https://bugs.winehq.org/show_bug.cgi?id=54415
Bug ID: 54415 Summary: mshtml:misc may crash because of an ole32 MapViewOfFile() failure in Wine Product: Wine Version: unspecified Hardware: x86-64 OS: Linux Status: NEW Severity: normal Priority: P2 Component: ole32 Assignee: wine-bugs@winehq.org Reporter: fgouget@codeweavers.com Distribution: ---
In MR2024 mshtml:misc crashed:
mshtml:misc start dlls/mshtml/tests/misc.c Unhandled exception: page fault on write access to 0x00000000 in 32-bit code (0x6ab29755). ... Backtrace: =>0 0x6ab29755 in ucrtbase (+0x69755) (0x0075f758) 1 0x6ab310de memcpy+0x4e(dst=0x000000000, src=0B7F6EF8, n=0x44) [Z:\home\winetest\tools\testbot\var\wine\dlls\msvcrt\string.c:3063] in ucrtbase (0x0075f758) 2 0x008ce97c create_map_from_stream+0xbc(map=<internal error>, stream=<internal error>) [Z:\home\winetest\tools\testbot\var\wine\dlls\ole32\ole2.c:335] in ole32 (0x0075f7b8) 3 0x008ce97c RegisterDragDrop+0x23c(hwnd=<couldn't compute location>, pDropTarget=<couldn't compute location>) [Z:\home\winetest\tools\testbot\var\wine\dlls\ole32\ole2.c:615] in ole32 (0x0075f7b8) 4 0x11a9a2d7 in xul (+0x1a9a2d7) (0x0075f7ec) ... mshtml:misc:093c done (-1073741819) in 0s 10696B
This does not seem to have ever happened in the WineTest runs so that the above merge request is the only known instance.
Looking at create_map_from_stream() it looks like: * CreateFileMappingW() succeeded * MapViewOfFile() failed, returning NULL... * ...which caused memcpy(NULL, ...) to crash
Unfortunately there is no trace that would explain why MapViewOfFile() failed. I'm also unsure of the connection between mshtml:misc and RegisterDragDrop().