search

sensepost / objection

📱 objection - runtime mobile exploration
GNU General Public License v3.0
7.5k stars 855 forks source link

ios ui alert app crashed #69

Closed misshuichao closed 3 years ago

misshuichao commented 6 years ago

iOS 8.3 iPhone5 objection latest

默认  21:18:36.000000 +080543 ReportCrash  CrashReporter Key:   9736ad20f68d8d0eff04d656d40e33b4e968e3ce

默认  21:18:36.000000 +080543 ReportCrash  Hardware Model:      iPhone5,2

默认  20:18:36.000000 +0800   ReportCrash  Process:             

默认  21:18:36.000000 +0800   ReportCrash  Path:                /private/var/mobile/Containers/Bundle/Application/F952F6CB-BD47-4AF3-960C-790651A02184/

默认  21:18:36.000000 +0800   ReportCrash  Identifier:          

默认  21:18:36.000000 +0800   ReportCrash  Version:             ???

默认  21:18:36.000000 +0800   ReportCrash  Code Type:           ARM (Native)

默认  20:18:36.000000 +0800   ReportCrash  Parent Process:      launchd [1]

默认  20:18:36.000000 +080543 ReportCrash  Date/Time:           2018-04-25 21:18:36.506 +0800

默认  21:18:36.000000 +080543 ReportCrash  Launch Time:         2018-04-25 21:18:05.877 +0800

默认  21:18:36.000000 +080543 ReportCrash  OS Version:          iOS 8.3 (12F70)

默认  21:18:36.000000 +080543 ReportCrash  Report Version:      105

默认  21:18:36.000000 +080543 ReportCrash  Exception Type:  EXC_BAD_ACCESS (SIGABRT)

默认  21:18:36.000000 +080543 ReportCrash  Exception Subtype: KERN_INVALID_ADDRESS at 0x0000000c

默认  21:18:36.000000 +080543 ReportCrash  Triggered by Thread:  0

默认  21:18:36.000000 +080543 ReportCrash  Last Exception Backtrace:

默认  21:18:36.000000 +080543 ReportCrash  (0x26085fea 0x34337c86 0x26085f30 0x80968c 0x154d266 0x34a08876 0x10a1cc9e 0x10a1cc9e 0x10a209ba 0x1092f058 0x109320b4 0x29a6f78e 0x299b002e 0x299b21be 0x297eb36a 0x2970ed0c 0x2970e928 0x2970e83a 0x290ff9cc 0x348a22ca 0x348a5d2a 0x2604b604 0x26049d04 0x25f961fc 0x25f9600e 0x2d8751fc 0x2973aa54 0x3ca87c 0x348c3aaa)

默认  21:18:36.000000 +080543 ReportCrash  Thread 0 name:  Dispatch queue: com.apple.main-thread
leonjza commented 6 years ago

Thanks for the report. I have noticed this happen to me too and think I can reproduce this locally.

rustymagnet3000 commented 6 years ago

Yeah, me too. I see the crash consistently with 1.4.1. The alert shows fine but then crashes.

leonjza commented 6 years ago

I still need to fix this, but for informations sake, the backtrace after a second invocation at the moment is: 

(lldb) bt
* thread #1, queue = 'com.apple.main-thread', stop reason = EXC_BAD_ACCESS (code=1, address=0x0)
    frame #0: 0x000000010cd13997 libobjc.A.dylib`objc_msgSend + 23
    frame #1: 0x000000010df886eb UIKit`-[UIAlertController _clearActionHandlers] + 246
    frame #2: 0x000000010df86b0a UIKit`-[UIAlertController dealloc] + 420
    frame #3: 0x000000010dd399cc UIKit`-[UIPresentationController .cxx_destruct] + 313
    frame #4: 0x000000010ccfb920 libobjc.A.dylib`object_cxxDestructFromClass(objc_object*, objc_class*) + 127
    frame #5: 0x000000010cd07502 libobjc.A.dylib`objc_destructInstance + 124
    frame #6: 0x000000010cd07539 libobjc.A.dylib`object_dispose + 22
    frame #7: 0x000000010dd34fdd UIKit`-[UIPresentationController dealloc] + 55
    frame #8: 0x000000010cd11a6e libobjc.A.dylib`objc_object::sidetable_release(bool) + 202
    frame #9: 0x000000010dd7d32e UIKit`-[UIViewController _didFinishDismissTransition] + 563
    frame #10: 0x000000010dd30975 UIKit`-[UIPresentationController transitionDidFinish:] + 533
    frame #11: 0x000000010dd34b12 UIKit`__56-[UIPresentationController runTransitionForCurrentState]_block_invoke.436 + 183
    frame #12: 0x000000010e9183b4 UIKit`-[_UIViewControllerTransitionContext completeTransition:] + 102
    frame #13: 0x000000010dc810ad UIKit`-[UIViewAnimationBlockDelegate _didEndBlockAnimation:finished:context:] + 859
    frame #14: 0x000000010dc53ea9 UIKit`-[UIViewAnimationState sendDelegateAnimationDidStop:finished:] + 343
    frame #15: 0x000000010dc544ec UIKit`-[UIViewAnimationState animationDidStop:finished:] + 293
    frame #16: 0x000000010dc545a0 UIKit`-[UIViewAnimationState animationDidStop:finished:] + 473
    frame #17: 0x00000001150bc5e5 QuartzCore`CA::Layer::run_animation_callbacks(void*) + 323
    frame #18: 0x000000010fe427ec libdispatch.dylib`_dispatch_client_callout + 8
    frame #19: 0x000000010fe4d8cf libdispatch.dylib`_dispatch_main_queue_callback_4CF + 628
    frame #20: 0x000000010d62ac99 CoreFoundation`__CFRUNLOOP_IS_SERVICING_THE_MAIN_DISPATCH_QUEUE__ + 9
    frame #21: 0x000000010d5eeea6 CoreFoundation`__CFRunLoopRun + 2342
    frame #22: 0x000000010d5ee30b CoreFoundation`CFRunLoopRunSpecific + 635
    frame #23: 0x00000001137cda73 GraphicsServices`GSEventRunModal + 62
    frame #24: 0x000000010dbbf057 UIKit`UIApplicationMain + 159
  * frame #25: 0x000000010b0852ff PewPew`main(argc=1, argv=0x00007ffee4b86070) at main.m:14
    frame #26: 0x000000010febf955 libdyld.dylib`start + 1
(lldb)
leonjza commented 3 years ago

Seems to be fixed since this report for me.