http://bugs.winehq.org/show_bug.cgi?id=17414
Summary: user32/dde test crashes if +heap enabled Product: Wine Version: 1.1.15 Platform: PC URL: http://test.winehq.org/data/6a1537c4b5037be5253c33021fda 3a02430533f7/wine_xp_ae-ub-810-heap/riched32:editor.html OS/Version: Linux Status: NEW Keywords: download, source, testcase Severity: enhancement Priority: P2 Component: user32 AssignedTo: wine-bugs@winehq.org ReportedBy: austinenglish@gmail.com
Created an attachment (id=19484) --> (http://bugs.winehq.org/attachment.cgi?id=19484) backtrace in 1.1.15
wine: Unhandled page fault on read access to 0x00130000 at address 0x6045971b (thread 0009), starting debugger... ... =>0 0x6045971b CompareStringW+0x13b(lcid=1033, style=0, str1=0x130000, len1=0, str2=0x6074c780, len2=-1) [/home/austin/wine-git/dlls/kernel32/../../include/wine/unicode.h:216] in kernel32 (0x0032f848) 1 0x6045bed4 lstrcmpW+0x64(str1=<register EDI not in topmost frame>, str2=<register ESI not in topmost frame>) [/home/austin/wine-git/dlls/kernel32/locale.c:2834] in kernel32 (0x0032f878) 2 0x60681d7a dde_server_wndprocW+0x3da(hwnd=0xe0028, msg=1000, wparam=458798, lparam=<register EDI not in topmost frame>) [/home/austin/wine-git/dlls/user32/tests/dde.c:1215] in user32_test (0x0032f8b8) 3 0x6082337a WINPROC_wrapper+0x1a() in user32 (0x0032f8e8) 4 0x608237ca call_window_proc+0x6a(hwnd=<register EDI not in topmost frame>, msg=<register ESI not in topmost frame>, wp=458798, lp=1204994, result=0x32f998, arg=0x606819a0) [/home/austin/wine-git/dlls/user32/winproc.c:458] in user32 (0x0032f928) 5 0x60828af7 WINPROC_call_window+0xf7(hwnd=<register EDI not in topmost frame>, msg=1000, wParam=458798, lParam=1204994, result=0x32f998, unicode=1, mapping=WMCHAR_MAP_DISPATCHMESSAGE) [/home/austin/wine-git/dlls/user32/winproc.c:2218] in user32 (0x0032f968) 6 0x607e7ee6 DispatchMessageW+0x96(msg=<register EDI not in topmost frame>) [/home/austin/wine-git/dlls/user32/message.c:3122] in user32 (0x0032f9a8) 7 0x607a4037 WDML_SyncWaitTransactionReply+0xe7(hConv=0x1254b8, dwTimeout=<register ESI not in topmost frame>, pXAct=0x125508, ack=0x32fb84) [/home/austin/wine-git/dlls/user32/dde_client.c:1069] in user32 (0x0032fa08) 8 0x607a4b21 DdeClientTransaction+0x651(pData="test dde command", cbData=17, hConv=0x1254b8, hszItem=0xdead, wFmt=48879, wType=16464, dwTimeout=1000, pdwResult=0x32fb84) [/home/austin/wine-git/dlls/user32/dde_client.c:1225] in user32 (0x0032fa68) 9 0x60686158 test_dde_aw_transaction+0x638() [/home/austin/wine-git/dlls/user32/tests/dde.c:1374] in user32_test (0x0032fb98) ... 216 while (*s) s++;
Attached is the backtrace...I've stripped out +heap, so the output is readable, but easily reproducible.
http://bugs.winehq.org/show_bug.cgi?id=17414
Austin English austinenglish@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- URL|http://test.winehq.org/data/%7Chttp://test.winehq.org/data/ |6a1537c4b5037be5253c33021fda|6a1537c4b5037be5253c33021fda |3a02430533f7/wine_xp_ae-ub- |3a02430533f7/wine_xp_ae-ub- |810- |810-heap/user32:dde.html |heap/riched32:editor.html |
http://bugs.winehq.org/show_bug.cgi?id=17414
Austin English austinenglish@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |FIXED
--- Comment #1 from Austin English austinenglish@gmail.com 2009-02-26 11:44:47 --- Fixed for the past few days.
http://bugs.winehq.org/show_bug.cgi?id=17414
Alexandre Julliard julliard@winehq.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |CLOSED
--- Comment #2 from Alexandre Julliard julliard@winehq.org 2009-02-27 16:31:45 --- Closing bugs fixed in 1.1.16.
http://bugs.winehq.org/show_bug.cgi?id=17414
Austin English austinenglish@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|CLOSED |REOPENED Resolution|FIXED |
--- Comment #3 from Austin English austinenglish@gmail.com 2009-03-06 03:54:02 --- Seems it's spurious:
http://test.winehq.org/data/3db77ce50b9dfa811966afe15604ce2ee3e20c8e/wine_ae...
Reopening, was never fixed in the first place.
http://bugs.winehq.org/show_bug.cgi?id=17414
Dan Kegel dank@kegel.com changed:
What |Removed |Added ---------------------------------------------------------------------------- CC| |dank@kegel.com
--- Comment #4 from Dan Kegel dank@kegel.com 2009-07-03 23:58:36 --- Still present.
http://bugs.winehq.org/show_bug.cgi?id=17414
Dan Kegel dank@kegel.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Blocks| |9916
http://bugs.winehq.org/show_bug.cgi?id=17414
Austin English austinenglish@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Attachment #19484|0 |1 is obsolete| |
--- Comment #5 from Austin English austinenglish@gmail.com 2011-08-15 21:43:52 CDT --- Created an attachment (id=35976) --> (http://bugs.winehq.org/attachment.cgi?id=35976) terminal output/backtrace
Took two tries in 1.3.26, but still occurs.
http://bugs.winehq.org/show_bug.cgi?id=17414
Austin English austinenglish@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|REOPENED |NEW
--- Comment #6 from Austin English austinenglish@gmail.com 2011-08-15 21:44:15 CDT --- Still in 1.3.26.
http://bugs.winehq.org/show_bug.cgi?id=17414
--- Comment #7 from Dan Kegel dank@kegel.com 2011-09-16 14:18:11 CDT --- I'm not seeing this on the buildbot. Is it still happening for you?
http://bugs.winehq.org/show_bug.cgi?id=17414
--- Comment #8 from Austin English austinenglish@gmail.com 2011-09-19 16:05:58 CDT --- (In reply to comment #7)
I'm not seeing this on the buildbot. Is it still happening for you?
I was able to get it in wine-1.3.28-373-g8b903e4 / X 1.9.4 / gnome 2.32.1 / gentoo.
http://bugs.winehq.org/show_bug.cgi?id=17414
Austin English austinenglish@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Attachment #35976|0 |1 is obsolete| |
--- Comment #9 from Austin English austinenglish@gmail.com 2011-09-19 16:06:56 CDT --- Created an attachment (id=36470) --> (http://bugs.winehq.org/attachment.cgi?id=36470) terminal output/backtrace
Updated backtrace.
http://bugs.winehq.org/show_bug.cgi?id=17414
--- Comment #10 from Dan Kegel dank@kegel.com 2011-10-15 16:54:34 CDT --- Valgrind notices this, too.
Invalid read of size 2 at strlenW (unicode.h:200) by CompareStringW (locale.c:2821) by lstrcmpW (locale.c:2976) by dde_server_wndprocW (dde.c:1424) by ??? (in user32.dll.so) by call_window_proc (winproc.c:242) by WINPROC_call_window (winproc.c:899) by DispatchMessageW (message.c:3809) by WDML_SyncWaitTransactionReply (dde_client.c:1069) by WDML_ClientHandle (dde_client.c:1126) by DdeClientTransaction (dde_client.c:1224) by test_dde_aw_transaction (dde.c:1613) by func_dde (dde.c:2775) by run_test (test.h:556)
http://bugs.winehq.org/show_bug.cgi?id=17414
--- Comment #11 from Dan Kegel dank@kegel.com 2011-10-15 16:57:41 CDT --- Created attachment 36925 --> http://bugs.winehq.org/attachment.cgi?id=36925 More valgrind fallout from this error
http://bugs.winehq.org/show_bug.cgi?id=17414
--- Comment #12 from Austin English austinenglish@gmail.com --- Still in wine-1.7.11-114-g6f498c4.
http://bugs.winehq.org/show_bug.cgi?id=17414
Austin English austinenglish@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Attachment #36470|0 |1 is obsolete| |
--- Comment #13 from Austin English austinenglish@gmail.com --- Created attachment 47348 --> http://bugs.winehq.org/attachment.cgi?id=47348 backtrace
https://bugs.winehq.org/show_bug.cgi?id=17414
--- Comment #14 from Austin English austinenglish@gmail.com --- Still in wine-1.7.16-178-g7e874ae
https://bugs.winehq.org/show_bug.cgi?id=17414
--- Comment #15 from Austin English austinenglish@gmail.com --- *** Bug 17594 has been marked as a duplicate of this bug. ***
https://bugs.winehq.org/show_bug.cgi?id=17414
Austin English austinenglish@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Depends on| |36583
--- Comment #16 from Austin English austinenglish@gmail.com --- Bug 36583 is for the valgrind warnings
https://bugs.winehq.org/show_bug.cgi?id=17414
Austin English austinenglish@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |FIXED Status|NEW |RESOLVED
--- Comment #17 from Austin English austinenglish@gmail.com --- No longer crashing for me in wine-9.0-rc5.
https://bugs.winehq.org/show_bug.cgi?id=17414
Alexandre Julliard julliard@winehq.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |CLOSED
--- Comment #18 from Alexandre Julliard julliard@winehq.org --- Closing bugs fixed in 9.1.
-
wine-bugs@winehq.org -
WineHQ Bugzilla