wine-bugs April 2016

wine-bugs@winehq.org

1 participants
7650 discussions

[Bug 37556] New: String compare functions with only one length argument can lead to page faults.
by wine-bugs＠winehq.org 12 Apr '16

12 Apr '16

https://bugs.winehq.org/show_bug.cgi?id=37556 Bug ID: 37556 Summary: String compare functions with only one length argument can lead to page faults. Product: Wine Version: 1.7.31 Hardware: x86 OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: -unknown Assignee: wine-bugs(a)winehq.org Reporter: sebastian(a)fds-team.de Distribution: --- This issue was discovered with Adobe Flash, but is not limited to this single application. Moreover there are much more ways to trigger this issue than just the way described below. Important parts of the stacktrace: --- snip --- Unhandled exception: page fault on read access to 0x077ca000 in 32-bit code (0xf7563773). [...] Backtrace: =>0 0xf7563773 real_length+0x1f(str=".SOL", len=0xf) [libs/wine/sortkey.c:329] in libwine.so.1 (0x0093cf98) 1 0xf7563791 wine_compare_string+0x10(flags=0x1, str1=".SOL", len1=0xf, str2="\\?\GLOBALROOT\", len2=0xf) [libs/wine/sortkey.c:338] in libwine.so.1 (0x0093cfb8) 2 0x7b84f65f CompareStringEx+0x1f0(locale=..., flags=..., str1=..., len1=..., str2=..., len2=..., version=..., reserved=..., lParam=...) [dlls/kernel32/locale.c:3312] in kernel32 (0x0093d028) 3 0x7b84f45f CompareStringW+0x3a(lcid=..., flags=..., str1=..., len1=..., str2=..., len2=...) [dlls/kernel32/locale.c:3271] in kernel32 (0x0093d078) 4 0x7dd949a3 StrCmpNIW+0x9f(lpszStr=..., lpszComp=..., iLen=...) [dlls/shlwapi/string.c:418] in shlwapi (0x0093d0d8) [...] 0xf7563773 real_length+0x1f [libs/wine/sortkey.c:329] in libwine.so.1: movzwl 0x0(%eax),%eax 329 while (len && !str[len - 1]) len--; --- snip --- What happens here is that StrCmpNIW is called with two strings. --- snip --- INT WINAPI StrCmpNIW(LPCWSTR lpszStr, LPCWSTR lpszComp, int iLen) { TRACE("(%s,%s,%i)\n", debugstr_w(lpszStr), debugstr_w(lpszComp), iLen); return CompareStringW(GetThreadLocale(), NORM_IGNORECASE, lpszStr, iLen, lpszComp, iLen) - CSTR_EQUAL; } --- snip -- The exact length of both strings is unknown in this function, so wine passes "iLen" for both strings to CompareStringW. CompareStringW assumes that memory regions are valid, and then tries to access them in real_length(..). In this case however unfortunately one of the strings is very close to a page boundary, so accessing the whole memory block leads to a page fault. To fix this issue it is either necessary to: * Change all places where CompareStringW(..) is called with 'invalid' length values. * Add exception handlers to real_length(..). * Move real_length(..) from the beginning of CompareStringW(..) somewhere to the end, so that the function aborts on the first non-matching byte. I am opening this issue as a bug report since it needs further investigation, and I am not sure yet whats the right way to fix it. -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 12

[Bug 33988] New: Star Wars: The Force Unleashed II - Crashes with a page fault
by wine-bugs＠winehq.org 12 Apr '16

12 Apr '16

http://bugs.winehq.org/show_bug.cgi?id=33988 Bug #: 33988 Summary: Star Wars: The Force Unleashed II - Crashes with a page fault Product: Wine Version: 1.6-rc4 Platform: x86-64 OS/Version: Linux Status: UNCONFIRMED Severity: blocker Priority: P2 Component: -unknown AssignedTo: wine-bugs(a)winehq.org ReportedBy: tomas191191(a)gmail.com Classification: Unclassified Created attachment 45159 --> http://bugs.winehq.org/attachment.cgi?id=45159 Program Error Details This game installs and starts perfectly from Steam (although it requires the same Virtual Memory fix as its predecessor). When I attempt to start a new game, it crashes with a page fault. I used "d3dx9_43" when trying to play this game. -- Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email Do not reply to this email, post in Bugzilla using the above URL to reply. ------- You are receiving this mail because: ------- You are watching all bug changes.

1 21

[Bug 40222] New: IMalloc(Spy)::Free nullptr
by wine-bugs＠winehq.org 12 Apr '16

12 Apr '16

https://bugs.winehq.org/show_bug.cgi?id=40222 Bug ID: 40222 Summary: IMalloc(Spy)::Free nullptr Product: Wine Version: unspecified Hardware: x86 OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: ole32 Assignee: wine-bugs(a)winehq.org Reporter: learn0more+wine(a)gmail.com Distribution: --- Created attachment 53739 --> https://bugs.winehq.org/attachment.cgi?id=53739 the binary triggering the bug. Calling IMalloc::Free with a nullptr should not invoke the IMallocSpy. (IMalloc_fnFree) Bug encountered in ReactOS (Where the IMallocSpy implementation from wine is used). See: https://jira.reactos.org/browse/CORE-10903 Also verified on wine. Attached binary invokes the invalid behavior on ReactOS and Wine, and not on Windows. (Run: `wine atl_apitest.exe CComHeapPtr`) Patchbot run: https://testbot.winehq.org/JobDetails.pl?Key=20921 -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 10

[Bug 40204] New: [REGRESSION] Steam stopped working as of wine 1.9.4
by wine-bugs＠winehq.org 12 Apr '16

12 Apr '16

https://bugs.winehq.org/show_bug.cgi?id=40204 Bug ID: 40204 Summary: [REGRESSION] Steam stopped working as of wine 1.9.4 Product: Wine Version: 1.9.4 Hardware: x86-64 OS: Linux Status: UNCONFIRMED Severity: major Priority: P2 Component: -unknown Assignee: wine-bugs(a)winehq.org Reporter: lena.stoffler(a)ymail.com Distribution: --- Created attachment 53714 --> https://bugs.winehq.org/attachment.cgi?id=53714 Console output (LOG) As of wine 1.9.4 the steam client stopped working, means won't start anymore. The installer and updater still works, but the main gui and service is unable to start. Games that require the steam client running in the background cannot be played anymore. Log attached, clean wineprefix used 32-bit and 64-bit tested, same behaviour NOTE: in wine 1.9.3 steam works -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 19

[Bug 40021] New: CTL3D32.DLL seems to be mostly empty
by wine-bugs＠winehq.org 12 Apr '16

12 Apr '16

https://bugs.winehq.org/show_bug.cgi?id=40021 Bug ID: 40021 Summary: CTL3D32.DLL seems to be mostly empty Product: Wine Version: unspecified Hardware: x86-64 OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: -unknown Assignee: wine-bugs(a)winehq.org Reporter: lahs8353(a)yahoo.com Distribution: --- I need CTL3D32.DLL for a scientific program found here: http://optics.tugraz.at/idea/register.html I've tried getting it to work on wine (well q4wine to be exact) and I'm having some issues. I've tried both native and builtin DLLs. I've also tried manually overwriting the DLL under Windows/System32 with one which I downloaded. The native DLL reports that CTL3D32.DLL was not installed correctly. The builtin DLL reports: "wxWindows Fatal Error: Cannot register CTL3D" People on IRC commented that it appears that CTL3D32.DLL is mostly empty on wine and should be easily fixable. -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 12

[Bug 38314] New:=?UTF-8?Q?=20Mouse=20Wheel=20doesn=E2=80=99t=20work=20for=20JA2=201=2E13=20?=(it uses MOUSEHOOKSTRUCTEX)
by wine-bugs＠winehq.org 12 Apr '16

12 Apr '16

https://bugs.winehq.org/show_bug.cgi?id=38314 Bug ID: 38314 Summary: Mouse Wheel doesn’t work for JA2 1.13 (it uses MOUSEHOOKSTRUCTEX) Product: Wine Version: 1.7.39 Hardware: x86 OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: -unknown Assignee: wine-bugs(a)winehq.org Reporter: notifications+bugs.winehq.org(a)m0a.de Distribution: --- The mouse wheel does not work at all in JA2 1.13 and by looking at the source code I think it may be one of several reasons: 1) MOUSEHOOKSTRUCTEX is not properly supported in wine 2) The wheel distance in mouseData does not equal WHEEL_DELTA (if it’s not exactly WHEEL_DELTA then this code will just drop the event) 3) There is a "bug" in the JA2 1.13 code, which actually works in Windows 3a) If I look at the code I see a comparison with WHEEL_DELTA, this will fail if the LOWORD of mouseData is not zero. Seems like on windows it’s always zero? Maybe in wine it’s not zero? Source: https://msdn.microsoft.com/en-us/library/windows/desktop/ms644969%28v=vs.85… The code: LRESULT CALLBACK MouseHandler(int Code, WPARAM wParam, LPARAM lParam) { [...] p_mhs = (MOUSEHOOKSTRUCTEX*)lParam; [...] if(p_mhs->mouseData==(WHEEL_DELTA<<16)) //up MessageBeep(-1); QueueEvent(MOUSE_WHEEL_UP, 0, uiParam); if(p_mhs->mouseData==(-WHEEL_DELTA<<16)) //dn MessageBeep(0x00000040L); QueueEvent(MOUSE_WHEEL_DOWN, 0, uiParam); -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 22

[Bug 37288] New: Not implemented feature System.Drawing.Pen.ResetTransform()
by wine-bugs＠winehq.org 12 Apr '16

12 Apr '16

https://bugs.winehq.org/show_bug.cgi?id=37288 Bug ID: 37288 Summary: Not implemented feature System.Drawing.Pen.ResetTransform() Product: Wine Version: 1.7.26 Hardware: x86 OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: gdiplus Assignee: wine-bugs(a)winehq.org Reporter: mr_wire(a)mail.ru Tried to use ComponentOne C1Report library in my .NET application, got the following error. System.Reflection.TargetInvocationException: Exception has been thrown by the target of an invocation. ---> System.NotImplementedException: The requested feature is not implemented [GDI+ status: NotImplemented] at System.Drawing.GDIPlus.CheckStatus (Status status) [0x00000] in <filename unknown>:0 at System.Drawing.Pen.ResetTransform () [0x00000] in <filename unknown>:0 at (wrapper remoting-invoke-with-check) System.Drawing.Pen:ResetTransform () at C1.Win.C1Preview.C1PreviewPane.#YQe () [0x00000] in <filename unknown>:0 at C1.Win.C1Preview.C1PreviewPane.#kPe () [0x00000] in <filename unknown>:0 at C1.Win.C1Preview.C1PreviewPane.Init () [0x00000] in <filename unknown>:0 at C1.Win.C1Preview.C1PreviewPane..ctor () [0x00000] in <filename unknown>:0 at (wrapper remoting-invoke-with-check) C1.Win.C1Preview.C1PreviewPane:.ctor () at C1.Win.C1Preview.C1PrintPreviewControl.Init () [0x00000] in <filename unknown>:0 at C1.Win.C1Preview.C1PrintPreviewControl..ctor () [0x00000] in <filename unknown>:0 at (wrapper remoting-invoke-with-check) C1.Win.C1Preview.C1PrintPreviewControl:.ctor () at C1.Win.C1Preview.C1PrintPreviewDialog.InitializeComponent () [0x00000] in <filename unknown>:0 at C1.Win.C1Preview.C1PrintPreviewDialog..ctor () [0x00000] in <filename unknown>:0 at (wrapper remoting-invoke-with-check) C1.Win.C1Preview.C1PrintPreviewDialog:.ctor () [skipped lines] -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 5

[Bug 36013] New: bleem! (PlayStation emulator) fails on startup, complaining with 'Not enough memory to load program!'
by wine-bugs＠winehq.org 12 Apr '16

12 Apr '16

https://bugs.winehq.org/show_bug.cgi?id=36013 Bug ID: 36013 Summary: bleem! (PlayStation emulator) fails on startup, complaining with 'Not enough memory to load program!' Product: Wine Version: 1.7.16 Hardware: x86 OS: Linux Status: NEW Severity: normal Priority: P2 Component: -unknown Assignee: wine-bugs(a)winehq.org Reporter: focht(a)gmx.net Hello folks, continuation of bug 34618 You need my 1-byte binary patch from bug 34618 to bypass the Win9X debugger check: --- snip --- $ printf '\x30' | dd of=bleem\!.exe bs=1 seek=349588 count=1 conv=notrunc --- snip --- WINEPREFIX Windows version must be set to 'Win9X' variant. Relevant part of trace log: --- snip --- $ pwd /home/focht/.wine/drive_c/Program Files/bleem/bleem! $ WINEDEBUG=+tid,+seh,+relay,+vxd wine ./bleem\!.exe >>log.txt 2>&1 ... 0023:Call KERNEL32.CreateFileA(004011e0 "C:\\Program Files\\bleem\\bleem!\\bleem!.exe",80000000,00000001,00000000,00000003,00000080,00000000) ret=0040107c 0023:Ret KERNEL32.CreateFileA() retval=0000005c ret=0040107c 0023:Call KERNEL32.CreateFileMappingA(0000005c,00000000,00000002,00000000,00000000,00000000) ret=00401096 0023:Ret KERNEL32.CreateFileMappingA() retval=00000060 ret=00401096 0023:Call KERNEL32.MapViewOfFile(00000060,00000004,00000000,00000000,00000000) ret=004010ad 0023:Ret KERNEL32.MapViewOfFile() retval=00340000 ret=004010ad 0023:Call krnl386.exe16.VxDCall0(002a0000) ret=003958ad 0023: eax=004022a4 ebx=000000b5 ecx=00000000 edx=00000005 esi=0033feb0 edi=0033fbac ebp=0033fe38 esp=0033fb08 ds=002b es=002b fs=0063 gs=006b flags=00000202 0023:Call KERNEL32.LoadLibraryW(7e6dd0e4 L"vwin32.vxd") ret=7e6acb8c ... 0023:Ret KERNEL32.LoadLibraryW() retval=7e400000 ret=7e6acb8c 0023:Call KERNEL32.GetProcAddress(7e400000,7e6c08de "VxDCall") ret=7e6acbf8 0023:Ret KERNEL32.GetProcAddress() retval=7e4066ac ret=7e6acbf8 0023:Call vwin32.vxd.VxDCall(002a0000,0033f794) ret=7e6acc68 0023:Call KERNEL32.GetVersion() ret=7e406cc7 0023:Ret KERNEL32.GetVersion() retval=c0000a04 ret=7e406cc7 0023:Ret vwin32.vxd.VxDCall() retval=0000040a ret=7e6acc68 0023:Ret krnl386.exe16.VxDCall0() retval=0000040a ret=003958ad 0023: eax=0000040a ebx=000000b5 ecx=00000000 edx=00000005 esi=0033feb0 edi=0033fbac ebp=0033fe38 esp=0033fb08 ds=002b es=002b fs=0063 gs=006b flags=00000202 0023:Call krnl386.exe16.VxDCall0(002a002a) ret=003958c0 0023: eax=004022a4 ebx=002a002a ecx=00000000 edx=00000005 esi=0033feb0 edi=0033fbac ebp=0033fe38 esp=0033fb0c ds=002b es=002b fs=0063 gs=006b flags=00000206 0023:Call vwin32.vxd.VxDCall(002a002a,0033f798) ret=7e6acc68 0023:Ret vwin32.vxd.VxDCall() retval=0000004f ret=7e6acc68 0023:Ret krnl386.exe16.VxDCall0() retval=0000004f ret=003958c0 0023: eax=0000004f ebx=002a002a ecx=00000000 edx=00000005 esi=0033feb0 edi=0033fbac ebp=0033fe38 esp=0033fb10 ds=002b es=002b fs=0063 gs=006b flags=00000206 0023:Call krnl386.exe16.VxDCall0(00010000) ret=00395737 0023: eax=004022a4 ebx=00000010 ecx=0005b944 edx=00000000 esi=0033fb60 edi=0034fa0c ebp=8005a244 esp=0033fafc ds=002b es=002b fs=0063 gs=006b flags=00000202 0023:Call KERNEL32.LoadLibraryW(7e6dd0c0 L"vmm.vxd") ret=7e6acb8c ... 0023:Ret KERNEL32.LoadLibraryW() retval=7e1e0000 ret=7e6acb8c 0023:Call KERNEL32.GetProcAddress(7e1e0000,7e6c08de "VxDCall") ret=7e6acbf8 0023:Ret KERNEL32.GetProcAddress() retval=7e1ee794 ret=7e6acbf8 0023:Call vmm.vxd.VxDCall(00010000,0033f788) ret=7e6acc68 0023:trace:vxd:VMM_VxDCall PageReserve: page: 80000400, npages: 0000005c, flags: 00000008 partial stub! 0023:Call KERNEL32.VirtualAlloc(00000000,0005c000,00002000,00000000) ret=7e1eea61 0023:Ret KERNEL32.VirtualAlloc() retval=00000000 ret=7e1eea61 0023:trace:vxd:VMM_VxDCall PageReserve: returning: (nil) 0023:Ret vmm.vxd.VxDCall() retval=ffffffff ret=7e6acc68 0023:Ret krnl386.exe16.VxDCall0() retval=ffffffff ret=00395737 0023: eax=ffffffff ebx=00000010 ecx=0005b944 edx=00000000 esi=0033fb60 edi=0034fa0c ebp=8005a244 esp=0033fb08 ds=002b es=002b fs=0063 gs=006b flags=00000202 0023:Call KERNEL32.UnmapViewOfFile(00340000) ret=004010d6 0023:Ret KERNEL32.UnmapViewOfFile() retval=00000001 ret=004010d6 0023:Call KERNEL32.CloseHandle(00000060) ret=004010e1 0023:Ret KERNEL32.CloseHandle() retval=00000001 ret=004010e1 0023:Call KERNEL32.CloseHandle(0000005c) ret=004010ec 0023:Ret KERNEL32.CloseHandle() retval=00000001 ret=004010ec 0023:Call user32.MessageBeep(00000010) ret=004010ff 0023:Call winex11.drv.SystemParametersInfo(00000001,00000000,0033fdcc,00000000) ret=7ec19bd2 0023:Ret winex11.drv.SystemParametersInfo() retval=00000000 ret=7ec19bd2 0023:Call winex11.drv.Beep() ret=7ebffc49 0023:Ret winex11.drv.Beep() retval=00000001 ret=7ebffc49 0023:Ret user32.MessageBeep() retval=00000001 ret=004010ff 0023:Call user32.MessageBoxA(00000000,00401336 "Not enough memory to load program!\n\nClose other applications and try again.",004012e5 "bleem, llc.",00011010) ret=0040111c --- snip --- The emulator uses VMM.VXD service 'PageReserve' with 'PR_FIXED' attributes to request a chunk of memory. VirtualAlloc() with '0' page protection attributes (line 162) doesn't make sense here, probably a typo. Source: http://source.winehq.org/git/wine.git/blob/ae9b07fdc0f8b179d87db07c8ecd2c07… --- snip --- 136 DWORD WINAPI VMM_VxDCall( DWORD service, CONTEXT *context ) 137 { 138 static int warned; 139 140 switch ( LOWORD(service) ) 141 { 142 case 0x0000: /* PageReserve */ 143 { 144 LPVOID address; 145 LPVOID ret; 146 ULONG page = stack32_pop( context ); 147 ULONG npages = stack32_pop( context ); 148 ULONG flags = stack32_pop( context ); 149 150 TRACE("PageReserve: page: %08x, npages: %08x, flags: %08x partial stub!\n", 151 page, npages, flags ); 152 153 if ( page == PR_SYSTEM ) { 154 ERR("Can't reserve ring 1 memory\n"); 155 return -1; 156 } 157 /* FIXME: This has to be handled separately for the separate 158 address-spaces we now have */ 159 if ( page == PR_PRIVATE || page == PR_SHARED ) page = 0; 160 /* FIXME: Handle flags in some way */ 161 address = (LPVOID )(page * page_size); 162 ret = VirtualAlloc ( address, npages * page_size, MEM_RESERVE, 0 ); 163 TRACE("PageReserve: returning: %p\n", ret ); 164 if ( ret == NULL ) 165 return -1; 166 else 167 return (DWORD )ret; 168 } ... --- snip --- $ sha1sum demo-v1_4.exe b05c7c4023046fabec5a47aac0754ad0ac6b2325 demo-v1_4.exe $ du -sh demo-v1_4.exe 444K demo-v1_4.exe $ wine --version wine-1.7.16-178-g7e874ae Regards -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 12

[Bug 39908] New: SuperTux 0.3.5a crashes on startup, needs msvcr120.dll.strtof
by wine-bugs＠winehq.org 12 Apr '16

12 Apr '16

https://bugs.winehq.org/show_bug.cgi?id=39908 Bug ID: 39908 Summary: SuperTux 0.3.5a crashes on startup, needs msvcr120.dll.strtof Product: Wine Version: 1.9.0 Hardware: x86 URL: https://github.com/SuperTux/supertux/releases/download /v0.3.5a/supertux-0.3.5a-win32-setup.exe OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: msvcrt Assignee: wine-bugs(a)winehq.org Reporter: bernhardu(a)vr-web.de Distribution: Debian wine: Call from 0x7b83a2bc to unimplemented function msvcr120.dll.strtof, aborting Moving this issue to its own bug. Was before part of https://bugs.winehq.org/show_bug.cgi?id=39034 . -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 11

[Bug 37115] New: Calling ReadFile from WINBASEAPI (WinBase.h) with zero read length causes hang
by wine-bugs＠winehq.org 12 Apr '16

12 Apr '16

https://bugs.winehq.org/show_bug.cgi?id=37115 Bug ID: 37115 Summary: Calling ReadFile from WINBASEAPI (WinBase.h) with zero read length causes hang Product: Wine Version: unspecified Hardware: x86 OS: Mac OS X Status: UNCONFIRMED Severity: normal Priority: P2 Component: -unknown Assignee: wine-bugs(a)winehq.org Reporter: robw(a)sagatech.ca Our software connects to a serial device using USB-serial adapters. In the process of attempting to create a wrapper for use on OSx, I discovered a hang when I attempted to connect to the device under Wine that does not occur under Windows. I have tracked it down to the WINBASEAPI ReadFile. Under Windows, if a zero value is passed as the length to read, it handles and returns zero. Under Wine, it causes a "black box" (meaning I can't trace it) hang. I have worked around this in my code by including a return on zero value for the length, however believe it may be responsible for other serial issues I have seen in researching this problem. -- Do not reply to this email, post in Bugzilla using the above URL to reply. You are receiving this mail because: You are watching all bug changes.

1 13

Jump to page:

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

wine-bugs April 2016