[Bug 31942] Office Professional 2003 Installer Crashes Almost Immediately

http://bugs.winehq.org/show_bug.cgi?id=31942

--- Comment #12 from Anastasius Focht focht@gmx.net 2013-12-01 10:30:08 CST --- Created attachment 46689 --> http://bugs.winehq.org/attachment.cgi?id=46689 WINEDEBUG=+tid,+seh,+relay,+ole,+rpc wine ./setup.exe

Hello folks,

attached is relevant part of trace log (grep -A 170 -B 1000 "winedbg").

Shorter version for search engines/indexers:

--- snip --- ... 0024:trace:rpc:ndr_client_call pStubDesc 0x3000c240, pFormat 0x3000c4d8, ... 0024:trace:rpc:ndr_client_call NDR Version: 0x50002 0024:trace:rpc:ndr_client_call stack size: 0x20 0024:trace:rpc:ndr_client_call proc num: 12 0024:trace:rpc:NdrClientInitializeNew (pRpcMessage == ^0x3347f4, pStubMsg == ^0x334718, pStubDesc == ^0x3000c240, ProcNum == 12) 0024:trace:rpc:ndr_client_call Oi_flags = 0x48 0024:trace:rpc:ndr_client_call MIDL stub version = 0x50100a4 0024:trace:rpc:client_get_handle Explicit primitive handle @ 0 0024:trace:rpc:ndr_client_call Oif_flags = ServerMustSize ClientMustSize HasReturn HasExtensions 0024:fixme:ole:NdrCorrelationInitialize (0x334718, 0x334308, 1024, 0x0): stub 0024:trace:rpc:ndr_client_call CALCSIZE 0024:trace:rpc:client_do_args param[0]: 0x3349b8 type 08 IsIn IsBasetype 0024:trace:ole:NdrBaseTypeBufferSize pStubMsg 0x334718, pMemory 0x3349b8, type 0x08 0024:trace:rpc:client_do_args param[1]: 0x3349bc type 08 IsIn IsBasetype 0024:trace:ole:NdrBaseTypeBufferSize pStubMsg 0x334718, pMemory 0x3349bc, type 0x08 0024:trace:rpc:client_do_args param[2]: 0x3349c0 type 08 IsIn IsBasetype 0024:trace:ole:NdrBaseTypeBufferSize pStubMsg 0x334718, pMemory 0x3349c0, type 0x08 0024:trace:rpc:client_do_args param[3]: 0x3349c4 type 08 IsIn IsBasetype 0024:trace:ole:NdrBaseTypeBufferSize pStubMsg 0x334718, pMemory 0x3349c4, type 0x08 0024:trace:rpc:client_do_args param[4]: 0x3349c8 type 08 IsIn IsBasetype 0024:trace:ole:NdrBaseTypeBufferSize pStubMsg 0x334718, pMemory 0x3349c8, type 0x08 0024:trace:rpc:client_do_args param[5]: 0x3349cc type 1a MustSize MustFree IsIn IsOut IsSimpleRef 0024:trace:ole:NdrComplexStructBufferSize (0x334718,0x3349e4,0x3000c17c) 0024:trace:ole:NdrComplexStructBufferSize (0x334718,0x3349e4,0x3000c17c) 0024:trace:ole:NdrRangeBufferSize pStubMsg 0x334718, pMemory 0x3349e8, type 0xb7 0024:trace:ole:NdrBaseTypeBufferSize pStubMsg 0x334718, pMemory 0x3349e8, type 0x08 0024:trace:ole:NdrRangeBufferSize pStubMsg 0x334718, pMemory 0x334a04, type 0xb7 0024:trace:ole:NdrBaseTypeBufferSize pStubMsg 0x334718, pMemory 0x334a04, type 0x08 0024:trace:ole:NdrRangeBufferSize pStubMsg 0x334718, pMemory 0x334a0c, type 0xb7 0024:trace:ole:NdrBaseTypeBufferSize pStubMsg 0x334718, pMemory 0x334a0c, type 0x08 0024:trace:ole:NdrRangeBufferSize pStubMsg 0x334718, pMemory 0x334a14, type 0xb7 0024:trace:ole:NdrBaseTypeBufferSize pStubMsg 0x334718, pMemory 0x334a14, type 0x08 0024:trace:ole:NdrFixedArrayBufferSize (0x334718, 0x334a40, 0x3000c132) 0024:trace:ole:EmbeddedPointerBufferSize (0x334718,0x334a40,0x3000c136) 0024:trace:ole:NdrComplexStructBufferSize difference = 0x80 0024:trace:ole:NdrRangeBufferSize pStubMsg 0x334718, pMemory 0x3349e8, type 0xb7 0024:trace:ole:NdrBaseTypeBufferSize pStubMsg 0x334718, pMemory 0x3349e8, type 0x08 0024:trace:ole:PointerBufferSize (0x334718,0x334ac0,0x3000c1b2) 0024:trace:ole:PointerBufferSize type=0x12, attr= 0024:trace:ole:NdrConformantStringBufferSize (pStubMsg == ^0x334718, pMemory == ^0x334ac0, pFormat == ^0x3000c138) 0024:trace:ole:array_compute_and_size_conformance string=L"" 0024:trace:ole:ComputeConformanceOrVariance pointer conformance, ofs=8 0024:trace:ole:ComputeConformanceOrVariance dereferenced data type 9 at 0x3349ec, got 128 0024:trace:ole:ComputeConformanceOrVariance resulting conformance is 128 0024:trace:ole:PointerBufferSize (0x334718,0x334bc0,0x3000c1b6) 0024:trace:ole:PointerBufferSize type=0x12, attr= 0024:trace:ole:NdrConformantStringBufferSize (pStubMsg == ^0x334718, pMemory == ^0x334bc0, pFormat == ^0x3000c140) 0024:trace:ole:array_compute_and_size_conformance string=L"" 0024:trace:ole:ComputeConformanceOrVariance pointer conformance, ofs=16 0024:trace:ole:ComputeConformanceOrVariance dereferenced data type 9 at 0x3349f4, got 260 0024:trace:ole:ComputeConformanceOrVariance resulting conformance is 260 0024:trace:ole:PointerBufferSize (0x334718,0x334dc8,0x3000c1ba) 0024:trace:ole:PointerBufferSize type=0x12, attr= 0024:trace:ole:NdrConformantStringBufferSize (pStubMsg == ^0x334718, pMemory == ^0x334dc8, pFormat == ^0x3000c148) 0024:trace:ole:array_compute_and_size_conformance string=L"" 0024:trace:ole:ComputeConformanceOrVariance pointer conformance, ofs=24 0024:trace:ole:ComputeConformanceOrVariance dereferenced data type 9 at 0x3349fc, got 2084 0024:trace:ole:ComputeConformanceOrVariance resulting conformance is 2084 0024:trace:ole:NdrRangeBufferSize pStubMsg 0x334718, pMemory 0x334a04, type 0xb7 0024:trace:ole:NdrBaseTypeBufferSize pStubMsg 0x334718, pMemory 0x334a04, type 0x08 0024:trace:ole:NdrRangeBufferSize pStubMsg 0x334718, pMemory 0x334a0c, type 0xb7 0024:trace:ole:NdrBaseTypeBufferSize pStubMsg 0x334718, pMemory 0x334a0c, type 0x08 0024:trace:ole:PointerBufferSize (0x334718,(nil),0x3000c1be) 0024:trace:ole:PointerBufferSize type=0x12, attr= 0024:trace:ole:NdrRangeBufferSize pStubMsg 0x334718, pMemory 0x334a14, type 0xb7 0024:trace:ole:NdrBaseTypeBufferSize pStubMsg 0x334718, pMemory 0x334a14, type 0x08 0024:trace:ole:PointerBufferSize (0x334718,(nil),0x3000c1c2) 0024:trace:ole:PointerBufferSize type=0x12, attr= 0024:trace:ole:PointerBufferSize (0x334718,(nil),0x3000c1c6) 0024:trace:ole:PointerBufferSize type=0x12, attr= 0024:trace:ole:NdrFixedArrayBufferSize (0x334718, 0x334a40, 0x3000c132) 0024:trace:ole:EmbeddedPointerBufferSize (0x334718,0x334a40,0x3000c136) 0024:trace:ole:PointerBufferSize (0x334718,0x824,0x3000c1ca) 0024:trace:ole:PointerBufferSize type=0x12, attr= 0024:trace:ole:NdrConformantStringBufferSize (pStubMsg == ^0x334718, pMemory == ^0x824, pFormat == ^0x3000c16c) 0024:trace:ole:array_compute_and_size_conformance string=#0824 0024:trace:seh:raise_exception code=c0000005 flags=0 addr=0x7e8f48e4 ip=7e8f48e4 tid=0024 0024:trace:seh:raise_exception info[0]=00000000 0024:trace:seh:raise_exception info[1]=00000824 0024:trace:seh:raise_exception eax=00000824 ebx=7e956000 ecx=00000000 edx=7bceaa08 esi=00334020 edi=00334970 0024:trace:seh:raise_exception ebp=00333f68 esp=00333f58 cs=0023 ds=002b es=002b fs=0063 gs=006b flags=00010202 0024:trace:seh:call_stack_handlers calling handler at 0x3001f6f7 code=c0000005 flags=0 ... wine: Unhandled page fault on read access to 0x00000824 at address 0x7e8f48e4 (thread 0024), starting debugger... 0024:trace:seh:start_debugger Starting debugger "winedbg --auto 35 136" 0024:Ret KERNEL32.UnhandledExceptionFilter() retval=00000000 ret=7bc9dc4d 0024:trace:seh:call_stack_handlers handler at 0x7bc9dc13 returned 1 Unhandled exception: page fault on read access to 0x00000824 in 32-bit code (0x7e8f48e4). ... Backtrace: =>0 0x7e8f48e4 strlenW+0x15(str=*** invalid address 0x824 ***) [/home/focht/projects/wine/wine-git/include/wine/unicode.h:200] in rpcrt4 (0x00333f68) 1 0x7e8f994a array_compute_and_size_conformance+0x1cd(fc='%', pStubMsg=0x334718, pMemory=*** invalid address 0x824 ***, pFormat="%D") [/home/focht/projects/wine/wine-git/dlls/rpcrt4/ndr_marshall.c:1849] in rpcrt4 (0x00333fb8) 2 0x7e8fb8da NdrConformantStringBufferSize+0x166(pStubMsg=<couldn't compute location>, pMemory=<couldn't compute location>, pFormat=<couldn't compute location>) [/home/focht/projects/wine/wine-git/dlls/rpcrt4/ndr_marshall.c:2483] in rpcrt4 (0x00334008) 3 0x7e8f6f07 PointerBufferSize+0x2d2(pStubMsg=0x334718, Pointer=*** invalid address 0x824 ***, pFormat=" ÿ") [/home/focht/projects/wine/wine-git/dlls/rpcrt4/ndr_marshall.c:1034] in rpcrt4 (0x00334098) 4 0x7e8fe869 ComplexBufferSize+0x498(pStubMsg=0x334718, pMemory="$", pFormat="66[", pPointer="") [/home/focht/projects/wine/wine-git/dlls/rpcrt4/ndr_marshall.c:3214] in rpcrt4 (0x003340f8) 5 0x7e900514 NdrComplexStructBufferSize+0x25a(pStubMsg=<couldn't compute location>, pMemory=<couldn't compute location>, pFormat=<couldn't compute location>) [/home/focht/projects/wine/wine-git/dlls/rpcrt4/ndr_marshall.c:3807] in rpcrt4 (0x00334178) 6 0x7e90d3f6 call_buffer_sizer+0xa1(pStubMsg=0x334718, pMemory="ø%", param=0x3000c512) [/home/focht/projects/wine/wine-git/dlls/rpcrt4/ndr_stubless.c:71] in rpcrt4 (0x003341c8) 7 0x7e90ee47 client_do_args+0x293(pStubMsg=0x334718, pFormat="H", phase=STUBLESS_CALCSIZE, fpu_args=(nil), number_of_params=0x7, pRetVal="") [/home/focht/projects/wine/wine-git/dlls/rpcrt4/ndr_stubless.c:455] in rpcrt4 (0x00334228) 8 0x7e910346 ndr_client_call+0xedf(pStubDesc=<couldn't compute location>, pFormat=<couldn't compute location>, stack_top=<couldn't compute location>, fpu_stack=<couldn't compute location>) [/home/focht/projects/wine/wine-git/dlls/rpcrt4/ndr_stubless.c:870] in rpcrt4 (0x00334958) 9 0x7e910876 NdrClientCall2+0x3a(desc=0x3000c240, format="") [/home/focht/projects/wine/wine-git/dlls/rpcrt4/ndr_stubless.c:977] in rpcrt4 (0x0033499c) 10 0x30020a75 in setup (+0x20a74) (0x00334a88) 11 0x30015de9 in setup (+0x15de8) (0x003370b4) 12 0x30017dab in setup (+0x17daa) (0x003370c8) ... 0x7e8f48e4 strlenW+0x15 [/home/focht/projects/wine/wine-git/include/wine/unicode.h:200] in rpcrt4: movzwl 0x0(%eax),%eax 200 while (*s) s++; Modules: Module Address Debug info Name (75 modules) PE 30000000-300ae000 Export setup ... Threads: process tid prio (all id:s are in hex) ... 00000023 (D) F:\setup.exe 00000024 0 <== 00000027 ose.exe 00000032 0 00000031 0 00000030 0 0000002f 0 0000002e 0 0000002d 0 0000002b 0 00000029 0 00000028 0 ... --- snip ---

$ wine --version wine-1.7.7-230-g2507330

Regards