Bug 105859 - xorg-x11-6.8.2-r3 breaks wine
|
Bug#:
105859
|
Product: Gentoo Linux
|
Version: unspecified
|
Platform: All
|
|
OS/Version: Linux
|
Status: RESOLVED
|
Severity: critical
|
Priority: P2
|
|
Resolution: FIXED
|
Assigned To: x11@gentoo.org
|
Reported By: lama@lamamail.de
|
|
Component: Unspecified
|
|
|
URL:
|
|
Summary: xorg-x11-6.8.2-r3 breaks wine
|
|
Keywords:
|
|
Status Whiteboard:
|
|
Opened: 2005-09-13 14:22 0000
|
Wine can't run applications anymore after emerging xorg-x11-6.8.2-r3.
Re-emerging wine does not help. Here is the error message:
X Error of failed request: BadAlloc (insufficient resources for operation)
Major opcode of failed request: 53 (X_CreatePixmap)
Serial number of failed request: 12783
Current serial number in output stream: 12785
emerge info:
Portage 2.0.52-r1 (default-linux/x86/2004.2/gcc34, gcc-3.4.4, glibc-2.3.5-r1, 2.
6.13-gentoo-r1 i686)
=================================================================
System uname: 2.6.13-gentoo-r1 i686 AMD Athlon(tm) 64 Processor 3200+
Gentoo Base System version 1.12.0_pre8
dev-lang/python: 2.3.5, 2.4.1-r1
sys-apps/sandbox: 1.2.13
sys-devel/autoconf: 2.13, 2.59-r7
sys-devel/automake: 1.4_p6, 1.5, 1.6.3, 1.7.9-r1, 1.8.5-r3, 1.9.6
sys-devel/binutils: 2.15.92.0.2-r1, 2.16.1
sys-devel/libtool: 1.5.20
virtual/os-headers: 2.6.11-r2
ACCEPT_KEYWORDS="x86 ~x86"
AUTOCLEAN="yes"
CBUILD="i686-pc-linux-gnu"
CFLAGS="-O2 -march=k8 -pipe -fomit-frame-pointer"
CHOST="i686-pc-linux-gnu"
CONFIG_PROTECT="/etc /usr/kde/2/share/config /usr/kde/3.4/env /usr/kde/3.4/share
/config /usr/kde/3.4/shutdown
/usr/kde/3/share/config /usr/lib/X11/xkb /usr/lib/
mozilla/defaults/pref /usr/share/config /var/qmail/control"
CONFIG_PROTECT_MASK="/etc/gconf /etc/terminfo /etc/texmf/web2c /etc/env.d"
CXXFLAGS="-O2 -march=k8 -pipe -fomit-frame-pointer"
DISTDIR="/usr/portage/distfiles"
FEATURES="autoconfig distlocks sandbox sfperms strict"
GENTOO_MIRRORS="http://gentoo.mirror.solnet.ch http://mirror.switch.ch/ftp/mirro
r/gentoo/
http://ftp.snt.utwente.nl/pub/os/linux/gentoo http://gentoo.math.bme.h
u
http://ftp.belnet.be/mirror/rsync.gentoo.org/gentoo/ http://ftp-stud.fht-essli
ngen.de/pub/Mirrors/gentoo/"
LANG="en_US.utf8"
LC_ALL="en_US.utf8"
MAKEOPTS="-j2"
PKGDIR="/usr/portage/packages"
PORTAGE_TMPDIR="/var/tmp"
PORTDIR="/usr/portage"
PORTDIR_OVERLAY="/usr/local/portage"
SYNC="rsync://rsync.gentoo.org/gentoo-portage"
USE="x86 3dnow 3dnowex X Xaw3d a52 aac aalib acl acpi adns aim alsa amuled apm a
rts audiofile avi bcmath berkdb
bidi bindist bitmap-fonts bonobo bootsplash bzip
2 bzlib cairo cdda cddb cdparanoia cdr cjk codecs cpdflib crypt
ctype cups curl
curlwrappers
dbus dbx dga dio divx4linux dmx dpms dvd dvdr dvdread eds effects e
mboss encode erandom escreen esd estraier
etwin exif extras fam fbcon ffmpeg fft
w firefox flac flash font-server foomaticdb fortran freetts freetype ftp
gd gdbm
gif gimpprint gl
glibc-compat20 glibc-omitfp glitz gnome gnutls gpm gstreamer g
tk gtk2 gtkhtml guile iconv icq idn ieee1394
imagemagick imap imlib inkjar ipv6
jabber java javascript joystick jpeg jpeg2k junit kde kdeenablefinal kqemu
ladcc
a lcms libcaca libedit
libg++ libsamplerate libwww live mad maildir matroska mbr
ola memlimit mhash mikmod mime ming mmx mmx2 mng motif
mozdevelop mozilla moznoc
ompose
moznoirc mozp3p mozsvg mp3 mpeg mplayer ncurses network nls nocd nptl nvi
dia offensive ogg oggvorbis openal
openexr opengl oscar oss pam pdflib perl phys
fs pie plotutils plugin png portaudio posix ppds python qemu-fast
qt quicktime r
eadline real
remote rtc samba sdk sdl session shared sharedmem silverxp slang sl
p smtp sockets softmmu soundtouch speex spell
sqlite sse sse2 ssl startup-notifi
cation stats stream svg szip tcltk tcpd tetex theora threads thumbnail tidy
tiff
transcode truetype
truetype-fonts type1-fonts unicode usb userlocales videos vi
sualization vorbis win32codecs wmf wxgtk1 wxwindows
xfs xine xml xml2 xmms xosd
xpm
xrandr xv xvid zlib userland_GNU kernel_linux elibc_glibc"
Unset: ASFLAGS, CTARGET, LDFLAGS, LINGUAS
This is almost definitely related to the security patch applied in -r3. It'd
be
nice to know if this problem exists in 6.8.99.15. Works fine for me in
modular.
I'm using now wine with xorg-6.2.8-r3 (before with and after without the xorg
patch that causes transparency problem with openoffice and wine).
So it could be something related to particular USE or CFLAGS. If you need more
info (emerge info or CFLAGS), I'm here (tomorrow! :D).
Okay, I just compiled wine from cvs and it works flawless, so maybe there's a
patch somewhere that will make 20050830 work again.
This affects 6.8.99.15-r1 too.
wine = 20050830
xorg-x11 = 6.8.2-r3
Familiar program now croaks with this error. Worked fine up to -r2. HTH
peter@mars /mnt/data/data/PC Coach $ wine pccoach
X Error of failed request: BadAlloc (insufficient resources f
Major opcode of failed request: 53 (X_CreatePixmap)
Serial number of failed request: 12783
Current serial number in output stream: 12785
-----
# emerge info
Portage 2.0.51.22-r2 (default-linux/x86/2005.0, gcc-3.3.6, glibc-2.3.5-r1, 2.6.1
2-gentoo-r10 i686)
=================================================================
System uname: 2.6.12-gentoo-r10 i686 AMD Athlon(tm) XP 2800+
Gentoo Base System version 1.6.13
dev-lang/python: 2.3.5-r2
sys-apps/sandbox: 1.2.12
sys-devel/autoconf: 2.13, 2.59-r6
sys-devel/automake: 1.4_p6, 1.5, 1.6.3, 1.7.9-r1, 1.8.5-r3, 1.9.6
sys-devel/binutils: 2.15.92.0.2-r10
sys-devel/libtool: 1.5.18-r1
virtual/os-headers: 2.6.11-r2
ACCEPT_KEYWORDS="x86"
AUTOCLEAN="yes"
CBUILD="i686-pc-linux-gnu"
CFLAGS="-O2 -march=i686 -fomit-frame-pointer"
CHOST="i686-pc-linux-gnu"
CONFIG_PROTECT="/etc /usr/kde/2/share/config /usr/kde/3/share/config /usr/share/
config /var/qmail/control"
CONFIG_PROTECT_MASK="/etc/gconf /etc/env.d"
CXXFLAGS="-O2 -march=i686 -fomit-frame-pointer"
DISTDIR="/mnt/src/distfiles"
FEATURES="autoconfig distlocks sandbox sfperms strict"
GENTOO_MIRRORS="http://mirror.datapipe.net/gentoo ftp://gentoo.mirrors.tds.net/g
entoo http://mirror.clarkson.edu/pub/distributions/gentoo/ ftp://206.75.217.180/
"
MAKEOPTS="-j2"
PKGDIR="/usr/portage/packages"
PORTAGE_TMPDIR="/var/tmp"
PORTDIR="/usr/portage"
PORTDIR_OVERLAY="/usr/local/portage"
SYNC="rsync://rsync.gentoo.org/gentoo-portage"
USE="x86 X alsa apm arts artswrappersuid avi berkdb bitmap-fonts cdr crypt cups
curl eds emboss encode esd fam flac foomaticdb fortran gd gdbm gif gnome gpm gst
reamer gtk gtk2 imagemagick imlib ipv6 java jpeg kde ldap libg++ libwww mad mikm
od motif mozilla mp3 mpeg mysql ncurses nls ogg oggvorbis opengl oss pam pdflib
perl png python qt quicktime readline samba sdl slang spell ssl svga tcltk tcpd
tiff truetype truetype-fonts type1-fonts vorbis win32codecs xine xml2 xmms xv zl
ib userland_GNU kernel_linux elibc_glibc"
Unset: ASFLAGS, CTARGET, LANG, LC_ALL, LDFLAGS, LINGUAS
Oh yes, I did try and re-emerge wine even though it appeared no libraries were
out of sync. revdev-rebuild -p suggested nothing. Even after wine was rebuilt,
same thing.
Francesco: ya, emerge info might be useful
Same issue, here are mine emerge info:
Portage 2.0.52-r1 (default-linux/x86/2005.0, gcc-3.3.4, glibc-2.3.5-r1,
2.6.13-gentoo-r1 i686)
=================================================================
System uname: 2.6.13-gentoo-r1 i686 AMD Athlon(tm) XP 2600+
Gentoo Base System version 1.12.0_pre8
dev-lang/python: 2.3.5-r1, 2.4.1-r1
sys-apps/sandbox: 1.2.13
sys-devel/autoconf: 2.13, 2.59-r7
sys-devel/automake: 1.4_p6, 1.5, 1.6.3, 1.7.9-r1, 1.8.5-r3, 1.9.6
sys-devel/binutils: 2.16.1
sys-devel/libtool: 1.5.20
virtual/os-headers: 2.6.11-r2
ACCEPT_KEYWORDS="x86 ~x86"
AUTOCLEAN="yes"
CBUILD="i686-pc-linux-gnu"
CFLAGS="-O2 -march=athlon-xp -fomit-frame-pointer"
CHOST="i686-pc-linux-gnu"
CONFIG_PROTECT="/etc /usr/kde/2/share/config /usr/kde/3.4/env
/usr/kde/3.4/share/config /usr/kde/3.4/shutdown /usr/kde/3/share/config
/usr/lib/X11/xkb /usr/share/config /var/qmail/control"
CONFIG_PROTECT_MASK="/etc/gconf /etc/splash /etc/terminfo /etc/env.d"
CXXFLAGS="-O2 -march=athlon-xp -fomit-frame-pointer"
DISTDIR="/usr/portage/distfiles"
FEATURES="autoaddcvs autoconfig ccache distlocks sandbox sfperms strict"
GENTOO_MIRRORS="http://mirror.switch.ch/ftp/mirror/gentoo/
ftp://ftp.solnet.ch/mirror/Gentoo/ http://ftp.heanet.ie/pub/gentoo/
http://gentoo.chem.wisc.edu/gentoo/"
LANG="it_IT@euro"
LINGUAS="it"
MAKEOPTS="-j2"
PKGDIR="/usr/portage/packages"
PORTAGE_TMPDIR="/var/tmp"
PORTDIR="/usr/portage"
PORTDIR_OVERLAY="/usr/local/portage"
SYNC="rsync://rsync.gentoo.org/gentoo-portage"
USE="x86 3dnow 3dnowex 3dnowext X aalib acl acpi acpi4linux alsa apm arts avi
berkdb bitmap-fonts cdr crypt cups curl divx4linux dvb dvd dvdr dvdread eds
emboss encode esd fam flac foomaticdb fortran gdbm gif gimp gnome gphoto2 gpm
gstreamer gtk gtk2 guile hal imagemagick imlib java joystick jpeg kde libg++
libwww lirc mad mikmod mmx mmx2 mmxext motif mp3 mpeg ncurses nls nptl nptlonly
offensive ogg oggvorbis opengl oss pam pdflib perl png python qt quicktime
readline scanner sdl spell sse ssl svga tcpd tiff truetype truetype-fonts
type1-fonts usb v4l v4l2 vorbis win32codecs wxgtk1 xine xml xml2 xmms xv xvid
xvmc zlib zvbi linguas_it userland_GNU kernel_linux elibc_glibc"
Unset: ASFLAGS, CTARGET, LC_ALL, LDFLAGS
Additional info: MSIE under wine continued to launch fine. I suppose the error
is in one of the DLLs native to wine. Since IE pulls in a bunch of pure M$ DLL
files, I assume that's the source of the error. For example, running
$ progman or
$ winecfg
also crashes.
Looking at the last patch, it says:
+ if (stuff->width > 32767 || stuff->height > 32767)
+ {
+ /* It is allowed to try and allocate a pixmap which is larger than
+ * 32767 in either dimension. However, all of the framebuffer code
+ * is buggy and does not reliably draw to such big pixmaps, basically
+ * because the Region data structure operates with signed shorts for
+ * the rectangles in it.
+ *
+ * Furthermore, several places in the X server compute the size in
+ * bytes of the pixmap and try to store it in an integer. This
+ * integer can overflow and cause the allocated size to be much
+ * smaller.
+ *
+ * So, such big pixmaps are rejected here with a BadAlloc
+ */
+ return BadAlloc;
So, it most likely is some bug in wine requesting a bad value which was allowed
to go before.
I recompiled wine with USE=debug, and ran a trace on the affected program. Here
is the result with the simple winecfg program:
trace:loaddll:load_builtin_dll Loaded module L"c:\\windows\\system\\winex11.drv"
: builtin
trace:loaddll:load_builtin_dll Loaded module L"c:\\windows\\system\\imm32.dll" :
builtin
X Error of failed request: BadAlloc (insufficient resources for operation)
Major opcode of failed request: 53 (X_CreatePixmap)
Serial number of failed request: 12783
Current serial number in output stream: 12785
I tried using a native version of imm32.dll but it still crashed. So, this leads
me to think there is a problem with winex11.drv. I'll go hunt around on the wine
bug list and see what's doing there. If nothing, maybe I will post these results.
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2495, which is the patch
that's causing the problems has a curious notation on it's main page:
"This is a candidate for inclusion in the CVE list, which standardizes names for
security problems. It must be reviewed and accepted by the CVE Editorial Board
before it can be added into CVE. Therefore, this candidate may be modified or
even rejected in the future."
and
"** RESERVED ** This candidate has been reserved by an organization or
individual that will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be provided."
So, I wonder. Is it even official? Obviously removing the patch would revert us
back to r2 (which is what I am doing). There is no source listing anywhere and I
question whether gentoo jumped the gun to apply this. It broke wine.
(In reply to comment #11)
> https://bugs.freedesktop.org/show_bug.cgi?id=594
THIS PATCH IS NOT THE SAME! There are differences. For example:
-+ if (paddedWidth > 32767 || height > 32767 || depth > 4)
-+ return NullPixmap;
-+
++ if (paddedWidth > 32767 || height > 32767)
++ return NullPixmap;
and
paddedWidth = PixmapBytePad(width, depth);
+
-+ if (paddedWidth / 4 > 32767 || height > 32767)
-+ return NullPixmap;
++ if (paddedWidth > 32767 || height > 32767)
++ return NullPixmap;
Seems like there was some discussion on dividing by 4. These are absent in the
CAN patch with Gentoo.
xorg-x11-6.8.2-r2 was removed. However, applying this patch restores it (just
changing the patch file). This disables whatever the CAN patch was supposed to
do, so user beware. However, this restores wine functionality.
I installed in /usr/local/portage and masked r3 in package.mask.
HTH
--- /usr/portage/x11-base/xorg-x11/xorg-x11-6.8.2-r3.ebuild 2005-09-12
10:15:49.000000000 -0400
+++ xorg-x11-6.8.2-r2.ebuild 2005-09-15 09:02:54.000000000 -0400
@@ -1,6 +1,6 @@
# Copyright 1999-2005 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/x11-base/xorg-x11/xorg-x11-6.8.2-r3.ebuild,v
1.1 2005/09/12 14:15:49 seemant Exp $
+# $Header: $
# Set TDFX_RISKY to "yes" to get 16-bit, 1024x768 or higher on low-memory
# voodoo3 cards.
@@ -38,7 +38,7 @@
# IUSE_INPUT_DEVICES="synaptics wacom"
FILES_VER="0.8"
-PATCH_VER="0.1.10.1"
+PATCH_VER="0.1.9"
XCUR_VER="0.3.1"
XFSFT_ENC_VER="0.1"
Same problem here.
Still, before emerging 6.8.2-r3 I made a binary package of 6.8.2-r2.
Unfortunately it seems the binary package is useless because "emerge -k" needs
the 6.8.2-r2 ebuild, which disappeared from Portage tree.
Please don't remove ebuild versions too fast.. Why not keep 6.8.2-r2 for 1-2
months, in case of any bugs ? It would be good..
(In reply to comment #13)
> However, this restores wine functionality.
Wine from CVS works together with the patch, maybe adding whatever they changed
to 20050830 is enough.
(In reply to comment #15)
> (In reply to comment #13)
> > However, this restores wine functionality.
>
> Wine from CVS works together with the patch, maybe adding whatever they changed
> to 20050830 is enough.
Maybe, but I am concerned that the patch gentoo has does not match the patch
referenced. Also, to fork off the wine tree for cvs is not something I care to
experiment with at the moment :)
(In reply to comment #12)
> (In reply to comment #11)
> > https://bugs.freedesktop.org/show_bug.cgi?id=594
>
> THIS PATCH IS NOT THE SAME! There are differences. For example:
Agreed. Comment #25 of the fdo bug explains why the /4 and depth check should
exist. Most likely it is the missing /4 causing the problem.
Unfortunately I'm at school right now and cannot commit the changes required,
and I think spyderous' box is still busted. I will hopefully have a chance to
make the required changes in 6-7 hours, but no promises. Since that patch is
supposedly against 4.3 I'll have to hand-verify against fdo's changes before
committing, so this may not happen tonight.
Thanks for your patience. Until then, if someone could test the proper patch
(you'll have to hand-edit ours) and make sure it works it would be appreciated.
(In reply to comment #14)
> Unfortunately it seems the binary package is useless because "emerge -k" needs
> the 6.8.2-r2 ebuild, which disappeared from Portage tree.
Use -K to force binary.
> Please don't remove ebuild versions too fast.. Why not keep 6.8.2-r2 for 1-2
> months, in case of any bugs ? It would be good..
Because fixing exploitable security vulnerabilities is most important.
(In reply to comment #18)
> > Please don't remove ebuild versions too fast.. Why not keep 6.8.2-r2 for 1-2
> > months, in case of any bugs ? It would be good..
>
> Because fixing exploitable security vulnerabilities is most important.
Well, in this case, the patch was incorrect and broke certain functionality.
This is not even listed in CVE yet. I agree. The removal of -r2 was hasty and
there appeared not to have been sufficient time to test. If not 1-2 months,
maybe a few weeks. This was not an error that would take down a system, IMHO.
(In reply to comment #19)
> (In reply to comment #18)
> > > Please don't remove ebuild versions too fast.. Why not keep 6.8.2-r2 for 1-2
> > > months, in case of any bugs ? It would be good..
> >
> > Because fixing exploitable security vulnerabilities is most important.
>
> Well, in this case, the patch was incorrect and broke certain functionality.
that sucks, but i'd prefer to have lost a little functionality rather than
someone getting unauthorized resource access. rather than complaining, why dont
you test the patch that was accepted upstream and see if it even makes a
difference. who knows, it might not matter at all.
> This is not even listed in CVE yet.
you obviously havent dealt with CVE before ... all new entries are treated like
this and can take a while before it's listed ... one of the significant points
of CVE is that it does not list duplicated vulnerabilities in which case, new
filed reports will be removed when they are found to be duplicated.
> I agree. The removal of -r2 was hasty and
> there appeared not to have been sufficient time to test. If not 1-2 months,
> maybe a few weeks. This was not an error that would take down a system, IMHO.
no, but having a broken wine wont prevent your system from being usuable either
> Until then, if someone could test the proper patch
> (you'll have to hand-edit ours) and make sure it
> works it would be appreciated.
I just tested it (see attachment), wine seems to behave normal with the patch
accepted by the x.org people.
Note: Maybe I did something wrong with the patch below, never did this before :)
thanks, rerouting to X people to fix xorg ;)
Alexander: thank you, this will speed things along nicely :)
I'll work on committing the changes tonight when I get home.
New patch in -r4. Thanks for your patience.
Will that patch also be applied to 6.8.99.15?
Yes. 6.8.99.15 contains some extra affected code that doesn't exist in 6.8.2
so
I need to spend a few minutes this morning putting a different patch together.
*** Bug 106241 has been marked as a duplicate of this bug. ***
Fixed where? After xorg 6.8.2-r4 I'm still getting BadAlloc...
Do I need to re-emerge wine?
Sorry. I've emerged -r4 but I was running -r3 (didn't kill X)
The bug is actually fixed.
emerging -r4 fixed everything for me... my sound works in wine now which it
didn't before, but I highly suspect that's not related ;)
wfm too :) good work everyone.
*** Bug 106641 has been marked as a duplicate of this bug. ***
