[bt-devel] Bt Windows Crash

Jaak Ristioja Ristioja at gmail.com
Sat Aug 7 12:46:20 MST 2010 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 04.08.2010 05:10, Gary Holmlund wrote:
> //**************************************************
> DisplayOptions getDisplayOptionDefaults() {
> 00290D70  push        ebp
> 00290D71  mov         ebp,esp
> 00290D73  sub         esp,48h
> 00290D76  push        ebx
> 00290D77  push        esi
> 00290D78  push        edi
>     DisplayOptions options;
>     options.lineBreaks   = get(lineBreaks);
> 00290D79  push        0Ah
> 00290D7B  call        CBTConfig::get (2470F4h)
> 00290D80  add         esp,4
> 00290D83  movzx       eax,al
> 00290D86  mov         dword ptr [options],eax
>     options.verseNumbers = get(verseNumbers);
> 00290D89  push        0Bh
> 00290D8B  call        CBTConfig::get (2470F4h)
> 00290D90  add         esp,4
> 00290D93  movzx       eax,al
> 00290D96  mov         dword ptr [ebp-4],eax
>     return options;
> 00290D99  mov         eax,dword ptr [ebp+8]       // load EAX
> 00290D9C  mov         ecx,dword ptr [options]
> 00290D9F  mov         dword ptr [eax],ecx         // crash, registers before crash
> 00290DA1  mov         edx,dword ptr [ebp-4]
> 00290DA4  mov         dword ptr [eax+4],edx
> 00290DA7  mov         eax,dword ptr [ebp+8]
> }
> 
> // crash, registers before crash
> EAX = AD50DA3E EBX = 7EFDE000 ECX = 00000000 EDX = 031F0174 ESI = 0138F31C
> EDI = 03AF1A98 EIP = 00290D9F ESP = 0138F270 EBP = 0138F2C4 EFL = 00000212
> 
> Unhandled exception at 0x00290d9f in bibletime.exe: 0xC0000005:
> Access violation writing location 0xad50da3e.
> 
> So, the crash is because of a bad pointer in EAX. EAX is loaded from [ebp+8]. I think the
> problem is in the calling sequence, not the getDisplayOptionDefaults function. This
> function was called successfully once before this crash.  My assembly knowledge is not
> good enough for me to understand the calling sequence.

My assembly 5k1LLz are not that 1337 either, but isn't [ebp+8] usually the first argument
of a function in this calling convention? Hence I think this is invalid assembly.

Jaak
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.15 (GNU/Linux)
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=Fb8Q
-----END PGP SIGNATURE-----

More information about the bt-devel mailing list