call gum_stalker_follow_me() function will crash #1080
Description
iOS 16.5
As long as the gum_stalker_follow_me() function is called, it will crash
(lldb) bt
- thread Unable to handle lowercase thread state indicator on Linux #3, queue = 'NSOperationQueue 0x1269e4c50 (QOS: UNSPECIFIED)', stop reason = signal SIGABRT
frame #0: 0x00000001dc756558 libsystem_kernel.dylib__pthread_kill + 8 frame #1: 0x00000001fd59f118 libsystem_pthread.dylibpthread_kill + 268
frame Add gumpp-static project #2: 0x00000001a4d13178 libsystem_c.dylib`abort + 180- frame Unable to handle lowercase thread state indicator on Linux #3: 0x000000012a8f26b0 ios_stalker.dylib
gum_mprotect(address=<unavailable>, size=<unavailable>, prot=<unavailable>) at gummemory.c:1284:5 [opt] frame #4: 0x000000012a905f80 ios_stalker.dylibgum_exec_ctx_ensure_helper_reachable(ctx=0x0000000132e00000, code_slab=0x0000000132e08000, slow_slab=, cw=0x0000000132e00020, helper_ptr=0x0000000132e00210, write=(ios_stalker.dylibgum_exec_ctx_write_minimal_epilog_helper at gumstalker-arm64.c:3249:3)) at gumstalker-arm64.c:3597:3 [opt] frame #5: 0x000000012a905ec0 ios_stalker.dylibgum_exec_ctx_ensure_inline_helpers_reachable(ctx=0x0000000132e00000) at gumstalker-arm64.c:3225:13 [opt]
frame Frida doesn't works with ASAN #6: 0x000000012a903704 ios_stalker.dylibgum_stalker_create_exec_ctx [inlined] gum_exec_ctx_new(stalker=0x000000012cff0800, thread_id=5891, transformer=<unavailable>, sink=<unavailable>) at gumstalker-arm64.c:2212:3 [opt] frame #7: 0x000000012a903578 ios_stalker.dylibgum_stalker_create_exec_ctx(self=0x000000012cff0800, thread_id=5891, transformer=, sink=) at gumstalker-arm64.c:2012:22 [opt]
frame Add console.log on client side #8: 0x000000012a9034e8 ios_stalker.dylib_gum_stalker_do_follow_me(self=0x000000012cff0800, transformer=<unavailable>, sink=<unavailable>, ret_addr=0x000000012a8e43a4) at gumstalker-arm64.c:1286:9 [opt] frame #9: 0x000000012a907edc ios_stalker.dylibgum_stalker_follow_me + 16
frame Implement support for stepping #10: 0x000000012a8e43a4 ios_stalker.dylibhook_on_enter(ic=0x0000000132290610, user_data=0x00000002802370e4) at ios_stalker.m:62:9 frame #11: 0x000000012a8edc80 ios_stalker.dylib_gum_function_context_begin_invocation(function_ctx=0x000000012cff2210, cpu_context=0x000000016f367690, caller_ret_addr=0x000000016f367798, next_hop=0x000000016f3679a0) at guminterceptor.c:1442:9 [opt]
frame Fix reading memory from a subregion in Darwin #12: 0x0000000126dbc0b0
- frame Unable to handle lowercase thread state indicator on Linux #3: 0x000000012a8f26b0 ios_stalker.dylib