https://bugs.winehq.org/show_bug.cgi?id=37449
Sebastian Lackner sebastian@fds-team.de changed:
What |Removed |Added ---------------------------------------------------------------------------- CC| |sebastian@fds-team.de
--- Comment #1 from Sebastian Lackner sebastian@fds-team.de --- The following patchset implements RtlDecompressBuffer: https://github.com/wine-compholio/wine-staging/tree/master/patches/ntdll-LZN...
Unfortunately it doesn't really solve the problem. I am not sure if this is a remaining issue with the implementation, or if something else is going wrong. Could you maybe take a look?
I noticed that a couple of new lines appeared, but not sure if they are relevant:
--- snip --- [...] 0031:Call ntdll.LdrFindEntryForAddress(7b810000,0033f5b8) ret=10004889 0031:Ret ntdll.LdrFindEntryForAddress() retval=00000000 ret=10004889 0031:Call ntdll.RtlAcquirePebLock() ret=100041e0 0031:Ret ntdll.RtlAcquirePebLock() retval=00000000 ret=100041e0 0031:Call ntdll.RtlFindClearBitsAndSet(7bce606c,00000001,00000000) ret=100041fa 0031:Ret ntdll.RtlFindClearBitsAndSet() retval=00000006 ret=100041fa 0031:Call ntdll.RtlReleasePebLock() ret=10004263 0031:Ret ntdll.RtlReleasePebLock() retval=00000000 ret=10004263 [...] --- snip ---
The weird thing is the return address, the application seems to mess around manually with the TEB (in this case modifying the TlsBitmap) instead of using API calls?!