[Bug 47783] Rockstar Games Launcher installer crashes

WineHQ Bugzilla wine-bugs at winehq.org
Wed Jun 17 08:59:13 CDT 2020 

https://bugs.winehq.org/show_bug.cgi?id=47783

Anastasius Focht <focht at gmx.net> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |focht at gmx.net

--- Comment #5 from Anastasius Focht <focht at gmx.net> ---
Hello folks,

I've encountered this as well while testing for a different issue, still
present. Good job, Brendan.

--- snip ---
$ pwd
/home/focht/wine-games/wineprefix64-steam/drive_c/Program Files
(x86)/Steam/steamapps/common/Grand Theft Auto V/Installers

$ WINEDEBUG=+seh,+relay,+server wine ./Rockstar-Games-Launcher.exe >>log.txt
2>&1
...
0024:Call KERNEL32.GetModuleHandleW(0040bf38
L"C:\\users\\focht\\Temp\\nse7cc6.tmp\\System.dll") ret=004022d3
...
0024:Ret  KERNEL32.GetModuleHandleW() retval=01810000 ret=004022d3
...
0024:Call KERNEL32.GlobalAlloc(00000040,00000038) ret=01811035
0024:Call ntdll.RtlAllocateHeap(00110000,00000008,00000038) ret=7b02791f
0024:Ret  ntdll.RtlAllocateHeap() retval=00d0daa8 ret=7b02791f
0024:Ret  KERNEL32.GlobalAlloc() retval=00d0daa8 ret=01811035
...
0024:Call user32.GetWindowInfo(00010082,00d0daa8) ret=01812b35
0024: get_thread_input( tid=0024 )
0024: get_thread_input() = 0 { focus=00010060, capture=00000000,
active=00020040, foreground=00020040, menu_owner=00000000, move_size=00000000,
caret=00000000, cursor=00000000, show_count=0, rect={0,0;0,0} }
0024:Ret  user32.GetWindowInfo() retval=00000001 ret=01812b35 
...
0024:Call user32.wvsprintfW(0042ab40,0040a8c0 L"File: overwriteflag=%d,
allowskipfilesflag=%d, name=\"%s\"",0031e578) ret=00406dc1
0024:Ret  user32.wvsprintfW() retval=0000005e ret=00406dc1 
...
0024:Call KERNEL32.GetFileAttributesW(0040b738
L"C:\\users\\focht\\Temp\\nse7cc6.tmp\\System.dll") ret=00406338
0024:Call ntdll.RtlDosPathNameToNtPathName_U(0040b738
L"C:\\users\\focht\\Temp\\nse7cc6.tmp\\System.dll",0031e4f0,00000000,00000000)
ret=7b01380a
0024:Ret  ntdll.RtlDosPathNameToNtPathName_U() retval=00000001 ret=7b01380a
0024:Call ntdll.NtQueryAttributesFile(0031e4d8,0031e4f8) ret=7b013847
0024:Ret  ntdll.NtQueryAttributesFile() retval=00000000 ret=7b013847
0024:Call ntdll.RtlFreeUnicodeString(0031e4f0) ret=7b013850
0024:trace:seh:KiUserExceptionDispatcher code=c0000005 flags=0 addr=0x7bc5935b
ip=7bc5935b tid=0024
0024:trace:seh:KiUserExceptionDispatcher  info[0]=00000000
0024:trace:seh:KiUserExceptionDispatcher  info[1]=00000000
0024:trace:seh:KiUserExceptionDispatcher  eax=00000000 ebx=00c10000
ecx=00000070 edx=00d0dae0 esi=00000000 edi=00110000
0024:trace:seh:KiUserExceptionDispatcher  ebp=0031e3b8 esp=0031e350 cs=0023
ds=002b es=002b fs=0063 gs=006b flags=00210202
0024:trace:seh:call_vectored_handlers calling handler at 0x7b637a80
code=c0000005 flags=0
0024:trace:seh:call_vectored_handlers handler at 0x7b637a80 returned 0
0024:trace:seh:call_stack_handlers calling handler at 0x7e9cd860 code=c0000005
flags=0 
...
0024:Ret  dialog proc 0x1da1407
(hwnd=0x20040,msg=WM_NCACTIVATE,wp=00000000,lp=00000000) retval=00000000
result=00000000
0024:trace:seh:KiUserExceptionDispatcher code=c0000005 flags=0 addr=0x7e9971c3
ip=7e9971c3 tid=0024
0024:trace:seh:KiUserExceptionDispatcher  info[0]=00000000
0024:trace:seh:KiUserExceptionDispatcher  info[1]=01ee75b4
0024:trace:seh:KiUserExceptionDispatcher  eax=00000000 ebx=01ee75a0
ecx=0031e360 edx=00000000 esi=00010053 edi=00000000
0024:trace:seh:KiUserExceptionDispatcher  ebp=0031e3a8 esp=0031e380 cs=0023
ds=002b es=002b fs=0063 gs=006b flags=00210246
0024:trace:seh:call_vectored_handlers calling handler at 0x7b637a80
code=c0000005 flags=0
0024:trace:seh:call_vectored_handlers handler at 0x7b637a80 returned 0
0024:trace:seh:call_stack_handlers calling handler at 0x7b657c40 code=c0000005
flags=0 
...
wine: Unhandled page fault on read access to 01EE75B4 at address 7E9971C3
(thread 0024), starting debugger... 
--- snip ---

ProtectionID scan:

--- snip ---
-=[ ProtectionID v0.6.9.0 DECEMBER]=-
(c) 2003-2017 CDKiLLER & TippeX
Build 24/12/17-21:05:42
Ready...
Scanning -> C:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto
V\Installers\Rockstar-Games-Launcher.exe
File Type : 32-Bit Exe (Subsystem : Win GUI / 2), Size : 81577008 (04DCC430h)
Byte(s) | Machine: 0x14C (I386)
Compilation TimeStamp : 0x5C157FD0 -> Sat 15th Dec 2018 22:27:28 (GMT)
[TimeStamp] 0x5C157FD0 -> Sat 15th Dec 2018 22:27:28 (GMT) | PE Header | - |
Offset: 0x000000D0 | VA: 0x004000D0 | -
-> File Appears to be Digitally Signed @ Offset 04DCA7A0h, size : 01C90h /
07312 byte(s)
-> File has 81222048 (04D759A0h) bytes of appended data starting at offset
054E00h
[File Heuristics] -> Flag #1 : 00000000000001011101000000000100 (0x0005D004)
[Entrypoint Section Entropy] : 6.48 (section #0) ".text   " | Size : 0x6AA7
(27303) byte(s)
[DllCharacteristics] -> Flag : (0x8540) -> ASLR | DEP | NOSEH | TSA
[SectionCount] 5 (0x5) | ImageSize 0xFB000 (1028096) byte(s)
[VersionInfo] Company Name : Rockstar Games.
[VersionInfo] Product Name : Rockstar Games Launcher
[VersionInfo] File Description : Rockstar Games Launcher
[VersionInfo] File Version : 1.0.19.234
[VersionInfo] Version Comments : Rockstar Games Launcher
[VersionInfo] Legal Trademarks : Rockstar Games Inc. (C) 2005-2019 Take Two
Interactive. All rights reserved
[VersionInfo] Legal Copyrights : Rockstar Games Inc. (C) 2005-2019 Take Two
Interactive. All rights reserved
[ModuleReport] [IAT] Modules -> KERNEL32.dll | USER32.dll | GDI32.dll |
SHELL32.dll | ADVAPI32.dll | COMCTL32.dll | ole32.dll
[-= Installer =-] Nullsoft SFX Setup v3.04
- Scan Took : 0.295 Second(s) [000000127h (295) tick(s)] [566 of 580 scan(s)
done]
--- snip ---

The decompiled script from the NSIS installer matches Brendan's link to the
example. You can use 7-Zip 15.05 or earlier versions to extract/decompile it
from the installer.

--- snip ---
...
  System::Alloc 56
    ; Call Initialize_____Plugins
    ; SetOverwrite off
    ; File $PLUGINSDIR\System.dll
    ; SetDetailsPrint lastused
    ; Push 56
    ; CallInstDLL $PLUGINSDIR\System.dll Alloc
  Pop $0
  System::Call "*$0(i 56)"
    ; Call Initialize_____Plugins
    ; AllowSkipFiles off
    ; File $PLUGINSDIR\System.dll
    ; SetDetailsPrint lastused
    ; Push "*$0(i 56)"
    ; CallInstDLL $PLUGINSDIR\System.dll Call
  System::Call "User32::GetWindowInfo(i $HWNDPARENT,i r0) i .r1"
    ; Call Initialize_____Plugins
    ; File $PLUGINSDIR\System.dll
    ; SetDetailsPrint lastused
    ; Push "User32::GetWindowInfo(i $HWNDPARENT,i r0) i .r1"
    ; CallInstDLL $PLUGINSDIR\System.dll Call
  IntOp $R0 $0 + 4
  System::Call "*$R0(i .r1,i .r2,i .r3,i .r4)"
    ; Call Initialize_____Plugins
    ; File $PLUGINSDIR\System.dll
    ; SetDetailsPrint lastused
    ; Push "*$R0(i .r1,i .r2,i .r3,i .r4)"
    ; CallInstDLL $PLUGINSDIR\System.dll Call
  System::Free $0
    ; Call Initialize_____Plugins
    ; File $PLUGINSDIR\System.dll
    ; SetDetailsPrint lastused
    ; Push $0
    ; CallInstDLL $PLUGINSDIR\System.dll Free
--- snip ---

There are many occurrences of same pattern in the decompiled '[NSIS].nsi' file.
As Brendan said, it's likely that more NSIS 3.x installers suffer from this
problem under Wine as packagers rarely bother to pay attention to these details
in example code.

--- snip ---
$ pwd
/home/focht/wine-games/wineprefix64-steam/drive_c/Program Files
(x86)/Steam/steamapps/common/Grand Theft Auto V/Installers

$ sha1sum *
b4e5e3045dba165127b7ce846560f25bd4c25d5b  Rockstar-Games-Launcher.exe
95ac91cabe50e2338805c07bd0808f809e92a39d  Social-Club-Setup.exe

$ du -sh *
78M    Rockstar-Games-Launcher.exe
92M    Social-Club-Setup.exe
--- snip ---

$ wine --version
wine-5.10-247-gf8955cfb0f

Regards

-- 
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.

More information about the wine-bugs mailing list