search

rovo89 / android_art

Android ART with modifications for the Xposed framework.
Other
375 stars 211 forks source link

Possible Race Condition in runtime/class_linker.cc #74

Open Gh0u1L5 opened 6 years ago

Gh0u1L5 commented 6 years ago

Hi, my friend reported an interesting crash that happens when he loads two modules hooking the same app. I suspect there are some race conditions which we doesn't handle correctly in runtime/class_linker.cc

Here's the log of the crashed modules:

12-20 04:42:07.069 I/Xposed  ( 5185): -----------------
12-20 04:42:07.069 I/Xposed  ( 5185): Starting Xposed version 89, compiled for SDK 25
12-20 04:42:07.069 I/Xposed  ( 5185): Device: HUAWEI RIO-AL00 (HUAWEI), Android version 7.1.2 (SDK 25)
12-20 04:42:07.069 I/Xposed  ( 5185): ROM: N2G47O
12-20 04:42:07.069 I/Xposed  ( 5185): Build fingerprint: Huawei/aosp_rio/hwRIO-AL00:7.1.2/N2G47O/eng.allurb.20170523.121521:userdebug/release-keys
12-20 04:42:07.069 I/Xposed  ( 5185): Platform: arm64-v8a, 64-bit binary, system server: yes
12-20 04:42:07.069 I/Xposed  ( 5185): SELinux enabled: yes, enforcing: yes
12-20 04:42:07.161 I/Xposed  ( 5185): -----------------
12-20 04:42:07.161 I/Xposed  ( 5185): Added Xposed (/system/framework/XposedBridge.jar) to CLASSPATH
12-20 04:42:08.848 I/Xposed  ( 5185): Detected ART runtime
12-20 04:42:08.870 I/Xposed  ( 5185): Found Xposed class 'de/robv/android/xposed/XposedBridge', now initializing
12-20 04:42:09.280 I/Xposed  ( 5185): Loading modules from /data/app/com.fkzhang.wechatxposed-1/base.apk
12-20 04:42:09.326 I/Xposed  ( 5185):   Loading class com.fkzhang.wechatxposed.XposedInit
12-20 04:42:09.464 I/Xposed  ( 5185): Loading modules from /data/app/com.gh0u1l5.wechatmagician-2/base.apk
12-20 04:42:09.857 I/Xposed  ( 5185):   Loading class com.gh0u1l5.wechatmagician.backend.WechatHook
12-20 04:42:09.879 I/Xposed  ( 5185):   Loading class com.gh0u1l5.wechatmagician.backend.WechatResHook
12-20 04:42:52.352 I/Xposed  ( 6821): Found wechat version:6.5.23
12-20 04:42:53.948 I/Xposed  ( 6821): com.tencent.mm loading com.fkzhang.wechatxposed
12-20 04:42:57.391 F/art     ( 6821): art/runtime/class_linker.cc:3026] Check failed: c->IsLoaded() 
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423] Runtime aborting...
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423] Aborting thread:
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423] "Thread-14" prio=5 tid=28 Suspended
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=0 dsCount=0 obj=0x32c0da60 self=0xe7e79300
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6970 nice=0 cgrp=bg_non_interactive sched=0/0 handle=0xd21bc920
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=R schedstat=( 110084374 54401303 127 ) utm=11 stm=0 core=2 HZ=100
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xd20ba000-0xd20bc000 stackSize=1038KB
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes= "abort lock"
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 0035b799  /system/lib/libart.so (_ZN3art15DumpNativeStackERNSt3__113basic_ostreamIcNS0_11char_traitsIcEEEEiP12BacktraceMapPKcPNS_9ArtMethodEPv+128)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 0033bb09  /system/lib/libart.so (_ZNK3art6Thread9DumpStackERNSt3__113basic_ostreamIcNS1_11char_traitsIcEEEEbP12BacktraceMap+304)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 0032ea1d  /system/lib/libart.so (_ZNK3art10AbortState10DumpThreadERNSt3__113basic_ostreamIcNS1_11char_traitsIcEEEEPNS_6ThreadE+24)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 0032e867  /system/lib/libart.so (_ZNK3art10AbortState4DumpERNSt3__113basic_ostreamIcNS1_11char_traitsIcEEEE+362)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 00322d51  /system/lib/libart.so (_ZN3art7Runtime5AbortEPKc+92)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 000b6ced  /system/lib/libart.so (_ZN3art10LogMessageD2Ev+1176)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #06 pc 000eb597  /system/lib/libart.so (_ZN3art11ClassLinker19FindArtMethodForIdxEPNS_6mirror8DexCacheEPKNS_7DexFileEjj+262)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #07 pc 000ebcc7  /system/lib/libart.so (_ZN3art11ClassLinker26InvalidateCallersForMethodEPNS_6ThreadEPNS_9ArtMethodE+1182)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #08 pc 000b2b4d  /system/lib/libart.so (_ZN3art9ArtMethod16EnableXposedHookERNS_18ScopedObjectAccessEP8_jobject+448)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #09 pc 00003e9d  /system/lib/libxposed_art.so (_ZN6xposed29XposedBridge_hookMethodNativeEP7_JNIEnvP7_jclassP8_jobjectS5_iS5_+420)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #10 pc 0000ed11  /data/dalvik-cache/arm/system@framework@XposedBridge.jar@classes.dex (???)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   at de.robv.android.xposed.XposedBridge.hookMethodNative(Native method)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   - locked <0x03d9fa4c> (a java.lang.Class<de.robv.android.xposed.XposedBridge>)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   at de.robv.android.xposed.XposedBridge.hookMethod(XposedBridge.java:244)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   at de.robv.android.xposed.XposedHelpers.findAndHookMethod(XposedHelpers.java:187)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.util.PackageUtil.findAndHookMethod(PackageUtil.kt:143)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.plugins.XML.hookXMLParse(XML.kt:32)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatHook$handleLoadWechat$$inlined$tryHook$9.invoke(WechatHook.kt:143)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatHook$handleLoadWechat$$inlined$tryHook$9.invoke(WechatHook.kt:24)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   at kotlin.concurrent.ThreadsKt$thread$thread$1.run(Thread.kt:18)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423] Dumping all threads without appropriate locks held: thread list lock mutator lock
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423] All threads:
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423] DALVIK THREADS (31):
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423] "Thread-14" prio=5 tid=28 Runnable
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=0 dsCount=0 obj=0x32c0da60 self=0xe7e79300
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6970 nice=0 cgrp=bg_non_interactive sched=0/0 handle=0xd21bc920
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=R schedstat=( 187774530 59481201 147 ) utm=14 stm=4 core=0 HZ=100
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xd20ba000-0xd20bc000 stackSize=1038KB
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes= "abort lock" "mutator lock"(exclusive held)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 0035b799  /system/lib/libart.so (_ZN3art15DumpNativeStackERNSt3__113basic_ostreamIcNS0_11char_traitsIcEEEEiP12BacktraceMapPKcPNS_9ArtMethodEPv+128)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 0033bb09  /system/lib/libart.so (_ZNK3art6Thread9DumpStackERNSt3__113basic_ostreamIcNS1_11char_traitsIcEEEEbP12BacktraceMap+304)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 0034dccf  /system/lib/libart.so (_ZN3art14DumpCheckpoint3RunEPNS_6ThreadE+622)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 00347c5d  /system/lib/libart.so (_ZN3art10ThreadList13RunCheckpointEPNS_7ClosureE+336)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 00347957  /system/lib/libart.so (_ZN3art10ThreadList4DumpERNSt3__113basic_ostreamIcNS1_11char_traitsIcEEEEb+586)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 0032e871  /system/lib/libart.so (_ZNK3art10AbortState4DumpERNSt3__113basic_ostreamIcNS1_11char_traitsIcEEEE+372)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #06 pc 00322d51  /system/lib/libart.so (_ZN3art7Runtime5AbortEPKc+92)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #07 pc 000b6ced  /system/lib/libart.so (_ZN3art10LogMessageD2Ev+1176)
12-20 04:42:58.149 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #08 pc 000eb597  /system/lib/libart.so (_ZN3art11ClassLinker19FindArtMethodForIdxEPNS_6mirror8DexCacheEPKNS_7DexFileEjj+262)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #09 pc 000ebcc7  /system/lib/libart.so (_ZN3art11ClassLinker26InvalidateCallersForMethodEPNS_6ThreadEPNS_9ArtMethodE+1182)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #10 pc 000b2b4d  /system/lib/libart.so (_ZN3art9ArtMethod16EnableXposedHookERNS_18ScopedObjectAccessEP8_jobject+448)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #11 pc 00003e9d  /system/lib/libxposed_art.so (_ZN6xposed29XposedBridge_hookMethodNativeEP7_JNIEnvP7_jclassP8_jobjectS5_iS5_+420)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #12 pc 0000ed11  /data/dalvik-cache/arm/system@framework@XposedBridge.jar@classes.dex (Java_de_robv_android_xposed_XposedBridge_hookMethodNative__Ljava_lang_reflect_Member_2Ljava_lang_Class_2ILjava_lang_Object_2+164)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at de.robv.android.xposed.XposedBridge.hookMethodNative(Native method)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   - locked <0x03d9fa4c> (a java.lang.Class<de.robv.android.xposed.XposedBridge>)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at de.robv.android.xposed.XposedBridge.hookMethod(XposedBridge.java:244)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at de.robv.android.xposed.XposedHelpers.findAndHookMethod(XposedHelpers.java:187)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.util.PackageUtil.findAndHookMethod(PackageUtil.kt:143)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.plugins.XML.hookXMLParse(XML.kt:32)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatHook$handleLoadWechat$$inlined$tryHook$9.invoke(WechatHook.kt:143)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatHook$handleLoadWechat$$inlined$tryHook$9.invoke(WechatHook.kt:24)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at kotlin.concurrent.ThreadsKt$thread$thread$1.run(Thread.kt:18)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423] "main" prio=5 tid=1 Native
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=2 dsCount=0 obj=0x74614000 self=0xf4885400
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6821 nice=0 cgrp=bg_non_interactive sched=0/0 handle=0xf759d544
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 1245610654 396365845 706 ) utm=95 stm=29 core=1 HZ=100
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xff6f4000-0xff6f6000 stackSize=8MB
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x64/0x98
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: do_wait+0x1b8/0x230
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: SyS_wait4+0x70/0xe8
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_SyS_wait4+0xb4/0xbc
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: cpu_switch_to+0x48/0x4c
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 0004a758  /system/lib/libc.so (wait4+8)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 0035d099  /system/lib/libart.so (_ZN3art17ExecAndReturnCodeERNSt3__16vectorINS0_12basic_stringIcNS0_11char_traitsIcEENS0_9allocatorIcEEEENS5_IS7_EEEEPS7_+500)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 0035d40d  /system/lib/libart.so (_ZN3art4ExecERNSt3__16vectorINS0_12basic_stringIcNS0_11char_traitsIcEENS0_9allocatorIcEEEENS5_IS7_EEEEPS7_+20)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 002d60d5  /system/lib/libart.so (_ZN3art16OatFileAssistant7Dex2OatERKNSt3__16vectorINS1_12basic_stringIcNS1_11char_traitsIcEENS1_9allocatorIcEEEENS6_IS8_EEEEPS8_+4560)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 002d1f1f  /system/lib/libart.so (_ZN3art16OatFileAssistant15GenerateOatFileENS_14CompilerFilter6FilterEPNSt3__112basic_stringIcNS3_11char_traitsIcEENS3_9allocatorIcEEEE+3230)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 002d890d  /system/lib/libart.so (_ZN3art14OatFileManager19OpenDexFilesFromOatEPKcS2_P8_jobjectP13_jobjectArrayPPKNS_7OatFileEPNSt3__16vectorINSB_12basic_stringIcNSB_11char_traitsIcEENSB_9allocatorIcEEEENSG_ISI_EEEE+304)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #06 pc 002a952b  /system/lib/libart.so (_ZN3artL25DexFile_openDexFileNativeEP7_JNIEnvP7_jclassP8_jstringS5_iP8_jobjectP13_jobjectArray+162)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #07 pc 00424f77  /data/dalvik-cache/arm/system@framework@boot.oat (Java_dalvik_system_DexFile_openDexFileNative__Ljava_lang_String_2Ljava_lang_String_2ILjava_lang_ClassLoader_2_3Ldalvik_system_DexPathList_00024Element_2+178)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at dalvik.system.DexFile.openDexFileNative(Native method)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at dalvik.system.DexFile.openDexFile(DexFile.java:367)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at dalvik.system.DexFile.<init>(DexFile.java:148)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at dalvik.system.DexFile.loadDex(DexFile.java:219)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at dalvik.system.DexPathList.loadDexFile(DexPathList.java:362)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at dalvik.system.DexPathList.makeElements(DexPathList.java:323)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at dalvik.system.DexPathList.makeDexElements(DexPathList.java:263)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at dalvik.system.DexPathList.<init>(DexPathList.java:126)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at dalvik.system.BaseDexClassLoader.<init>(BaseDexClassLoader.java:48)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at dalvik.system.DexClassLoader.<init>(DexClassLoader.java:57)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.fkzhang.xposed.hook.WxCoreLoader.CallMethod(Native method)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   - locked <@addr=0x32c08160> (a java.lang.Class<com.fkzhang.xposed.hook.WxCoreLoader>)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.fkzhang.xposed.hook.WxCoreLoader.ʻ(unavailable:-1)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.fkzhang.xposed.hook.WxCoreLoader.ʾ(unavailable:-1)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.fkzhang.wechatxposed.b.ʻ(unavailable:-1)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.fkzhang.xposed.hook.e$2.run(unavailable:-1)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at android.os.Handler.handleCallback(Handler.java:751)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at android.os.Handler.dispatchMessage(Handler.java:95)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at android.os.Looper.loop(Looper.java:153)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at android.app.ActivityThread.main(ActivityThread.java:6244)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.reflect.Method.invoke!(Native method)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.android.internal.os.ZygoteInit$MethodAndArgsCaller.run(ZygoteInit.java:891)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.android.internal.os.ZygoteInit.main(ZygoteInit.java:781)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   at de.robv.android.xposed.XposedBridge.main(XposedBridge.java:107)
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423] "Jit thread pool worker thread 0" prio=5 tid=2 Native
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=2 dsCount=0 obj=0x32c0d0d0 self=0xed399000
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6823 nice=9 cgrp=bg_non_interactive sched=0/0 handle=0xf3f97920
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 10626984 58007964 67 ) utm=0 stm=1 core=6 HZ=100
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xf3e99000-0xf3e9b000 stackSize=1022KB
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x64/0x98
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait_queue_me+0xcc/0x15c
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait+0xf0/0x220
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: do_futex+0x184/0xae0
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_SyS_futex+0x78/0x15c
12-20 04:42:58.150 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: cpu_switch_to+0x48/0x4c
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 000174e8  /system/lib/libc.so (syscall+28)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 000b88e5  /system/lib/libart.so (_ZN3art17ConditionVariable16WaitHoldingLocksEPNS_6ThreadE+92)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 0034f24b  /system/lib/libart.so (_ZN3art10ThreadPool7GetTaskEPNS_6ThreadE+170)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 0034ea67  /system/lib/libart.so (_ZN3art16ThreadPoolWorker3RunEv+62)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 0034e587  /system/lib/libart.so (_ZN3art16ThreadPoolWorker8CallbackEPv+78)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 000477d3  /system/lib/libc.so (_ZL15__pthread_startPv+22)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #06 pc 00019afd  /system/lib/libc.so (__start_thread+6)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   (no managed stack frames)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423] "Signal Catcher" prio=5 tid=3 WaitingInMainSignalCatcherLoop
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=2 dsCount=0 obj=0x32c0d160 self=0xe924f800
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6824 nice=0 cgrp=bg_non_interactive sched=0/0 handle=0xf3e96920
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 728490 1257031 3 ) utm=0 stm=0 core=4 HZ=100
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xf3d9a000-0xf3d9c000 stackSize=1014KB
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x64/0x98
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: do_sigtimedwait+0x15c/0x240
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_SyS_rt_sigtimedwait+0x94/0x104
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: cpu_switch_to+0x48/0x4c
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 00048fb4  /system/lib/libc.so (__rt_sigtimedwait+12)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 0001df0b  /system/lib/libc.so (sigwait+34)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 00331b0b  /system/lib/libart.so (_ZN3art9SignalSet4WaitEv+22)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 00331705  /system/lib/libart.so (_ZN3art13SignalCatcher13WaitForSignalEPNS_6ThreadERNS_9SignalSetE+168)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 00330425  /system/lib/libart.so (_ZN3art13SignalCatcher3RunEPv+276)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 000477d3  /system/lib/libc.so (_ZL15__pthread_startPv+22)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #06 pc 00019afd  /system/lib/libc.so (__start_thread+6)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   (no managed stack frames)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423] "JDWP" prio=5 tid=4 WaitingInMainDebuggerLoop
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=2 dsCount=0 obj=0x32c0d1f0 self=0xed39a400
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6826 nice=0 cgrp=bg_non_interactive sched=0/0 handle=0xf3d97920
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 958125 0 2 ) utm=0 stm=0 core=4 HZ=100
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xf3c9b000-0xf3c9d000 stackSize=1014KB
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x64/0x98
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: unix_stream_recvmsg+0x4a0/0x6d0
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: sock_recvmsg+0xcc/0xf4
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: ___sys_recvmsg+0x110/0x2dc
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __sys_recvmsg+0x50/0xc0
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_sys_recvmsg+0x10/0x24
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: cpu_switch_to+0x48/0x4c
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 00049ec8  /system/lib/libc.so (recvmsg+8)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 00407749  /system/lib/libart.so (_ZN3art4JDWP12JdwpAdbState15ReceiveClientFdEv+88)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 0040796d  /system/lib/libart.so (_ZN3art4JDWP12JdwpAdbState6AcceptEv+344)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 0024d139  /system/lib/libart.so (_ZN3art4JDWP9JdwpState3RunEv+296)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 0024ca3f  /system/lib/libart.so (_ZN3art4JDWPL15StartJdwpThreadEPv+22)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 000477d3  /system/lib/libc.so (_ZL15__pthread_startPv+22)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #06 pc 00019afd  /system/lib/libc.so (__start_thread+6)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   (no managed stack frames)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423] "FinalizerWatchdogDaemon" prio=5 tid=5 Sleeping
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=2 dsCount=0 obj=0x32c0d280 self=0xe9251600
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6833 nice=0 cgrp=bg_non_interactive sched=0/0 handle=0xf3a8e920
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 876716 9260834 11 ) utm=0 stm=0 core=7 HZ=100
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xf398c000-0xf398e000 stackSize=1038KB
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x8c/0x98
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait_queue_me+0xcc/0x15c
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait+0xf0/0x220
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: do_futex+0x184/0xae0
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_SyS_futex+0x78/0x15c
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: cpu_switch_to+0x48/0x4c
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 000174ec  /system/lib/libc.so (syscall+32)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 000b8d11  /system/lib/libart.so (_ZN3art17ConditionVariable9TimedWaitEPNS_6ThreadExi+108)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 002a4915  /system/lib/libart.so (_ZN3art7Monitor4WaitEPNS_6ThreadExibNS_11ThreadStateE+528)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 002a6157  /system/lib/libart.so (_ZN3art7Monitor4WaitEPNS_6ThreadEPNS_6mirror6ObjectExibNS_11ThreadStateE+258)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 002b9875  /system/lib/libart.so (_ZN3artL12Thread_sleepEP7_JNIEnvP7_jclassP8_jobjectxi+56)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 0008158b  /data/dalvik-cache/arm/system@framework@boot.oat (Java_java_lang_Thread_sleep__Ljava_lang_Object_2JI+126)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Thread.sleep!(Native method)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   - sleeping on <0x00daea95> (a java.lang.Object)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Thread.sleep(Thread.java:371)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   - locked <0x00daea95> (a java.lang.Object)
12-20 04:42:58.151 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Thread.sleep(Thread.java:313)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Daemons$FinalizerWatchdogDaemon.sleepFor(Daemons.java:314)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Daemons$FinalizerWatchdogDaemon.waitForFinalization(Daemons.java:336)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Daemons$FinalizerWatchdogDaemon.run(Daemons.java:253)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Thread.run(Thread.java:761)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423] "HeapTaskDaemon" prio=5 tid=6 Blocked
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=2 dsCount=0 obj=0x32c0d310 self=0xe9251b00
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6834 nice=0 cgrp=bg_non_interactive sched=0/0 handle=0xf3989920
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 1271595746 562833799 586 ) utm=115 stm=12 core=0 HZ=100
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xf3887000-0xf3889000 stackSize=1038KB
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x8c/0x98
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait_queue_me+0xcc/0x15c
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait+0xf0/0x220
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: do_futex+0x184/0xae0
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_SyS_futex+0x78/0x15c
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: cpu_switch_to+0x48/0x4c
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 000174ec  /system/lib/libc.so (syscall+32)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 000b8d11  /system/lib/libart.so (_ZN3art17ConditionVariable9TimedWaitEPNS_6ThreadExi+108)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 001b8fb1  /system/lib/libart.so (_ZN3art2gc13TaskProcessor7GetTaskEPNS_6ThreadE+228)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 001b9661  /system/lib/libart.so (_ZN3art2gc13TaskProcessor11RunAllTasksEPNS_6ThreadE+44)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 0042a737  /data/dalvik-cache/arm/system@framework@boot.oat (Java_dalvik_system_VMRuntime_runHeapTasks__+74)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   at dalvik.system.VMRuntime.runHeapTasks(Native method)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   - waiting to lock an unknown object
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Daemons$HeapTaskDaemon.run(Daemons.java:433)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Thread.run(Thread.java:761)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423] "FinalizerDaemon" prio=5 tid=7 Waiting
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=2 dsCount=0 obj=0x32c0d3a0 self=0xe9251100
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6831 nice=0 cgrp=bg_non_interactive sched=0/0 handle=0xf3b93920
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 8998595 40626561 70 ) utm=0 stm=0 core=1 HZ=100
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xf3a91000-0xf3a93000 stackSize=1038KB
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x8c/0x98
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait_queue_me+0xcc/0x15c
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait+0xf0/0x220
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: do_futex+0x184/0xae0
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_SyS_futex+0x78/0x15c
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: cpu_switch_to+0x48/0x4c
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 000174e8  /system/lib/libc.so (syscall+28)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 000b88e5  /system/lib/libart.so (_ZN3art17ConditionVariable16WaitHoldingLocksEPNS_6ThreadE+92)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 002a4905  /system/lib/libart.so (_ZN3art7Monitor4WaitEPNS_6ThreadExibNS_11ThreadStateE+512)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 002a6157  /system/lib/libart.so (_ZN3art7Monitor4WaitEPNS_6ThreadEPNS_6mirror6ObjectExibNS_11ThreadStateE+258)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 002b4c43  /system/lib/libart.so (_ZN3artL13Object_waitJIEP7_JNIEnvP8_jobjectxi+36)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 00000635  /data/dalvik-cache/arm/system@framework@boot.oat (Java_java_lang_Object_wait__JI+96)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Object.wait!(Native method)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   - waiting on <0x04ed77aa> (a java.lang.Object)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Object.wait(Object.java:407)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.ref.ReferenceQueue.remove(ReferenceQueue.java:188)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   - locked <0x04ed77aa> (a java.lang.Object)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.ref.ReferenceQueue.remove(ReferenceQueue.java:209)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Daemons$FinalizerDaemon.run(Daemons.java:204)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Thread.run(Thread.java:761)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423] "ReferenceQueueDaemon" prio=5 tid=8 Waiting
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=2 dsCount=0 obj=0x32c0d430 self=0xe9250c00
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6830 nice=0 cgrp=bg_non_interactive sched=0/0 handle=0xf3c98920
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 6822607 46622346 61 ) utm=0 stm=0 core=2 HZ=100
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xf3b96000-0xf3b98000 stackSize=1038KB
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x8c/0x98
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait_queue_me+0xcc/0x15c
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait+0xf0/0x220
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: do_futex+0x184/0xae0
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_SyS_futex+0x78/0x15c
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: cpu_switch_to+0x48/0x4c
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 000174e8  /system/lib/libc.so (syscall+28)
12-20 04:42:58.152 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 000b88e5  /system/lib/libart.so (_ZN3art17ConditionVariable16WaitHoldingLocksEPNS_6ThreadE+92)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 002a4905  /system/lib/libart.so (_ZN3art7Monitor4WaitEPNS_6ThreadExibNS_11ThreadStateE+512)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 002a6157  /system/lib/libart.so (_ZN3art7Monitor4WaitEPNS_6ThreadEPNS_6mirror6ObjectExibNS_11ThreadStateE+258)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 002b4c17  /system/lib/libart.so (_ZN3artL11Object_waitEP7_JNIEnvP8_jobject+32)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 00000537  /data/dalvik-cache/arm/system@framework@boot.oat (Java_java_lang_Object_wait__+74)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Object.wait!(Native method)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   - waiting on <0x0b0def9b> (a java.lang.Class<java.lang.ref.ReferenceQueue>)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Daemons$ReferenceQueueDaemon.run(Daemons.java:150)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   - locked <0x0b0def9b> (a java.lang.Class<java.lang.ref.ReferenceQueue>)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Thread.run(Thread.java:761)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423] "Binder:6821_1" prio=5 tid=9 Native
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=2 dsCount=0 obj=0x32c0d4c0 self=0xf4885e00
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6836 nice=0 cgrp=default sched=0/0 handle=0xf3786920
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 4368440 7897760 13 ) utm=0 stm=0 core=7 HZ=100
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xf368a000-0xf368c000 stackSize=1014KB
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x8c/0x98
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: binder_thread_read+0xcf0/0xf84
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: binder_ioctl_write_read+0x1b0/0x294
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: binder_ioctl+0x3c8/0x680
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_sys_ioctl+0xb4/0x1404
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: cpu_switch_to+0x48/0x4c
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 00048d88  /system/lib/libc.so (__ioctl+8)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 0001aaff  /system/lib/libc.so (ioctl+38)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 0003ccd7  /system/lib/libbinder.so (_ZN7android14IPCThreadState14talkWithDriverEb+202)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 0003cded  /system/lib/libbinder.so (_ZN7android14IPCThreadState20getAndExecuteCommandEv+8)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 0003d36b  /system/lib/libbinder.so (_ZN7android14IPCThreadState14joinThreadPoolEb+46)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 0004f939  /system/lib/libbinder.so (???)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #06 pc 0000e415  /system/lib/libutils.so (_ZN7android6Thread11_threadLoopEPv+140)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #07 pc 000672b3  /system/lib/libandroid_runtime.so (_ZN7android14AndroidRuntime15javaThreadShellEPv+82)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #08 pc 000477d3  /system/lib/libc.so (_ZL15__pthread_startPv+22)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #09 pc 00019afd  /system/lib/libc.so (__start_thread+6)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   (no managed stack frames)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423] "Binder:6821_2" prio=5 tid=10 Native
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=2 dsCount=0 obj=0x32c0d550 self=0xed39b800
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6838 nice=0 cgrp=default sched=0/0 handle=0xf3687920
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 3065519 11244428 13 ) utm=0 stm=0 core=0 HZ=100
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xf358b000-0xf358d000 stackSize=1014KB
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x8c/0x98
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait_queue_me+0xcc/0x15c
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait+0xf0/0x220
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: do_futex+0x184/0xae0
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_SyS_futex+0x78/0x15c
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: cpu_switch_to+0x48/0x4c
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 000174e8  /system/lib/libc.so (syscall+28)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 000b88e5  /system/lib/libart.so (_ZN3art17ConditionVariable16WaitHoldingLocksEPNS_6ThreadE+92)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 0026b11b  /system/lib/libart.so (_ZN3art3JNI18CallBooleanMethodVEP7_JNIEnvP8_jobjectP10_jmethodIDSt9__va_list+226)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 0006afe5  /system/lib/libandroid_runtime.so (???)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 000a1dbd  /system/lib/libandroid_runtime.so (???)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 00035a03  /system/lib/libbinder.so (_ZN7android7BBinder8transactEjRKNS_6ParcelEPS1_j+70)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #06 pc 0003d20b  /system/lib/libbinder.so (_ZN7android14IPCThreadState14executeCommandEi+702)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #07 pc 0003ce57  /system/lib/libbinder.so (_ZN7android14IPCThreadState20getAndExecuteCommandEv+114)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #08 pc 0003d36b  /system/lib/libbinder.so (_ZN7android14IPCThreadState14joinThreadPoolEb+46)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #09 pc 0004f939  /system/lib/libbinder.so (???)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #10 pc 0000e415  /system/lib/libutils.so (_ZN7android6Thread11_threadLoopEPv+140)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #11 pc 000672b3  /system/lib/libandroid_runtime.so (_ZN7android14AndroidRuntime15javaThreadShellEPv+82)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #12 pc 000477d3  /system/lib/libc.so (_ZL15__pthread_startPv+22)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #13 pc 00019afd  /system/lib/libc.so (__start_thread+6)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   (no managed stack frames)
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423] "Binder:6821_3" prio=5 tid=11 Native
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=2 dsCount=0 obj=0x32c0d5e0 self=0xe9266500
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6846 nice=0 cgrp=default sched=0/0 handle=0xf3588920
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 1233385 2218072 8 ) utm=0 stm=0 core=0 HZ=100
12-20 04:42:58.153 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xf348c000-0xf348e000 stackSize=1014KB
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x64/0x98
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: binder_thread_read+0xcf0/0xf84
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: binder_ioctl_write_read+0x1b0/0x294
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: binder_ioctl+0x3c8/0x680
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_sys_ioctl+0xb4/0x1404
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: cpu_switch_to+0x48/0x4c
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 00048d88  /system/lib/libc.so (__ioctl+8)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 0001aaff  /system/lib/libc.so (ioctl+38)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 0003ccd7  /system/lib/libbinder.so (_ZN7android14IPCThreadState14talkWithDriverEb+202)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 0003cded  /system/lib/libbinder.so (_ZN7android14IPCThreadState20getAndExecuteCommandEv+8)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 0003d36b  /system/lib/libbinder.so (_ZN7android14IPCThreadState14joinThreadPoolEb+46)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 0004f939  /system/lib/libbinder.so (???)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #06 pc 0000e415  /system/lib/libutils.so (_ZN7android6Thread11_threadLoopEPv+140)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #07 pc 000672b3  /system/lib/libandroid_runtime.so (_ZN7android14AndroidRuntime15javaThreadShellEPv+82)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #08 pc 000477d3  /system/lib/libc.so (_ZL15__pthread_startPv+22)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #09 pc 00019afd  /system/lib/libc.so (__start_thread+6)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   (no managed stack frames)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423] "Profile Saver" prio=5 tid=12 Native
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=2 dsCount=0 obj=0x32c0d670 self=0xed39cc00
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6881 nice=0 cgrp=bg_non_interactive sched=0/0 handle=0xf3489920
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 19336093 5210938 28 ) utm=1 stm=0 core=1 HZ=100
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xf338d000-0xf338f000 stackSize=1014KB
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x64/0x98
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait_queue_me+0xcc/0x15c
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait+0xf0/0x220
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: do_futex+0x184/0xae0
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_SyS_futex+0x78/0x15c
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: cpu_switch_to+0x48/0x4c
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 000174e8  /system/lib/libc.so (syscall+28)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 000b88e5  /system/lib/libart.so (_ZN3art17ConditionVariable16WaitHoldingLocksEPNS_6ThreadE+92)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 0025f01d  /system/lib/libart.so (_ZN3art12ProfileSaver3RunEv+296)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 00260361  /system/lib/libart.so (_ZN3art12ProfileSaver21RunProfileSaverThreadEPv+52)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 000477d3  /system/lib/libc.so (_ZL15__pthread_startPv+22)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 00019afd  /system/lib/libc.so (__start_thread+6)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423]   (no managed stack frames)
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.154 F/art     ( 6821): art/runtime/runtime.cc:423] "pool-1-thread-1" prio=5 tid=13 Waiting
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   at android.os.MessageQueue.next(MessageQueue.java:323)
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   at android.os.Looper.loop(Looper.java:136)
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   at android.os.HandlerThread.run(HandlerThread.java:61)
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423] "MM_Thread_Pool_Free_Handler_Thread#1#MMHandlerThread" prio=5 tid=16 Native
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6953 nice=0 cgrp=bg_non_interactive sched=0/0 handle=0xd2df8920
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 7287816 13016818 50 ) utm=0 stm=0 core=5 HZ=100
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xd2cf6000-0xd2cf8000 stackSize=1038KB
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x8c/0x98
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: SyS_epoll_wait+0x32c/0x434
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_SyS_epoll_pwait+0x128/0x134
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: cpu_switch_to+0x48/0x4c
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 00019ead  /system/lib/libc.so (epoll_pwait+60)
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 00019edd  /system/lib/libc.so (epoll_wait+12)
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 00011d53  /system/lib/libutils.so (_ZN7android6Looper9pollInnerEi+118)
12-20 04:42:58.156 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 00011c4f  /system/lib/libutils.so (_ZN7android6Looper8pollOnceEiPiS1_PPv+26)
12-20 04:42:58.162 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 000b88e5  /system/lib/libart.so (_ZN3art17ConditionVariable16WaitHoldingLocksEPNS_6ThreadE+92)
12-20 04:42:58.162 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 002a34dd  /system/lib/libart.so (_ZN3art7Monitor4LockEPNS_6ThreadE+1916)
12-20 04:42:58.162 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 002a5b93  /system/lib/libart.so (_ZN3art7Monitor12MonitorEnterEPNS_6ThreadEPNS_6mirror6ObjectEb+534)
12-20 04:42:58.162 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 0000eccb  /data/dalvik-cache/arm/system@framework@XposedBridge.jar@classes.dex (Java_de_robv_android_xposed_XposedBridge_hookMethodNative__Ljava_lang_reflect_Member_2Ljava_lang_Class_2ILjava_lang_Object_2+94)
12-20 04:42:58.162 F/art     ( 6821): art/runtime/runtime.cc:423]   - waiting to lock <0x03d9fa4c> (a java.lang.Class<de.robv.android.xposed.XposedBridge>) held by thread 28
12-20 04:42:58.162 F/art     ( 6821): art/runtime/runtime.cc:423]   - locked <0x03d9fa4c> (a java.lang.Class<de.robv.android.xposed.XposedBridge>)
12-20 04:42:58.162 F/art     ( 6821): art/runtime/runtime.cc:423]   at de.robv.android.xposed.XposedBridge.hookMethod(XposedBridge.java:244)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.plugins.SearchBar.hijackSearchBar(SearchBar.kt:93)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatHook$handleLoadWechat$$inlined$tryHook$12.invoke(WechatHook.kt:143)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatHook$handleLoadWechat$$inlined$tryHook$12.invoke(WechatHook.kt:24)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at kotlin.concurrent.ThreadsKt$thread$thread$1.run(Thread.kt:18)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423] "Thread-24" prio=5 tid=38 Suspended
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6981 nice=0 cgrp=bg_non_interactive sched=0/0 handle=0xd177b920
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 80338696 81588701 111 ) utm=8 stm=0 core=2 HZ=100
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xd1679000-0xd167b000 stackSize=1038KB
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait_queue_me+0xcc/0x15c
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait+0xf0/0x220
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: do_futex+0x184/0xae0
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_SyS_futex+0x78/0x15c
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #00 pc 000174e8  /system/lib/libc.so (syscall+28)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 000b88e5  /system/lib/libart.so (_ZN3art17ConditionVariable16WaitHoldingLocksEPNS_6ThreadE+92)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 0033ce1f  /system/lib/libart.so (_ZN3art6Thread16FullSuspendCheckEv+322)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 00400351  /system/lib/libart.so (artTestSuspendFromCode+30)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 000af2bd  /system/lib/libart.so (art_quick_test_suspend+28)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 004060f3  /data/dalvik-cache/arm/data@app@com.gh0u1l5.wechatmagician-2@base.apk@classes.dex (Java_kotlin_jvm_internal_Intrinsics_checkExpressionValueIsNotNull__Ljava_lang_Object_2Ljava_lang_String_2+254)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at kotlin.text.StringsKt__StringsKt.substringBeforeLast$default(Strings.kt:391)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.util.PackageUtil.findClassesFromPackage(PackageUtil.kt:91)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.util.PackageUtil.findClassesFromPackage$default(PackageUtil.kt:85)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatPackage$SnsUploadUI$2.invoke(WechatPackage.kt:220)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatPackage$SnsUploadUI$2.invoke(WechatPackage.kt:30)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatPackage$innerLazy$1.invoke(WechatPackage.kt:54)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   - locked <@addr=0x32c00a18> (a kotlin.SynchronizedLazyImpl)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatPackage.getSnsUploadUI(WechatPackage.kt:-1)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.plugins.SnsForward.cleanTextViewBeforeForwarding(SnsForward.kt:188)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatHook$handleLoadWechat$$inlined$tryHook$19.invoke(WechatHook.kt:143)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatHook$handleLoadWechat$$inlined$tryHook$19.invoke(WechatHook.kt:24)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   at kotlin.concurrent.ThreadsKt$thread$thread$1.run(Thread.kt:18)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423] "Thread-26" prio=5 tid=39 Suspended
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=2 dsCount=0 obj=0x32c39160 self=0xe7ecca00
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6985 nice=0 cgrp=bg_non_interactive sched=0/0 handle=0xd154a920
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   | state=S schedstat=( 116262448 53667184 116 ) utm=9 stm=2 core=2 HZ=100
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xd1448000-0xd144a000 stackSize=1038KB
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x8c/0x98
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait_queue_me+0xcc/0x15c
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait+0xf0/0x220
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: do_futex+0x184/0xae0
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: compat_SyS_futex+0x78/0x15c
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: cpu_switch_to+0x48/0x4c
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #01 pc 000b88e5  /system/lib/libart.so (_ZN3art17ConditionVariable16WaitHoldingLocksEPNS_6ThreadE+92)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 000e5b89  /system/lib/libart.so (_ZN3art11ClassLinker14EnsureResolvedEPNS_6ThreadEPKcPNS_6mirror5ClassE+808)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 000d45c5  /system/lib/libart.so (_ZN3art11ClassLinker11ResolveTypeERKNS_7DexFileEtNS_6HandleINS_6mirror8DexCacheEEENS4_INS5_11ClassLoaderEEE+132)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #04 pc 000db613  /system/lib/libart.so (_ZN3art11ClassLinker11ResolveTypeERKNS_7DexFileEtPNS_6mirror5ClassE+98)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #05 pc 000e8e69  /system/lib/libart.so (_ZN3art11ClassLinker22LoadSuperAndInterfacesENS_6HandleINS_6mirror5ClassEEERKNS_7DexFileE+168)
12-20 04:42:58.163 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #06 pc 000e6947  /system/lib/libart.so (_ZN3art11ClassLinker11DefineClassEPNS_6ThreadEPKcjNS_6HandleINS_6mirror11ClassLoaderEEERKNS_7DexFileERKNS9_8ClassDefE+410)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #09 pc 000d45c5  /system/lib/libart.so (_ZN3art11ClassLinker11ResolveTypeERKNS_7DexFileEtNS_6HandleINS_6mirror8DexCacheEEENS4_INS5_11ClassLoaderEEE+132)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #12 pc 000e6947  /system/lib/libart.so (_ZN3art11ClassLinker11DefineClassEPNS_6ThreadEPKcjNS_6HandleINS_6mirror11ClassLoaderEEERKNS_7DexFileERKNS9_8ClassDefE+410)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #13 pc 000e663d  /system/lib/libart.so (_ZN3art11ClassLinker26FindClassInPathClassLoaderERNS_33ScopedObjectAccessAlreadyRunnableEPNS_6ThreadEPKcjNS_6HandleINS_6mirror11ClassLoaderEEEPPNS8_5ClassE+1016)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #15 pc 002b0fa3  /system/lib/libart.so (_ZN3artL18Class_classForNameEP7_JNIEnvP7_jclassP8_jstringhP8_jobject+182)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #16 pc 0004a4f9  /data/dalvik-cache/arm/system@framework@boot.oat (Java_java_lang_Class_classForName__Ljava_lang_String_2ZLjava_lang_ClassLoader_2+132)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at java.lang.Class.forName(Class.java:400)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at external.org.apache.commons.lang3.ClassUtils.getClass(ClassUtils.java:823)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at de.robv.android.xposed.XposedHelpers.findClass(XposedHelpers.java:69)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.util.PackageUtil.findClassIfExists(PackageUtil.kt:73)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.util.PackageUtil.findClassesFromPackage$default(PackageUtil.kt:85)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatPackage$AddressAdapter$2.invoke(WechatPackage.kt:162)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatPackage$AddressAdapter$2.invoke(WechatPackage.kt:30)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatPackage$innerLazy$1.invoke(WechatPackage.kt:54)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at kotlin.SynchronizedLazyImpl.getValue(Lazy.kt:130)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   - locked <@addr=0x32ce0d00> (a kotlin.SynchronizedLazyImpl)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatPackage.getAddressAdapter(WechatPackage.kt:-1)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatPackage$MMBaseAdapter$2.invoke(WechatPackage.kt:30)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatPackage$innerLazy$1.invoke(WechatPackage.kt:54)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at kotlin.SynchronizedLazyImpl.getValue(Lazy.kt:130)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   - locked <0x02836476> (a kotlin.SynchronizedLazyImpl)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatPackage.getMMBaseAdapter(WechatPackage.kt:-1)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.plugins.SecretFriend.hideSecretFriend(SecretFriend.kt:94)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at com.gh0u1l5.wechatmagician.backend.WechatHook$handleLoadWechat$$inlined$tryHook$21.invoke(WechatHook.kt:143)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   at kotlin.concurrent.ThreadsKt$thread$thread$1.run(Thread.kt:18)
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423] "Thread-25" prio=5 tid=40 Blocked
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   | group="" sCount=2 dsCount=0 obj=0x32c391f0 self=0xe7ecc500
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   | sysTid=6984 nice=0 cgrp=bg_non_interactive sched=0/0 handle=0xd1651920
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   | stack=0xd154f000-0xd1551000 stackSize=1038KB
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   | held mutexes=
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: __switch_to+0x64/0x98
12-20 04:42:58.164 F/art     ( 6821): art/runtime/runtime.cc:423]   kernel: futex_wait_queue_me+0xcc/0x15c
12-20 04:42:58.165 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #02 pc 002a34dd  /system/lib/libart.so (_ZN3art7Monitor4LockEPNS_6ThreadE+1916)
12-20 04:42:58.165 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #03 pc 002a5b93  /system/lib/libart.so (_ZN3art7Monitor12MonitorEnterEPNS_6ThreadEPNS_6mirror6ObjectEb+534)
12-20 04:42:58.169 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #09 pc 0004f939  /system/lib/libbinder.so (???)
12-20 04:42:58.169 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #10 pc 0000e415  /system/lib/libutils.so (_ZN7android6Thread11_threadLoopEPv+140)
12-20 04:42:58.169 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #11 pc 000672b3  /system/lib/libandroid_runtime.so (_ZN7android14AndroidRuntime15javaThreadShellEPv+82)
12-20 04:42:58.169 F/art     ( 6821): art/runtime/runtime.cc:423]   native: #13 pc 00019afd  /system/lib/libc.so (__start_thread+6)
12-20 04:42:58.169 F/art     ( 6821): art/runtime/runtime.cc:423]   (no managed stack frames)
12-20 04:42:58.169 F/art     ( 6821): art/runtime/runtime.cc:423] 
12-20 04:42:58.169 F/art     ( 6821): art/runtime/runtime.cc:423]
Gh0u1L5 commented 6 years ago

The workarounds are quite straightforward: one of the module is using multi-thread when hook the methods; forcing it to do all the works in a single thread or waiting until all the threads finish can solve the problem. Apparently, Xposed will not load next module until the handleLoadPackage / handleInitPackageResources function of current module terminates -- I guess that is why this race condition haven't been noticed before. The second workaround is good enough for me. The only thing is, it doesn't feel right. I suspect that if we keep going without figuring the reason behind this issue, we will pay the price in the future.

Gh0u1L5 commented 6 years ago

Update: Okay I made a stupid mistake, I don't know why but the second workaround does not have any help. The only workaround is forcing all the hooks to be done in a single thread.