[Bug 21107] Portable RDP 6 client fails on startup, claiming "An error occurred. Try to reconnect." (MoleBox application virtualization scheme)

wine-bugs at winehq.org wine-bugs at winehq.org
Thu Dec 26 11:36:51 CST 2013 

http://bugs.winehq.org/show_bug.cgi?id=21107

Anastasius Focht <focht at gmx.net> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Keywords|                            |obfuscation
             Status|UNCONFIRMED                 |NEW
                URL|                            |http://tsplus.net/PortableR
                   |                            |DP6.exe
                 CC|                            |focht at gmx.net
            Summary|Portable RDP doesn't work   |Portable RDP 6 client fails
                   |                            |on startup, claiming "An
                   |                            |error occurred. Try to
                   |                            |reconnect." (MoleBox
                   |                            |application virtualization
                   |                            |scheme)
     Ever confirmed|0                           |1

--- Comment #4 from Anastasius Focht <focht at gmx.net> ---
Hello folks,

looks like a variation of bug 21790
The file 'portableRDP6.exe' is an executable created by AutoIt3/Aut2Exe.
It unwraps some MUI resource dlls, mstsc.exe and starts the main executable
'mstsc.exe'.

'mstsc.exe' itself is sandboxed/wrapped with 'MoleBox', an application
virtualization and software protection scheme similar to Thinstall and
Xenocode.
It ships and maps the native 'mstscax.dll' component as in-memory resource.

Relevant part of trace log:

--- snip ---
$ pwd
/home/focht/.wine/drive_c/Program Files/RDP6 Portable client

$ WINEDEBUG=+tid,+seh,+relay,+actctx wine ./portableRDP6.exe >>trace.txt 2>&1
...
0009:Call KERNEL32.CreateProcessW(00000000,008ce368 L"C:\\Program Files\\RDP6
Portable
client\\mstsc.exe",00000000,00000000,00000000,00000400,00000000,00149080
L"C:\\Program Files\\RDP6 Portable client",008cda20,008cda10) ret=7e320efe
...
0025:Call KERNEL32.__wine_kernel_init() ret=7bc5a036
...
0009:Ret  KERNEL32.CreateProcessW() retval=00000001 ret=7e320efe 
...
0025:Call KERNEL32.GetFullPathNameA(00382cc8 "C:\\PROGRAM FILES\\RDP6 PORTABLE
CLIENT\\mstscax.dll",00000400,00340e20,0033f4d4) ret=010b264d
0025:Ret  KERNEL32.GetFullPathNameA() retval=00000031 ret=010b264d 
...
0025:Call KERNEL32.GetModuleHandleA(00382ef8 "C:\\USERS\\FOCHT\\LOCAL
SETTINGS\\APPLICATION DATA\\.#\\MBX at 24@341CB8.###") ret=010b56ae
0025:Ret  KERNEL32.GetModuleHandleA() retval=4d710000 ret=010b56ae
0025:Call KERNEL32.LoadLibraryA(00382ef8 "C:\\USERS\\FOCHT\\LOCAL
SETTINGS\\APPLICATION DATA\\.#\\MBX at 24@341CB8.###") ret=010b56c3
0025:Ret  KERNEL32.LoadLibraryA() retval=4d710000 ret=010b56c3 
...
0025:Call user32.CreateWindowExW(00000000,01002c08
L"TSCAXHOST",00000000,46000000,00000000,00000000,00000778,0000041d,000800ea,00000000,01000000,00159ca8)
ret=0101ca9b 
...
0025:Call
KERNEL32.QueryActCtxW(80000010,4d88c000,00000000,00000001,0033f7e8,00000008,00000000)
ret=4d773a6e
0025:trace:actctx:RtlQueryInformationActivationContext 80000010 0x4d88c000
(nil) 1 0x33f7e8 8 (nil)
0025:Ret  KERNEL32.QueryActCtxW() retval=00000001 ret=4d773a6e
...
0025:Call KERNEL32.GetModuleHandleExW(00000006,4d88c000,0033f7f0) ret=4d773aa2
0025:Ret  KERNEL32.GetModuleHandleExW() retval=00000001 ret=4d773aa2
...
0025:Call KERNEL32.MultiByteToWideChar(00000000,00000000,00382ef8 "C:\\PROGRAM
FILES\\RDP6 PORTABLE CLIENT\\mstscax.dll",ffffffff,0033f7f8,00000105)
ret=010bb056
0025:Ret  KERNEL32.MultiByteToWideChar() retval=00000032 ret=010bb056
...
0025:Call KERNEL32.CreateActCtxW(0033f7c8) ret=4d773b27
0025:trace:actctx:CreateActCtxW 0x33f7c8 00000088
0025:trace:actctx:RtlCreateActivationContext 0x33f7c8 00000088
0025:Ret  KERNEL32.CreateActCtxW() retval=ffffffff ret=4d773b27
...
0025:Call user32.MessageBoxW(00000000,0017e408 L"An error occurred.\r\n\r\nTry
to reconnect. If the problem continues, contact the owner of the remote
computer or your network administrator.",01054c90 L"Remote Desktop
Connection",00000010) ret=7e2fbeb8 
--- snip ---

The failure to create the activation context seems the problem here.
As quick test I faked success in debugger and the client successfully displayed
the RDP login dialog.

@comment 3

--- quote ---
wine crash when using rdp 7 to connect to win2008r2 term server with tls
enabled.
--- quote ---

Please avoid polluting the bug with unrelated problems.

$ sha1sum PortableRDP6.exe 
af0a2e3b3ebd319642a2e843123abb1902f3b216  PortableRDP6.exe

$ du -sh PortableRDP6.exe 
2.5M    PortableRDP6.exe

$ wine --version
wine-1.7.9-158-g33fa552

Regards

-- 
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.

More information about the wine-bugs mailing list