wine-bugs December 2017

wine-bugs@winehq.org

1 participants
7834 discussions

[Bug 21483] New: changed token security breaks .NET Framework SDK tools
by wine-bugs＠winehq.org 19 Feb '21

19 Feb '21

http://bugs.winehq.org/show_bug.cgi?id=21483 Summary: changed token security breaks .NET Framework SDK tools Product: Wine Version: 1.1.33 Platform: x86 OS/Version: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: wineserver AssignedTo: wine-bugs(a)winehq.org ReportedBy: focht(a)gmx.net Hello, some of Microsoft's tools from .NET Framework SDKs - namely managed debuggers (CLR) - stopped working after 1.1.33+ release. They seem to be very picky about object security. I bisected this one but technically this isn't a regression because Rob's token patches made Wine more correct - exposing another object security problem. --- snip --- $ git bisect bad bd56916f90e68632993a7275fe30a55a7efa222a is the first bad commit commit bd56916f90e68632993a7275fe30a55a7efa222a Author: Rob Shearman <robertshearman(a)gmail.com> Date: Mon Nov 16 20:11:06 2009 +0000 server: Extend get_token_user server call to also retrieve SIDs for the token's owner or primary group. :040000 040000 829f1543526675ae48f6fde8c8cedff74fd51797 7a77653291795c209ec529dd6660d52fc922a58c M dlls :040000 040000 57735b53b28db37ac4627dc009000e225175164a 4dcc1388cb136e559c06106632c08e8e610fe557 M include :040000 040000 4e83227cb0133c7e288a1e930461d4efe1130882 cf1c3539d6b3c91c854fa2b9b672f68ea601f639 M server --- snip --- "old" behaviour, where default process token was like this: Token owner -> S-1-5-4 "NT AUTHORITY\INTERACTIVE" (well-known group) Token user -> S-1-5-4 "NT AUTHORITY\INTERACTIVE" (well-known group) Token primary group -> S-1-5-32-544 "BUILTIN\Administrators" (alias) NtQueryInformationToken had the token owner info hard-coded (to SECURITY_INTERACTIVE_RID) while Rob's patches moved the actual query to wineserver. --- Basically the app code that verifies the security of created objects goes like this: - get SD from created object (event) handle -> GetKernelObjectSecurity( OWNER_SECURITY_INFORMATION | DACL_SECURITY_INFORMATION) - get owner SID of SD -> GetSecurityDescriptorOwner() -> SID1 - get DACL of SD -> GetSecurityDescriptorDacl() - for each ACE from DACL (GetAce) -> SID2: check ACE SID against SD owner SID -> EqualSid( SID1, SID2) - match -> profit! not -> fail! --- snip --- ... 0023: create_event( access=001f0003, attributes=00000080, manual_reset=1, initial_state=0, objattr={rootdir=0014,sd={control=00000004,owner=<not present>,group=<not present>,sacl={},dacl={{AceType=ACCESS_ALLOWED_ACE_TYPE,Mask=e01f001f,AceFlags=0,Sid={S-1-5-4}},{AceType=ACCESS_ALLOWED_ACE_TYPE,Mask=e01f001f,AceFlags=0,Sid={S-1-5-4}}}},name=L"Global\\CorDBIPCSetupSyncEvent_36"} ) 0023: create_event() = 0 { handle=01c4 } ... 0025:trace:advapi:GetKernelObjectSecurity (0xc4,0x00000005,0x14ef40,0x00000050,0x33f7e8) 0025:trace:ntdll:NtQuerySecurityObject (0xc4,0x00000005,0x14ef40,0x00000050,0x33f7e8) 0025: get_security_object( handle=00c4, security_info=00000005 ) 0025: get_security_object() = 0 { sd_len=00000050, sd={control=00000037,owner={S-1-5-4},group=<not present>,sacl={},dacl={{AceType=ACCESS_ALLOWED_ACE_TYPE,Mask=e01f001f,AceFlags=0,Sid={S-1-5-4}},{AceType=ACCESS_ALLOWED_ACE_TYPE,Mask=e01f001f,AceFlags=0,Sid={S-1-5-4}}}} } 0025:trace:ntdll:RtlGetDaclSecurityDescriptor (0x14ef40,0x33f7c3,0x33f7ec,0x33f7c2) 0025:trace:ntdll:RtlGetAce (0x14ef60,0,0x33f7f0) 0025:trace:ntdll:RtlLengthSid sid=0x14ef54 0025: open_event( access=001f0003, attributes=00000002, rootdir=0034, name=L"Global\\CorDBIPCLSEventAvailName_36" ) 0025: open_event() = 0 { handle=00c8 } ... --- snip --- "new" behaviour, where default process token is now like this: Token owner -> S-1-5-32-544 "BUILTIN\Administrators" (alias) Token user -> S-1-5-4 "NT AUTHORITY\INTERACTIVE" (well-known group) Token primary group -> S-1-5-32-544 "BUILTIN\Administrators" (alias) --- snip --- ... 0024:trace:ntdll:NtOpenProcessTokenEx (0x1b0,0x00000008,0x00000000,0x318e6d0) 0024: open_token( handle=01b0, access=00000008, attributes=00000000, flags=00000000 ) 0024: open_token() = 0 { token=01b4 } ... 0024:trace:advapi:GetTokenInformation (0x1b4, TokenOwner, 0x184130, 20, 0x318e6e0): 0024:trace:ntdll:NtQueryInformationToken (0x1b4,4,0x184130,20,0x318e6e0) 0024: get_token_sid( handle=01b4, which_sid=00000004 ) 0024: get_token_sid() = 0 { sid_len=16, sid={S-1-5-32-544} } ... 0024: create_event( access=001f0003, attributes=00000080, manual_reset=1, initial_state=0, objattr={rootdir=0018,sd={control=00000004,owner=<not present>,group=<not present>,sacl={},dacl={{AceType=ACCESS_ALLOWED_ACE_TYPE,Mask=e01f001f,AceFlags=0,Sid={S-1-5-32-544}},{AceType=ACCESS_ALLOWED_ACE_TYPE,Mask=e01f001f,AceFlags=0,Sid={S-1-5-32-544}}}},name=L"Global\\CorDBIPCSetupSyncEvent_37"} ) 0024: create_event() = 0 { handle=01c8 } ... 0026:trace:advapi:GetKernelObjectSecurity (0xc8,0x00000005,(nil),0x00000000,0x33f7e8) 0026:trace:ntdll:NtQuerySecurityObject (0xc8,0x00000005,(nil),0x00000000,0x33f7e8) 0026: get_security_object( handle=00c8, security_info=00000005 ) 0026: get_security_object() = 0 { sd_len=00000058, sd={control=00000037,owner={S-1-5-4},group=<not present>,sacl={},dacl={{AceType=ACCESS_ALLOWED_ACE_TYPE,Mask=e01f001f,AceFlags=0,Sid={S-1-5-32-544}},{AceType=ACCESS_ALLOWED_ACE_TYPE,Mask=e01f001f,AceFlags=0,Sid={S-1-5-32-544}}}} } ... --- snip --- Using the "admins" sid (alias) as token user in server/token.c:token_create_admin() instead of current "interactive" sid fixes the problem. Though I don't know if this is the right thing to do. I hope I provided enough infos and let Alexandre handle it ;-) To get detailed token infos/dumps you might be interested in this little console app, from cygwin's Corinna Vinschen ;-) http://www.mail-archive.com/cygwin@cygwin.com/msg71800.html It might provide useful information when run under different security principals. Regards -- Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email Do not reply to this email, post in Bugzilla using the above URL to reply. ------- You are receiving this mail because: ------- You are watching all bug changes.

2 15

[Bug 21235] New: Monopoly Deluxe crash while starting
by wine-bugs＠winehq.org 19 Feb '21

19 Feb '21

http://bugs.winehq.org/show_bug.cgi?id=21235 Summary: Monopoly Deluxe crash while starting Product: Wine Version: 1.1.35 Platform: x86 URL: http://cdn.media.zylom.com/games/2130/7/34/2964/monopo lydownload.exe OS/Version: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: -unknown AssignedTo: wine-bugs(a)winehq.org ReportedBy: jaimerave(a)gmail.com Created an attachment (id=25512) --> (http://bugs.winehq.org/attachment.cgi?id=25512) backtrace After the initial screen, when you click in the button to start the game it just crash. I'm attaching the backtrace. -- Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email Do not reply to this email, post in Bugzilla using the above URL to reply. ------- You are receiving this mail because: ------- You are watching all bug changes.

2 11

[Bug 14239] New: Sonos Desktop Controller: Crashes clicking in the Music Library list
by wine-bugs＠winehq.org 18 Feb '21

18 Feb '21

http://bugs.winehq.org/show_bug.cgi?id=14239 Summary: Sonos Desktop Controller: Crashes clicking in the Music Library list Product: Wine Version: 1.1.0 Platform: PC URL: http://www.sonos.com/support/ OS/Version: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: -unknown AssignedTo: wine-bugs(a)winehq.org ReportedBy: dunc(a)dflock.co.uk Created an attachment (id=14528) --> (http://bugs.winehq.org/attachment.cgi?id=14528) Terminal trace of running Sonos Desktop Controller until crash. When running the Sonos Desktop Controller software, v2.5 - available here: http://www.sonos.com/support/, clicking around in the Music Library List on the right hand side causes the software to crash. Lots of other things also cause this software to crash running under Wine - it crashes a lot - but this crash is pretty repeatable. -- Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email Do not reply to this email, post in Bugzilla using the above URL to reply. ------- You are receiving this mail because: ------- You are watching all bug changes.

2 10

[Bug 33061] New: Unimplemented function
by wine-bugs＠winehq.org 18 Feb '21

18 Feb '21

http://bugs.winehq.org/show_bug.cgi?id=33061 Bug #: 33061 Summary: Unimplemented function Product: Wine Version: unspecified Platform: x86 OS/Version: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: msvcp AssignedTo: wine-bugs(a)winehq.org ReportedBy: andre.rothe(a)phosco.info Classification: Unclassified Created attachment 43705 --> http://bugs.winehq.org/attachment.cgi?id=43705 trace information after a crash I have tried to use a plugin from Garmin (www.garmin.com) which updates the maps of my Garmin nüvi. The attached trace shows you an unimplemented function within a DLL. -- Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email Do not reply to this email, post in Bugzilla using the above URL to reply. ------- You are receiving this mail because: ------- You are watching all bug changes.

2 3

[Bug 30852] New: Thunderird upgrade crash
by wine-bugs＠winehq.org 18 Feb '21

18 Feb '21

http://bugs.winehq.org/show_bug.cgi?id=30852 Bug #: 30852 Summary: Thunderird upgrade crash Product: Wine Version: unspecified Platform: x86-64 OS/Version: Linux Status: UNCONFIRMED Severity: major Priority: P2 Component: -unknown AssignedTo: wine-bugs(a)winehq.org ReportedBy: schick27(a)gmail.com Classification: Unclassified Created attachment 40407 --> http://bugs.winehq.org/attachment.cgi?id=40407 crash report Upgraded thunderbird portable running on usb drive. It started, then crashed. It runs fine on Windows. Now will not even open with Wine. -- Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email Do not reply to this email, post in Bugzilla using the above URL to reply. ------- You are receiving this mail because: ------- You are watching all bug changes.

2 3

[Bug 25966] New: AutoCAD 2009: Unimplemented function msvcp80.dll.??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@XZ
by wine-bugs＠winehq.org 18 Feb '21

18 Feb '21

http://bugs.winehq.org/show_bug.cgi?id=25966 Summary: AutoCAD 2009: Unimplemented function msvcp80.dll.??0?$basic_ifstream@DU?$char_traits@D@std@ @@std@@QAE@XZ Product: Wine Version: 1.3.12 Platform: x86 OS/Version: Linux Status: UNCONFIRMED Severity: minor Priority: P2 Component: msvcp AssignedTo: wine-bugs(a)winehq.org ReportedBy: lukasz.wojnilowicz(a)gmail.com Created an attachment (id=33105) --> (http://bugs.winehq.org/attachment.cgi?id=33105) Terminal output on wine-1.3.12-272-g2d6b748 Steps to reproduce: 1) remove ~/.wine 2) winetricks gecko 3) wine setup.exe 4) choose "install tools" Behaviour: Wine error. Expected behaviour: Page with list of tools to install. Workaround: winetricks vcrun2005 -- Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email Do not reply to this email, post in Bugzilla using the above URL to reply. ------- You are receiving this mail because: ------- You are watching all bug changes.

2 23

[Bug 29789] New: unimplemented function firefox 10
by wine-bugs＠winehq.org 18 Feb '21

18 Feb '21

http://bugs.winehq.org/show_bug.cgi?id=29789 Bug #: 29789 Summary: unimplemented function firefox 10 Product: Wine Version: 1.4-rc2 Platform: x86 OS/Version: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: msvcp AssignedTo: wine-bugs(a)winehq.org ReportedBy: guy.roussin(a)teledetection.fr Classification: Unclassified Hi, unimplemented function msvcp80.dll.??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@XZ called in 32-bit code (0x7b83b9f2). -- Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email Do not reply to this email, post in Bugzilla using the above URL to reply. ------- You are receiving this mail because: ------- You are watching all bug changes.

2 4

[Bug 29854] New: Firefox 10 crash when accessing netflix page which uses Silverlight
by wine-bugs＠winehq.org 18 Feb '21

18 Feb '21

http://bugs.winehq.org/show_bug.cgi?id=29854 Bug #: 29854 Summary: Firefox 10 crash when accessing netflix page which uses Silverlight Product: Wine Version: unspecified Platform: x86-64 OS/Version: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: msvcp AssignedTo: wine-bugs(a)winehq.org ReportedBy: rblenis(a)gmail.com Classification: Unclassified Created attachment 38783 --> http://bugs.winehq.org/attachment.cgi?id=38783 generated backtrace tried to use netflix. accessedpage and it required silverlight. installed silverlight and went back to page, causing crash. crash happens every time I visit that page (or any that requires silverlight?). -- Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email Do not reply to this email, post in Bugzilla using the above URL to reply. ------- You are receiving this mail because: ------- You are watching all bug changes.

2 3

[Bug 27077] New: Need for Speed World needs native msvcp90 (purist)
by wine-bugs＠winehq.org 18 Feb '21

18 Feb '21

http://bugs.winehq.org/show_bug.cgi?id=27077 Summary: Need for Speed World needs native msvcp90 (purist) Product: Wine Version: 1.3.19 Platform: x86 OS/Version: Linux Status: NEW Severity: normal Priority: P2 Component: msvcp AssignedTo: wine-bugs(a)winehq.org ReportedBy: dank(a)kegel.com Launcher is fine, but the real game crashes on entry with unimplemented function msvcp90.dll.??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@XZ mscodescan.pl lists 90 missing symbols from msvcp90. -- Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email Do not reply to this email, post in Bugzilla using the above URL to reply. ------- You are receiving this mail because: ------- You are watching all bug changes.

2 9

[Bug 28353] New: Total Annihilation crashes on start, needs msvcp90.dll.??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@XZ
by wine-bugs＠winehq.org 18 Feb '21

18 Feb '21

http://bugs.winehq.org/show_bug.cgi?id=28353 Summary: Total Annihilation crashes on start, needs msvcp90.dll.??0?$basic_ifstream@DU?$char_traits@D@std@ @@std@@QAE@XZ Product: Wine Version: unspecified Platform: x86 OS/Version: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: msvcp AssignedTo: wine-bugs(a)winehq.org ReportedBy: vhaarr+wine(a)gmail.com Created an attachment (id=36342) --> (http://bugs.winehq.org/attachment.cgi?id=36342) stdout When I start Total Annihilation it crashes immediately. This is with wine git compiled with commit 05b2cc19 (todays push) - see bug 27780. -- Configure bugmail: http://bugs.winehq.org/userprefs.cgi?tab=email Do not reply to this email, post in Bugzilla using the above URL to reply. ------- You are receiving this mail because: ------- You are watching all bug changes.

2 7

Jump to page:

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

wine-bugs December 2017