[Bug 40238] Liquid... Wen? (demoscene, Haujobb, 2002) crashes around 7 minute mark

WineHQ Bugzilla wine-bugs at winehq.org
Sat Feb 27 07:20:56 CST 2021 

https://bugs.winehq.org/show_bug.cgi?id=40238

Anastasius Focht <focht at gmx.net> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
            Summary|Liquid... Wen? (demoscene,  |Liquid... Wen? (demoscene,
                   |Haujobb, 2002) crashes to   |Haujobb, 2002) crashes
                   |desktop                     |around 7 minute mark
                URL|http://www.pouet.net/prod.p |https://web.archive.org/web
                   |hp?which=7130               |/20180811014039/http://arch
                   |                            |ive.scene.org/pub/demos/gro
                   |                            |ups/haujobb/hjb_liqu.zip
                 CC|                            |focht at gmx.net

--- Comment #18 from Anastasius Focht <focht at gmx.net> ---
Hello folks,

confirming.

Adding stable download link via Internet Archive.

https://web.archive.org/web/20180811014039/http://archive.scene.org/pub/demos/groups/haujobb/hjb_liqu.zip

--- snip ---
$ WINEDEBUG=+seh,+loaddll,+opengl wine ./liquid.exe >>log.txt 2>&1
...
012c:Call opengl32.glMaterialfv(00000404,00001201,0032fd78) ret=00415956
012c:trace:opengl:glMaterialfv (1028, 4609, 0x32fd78)
012c:Ret  opengl32.glMaterialfv() retval=7bd243e4 ret=00415956
012c:Call opengl32.glColor4f(g,g,g,g) ret=004159aa
012c:trace:opengl:glColor4f (1.000000, 1.000000, 1.000000, 1.000000)
012c:Ret  opengl32.glColor4f() retval=7bd243f4 ret=004159aa
012c:Call opengl32.glEnable(00000b50) ret=004159c1
012c:trace:opengl:glEnable (2896)
012c:Ret  opengl32.glEnable() retval=00000001 ret=004159c1
012c:Call opengl32.glShadeModel(00001d01) ret=004159d9
012c:trace:opengl:glShadeModel (7425)
012c:Ret  opengl32.glShadeModel() retval=00001d01 ret=004159d9
012c:trace:seh:dispatch_exception code=c0000005 flags=0 addr=00413F65
ip=00413f65 tid=012c
012c:trace:seh:dispatch_exception  info[0]=00000000
012c:trace:seh:dispatch_exception  info[1]=c29eb5ad
012c:warn:seh:dispatch_exception EXCEPTION_ACCESS_VIOLATION exception
(code=c0000005) raised
012c:trace:seh:dispatch_exception  eax=c29eb5ad ebx=00000000 ecx=c29eb5ad
edx=0262ce10 esi=0262cdc8 edi=0262ce10
012c:trace:seh:dispatch_exception  ebp=0032fd5c esp=0032fcbc cs=0023 ds=002b
es=002b fs=0063 gs=006b flags=00210206
012c:trace:seh:call_vectored_handlers calling handler at 7B00F5D0 code=c0000005
flags=0
012c:trace:seh:call_vectored_handlers handler at 7B00F5D0 returned 0
012c:trace:seh:call_stack_handlers calling handler at 0043CC80 code=c0000005
flags=0
012c:trace:seh:call_stack_handlers handler at 0043CC80 returned 1
012c:trace:seh:call_stack_handlers calling handler at 00425B98 code=c0000005
flags=0
...
wine: Unhandled page fault on read access to C29EB5AD at address 00413F65
(thread 012c), starting debugger...
--- snip ---

It looks like a late manifestation of heap corruption. If you enable heap
debugging it crashes much earlier, after few scenes.

--- snip ---
$ WINEDEBUG=+seh,+heap,+loaddll,+opengl wine ./liquid.exe >>log_heap.txt 2>&1
...
0100:trace:heap:RtlAllocateHeap (016A0000,70000062,00000030): returning
02435CB0
0100:trace:heap:RtlFreeHeap (016A0000,70000062,02435CB0): returning TRUE
0100:trace:heap:RtlAllocateHeap (016A0000,70000062,00000030): returning
02435CF0
0100:trace:heap:RtlFreeHeap (016A0000,70000062,02435CF0): returning TRUE
0100:trace:heap:RtlAllocateHeap (016A0000,70000062,00000030): returning
02435D30
0100:trace:heap:RtlFreeHeap (016A0000,70000062,02435D30): returning TRUE
0100:trace:heap:RtlAllocateHeap (016A0000,70000062,00000030): returning
01706A68
0100:trace:heap:RtlFreeHeap (016A0000,70000062,01706A68): returning TRUE
0100:trace:heap:RtlAllocateHeap (016A0000,70000062,00000030): returning
02435D70
0100:trace:heap:RtlFreeHeap (016A0000,70000062,02435D70): returning TRUE
0100:trace:heap:RtlAllocateHeap (016A0000,70000062,00000030): returning
02435DB0
0100:trace:heap:RtlFreeHeap (016A0000,70000062,02435DB0): returning TRUE
0100:trace:heap:RtlAllocateHeap (016A0000,70000062,00000030): returning
02435DF0
0100:trace:heap:RtlFreeHeap (016A0000,70000062,02435DF0): returning TRUE
0100:trace:heap:RtlAllocateHeap (016A0000,70000062,00000030): returning
01706C08
0100:trace:heap:RtlFreeHeap (016A0000,70000062,01706C08): returning TRUE
0100:trace:heap:RtlAllocateHeap (016A0000,70000062,00000800): returning
04622420
0100:trace:heap:RtlFreeHeap (016A0000,70000062,04621CE0): returning TRUE
0100:trace:heap:RtlFreeHeap (016A0000,70000062,03E2E550): returning TRUE
0100:trace:opengl:glMatrixMode (5889)
0100:trace:opengl:glLoadIdentity ()
0100:trace:opengl:glMultMatrixd (0x32fd08)
0100:trace:opengl:glViewport (0, 0, 640, 480)
0100:trace:opengl:glMatrixMode (5888)
0100:trace:opengl:glLoadIdentity ()
0100:trace:opengl:glClearColor (0.000000, 0.000000, 0.000000, 1.000000)
0100:trace:opengl:glClear (16384)
0100:trace:opengl:glViewport (0, 0, 640, 480)
0100:trace:opengl:glPushMatrix ()
0100:trace:opengl:glClearColor (0.000000, 0.000000, 0.000000, 1.000000)
0100:trace:opengl:glClear (256)
0100:trace:opengl:glMaterialfv (1028, 4609, 0x32fdb0)
0100:trace:opengl:glColor4f (1.000000, 1.000000, 1.000000, 1.000000)
0100:trace:opengl:glDisable (2896)
0100:trace:opengl:glShadeModel (7424)
0100:trace:seh:dispatch_exception code=c0000005 flags=0 addr=00413F65
ip=00413f65 tid=0100
0100:trace:seh:dispatch_exception  info[0]=00000000
0100:trace:seh:dispatch_exception  info[1]=55555555
0100:warn:seh:dispatch_exception EXCEPTION_ACCESS_VIOLATION exception
(code=c0000005) raised
0100:trace:seh:dispatch_exception  eax=43155bf3 ebx=00000000 ecx=55555555
edx=05380ef8 esi=05380eb0 edi=05380ef8
0100:trace:seh:dispatch_exception  ebp=0032fd94 esp=0032fcf4 cs=0023 ds=002b
es=002b fs=0063 gs=006b flags=00210202
0100:trace:seh:call_vectored_handlers calling handler at 7B00F5D0 code=c0000005
flags=0
0100:trace:seh:call_vectored_handlers handler at 7B00F5D0 returned 0
0100:trace:seh:call_stack_handlers calling handler at 0043CC80 code=c0000005
flags=0
0100:trace:seh:call_stack_handlers handler at 0043CC80 returned 1
0100:trace:seh:call_stack_handlers calling handler at 00425B98 code=c0000005
flags=0
wine: Unhandled page fault on read access to 55555555 at address 00413F65
(thread 0100), starting debugger... 
--- snip ---

$ sha1sum hjb_liqu.zip 
e4ccc6e5626b26a6e4deb6f40ce7ce4064bc0063  hjb_liqu.zip

$ du -sh hjb_liqu.zip 
12M    hjb_liqu.zip

$ wine --version
wine-6.3

Regards

-- 
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.

More information about the wine-bugs mailing list