[Bug 38624] jre-8u45-windows-i586.exe installer exits silently (needs advapi32.dll GetWindowsAccountDomainSid stub)
wine-bugs at winehq.org
wine-bugs at winehq.org
Sat May 23 05:36:53 CDT 2015
https://bugs.winehq.org/show_bug.cgi?id=38624
Anastasius Focht <focht at gmx.net> changed:
What |Removed |Added
----------------------------------------------------------------------------
Keywords| |download, Installer
URL| |http://javadl.sun.com/webap
| |ps/download/AutoDL?BundleId
| |=106246
CC| |focht at gmx.net
Component|-unknown |advapi32
Summary|jre-8u45-windows-i586.exe |jre-8u45-windows-i586.exe
|exits silently |installer exits silently
| |(needs advapi32.dll
| |GetWindowsAccountDomainSid
| |stub)
--- Comment #1 from Anastasius Focht <focht at gmx.net> ---
Hello folks,
confirming.
Relevant part of trace log:
--- snip ---
$ WINEDEBUG=+tid,+seh,+relay wine ./jre-8u45-windows-i586.exe >>log.txt 2>&1
...
0044:Call KERNEL32.GetProcAddress(7ed10000,0295eb65 "CopySid") ret=02961304
0044:Ret KERNEL32.GetProcAddress() retval=7ed14da4 ret=02961304
0044:Call KERNEL32.GetProcAddress(7ed10000,0295eb6e
"ConvertStringSecurityDescriptorToSecurityDescriptorW") ret=02961304
0044:Ret KERNEL32.GetProcAddress() retval=7ed14d44 ret=02961304
0044:Call KERNEL32.GetProcAddress(7ed10000,0295eba4 "ConvertSidToStringSidW")
ret=02961304
0044:Ret KERNEL32.GetProcAddress() retval=7ed14d14 ret=02961304
0044:Call KERNEL32.GetProcAddress(7ed10000,0295ebbc
"GetWindowsAccountDomainSid") ret=02961304
0044:Ret KERNEL32.GetProcAddress() retval=00000000 ret=02961304
0044:Call KERNEL32.ExitProcess(f757d000) ret=02961315
--- snip ---
The executable is UPX compressed and the decompressor stub bails here.
ProtectionID scan:
--- snip ---
-=[ ProtectionID v0.6.6.7 DECEMBER]=-
(c) 2003-2015 CDKiLLER & TippeX
Build 24/12/14-22:48:13
Ready...
Scanning -> Z:\home\focht\Downloads\jre-8u45-windows-i586.exe
File Type : 32-Bit Exe (Subsystem : Win GUI / 2), Size : 37321640 (02397BA8h)
Byte(s)
Compilation TimeStamp : 0x55281D22 -> Fri 10th Apr 2015 18:57:38 (GMT)
[TimeStamp] 0x55281D22 -> Fri 10th Apr 2015 18:57:38 (GMT) | PE Header | - |
Offset: 0x00000100 | VA: 0x00400100 | -
-> File Appears to be Digitally Signed @ Offset 02396200h, size : 019A8h /
06568 byte(s)
[File Heuristics] -> Flag #1 : 00000000000000001101001000100111 (0x0000D227)
[Entrypoint Section Entropy] : 8.00 (section #1) "UPX1 " | Size : 0x238A400
(37266432) byte(s)
[DllCharacteristics] -> Flag : (0x8140) -> ASLR | DEP | TSA
[SectionCount] 3 (0x3) | ImageSize 0x256E000 (39247872) byte(s)
[VersionInfo] Company Name : Oracle Corporation
[VersionInfo] Product Name : Java Platform SE 8 U45
[VersionInfo] Product Version : 8.0.450.14
[VersionInfo] File Description : Java Platform SE binary
[VersionInfo] File Version : 8.0.450.14
[VersionInfo] Original FileName :
jre-8u45-fcs-bin-b14-windows-i586-10_apr_2015.exe
[VersionInfo] Internal Name : Setup Launcher
[VersionInfo] Legal Copyrights : Copyright © 2015
[!] UPX 3.01 compressed !
upx internal version : 013 / compression method : 014 (M_LZMA) - Level : 07
decompressed adler32 : 0x12A0054F / compressed adler32 : 0x406B32D9
uncompressed size : 0x0255EA96 (039185046) / compressed size : 0x023897A7
(037263271)
original file size : 0x02557E00 (039157248) / filter : 0x026 / ct0 0x0C /
linkchecksum : 0x060
- Scan Took : 8.935 Second(s) [000001F81h (8065) tick(s)] [499 of 573 scan(s)
done]
--- snip ---
Unpacking:
--- snip ---
$ upx -d jre-8u45-windows-i586.exe
Ultimate Packer for eXecutables
Copyright (C) 1996 - 2013
UPX 3.91 Markus Oberhumer, Laszlo Molnar & John Reiser Sep 30th 2013
File size Ratio Format Name
-------------------- ------ ----------- -----------
39163816 <- 37321640 95.30% win32/pe jre-8u45-windows-i586.exe
Unpacked 1 file.
--- snip ---
ProtectionID scan again:
--- snip ---
Scanning -> Z:\home\focht\Downloads\jre-8u45-windows-i586.exe
File Type : 32-Bit Exe (Subsystem : Win GUI / 2), Size : 39163816 (025597A8h)
Byte(s)
Compilation TimeStamp : 0x55281D22 -> Fri 10th Apr 2015 18:57:38 (GMT)
[TimeStamp] 0x55281D22 -> Fri 10th Apr 2015 18:57:38 (GMT) | PE Header | - |
Offset: 0x00000100 | VA: 0x00400100 | -
-> File has 6568 (019A8h) bytes of appended data starting at offset 02557E00h
[!] Executable uses SEH Tables (/SAFESEH) (608 calculated 608 recorded... 0
invalid addresses)
[File Heuristics] -> Flag #1 : 00000000000000001101000000000100 (0x0000D004)
[Entrypoint Section Entropy] : 6.63 (section #0) ".text " | Size : 0x71ACC
(465612) byte(s)
[DllCharacteristics] -> Flag : (0x8140) -> ASLR | DEP | TSA
[SectionCount] 5 (0x5) | ImageSize 0x255E000 (39182336) byte(s)
[VersionInfo] Company Name : Oracle Corporation
[VersionInfo] Product Name : Java Platform SE 8 U45
[VersionInfo] Product Version : 8.0.450.14
[VersionInfo] File Description : Java Platform SE binary
[VersionInfo] File Version : 8.0.450.14
[VersionInfo] Original FileName :
jre-8u45-fcs-bin-b14-windows-i586-10_apr_2015.exe
[VersionInfo] Internal Name : Setup Launcher
[VersionInfo] Legal Copyrights : Copyright © 2015
[CdKeySerial] found "TestVersion" @ VA: 0x0007CC12 / Offset: 0x0007BC12
[CdKeySerial] found "TestVersion" @ VA: 0x0007CC36 / Offset: 0x0007BC36
[CdKeySerial] found "Test Version" @ VA: 0x02476C8E / Offset: 0x0247188E
[CompilerDetect] -> Visual C++ 10.0 (Visual Studio 2010)
[!] File appears to have no protection or is using an unknown protection
- Scan Took : 8.316 Second(s) [0000021ECh (8684) tick(s)] [558 of 573 scan(s)
done]
--- snip ---
The restored import descriptor after decompression:
--- snip ---
->Import Table
1. ImageImportDescriptor:
OriginalFirstThunk: 0x00000000
TimeDateStamp: 0x00000000 (GMT: Thu Jan 01 00:00:00 1970)
ForwarderChain: 0x00000000
Name: 0x00094960 ("KERNEL32.DLL")
FirstThunk: 0x000730C8
Ordinal/Hint API name
------------ ---------------------------------------
0x0000 "GlobalLock"
...
2. ImageImportDescriptor:
OriginalFirstThunk: 0x00000000
TimeDateStamp: 0x00000000 (GMT: Thu Jan 01 00:00:00 1970)
ForwarderChain: 0x00000000
Name: 0x0009496D ("ADVAPI32.dll")
FirstThunk: 0x00073000
Ordinal/Hint API name
------------ ---------------------------------------
0x0000 "RegSetValueExA"
0x0000 "RegQueryInfoKeyW"
0x0000 "RegDeleteKeyA"
0x0000 "CryptHashData"
0x0000 "OpenProcessToken"
0x0000 "GetTokenInformation"
0x0000 "CopySid"
0x0000 "ConvertStringSecurityDescriptorToSecurityDescriptorW"
0x0000 "ConvertSidToStringSidW"
0x0000 "GetWindowsAccountDomainSid"
0x0000 "CreateWellKnownSid"
0x0000 "CryptCreateHash"
0x0000 "CryptAcquireContextA"
0x0000 "CryptReleaseContext"
0x0000 "CryptGetHashParam"
0x0000 "RegEnumKeyExA"
0x0000 "RegCreateKeyExA"
0x0000 "RegOpenKeyA"
0x0000 "RegOpenCurrentUser"
0x0000 "RegQueryInfoKeyA"
0x0000 "RegQueryValueExA"
0x0000 "RegCloseKey"
0x0000 "RegDeleteValueA"
0x0000 "RegOpenKeyExA"
0x0000 "CryptDestroyHash"
...
--- snip ---
MSDN:
https://msdn.microsoft.com/de-de/library/windows/desktop/aa446676%28v=vs.85%29.aspx
The next crash is due to 'GetThreadPreferredUILanguages' being a stub faking
success, deserving its own bug (if not already there).
$ sha1sum jre-8u45-windows-i586.exe
7fc89bd7f82a092d2aa15b753f1fa17e47b879aa jre-8u45-windows-i586.exe
$ du -sh jre-8u45-windows-i586.exe
36M jre-8u45-windows-i586.exe
$ wine --version
wine-1.7.43-123-g90ed96a
Regards
--
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.
More information about the wine-bugs
mailing list