search

LSPosed / LSPlant

A hook framework for Android Runtime (ART)
https://lsposed.org/LSPlant/
GNU Lesser General Public License v3.0
814 stars 203 forks source link

Failed to find GetMethodShorty #78

Closed iscle closed 4 months ago

iscle commented 4 months ago

When using LSPosed on the latest LineageOS build for my device (LineageOS 21.0, Android 14), LSPlant (and in turn, LSPosed) fails to start with the following error.

I don't really know how to investigate the issue. I've done a custom LSPosed build with the latest version of LSPlant at the time of this comment and the same issue is happening.

If you need any more info, logs, or dumps, let me know.

04-17 23:23:46.576  1940  3272 I ActivityTaskManager: START u0 {act=android.intent.action.MAIN cat=[df59a6a2-e596-4dd4-b8b8-fc176da40f09,org.lsposed.manager.LAUNCH_MANAGER] flg=0x10000000 pkg=com.android.shell cmp=com.android.shell/.BugreportWarningActivity} with LAUNCH_MULTIPLE from uid 1000 (BAL_ALLOW_ALLOWLISTED_UID) result code=0
04-17 23:23:46.577  1940  2297 W ActivityManager: ProcessRecord{f14e49d 0:com.android.shell/2000} is attached to a previous process 9607
04-17 23:23:46.577  3242  3284 V WindowManagerShell: Transition requested (#23): android.os.BinderProxy@add59c7 TransitionRequestInfo { type = OPEN, triggerTask = TaskInfo{userId=0 taskId=224 displayId=0 isRunning=true baseIntent=Intent { act=android.intent.action.MAIN cat=[df59a6a2-e596-4dd4-b8b8-fc176da40f09,org.lsposed.manager.LAUNCH_MANAGER] flg=0x10800000 pkg=com.android.shell cmp=com.android.shell/.BugreportWarningActivity } baseActivity=ComponentInfo{com.android.shell/com.android.shell.BugreportWarningActivity} topActivity=ComponentInfo{com.android.shell/com.android.shell.BugreportWarningActivity} origActivity=null realActivity=ComponentInfo{com.android.shell/com.android.shell.BugreportWarningActivity} numActivities=1 lastActiveTime=629870 supportsMultiWindow=true resizeMode=1 isResizeable=true minWidth=-1 minHeight=-1 defaultMinSize=220 token=WCT{android.window.IWindowContainerToken$Stub$Proxy@8840bf4} topActivityType=1 pictureInPictureParams=null shouldDockBigOverlays=false launchIntoPipHostTaskId=-1 lastParentTaskIdBeforePip=-1 displayCutoutSafeInsets=Rect(0, 87 - 0, 0) topActivityInfo=ActivityInfo{e959f1d com.android.shell.BugreportWarningActivity} launchCookies=[] positionInParent=Point(0, 0) parentTaskId=-1 isFocused=false isVisible=false isVisibleRequested=false isSleeping=false locusId=null displayAreaFeatureId=1 isTopActivityTransparent=true appCompatTaskInfo=AppCompatTaskInfo { topActivityInSizeCompat=false topActivityEligibleForLetterboxEducation= false isLetterboxDoubleTapEnabled= false topActivityEligibleForUserAspectRatioButton= false topActivityBoundsLetterboxed= false isFromLetterboxDoubleTap= false topActivityLetterboxVerticalPosition= -1 topActivityLetterboxHorizontalPosition= -1 topActivityLetterboxWidth=-1 topActivityLetterboxHeight=-1 isUserFullscreenOverrideEnabled=false cameraCompatControlState=hidden}}, pipTask = null, remoteTransition = null, displayChange = null, flags = 0, debugId = 23 }
04-17 23:23:46.577  1940  2297 I ActivityManager: com.android.shell is exempt from freezer
04-17 23:23:46.577  1940  2297 D CompatibilityChangeReporter: Compat change id reported: 135634846; UID 2000; state: DISABLED
04-17 23:23:46.577  1940  2297 D CompatibilityChangeReporter: Compat change id reported: 177438394; UID 2000; state: DISABLED
04-17 23:23:46.578  1940  2297 D CompatibilityChangeReporter: Compat change id reported: 135772972; UID 2000; state: DISABLED
04-17 23:23:46.578  1940  2297 D CompatibilityChangeReporter: Compat change id reported: 135754954; UID 2000; state: ENABLED
04-17 23:23:46.579  1940  2297 W ActivityManager: ProcessRecord{f14e49d 0:com.android.shell/2000} is attached to a previous process 9607
04-17 23:23:46.579  1940  2297 W ActivityManager: ProcessRecord{f14e49d 0:com.android.shell/2000} is attached to a previous process 9607
04-17 23:23:46.581  3242  3284 D WindowManagerShell: setLauncherKeepClearAreaHeight: visible=false, height=257
04-17 23:23:46.586  1439  1439 I BpBinder: onLastStrongRef automatically unlinking death recipients: 
04-17 23:23:46.588  1165  1165 I Zygote  : Process 9607 exited due to signal 9 (Killed)
04-17 23:23:46.588  1940  4067 V ActivityManager: Got obituary of 9607:com.android.shell
04-17 23:23:46.588  1940  2297 W ActivityManager: setHasOverlayUi called on unknown pid: 9607
04-17 23:23:46.595  1165  1165 D Zygote  : Forked child process 9983
04-17 23:23:46.596  1940  2308 I ActivityManager: Start proc 9983:com.android.shell/2000 for next-top-activity {com.android.shell/com.android.shell.BugreportWarningActivity}
04-17 23:23:46.603  9983  9983 I m.android.shell: Using CollectorTypeCMC GC.
04-17 23:23:46.605  9983  9983 E m.android.shell: Not starting debugger since process cannot load the jdwp agent.
04-17 23:23:46.608  9983  9983 W m.android.shell: Core platform API violation: Ljava/lang/Class;->accessFlags:I from Lcom/android/internal/os/Zygote; using JNI
04-17 23:23:46.608  9983  9983 W m.android.shell: Core platform API violation: Ljava/lang/reflect/Executable;->artMethod:J from Lcom/android/internal/os/Zygote; using JNI
04-17 23:23:46.608  9983  9983 W m.android.shell: Core platform API violation: Ljava/lang/reflect/Executable;->accessFlags:I from Lcom/android/internal/os/Zygote; using JNI
04-17 23:23:46.609  9983  9983 E LSPlant : Failed to find GetMethodShorty
04-17 23:23:46.609  9983  9983 E LSPlant : Failed to init art method
04-17 23:23:46.609  9983  9983 E LSPosed : Failed to init lsplant
04-17 23:23:46.610  9983  9983 W m.android.shell: Core platform API violation: Ldalvik/system/BaseDexClassLoader;->pathList:Ldalvik/system/DexPathList; from Lcom/android/internal/os/Zygote; using JNI
04-17 23:23:46.610  9983  9983 W m.android.shell: Core platform API violation: Ldalvik/system/DexPathList;->dexElements:[Ldalvik/system/DexPathList$Element; from Lcom/android/internal/os/Zygote; using JNI
04-17 23:23:46.610  9983  9983 W m.android.shell: Core platform API violation: Ldalvik/system/DexPathList$Element;->dexFile:Ldalvik/system/DexFile; from Lcom/android/internal/os/Zygote; using JNI
04-17 23:23:46.610  9983  9983 W m.android.shell: Core platform API violation: Ldalvik/system/DexFile;->mCookie:Ljava/lang/Object; from Lcom/android/internal/os/Zygote; using JNI
04-17 23:23:46.611  9983  9983 W BpBinder: Linking to death on org.lsposed.lspd.service.ILSPApplicationService but there are no threads (yet?) listening to incoming transactions. See ProcessState::startThreadPool and ProcessState::setThreadPoolMaxThreadCount. Generally you should setup the binder threadpool before other initialization steps.
04-17 23:23:46.616  9983  9983 F libc    : Fatal signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0 in tid 9983 (m.android.shell), pid 9983 (m.android.shell)
04-17 23:23:46.636  9992  9992 I crash_dump64: obtaining output fd from tombstoned, type: kDebuggerdTombstoneProto
04-17 23:23:46.637   958   958 I tombstoned: received crash request for pid 9983
04-17 23:23:46.637  9992  9992 I crash_dump64: performing dump of process 9983 (target tid = 9983)
04-17 23:23:46.643  9992  9992 E DEBUG   : failed to read process info: failed to open /proc/9983: No such file or directory
04-17 23:23:46.658  1842  1842 E BATTERY_CHG: power_supply_read_temp: batt_thermal temp:360 ,delta:10154 rc=0
04-17 23:23:46.678  4867  4867 I A       : onPause
04-17 23:23:46.683  1940  2284 W ActivityTaskManager: takeTaskSnapshot: taskId=213 not found or not visible
04-17 23:23:46.685  1940  2284 W ActivityTaskManager: takeTaskSnapshot: taskId=224 not found or not visible
04-17 23:23:46.702  9992  9992 F DEBUG   : *** *** *** *** *** *** *** *** *** *** *** *** *** *** *** ***
04-17 23:23:46.702  9992  9992 F DEBUG   : LineageOS Version: '21.0-20240417-UNOFFICIAL-GMS-cupid'
04-17 23:23:46.702  9992  9992 F DEBUG   : Build fingerprint: 'Xiaomi/lineage_cupid/cupid:14/AP1A.240405.002.A1/eng.arian.20240417.102102:userdebug/test-keys'
04-17 23:23:46.702  9992  9992 F DEBUG   : Revision: '0'
04-17 23:23:46.702  9992  9992 F DEBUG   : ABI: 'arm64'
04-17 23:23:46.702  9992  9992 F DEBUG   : Timestamp: 2024-04-17 23:23:46.643625651+0200
04-17 23:23:46.702  9992  9992 F DEBUG   : Process uptime: 0s
04-17 23:23:46.702  9992  9992 F DEBUG   : Cmdline: zygote64
04-17 23:23:46.702  9992  9992 F DEBUG   : pid: 9983, tid: 9983, name: m.android.shell  >>> zygote64 <<<
04-17 23:23:46.702  9992  9992 F DEBUG   : uid: 2000
04-17 23:23:46.702  9992  9992 F DEBUG   : tagged_addr_ctrl: 0000000000000001 (PR_TAGGED_ADDR_ENABLE)
04-17 23:23:46.702  9992  9992 F DEBUG   : signal 11 (SIGSEGV), code 1 (SEGV_MAPERR), fault addr 0x0000000000000000
04-17 23:23:46.702  9992  9992 F DEBUG   : Cause: null pointer dereference
04-17 23:23:46.702  9992  9992 F DEBUG   :     x0  0000000000000000  x1  0000000000000000  x2  b400007ae7d7f7b0  x3  0000000000000010
04-17 23:23:46.702  9992  9992 F DEBUG   :     x4  0000000000000000  x5  0000000000000000  x6  000000000000004a  x7  7f7f7f7f7f7f7f7f
04-17 23:23:46.702  9992  9992 F DEBUG   :     x8  0000000000000000  x9  41269d51e873cbbc  x10 000000000000004a  x11 00000000ce07d022
04-17 23:23:46.702  9992  9992 F DEBUG   :     x12 000000000000000f  x13 b400007bc7d79c10  x14 000000000000000a  x15 0000007d37a09058
04-17 23:23:46.702  9992  9992 F DEBUG   :     x16 0000007a3702f9a8  x17 0000007d112c4f80  x18 0000007d3848c000  x19 0000000000000000
04-17 23:23:46.702  9992  9992 F DEBUG   :     x20 0000007fe814ad80  x21 0000007a37038cc0  x22 0000000000000000  x23 0000000000000011
04-17 23:23:46.702  9992  9992 F DEBUG   :     x24 0000007fe814b58c  x25 0000000070502a98  x26 000000798000d7e0  x27 0000007d37a09041
04-17 23:23:46.702  9992  9992 F DEBUG   :     x28 0000007a37030e08  x29 b400007bc7d79bf0
04-17 23:23:46.702  9992  9992 F DEBUG   :     lr  0000007a3700c76c  sp  0000007fe814ace0  pc  0000007d112c4f90  pst 0000000080001000
04-17 23:23:46.702  9992  9992 F DEBUG   : 2 total frames
04-17 23:23:46.702  9992  9992 F DEBUG   : backtrace:
04-17 23:23:46.702  9992  9992 F DEBUG   :       #00 pc 0000000000056f90  /apex/com.android.runtime/lib64/bionic/libc.so (__strlen_aarch64+16) (BuildId: 6fc89baec7cc2ccf271be8211fe7d9f0)
04-17 23:23:46.702  9992  9992 F DEBUG   :       #01 pc 000000000000b768  /memfd:jit-cache (deleted)
04-17 23:23:46.708   958   958 E tombstoned: Tombstone written to: tombstone_08
04-17 23:23:46.710  1940  2984 E NativeTombstoneManager: Tombstone's UID (2000) not an app, ignoring
04-17 23:23:46.711  1940  9996 I DropBoxManagerService: add tag=system_app_native_crash isTagEnabled=true flags=0x2
04-17 23:23:46.723     1     1 I init    : Untracked pid 9992 exited with status 0
04-17 23:23:46.723     1     1 I init    : Untracked pid 9992 did not have an associated service entry and will not be reaped
04-17 23:23:46.715  1940  2984 I BootReceiver: Copying /data/tombstones/tombstone_08 to DropBox (SYSTEM_TOMBSTONE)
04-17 23:23:46.715  1940  2984 I DropBoxManagerService: add tag=SYSTEM_TOMBSTONE isTagEnabled=true flags=0x6
04-17 23:23:46.728     1     1 I init    : Untracked pid 9994 exited with status 0
04-17 23:23:46.728     1     1 I init    : Untracked pid 9994 did not have an associated service entry and will not be reaped
04-17 23:23:46.718  1165  1165 I Zygote  : Process 9983 exited due to signal 11 (Segmentation fault)

Regards, Iscle

yujincheng08 commented 4 months ago

Hi, you need to fix your ART symbol resolver to find this symbol. It's not LSPlant issue.