New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Memory.scan gives access violation on Android x64 #1273
Comments
I was following the tutorial on https://blog.nviso.eu/2019/08/13/intercepting-traffic-from-android-flutter-applications/ and when it comes to memory scanning I get an access violation. How to reproduce:
Error: access violation accessing 0x7f64fa3000 Note, that it is also a flutter application. Please try to fix this. EDIT: Just tried it on a non flutter app. Same problem! access violation |
@TheDauntless I just figured out that it is your tutorial. What version of Frida were you using back then? |
@T3rm1 That blogpost is only for ARMv7 (32 bit) devices though. I'm writing an update for ARM64, but you can do it based on offset for now. You can use binwalk to find the correct offset. This is the pattern for ARM64:
|
@T3rm1 Could you please try building Frida from git? This should be working properly now, so would be good to get it confirmed before the upcoming release. |
@oleavr I tried building it on macos but I get compile errors. Unfortunately I don't have the time and knowledge to fix these. I can only try it once you have a new release. |
@oleavr Maybe consider pushing a hotfix. Not even Interceptor.attach works. No matter which app. I would be surprised if it is only me. It seems that these two core functions don't work at all with the latest release from March 30th. |
@oleavr any idea what the commit was which would have fixed the issue? I'm running into similar things, but it's hard to know the cause and I'm not finding any commits... |
@strazzere Can't recall what that was. But one pitfall that comes to mind is that this will fail on execute-only ranges – to deal with those the user may call |
Makes sense, I've been seeing issues lately with aarch64 binaries and the
Though again, it's difficult to figure out the exact cause and reasoning behind these. I'll keep digging. |
By the way, unsure if this was the original cause for the error experienced by OP, but in my case on Android 10 - I was running into a new Android ALSR issue. I've described it and linked the details in this thread https://twitter.com/timstrazz/status/1309374702230450176 - and how I subverted it in the linker. |
This is using deprecated API. Use
This is a bad idea as |
When running the following script on an x64 Flutter app, I get an access violation error:
Error:
Frida-server version: Frida 12.8.20 (latest)
I have the same behavior on a different phone.
Demo app:
demo.zip
The text was updated successfully, but these errors were encountered: