Added patch to fix invalid memory access in SysFreeString on 64-bit when warn+heap is enabled.

2024-11-21 16:46:54 -08:00 · 2016-01-22 05:58:29 +01:00 · 2016-01-22 05:58:29 +01:00 · 2413df39ed
commit 2413df39ed
parent 8c7c39b621
2 changed files with 41 additions and 0 deletions
--- a/patches/oleaut32-Fix_Invalid_Memory_Access/0001-oleaut32-Fix-clearing-of-heap-buffer-when-warn-heap-.patch
+++ b/patches/oleaut32-Fix_Invalid_Memory_Access/0001-oleaut32-Fix-clearing-of-heap-buffer-when-warn-heap-.patch
@ -0,0 +1,25 @@
+From bf71baa88e4ae83a5a441ea47136246e698ff55c Mon Sep 17 00:00:00 2001
+From: Sebastian Lackner <sebastian@fds-team.de>
+Date: Fri, 22 Jan 2016 05:52:32 +0100
+Subject: oleaut32: Fix clearing of heap buffer when warn+heap is used.
+
+---
+ dlls/oleaut32/oleaut.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/dlls/oleaut32/oleaut.c b/dlls/oleaut32/oleaut.c
+index 00e6daf..93c5fd3 100644
+--- a/dlls/oleaut32/oleaut.c
+++ b/dlls/oleaut32/oleaut.c
+@@ -309,7 +309,7 @@ void WINAPI SysFreeString(BSTR str)
+             cache_entry->cnt++;
+ 
+             if(WARN_ON(heap)) {
+-                unsigned n = bstr_alloc_size(bstr->size) / sizeof(DWORD) - 1;
+                unsigned n = (alloc_size-FIELD_OFFSET(bstr_t, u.ptr))/sizeof(DWORD);
+                 for(i=0; i<n; i++)
+                     bstr->u.dwptr[i] = ARENA_FREE_FILLER;
+             }
+-- 
+2.6.4
+
--- a/patches/patchinstall.sh
+++ b/patches/patchinstall.sh
@ -238,6 +238,7 @@ patch_enable_all ()
 	enable_nvcuvid_CUDA_Video_Support="$1"
 	enable_nvencodeapi_Video_Encoder="$1"
 	enable_ole32_CoGetApartmentType="$1"
+	enable_oleaut32_Fix_Invalid_Memory_Access="$1"
 	enable_oleaut32_TKIND_COCLASS="$1"
 	enable_oleaut32_x86_64_Marshaller="$1"
 	enable_openal32_EFX_Extension="$1"
@ -852,6 +853,9 @@ patch_enable ()
 		ole32-CoGetApartmentType)
 			enable_ole32_CoGetApartmentType="$2"
 			;;
+		oleaut32-Fix_Invalid_Memory_Access)
+			enable_oleaut32_Fix_Invalid_Memory_Access="$2"
+			;;
 		oleaut32-TKIND_COCLASS)
 			enable_oleaut32_TKIND_COCLASS="$2"
 			;;
@ -5129,6 +5133,18 @@ if test "$enable_nvencodeapi_Video_Encoder" -eq 1; then
 	) >> "$patchlist"
 fi

+# Patchset oleaut32-Fix_Invalid_Memory_Access
+# |
+# | Modified files:
+# |   *	dlls/oleaut32/oleaut.c
+# |
+if test "$enable_oleaut32_Fix_Invalid_Memory_Access" -eq 1; then
+	patch_apply oleaut32-Fix_Invalid_Memory_Access/0001-oleaut32-Fix-clearing-of-heap-buffer-when-warn-heap-.patch
+	(
+		echo '+    { "Sebastian Lackner", "oleaut32: Fix clearing of heap buffer when warn+heap is used.", 1 },';
+	) >> "$patchlist"
+fi
+
 # Patchset oleaut32-TKIND_COCLASS
 # |
 # | This patchset fixes the following Wine bugs: