Fix possible crash or deadlock arising from calling notify() from multiple queues concurrently #401
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Removed inlining/static to be compatible with C++ handler
Allows the system to have multiple crash report paths for different contexts
Allows each report generator to use a different context if needed
While not async signal safe, this interface is suitable for generating IDs on the fly when calling reportUserException().
This change allows each notify request to specify its own crash ID and file path, avoiding cases where two notify calls either reuse the same file path or stomp on each other when trying to set the "next" ID/path.
This avoids multiple threads from notify() stomping on this file
Closed
tomlongridge
approved these changes
Aug 13, 2019
| @interface KSCrashIdentifierTests : XCTestCase | ||
| @end | ||
|
|
||
| @implementation KSCrashIdentifierTests |
There was a problem hiding this comment.
Can we include a test for bsg_kscrash_generate_report_path?
There was a problem hiding this comment.
Yeah I should - it turned out to be a bit tricky to stub the file store but I've added a task to improve coverage here.
|
When will a new release be ready? Thanks. |
|
Hi @nkavian! Doing a release now, should be available soon. |
|
Thanks, confirming the latest release fixed my issue! |
ghazel
pushed a commit
to clostra/bugsnag-cocoa
that referenced
this pull request
Aug 12, 2020
In the new Xcode 10 build system, Swift object register values have the top bit used as a flag. This change strips the flag while not losing anything relevant to us in our quest to see error messages for assertion failures. This technique does not capture messages which are less than 16 characters, as short strings are stored as raw char arrays on the stack rather than being allocated. (See WWDC 2018 bugsnag#401 for more info on new string optimizations) While it is possible to check for char arrays as well as pointers when searching for notable address values, sweeping up local variables has a likely chance of capturing unintended data as well from the surrounding code, some of which may be sensitive. It is also not guaranteed that the value would still be on the stack after the message is logged, so it is possible to get only unrelated string values as the message. In the current Swift stdlib, the following messages passed to fatalError, preconditionFailure, and precondition (and their internal func counterparts) are less than 16 characters: * empty string * `unavailable` * `not implemented` * `abstract method` * `unknown value` * `invalid count` (where a dictionary contains < 0 items(?)) * `invalid index` (where a dictionary ceases to be a dictionary) * `don't touch me` (from SpriteKit) * `close() failed` (from the private Subprocess implementation) The vast majority have more meaningful messages. Reference: * https://asciiwwdc.com/2018/sessions/401 Fixes bugsnag#318
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Goal
Its possible that when
notify()is called concurrently from multiple queues, that a crash occurs when caching/resetting crash state. This changeset solves the underlying issues by not sharing state between calls tonotify()and isolating calls to suspend threads (for backtrace collection).Reproduction case
Fixes #399
Changeset
The changes can be divided into four parts:
notify()several times from different concurrent queuesnotify()notify()callsThe easiest way to view the changeset is one commit at a time, since each chunk can be evaluated independently.
Tests