Hi We had the following crash report from one of our customers that using our SDK:
Exception Type: EXC_BAD_ACCESS (SIGSEGV)
Exception Subtype: KERN_INVALID_ADDRESS at 0x00009970accfd190 -> 0x00000070accfd190 (possible pointer authentication failure)
Exception Codes: 0x0000000000000001, 0x00009970accfd190
VM Region Info: 0x70accfd190 is not in any region. Bytes after previous region: 2899300753
REGION TYPE START - END [ VSIZE] PRT/MAX SHRMOD REGION DETAIL
commpage (reserved) 1000000000-7000000000 [384.0G] ---/--- SM=NUL ...(unallocated)
--->
UNUSED SPACE AT END
Termination Reason: SIGNAL 11 Segmentation fault: 11
Terminating Process: exc handler [8788]
Triggered by Thread: 5
Any suggestion on the reason why it happens?
I understand that msgSend is related to zombie but from the code I don't see where it might happen and it's only single client that has this issue. How to father investigate it
Incident Identifier: F7138A1A-FEE3-4A40-A3C8-2C549FAA8B63
Hardware Model: iPhone13,4
Process: AppName [8788]
Path: /private/var/containers/Bundle/Application/84C24FCE-F3CD-45D3-BD1D-DBBF8B89D07C/AppName.app/AppName
Identifier: com.nabors.AppName
Version: 2.0.20 (79)
AppStoreTools: 14E221
AppVariant: 1:iPhone13,4:16
Beta: YES
Code Type: ARM-64 (Native)
Role: Foreground
Parent Process: launchd [1]
Coalition: com.nabors.AppName [1072]
Date/Time: 2023-05-24 14:34:43.7479 -0500
Launch Time: 2023-05-24 14:16:09.8823 -0500
OS Version: iPhone OS 16.5 (20F66)
Release Type: User
Baseband Version: 3.70.01
Report Version: 104
Exception Type: EXC_BAD_ACCESS (SIGSEGV)
Exception Subtype: KERN_INVALID_ADDRESS at 0x00009970accfd190 -> 0x00000070accfd190 (possible pointer authentication failure)
Exception Codes: 0x0000000000000001, 0x00009970accfd190
VM Region Info: 0x70accfd190 is not in any region. Bytes after previous region: 2899300753
REGION TYPE START - END [ VSIZE] PRT/MAX SHRMOD REGION DETAIL
commpage (reserved) 1000000000-7000000000 [384.0G] ---/--- SM=NUL ...(unallocated)
--->
UNUSED SPACE AT END
Termination Reason: SIGNAL 11 Segmentation fault: 11
Terminating Process: exc handler [8788]
Triggered by Thread: 5
Thread 0 name:
Thread 0:
0 libdispatch.dylib 0x00000001c4bb7888 dispatch_async + 196 (queue.c:925)
1 Pendo 0x00000001066a47b8 +[IIOLog logWithVerbosity:severity:forground:background:formatArgs:] + 148
2 Pendo 0x00000001066fc8f4 -[PNDGuideDisplayController moveToStep:withAnalytics:transitionDirection:] + 544
3 Pendo 0x000000010669f23c -[PNDDisplayManager nextStepTextureAction:] + 852
4 Pendo 0x000000010669e638 -[PNDDisplayManager PNDFXNextStepAction:] + 536
5 libdispatch.dylib 0x00000001c4bb1320 _dispatch_call_block_and_release + 32 (init.c:1518)
6 libdispatch.dylib 0x00000001c4bb2eac _dispatch_client_callout + 20 (object.m:560)
7 libdispatch.dylib 0x00000001c4bc16a4 _dispatch_main_queue_drain + 928 (queue.c:7794)
8 libdispatch.dylib 0x00000001c4bc12f4 _dispatch_main_queue_callback_4CF + 44 (queue.c:7954)
9 CoreFoundation 0x00000001bd77bc28 __CFRUNLOOP_IS_SERVICING_THE_MAIN_DISPATCH_QUEUE__ + 16 (CFRunLoop.c:1780)
10 CoreFoundation 0x00000001bd75d560 __CFRunLoopRun + 1992 (CFRunLoop.c:3147)
11 CoreFoundation 0x00000001bd7623ec CFRunLoopRunSpecific + 612 (CFRunLoop.c:3418)
12 GraphicsServices 0x00000001f8c2735c GSEventRunModal + 164 (GSEvent.c:2196)
13 UIKitCore 0x00000001bfaef6e8 -[UIApplication _run] + 888 (UIApplication.m:3782)
14 UIKitCore 0x00000001bfaef34c UIApplicationMain + 340 (UIApplication.m:5372)
15 AppName 0x0000000104739070 main + 68 (AppDelegate.swift:14)
16 dyld 0x00000001dcc62dec start + 2220 (dyldMain.cpp:1165)
Thread 1:
0 libsystem_pthread.dylib 0x000000021d494b74 start_wqthread + 0
Thread 2 name:
Thread 2:
0 libsystem_kernel.dylib 0x00000001fc64fc84 mach_msg2_trap + 8
1 libsystem_kernel.dylib 0x00000001fc662b54 mach_msg2_internal + 80 (mach_msg.c:201)
2 libsystem_kernel.dylib 0x00000001fc662e2c mach_msg_overwrite + 540 (mach_msg.c:0)
3 libsystem_kernel.dylib 0x00000001fc6501c8 mach_msg + 24 (mach_msg.c:323)
4 CoreFoundation 0x00000001bd75c024 __CFRunLoopServiceMachPort + 160 (CFRunLoop.c:2622)
5 CoreFoundation 0x00000001bd75d250 __CFRunLoopRun + 1208 (CFRunLoop.c:3005)
6 CoreFoundation 0x00000001bd7623ec CFRunLoopRunSpecific + 612 (CFRunLoop.c:3418)
7 Foundation 0x00000001b79e2fd4 -[NSRunLoop(NSRunLoop) runMode:beforeDate:] + 212 (NSRunLoop.m:373)
8 Foundation 0x00000001b79e2ebc -[NSRunLoop(NSRunLoop) runUntilDate:] + 64 (NSRunLoop.m:420)
9 UIKitCore 0x00000001bfc223fc -[UIEventFetcher threadMain] + 416 (UIEventFetcher.m:1376)
10 Foundation 0x00000001b79fc544 __NSThread__start__ + 716 (NSThread.m:963)
11 libsystem_pthread.dylib 0x000000021d4956b8 _pthread_start + 148 (pthread.c:893)
12 libsystem_pthread.dylib 0x000000021d494b88 thread_start + 8
Thread 3 name:
Thread 3:
0 libsystem_kernel.dylib 0x00000001fc64fc84 mach_msg2_trap + 8
1 libsystem_kernel.dylib 0x00000001fc662b54 mach_msg2_internal + 80 (mach_msg.c:201)
2 libsystem_kernel.dylib 0x00000001fc662e2c mach_msg_overwrite + 540 (mach_msg.c:0)
3 libsystem_kernel.dylib 0x00000001fc6501c8 mach_msg + 24 (mach_msg.c:323)
4 CoreFoundation 0x00000001bd75c024 __CFRunLoopServiceMachPort + 160 (CFRunLoop.c:2622)
5 CoreFoundation 0x00000001bd75d250 __CFRunLoopRun + 1208 (CFRunLoop.c:3005)
6 CoreFoundation 0x00000001bd7623ec CFRunLoopRunSpecific + 612 (CFRunLoop.c:3418)
7 CFNetwork 0x00000001be94d580 +[__CFN_CoreSchedulingSetRunnable _run:] + 392 (CoreSchedulingSet.mm:1562)
8 Foundation 0x00000001b79fc544 __NSThread__start__ + 716 (NSThread.m:963)
9 libsystem_pthread.dylib 0x000000021d4956b8 _pthread_start + 148 (pthread.c:893)
10 libsystem_pthread.dylib 0x000000021d494b88 thread_start + 8
Thread 4 name:
Thread 4:
0 libsystem_kernel.dylib 0x00000001fc650558 __psynch_cvwait + 8
1 libsystem_pthread.dylib 0x000000021d49c078 _pthread_cond_wait + 1232 (pthread_cond.c:862)
2 JavaScriptCore 0x00000001d0f2bfcc scavenger_thread_main + 1428 (pas_scavenger.c:359)
3 libsystem_pthread.dylib 0x000000021d4956b8 _pthread_start + 148 (pthread.c:893)
4 libsystem_pthread.dylib 0x000000021d494b88 thread_start + 8
Thread 5 name:
Thread 5 Crashed:
0 libobjc.A.dylib 0x00000001b6776820 objc_msgSend + 32 (:-1)
1 Pendo 0x000000010669e49c -[PNDDisplayManager PNDFXNextStepAction:] + 124
2 Pendo 0x00000001066473a0 -[PNDFXActionDispatcher dispatchActionsNext:] + 948
3 libdispatch.dylib 0x00000001c4bb1320 _dispatch_call_block_and_release + 32 (init.c:1518)
4 libdispatch.dylib 0x00000001c4bb2eac _dispatch_client_callout + 20 (object.m:560)
5 libdispatch.dylib 0x00000001c4bb6330 _dispatch_continuation_pop + 504 (queue.c:306)
6 libdispatch.dylib 0x00000001c4bb5a30 _dispatch_async_redirect_invoke + 736 (queue.c:830)
7 libdispatch.dylib 0x00000001c4bc4944 _dispatch_root_queue_drain + 396 (queue.c:7051)
8 libdispatch.dylib 0x00000001c4bc5158 _dispatch_worker_thread2 + 164 (queue.c:7119)
9 libsystem_pthread.dylib 0x000000021d494da0 _pthread_wqthread + 228 (pthread.c:2631)
10 libsystem_pthread.dylib 0x000000021d494b7c start_wqthread + 8
Thread 6:
0 libsystem_pthread.dylib 0x000000021d494b74 start_wqthread + 0
Thread 7:
0 libsystem_pthread.dylib 0x000000021d494b74 start_wqthread + 0
Thread 8:
0 libsystem_pthread.dylib 0x000000021d494b74 start_wqthread + 0
Thread 9:
0 libsystem_pthread.dylib 0x000000021d494b74 start_wqthread + 0
Thread 10:
0 libsystem_pthread.dylib 0x000000021d494b74 start_wqthread + 0
Thread 5 crashed with ARM Thread State (64-bit):
x0: 0x00000002830ad180 x1: 0x00000001b97a4e3c x2: 0x00000002830cf0c0 x3: 0x0000000000000003
x4: 0x00000002140003b0 x5: 0x00000000000011a0 x6: 0x0000000280604c40 x7: 0x0000000000000000
x8: 0x0000000106970000 x9: 0x0000000100000000 x10: 0x6ae10002830ad180 x11: 0x00000002830cf0c8
x12: 0x000000020000078c x13: 0x00000001078954e0 x14: 0x00009970accfd180 x15: 0x00009970accfd180
x16: 0x00009970accfd180 x17: 0xd212fc81bd76494c x18: 0x0000000000000000 x19: 0x0000000280604c40
x20: 0x00000002837b04e0 x21: 0x00000002830ad180 x22: 0x00000001baf006e9 x23: 0x00000002830cf0c0
x24: 0x00000002837b04e0 x25: 0x00000001b9497e3c x26: 0x00000001b9497e3c x27: 0x0000000000000008
x28: 0x000000010669e420 fp: 0x000000016ba0eb50 lr: 0x000000010669e49c
sp: 0x000000016ba0eae0 pc: 0x00000001b6776820 cpsr: 0x20001000
esr: 0x92000004 (Data Abort) byte read Translation fault
Binary Images:
0x104734000 - 0x104887fff AppName arm64 <26833237dd0537948ff67577d6cc8bfc> /private/var/containers/Bundle/Application/84C24FCE-F3CD-45D3-BD1D-DBBF8B89D07C/AppName.app/AppName
0x10494c000 - 0x104957fff JWTDecode arm64 /private/var/containers/Bundle/Application/84C24FCE-F3CD-45D3-BD1D-DBBF8B89D07C/AppName.app/Frameworks/JWTDecode.framework/JWTDecode
0x104b0c000 - 0x104b13fff LinearProgressBarMaterial arm64 <386ab0c3bad3339d82f63fa5230dbf50> /private/var/containers/Bundle/Application/84C24FCE-F3CD-45D3-BD1D-DBBF8B89D07C/AppName.app/Frameworks/LinearProgressBarMaterial.framework/LinearProgressBarMaterial
0x104b84000 - 0x104b9ffff SwiftHTTP arm64 <19f52faecf9e3e8f977c2abcb59b7bd1> /private/var/containers/Bundle/Application/84C24FCE-F3CD-45D3-BD1D-DBBF8B89D07C/AppName.app/Frameworks/SwiftHTTP.framework/SwiftHTTP
0x104be0000 - 0x104beffff SwiftKeychainWrapper arm64 <74aa5b7c813830f8b4d364ab962d330d> /private/var/containers/Bundle/Application/84C24FCE-F3CD-45D3-BD1D-DBBF8B89D07C/AppName.app/Frameworks/SwiftKeychainWrapper.framework/SwiftKeychainWrapper
0x104c28000 - 0x104c33fff libobjc-trampolines.dylib arm64e <695a8449aae838b6851cced0b1176f03> /private/preboot/Cryptexes/OS/usr/lib/libobjc-trampolines.dylib
0x104c40000 - 0x104c9bfff Alamofire arm64 <37e940d8dfb83d578ccdc35583c9d760> /private/var/containers/Bundle/Application/84C24FCE-F3CD-45D3-BD1D-DBBF8B89D07C/AppName.app/Frameworks/Alamofire.framework/Alamofire
0x104d74000 - 0x104d97fff Siren arm64 <547356bbbdf33ed1ad1acdda0c903acb> /private/var/containers/Bundle/Application/84C24FCE-F3CD-45D3-BD1D-DBBF8B89D07C/AppName.app/Frameworks/Siren.framework/Siren
0x104f18000 - 0x104fa7fff Algorithms arm64 <97938bc1f96c38f69e276b473ee269f5> /private/var/containers/Bundle/Application/84C24FCE-F3CD-45D3-BD1D-DBBF8B89D07C/AppName.app/Frameworks/Algorithms.framework/Algorithms
0x1050c4000 - 0x10514bfff CryptoSwift arm64 <6d523bfa92ff38ae9d447cc1719f3d95> /private/var/containers/Bundle/Application/84C24FCE-F3CD-45D3-BD1D-DBBF8B89D07C/AppName.app/Frameworks/CryptoSwift.framework/CryptoSwift
0x105460000 - 0x105547fff Charts arm64 /private/var/containers/Bundle/Application/84C24FCE-F3CD-45D3-BD1D-DBBF8B89D07C/AppName.app/Frameworks/Charts.framework/Charts
0x105c8c000 - 0x105de3fff Lottie arm64 <8ce7e0d1c15a3cf0b26fc23d7eba6ad9> /private/var/containers/Bundle/Application/84C24FCE-F3CD-45D3-BD1D-DBBF8B89D07C/AppName.app/Frameworks/Lottie.framework/Lottie
0x10661c000 - 0x1068d7fff Pendo arm64 <1b20df0384423dd19dccedca4b24f087> /private/var/containers/Bundle/Application/84C24FCE-F3CD-45D3-BD1D-DBBF8B89D07C/AppName.app/Frameworks/Pendo.framework/Pendo
0x1b6774000 - 0x1b67b7f9f libobjc.A.dylib arm64e <085a190c621438eaaccb428c3e8afa65> /usr/lib/libobjc.A.dylib
0x1b79a1000 - 0x1b827efff Foundation arm64e <6e76dc9611af3b2eb71e215f9cc6e822> /System/Library/Frameworks/Foundation.framework/Foundation
0x1bd6e3000 - 0x1bdacafff CoreFoundation arm64e <4230c12242e8383bbeecee7b61f8bb61> /System/Library/Frameworks/CoreFoundation.framework/CoreFoundation
0x1be6f4000 - 0x1beabffff CFNetwork arm64e <6aafe7c4f1c43020ad1670591c86d7b0> /System/Library/Frameworks/CFNetwork.framework/CFNetwork
0x1bf752000 - 0x1c0f76fff UIKitCore arm64e /System/Library/PrivateFrameworks/UIKitCore.framework/UIKitCore
0x1c4baf000 - 0x1c4bf5fff libdispatch.dylib arm64e /usr/lib/system/libdispatch.dylib
0x1d0e18000 - 0x1d253efff JavaScriptCore arm64e /System/Library/Frameworks/JavaScriptCore.framework/JavaScriptCore
0x1dcc4d000 - 0x1dccd2a23 dyld arm64e <8a423f3fb318315e99c705ee532e9c0d> /usr/lib/dyld
0x1f8c26000 - 0x1f8c2efff GraphicsServices arm64e /System/Library/PrivateFrameworks/GraphicsServices.framework/GraphicsServices
0x1fc64f000 - 0x1fc686ff7 libsystem_kernel.dylib arm64e <2f78311097393f18a2345fb92512529d> /usr/lib/system/libsystem_kernel.dylib
0x21d494000 - 0x21d49fff3 libsystem_pthread.dylib arm64e <8894310a745f340799f01fd54442561d> /usr/lib/system/libsystem_pthread.dylib
EOF
Replies
0
Boosts
0
Views
1.1k
Participants
1