Crash on Android: SIGSEGV null pointer dereference in libjingle_peerconnection_so.so on worker thread #1899
Description
Hi team,
I’m experiencing a native crash when using flutter_webrtc version 1.0.0 on Android. This version appears to support H265 by default, but shortly after launch, the app crashes with a segmentation fault (SIGSEGV) caused by a null pointer dereference in libjingle_peerconnection_so.so.
📌 Crash Log Summary
Fatal signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0
Cause: null pointer dereference
Process: com.quang.h265
Thread: worker_thread
Timestamp: 2025-07-25 17:02:57 (uptime: 34s)
Build fingerprint: google/sdk_gphone64_arm64/emu64a:16/BP22.250325.006/13344233:user/release-keys
🔧 Backtrace (from libjingle_peerconnection_so.so)
#00 pc 0x09ec854 libjingle_peerconnection_so.so
#1 pc 0x09eb7f4 libjingle_peerconnection_so.so
#2 pc 0x09eba6c libjingle_peerconnection_so.so
#3 pc 0x0904618 libjingle_peerconnection_so.so
#4 pc 0x08fad50 libjingle_peerconnection_so.so
#5 pc 0x0a44048 libjingle_peerconnection_so.so
#6 pc 0x0a4c3ec libjingle_peerconnection_so.so
#7 pc 0x048e98c libjingle_peerconnection_so.so
#8 pc 0x048d8a8 libjingle_peerconnection_so.so
#9 pc 0x048ee80 libjingle_peerconnection_so.so
#10 pc 0x080df8 libc.so (__pthread_start)
#11 pc 0x073dd8 libc.so (__start_thread)
📱 Environment
App ID: com.quang.h265
Platform: Android ARM64
Device: Android Emulator (sdk_gphone64_arm64)
Android Version: API 16 (emulator)
Library: libjingle_peerconnection_so.so (BuildId: 9c00ad80111163c4)
🧪 Reproduction
Currently observed after ~30s of running the app. Happens on worker thread without any interaction.
❗Expected Behavior
The app should not crash due to null pointer dereference in internal worker threads of WebRTC native library.
📎 Additional Notes
Please check the null pointer dereference in libjingle_peerconnection_so.so in the call chain starting from:
pc 00000000009ec854
Let me know if you need symbols or further reproduction steps. Thanks in advance!
Full log:
F/libc (21800): Fatal signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0 in tid 21986 (worker_thread -), pid 21800 (isco.javissmart)
Build fingerprint: 'google/sdk_gphone64_arm64/emu64a:16/BP22.250325.006/13344233:user/release-keys'
Revision: '0'
ABI: 'arm64'
Timestamp: 2025-07-25 17:02:57.586105938+0700
Process uptime: 34s
Cmdline: com.quang.h265
pid: 21800, tid: 21986, name: worker_thread - >>> com.quang.h265 <<<
uid: 10215
tagged_addr_ctrl: 0000000000000001 (PR_TAGGED_ADDR_ENABLE)
pac_enabled_keys: 000000000000000f (PR_PAC_APIAKEY, PR_PAC_APIBKEY, PR_PAC_APDAKEY, PR_PAC_APDBKEY)
signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000000
Cause: null pointer dereference
x0 0000000000000000 x1 00000072e96fb848 x2 ffffffffffffffc8 x3 00000072e96fc020
x4 00000072e619a4f8 x5 00000072e96fc078 x6 00000072e96fc0c8 x7 00000072e96fc0b4
x8 000000000000000c x9 aaaaaaaaaaaaaaaa x10 000000000000002b x11 b40000738a183b50
x12 0000000000000008 x13 0000000000000000 x14 0000000000000000 x15 ffffffffffffffff
x16 0000000000000001 x17 0000007591f36300 x18 00000072e4e18000 x19 b4000074fa060748
x20 00000072e96fc1f0 x21 0000000000000000 x22 00000072e96fc880 x23 000000000000000c
x24 0000000000000080 x25 00000072e96fc868 x26 b4000074aa04c150 x27 00000072e9604000
x28 00000072e9600000 x29 00000072e96fc080
lr 00000072e6a24840 sp 00000072e96fb830 pc 00000072e6a24854 pst 0000000080000000
12 total frames
backtrace:
#00 pc 00000000009ec854 /data/app/~~mnifGqRIHIjhDB9-q_83rw==/com.quang.h265-It2iq13C1LlUvqzCzCqkXA==/base.apk!libjingle_peerconnection_so.so (offset 0x3f78000) (BuildId: 9c00ad80111163c4)
#1 pc 00000000009eb7f4 /data/app/~~mnifGqRIHIjhDB9-q_83rw==/com.quang.h265-It2iq13C1LlUvqzCzCqkXA==/base.apk!libjingle_peerconnection_so.so (offset 0x3f78000) (BuildId: 9c00ad80111163c4)
#2 pc 00000000009eba6c /data/app/~~mnifGqRIHIjhDB9-q_83rw==/com.quang.h265-It2iq13C1LlUvqzCzCqkXA==/base.apk!libjingle_peerconnection_so.so (offset 0x3f78000) (BuildId: 9c00ad80111163c4)
#3 pc 0000000000904618 /data/app/~~mnifGqRIHIjhDB9-q_83rw==/com.quang.h265-It2iq13C1LlUvqzCzCqkXA==/base.apk!libjingle_peerconnection_so.so (offset 0x3f78000) (BuildId: 9c00ad80111163c4)
#4 pc 00000000008fad50 /data/app/~~mnifGqRIHIjhDB9-q_83rw==/com.quang.h265-It2iq13C1LlUvqzCzCqkXA==/base.apk!libjingle_peerconnection_so.so (offset 0x3f78000) (BuildId: 9c00ad80111163c4)
#5 pc 0000000000a44048 /data/app/~~mnifGqRIHIjhDB9-q_83rw==/com.quang.h265-It2iq13C1LlUvqzCzCqkXA==/base.apk!libjingle_peerconnection_so.so (offset 0x3f78000) (BuildId: 9c00ad80111163c4)
#6 pc 0000000000a4c3ec /data/app/~~mnifGqRIHIjhDB9-q_83rw==/com.quang.h265-It2iq13C1LlUvqzCzCqkXA==/base.apk!libjingle_peerconnection_so.so (offset 0x3f78000) (BuildId: 9c00ad80111163c4)
#7 pc 000000000048e98c /data/app/~~mnifGqRIHIjhDB9-q_83rw==/com.quang.h265-It2iq13C1LlUvqzCzCqkXA==/base.apk!libjingle_peerconnection_so.so (offset 0x3f78000) (BuildId: 9c00ad80111163c4)
#8 pc 000000000048d8a8 /data/app/~~mnifGqRIHIjhDB9-q_83rw==/com.quang.h265-It2iq13C1LlUvqzCzCqkXA==/base.apk!libjingle_peerconnection_so.so (offset 0x3f78000) (BuildId: 9c00ad80111163c4)
#9 pc 000000000048ee80 /data/app/~~mnifGqRIHIjhDB9-q_83rw==/com.quang.h265-It2iq13C1LlUvqzCzCqkXA==/base.apk!libjingle_peerconnection_so.so (offset 0x3f78000) (BuildId: 9c00ad80111163c4)
#10 pc 0000000000080df8 /apex/com.android.runtime/lib64/bionic/libc.so (__pthread_start(void*)+232) (BuildId: 6fe68a65b8246881b2851590621f0433)
#11 pc 0000000000073dd8 /apex/com.android.runtime/lib64/bionic/libc.so (__start_thread+64) (BuildId: 6fe68a65b8246881b2851590621f0433)