http://bugs.winehq.org/show_bug.cgi?id=14490
Summary: Corel Presentations: Unhandled Exception in strlen Product: Wine Version: 1.0.0 Platform: PC OS/Version: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: user32 AssignedTo: wine-bugs@winehq.org ReportedBy: pbronline-wine@yahoo.co.uk
Created an attachment (id=14813) --> (http://bugs.winehq.org/attachment.cgi?id=14813) Console log of Crash with Corel Presentations 12
Application crashes in strlen in libc.so.6 called from DrawTextA in user32 whenever an attempt is made to change settings from the UI.
Start application, select Tools from the menu bar, Select Settings... at the bottom of the menu. This presents a pop-up with several choices: Display, Environment, File and Customize. Select any of these by clicking on the left mouse button will crash the application.
Crash occurs with Corel Presentations versions 9, 11 and 12 but not with 13, so sorry, no free trial download available.
Host system is Kubuntu 8.04 x86, Linux 2.6.24-19. The libc6 package is 2.7-10ubuntu3.
http://bugs.winehq.org/show_bug.cgi?id=14490
--- Comment #1 from Juan Lang juan_lang@yahoo.com 2008-07-16 11:45:21 --- Please run with a version of wine that has debugging symbols so we can see a proper backtrace.
http://bugs.winehq.org/show_bug.cgi?id=14490
--- Comment #2 from Forester pbronline-wine@yahoo.co.uk 2008-07-16 18:16:32 --- Created an attachment (id=14860) --> (http://bugs.winehq.org/attachment.cgi?id=14860) WINEDEBUG=+relay wine Prwin12.exe showing crash in strlen
1000 lines from 180 000 showing +relay just before crash + back trace after crash.
http://bugs.winehq.org/show_bug.cgi?id=14490
--- Comment #3 from Forester pbronline-wine@yahoo.co.uk 2008-07-16 18:18:20 --- I am new to this. Are you asking me to compile wine from source ?
http://bugs.winehq.org/show_bug.cgi?id=14490
--- Comment #4 from Lei Zhang thestig@google.com 2008-07-17 12:59:57 --- Yes, if you compile your own copy of wine, (no need to install, run directly from source tree) it will give you more debugging information. You may want to grab all the build dependencies with: apt-get build-dep wine
http://bugs.winehq.org/show_bug.cgi?id=14490
--- Comment #5 from Forester pbronline-wine@yahoo.co.uk 2008-07-18 00:55:46 --- Created an attachment (id=14891) --> (http://bugs.winehq.org/attachment.cgi?id=14891) Crash Backtrace from Wine 1.1.1 built from source
I hope this log is what you were asking for and that it tells you something. Let me know what you would like me to do next.
http://bugs.winehq.org/show_bug.cgi?id=14490
Lei Zhang thestig@google.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Attachment #14891|application/octet-stream |text/plain mime type| |
http://bugs.winehq.org/show_bug.cgi?id=14490
--- Comment #6 from Austin English austinenglish@gmail.com 2009-01-21 11:04:19 --- Is this still an issue in current (1.1.13 or newer) wine?
http://bugs.winehq.org/show_bug.cgi?id=14490
--- Comment #7 from Forester pbronline-wine@yahoo.co.uk 2009-01-28 16:39:26 --- No. Sadly, this issue is going to take longer than six months to fix itself.
http://bugs.winehq.org/show_bug.cgi?id=14490
Nikolay Sivov bunglehead@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- CC| |bunglehead@gmail.com
--- Comment #8 from Nikolay Sivov bunglehead@gmail.com 2009-01-28 17:06:56 --- (In reply to comment #7)
No. Sadly, this issue is going to take longer than six months to fix itself.
Please attach another trace: WINEDEBUG=+tid,+relay,+text
for 1.1.13 (or current source tree) as you did before (a couple of thousand lines before crash to catch where wrong string pointer coming from).
http://bugs.winehq.org/show_bug.cgi?id=14490
--- Comment #9 from Forester pbronline-wine@yahoo.co.uk 2009-02-01 09:46:16 --- Created an attachment (id=19151) --> (http://bugs.winehq.org/attachment.cgi?id=19151) Crash traceback, Wine 1.1.14, WINEDEBUG=+tid,+relay,+text
Thanks for taking an interest. Any help finding the root cause of this one would be appreciated. I attach the log you ask for (I hope). This was generated again Wine 1.1.14. I fear it will not tell you very much.
My reading of this is that the crash comes from a bum string pointer (value 0x6261) being a passed to strlen() by DrawTextA(), which has been passed the pointer by the application. The magic value 0x6261 appears nowhere else in the trace. The previous call to DrawTextA() has the same parameter values expect for the string address. There the address 0x0. Benign but hardly purposeful. This suggests to me that we are seeing the consequences of an earlier corruption of memory. I don't know how to start looking for this kind of problem under Wine.
I can tell you that this crash is merely an easy to reproduce example of a general malaise affecting this particular application. It seems many (if not all) pop-up windows that present a series of tabs will crash. I've have them crash without displaying anything, I've had then crash after displaying just the first tab, I've had them crash after display gibberish (non-latin text) in the tab labels and I've even had them crash when everything looks OK.
This particular example is a common (suite wide) settings dialogue. WordPerfect does not crash, Presentations does crash. The dialogue looks the same (common code ?).
If this is corruption, it is not ramdon. The magic 0x6261 turns up in another trace I have - different version of the application, different version of Wine, different host machine, different Linux distribution etc. etc.
http://bugs.winehq.org/show_bug.cgi?id=14490
--- Comment #10 from Nikolay Sivov bunglehead@gmail.com 2009-02-01 12:23:07 --- (In reply to comment #9)
Is any affected version available (and installable) somewhere? I'd like to try it.
http://bugs.winehq.org/show_bug.cgi?id=14490
--- Comment #11 from Austin English austinenglish@gmail.com 2009-08-05 10:18:43 --- Is this still an issue in current (1.1.26 or newer) wine?
http://bugs.winehq.org/show_bug.cgi?id=14490
Austin English austinenglish@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|UNCONFIRMED |RESOLVED Resolution| |ABANDONED
--- Comment #12 from Austin English austinenglish@gmail.com 2010-05-26 16:08:57 --- No response in over 6 months, marking abandoned. If this is still an issue in current (1.2-rc1 or newer) wine, and you can provide the needed information, feel free to reopen.
http://bugs.winehq.org/show_bug.cgi?id=14490
Austin English austinenglish@gmail.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |CLOSED
--- Comment #13 from Austin English austinenglish@gmail.com 2010-05-26 16:13:04 --- Closing abandoned.
-
wine-bugs@winehq.org