[Bug 44908] New: BattlEye 'BEDaisy' kernel service wants ' ntoskrnl.exe.ObGetObjectType'

wine-bugs at winehq.org wine-bugs at winehq.org
Wed Apr 4 16:47:17 CDT 2018 

https://bugs.winehq.org/show_bug.cgi?id=44908

            Bug ID: 44908
           Summary: BattlEye 'BEDaisy' kernel service wants
                    'ntoskrnl.exe.ObGetObjectType'
           Product: Wine
           Version: 3.5
          Hardware: x86-64
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: ntoskrnl
          Assignee: wine-bugs at winehq.org
          Reporter: focht at gmx.net
      Distribution: ---

Hello folks,

continuation of bug 4907

Prerequisite:

* bug 44837 -> missing
'ntoskrnl.exe.Ps{Acquire,Release}ProcessExitSynchronization'
* bug 44906 -> missing 'ntoskrnl.exe.ExfUnblockPushLock'
* bug 44907 -> missing 'fltmgr.sys.FltGetRoutineAddress'

--- snip ---
$ WINEDEBUG=+seh,+relay,+ntoskrnl wine net start BEDaisy >>log.txt 2>&1
...
0035:Call driver init 0x78d000
(obj=0x11cbf8,str=L"\\Registry\\Machine\\System\\CurrentControlSet\\Services\\BEDaisy") 
...
0035:Call ntoskrnl.exe.RtlGetVersion(0078b270) ret=0080750a
0035:Call ntdll.RtlGetVersion(0078b270) ret=7bc803ab
0035:Ret  ntdll.RtlGetVersion() retval=00000000 ret=7bc803ab
0035:Ret  ntoskrnl.exe.RtlGetVersion() retval=00000000 ret=0080750a
0035:Call ntoskrnl.exe.MmGetSystemRoutineAddress(0065ec68) ret=007a8561
0035:Call ntdll.RtlUnicodeStringToAnsiString(0065eb30,0065ec68,00000001)
ret=7ec1855e
0035:Ret  ntdll.RtlUnicodeStringToAnsiString() retval=00000000 ret=7ec1855e
0035:Call KERNEL32.GetModuleHandleW(7ec22a9c L"ntoskrnl.exe") ret=7ec18572
0035:Ret  KERNEL32.GetModuleHandleW() retval=7ec00000 ret=7ec18572
0035:Call KERNEL32.GetProcAddress(7ec00000,0011d610 "ObGetObjectType")
ret=7ec18587
0035:Ret  KERNEL32.GetProcAddress() retval=00000000 ret=7ec18587
0035:Call KERNEL32.GetModuleHandleW(7ec22ab8 L"hal.dll") ret=7ec185a0
0035:Ret  KERNEL32.GetModuleHandleW() retval=f7b10000 ret=7ec185a0
0035:Call KERNEL32.GetProcAddress(f7b10000,0011d610 "ObGetObjectType")
ret=7ec185bb
0035:Ret  KERNEL32.GetProcAddress() retval=00000000 ret=7ec185bb
0035:Call ntdll.RtlFreeAnsiString(0065eb30) ret=7ec185cd
0035:Ret  ntdll.RtlFreeAnsiString() retval=0065eb30 ret=7ec185cd
0035:fixme:ntoskrnl:MmGetSystemRoutineAddress L"ObGetObjectType" not found
0035:Ret  ntoskrnl.exe.MmGetSystemRoutineAddress() retval=00000000 ret=007a8561 
...
0035:Ret  driver init 0x78d000
(obj=0x11cbf8,str=L"\\Registry\\Machine\\System\\CurrentControlSet\\Services\\BEDaisy")
retval=c0000002
...
0035:Ret  ntoskrnl.exe.IoCreateDriver() retval=c0000002 ret=7effb832
0035:err:winedevice:async_create_driver failed to create driver L"BEDaisy":
c0000002 
--- snip ---

NOTE: I didn't mention "crashes" or "fails in entry point" in this ticket
summary on purpose. The failure from the log snippet is actually a different
problem.

$ sha1sum Tibia_Setup.exe 
50951008ccc402cc32407bfc56a88da873e3e9bd  Tibia_Setup.exe

$ du -sh Tibia_Setup.exe 
5.2M    Tibia_Setup.exe

$ wine --version
wine-3.5-107-gf4573adb0f

Regards

-- 
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.

More information about the wine-bugs mailing list