Uploaded image for project: 'Core ReactOS'
  1. Core ReactOS
  2. CORE-16432

AbilityCash 3.0.267 asserts in Win32k IntDestroyClass very soon after launch

    XMLWordPrintable

Details

    • Bug
    • Resolution: Duplicate
    • Major
    • None
    • Win32SS
    • None

    Description

      AbilityCash 3.0.267 crashes the system very soon after launch
      https://dervish.ru/downloads/files/abilitycashinstall.exe

      reactos-bootcd-0.4.14-dev-47-ge83b256-x86-gcc-lin-dbg

      Note AbilityCash 3.0.267 is written with ะก++ and pure WinAPI. Build by VS2017

      err:(win32ss/user/user32/windows/messagebox.c:1048) MessageBox: L"\0412\043d\0438\043c\0430\043d\0438\0435! \041e\0431\043d\0430\0440\0443\0436\0435\043d\0430 \043e\0448\0438\0431\043a\0430 \0432\0440\0435\043c\0435\043d\0438 \0438\0441\043f\043e\043b\043d\0435\043d\0438\044f.\r\n\n\041f\043e\0436\0430\043b\0443\0439\0441\0442\0430, \0441\043e\043e\0431\0449\0438\0442"...
      (win32ss/user/ntuser/painting.c:158) err: LOOP it
      (win32ss/user/ntuser/painting.c:158) err: LOOP it
      (win32ss/user/ntuser/painting.c:162) err: SendSyncPaint Found one in the Sent Msg Queue!
      (win32ss/user/ntuser/painting.c:158) err: LOOP it
      (win32ss/user/ntuser/painting.c:162) err: SendSyncPaint Found one in the Sent Msg Queue!
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      err:(dll/win32/secur32/wine/ntlm.c:2060) ntlm_auth was not found or is outdated. Make sure that ntlm_auth >= 3.0.23 is in your path. Usually, you can find it in the winbind package of your distribution.
      (dll/win32/kernel32/client/version.c:140) VerifyVersionInfo -- Version mismatch(6.0.-1:-1)
      (ntoskrnl/mm/ARM3/virtual.c:4506) Virtual allocation base above User Space
      fixme:(dll/win32/iphlpapi/iphlpapi_main.c:2891) (Handle 01EFFD84, overlapped 01EFFD90): stub
      err:(dll/win32/msafd/misc/dllmain.c:1976) Async Connect UNIMPLEMENTED!
      fixme:(dll/win32/setupapi/devinst.c:2357) : flag DIGCF_PROFILE ignored
      WARNING:  GetICMProfileW at win32ss/gdi/gdi32/objects/icm.c:185 is UNIMPLEMENTED!
      err:(dll/win32/ole32/compobj.c:3104) class {591209c7-767b-42b2-9fba-44ee4615f2c7} not registered
      err:(dll/win32/ole32/compobj.c:3140) class {591209c7-767b-42b2-9fba-44ee4615f2c7} not registered
      err:(dll/win32/ole32/compobj.c:3184) no class object {591209c7-767b-42b2-9fba-44ee4615f2c7} could be created for context 0x3
      fixme:(dll/win32/ieframe/shellbrowser.c:333) 00259ED8 0022F184
      err:(dll/win32/ole32/compobj.c:3104) class {e77cc89b-7401-4c04-8ced-149db35add04} not registered
      err:(dll/win32/ole32/compobj.c:3140) class {e77cc89b-7401-4c04-8ced-149db35add04} not registered
      err:(dll/win32/ole32/compobj.c:3184) no class object {e77cc89b-7401-4c04-8ced-149db35add04} could be created for context 0x3
      fixme:(dll/win32/mshtml/nsio.c:3934) ({d74a17ac-5b8a-4824-a309-b1f04a3c4aed} 0022EAA4)
      fixme:(dll/win32/mshtml/nsio.c:1658) (0477D4D0)->()
      fixme:(dll/win32/ieframe/client.c:118) (00257E60)->(0022F17C)
      fixme:(dll/win32/mshtml/nsio.c:1144) (0477DA40)->(0022E9C8)
      fixme:(dll/win32/mshtml/nsio.c:1262) (0477DA40)->(0022E684)
      fixme:(dll/win32/mshtml/nsio.c:1446) (0477DA40)->(0022E5EF)
      fixme:(dll/win32/mshtml/nsio.c:1262) (0477DA40)->(0022E734)
      fixme:(dll/win32/mshtml/nsio.c:1685) (0477DA40)->()
      fixme:(dll/win32/ieframe/dochost.c:943) (00257E60)
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      fixme:(dll/win32/ieframe/client.c:118) (00257E60)->(0022F9D4)
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (dll/ntdll/etw/trace.c:125) EtwRegisterTraceGuidsW stub()
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      fixme:(dll/win32/mshtml/nsio.c:1269) (0226E6B0)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1269) (00322BE8)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1269) (04A989A8)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1269) (049D0568)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1269) (049E8110)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1269) (049E8CD0)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1269) (049E99F0)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1269) (04AAE990)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (04AAF750)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (04AAF750)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (04AB0378)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (04AB0378)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (04AB0D50)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (04AB0D50)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (049FD258)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (049FD258)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (049FDE50)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (049FDE50)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (049FE808)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (049FE808)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (049FF1F0)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (049FF1F0)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (049FFD48)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (049FFD48)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (049DA730)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (049DA730)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (049DB130)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (049DB130)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (049DBB18)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (049DBB18)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (0226E2B8)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (0226E2B8)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (049DD0F0)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (049DD0F0)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (049DDD80)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (049DDD80)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (0025E958)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (0025E958)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (0031F088)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (0031F088)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (049FD900)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (049FD900)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (00320C80)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (00320C80)->(04902C80 0)
      fixme:(dll/win32/mshtml/nsio.c:1658) (003217D0)->()
      fixme:(dll/win32/mshtml/nsio.c:1269) (003217D0)->(04902C80 0)
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (00322420)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (00322D40)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (04A98EE8)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049D0AA8)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049E8680)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049E9240)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049E9F48)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (04AAEE88)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (04AAFD10)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (04AB08D8)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049FCCE8)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049FD788)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049FE360)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049FED38)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049FF720)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049DA278)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049DAC60)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049DB660)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049DC048)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049DCC38)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (049DD620)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (0025E2A0)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (0025EF10)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (0031FAA8)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (00320B30)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (00321660)->(0022F27C 0022F278 0)
      fixme:(dll/win32/urlmon/binding.c:1280) not supported string type 20
      fixme:(dll/win32/mshtml/navigate.c:480) (0226D1A0)->(0022F27C 0022F278 0)
      (win32ss/user/ntuser/msgqueue.c:1537) err: Not the same cursor!
       
      *** Assertion failed: Class->cWndReferenceCount == 0
      ***   Source File: /srv/buildbot/worker_data/Build_GCCLin_x86_Release/build/win32ss/user/ntuser/class.c, line 233
       
      Break repeatedly, break Once, Ignore, terminate Process or terminate Thread (boipt)? 
      kdb:> o
      Execute '.cxr F6DFD06C' to dump context
      
      Entered debugger on embedded INT3 at 0x0008:0x80956812.
      kdb:> bt
      Eip:
      <ntoskrnl.exe:156812 (sdk/lib/rtl/i386/debug_asm.S:33 (DbgBreakPoint))>
      Frames:
      <win32k.sys:24dad (win32ss/user/ntuser/class.c:233 (IntDestroyClass))>
      <win32k.sys:2568e (win32ss/user/ntuser/class.c:326 (DestroyProcessClasses))>
      <win32k.sys:19bcd (win32ss/user/ntuser/main.c:757 (ExitThreadCallback))>
      <win32k.sys:1a67d (win32ss/user/ntuser/main.c:860 (Win32kThreadCallback))>
      <ntoskrnl.exe:11227c (ntoskrnl/ps/kill.c:743 (PspExitThread))>
      Couldn't access memory at 0xF6DFD46C!
      kdb:> 
      Eip:
      <ntoskrnl.exe:156812 (sdk/lib/rtl/i386/debug_asm.S:33 (DbgBreakPoint))>
      Frames:
      <win32k.sys:24dad (win32ss/user/ntuser/class.c:233 (IntDestroyClass))>
      <win32k.sys:2568e (win32ss/user/ntuser/class.c:326 (DestroyProcessClasses))>
      <win32k.sys:19bcd (win32ss/user/ntuser/main.c:757 (ExitThreadCallback))>
      <win32k.sys:1a67d (win32ss/user/ntuser/main.c:860 (Win32kThreadCallback))>
      <ntoskrnl.exe:11227c (ntoskrnl/ps/kill.c:743 (PspExitThread))>
      Couldn't access memory at 0xF6DFD46C!
      kdb:> 
      Eip:
      <ntoskrnl.exe:156812 (sdk/lib/rtl/i386/debug_asm.S:33 (DbgBreakPoint))>
      Frames:
      <win32k.sys:24dad (win32ss/user/ntuser/class.c:233 (IntDestroyClass))>
      <win32k.sys:2568e (win32ss/user/ntuser/class.c:326 (DestroyProcessClasses))>
      <win32k.sys:19bcd (win32ss/user/ntuser/main.c:757 (ExitThreadCallback))>
      <win32k.sys:1a67d (win32ss/user/ntuser/main.c:860 (Win32kThreadCallback))>
      <ntoskrnl.exe:11227c (ntoskrnl/ps/kill.c:743 (PspExitThread))>
      Couldn't access memory at 0xF6DFD46C!
      kdb:> 
      Eip:
      <ntoskrnl.exe:156812 (sdk/lib/rtl/i386/debug_asm.S:33 (DbgBreakPoint))>
      Frames:
      <win32k.sys:24dad (win32ss/user/ntuser/class.c:233 (IntDestroyClass))>
      <win32k.sys:2568e (win32ss/user/ntuser/class.c:326 (DestroyProcessClasses))>
      <win32k.sys:19bcd (win32ss/user/ntuser/main.c:757 (ExitThreadCallback))>
      <win32k.sys:1a67d (win32ss/user/ntuser/main.c:860 (Win32kThreadCallback))>
      <ntoskrnl.exe:11227c (ntoskrnl/ps/kill.c:743 (PspExitThread))>
      Couldn't access memory at 0xF6DFD46C!
      kdb:> 
      Eip:
      <ntoskrnl.exe:156812 (sdk/lib/rtl/i386/debug_asm.S:33 (DbgBreakPoint))>
      Frames:
      <win32k.sys:24dad (win32ss/user/ntuser/class.c:233 (IntDestroyClass))>
      <win32k.sys:2568e (win32ss/user/ntuser/class.c:326 (DestroyProcessClasses))>
      <win32k.sys:19bcd (win32ss/user/ntuser/main.c:757 (ExitThreadCallback))>
      <win32k.sys:1a67d (win32ss/user/ntuser/main.c:860 (Win32kThreadCallback))>
      <ntoskrnl.exe:11227c (ntoskrnl/ps/kill.c:743 (PspExitThread))>
      Couldn't access memory at 0xF6DFD46C!
      kdb:> 
      Eip:
      <ntoskrnl.exe:156812 (sdk/lib/rtl/i386/debug_asm.S:33 (DbgBreakPoint))>
      Frames:
      <win32k.sys:24dad (win32ss/user/ntuser/class.c:233 (IntDestroyClass))>
      <win32k.sys:2568e (win32ss/user/ntuser/class.c:326 (DestroyProcessClasses))>
      <win32k.sys:19bcd (win32ss/user/ntuser/main.c:757 (ExitThreadCallback))>
      <win32k.sys:1a67d (win32ss/user/ntuser/main.c:860 (Win32kThreadCallback))>
      <ntoskrnl.exe:11227c (ntoskrnl/ps/kill.c:743 (PspExitThread))>
      Couldn't access memory at 0xF6DFD46C!
      

      Attachments

        1. source - test case.zip
          177 kB
        2. ROS-screen0.webm
          330 kB
        3. ReactOS.log
          102 kB
        4. photo_2019-10-28_01-05-31.jpg
          photo_2019-10-28_01-05-31.jpg
          148 kB
        5. photo_2019-10-28_01-02-40.jpg
          photo_2019-10-28_01-02-40.jpg
          110 kB
        6. IsWinodw.patch
          0.6 kB
        7. image-2023-12-02-12-16-40-801.png
          image-2023-12-02-12-16-40-801.png
          19 kB
        8. image-2023-12-02-12-10-29-916.png
          image-2023-12-02-12-10-29-916.png
          9 kB
        9. image-2022-12-10-14-04-23-304.png
          image-2022-12-10-14-04-23-304.png
          25 kB
        10. Capture abiliti3-1.PNG
          Capture abiliti3-1.PNG
          73 kB
        11. Capture abiliti3.PNG
          Capture abiliti3.PNG
          74 kB

        Issue Links

          Activity

            People

              katayama_hirofumi_mz Katayama Hirofumi MZ
              Jedi-to-be Jedi-to-be
              Votes:
              5 Vote for this issue
              Watchers:
              8 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: