[Bug 26016] xmllite installer crashes about 1 in 30 runs
wine-bugs at winehq.org
wine-bugs at winehq.org
Wed Jul 24 03:12:43 CDT 2013
http://bugs.winehq.org/show_bug.cgi?id=26016
--- Comment #6 from Nikolay Sivov <bunglehead at gmail.com> 2013-07-24 03:12:43 CDT ---
Actually I was wrong. It was a way heap allocation works that confused me,
actually table are allocated on heap and are plain pointers, not handles of any
kind. I was able to figure out basic structure of it:
---
struct stringtable {
void *data; /* pointer to actual string data */
DWORD offset; /* offset where data actually starts */
DWORD allocated; /* allocated byte size 'data' points to */
DWORD unk[3];
LCID lcid; /* thread LCID, it's store on allocation and probably used to
compare */
}
---
Returned string ids are offsets from 'data' pointer to actual string data. I
didn't try to see what happens with extra data.
So unless there's an indication that installer uses internal structure for
something it looks like a general heap corruption.
--
Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email
Do not reply to this email, post in Bugzilla using the
above URL to reply.
------- You are receiving this mail because: -------
You are watching all bug changes.
More information about the wine-bugs
mailing list