Filter out NSException in cxa_throw #493
Conversation
|
Please provide a detailed description of the problem. I am particularly interested in the monitors and flags used in the installation. |
| { | ||
| return orig_cxa_throw(thrown_exception, tinfo, dest); | ||
| } | ||
| if (g_cxaSwapEnabled == false) |
There was a problem hiding this comment.
What if cxaSwap enabled?
|
Additionally, even if we hook __cxa_throw, due to the dyld shared cache, some system libraries will still fail, resulting in some C++ stack traces being unobtainable. I am currently working on solving this issue, and once the solution is stable and reliable, I will discuss it with you further. |
|
It looks like |
|
👍🏻 In fact, we've been using fishhook to replace __cxa_throw for quite some time now. Here's a suggestion: don't perform this operation at startup, as it might trigger the watchdog. |
We thought about moving it to a separate thread. Would that help with startup performance? |
|
The approach I'm currently using involves an asynchronous thread with a delay. Fishhook frequently calls dyld's APIs, which use global locks. During the app startup process, loading dyld also involves these locks. Executing fishhook during this process might cause the main thread to wait for these locks. |
|
For some reason, my checks show that accessing symbols and checking memory protection takes up most of the time. 
|
|
Due to time constraints, I am unable to locate the previous watchdog stack trace. From what I remember, this issue has never been reproduced offline, and the lengthy duration is caused by the page fault. |
|
@xuezhulian let's fix PR checks and merge |
| if (tinfo != nullptr && strcmp(tinfo->name(), "NSException") == 0) | ||
| { | ||
| return orig_cxa_throw(thrown_exception, tinfo, dest); | ||
| } | ||
| if (g_cxaSwapEnabled == false) | ||
| { | ||
| captureStackTrace(NULL, NULL, NULL); | ||
| } |
There was a problem hiding this comment.
This return is not allowed in this function.
And I would also suggest just calling captureStackTrace with parameters and keep the NSException check there (to also awoid code duplication).
| if (tinfo != nullptr && strcmp(tinfo->name(), "NSException") == 0) | |
| { | |
| return orig_cxa_throw(thrown_exception, tinfo, dest); | |
| } | |
| if (g_cxaSwapEnabled == false) | |
| { | |
| captureStackTrace(NULL, NULL, NULL); | |
| } | |
| if (g_cxaSwapEnabled == false) | |
| { | |
| captureStackTrace(thrown_exception, tinfo, dest); | |
| } |
|
@GLinnik21 @bamx23 Thank you for your modification suggestions. It seems that the lint failure is due to a timeout, but I haven't found an option to retry. |
|
@xuezhulian thanks for your contribution! |
Co-authored-by: yuencong <yuencong@kuaishou.com> # Conflicts: # Source/KSCrash/Recording/Monitors/KSCrashMonitor_CPPException.cpp
There are numerous C++ exceptions in the iOS system that are caught and then rethrown by the system, or caught and directly terminated. Therefore, obtaining a C++ crash stack trace on iOS is relatively troublesome. A common solution is to hook
__cxa_throw.In KSCrash, there are two ways to implement the hook. When
g_cxaSwapEnabledis true, a technique similar to fishhook or dyld interposing is used to implement the hook. At the same time,__cxa_throwis also overridden. This method only works for the main executable file. When obtaining the stack trace in the hooked__cxa_throwmethod, it is stored in a global variable and is not thread-local. When multiple crashes are triggered, incorrect stack traces may be obtained. Therefore, it is necessary to reduce method reentry for__cxa_throw.For NSException, the stack trace can be obtained through system APIs, and it is not necessary to obtain it in
__cxa_throw. Therefore, this filtering is valuable and also provides some performance optimization.