How a Facebook Bug Took Down Spotify, TikTok, and Other Major iOS Apps

A little after 6 pm ET on Wednesday, the system started blinking red for iOS developer Clay Jones. Like many devs, Jones uses a Google product called Crashlytics to keep tabs on when his app stops working. Out of nowhere, it registered tens of thousands of crashes. It also pointed to the cause: a chunk of code that Jones’ app incorporates to let people log in with their Facebook accounts.

By 6:30 pm, Jones had filed a bug report about the flaw in Facebook’s software development kit on GitHub, the code repository. He provided succinct answers to a standardized form:

What do you want to achieve? We are using FBSDK in our app as an authentication option.

What do you expect to happen? I would like FBSDK to not crash.

He wasn’t alone. According to widespread reports and the web monitoring service Down Detector, prominent iOS apps like TikTok, Spotify, Pinterest, Venmo, and more experienced issues on Wednesday. Many users found that they crashed whenever they tried to open the apps, whether or not they used Facebook to log in. “Please move slower and break fewer things,” wrote one GitHub commenter. “Thank you.”

i thought about this
check this link right here now
his explanation
why not try these out
more info here
official site
look at this site
check it out
visit
click for more info
check these guys out
view publisher site
Get More Information
you can try this out
see this
learn this here now
directory
why not find out more
navigate to these guys
see this here
check my site
anchor
other
additional hints
look at this web-site
their explanation
internet
find more
Read More Here
here
Visit Website
hop over to this website
click
her latest blog
This Site
read review
try here
Clicking Here
page
read this post here
More Bonuses
recommended you read
go to this web-site
this
check that
Go Here
More hints
you could check here
Continued
More Help
try this
you could try here
website here
useful source
read the full info here
Discover More
click resources
over here
like this
Learn More
site web
navigate to this web-site
pop over to this website
Get the facts
our website
great site
try this out
visit the website
you could look here
content
go to this site
website link
read this
official statement
reference
check out the post right here
additional info
my link
additional reading
important source

“Yesterday, a new release of Facebook included a change that triggered crashes in some apps using the Facebook iOS SDK for some users. We identified the issue quickly and resolved it,” Facebook said in a statement.

That change was quite small, given its outsized impact. “It was something like a server value—which was supposed to provide a dictionary of things—was changed to providing a simple YES/NO instead, without warning,” says iOS developer Steven Troughton-Smith. “A change that simple can break an app that isn’t prepared for it.”

The use of SDKs, not just from Facebook but in general, is commonplace in part because of the convenience. In the same way that you might assemble a car using parts from other manufacturers with particular expertise, developers build apps with outside code, especially from ubiquitous online companies like Facebook and Google. An SDK means that much less work you have to do yourself.

“Pretty much all these apps—Pinterest, Spotify, a lot of the big ones—use the Facebook SDK for the login button,” says Jones. “You’ll see ‘Login With Facebook.’ Everyone has it, super common, great for sign-up rates because it’s just a one-click thing.”

And lots of apps that don’t use Login With Facebook still use the SDK, which is why the issue Wednesday was so widespread. “It is extremely common for apps to connect to Facebook, regardless of whether they use a Facebook-related feature, mainly for ad attribution,” says iOS security researcher Will Strafach, whose Guardian Firewall app automatically blocks online trackers. “It’s something people are not made aware of, and what’s more frustrating is that attempting to block it will break things a user may actually want, such as Login With Facebook.”

But for developers, using an SDK also means ceding control when things go wrong, both in identifying the problem and resolving it. Even though Crashlytics identified the problematic code right away, those details were of little help to Jones and others. “It’s Facebook’s code,” says Jones. “It’s not like it’s something we wrote or something we know a whole lot about. You can try to parse out what’s going on by how the code is written, but it’s not our code.”

Facebook’s not the only company to experience this specific category of woe. In late April, the Google Maps SDK had an issue that similarly caused apps that use it to crash on opening. Wednesday’s incident is worth flagging, though, not only because of its widespread impact but because it serves as a reminder of just how far Facebook’s reach extends. Not only that, but several developers commenting in Jones’ GitHub bug report noted that the crashes seemed to indicate that the Facebook SDK was sending information back to the company’s servers every time the app opened, activity that they—and almost certainly their users—found surprising at best.