New subject: [Bug 46344] valgrind shows some invalid reads in mshtml/tests/htmldoc.c

22 Dec 2018


      https://bugs.winehq.org/show_bug.cgi?id=46344
Bug ID: 46344
           Summary: valgrind shows some invalid reads in
                    mshtml/tests/htmldoc.c
           Product: Wine
           Version: 4.0-rc3
          Hardware: x86
                OS: Linux
            Status: NEW
          Keywords: download, source, testcase, valgrind
          Severity: normal
          Priority: P2
         Component: mshtml
          Assignee: wine-bugs@winehq.org
          Reporter: austinenglish@gmail.com
      Distribution: ---
../../../tools/runtest -q -P wine -T ../../.. -M mshtml.dll -p
mshtml_test.exe.so htmldoc && touch htmldoc.ok
==14162== Thread 6:
==14162== Syscall param writev(vector[...]) points to uninitialised byte(s)
==14162==    at 0x4356813: writev (writev.c:26)
==14162==    by 0x7BC75457: send_request (server.c:228)
==14162==    by 0x7BC76158: server_call_unlocked (server.c:288)
==14162==    by 0x7BC761AD: wine_server_call (server.c:321)
==14162==    by 0x7BC419E5: server_write_file (file.c:621)
==14162==    by 0x7BC43FCB: NtWriteFile (file.c:1229)
==14162==    by 0x53E1016: rpcrt4_conn_np_write (rpc_transport.c:416)
==14162==    by 0x53D374C: rpcrt4_conn_write (rpc_binding.h:197)
==14162==    by 0x53D4FD0: RPCRT4_SendWithAuth (rpc_message.c:850)
==14162==    by 0x53D5CE2: RPCRT4_Send (rpc_message.c:1249)
==14162==    by 0x53D78DD: process_request_packet (rpc_server.c:462)
==14162==    by 0x53D85EE: RPCRT4_process_packet (rpc_server.c:517)
==14162==    by 0x53D867F: RPCRT4_worker_thread (rpc_server.c:539)
==14162==    by 0x7BC85243: process_rtl_work_item (threadpool.c:349)
==14162==    by 0x7BC867A7: threadpool_worker_proc (threadpool.c:2126)
==14162==    by 0x7BC77F0F: ??? (in
/home/austin/wine-valgrind/dlls/ntdll/ntdll.dll.so)
==14162==    by 0x7BC7B2D5: call_thread_func (signal_i386.c:2654)
==14162==    by 0x7BC77F01: ??? (in
/home/austin/wine-valgrind/dlls/ntdll/ntdll.dll.so)
==14162==  Address 0x49c2b0c is 44 bytes inside a recently re-allocated block
of size 92 alloc'd
==14162==    at 0x7BC483AD: notify_alloc (heap.c:260)
==14162==    by 0x7BC4B8D1: RtlAllocateHeap (heap.c:1726)
==14162==    by 0x53D5086: RPCRT4_SendWithAuth (rpc_message.c:809)
==14162==    by 0x53D5CE2: RPCRT4_Send (rpc_message.c:1249)
==14162==    by 0x53D78DD: process_request_packet (rpc_server.c:462)
==14162==    by 0x53D85EE: RPCRT4_process_packet (rpc_server.c:517)
==14162==    by 0x53D867F: RPCRT4_worker_thread (rpc_server.c:539)
==14162==    by 0x7BC85243: process_rtl_work_item (threadpool.c:349)
==14162==    by 0x7BC867A7: threadpool_worker_proc (threadpool.c:2126)
==14162==    by 0x7BC77F0F: ??? (in
/home/austin/wine-valgrind/dlls/ntdll/ntdll.dll.so)
==14162==    by 0x7BC7B2D5: call_thread_func (signal_i386.c:2654)
==14162==    by 0x7BC77F01: ??? (in
/home/austin/wine-valgrind/dlls/ntdll/ntdll.dll.so)
==14162==  Uninitialised value was created by a client request
==14162==    at 0x7BC4831C: mark_block_uninitialized (heap.c:214)
==14162==    by 0x7BC4A643: initialize_block (heap.c:245)
==14162==    by 0x7BC4B8E7: RtlAllocateHeap (heap.c:1727)
==14162==    by 0x4BE5298: IMalloc_fnAlloc (ifs.c:187)
==14162==    by 0x4BE572E: IMalloc_Alloc (objidl.h:1414)
==14162==    by 0x4BE572E: CoTaskMemAlloc (???:0)
==14162==    by 0x4C12F6A: RemUnknown_RemQueryInterface (stubmanager.c:719)
==14162==    by 0x4C1B589: IRemUnknown_RemQueryInterface_Stub (dcom_p.c:366)
==14162==    by 0x53B2DB4: CStdStubBuffer_Invoke (cstub.c:490)
==14162==    by 0x4BFC003: IRpcStubBuffer_Invoke (objidl.h:7887)
==14162==    by 0x4BFC003: RPC_ExecuteCall (???:0)
==14162==    by 0x4BCB493: apartment_wndproc (compobj.c:1500)
==14162==    by 0x4F06F0D: ??? (in
/home/austin/wine-valgrind/dlls/user32/user32.dll.so)
==14162==    by 0x4F0752B: call_window_proc (winproc.c:246)
==14162==    by 0x4F09554: WINPROC_call_window (winproc.c:921)
==14162==    by 0x4ECF35F: DispatchMessageW (message.c:4055)
==14162==    by 0x4AA1F06: IEWinMain (iexplore.c:1193)
==14162==    by 0x4A419F3: wWinMain (main.c:92)
==14162==    by 0x4A41C48: wmain (exe_wmain.c:51)
==14162==    by 0x4A41B3F: __wine_spec_exe_wentry (exe_wentry.c:36)
==14162==    by 0x7B45C1E1: ??? (in
/home/austin/wine-valgrind/dlls/kernel32/kernel32.dll.so)
==14162==    by 0x7B460231: start_process (process.c:1273)
==14162==
==13345== Thread 40:
==13345== Syscall param writev(vector[...]) points to uninitialised byte(s)
==13345==    at 0x4356813: writev (writev.c:26)
==13345==    by 0x7BC75457: send_request (server.c:228)
==13345==    by 0x7BC76158: server_call_unlocked (server.c:288)
==13345==    by 0x7BC761AD: wine_server_call (server.c:321)
==13345==    by 0x7BC419E5: server_write_file (file.c:621)
==13345==    by 0x7BC43FCB: NtWriteFile (file.c:1229)
==13345==    by 0x53A8016: rpcrt4_conn_np_write (rpc_transport.c:416)
==13345==    by 0x539A74C: rpcrt4_conn_write (rpc_binding.h:197)
==13345==    by 0x539BFD0: RPCRT4_SendWithAuth (rpc_message.c:850)
==13345==    by 0x539CCE2: RPCRT4_Send (rpc_message.c:1249)
==13345==    by 0x539E8DD: process_request_packet (rpc_server.c:462)
==13345==    by 0x539F5EE: RPCRT4_process_packet (rpc_server.c:517)
==13345==    by 0x539F67F: RPCRT4_worker_thread (rpc_server.c:539)
==13345==    by 0x7BC85243: process_rtl_work_item (threadpool.c:349)
==13345==    by 0x7BC867A7: threadpool_worker_proc (threadpool.c:2126)
==13345==    by 0x7BC77F0F: ??? (in
/home/austin/wine-valgrind/dlls/ntdll/ntdll.dll.so)
==13345==    by 0x7BC7B2D5: call_thread_func (signal_i386.c:2654)
==13345==    by 0x7BC77F01: ??? (in
/home/austin/wine-valgrind/dlls/ntdll/ntdll.dll.so)
==13345==  Address 0x8eb5f64 is 44 bytes inside a recently re-allocated block
of size 92 alloc'd
==13345==    at 0x7BC483AD: notify_alloc (heap.c:260)
==13345==    by 0x7BC4B8D1: RtlAllocateHeap (heap.c:1726)
==13345==    by 0x539C086: RPCRT4_SendWithAuth (rpc_message.c:809)
==13345==    by 0x539CCE2: RPCRT4_Send (rpc_message.c:1249)
==13345==    by 0x539E8DD: process_request_packet (rpc_server.c:462)
==13345==    by 0x539F5EE: RPCRT4_process_packet (rpc_server.c:517)
==13345==    by 0x539F67F: RPCRT4_worker_thread (rpc_server.c:539)
==13345==    by 0x7BC85243: process_rtl_work_item (threadpool.c:349)
==13345==    by 0x7BC867A7: threadpool_worker_proc (threadpool.c:2126)
==13345==    by 0x7BC77F0F: ??? (in
/home/austin/wine-valgrind/dlls/ntdll/ntdll.dll.so)
==13345==    by 0x7BC7B2D5: call_thread_func (signal_i386.c:2654)
==13345==    by 0x7BC77F01: ??? (in
/home/austin/wine-valgrind/dlls/ntdll/ntdll.dll.so)
==13345==  Uninitialised value was created by a client request
==13345==    at 0x7BC4831C: mark_block_uninitialized (heap.c:214)
==13345==    by 0x7BC4A643: initialize_block (heap.c:245)
==13345==    by 0x7BC4B8E7: RtlAllocateHeap (heap.c:1727)
==13345==    by 0x4CAC298: IMalloc_fnAlloc (ifs.c:187)
==13345==    by 0x4CAC72E: IMalloc_Alloc (objidl.h:1414)
==13345==    by 0x4CAC72E: CoTaskMemAlloc (???:0)
==13345==    by 0x4CD9F6A: RemUnknown_RemQueryInterface (stubmanager.c:719)
==13345==    by 0x4CE2589: IRemUnknown_RemQueryInterface_Stub (dcom_p.c:366)
==13345==    by 0x5379DB4: CStdStubBuffer_Invoke (cstub.c:490)
==13345==    by 0x4CC3003: IRpcStubBuffer_Invoke (objidl.h:7887)
==13345==    by 0x4CC3003: RPC_ExecuteCall (???:0)
==13345==    by 0x4C92493: apartment_wndproc (compobj.c:1500)
==13345==    by 0x4FCDF0D: ??? (in
/home/austin/wine-valgrind/dlls/user32/user32.dll.so)
==13345==    by 0x4FCE52B: call_window_proc (winproc.c:246)
==13345==    by 0x4FD0554: WINPROC_call_window (winproc.c:921)
==13345==    by 0x4F9635F: DispatchMessageW (message.c:4055)
==13345==    by 0x4C98407: CoWaitForMultipleHandles (compobj.c:4591)
==13345==    by 0x4CC1047: ClientRpcChannelBuffer_SendReceive (rpc.c:913)
==13345==    by 0x53782FE: IRpcChannelBuffer_SendReceive (objidl.h:7075)
==13345==    by 0x53782FE: NdrProxySendReceive (???:0)
==13345==    by 0x2327655D: ITargetFramePriv2_AggregatedNavigation2_Proxy
(actxprxy_htiface_p.c:3445)
==13345==    by 0x6EDE7BE: ITargetFramePriv2_AggregatedNavigation2
(htiface.h:600)
==13345==    by 0x6EDE7BE: navigate_new_window (???:0)
==13345==    by 0x6ED00E4: HTMLWindow2_open (htmlwindow.c:1012)
==13345==
-- 
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.

[Bug 46344] New: valgrind shows some invalid reads in mshtml/tests/ htmldoc.c