http://bugs.winehq.org/show_bug.cgi?id=10323
--- Comment #2 from Juan Lang juan_lang@yahoo.com 2007-11-06 10:52:14 --- The crash is at the end of the log:
000e:Call ntdll.RtlDecodePointer(ffedaed8) ret=10021ee7 000e:Ret ntdll.RtlDecodePointer() retval=00000000 ret=10021ee7 000e:Call KERNEL32.IsDebuggerPresent() ret=1001b1b2 000e:Ret KERNEL32.IsDebuggerPresent() retval=00000000 ret=1001b1b2 000e:Call KERNEL32.SetUnhandledExceptionFilter(00000000) ret=1001b1bc 000e:Ret KERNEL32.SetUnhandledExceptionFilter() retval=004280a2 ret=1001b1bc 000e:Call KERNEL32.UnhandledExceptionFilter(7cda3b80) ret=1001b1c6 wine: Unhandled exception 0xc000000d at address 0x7cda0023:0x1001c7f7 (thread 000e), starting debugger...
No idea why it's using RtlEncodePointer/RtlDecodePointer. Nevertheless, the value ffedaed8 is the encoded version of NULL in this run:
000e:Call ntdll.RtlEncodePointer(00000000) ret=10021e70 000e:Ret ntdll.RtlEncodePointer() retval=ffedaed8 ret=10021e70
Just before this encoding, it does a GetProcAddress for some Fls* functions in kernel32:
000e:Call KERNEL32.GetModuleHandleA(10039d9c "KERNEL32.DLL") ret=1002224d 000e:Ret KERNEL32.GetModuleHandleA() retval=7ede0000 ret=1002224d 000e:Call KERNEL32.GetProcAddress(7ede0000,10039ddc "FlsAlloc") ret=1002226b 000e:Ret KERNEL32.GetProcAddress() retval=00000000 ret=1002226b 000e:Call KERNEL32.GetProcAddress(7ede0000,10039dd0 "FlsGetValue") ret=10022278 000e:Ret KERNEL32.GetProcAddress() retval=00000000 ret=10022278 000e:Call KERNEL32.GetProcAddress(7ede0000,10039dc4 "FlsSetValue") ret=10022285 000e:Ret KERNEL32.GetProcAddress() retval=00000000 ret=10022285 000e:Call KERNEL32.GetProcAddress(7ede0000,10039dbc "FlsFree") ret=10022292 000e:Ret KERNEL32.GetProcAddress() retval=00000000 ret=10022292
It could be one of those that it's trying to use later on the program.