageOS#3: Pixel navbar: allow disabling based on config Create new config_allowOpaLayout bool to allow themers to disable the Pixel Navbar Fixes the dreaded "yellow" home button Change-Id: I69ad9a0d87317c9d9732b08b33ceabd096afee77 This is the commit message LineageOS#4: Pixel Navbar animation toggle [1/2] *made to work with the exposure for themers to disable navbar animation Change-Id: Icb057edaf0c49933d6a882df3af627a076a14561 This is the commit message LineageOS#5: Pixel navbar: remove this. and OpaLayout references, cleanup Since it's all on the same file, I don't think they are needed (?) Replace some hardcoded int values with meaningful variables, like MotionEvent Change-Id: I4d7b2fe57d3e1bf2fa034bf81efb11d37a5ebfba This is the commit message LineageOS#6: Pixel navbar: Fix Home button FC Change-Id: I7c463999a76ee02f1f5af615ddcff3c05ca4e4f2 This is the commit message LineageOS#7: Reload Pixel Home Animation without reboot Change-Id: I4d7b2fe57d3e1bf2fa034bf81efb11d37a5ebfba
ChronoMonochrome
pushed a commit
to CustomROMs/android_frameworks_base
that referenced
this pull request
Sep 13, 2018
If mSurface has already been released in another thread, this would result in a null-pointer dereference in SurfaceSession contructor i.e. in nativeCreateScoped(). 7757 7757 F DEBUG : pid: 1402, tid: 1583, name: android.anim >>> system_server <<< 7757 7757 F DEBUG : signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0xd0 7757 7757 F DEBUG : Cause: null pointer dereference ... <trimmed> 7757 7757 F DEBUG : backtrace: 7757 7757 F DEBUG : #00 pc 000000000007fe58 /system/lib64/libgui.so (android::Surface::getIGraphicBufferProducer() const) 7757 7757 F DEBUG : LineageOS#1 pc 00000000000ff000 /system/lib64/libandroid_runtime.so (android::nativeCreateScoped(_JNIEnv*, _jclass*, long)+52) 7757 7757 F DEBUG : LineageOS#2 pc 0000000000ac8968 /system/framework/arm64/boot-framework.oat (offset 0x614000) (android.content.res.XmlBlock.nativeCreateParseState [DEDUPED]+152) 7757 7757 F DEBUG : LineageOS#3 pc 0000000001327d24 /system/framework/arm64/boot-framework.oat (offset 0x614000) (android.view.SurfaceSession.<init>+52) 7757 7757 F DEBUG : LineageOS#4 pc 00000000014b7320 /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.TaskSnapshotSurface.drawSizeMismatchSnapshot+128) 7757 7757 F DEBUG : LineageOS#5 pc 00000000014b784c /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.TaskSnapshotSurface.drawSnapshot+188) 7757 7757 F DEBUG : LineageOS#6 pc 00000000014b6f2c /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.TaskSnapshotSurface.create+2684) 7757 7757 F DEBUG : LineageOS#7 pc 00000000014b0158 /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.TaskSnapshotController.createStartingSurface+72) 7757 7757 F DEBUG : LineageOS#8 pc 00000000014a5ca0 /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.SnapshotStartingData.createStartingSurface+96) 7757 7757 F DEBUG : LineageOS#9 pc 000000000144b030 /system/framework/oat/arm64/services.odex (offset 0x5be000) (com.android.server.wm.AppWindowContainerController.lambda$-com_android_server_wm_AppWindowContainerController_4735+496) ... <trimmed> Bug: 74129970 Change-Id: I41268c7680d3885c85fc3b682d0eba7415674062
villarleg
pushed a commit
to villarleg/android_frameworks_base
that referenced
this pull request
Dec 18, 2018
11-13 20:00:00.527 10645 10645 I crash_dump64: performing dump of process 1467 (target tid = 10124) 11-13 20:00:00.538 10645 10645 F DEBUG : *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** 11-13 20:00:00.539 10645 10645 F DEBUG : Build fingerprint: 'HONOR/BKL-L09/HWBKL:8.0.0/HUAWEIBKL-L09S/172(C432):user/release-keys' 11-13 20:00:00.539 10645 10645 F DEBUG : Revision: '0' 11-13 20:00:00.539 10645 10645 F DEBUG : ABI: 'arm64' 11-13 20:00:00.539 10645 10645 F DEBUG : pid: 1467, tid: 10124, name: Visualizer >>> com.android.systemui <<< 11-13 20:00:00.539 10645 10645 F DEBUG : signal 6 (SIGABRT), code -6 (SI_TKILL), fault addr -------- 11-13 20:00:00.539 10645 10645 F DEBUG : Abort message: 'FORTIFY: pthread_mutex_lock called on a destroyed mutex (0x7c633df0f4)' 11-13 20:00:00.539 10645 10645 F DEBUG : x0 0000000000000000 x1 000000000000278c x2 0000000000000006 x3 0000000000000008 11-13 20:00:00.539 10645 10645 F DEBUG : x4 0000000000008080 x5 0000000000008080 x6 0000000000008080 x7 0000000000000038 11-13 20:00:00.539 10645 10645 F DEBUG : x8 0000000000000083 x9 40ef6d32d31c854a x10 0000000000000000 x11 fffffffc7ffffbdf 11-13 20:00:00.539 10645 10645 F DEBUG : x12 0000000000000001 x13 000000005beb1f30 x14 0005a1f49bc3a000 x15 0000112f9e154a12 11-13 20:00:00.539 10645 10645 F DEBUG : x16 0000007cffb6f2c8 x17 0000007cffaad0d0 x18 00000000fffbfffe x19 00000000000005bb 11-13 20:00:00.539 10645 10645 F DEBUG : x20 000000000000278c x21 0000007d000d96d0 x22 0000000000000001 x23 0000000000000035 11-13 20:00:00.539 10645 10645 F DEBUG : x24 0000007d000c6fc8 x25 0000007d000c7680 x26 0000007c52a14588 x27 0000000000000000 11-13 20:00:00.539 10645 10645 F DEBUG : x28 0000000000000005 x29 0000007c52a141a0 11-13 20:00:00.539 10645 10645 F DEBUG : sp 0000007c52a14160 lr 0000007cffaa1bfc pc 0000007cffaa1c24 11-13 20:00:00.564 10645 10645 F DEBUG : 11-13 20:00:00.564 10645 10645 F DEBUG : backtrace: 11-13 20:00:00.564 10645 10645 F DEBUG : #00 pc 0000000000021c24 /system/lib64/libc.so (abort+116) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#1 pc 0000000000082f04 /system/lib64/libc.so (__fortify_fatal(char const*, ...)+120) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#2 pc 0000000000082600 /system/lib64/libc.so (HandleUsingDestroyedMutex(pthread_mutex_t*, char const*)+52) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#3 pc 00000000000824b4 /system/lib64/libc.so (pthread_mutex_lock+228) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#4 pc 00000000000a8c54 /system/lib64/libmedia.so (android::Visualizer::periodicCapture()+56) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#5 pc 00000000000a8aac /system/lib64/libmedia.so (android::Visualizer::CaptureThread::threadLoop()+88) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#6 pc 000000000000f9d8 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+280) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#7 pc 00000000000b4980 /system/lib64/libandroid_runtime.so (android::AndroidRuntime::javaThreadShell(void*)+140) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#8 pc 0000000000081938 /system/lib64/libc.so (__pthread_start(void*)+36) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#9 pc 0000000000023478 /system/lib64/libc.so (__start_thread+68) Change-Id: Ic7f9788df8a38084c3b150eaa22d67f869085ca2 Signed-off-by: Pranav Vashi <[email protected]>
partcyborg
pushed a commit
to partcyborg/android_frameworks_base-lineage
that referenced
this pull request
Jul 31, 2019
11-13 20:00:00.527 10645 10645 I crash_dump64: performing dump of process 1467 (target tid = 10124) 11-13 20:00:00.538 10645 10645 F DEBUG : *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** 11-13 20:00:00.539 10645 10645 F DEBUG : Build fingerprint: 'HONOR/BKL-L09/HWBKL:8.0.0/HUAWEIBKL-L09S/172(C432):user/release-keys' 11-13 20:00:00.539 10645 10645 F DEBUG : Revision: '0' 11-13 20:00:00.539 10645 10645 F DEBUG : ABI: 'arm64' 11-13 20:00:00.539 10645 10645 F DEBUG : pid: 1467, tid: 10124, name: Visualizer >>> com.android.systemui <<< 11-13 20:00:00.539 10645 10645 F DEBUG : signal 6 (SIGABRT), code -6 (SI_TKILL), fault addr -------- 11-13 20:00:00.539 10645 10645 F DEBUG : Abort message: 'FORTIFY: pthread_mutex_lock called on a destroyed mutex (0x7c633df0f4)' 11-13 20:00:00.539 10645 10645 F DEBUG : x0 0000000000000000 x1 000000000000278c x2 0000000000000006 x3 0000000000000008 11-13 20:00:00.539 10645 10645 F DEBUG : x4 0000000000008080 x5 0000000000008080 x6 0000000000008080 x7 0000000000000038 11-13 20:00:00.539 10645 10645 F DEBUG : x8 0000000000000083 x9 40ef6d32d31c854a x10 0000000000000000 x11 fffffffc7ffffbdf 11-13 20:00:00.539 10645 10645 F DEBUG : x12 0000000000000001 x13 000000005beb1f30 x14 0005a1f49bc3a000 x15 0000112f9e154a12 11-13 20:00:00.539 10645 10645 F DEBUG : x16 0000007cffb6f2c8 x17 0000007cffaad0d0 x18 00000000fffbfffe x19 00000000000005bb 11-13 20:00:00.539 10645 10645 F DEBUG : x20 000000000000278c x21 0000007d000d96d0 x22 0000000000000001 x23 0000000000000035 11-13 20:00:00.539 10645 10645 F DEBUG : x24 0000007d000c6fc8 x25 0000007d000c7680 x26 0000007c52a14588 x27 0000000000000000 11-13 20:00:00.539 10645 10645 F DEBUG : x28 0000000000000005 x29 0000007c52a141a0 11-13 20:00:00.539 10645 10645 F DEBUG : sp 0000007c52a14160 lr 0000007cffaa1bfc pc 0000007cffaa1c24 11-13 20:00:00.564 10645 10645 F DEBUG : 11-13 20:00:00.564 10645 10645 F DEBUG : backtrace: 11-13 20:00:00.564 10645 10645 F DEBUG : #00 pc 0000000000021c24 /system/lib64/libc.so (abort+116) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#1 pc 0000000000082f04 /system/lib64/libc.so (__fortify_fatal(char const*, ...)+120) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#2 pc 0000000000082600 /system/lib64/libc.so (HandleUsingDestroyedMutex(pthread_mutex_t*, char const*)+52) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#3 pc 00000000000824b4 /system/lib64/libc.so (pthread_mutex_lock+228) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#4 pc 00000000000a8c54 /system/lib64/libmedia.so (android::Visualizer::periodicCapture()+56) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#5 pc 00000000000a8aac /system/lib64/libmedia.so (android::Visualizer::CaptureThread::threadLoop()+88) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#6 pc 000000000000f9d8 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+280) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#7 pc 00000000000b4980 /system/lib64/libandroid_runtime.so (android::AndroidRuntime::javaThreadShell(void*)+140) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#8 pc 0000000000081938 /system/lib64/libc.so (__pthread_start(void*)+36) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#9 pc 0000000000023478 /system/lib64/libc.so (__start_thread+68) Change-Id: Ic7f9788df8a38084c3b150eaa22d67f869085ca2
pengus77
pushed a commit
to pengus77/frameworks_base
that referenced
this pull request
Sep 30, 2019
11-13 20:00:00.527 10645 10645 I crash_dump64: performing dump of process 1467 (target tid = 10124) 11-13 20:00:00.538 10645 10645 F DEBUG : *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** 11-13 20:00:00.539 10645 10645 F DEBUG : Build fingerprint: 'HONOR/BKL-L09/HWBKL:8.0.0/HUAWEIBKL-L09S/172(C432):user/release-keys' 11-13 20:00:00.539 10645 10645 F DEBUG : Revision: '0' 11-13 20:00:00.539 10645 10645 F DEBUG : ABI: 'arm64' 11-13 20:00:00.539 10645 10645 F DEBUG : pid: 1467, tid: 10124, name: Visualizer >>> com.android.systemui <<< 11-13 20:00:00.539 10645 10645 F DEBUG : signal 6 (SIGABRT), code -6 (SI_TKILL), fault addr -------- 11-13 20:00:00.539 10645 10645 F DEBUG : Abort message: 'FORTIFY: pthread_mutex_lock called on a destroyed mutex (0x7c633df0f4)' 11-13 20:00:00.539 10645 10645 F DEBUG : x0 0000000000000000 x1 000000000000278c x2 0000000000000006 x3 0000000000000008 11-13 20:00:00.539 10645 10645 F DEBUG : x4 0000000000008080 x5 0000000000008080 x6 0000000000008080 x7 0000000000000038 11-13 20:00:00.539 10645 10645 F DEBUG : x8 0000000000000083 x9 40ef6d32d31c854a x10 0000000000000000 x11 fffffffc7ffffbdf 11-13 20:00:00.539 10645 10645 F DEBUG : x12 0000000000000001 x13 000000005beb1f30 x14 0005a1f49bc3a000 x15 0000112f9e154a12 11-13 20:00:00.539 10645 10645 F DEBUG : x16 0000007cffb6f2c8 x17 0000007cffaad0d0 x18 00000000fffbfffe x19 00000000000005bb 11-13 20:00:00.539 10645 10645 F DEBUG : x20 000000000000278c x21 0000007d000d96d0 x22 0000000000000001 x23 0000000000000035 11-13 20:00:00.539 10645 10645 F DEBUG : x24 0000007d000c6fc8 x25 0000007d000c7680 x26 0000007c52a14588 x27 0000000000000000 11-13 20:00:00.539 10645 10645 F DEBUG : x28 0000000000000005 x29 0000007c52a141a0 11-13 20:00:00.539 10645 10645 F DEBUG : sp 0000007c52a14160 lr 0000007cffaa1bfc pc 0000007cffaa1c24 11-13 20:00:00.564 10645 10645 F DEBUG : 11-13 20:00:00.564 10645 10645 F DEBUG : backtrace: 11-13 20:00:00.564 10645 10645 F DEBUG : #00 pc 0000000000021c24 /system/lib64/libc.so (abort+116) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#1 pc 0000000000082f04 /system/lib64/libc.so (__fortify_fatal(char const*, ...)+120) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#2 pc 0000000000082600 /system/lib64/libc.so (HandleUsingDestroyedMutex(pthread_mutex_t*, char const*)+52) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#3 pc 00000000000824b4 /system/lib64/libc.so (pthread_mutex_lock+228) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#4 pc 00000000000a8c54 /system/lib64/libmedia.so (android::Visualizer::periodicCapture()+56) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#5 pc 00000000000a8aac /system/lib64/libmedia.so (android::Visualizer::CaptureThread::threadLoop()+88) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#6 pc 000000000000f9d8 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+280) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#7 pc 00000000000b4980 /system/lib64/libandroid_runtime.so (android::AndroidRuntime::javaThreadShell(void*)+140) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#8 pc 0000000000081938 /system/lib64/libc.so (__pthread_start(void*)+36) 11-13 20:00:00.564 10645 10645 F DEBUG : LineageOS#9 pc 0000000000023478 /system/lib64/libc.so (__start_thread+68) Change-Id: Ic7f9788df8a38084c3b150eaa22d67f869085ca2
lineageos-gerrit
pushed a commit
that referenced
this pull request
Jun 6, 2020
There is a potential injection by using screencap in case of user handled parameters. "dumpstate" command launches "screencap", when "-p" is argument is set. At that moment, content of "-o" parameter generates a path with ".png" extension to define "screencap" argument. "dumpstate" is often run as a service with "root" privileged such as defined in "dumpstate.rc". For instance "bugreportz" call "ctl.start" property with "dumpstatez". Launching "dumpstate" with "-p" option and a user input as "-o" would result in a root command execution. SE Linux might protect part of this attack. Cherry-pick from ag/10651695 with fix ag/10700515 Bug: 123230379 Test: please see commands #4 and #5 Change-Id: Icd88cdf4af153e07addb4449cdb117b1a3c881d3
FaN11X
added a commit
to FaN11X/android_frameworks_base
that referenced
this pull request
May 12, 2021
upstream merge
haggertk
pushed a commit
to haggertk/android_frameworks_base
that referenced
this pull request
Nov 5, 2021
haggertk
added a commit
to haggertk/android_frameworks_base
that referenced
this pull request
Nov 5, 2021
…ge-android-security-11.0.0_r49 Android security 11.0.0 release 49 * tag 'android-security-11.0.0_r49': Changed INTERACT_ACROSS_PROFILES appop to be set per UID TIF: fix issue of using caller-aware methods after clearCallingIdentity() Backporting the change of ag/15629060 to rvc-dev Bluetooth: Fix formatting in getAlias() Fix parsing code parcelling errors camera2: Fix exception swallowing in params classes createFromParcel Revert "BG-FGS-start while-in-use permission restriction improve..." Make sure that only the owner can call stopVpnProfile() DO NOT MERGE Apply a maximum char count to the load label api Send targeted broadcasts to prevent other apps from receiving them. Guard DISABLE_PLUGIN with PLUGIN permission. Fix a potential thread safety issue in VectorDrawable Fix background bypass via notifications Change ownership of the account request notification. Revert "wifidisplay: restrict broadcast by the proper permission" Use IntentFilter CREATOR directly for serializing ParsedIntentInfo Don't export HeapDumpProvider. Don't attach private Notification to A11yEvent when user locked Avoid locking profile task when it is already lock Improve ellipsize performance Fix side effects of trace-ipc and dumpheap commands DO NOT MERGE Add cross-user check for getDefaultSmsPackage(). BG-FGS-start while-in-use permission restriction improvement. Remove ParsedIntentInfo CREATOR Fix race condition between lockNow() and updateLockscreenTimeout [security] SubscriptionGroup is exposed to unprivileged callers Block SAF directory access to /sdcard/Android [RESTRICT AUTOMERGE] Fix OOB write in noteAtomLogged Remove sendNetworkConditionsBroadcast Ensure storage permission revoke happens for all users Restrict alarm broadcast Detects all activities for whether showing work challenge DO NOT MERGE - Disallow deletion of channels with FGS notifications Increase maximum allowed size for status bar icons [DO NOT MERGE] Make PendingIntents in screenshots immutable wifidisplay: restrict broadcast by the proper permission Fix legacy APIs when VPN switches to suspended underlying network. Backport test coverage from aosp/1547496. Backport some helpers in ConnectivityServiceTest. Test for bugs with suspended VPN underlying networks. Add a test for getDefaultNetworkCapabilitiesForUser. Improve testing of CONNECTIVITY_ACTION broadcasts. Test passing an underlying network array with null network in it. Make testVpnNetworkActive more deterministic. Make MockVpn more realistic and easier to use. Increase test coverage for VPN info sent to NetworkStatsService. Simplify MockVpn. Test a VPN with an underlying network that does not yet exist. Limit maximum allowed size for a status bar icon Adds caller check to getAllPackages() Restrict the overridden min size for PiP Add pkg target to snoozing alarm Allow empty tokens in strict grammar Allow empty tokens in strict grammar [DO NOT MERGE] Make screenshot error notification PendingIntent immutable DO NOT MERGE: Associate notif cancels with notif posts [RESTRICT AUTOMERGE] Use userId instead of USER_CURRENT in shouldLockKeyguard. Revoke storage on SDK downgrade or new full storage request [DO NOT MERGE] Close screenshot process on user switched Fix thread safety issue on clearing cache [SettingsProvider] extend font size scale range DO NOT MERGE: Do not inject mock location to chipset [RESTRICT AUTOMERGE] Fix potential out of bounds writes in LogEvent. Check mode/boost index before accessing cached support value Only update native InputApplicationHandle once Allow CDM to hide overlays Prevent non-system overlays from showing over CDM UI RESTRICT AUTOMERGE: Set mAllowWhileInUsePermissionInFgs correctly when bindService() from background. Protect account chooser activities against overlay. [SettingsProvider] fix font size scale validator Ensure caller identity is restored in CP quick-path. Remove updateIntentVerificationStatusAsUser from ResolverActivity Revoke the uri permission when the file is deleted Ignore GrantCredentials call with unexpected calling uid. Protect GrantCredentialsPermissionActivity against overlay. Revoke permission on non-runtime -> runtime upgrade Ensure permissions are revoked on state changes Hide overlays over uninstall confirm dialog RESTRICT AUTOMERGE Fix CDM package check remove sensitive pii from safetynet logging Revoke install permissions when the permission defining app is uninstalled. DO NOT MERGE Check fingerprint client against top activity in auth callback Fix the issue provider can be wrong when requesting slice permission Enforce permission checks in getting app exit reasons Fix storing the wrong value of mLockdown in setting [BACKPORT] Improve location checks in TelephonyRegistry Do not re-initialize synthetic password Fix VrDisplayTest failure Require permission to create trusted displays Accept repeated locale as an input of LocaleList construction. Sanitize more of the notification text fields DO NOT MERGE Fix NPE in executeDeletePackageLIF. DO NOT MERGE Don't allow non-instant permissions for instant apps. Mark implicit PendingIntents as immutable Add missing isShellUser check Decouple FUSE mount from main thread for demo user Set the NetworkInfo subtype to 0. Reduce demo user FUSE volume mount timeout Propagate AudioAttributes flags to VibrationAttributes Allow network stack UID caller to retrieve cell identity Ignore GONE views in shade when processing sections Fix unintended preferred activity reset Skip bg PSS collection for apps using a camera Fix missing IME switcher icon (w/ a hardware keyboard) Java docs update: Advise not to include PII in setProcessStateSummary Grant visibility even when not granting URI perm Fix NavigationBarColorTest Prevent exception when surrounding text retrieval Resume-on-Reboot: remove special string Wait for remote animation to stop freezing display Remove incorrect optimization in visibility cache Early exit when target app ID < FIRST_APP_UID Fixes broadcast filtering for multi-user sys apps Repopulate cache with sibling visibility on remove Revert "Hide bubbles' IME after screenshot is taken." Ensure we always bind to overview service when starting up Fix missing icon for one-to-one convos Fix missing icon for one-to-one convos Revert "Exception if receive move withouth down" Revert "Consolidating MODIFY_AUDIO_SETTINGS permission checks" Revert "Flip ENABLE_DYNAMIC_PERMISSIONS, attempt LineageOS#5." Revert "Flip ENABLE_DYNAMIC_PERMISSIONS, attempt LineageOS#4." Revert "Flip ENABLE_DYNAMIC_PERMISSIONS." Revert "Flip ENABLE_DYNAMIC_PERMISSIONS." Revert "System Bars animation for fixed rotation transform" Revert "Don't readd pending notifs to NEM's allNotifs list" Fixed a bug where the brighness mirror would make everything invisible Fix crash caused by unhandled bucket Adding UiModeManager Custom Tests Revert "Fix missing animation when launch activity from notification." Revert "Prevent NPE in PulseExpansionHandler" Revert "Fix missing animation when launch activity from notification." Revert "Prevent NPE in PulseExpansionHandler" Revert "Fix missing animation when launch activity from notification." Check URI is valid for loading images Add READ_PHONE_STATE back to pregranted phone permissions Add delay between quota check alarms. Add READ_PHONE_STATE back to pregranted phone permissions Add READ_PHONE_STATE back to pregranted phone permissions Fix Ime consumer isRequestedVisible Disable overflow menu on lock screen. Ensure power menu overflow dismissed when dialog dismissed. Fix NPE when ranking update causes reinflation Only give DisplayInsetsController control over IME in split-screen Re-send the IME control after IME is re-created Update destination bounds if rotation finishes first Reboot the soundtrigger HAL on failure Add /apex to the list of allowed SystemServer paths Revert "Fix exception handling in getState() binder cache" Only use the IME target from IMMS to update the IME control target WindowInsetsAnimation: Fix app driven closing of IME WindowInsetsAnimation: Synchronously dispatch window insets animation callbacks WindowInsets: Ignore consumeStableInsets() Request fit system windows if soft input mode updates Update insets state for each window if its mBehindIme is changed Fixes NPE and adds @nullable to PackageSetting.pkg startop: Fix a string format bug in EventSequenceValidator. Work around for display info mismatch during the PiP transition Work around for display info mismatch during the PiP transition Give tethering bluetooth privilege permission Make canBeImeTarget be compatible with legacy behavior Give tethering bluetooth privilege permission Revert "Don't override activity display adjustments with app config" Make canBeImeTarget be compatible with legacy behavior fix enrollment application permission check add KEYPHRASE_ENROLLMENT_APPLICATION permission Make canBeImeTarget be compatible with legacy behavior Fixes query logic when not instant Fixes query logic when not instant Make canBeImeTarget be compatible with legacy behavior Call setAdapter from handleLayoutChanged. Use BIND_INCLUDE_CAPABILITIES for SoundTriggerService Assign a BluetoothAdapter on creation of LMM Use the bounds received in taskAppeared Assign a BluetoothAdapter on creation of LMM Revert "Do not block autofill on waiting for the IME response" Revert "Fix bouncer race condition" Null-check notif chan when ident people notifs Don't apply ime adjustments/dims if split is not active Restores PiP to its original app bounds Revert "media: lazy MediaCodec.release()" Some clean-up of divider code in preparation for bugfixes Revert "Some clean-up of divider code in preparation for bugfixes" Revert "Don't apply ime adjustments/dims if split is not active" Don't apply ime adjustments/dims if split is not active Some clean-up of divider code in preparation for bugfixes Revert "media: lazy MediaCodec.release()" InsetController: Release leashes from RenderThread Fix instances of ContentObserver#onChange in SystemUI Adjust users of hidden APIs. Revert "Turn on QS media player by default" Dark theme upgrade broken Change animation-leash to be a container layer Dark theme upgrade broken Reset controls when playback state is NONE Relax permission checks in sound trigger middleware Revert "Turn on QS media player by default" Dark theme not working bug Dark theme not working bug Revert "Fix permission check for get/setSmscAddress." Ignore unchecked IME show/hide when no root Initialize PackageManagerService ApplicationInfo instances to system user Ensures display rotation triggers PiP re-position DO NOT MERGE: Fix FLAG_NOT_FOCUSABLE ime target Revert "Avoid creating new instance on top when started for resu..." Don't crash if NSSL gets incomplete gesture DO NOT MERGE: Fix FLAG_NOT_FOCUSABLE ime target Revert "Avoid creating new instance on top when started for resu..." Don't crash if NSSL gets incomplete gesture Revert "Avoid creating new instance on top when started for resu..." Don't crash if NSSL gets incomplete gesture Fix PackageSetting isUpdatedSystemApp and SYSTEM_EXT rescan Revert "Avoid creating new instance on top when started for resu..." Do not attempt to special case uncompressed font assets. Fix crash during SysUI dumpsys Re-add compile_multilib to statsd apex Revert "Limit metricslogger call into statsdw for events" Revert "Remove libstats_jni from the platform" Revert "Move libstatspull to the apex" Revert "Require user pass in a non-null BluetoothDevice to all B..." Fail silently on MediaScannerConnection#onScanCompleted Revert "Prevents an NPE when content provider is slow to start" Fix content views not updating Fix content views not updating Fix the NPE when reading the call log or SMS if a device has multiple user profiles Fix Keyboard won't display when RemoteInput active Revert "Add permissions for using PlatformCompat methods" Revert "API for Inline Presentation Renderer in ExtServices." Fixup SDCARD_RW GID for multi-user. Revert "Move text toast creation to system UI" MediaSessionRecord: fix volume stream query Always set NetworkInfo objects to available. Fix emergency button overlap with nav bar Revert "Convert NotificationContentInflater to singleton" Revert "Move a bunch of row setters into an init method." Remove resource overlayable configuration AudioService: log result of AudioSystem calls for A2DP devices AudioService: fix A2DP disconnection / reconnection AudioService: fix A2DP disconnection / reconnection Revert "Rmove @UnsupportedAppUsage" Revert "Merge "switch to new SkPathDirection enum"" RecoverySystem: do not check if socket is closed Fix swiping down on the notch. Add synchronization for PermissionData. Revert "Replace framework-annotation-proc java lib with framework-all" Freeup lock when IME is set inactive and unbound Revert submission Revert "Clean up visibility related flags in ActivityRecord" Revert "Clean up visibility related flags in WindowToken" Revert "Clean up visibility related flags in ActivityRecord" Call appOps changed from main thread Revert "Create unit tests for GnssManagerService" Initialize AppCompatCallbacks in system server Prevent crash when invoking GNSS apis Return resume result in resumeFocusedStacksTopActivities Prevent crash when invoking GNSS apis Return resume result in resumeFocusedStacksTopActivities Return resume result in resumeFocusedStacksTopActivities Revert "Move DozeServiceHost out of StatusBar." Ensure next home activity is ready before finish FallbackHome Temporarily do not remove biometric view when animating to credential Revert "Move DozeServiceHost out of StatusBar." Ensure next home activity is ready before finish FallbackHome Mark BiometricUnlockController as @singleton Add userId to the package name API. Revert "Example for disabling changes at test time" Revert "Drop all caches in UI_HIDDEN" Make KeyguardUpdateMonitor a singleton Ensure that view is initialized properlly upon inflation. Revert "Remove many (most) of the calls to Dependency.get() from StatusBar." Fix NavigationBarController NPE Fix NavigationBarController NPE SurfaceView: Release Surfaces where SurfaceControl are released. Breaks isInstantApp into public and internal Clears calling identity when calling isInstantApp Workaround multiple instance of AppComponentFactory. Ensure that the Application is constructed before any Service. Remove KeyguardUpdateMonitor.getInstance(). Fixes regression caused by ag/9259064 Fix regression in updating gesture exclusion rects Fix regression in updating gesture exclusion rects Fix regression in updating gesture exclusion rects Fix regression in updating gesture exclusion rects Clear calling identity as broadcast needs permission WifiManager: Return dummy values when wifi service is not up Adding null checks Revert SurfaceView back to Q's version Revert "Use the SubId in the TM.getNetworkType if Valid" Retire unused android::nio_{get,release}Buffer functions Skip idmap1 generation if target defines overlayable Ensure all fields of AutoBufferPointer are initialized Change-Id: I4838416fa76f01643eccb8c6689c10499f5862d4
nhAsif
pushed a commit
to Project-Isobar/android_frameworks_base
that referenced
this pull request
Jan 15, 2022
…ge-android-security-11.0.0_r49 Android security 11.0.0 release 49 * tag 'android-security-11.0.0_r49': Changed INTERACT_ACROSS_PROFILES appop to be set per UID TIF: fix issue of using caller-aware methods after clearCallingIdentity() Backporting the change of ag/15629060 to rvc-dev Bluetooth: Fix formatting in getAlias() Fix parsing code parcelling errors camera2: Fix exception swallowing in params classes createFromParcel Revert "BG-FGS-start while-in-use permission restriction improve..." Make sure that only the owner can call stopVpnProfile() DO NOT MERGE Apply a maximum char count to the load label api Send targeted broadcasts to prevent other apps from receiving them. Guard DISABLE_PLUGIN with PLUGIN permission. Fix a potential thread safety issue in VectorDrawable Fix background bypass via notifications Change ownership of the account request notification. Revert "wifidisplay: restrict broadcast by the proper permission" Use IntentFilter CREATOR directly for serializing ParsedIntentInfo Don't export HeapDumpProvider. Don't attach private Notification to A11yEvent when user locked Avoid locking profile task when it is already lock Improve ellipsize performance Fix side effects of trace-ipc and dumpheap commands DO NOT MERGE Add cross-user check for getDefaultSmsPackage(). BG-FGS-start while-in-use permission restriction improvement. Remove ParsedIntentInfo CREATOR Fix race condition between lockNow() and updateLockscreenTimeout [security] SubscriptionGroup is exposed to unprivileged callers Block SAF directory access to /sdcard/Android [RESTRICT AUTOMERGE] Fix OOB write in noteAtomLogged Remove sendNetworkConditionsBroadcast Ensure storage permission revoke happens for all users Restrict alarm broadcast Detects all activities for whether showing work challenge DO NOT MERGE - Disallow deletion of channels with FGS notifications Increase maximum allowed size for status bar icons [DO NOT MERGE] Make PendingIntents in screenshots immutable wifidisplay: restrict broadcast by the proper permission Fix legacy APIs when VPN switches to suspended underlying network. Backport test coverage from aosp/1547496. Backport some helpers in ConnectivityServiceTest. Test for bugs with suspended VPN underlying networks. Add a test for getDefaultNetworkCapabilitiesForUser. Improve testing of CONNECTIVITY_ACTION broadcasts. Test passing an underlying network array with null network in it. Make testVpnNetworkActive more deterministic. Make MockVpn more realistic and easier to use. Increase test coverage for VPN info sent to NetworkStatsService. Simplify MockVpn. Test a VPN with an underlying network that does not yet exist. Limit maximum allowed size for a status bar icon Adds caller check to getAllPackages() Restrict the overridden min size for PiP Add pkg target to snoozing alarm Allow empty tokens in strict grammar Allow empty tokens in strict grammar [DO NOT MERGE] Make screenshot error notification PendingIntent immutable DO NOT MERGE: Associate notif cancels with notif posts [RESTRICT AUTOMERGE] Use userId instead of USER_CURRENT in shouldLockKeyguard. Revoke storage on SDK downgrade or new full storage request [DO NOT MERGE] Close screenshot process on user switched Fix thread safety issue on clearing cache [SettingsProvider] extend font size scale range DO NOT MERGE: Do not inject mock location to chipset [RESTRICT AUTOMERGE] Fix potential out of bounds writes in LogEvent. Check mode/boost index before accessing cached support value Only update native InputApplicationHandle once Allow CDM to hide overlays Prevent non-system overlays from showing over CDM UI RESTRICT AUTOMERGE: Set mAllowWhileInUsePermissionInFgs correctly when bindService() from background. Protect account chooser activities against overlay. [SettingsProvider] fix font size scale validator Ensure caller identity is restored in CP quick-path. Remove updateIntentVerificationStatusAsUser from ResolverActivity Revoke the uri permission when the file is deleted Ignore GrantCredentials call with unexpected calling uid. Protect GrantCredentialsPermissionActivity against overlay. Revoke permission on non-runtime -> runtime upgrade Ensure permissions are revoked on state changes Hide overlays over uninstall confirm dialog RESTRICT AUTOMERGE Fix CDM package check remove sensitive pii from safetynet logging Revoke install permissions when the permission defining app is uninstalled. DO NOT MERGE Check fingerprint client against top activity in auth callback Fix the issue provider can be wrong when requesting slice permission Enforce permission checks in getting app exit reasons Fix storing the wrong value of mLockdown in setting [BACKPORT] Improve location checks in TelephonyRegistry Do not re-initialize synthetic password Fix VrDisplayTest failure Require permission to create trusted displays Accept repeated locale as an input of LocaleList construction. Sanitize more of the notification text fields DO NOT MERGE Fix NPE in executeDeletePackageLIF. DO NOT MERGE Don't allow non-instant permissions for instant apps. Mark implicit PendingIntents as immutable Add missing isShellUser check Decouple FUSE mount from main thread for demo user Set the NetworkInfo subtype to 0. Reduce demo user FUSE volume mount timeout Propagate AudioAttributes flags to VibrationAttributes Allow network stack UID caller to retrieve cell identity Ignore GONE views in shade when processing sections Fix unintended preferred activity reset Skip bg PSS collection for apps using a camera Fix missing IME switcher icon (w/ a hardware keyboard) Java docs update: Advise not to include PII in setProcessStateSummary Grant visibility even when not granting URI perm Fix NavigationBarColorTest Prevent exception when surrounding text retrieval Resume-on-Reboot: remove special string Wait for remote animation to stop freezing display Remove incorrect optimization in visibility cache Early exit when target app ID < FIRST_APP_UID Fixes broadcast filtering for multi-user sys apps Repopulate cache with sibling visibility on remove Revert "Hide bubbles' IME after screenshot is taken." Ensure we always bind to overview service when starting up Fix missing icon for one-to-one convos Fix missing icon for one-to-one convos Revert "Exception if receive move withouth down" Revert "Consolidating MODIFY_AUDIO_SETTINGS permission checks" Revert "Flip ENABLE_DYNAMIC_PERMISSIONS, attempt LineageOS#5." Revert "Flip ENABLE_DYNAMIC_PERMISSIONS, attempt LineageOS#4." Revert "Flip ENABLE_DYNAMIC_PERMISSIONS." Revert "Flip ENABLE_DYNAMIC_PERMISSIONS." Revert "System Bars animation for fixed rotation transform" Revert "Don't readd pending notifs to NEM's allNotifs list" Fixed a bug where the brighness mirror would make everything invisible Fix crash caused by unhandled bucket Adding UiModeManager Custom Tests Revert "Fix missing animation when launch activity from notification." Revert "Prevent NPE in PulseExpansionHandler" Revert "Fix missing animation when launch activity from notification." Revert "Prevent NPE in PulseExpansionHandler" Revert "Fix missing animation when launch activity from notification." Check URI is valid for loading images Add READ_PHONE_STATE back to pregranted phone permissions Add delay between quota check alarms. Add READ_PHONE_STATE back to pregranted phone permissions Add READ_PHONE_STATE back to pregranted phone permissions Fix Ime consumer isRequestedVisible Disable overflow menu on lock screen. Ensure power menu overflow dismissed when dialog dismissed. Fix NPE when ranking update causes reinflation Only give DisplayInsetsController control over IME in split-screen Re-send the IME control after IME is re-created Update destination bounds if rotation finishes first Reboot the soundtrigger HAL on failure Add /apex to the list of allowed SystemServer paths Revert "Fix exception handling in getState() binder cache" Only use the IME target from IMMS to update the IME control target WindowInsetsAnimation: Fix app driven closing of IME WindowInsetsAnimation: Synchronously dispatch window insets animation callbacks WindowInsets: Ignore consumeStableInsets() Request fit system windows if soft input mode updates Update insets state for each window if its mBehindIme is changed Fixes NPE and adds @nullable to PackageSetting.pkg startop: Fix a string format bug in EventSequenceValidator. Work around for display info mismatch during the PiP transition Work around for display info mismatch during the PiP transition Give tethering bluetooth privilege permission Make canBeImeTarget be compatible with legacy behavior Give tethering bluetooth privilege permission Revert "Don't override activity display adjustments with app config" Make canBeImeTarget be compatible with legacy behavior fix enrollment application permission check add KEYPHRASE_ENROLLMENT_APPLICATION permission Make canBeImeTarget be compatible with legacy behavior Fixes query logic when not instant Fixes query logic when not instant Make canBeImeTarget be compatible with legacy behavior Call setAdapter from handleLayoutChanged. Use BIND_INCLUDE_CAPABILITIES for SoundTriggerService Assign a BluetoothAdapter on creation of LMM Use the bounds received in taskAppeared Assign a BluetoothAdapter on creation of LMM Revert "Do not block autofill on waiting for the IME response" Revert "Fix bouncer race condition" Null-check notif chan when ident people notifs Don't apply ime adjustments/dims if split is not active Restores PiP to its original app bounds Revert "media: lazy MediaCodec.release()" Some clean-up of divider code in preparation for bugfixes Revert "Some clean-up of divider code in preparation for bugfixes" Revert "Don't apply ime adjustments/dims if split is not active" Don't apply ime adjustments/dims if split is not active Some clean-up of divider code in preparation for bugfixes Revert "media: lazy MediaCodec.release()" InsetController: Release leashes from RenderThread Fix instances of ContentObserver#onChange in SystemUI Adjust users of hidden APIs. Revert "Turn on QS media player by default" Dark theme upgrade broken Change animation-leash to be a container layer Dark theme upgrade broken Reset controls when playback state is NONE Relax permission checks in sound trigger middleware Revert "Turn on QS media player by default" Dark theme not working bug Dark theme not working bug Revert "Fix permission check for get/setSmscAddress." Ignore unchecked IME show/hide when no root Initialize PackageManagerService ApplicationInfo instances to system user Ensures display rotation triggers PiP re-position DO NOT MERGE: Fix FLAG_NOT_FOCUSABLE ime target Revert "Avoid creating new instance on top when started for resu..." Don't crash if NSSL gets incomplete gesture DO NOT MERGE: Fix FLAG_NOT_FOCUSABLE ime target Revert "Avoid creating new instance on top when started for resu..." Don't crash if NSSL gets incomplete gesture Revert "Avoid creating new instance on top when started for resu..." Don't crash if NSSL gets incomplete gesture Fix PackageSetting isUpdatedSystemApp and SYSTEM_EXT rescan Revert "Avoid creating new instance on top when started for resu..." Do not attempt to special case uncompressed font assets. Fix crash during SysUI dumpsys Re-add compile_multilib to statsd apex Revert "Limit metricslogger call into statsdw for events" Revert "Remove libstats_jni from the platform" Revert "Move libstatspull to the apex" Revert "Require user pass in a non-null BluetoothDevice to all B..." Fail silently on MediaScannerConnection#onScanCompleted Revert "Prevents an NPE when content provider is slow to start" Fix content views not updating Fix content views not updating Fix the NPE when reading the call log or SMS if a device has multiple user profiles Fix Keyboard won't display when RemoteInput active Revert "Add permissions for using PlatformCompat methods" Revert "API for Inline Presentation Renderer in ExtServices." Fixup SDCARD_RW GID for multi-user. Revert "Move text toast creation to system UI" MediaSessionRecord: fix volume stream query Always set NetworkInfo objects to available. Fix emergency button overlap with nav bar Revert "Convert NotificationContentInflater to singleton" Revert "Move a bunch of row setters into an init method." Remove resource overlayable configuration AudioService: log result of AudioSystem calls for A2DP devices AudioService: fix A2DP disconnection / reconnection AudioService: fix A2DP disconnection / reconnection Revert "Rmove @UnsupportedAppUsage" Revert "Merge "switch to new SkPathDirection enum"" RecoverySystem: do not check if socket is closed Fix swiping down on the notch. Add synchronization for PermissionData. Revert "Replace framework-annotation-proc java lib with framework-all" Freeup lock when IME is set inactive and unbound Revert submission Revert "Clean up visibility related flags in ActivityRecord" Revert "Clean up visibility related flags in WindowToken" Revert "Clean up visibility related flags in ActivityRecord" Call appOps changed from main thread Revert "Create unit tests for GnssManagerService" Initialize AppCompatCallbacks in system server Prevent crash when invoking GNSS apis Return resume result in resumeFocusedStacksTopActivities Prevent crash when invoking GNSS apis Return resume result in resumeFocusedStacksTopActivities Return resume result in resumeFocusedStacksTopActivities Revert "Move DozeServiceHost out of StatusBar." Ensure next home activity is ready before finish FallbackHome Temporarily do not remove biometric view when animating to credential Revert "Move DozeServiceHost out of StatusBar." Ensure next home activity is ready before finish FallbackHome Mark BiometricUnlockController as @singleton Add userId to the package name API. Revert "Example for disabling changes at test time" Revert "Drop all caches in UI_HIDDEN" Make KeyguardUpdateMonitor a singleton Ensure that view is initialized properlly upon inflation. Revert "Remove many (most) of the calls to Dependency.get() from StatusBar." Fix NavigationBarController NPE Fix NavigationBarController NPE SurfaceView: Release Surfaces where SurfaceControl are released. Breaks isInstantApp into public and internal Clears calling identity when calling isInstantApp Workaround multiple instance of AppComponentFactory. Ensure that the Application is constructed before any Service. Remove KeyguardUpdateMonitor.getInstance(). Fixes regression caused by ag/9259064 Fix regression in updating gesture exclusion rects Fix regression in updating gesture exclusion rects Fix regression in updating gesture exclusion rects Fix regression in updating gesture exclusion rects Clear calling identity as broadcast needs permission WifiManager: Return dummy values when wifi service is not up Adding null checks Revert SurfaceView back to Q's version Revert "Use the SubId in the TM.getNetworkType if Valid" Retire unused android::nio_{get,release}Buffer functions Skip idmap1 generation if target defines overlayable Ensure all fields of AutoBufferPointer are initialized Change-Id: I4838416fa76f01643eccb8c6689c10499f5862d4
pbteja100
pushed a commit
to los-fe-staging/android_frameworks_base
that referenced
this pull request
Jan 24, 2022
…ge-android-security-11.0.0_r49 Android security 11.0.0 release 49 * tag 'android-security-11.0.0_r49': Changed INTERACT_ACROSS_PROFILES appop to be set per UID TIF: fix issue of using caller-aware methods after clearCallingIdentity() Backporting the change of ag/15629060 to rvc-dev Bluetooth: Fix formatting in getAlias() Fix parsing code parcelling errors camera2: Fix exception swallowing in params classes createFromParcel Revert "BG-FGS-start while-in-use permission restriction improve..." Make sure that only the owner can call stopVpnProfile() DO NOT MERGE Apply a maximum char count to the load label api Send targeted broadcasts to prevent other apps from receiving them. Guard DISABLE_PLUGIN with PLUGIN permission. Fix a potential thread safety issue in VectorDrawable Fix background bypass via notifications Change ownership of the account request notification. Revert "wifidisplay: restrict broadcast by the proper permission" Use IntentFilter CREATOR directly for serializing ParsedIntentInfo Don't export HeapDumpProvider. Don't attach private Notification to A11yEvent when user locked Avoid locking profile task when it is already lock Improve ellipsize performance Fix side effects of trace-ipc and dumpheap commands DO NOT MERGE Add cross-user check for getDefaultSmsPackage(). BG-FGS-start while-in-use permission restriction improvement. Remove ParsedIntentInfo CREATOR Fix race condition between lockNow() and updateLockscreenTimeout [security] SubscriptionGroup is exposed to unprivileged callers Block SAF directory access to /sdcard/Android [RESTRICT AUTOMERGE] Fix OOB write in noteAtomLogged Remove sendNetworkConditionsBroadcast Ensure storage permission revoke happens for all users Restrict alarm broadcast Detects all activities for whether showing work challenge DO NOT MERGE - Disallow deletion of channels with FGS notifications Increase maximum allowed size for status bar icons [DO NOT MERGE] Make PendingIntents in screenshots immutable wifidisplay: restrict broadcast by the proper permission Fix legacy APIs when VPN switches to suspended underlying network. Backport test coverage from aosp/1547496. Backport some helpers in ConnectivityServiceTest. Test for bugs with suspended VPN underlying networks. Add a test for getDefaultNetworkCapabilitiesForUser. Improve testing of CONNECTIVITY_ACTION broadcasts. Test passing an underlying network array with null network in it. Make testVpnNetworkActive more deterministic. Make MockVpn more realistic and easier to use. Increase test coverage for VPN info sent to NetworkStatsService. Simplify MockVpn. Test a VPN with an underlying network that does not yet exist. Limit maximum allowed size for a status bar icon Adds caller check to getAllPackages() Restrict the overridden min size for PiP Add pkg target to snoozing alarm Allow empty tokens in strict grammar Allow empty tokens in strict grammar [DO NOT MERGE] Make screenshot error notification PendingIntent immutable DO NOT MERGE: Associate notif cancels with notif posts [RESTRICT AUTOMERGE] Use userId instead of USER_CURRENT in shouldLockKeyguard. Revoke storage on SDK downgrade or new full storage request [DO NOT MERGE] Close screenshot process on user switched Fix thread safety issue on clearing cache [SettingsProvider] extend font size scale range DO NOT MERGE: Do not inject mock location to chipset [RESTRICT AUTOMERGE] Fix potential out of bounds writes in LogEvent. Check mode/boost index before accessing cached support value Only update native InputApplicationHandle once Allow CDM to hide overlays Prevent non-system overlays from showing over CDM UI RESTRICT AUTOMERGE: Set mAllowWhileInUsePermissionInFgs correctly when bindService() from background. Protect account chooser activities against overlay. [SettingsProvider] fix font size scale validator Ensure caller identity is restored in CP quick-path. Remove updateIntentVerificationStatusAsUser from ResolverActivity Revoke the uri permission when the file is deleted Ignore GrantCredentials call with unexpected calling uid. Protect GrantCredentialsPermissionActivity against overlay. Revoke permission on non-runtime -> runtime upgrade Ensure permissions are revoked on state changes Hide overlays over uninstall confirm dialog RESTRICT AUTOMERGE Fix CDM package check remove sensitive pii from safetynet logging Revoke install permissions when the permission defining app is uninstalled. DO NOT MERGE Check fingerprint client against top activity in auth callback Fix the issue provider can be wrong when requesting slice permission Enforce permission checks in getting app exit reasons Fix storing the wrong value of mLockdown in setting [BACKPORT] Improve location checks in TelephonyRegistry Do not re-initialize synthetic password Fix VrDisplayTest failure Require permission to create trusted displays Accept repeated locale as an input of LocaleList construction. Sanitize more of the notification text fields DO NOT MERGE Fix NPE in executeDeletePackageLIF. DO NOT MERGE Don't allow non-instant permissions for instant apps. Mark implicit PendingIntents as immutable Add missing isShellUser check Decouple FUSE mount from main thread for demo user Set the NetworkInfo subtype to 0. Reduce demo user FUSE volume mount timeout Propagate AudioAttributes flags to VibrationAttributes Allow network stack UID caller to retrieve cell identity Ignore GONE views in shade when processing sections Fix unintended preferred activity reset Skip bg PSS collection for apps using a camera Fix missing IME switcher icon (w/ a hardware keyboard) Java docs update: Advise not to include PII in setProcessStateSummary Grant visibility even when not granting URI perm Fix NavigationBarColorTest Prevent exception when surrounding text retrieval Resume-on-Reboot: remove special string Wait for remote animation to stop freezing display Remove incorrect optimization in visibility cache Early exit when target app ID < FIRST_APP_UID Fixes broadcast filtering for multi-user sys apps Repopulate cache with sibling visibility on remove Revert "Hide bubbles' IME after screenshot is taken." Ensure we always bind to overview service when starting up Fix missing icon for one-to-one convos Fix missing icon for one-to-one convos Revert "Exception if receive move withouth down" Revert "Consolidating MODIFY_AUDIO_SETTINGS permission checks" Revert "Flip ENABLE_DYNAMIC_PERMISSIONS, attempt LineageOS#5." Revert "Flip ENABLE_DYNAMIC_PERMISSIONS, attempt LineageOS#4." Revert "Flip ENABLE_DYNAMIC_PERMISSIONS." Revert "Flip ENABLE_DYNAMIC_PERMISSIONS." Revert "System Bars animation for fixed rotation transform" Revert "Don't readd pending notifs to NEM's allNotifs list" Fixed a bug where the brighness mirror would make everything invisible Fix crash caused by unhandled bucket Adding UiModeManager Custom Tests Revert "Fix missing animation when launch activity from notification." Revert "Prevent NPE in PulseExpansionHandler" Revert "Fix missing animation when launch activity from notification." Revert "Prevent NPE in PulseExpansionHandler" Revert "Fix missing animation when launch activity from notification." Check URI is valid for loading images Add READ_PHONE_STATE back to pregranted phone permissions Add delay between quota check alarms. Add READ_PHONE_STATE back to pregranted phone permissions Add READ_PHONE_STATE back to pregranted phone permissions Fix Ime consumer isRequestedVisible Disable overflow menu on lock screen. Ensure power menu overflow dismissed when dialog dismissed. Fix NPE when ranking update causes reinflation Only give DisplayInsetsController control over IME in split-screen Re-send the IME control after IME is re-created Update destination bounds if rotation finishes first Reboot the soundtrigger HAL on failure Add /apex to the list of allowed SystemServer paths Revert "Fix exception handling in getState() binder cache" Only use the IME target from IMMS to update the IME control target WindowInsetsAnimation: Fix app driven closing of IME WindowInsetsAnimation: Synchronously dispatch window insets animation callbacks WindowInsets: Ignore consumeStableInsets() Request fit system windows if soft input mode updates Update insets state for each window if its mBehindIme is changed Fixes NPE and adds @nullable to PackageSetting.pkg startop: Fix a string format bug in EventSequenceValidator. Work around for display info mismatch during the PiP transition Work around for display info mismatch during the PiP transition Give tethering bluetooth privilege permission Make canBeImeTarget be compatible with legacy behavior Give tethering bluetooth privilege permission Revert "Don't override activity display adjustments with app config" Make canBeImeTarget be compatible with legacy behavior fix enrollment application permission check add KEYPHRASE_ENROLLMENT_APPLICATION permission Make canBeImeTarget be compatible with legacy behavior Fixes query logic when not instant Fixes query logic when not instant Make canBeImeTarget be compatible with legacy behavior Call setAdapter from handleLayoutChanged. Use BIND_INCLUDE_CAPABILITIES for SoundTriggerService Assign a BluetoothAdapter on creation of LMM Use the bounds received in taskAppeared Assign a BluetoothAdapter on creation of LMM Revert "Do not block autofill on waiting for the IME response" Revert "Fix bouncer race condition" Null-check notif chan when ident people notifs Don't apply ime adjustments/dims if split is not active Restores PiP to its original app bounds Revert "media: lazy MediaCodec.release()" Some clean-up of divider code in preparation for bugfixes Revert "Some clean-up of divider code in preparation for bugfixes" Revert "Don't apply ime adjustments/dims if split is not active" Don't apply ime adjustments/dims if split is not active Some clean-up of divider code in preparation for bugfixes Revert "media: lazy MediaCodec.release()" InsetController: Release leashes from RenderThread Fix instances of ContentObserver#onChange in SystemUI Adjust users of hidden APIs. Revert "Turn on QS media player by default" Dark theme upgrade broken Change animation-leash to be a container layer Dark theme upgrade broken Reset controls when playback state is NONE Relax permission checks in sound trigger middleware Revert "Turn on QS media player by default" Dark theme not working bug Dark theme not working bug Revert "Fix permission check for get/setSmscAddress." Ignore unchecked IME show/hide when no root Initialize PackageManagerService ApplicationInfo instances to system user Ensures display rotation triggers PiP re-position DO NOT MERGE: Fix FLAG_NOT_FOCUSABLE ime target Revert "Avoid creating new instance on top when started for resu..." Don't crash if NSSL gets incomplete gesture DO NOT MERGE: Fix FLAG_NOT_FOCUSABLE ime target Revert "Avoid creating new instance on top when started for resu..." Don't crash if NSSL gets incomplete gesture Revert "Avoid creating new instance on top when started for resu..." Don't crash if NSSL gets incomplete gesture Fix PackageSetting isUpdatedSystemApp and SYSTEM_EXT rescan Revert "Avoid creating new instance on top when started for resu..." Do not attempt to special case uncompressed font assets. Fix crash during SysUI dumpsys Re-add compile_multilib to statsd apex Revert "Limit metricslogger call into statsdw for events" Revert "Remove libstats_jni from the platform" Revert "Move libstatspull to the apex" Revert "Require user pass in a non-null BluetoothDevice to all B..." Fail silently on MediaScannerConnection#onScanCompleted Revert "Prevents an NPE when content provider is slow to start" Fix content views not updating Fix content views not updating Fix the NPE when reading the call log or SMS if a device has multiple user profiles Fix Keyboard won't display when RemoteInput active Revert "Add permissions for using PlatformCompat methods" Revert "API for Inline Presentation Renderer in ExtServices." Fixup SDCARD_RW GID for multi-user. Revert "Move text toast creation to system UI" MediaSessionRecord: fix volume stream query Always set NetworkInfo objects to available. Fix emergency button overlap with nav bar Revert "Convert NotificationContentInflater to singleton" Revert "Move a bunch of row setters into an init method." Remove resource overlayable configuration AudioService: log result of AudioSystem calls for A2DP devices AudioService: fix A2DP disconnection / reconnection AudioService: fix A2DP disconnection / reconnection Revert "Rmove @UnsupportedAppUsage" Revert "Merge "switch to new SkPathDirection enum"" RecoverySystem: do not check if socket is closed Fix swiping down on the notch. Add synchronization for PermissionData. Revert "Replace framework-annotation-proc java lib with framework-all" Freeup lock when IME is set inactive and unbound Revert submission Revert "Clean up visibility related flags in ActivityRecord" Revert "Clean up visibility related flags in WindowToken" Revert "Clean up visibility related flags in ActivityRecord" Call appOps changed from main thread Revert "Create unit tests for GnssManagerService" Initialize AppCompatCallbacks in system server Prevent crash when invoking GNSS apis Return resume result in resumeFocusedStacksTopActivities Prevent crash when invoking GNSS apis Return resume result in resumeFocusedStacksTopActivities Return resume result in resumeFocusedStacksTopActivities Revert "Move DozeServiceHost out of StatusBar." Ensure next home activity is ready before finish FallbackHome Temporarily do not remove biometric view when animating to credential Revert "Move DozeServiceHost out of StatusBar." Ensure next home activity is ready before finish FallbackHome Mark BiometricUnlockController as @singleton Add userId to the package name API. Revert "Example for disabling changes at test time" Revert "Drop all caches in UI_HIDDEN" Make KeyguardUpdateMonitor a singleton Ensure that view is initialized properlly upon inflation. Revert "Remove many (most) of the calls to Dependency.get() from StatusBar." Fix NavigationBarController NPE Fix NavigationBarController NPE SurfaceView: Release Surfaces where SurfaceControl are released. Breaks isInstantApp into public and internal Clears calling identity when calling isInstantApp Workaround multiple instance of AppComponentFactory. Ensure that the Application is constructed before any Service. Remove KeyguardUpdateMonitor.getInstance(). Fixes regression caused by ag/9259064 Fix regression in updating gesture exclusion rects Fix regression in updating gesture exclusion rects Fix regression in updating gesture exclusion rects Fix regression in updating gesture exclusion rects Clear calling identity as broadcast needs permission WifiManager: Return dummy values when wifi service is not up Adding null checks Revert SurfaceView back to Q's version Revert "Use the SubId in the TM.getNetworkType if Valid" Retire unused android::nio_{get,release}Buffer functions Skip idmap1 generation if target defines overlayable Ensure all fields of AutoBufferPointer are initialized Change-Id: I4838416fa76f01643eccb8c6689c10499f5862d4
BernardoBas
pushed a commit
to LG-G6/android_frameworks_base
that referenced
this pull request
Feb 25, 2022
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
May 9, 2023
* i thought this was fixed by dropping HB and freetype modifications but a user reported a sysui crash without logcat nor context so im using my old copy
* addr2line was pointing the NPD [1] to a new instance of SkMemoryStream (if im not mistaken)
minaripenguin@minaripenguin:~/bugreport-oriole-TQ2A.230405.003.E1-2023-04-13-09-02-17/FS/data/tombstones$ addr2line -f -e '/mnt/xxxx/xxxxx/out/target/product/oriole/system/lib/libhwui.so' 000000000024a61c
_ZN14SkMemoryStreamC2E5sk_spI6SkDataE
* to temporarily aid the crash issue, until we find and fix the font that causes the crash, silently swallow the errors since the rom shouldn't booting at all if current font in use has invalid data.
[1]
*** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
RisingOS Version: '1.0-20230412-UNOFFICIAL-oriole'
Build fingerprint: 'google/oriole/oriole:13/TQ2A.230305.008.E1/9677224:user/release-keys'
Revision: 'MP1.0'
ABI: 'arm64'
Timestamp: 2023-04-13 00:41:15.026955853+0800
Process uptime: 216s
Cmdline: com.android.systemui
pid: 17576, tid: 17613, name: RenderThread >>> com.android.systemui <<<
uid: 10403
tagged_addr_ctrl: 0000000000000001 (PR_TAGGED_ADDR_ENABLE)
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b4000074cc5b7e60 x1 00000072ca63fa20 x2 00000072ca63fa20 x3 0000000000000001
x4 00000072ca63efa0 x5 000000747c59e4bc x6 00005a120000edab x7 0000906f00008280
x8 0000000000000000 x9 56bd015d3f6fc8f6 x10 0000000000000000 x11 000000000000001a
x12 0000000000000000 x13 b4000074ecbba980 x14 0000000000000033 x15 0000000000000019
x16 00000075f74ae6a8 x17 00000075fdb0fec0 x18 00000072ca470000 x19 b4000074cc5b7e60
x20 b4000074cc5b7e88 x21 b4000074cc5b7e60 x22 b40000737c76ae48 x23 b40000737c76ae30
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b4000073cc52f898
x28 00000072ca547000 x29 00000072ca63f7e0
lr 00000075eec487e0 sp 00000072ca63f7e0 pc 00000075eec4a61c pst 0000000020001000
backtrace:
#00 pc 000000000024a61c /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+108) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#1 pc 00000000002487dc /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#2 pc 000000000025b2a4 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#3 pc 000000000027fdcc /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+348) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#4 pc 0000000000282bdc /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+364) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#5 pc 0000000000272c34 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+580) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#6 pc 0000000000292e9c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+412) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#7 pc 0000000000013220 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+416) (BuildId: 536947a6fb111c99b28090cdd95ee772)
LineageOS#8 pc 00000000000bc1cc /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204) (BuildId: 7c802f36645db769f96376c94049c9cf)
LineageOS#9 pc 0000000000055020 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64) (BuildId: 7c802f36645db769f96376c94049c9cf)
Signed-off-by: minaripenguin <[email protected]>
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
May 9, 2023
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
May 9, 2023
* i thought this was fixed by dropping HB and freetype modifications but a user reported a sysui crash without logcat nor context so im using my old copy
* addr2line was pointing the NPD [1] to a new instance of SkMemoryStream (if im not mistaken)
minaripenguin@minaripenguin:~/bugreport-oriole-TQ2A.230405.003.E1-2023-04-13-09-02-17/FS/data/tombstones$ addr2line -f -e '/mnt/xxxx/xxxxx/out/target/product/oriole/system/lib/libhwui.so' 000000000024a61c
_ZN14SkMemoryStreamC2E5sk_spI6SkDataE
* to temporarily aid the crash issue, until we find and fix the font that causes the crash, silently swallow the errors since the rom shouldn't booting at all if current font in use has invalid data.
[1]
*** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
RisingOS Version: '1.0-20230412-UNOFFICIAL-oriole'
Build fingerprint: 'google/oriole/oriole:13/TQ2A.230305.008.E1/9677224:user/release-keys'
Revision: 'MP1.0'
ABI: 'arm64'
Timestamp: 2023-04-13 00:41:15.026955853+0800
Process uptime: 216s
Cmdline: com.android.systemui
pid: 17576, tid: 17613, name: RenderThread >>> com.android.systemui <<<
uid: 10403
tagged_addr_ctrl: 0000000000000001 (PR_TAGGED_ADDR_ENABLE)
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b4000074cc5b7e60 x1 00000072ca63fa20 x2 00000072ca63fa20 x3 0000000000000001
x4 00000072ca63efa0 x5 000000747c59e4bc x6 00005a120000edab x7 0000906f00008280
x8 0000000000000000 x9 56bd015d3f6fc8f6 x10 0000000000000000 x11 000000000000001a
x12 0000000000000000 x13 b4000074ecbba980 x14 0000000000000033 x15 0000000000000019
x16 00000075f74ae6a8 x17 00000075fdb0fec0 x18 00000072ca470000 x19 b4000074cc5b7e60
x20 b4000074cc5b7e88 x21 b4000074cc5b7e60 x22 b40000737c76ae48 x23 b40000737c76ae30
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b4000073cc52f898
x28 00000072ca547000 x29 00000072ca63f7e0
lr 00000075eec487e0 sp 00000072ca63f7e0 pc 00000075eec4a61c pst 0000000020001000
backtrace:
#00 pc 000000000024a61c /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+108) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#1 pc 00000000002487dc /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#2 pc 000000000025b2a4 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#3 pc 000000000027fdcc /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+348) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#4 pc 0000000000282bdc /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+364) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#5 pc 0000000000272c34 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+580) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#6 pc 0000000000292e9c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+412) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#7 pc 0000000000013220 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+416) (BuildId: 536947a6fb111c99b28090cdd95ee772)
LineageOS#8 pc 00000000000bc1cc /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204) (BuildId: 7c802f36645db769f96376c94049c9cf)
LineageOS#9 pc 0000000000055020 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64) (BuildId: 7c802f36645db769f96376c94049c9cf)
Signed-off-by: minaripenguin <[email protected]>
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
May 9, 2023
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
May 15, 2023
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
May 17, 2023
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
May 17, 2023
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
May 21, 2023
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
May 21, 2023
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
xenxynon
pushed a commit
to xenxynon/lineage
that referenced
this pull request
Dec 5, 2024
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
Dec 10, 2024
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
Dec 10, 2024
* i thought this was fixed by dropping HB and freetype modifications but a user reported a sysui crash without logcat nor context so im using my old copy
* addr2line was pointing the NPD [1] to a new instance of SkMemoryStream (if im not mistaken)
minaripenguin@minaripenguin:~/bugreport-oriole-TQ2A.230405.003.E1-2023-04-13-09-02-17/FS/data/tombstones$ addr2line -f -e '/mnt/xxxx/xxxxx/out/target/product/oriole/system/lib/libhwui.so' 000000000024a61c
_ZN14SkMemoryStreamC2E5sk_spI6SkDataE
* to temporarily aid the crash issue, until we find and fix the font that causes the crash, silently swallow the errors since the rom shouldn't booting at all if current font in use has invalid data.
[1]
*** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
RisingOS Version: '1.0-20230412-UNOFFICIAL-oriole'
Build fingerprint: 'google/oriole/oriole:13/TQ2A.230305.008.E1/9677224:user/release-keys'
Revision: 'MP1.0'
ABI: 'arm64'
Timestamp: 2023-04-13 00:41:15.026955853+0800
Process uptime: 216s
Cmdline: com.android.systemui
pid: 17576, tid: 17613, name: RenderThread >>> com.android.systemui <<<
uid: 10403
tagged_addr_ctrl: 0000000000000001 (PR_TAGGED_ADDR_ENABLE)
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b4000074cc5b7e60 x1 00000072ca63fa20 x2 00000072ca63fa20 x3 0000000000000001
x4 00000072ca63efa0 x5 000000747c59e4bc x6 00005a120000edab x7 0000906f00008280
x8 0000000000000000 x9 56bd015d3f6fc8f6 x10 0000000000000000 x11 000000000000001a
x12 0000000000000000 x13 b4000074ecbba980 x14 0000000000000033 x15 0000000000000019
x16 00000075f74ae6a8 x17 00000075fdb0fec0 x18 00000072ca470000 x19 b4000074cc5b7e60
x20 b4000074cc5b7e88 x21 b4000074cc5b7e60 x22 b40000737c76ae48 x23 b40000737c76ae30
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b4000073cc52f898
x28 00000072ca547000 x29 00000072ca63f7e0
lr 00000075eec487e0 sp 00000072ca63f7e0 pc 00000075eec4a61c pst 0000000020001000
backtrace:
#00 pc 000000000024a61c /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+108) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#1 pc 00000000002487dc /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#2 pc 000000000025b2a4 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#3 pc 000000000027fdcc /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+348) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#4 pc 0000000000282bdc /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+364) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#5 pc 0000000000272c34 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+580) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#6 pc 0000000000292e9c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+412) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#7 pc 0000000000013220 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+416) (BuildId: 536947a6fb111c99b28090cdd95ee772)
LineageOS#8 pc 00000000000bc1cc /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204) (BuildId: 7c802f36645db769f96376c94049c9cf)
LineageOS#9 pc 0000000000055020 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64) (BuildId: 7c802f36645db769f96376c94049c9cf)
Signed-off-by: minaripenguin <[email protected]>
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
Dec 17, 2024
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
Dec 17, 2024
* i thought this was fixed by dropping HB and freetype modifications but a user reported a sysui crash without logcat nor context so im using my old copy
* addr2line was pointing the NPD [1] to a new instance of SkMemoryStream (if im not mistaken)
minaripenguin@minaripenguin:~/bugreport-oriole-TQ2A.230405.003.E1-2023-04-13-09-02-17/FS/data/tombstones$ addr2line -f -e '/mnt/xxxx/xxxxx/out/target/product/oriole/system/lib/libhwui.so' 000000000024a61c
_ZN14SkMemoryStreamC2E5sk_spI6SkDataE
* to temporarily aid the crash issue, until we find and fix the font that causes the crash, silently swallow the errors since the rom shouldn't booting at all if current font in use has invalid data.
[1]
*** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
RisingOS Version: '1.0-20230412-UNOFFICIAL-oriole'
Build fingerprint: 'google/oriole/oriole:13/TQ2A.230305.008.E1/9677224:user/release-keys'
Revision: 'MP1.0'
ABI: 'arm64'
Timestamp: 2023-04-13 00:41:15.026955853+0800
Process uptime: 216s
Cmdline: com.android.systemui
pid: 17576, tid: 17613, name: RenderThread >>> com.android.systemui <<<
uid: 10403
tagged_addr_ctrl: 0000000000000001 (PR_TAGGED_ADDR_ENABLE)
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b4000074cc5b7e60 x1 00000072ca63fa20 x2 00000072ca63fa20 x3 0000000000000001
x4 00000072ca63efa0 x5 000000747c59e4bc x6 00005a120000edab x7 0000906f00008280
x8 0000000000000000 x9 56bd015d3f6fc8f6 x10 0000000000000000 x11 000000000000001a
x12 0000000000000000 x13 b4000074ecbba980 x14 0000000000000033 x15 0000000000000019
x16 00000075f74ae6a8 x17 00000075fdb0fec0 x18 00000072ca470000 x19 b4000074cc5b7e60
x20 b4000074cc5b7e88 x21 b4000074cc5b7e60 x22 b40000737c76ae48 x23 b40000737c76ae30
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b4000073cc52f898
x28 00000072ca547000 x29 00000072ca63f7e0
lr 00000075eec487e0 sp 00000072ca63f7e0 pc 00000075eec4a61c pst 0000000020001000
backtrace:
#00 pc 000000000024a61c /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+108) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#1 pc 00000000002487dc /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#2 pc 000000000025b2a4 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#3 pc 000000000027fdcc /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+348) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#4 pc 0000000000282bdc /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+364) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#5 pc 0000000000272c34 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+580) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#6 pc 0000000000292e9c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+412) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#7 pc 0000000000013220 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+416) (BuildId: 536947a6fb111c99b28090cdd95ee772)
LineageOS#8 pc 00000000000bc1cc /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204) (BuildId: 7c802f36645db769f96376c94049c9cf)
LineageOS#9 pc 0000000000055020 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64) (BuildId: 7c802f36645db769f96376c94049c9cf)
Signed-off-by: minaripenguin <[email protected]>
Signed-off-by: Pranav Vashi <[email protected]>
kshitij-vk
pushed a commit
to TenX-OS-VIC/frameworks_base
that referenced
this pull request
Dec 27, 2024
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Change-Id: Icba46f4521e11b146461dec67a68a92393a9bba1
Signed-off-by: Pranav Vashi <[email protected]>
Signed-off-by: Aston-Martinn <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
Jan 27, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
Jan 27, 2025
* i thought this was fixed by dropping HB and freetype modifications but a user reported a sysui crash without logcat nor context so im using my old copy
* addr2line was pointing the NPD [1] to a new instance of SkMemoryStream (if im not mistaken)
minaripenguin@minaripenguin:~/bugreport-oriole-TQ2A.230405.003.E1-2023-04-13-09-02-17/FS/data/tombstones$ addr2line -f -e '/mnt/xxxx/xxxxx/out/target/product/oriole/system/lib/libhwui.so' 000000000024a61c
_ZN14SkMemoryStreamC2E5sk_spI6SkDataE
* to temporarily aid the crash issue, until we find and fix the font that causes the crash, silently swallow the errors since the rom shouldn't booting at all if current font in use has invalid data.
[1]
*** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
RisingOS Version: '1.0-20230412-UNOFFICIAL-oriole'
Build fingerprint: 'google/oriole/oriole:13/TQ2A.230305.008.E1/9677224:user/release-keys'
Revision: 'MP1.0'
ABI: 'arm64'
Timestamp: 2023-04-13 00:41:15.026955853+0800
Process uptime: 216s
Cmdline: com.android.systemui
pid: 17576, tid: 17613, name: RenderThread >>> com.android.systemui <<<
uid: 10403
tagged_addr_ctrl: 0000000000000001 (PR_TAGGED_ADDR_ENABLE)
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b4000074cc5b7e60 x1 00000072ca63fa20 x2 00000072ca63fa20 x3 0000000000000001
x4 00000072ca63efa0 x5 000000747c59e4bc x6 00005a120000edab x7 0000906f00008280
x8 0000000000000000 x9 56bd015d3f6fc8f6 x10 0000000000000000 x11 000000000000001a
x12 0000000000000000 x13 b4000074ecbba980 x14 0000000000000033 x15 0000000000000019
x16 00000075f74ae6a8 x17 00000075fdb0fec0 x18 00000072ca470000 x19 b4000074cc5b7e60
x20 b4000074cc5b7e88 x21 b4000074cc5b7e60 x22 b40000737c76ae48 x23 b40000737c76ae30
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b4000073cc52f898
x28 00000072ca547000 x29 00000072ca63f7e0
lr 00000075eec487e0 sp 00000072ca63f7e0 pc 00000075eec4a61c pst 0000000020001000
backtrace:
#00 pc 000000000024a61c /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+108) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#1 pc 00000000002487dc /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#2 pc 000000000025b2a4 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#3 pc 000000000027fdcc /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+348) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#4 pc 0000000000282bdc /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+364) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#5 pc 0000000000272c34 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+580) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#6 pc 0000000000292e9c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+412) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#7 pc 0000000000013220 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+416) (BuildId: 536947a6fb111c99b28090cdd95ee772)
LineageOS#8 pc 00000000000bc1cc /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204) (BuildId: 7c802f36645db769f96376c94049c9cf)
LineageOS#9 pc 0000000000055020 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64) (BuildId: 7c802f36645db769f96376c94049c9cf)
Signed-off-by: minaripenguin <[email protected]>
Signed-off-by: Pranav Vashi <[email protected]>
mystery271
pushed a commit
to mystery271/android_frameworks_base
that referenced
this pull request
Feb 4, 2025
BatteryService: Add support for oem fast charger detection
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
Feb 18, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
Feb 18, 2025
* i thought this was fixed by dropping HB and freetype modifications but a user reported a sysui crash without logcat nor context so im using my old copy
* addr2line was pointing the NPD [1] to a new instance of SkMemoryStream (if im not mistaken)
minaripenguin@minaripenguin:~/bugreport-oriole-TQ2A.230405.003.E1-2023-04-13-09-02-17/FS/data/tombstones$ addr2line -f -e '/mnt/xxxx/xxxxx/out/target/product/oriole/system/lib/libhwui.so' 000000000024a61c
_ZN14SkMemoryStreamC2E5sk_spI6SkDataE
* to temporarily aid the crash issue, until we find and fix the font that causes the crash, silently swallow the errors since the rom shouldn't booting at all if current font in use has invalid data.
[1]
*** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
RisingOS Version: '1.0-20230412-UNOFFICIAL-oriole'
Build fingerprint: 'google/oriole/oriole:13/TQ2A.230305.008.E1/9677224:user/release-keys'
Revision: 'MP1.0'
ABI: 'arm64'
Timestamp: 2023-04-13 00:41:15.026955853+0800
Process uptime: 216s
Cmdline: com.android.systemui
pid: 17576, tid: 17613, name: RenderThread >>> com.android.systemui <<<
uid: 10403
tagged_addr_ctrl: 0000000000000001 (PR_TAGGED_ADDR_ENABLE)
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b4000074cc5b7e60 x1 00000072ca63fa20 x2 00000072ca63fa20 x3 0000000000000001
x4 00000072ca63efa0 x5 000000747c59e4bc x6 00005a120000edab x7 0000906f00008280
x8 0000000000000000 x9 56bd015d3f6fc8f6 x10 0000000000000000 x11 000000000000001a
x12 0000000000000000 x13 b4000074ecbba980 x14 0000000000000033 x15 0000000000000019
x16 00000075f74ae6a8 x17 00000075fdb0fec0 x18 00000072ca470000 x19 b4000074cc5b7e60
x20 b4000074cc5b7e88 x21 b4000074cc5b7e60 x22 b40000737c76ae48 x23 b40000737c76ae30
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b4000073cc52f898
x28 00000072ca547000 x29 00000072ca63f7e0
lr 00000075eec487e0 sp 00000072ca63f7e0 pc 00000075eec4a61c pst 0000000020001000
backtrace:
#00 pc 000000000024a61c /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+108) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#1 pc 00000000002487dc /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#2 pc 000000000025b2a4 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#3 pc 000000000027fdcc /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+348) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#4 pc 0000000000282bdc /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+364) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#5 pc 0000000000272c34 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+580) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#6 pc 0000000000292e9c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+412) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#7 pc 0000000000013220 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+416) (BuildId: 536947a6fb111c99b28090cdd95ee772)
LineageOS#8 pc 00000000000bc1cc /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204) (BuildId: 7c802f36645db769f96376c94049c9cf)
LineageOS#9 pc 0000000000055020 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64) (BuildId: 7c802f36645db769f96376c94049c9cf)
Signed-off-by: minaripenguin <[email protected]>
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
Mar 13, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
Mar 13, 2025
* i thought this was fixed by dropping HB and freetype modifications but a user reported a sysui crash without logcat nor context so im using my old copy
* addr2line was pointing the NPD [1] to a new instance of SkMemoryStream (if im not mistaken)
minaripenguin@minaripenguin:~/bugreport-oriole-TQ2A.230405.003.E1-2023-04-13-09-02-17/FS/data/tombstones$ addr2line -f -e '/mnt/xxxx/xxxxx/out/target/product/oriole/system/lib/libhwui.so' 000000000024a61c
_ZN14SkMemoryStreamC2E5sk_spI6SkDataE
* to temporarily aid the crash issue, until we find and fix the font that causes the crash, silently swallow the errors since the rom shouldn't booting at all if current font in use has invalid data.
[1]
*** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
RisingOS Version: '1.0-20230412-UNOFFICIAL-oriole'
Build fingerprint: 'google/oriole/oriole:13/TQ2A.230305.008.E1/9677224:user/release-keys'
Revision: 'MP1.0'
ABI: 'arm64'
Timestamp: 2023-04-13 00:41:15.026955853+0800
Process uptime: 216s
Cmdline: com.android.systemui
pid: 17576, tid: 17613, name: RenderThread >>> com.android.systemui <<<
uid: 10403
tagged_addr_ctrl: 0000000000000001 (PR_TAGGED_ADDR_ENABLE)
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b4000074cc5b7e60 x1 00000072ca63fa20 x2 00000072ca63fa20 x3 0000000000000001
x4 00000072ca63efa0 x5 000000747c59e4bc x6 00005a120000edab x7 0000906f00008280
x8 0000000000000000 x9 56bd015d3f6fc8f6 x10 0000000000000000 x11 000000000000001a
x12 0000000000000000 x13 b4000074ecbba980 x14 0000000000000033 x15 0000000000000019
x16 00000075f74ae6a8 x17 00000075fdb0fec0 x18 00000072ca470000 x19 b4000074cc5b7e60
x20 b4000074cc5b7e88 x21 b4000074cc5b7e60 x22 b40000737c76ae48 x23 b40000737c76ae30
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b4000073cc52f898
x28 00000072ca547000 x29 00000072ca63f7e0
lr 00000075eec487e0 sp 00000072ca63f7e0 pc 00000075eec4a61c pst 0000000020001000
backtrace:
#00 pc 000000000024a61c /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+108) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#1 pc 00000000002487dc /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#2 pc 000000000025b2a4 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#3 pc 000000000027fdcc /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+348) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#4 pc 0000000000282bdc /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+364) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#5 pc 0000000000272c34 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+580) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#6 pc 0000000000292e9c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+412) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#7 pc 0000000000013220 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+416) (BuildId: 536947a6fb111c99b28090cdd95ee772)
LineageOS#8 pc 00000000000bc1cc /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204) (BuildId: 7c802f36645db769f96376c94049c9cf)
LineageOS#9 pc 0000000000055020 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64) (BuildId: 7c802f36645db769f96376c94049c9cf)
Signed-off-by: minaripenguin <[email protected]>
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
May 10, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
May 10, 2025
* i thought this was fixed by dropping HB and freetype modifications but a user reported a sysui crash without logcat nor context so im using my old copy
* addr2line was pointing the NPD [1] to a new instance of SkMemoryStream (if im not mistaken)
minaripenguin@minaripenguin:~/bugreport-oriole-TQ2A.230405.003.E1-2023-04-13-09-02-17/FS/data/tombstones$ addr2line -f -e '/mnt/xxxx/xxxxx/out/target/product/oriole/system/lib/libhwui.so' 000000000024a61c
_ZN14SkMemoryStreamC2E5sk_spI6SkDataE
* to temporarily aid the crash issue, until we find and fix the font that causes the crash, silently swallow the errors since the rom shouldn't booting at all if current font in use has invalid data.
[1]
*** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
RisingOS Version: '1.0-20230412-UNOFFICIAL-oriole'
Build fingerprint: 'google/oriole/oriole:13/TQ2A.230305.008.E1/9677224:user/release-keys'
Revision: 'MP1.0'
ABI: 'arm64'
Timestamp: 2023-04-13 00:41:15.026955853+0800
Process uptime: 216s
Cmdline: com.android.systemui
pid: 17576, tid: 17613, name: RenderThread >>> com.android.systemui <<<
uid: 10403
tagged_addr_ctrl: 0000000000000001 (PR_TAGGED_ADDR_ENABLE)
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b4000074cc5b7e60 x1 00000072ca63fa20 x2 00000072ca63fa20 x3 0000000000000001
x4 00000072ca63efa0 x5 000000747c59e4bc x6 00005a120000edab x7 0000906f00008280
x8 0000000000000000 x9 56bd015d3f6fc8f6 x10 0000000000000000 x11 000000000000001a
x12 0000000000000000 x13 b4000074ecbba980 x14 0000000000000033 x15 0000000000000019
x16 00000075f74ae6a8 x17 00000075fdb0fec0 x18 00000072ca470000 x19 b4000074cc5b7e60
x20 b4000074cc5b7e88 x21 b4000074cc5b7e60 x22 b40000737c76ae48 x23 b40000737c76ae30
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b4000073cc52f898
x28 00000072ca547000 x29 00000072ca63f7e0
lr 00000075eec487e0 sp 00000072ca63f7e0 pc 00000075eec4a61c pst 0000000020001000
backtrace:
#00 pc 000000000024a61c /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+108) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#1 pc 00000000002487dc /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#2 pc 000000000025b2a4 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#3 pc 000000000027fdcc /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+348) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#4 pc 0000000000282bdc /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+364) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#5 pc 0000000000272c34 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+580) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#6 pc 0000000000292e9c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+412) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#7 pc 0000000000013220 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+416) (BuildId: 536947a6fb111c99b28090cdd95ee772)
LineageOS#8 pc 00000000000bc1cc /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204) (BuildId: 7c802f36645db769f96376c94049c9cf)
LineageOS#9 pc 0000000000055020 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64) (BuildId: 7c802f36645db769f96376c94049c9cf)
Signed-off-by: minaripenguin <[email protected]>
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
Jun 7, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
Jun 7, 2025
* i thought this was fixed by dropping HB and freetype modifications but a user reported a sysui crash without logcat nor context so im using my old copy
* addr2line was pointing the NPD [1] to a new instance of SkMemoryStream (if im not mistaken)
minaripenguin@minaripenguin:~/bugreport-oriole-TQ2A.230405.003.E1-2023-04-13-09-02-17/FS/data/tombstones$ addr2line -f -e '/mnt/xxxx/xxxxx/out/target/product/oriole/system/lib/libhwui.so' 000000000024a61c
_ZN14SkMemoryStreamC2E5sk_spI6SkDataE
* to temporarily aid the crash issue, until we find and fix the font that causes the crash, silently swallow the errors since the rom shouldn't booting at all if current font in use has invalid data.
[1]
*** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
RisingOS Version: '1.0-20230412-UNOFFICIAL-oriole'
Build fingerprint: 'google/oriole/oriole:13/TQ2A.230305.008.E1/9677224:user/release-keys'
Revision: 'MP1.0'
ABI: 'arm64'
Timestamp: 2023-04-13 00:41:15.026955853+0800
Process uptime: 216s
Cmdline: com.android.systemui
pid: 17576, tid: 17613, name: RenderThread >>> com.android.systemui <<<
uid: 10403
tagged_addr_ctrl: 0000000000000001 (PR_TAGGED_ADDR_ENABLE)
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b4000074cc5b7e60 x1 00000072ca63fa20 x2 00000072ca63fa20 x3 0000000000000001
x4 00000072ca63efa0 x5 000000747c59e4bc x6 00005a120000edab x7 0000906f00008280
x8 0000000000000000 x9 56bd015d3f6fc8f6 x10 0000000000000000 x11 000000000000001a
x12 0000000000000000 x13 b4000074ecbba980 x14 0000000000000033 x15 0000000000000019
x16 00000075f74ae6a8 x17 00000075fdb0fec0 x18 00000072ca470000 x19 b4000074cc5b7e60
x20 b4000074cc5b7e88 x21 b4000074cc5b7e60 x22 b40000737c76ae48 x23 b40000737c76ae30
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b4000073cc52f898
x28 00000072ca547000 x29 00000072ca63f7e0
lr 00000075eec487e0 sp 00000072ca63f7e0 pc 00000075eec4a61c pst 0000000020001000
backtrace:
#00 pc 000000000024a61c /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+108) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#1 pc 00000000002487dc /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#2 pc 000000000025b2a4 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#3 pc 000000000027fdcc /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+348) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#4 pc 0000000000282bdc /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+364) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#5 pc 0000000000272c34 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+580) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#6 pc 0000000000292e9c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+412) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#7 pc 0000000000013220 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+416) (BuildId: 536947a6fb111c99b28090cdd95ee772)
LineageOS#8 pc 00000000000bc1cc /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204) (BuildId: 7c802f36645db769f96376c94049c9cf)
LineageOS#9 pc 0000000000055020 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64) (BuildId: 7c802f36645db769f96376c94049c9cf)
Signed-off-by: minaripenguin <[email protected]>
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
Jun 13, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
MJPollard
pushed a commit
to AltairROM/android_frameworks_base
that referenced
this pull request
Jun 13, 2025
* i thought this was fixed by dropping HB and freetype modifications but a user reported a sysui crash without logcat nor context so im using my old copy
* addr2line was pointing the NPD [1] to a new instance of SkMemoryStream (if im not mistaken)
minaripenguin@minaripenguin:~/bugreport-oriole-TQ2A.230405.003.E1-2023-04-13-09-02-17/FS/data/tombstones$ addr2line -f -e '/mnt/xxxx/xxxxx/out/target/product/oriole/system/lib/libhwui.so' 000000000024a61c
_ZN14SkMemoryStreamC2E5sk_spI6SkDataE
* to temporarily aid the crash issue, until we find and fix the font that causes the crash, silently swallow the errors since the rom shouldn't booting at all if current font in use has invalid data.
[1]
*** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
RisingOS Version: '1.0-20230412-UNOFFICIAL-oriole'
Build fingerprint: 'google/oriole/oriole:13/TQ2A.230305.008.E1/9677224:user/release-keys'
Revision: 'MP1.0'
ABI: 'arm64'
Timestamp: 2023-04-13 00:41:15.026955853+0800
Process uptime: 216s
Cmdline: com.android.systemui
pid: 17576, tid: 17613, name: RenderThread >>> com.android.systemui <<<
uid: 10403
tagged_addr_ctrl: 0000000000000001 (PR_TAGGED_ADDR_ENABLE)
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b4000074cc5b7e60 x1 00000072ca63fa20 x2 00000072ca63fa20 x3 0000000000000001
x4 00000072ca63efa0 x5 000000747c59e4bc x6 00005a120000edab x7 0000906f00008280
x8 0000000000000000 x9 56bd015d3f6fc8f6 x10 0000000000000000 x11 000000000000001a
x12 0000000000000000 x13 b4000074ecbba980 x14 0000000000000033 x15 0000000000000019
x16 00000075f74ae6a8 x17 00000075fdb0fec0 x18 00000072ca470000 x19 b4000074cc5b7e60
x20 b4000074cc5b7e88 x21 b4000074cc5b7e60 x22 b40000737c76ae48 x23 b40000737c76ae30
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b4000073cc52f898
x28 00000072ca547000 x29 00000072ca63f7e0
lr 00000075eec487e0 sp 00000072ca63f7e0 pc 00000075eec4a61c pst 0000000020001000
backtrace:
#00 pc 000000000024a61c /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+108) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#1 pc 00000000002487dc /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#2 pc 000000000025b2a4 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#3 pc 000000000027fdcc /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+348) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#4 pc 0000000000282bdc /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+364) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#5 pc 0000000000272c34 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+580) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#6 pc 0000000000292e9c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+412) (BuildId: f37109e40765e94e2634e351e2ba0981)
LineageOS#7 pc 0000000000013220 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+416) (BuildId: 536947a6fb111c99b28090cdd95ee772)
LineageOS#8 pc 00000000000bc1cc /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204) (BuildId: 7c802f36645db769f96376c94049c9cf)
LineageOS#9 pc 0000000000055020 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64) (BuildId: 7c802f36645db769f96376c94049c9cf)
Signed-off-by: minaripenguin <[email protected]>
Signed-off-by: Pranav Vashi <[email protected]>
toukashishigaya
pushed a commit
to youkai-b/los_fwb
that referenced
this pull request
Aug 3, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
toukashishigaya
pushed a commit
to youkai-b/los_fwb
that referenced
this pull request
Aug 3, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
toukashishigaya
pushed a commit
to youkai-b/los_fwb
that referenced
this pull request
Aug 16, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
toukashishigaya
pushed a commit
to youkai-b/los_fwb
that referenced
this pull request
Aug 16, 2025
derp: Update GMS Spoof FP from tokay_beta BP22.250124.009 release
toukashishigaya
pushed a commit
to youkai-b/los_fwb
that referenced
this pull request
Sep 1, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
toukashishigaya
pushed a commit
to youkai-b/los_fwb
that referenced
this pull request
Sep 1, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
toukashishigaya
pushed a commit
to youkai-b/los_fwb
that referenced
this pull request
Sep 4, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
toukashishigaya
pushed a commit
to youkai-b/los_fwb
that referenced
this pull request
Sep 4, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
toukashishigaya
pushed a commit
to youkai-b/los_fwb
that referenced
this pull request
Sep 5, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
toukashishigaya
pushed a commit
to youkai-b/los_fwb
that referenced
this pull request
Sep 5, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
toukashishigaya
pushed a commit
to youkai-b/los_fwb
that referenced
this pull request
Sep 7, 2025
Fix NULL deref
```
Cmdline: com.android.systemui
pid: 2530, tid: 2589, name: RenderThread >>> com.android.systemui <<<
uid: 10293
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000010
Cause: null pointer dereference
x0 b400007cbe7b8ff0 x1 0000007bf78fb9f0 x2 b400007c8c184898 x3 0000000000000001
x4 0000007bf78faf80 x5 00000000007f5687 x6 000000001991ade0 x7 0000000000000010
x8 0000000000000000 x9 43490de4ff9b0700 x10 b400007cbe7b8c00 x11 0000000000000002
x12 0000000000000000 x13 000000003f800000 x14 000000003f800000 x15 0000000000000000
x16 0000007d71724720 x17 0000007d57ccdb00 x18 0000007bf7568000 x19 b400007cbe7b8ff0
x20 b400007cbe7b9018 x21 b400007cbe7b8ff0 x22 b400007cbe280010 x23 b400007cbe280000
x24 7ffffffffffffff8 x25 1fffffffffffffff x26 00000000ffffffff x27 b400007c7e1b0da8
x28 0000007bf78fc000 x29 0000007bf78fb7a0
lr 0000007d67aaf330 sp 0000007bf78fb7a0 pc 0000007d67ab1590 pst 0000000020001000
backtrace:
#00 pc 0000000000253590 /system/lib64/libhwui.so (android::uirenderer::AnimatorManager::pushStaging()+112)
LineageOS#1 pc 000000000025132c /system/lib64/libhwui.so (android::uirenderer::AnimationContext::runRemainingAnimations(android::uirenderer::TreeInfo&)+44)
LineageOS#2 pc 0000000000267664 /system/lib64/libhwui.so (android::uirenderer::AnimationContextBridge::runRemainingAnimations(android::uirenderer::TreeInfo&)+36)
LineageOS#3 pc 0000000000292720 /system/lib64/libhwui.so (android::uirenderer::renderthread::CanvasContext::prepareTree(android::uirenderer::TreeInfo&, long*, long, android::uirenderer::RenderNode*)+352)
LineageOS#4 pc 00000000002959c8 /system/lib64/libhwui.so (std::__1::__function::__func<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0, std::__1::allocator<android::uirenderer::renderthread::DrawFrameTask::postAndWait()::$_0>, void ()>::operator()() (.c1671e787f244890c877724752face20)+360)
LineageOS#5 pc 0000000000282ce4 /system/lib64/libhwui.so (android::uirenderer::WorkQueue::process()+1108)
LineageOS#6 pc 00000000002a808c /system/lib64/libhwui.so (android::uirenderer::renderthread::RenderThread::threadLoop()+556)
LineageOS#7 pc 0000000000013a14 /system/lib64/libutils.so (android::Thread::_threadLoop(void*)+436)
LineageOS#8 pc 00000000000d07ac /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+204)
LineageOS#9 pc 00000000000567f0 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64)
```
Signed-off-by: Pranav Vashi <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.