HI
I found that I could not hook the callback function of the '_dyld_register_func_for_add_image', and some system api such as 'exit' and 'open'. The process will crashe when it be linked by dyld，it is ok on ios 10. The crash log is as follows：

Thread 0 Crashed:
0 libsystem_kernel.dylib 0x00000001833782e8 0x183356000 + 140008
1 libsystem_pthread.dylib 0x000000018348d2f8 0x18348a000 + 13048
2 libsystem_c.dylib 0x00000001832e6fbc 0x183284000 + 405436
3 libsubstitute.0.dylib 0x000000010d0846dc 0x10d074000 + 67292

4 hookatt.dylib 0x000000010ecefb38 0x10ece8000 + 31544

5 dyld 0x000000010c3eba64 0x10c3d4000 + 96868

6 dyld 0x000000010c3ebca8 0x10c3d4000 + 97448

7 dyld 0x000000010c3e6d00 0x10c3d4000 + 77056

8 dyld 0x000000010c3e5d40 0x10c3d4000 + 73024

9 dyld 0x000000010c3e5dfc 0x10c3d4000 + 73212
10 dyld 0x000000010c3d979c 0x10c3d4000 + 22428
11 dyld 0x000000010c3e0324 0x10c3d4000 + 49956
12 libdyld.dylib 0x00000001832494d4<\M-b\M^@\M-&>

• iOS version:11.2.6
• iDevice model:iPhone 6
• electra version:1.3.2
  Thanks!

I recovery the device and re-jailbreak it by Unc0ver. Then my same code run correctly. Personally,I think it's the fault of the libsubstitute. I suggest the developers to use Unc0ver. Substrate is more stable!!!