output not saved to file when remote?

[maceip]

$jnitrace -l libEncryptor.so -l libsscronet.so -l libttcrypto.so -l libttmain.so com.zhiliaoapp.musically -R 192.168.86.65:6666 --output jnitrace.log -b accurate --ignore-vm

$cat jnitrace.log
[]%

However, the trace data is printing to stdout. Am I doing something wrong?

device: arm64-v8a, android 8.1.0
frida: 14.2.13
jnitrace: 3.2.0

[chame1eon]

Good spot, this was a bug with the latest version of jnitrace. Thank you very much for reporting.

I have pushed a new version (3.2.1), please let me know if updating does not work. You can also try rolling back to 3.1.0 as that version should work too.

[maceip]

I upgraded to 3.2.1 (on mac osx big sur 11.0.1 x86) and it's still not writing to output file.

Also i'm unable to get the tracer to do much other than what looks like trace everything.

i'm looking only for traces in libttboringssl.so, but check the output below. for context libkeva.so is what looks like an obfuscator lib/anti-trace/anti-debug lib.

$jnitrace -l 'libttboringssl.so' com.zhiliaoapp.musically -R 192.168.86.65:6666
Tracing. Press any key to quit...
           /* TID 19007 */
   1019 ms [+] JavaVM->GetEnv
   1019 ms |- JavaVM*          : 0x78258a8200
   1019 ms |- void**           : 0x7fee618be0
   1019 ms |:     0x78258cb1c0
   1019 ms |- jint             : 65542
   1019 ms |= jint             : 0

   1019 ms ----------------------------Backtrace----------------------------
   1019 ms |->       0x78075cfd18: JNI_OnLoad+0x44 (libkeva.so:0x78075c2000)
   1019 ms |->       0x78075cfd18: JNI_OnLoad+0x44 (libkeva.so:0x78075c2000)


           /* TID 19007 */
   1333 ms [+] JNIEnv->FindClass
   1333 ms |- JNIEnv*          : 0x78258cb1c0
   1333 ms |- char*            : 0x78075e0e24
   1333 ms |:     com/bytedance/keva/KevaImpl
   1333 ms |= jclass           : 0x81    { com/bytedance/keva/KevaImpl }

   1333 ms ----------------------------Backtrace----------------------------
   1333 ms |->       0x78075cfd3c: JNI_OnLoad+0x68 (libkeva.so:0x78075c2000)
   1333 ms |->       0x78075cfd3c: JNI_OnLoad+0x68 (libkeva.so:0x78075c2000)


           /* TID 19007 */
   1340 ms [+] JNIEnv->GetMethodID
   1340 ms |- JNIEnv*          : 0x78258cb1c0
   1340 ms |- jclass           : 0x81    { com/bytedance/keva/KevaImpl }
   1340 ms |- char*            : 0x78075e0e40
   1340 ms |:     addMapIntWhenLoading
   1340 ms |- char*            : 0x78075e0e55
   1340 ms |:     (Ljava/lang/String;IJ)V
   1340 ms |= jmethodID        : 0x9bbc2778    { addMapIntWhenLoading(Ljava/lang/String;IJ)V }

   1340 ms ----------------------------Backtrace----------------------------
   1340 ms |->       0x78075cfd68: JNI_OnLoad+0x94 (libkeva.so:0x78075c2000)
   1340 ms |->       0x78075cfd68: JNI_OnLoad+0x94 (libkeva.so:0x78075c2000)

[maceip]

ah scratch that, i was tailing the log file, which was empty. However, jnitrace does write to it when it exits. So the log output thing is fixed.

Tracing specified native libs is still not working for me.

[chame1eon]

Glad that solved the problem. I'll take a look and see if I can work out why the lib in your command args is not being traced.

[maceip]

It is tracing it (I think), but the problem is that it's also tracing everything else

…

On Sun, Feb 28, 2021, 4:02 PM chame1eon ***@***.***> wrote: Glad that solved the problem. I'll take a look and see if I can work out why the lib in your command args is not being traced. — You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub <#29 (comment)>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAGEMEAGK7MO5IXFWSVPBKDTBKOPFANCNFSM4YIXY24A> .

[maceip]

gonna close this and open a new issue