[Bug 34982] Multiple web-installers crash in 'get_frame_by_name' with NULL 'HTMLOuterWindow' (Horizon XBOX tool, MAGIX Video Deluxe MX Plus 18)
wine-bugs at winehq.org
wine-bugs at winehq.org
Mon Feb 2 05:13:52 CST 2015
https://bugs.winehq.org/show_bug.cgi?id=34982
Anastasius Focht <focht at gmx.net> changed:
What |Removed |Added
----------------------------------------------------------------------------
Summary|Horizon (xbox tool) |Multiple web-installers
|installer crashes on |crash in
|startup |'get_frame_by_name' with
| |NULL 'HTMLOuterWindow'
| |(Horizon XBOX tool, MAGIX
| |Video Deluxe MX Plus 18)
--- Comment #5 from Anastasius Focht <focht at gmx.net> ---
Hello folks,
revisiting, still present.
Can also be reproduced with MAGIX Video Deluxe MX Plus 18 web-installer
(bootstrapper).
--- snip ---
$ WINEDEBUG=+tid,+seh,+relay,+mshtml,+ieframe,+jscript wine
./Magix_Video_Deluxe_Mx_Plus_18.exe >>log.txt 2>&1
...
0041:Call KERNEL32.CreateProcessA(00d611a0
"C:\\users\\focht\\Temp\\netdownloader",0013e040
"\"C:\\users\\focht\\Temp\\netdownloader\"",00000000,00000000,00000001,01000204,00000000,00000000,0033fa0c,0033fa58)
ret=10006f7f
...
0043:Call KERNEL32.__wine_kernel_init() ret=7bc5a89d
0041:Ret KERNEL32.CreateProcessA() retval=00000001 ret=10006f7f
...
0043:trace:jscript:interp_ident L"window"
0043:trace:jscript:identifier_eval L"window"
0043:trace:jscript:jsdisp_get_id not found L"window"
0043:trace:jscript:jsdisp_get_id not found L"window"
0043:trace:mshtml:HTMLWindow2_AddRef (0x12b3e180) ref=14
...
0043:trace:jscript:interp_member
0043:trace:mshtml:HTMLWindow2_QueryInterface (0x12b3e180)->(IID_IDispatchJS
0x33bf08)
0043:trace:mshtml:HTMLWindow2_QueryInterface (0x12b3e180)->(IID_IDispatchEx
0x33bf4c)
0043:trace:mshtml:HTMLWindow2_AddRef (0x12b3e180) ref=15
0043:trace:mshtml:WindowDispEx_GetDispID (0x12b3e180)->(L"_external" 10000001
0x33bfcc)
0043:trace:jscript:JScript_GetScriptDispatch (0x12910d90)->(0x33bdbc)
0043:trace:jscript:DispatchEx_QueryInterface (0x12b68248)->(IID_IDispatchEx
0x33bdf8)
0043:trace:jscript:DispatchEx_GetDispID (0x12b68248)->(L"_external" 10000001
0x33be60)
0043:trace:jscript:jsdisp_get_id not found L"_external"
0043:trace:mshtml:DispatchEx_GetDispID (0x12b3e1b4)->(L"_external" 10000001
0x33bfcc)
0043:trace:seh:raise_exception code=c0000005 flags=0 addr=0x7d5f4011
ip=7d5f4011 tid=0043
0043:trace:seh:raise_exception info[0]=00000000
0043:trace:seh:raise_exception info[1]=00000048
0043:trace:seh:raise_exception eax=00000000 ebx=7d6dc000 ecx=7d6dc000
edx=05d329e0 esi=0033bf20 edi=00000001
0043:trace:seh:raise_exception ebp=0033be78 esp=0033bdc0 cs=0023 ds=002b
es=002b fs=0063 gs=006b flags=00010206
...
Unhandled exception: page fault on read access to 0x00000048 in 32-bit code
(0x7d5f4011).
...
Backtrace:
=>0 0x7d5f4011 get_frame_by_name+0x282(This=0x12904c28, name="_external",
deep=0, ret=0x33beac)
[/home/focht/projects/wine/wine.repo/src/dlls/mshtml/htmlwindow.c:409] in
mshtml (0x0033be78)
1 0x7d5fbc3d WindowDispEx_GetDispID+0x162(iface=<couldn't compute location>,
bstrName=<couldn't compute location>, grfdex=<couldn't compute location>,
pid=<couldn't compute location>)
[/home/focht/projects/wine/wine.repo/src/dlls/mshtml/htmlwindow.c:2556] in
mshtml (0x0033bf08)
2 0x7c97eead disp_get_id+0x11b(ctx=0x129102d0, disp=0x12b3e180,
name="_external", name_bstr="_external", flags=0, id=0x33bfcc)
[/home/focht/projects/wine/wine.repo/build-x86/dlls/jscript/../../include/dispex.h:296]
in jscript (0x0033bf98)
3 0x7c980a25 interp_member+0xc6(ctx=0x12ff62f8)
[/home/focht/projects/wine/wine.repo/src/dlls/jscript/engine.c:896] in jscript
(0x0033bff8)
4 0x7c985c08 enter_bytecode+0xfc(ctx=0x129102d0, code=0x12e4db48,
func=0x12d99390, ret=0x33c0a4)
[/home/focht/projects/wine/wine.repo/src/dlls/jscript/engine.c:2471] in jscript
(0x0033c068)
5 0x7c985fe3 exec_source+0x1ea(ctx=0x12ff62f8, code=0x12e4db48,
func=0x12d99390, from_eval=0, ret=0x33c560)
[/home/focht/projects/wine/wine.repo/src/dlls/jscript/engine.c:2543] in jscript
(0x0033c0c8)
6 0x7c988462 invoke_source+0x27b(ctx=0x129102d0, function=0x12e9b1f8,
this_obj=0x12b68248, argc=0x2, argv=0x12fffc60, r=0x33c560)
[/home/focht/projects/wine/wine.repo/src/dlls/jscript/function.c:245] in
jscript (0x0033c138)
7 0x7c98896e Function_invoke+0x194(func_this=0x12e9b1f8, jsthis=0x12b68248,
flags=0x1, argc=0x2, argv=0x12fffc60, r=0x33c560)
[/home/focht/projects/wine/wine.repo/src/dlls/jscript/function.c:362] in
jscript (0x0033c178)
8 0x7c97b9f8 jsdisp_call_value+0x53(jsfunc=0x12e9b1f8, jsthis=0x12b68248,
flags=0x1, argc=0x2, argv=0x12fffc60, r=0x33c560)
[/home/focht/projects/wine/wine.repo/src/dlls/jscript/dispex.c:1061] in jscript
(0x0033c1b8)
...
57 0x6aa33972 in xul (+0xdf3971) (0x05cfeb90)
0x7d5f4011 get_frame_by_name+0x282
[/home/focht/projects/wine/wine.repo/src/dlls/mshtml/htmlwindow.c:409] in
mshtml: movl 0x48(%eax),%eax
409 hres =
IHTMLElement_get_id(&window_iter->frame_element->element.IHTMLElement_iface,
&id);
Modules:
Module Address Debug info Name (180 modules)
PE 350000- 356000 Deferred system
PE 3d0000- 3d9000 Deferred luaxml_lib
PE 3e0000- 3f6000 Deferred
87a5250e7389d052be3fdc257872ebd8C:\users\focht\Temp\nst2161.tmp\87a5250e7389d052be3fdc257872ebd873ef2deb.dll
PE 400000- 44c000 Deferred netdownloader
...
Threads:
process tid prio (all id:s are in hex)
...
0000003e netdownloader
0000003f 0
00000042 (D) C:\users\focht\Temp\netdownloader
...
00000043 0 <==
--- snip ---
Source:
http://source.winehq.org/git/wine.git/blob/679ddf24d442885ff5dc943d6239278fb9f5f3d9:/dlls/mshtml/htmlwindow.c#l409
At least a NULL check along with a FIXME/WARN should be added.
$ sha1sum Magix_Video_Deluxe_Mx_Plus_18.exe
1c05058b5dfc7084b361784353dc3e71d132fbf9 Magix_Video_Deluxe_Mx_Plus_18.exe
$ du -sh Magix_Video_Deluxe_Mx_Plus_18.exe
3.6M Magix_Video_Deluxe_Mx_Plus_18.exe
$ wine --version
wine-1.7.35-24-g3873c93
Regards
--
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.
More information about the wine-bugs
mailing list