SA-MP object overload crash
#1

FIXED.
You need to set player pos and camera pos in OnPlayerRequestClass.

----
PROBLEM:
Players got crashes only at one place (not only). It is occuring randomly to players, not always.

-> I can pay you for solving this crash.

Crash logs (at 0x00756B89):
http://pastebin.com/Wf9a2iaK

I'm using Incognito's streamer, and he said:
Код:
Certain combinations of objects can cause a client crash, but
unless the server happens to crash for whatever reason, then this is an SA-MP problem and
not a plugin problem. Try removing objects around the area where you're experiencing
the crash until the crash no longer occurs.
Video:
[ame]www.youtube.com/watch?v=wL9hO8rnUKE[/ame]

I sent 2 weeks ago email to sa-mp team, 0 anserw wow.

Im rly feed up with this crash, week of work and nothing! Any alternates? Becouse I don't want to remove all objects..
Please, SA-MP team fix this.

//Edit:
00756B89 (main 00756960) sub is (rxD3D9Instance).
Код:
.text:00756960 ; =============== S U B R O U T I N E =======================================
.text:00756960
.text:00756960
.text:00756960 sub_756960      proc near               ; CODE XREF: sub_7575F0+146p
.text:00756960                                         ; .text:007584CDp ...
.text:00756960
.text:00756960 var_2C          = dword ptr -2Ch
.text:00756960 var_20          = dword ptr -20h
.text:00756960 resEntry        = dword ptr -1Ch
.text:00756960 var_18          = dword ptr -18h
.text:00756960 var_14          = dword ptr -14h
.text:00756960 var_10          = dword ptr -10h
.text:00756960 var_C           = dword ptr -0Ch
.text:00756960 var_8           = dword ptr -8
.text:00756960 var_4           = dword ptr -4
.text:00756960 arg_0           = dword ptr  4
.text:00756960 arg_4           = dword ptr  8
.text:00756960 arg_8           = dword ptr  0Ch
.text:00756960 arg_C           = dword ptr  10h
.text:00756960 arg_10          = dword ptr  14h
.text:00756960 arg_14          = dword ptr  18h
.text:00756960 arg_18          = dword ptr  1Ch
.text:00756960
.text:00756960                 sub     esp, 1Ch
.text:00756963                 push    ebx
.text:00756964                 push    ebp
.text:00756965                 mov     ebp, [esp+24h+arg_10]
.text:00756969                 xor     eax, eax
.text:0075696B                 push    esi
.text:0075696C                 push    edi
.text:0075696D                 mov     ax, [ebp+4]
.text:00756971                 xor     ebx, ebx
.text:00756973                 mov     [esp+2Ch+var_18], ebx
.text:00756977                 lea     eax, [eax+eax*8]
.text:0075697A                 lea     edi, ds:40h[eax*4]
.text:00756981                 mov     eax, [esp+2Ch+arg_18]
.text:00756985                 cmp     eax, ebx
.text:00756987                 jz      short loc_7569C4
.text:00756989                 mov     edx, ds:rwInterface
.text:0075698F                 lea     ecx, [edi+18h]
.text:00756992                 push    3050Dh
.text:00756997                 push    ecx
.text:00756998                 call    dword ptr [edx+134h]
.text:0075699E                 mov     esi, eax
.text:007569A0                 mov     eax, [esp+34h+arg_C]
.text:007569A4                 add     esp, 8
.text:007569A7                 mov     [esp+2Ch+resEntry], esi
.text:007569AB                 mov     [eax], esi
.text:007569AD                 mov     [esi], ebx
.text:007569AF                 mov     [esi+4], ebx
.text:007569B2                 mov     [esi+8], edi
.text:007569B5                 mov     [esi+0Ch], ebx
.text:007569B8                 mov     [esi+10h], ebx
.text:007569BB
.text:007569BB loc_7569BB:
.text:007569BB                 mov     dword ptr [esi+14h], offset sub_4C9990
.text:007569C2                 jmp     short loc_7569E2
.text:007569C4 ; ---------------------------------------------------------------------------
.text:007569C4
.text:007569C4 loc_7569C4:                             ; CODE XREF: sub_756960+27j
.text:007569C4                 mov     ecx, [esp+2Ch+arg_C]
.text:007569C8                 mov     edx, [esp+2Ch+arg_4]
.text:007569CC                 push    offset sub_4C9990
.text:007569D1                 push    edi
.text:007569D2                 push    ecx
.text:007569D3                 push    edx
.text:007569D4                 call    RwResourcesAllocateEntry
.text:007569D9                 add     esp, 10h
.text:007569DC                 mov     [esp+2Ch+resEntry], eax
.text:007569E0                 mov     esi, eax
.text:007569E2
.text:007569E2 loc_7569E2:                             ; CODE XREF: sub_756960+62j
.text:007569E2                 mov     ecx, edi
.text:007569E4                 lea     ebx, [esi+18h]
.text:007569E7                 mov     edx, ecx
.text:007569E9                 xor     eax, eax
.text:007569EB                 mov     edi, ebx
.text:007569ED                 shr     ecx, 2
.text:007569F0                 rep stosd
.text:007569F2                 mov     ecx, edx
.text:007569F4                 xor     edx, edx
.text:007569F6                 and     ecx, 3
.text:007569F9                 rep stosb
.text:007569FB                 xor     eax, eax
.text:007569FD                 xor     ecx, ecx
.text:007569FF                 mov     ax, [ebp+6]
.text:00756A03                 lea     edi, [ebx+8]
.text:00756A06                 mov     [ebx], eax
.text:00756A08                 mov     cx, [ebp+4]
.text:00756A0C                 mov     [ebx+4], ecx
.text:00756A0F                 mov     [esp+2Ch+arg_4], edx
.text:00756A13                 mov     [edi], edx
.text:00756A15                 mov     [ebx+38h], edx
.text:00756A18                 mov     eax, [ebp+0]
.text:00756A1B                 mov     [esp+2Ch+var_4], edi
.text:00756A1F                 test    ah, 1
.text:00756A22                 jnz     loc_756ADF
.text:00756A28                 xor     ecx, ecx
.text:00756A2A                 mov     cx, [ebp+4]
.text:00756A2E                 cmp     ecx, edx
.text:00756A30                 jz      short loc_756A40
.text:00756A32                 lea     eax, [ebp+14h]
.text:00756A35
.text:00756A35 loc_756A35:                             ; CODE XREF: sub_756960+DEj
.text:00756A35                 mov     edx, [eax]
.text:00756A37                 add     eax, 0Ch
.text:00756A3A                 add     [ebx+38h], edx
.text:00756A3D                 dec     ecx
.text:00756A3E                 jnz     short loc_756A35
.text:00756A40
.text:00756A40 loc_756A40:                             ; CODE XREF: sub_756960+D0j
.text:00756A40                 mov     edx, [ebx+38h]
.text:00756A43                 test    edx, edx
.text:00756A45                 jz      loc_756ADD
.text:00756A4B                 mov     eax, [ebp+0]
.text:00756A4E                 mov     ecx, ds:dword_C9B8C0
.text:00756A54                 and     eax, 0FFh
.text:00756A59                 add     eax, ecx
.text:00756A5B                 mov     ecx, ds:rwInterface
.text:00756A61                 cmp     byte ptr [eax+ecx+8], 4
.text:00756A66                 jnz     short loc_756AA6
.text:00756A68                 mov     cl, byte ptr [esp+2Ch+arg_8]
.text:00756A6C                 mov     eax, 55555555h
.text:00756A71                 cmp     cl, 0FFh
.text:00756A74                 jnz     short loc_756A85
.text:00756A76                 mov     ecx, [esp+2Ch+arg_0]
.text:00756A7A                 xor     eax, eax
.text:00756A7C                 mov     ax, [ecx+84h]
.text:00756A83                 jmp     short loc_756A94
.text:00756A85 ; ---------------------------------------------------------------------------
.text:00756A85
.text:00756A85 loc_756A85:                             ; CODE XREF: sub_756960+114j
.text:00756A85                 cmp     cl, 1
.text:00756A88                 jnz     short loc_756A94
.text:00756A8A                 mov     eax, [esp+2Ch+arg_0]
.text:00756A8E                 mov     ecx, [eax+18h]
.text:00756A91                 mov     eax, [ecx+10h]
.text:00756A94
.text:00756A94 loc_756A94:                             ; CODE XREF: sub_756960+123j
.text:00756A94                                         ; sub_756960+128j
.text:00756A94                 lea     eax, [eax+eax*2]
.text:00756A97                 cmp     edx, eax
.text:00756A99                 jbe     short loc_756AA6
.text:00756A9B                 mov     [esp+2Ch+var_18], 1
.text:00756AA3                 mov     [ebx+38h], eax
.text:00756AA6
.text:00756AA6 loc_756AA6:                             ; CODE XREF: sub_756960+106j
.text:00756AA6                                         ; sub_756960+139j
.text:00756AA6                 mov     edx, [ebx+38h]
.text:00756AA9                 push    edi
.text:00756AAA                 push    edx
.text:00756AAB                 call    sub_4C9970
.text:00756AB0                 add     esp, 8
.text:00756AB3                 test    eax, eax
.text:00756AB5                 jz      short loc_756ACA
.text:00756AB7                 mov     eax, [edi]
.text:00756AB9                 lea     edx, [esp+2Ch+arg_4]
.text:00756ABD                 push    0
.text:00756ABF                 push    edx
.text:00756AC0                 mov     ecx, [eax]
.text:00756AC2                 push    0
.text:00756AC4                 push    0
.text:00756AC6                 push    eax
.text:00756AC7                 call    dword ptr [ecx+2Ch]
.text:00756ACA
.text:00756ACA loc_756ACA:                             ; CODE XREF: sub_756960+155j
.text:00756ACA                 mov     eax, [esp+40h+var_2C]
.text:00756ACE                 xor     edx, edx
.text:00756AD0                 test    eax, eax
.text:00756AD2                 jz      short loc_756ADF
.text:00756AD4                 mov     dword ptr [ebx+0Ch], 4
.text:00756ADB                 jmp     short loc_756B05
.text:00756ADD ; ---------------------------------------------------------------------------
.text:00756ADD
.text:00756ADD loc_756ADD:                             ; CODE XREF: sub_756960+E5j
.text:00756ADD                 xor     edx, edx
.text:00756ADF
.text:00756ADF loc_756ADF:                             ; CODE XREF: sub_756960+C2j
.text:00756ADF                                         ; sub_756960+172j
.text:00756ADF                 mov     eax, [ebp+0]
.text:00756AE2                 mov     ecx, ds:dword_C9B8C0
.text:00756AE8                 mov     edi, ds:rwInterface
.text:00756AEE                 and     eax, 0FFh
.text:00756AF3                 add     eax, ecx
.text:00756AF5                 xor     ecx, ecx
.text:00756AF7                 mov     cl, [eax+edi+8]
.text:00756AFB                 mov     eax, ds:dword_874FEC[ecx*4]
.text:00756B02                 mov     [ebx+0Ch], eax
.text:00756B05
.text:00756B05 loc_756B05:                             ; CODE XREF: sub_756960+17Bj
.text:00756B05                 lea     eax, [ebx+14h]
.text:00756B08                 mov     ecx, 2
.text:00756B0D
.text:00756B0D loc_756B0D:                             ; CODE XREF: sub_756960+1C5j
.text:00756B0D                 mov     [eax-4], edx
.text:00756B10                 mov     [eax], edx
.text:00756B12                 mov     [eax+4], edx
.text:00756B15                 mov     [eax+8], dx
.text:00756B19                 mov     byte ptr [eax+0Ah], 0
.text:00756B1D                 mov     byte ptr [eax+0Bh], 0
.text:00756B21                 add     eax, 10h
.text:00756B24                 dec     ecx
.text:00756B25                 jnz     short loc_756B0D
.text:00756B27                 lea     edi, [esi+18h]
.text:00756B2A                 xor     eax, eax
.text:00756B2C                 mov     [esp+2Ch+var_14], eax
.text:00756B30                 mov     [esp+2Ch+arg_C], eax
.text:00756B34                 mov     [edi+34h], eax
.text:00756B37                 mov     ax, [ebp+4]
.text:00756B3B                 lea     ecx, [edi+40h]
.text:00756B3E                 lea     esi, [ebp+10h]
.text:00756B41                 test    eax, eax
.text:00756B43                 mov     [esp+2Ch+arg_8], ecx
.text:00756B47                 mov     [esp+2Ch+var_C], esi
.text:00756B4B                 jz      loc_756CFF
.text:00756B51                 lea     ebp, [ecx+4]
.text:00756B54                 mov     [esp+2Ch+var_8], eax
.text:00756B58
.text:00756B58 loc_756B58:                             ; CODE XREF: sub_756960+399j
.text:00756B58                 mov     ecx, [esp+2Ch+arg_10]
.text:00756B5C                 mov     ebx, [esi+4]
.text:00756B5F                 mov     eax, [ecx]
.text:00756B61                 test    ah, 1
.text:00756B64                 jz      short loc_756B7A
.text:00756B66                 mov     eax, [esp+2Ch+var_14]
.text:00756B6A                 mov     [ebp+14h], ebx
.text:00756B6D                 mov     [ebp+0], eax
.text:00756B70                 add     eax, ebx
.text:00756B72                 mov     [esp+2Ch+var_14], eax
.text:00756B76                 xor     ecx, ecx
.text:00756B78                 jmp     short loc_756BBE
.text:00756B7A ; ---------------------------------------------------------------------------
.text:00756B7A
.text:00756B7A loc_756B7A:                             ; CODE XREF: sub_756960+204j
.text:00756B7A                 mov     edi, [esi]
.text:00756B7C                 xor     ecx, ecx
.text:00756B7E                 cmp     ebx, ecx
.text:00756B80                 mov     [esp+2Ch+var_10], ebx
.text:00756B84                 jz      short loc_756BB8
.text:00756B86                 or      edx, 0FFFFFFFFh
.text:00756B89
.text:00756B89 loc_756B89:                             ; CODE XREF: sub_756960+249j
.text:00756B89                 mov     ax, [edi]
.text:00756B8C                 and     eax, 0FFFFh
.text:00756B91                 cmp     edx, eax
.text:00756B93                 jb      short loc_756B97
.text:00756B95                 mov     edx, eax
.text:00756B97
.text:00756B97 loc_756B97:                             ; CODE XREF: sub_756960+233j
.text:00756B97                 cmp     ecx, eax
.text:00756B99                 ja      short loc_756B9D
.text:00756B9B                 mov     ecx, eax
.text:00756B9D
.text:00756B9D loc_756B9D:                             ; CODE XREF: sub_756960+239j
.text:00756B9D                 mov     eax, [esp+2Ch+var_10]
.text:00756BA1                 add     edi, 2
.text:00756BA4                 dec     eax
.text:00756BA5                 mov     [esp+2Ch+var_10], eax
.text:00756BA9                 jnz     short loc_756B89
.text:00756BAB                 sub     ecx, edx
.text:00756BAD                 inc     ecx
.text:00756BAE                 mov     [ebp+14h], ecx
.text:00756BB1                 mov     [ebp+0], edx
.text:00756BB4                 xor     ecx, ecx
.text:00756BB6                 jmp     short loc_756BBE
.text:00756BB8 ; ---------------------------------------------------------------------------
.text:00756BB8
.text:00756BB8 loc_756BB8:                             ; CODE XREF: sub_756960+224j
.text:00756BB8                 mov     [ebp+14h], ecx
.text:00756BBB                 mov     [ebp+0], ecx
.text:00756BBE
.text:00756BBE loc_756BBE:                             ; CODE XREF: sub_756960+218j
.text:00756BBE                                         ; sub_756960+256j
.text:00756BBE                 mov     edx, [esi+8]
.text:00756BC1                 mov     [ebp+0Ch], ecx
.text:00756BC4                 mov     [ebp+4], edx
.text:00756BC7                 mov     [ebp+8], ecx
.text:00756BCA                 cmp     [esp+2Ch+arg_4], ecx
.text:00756BCE                 jz      loc_756C88
.text:00756BD4                 mov     eax, [esp+2Ch+arg_C]
.text:00756BD8                 mov     [ebp+18h], eax
.text:00756BDB                 mov     eax, [esp+2Ch+var_18]
.text:00756BDF                 cmp     eax, ecx
.text:00756BE1                 jz      short loc_756BFC
.text:00756BE3                 mov     ecx, [ebp+0]
.text:00756BE6                 mov     edx, [esi]
.text:00756BE8                 mov     eax, [esp+2Ch+arg_4]
.text:00756BEC                 push    ecx
.text:00756BED                 push    ebx
.text:00756BEE                 push    edx
.text:00756BEF                 push    eax
.text:00756BF0                 call    near ptr dword_756830
.text:00756BF5                 add     esp, 10h
.text:00756BF8                 mov     ebx, eax
.text:00756BFA                 jmp     short loc_756C3E
.text:00756BFC ; ---------------------------------------------------------------------------
.text:00756BFC
.text:00756BFC loc_756BFC:                             ; CODE XREF: sub_756960+281j
.text:00756BFC                 cmp     [ebp+0], ecx
.text:00756BFF                 jz      short loc_756C23
.text:00756C01                 mov     eax, [esi]
.text:00756C03                 mov     ecx, [esp+2Ch+arg_4]
.text:00756C07                 test    ebx, ebx
.text:00756C09                 jz      short loc_756C3E
.text:00756C0B                 mov     edx, ebx
.text:00756C0D
.text:00756C0D loc_756C0D:                             ; CODE XREF: sub_756960+2BFj
.text:00756C0D                 mov     di, [eax]
.text:00756C10                 add     eax, 2
.text:00756C13                 sub     di, [ebp+0]
.text:00756C17                 add     ecx, 2
.text:00756C1A                 dec     edx
.text:00756C1B                 mov     [ecx-2], di
.text:00756C1F                 jnz     short loc_756C0D
.text:00756C21                 jmp     short loc_756C3E
.text:00756C23 ; ---------------------------------------------------------------------------
.text:00756C23
.text:00756C23 loc_756C23:                             ; CODE XREF: sub_756960+29Fj
.text:00756C23                 mov     esi, [esi]
.text:00756C25                 mov     edi, [esp+2Ch+arg_4]
.text:00756C29                 lea     ecx, [ebx+ebx]
.text:00756C2C                 mov     edx, ecx
.text:00756C2E                 shr     ecx, 2
.text:00756C31                 rep movsd
.text:00756C33                 mov     ecx, edx
.text:00756C35                 and     ecx, 3
.text:00756C38                 rep movsb
.text:00756C3A                 mov     esi, [esp+2Ch+var_C]
.text:00756C3E
.text:00756C3E loc_756C3E:                             ; CODE XREF: sub_756960+29Aj
.text:00756C3E                                         ; sub_756960+2A9j ...
.text:00756C3E                 mov     eax, [esp+2Ch+arg_8]
.text:00756C42                 mov     ecx, [esp+2Ch+resEntry]
.text:00756C46                 mov     [eax], ebx
.text:00756C48                 lea     eax, [ecx+18h]
.text:00756C4B                 mov     ecx, [ecx+24h]
.text:00756C4E                 cmp     ecx, 4
.text:00756C51                 jnz     short loc_756C71
.text:00756C53                 mov     eax, 0AAAAAAABh
.text:00756C58                 push    offset dword_7567A0
.text:00756C5D                 mul     ebx
.text:00756C5F                 shr     edx, 1
.text:00756C61                 push    6
.text:00756C63                 push    edx
.text:00756C64                 mov     edx, [esp+38h+arg_4]
.text:00756C68                 push    edx
.text:00756C69                 call    loc_8247E0
.text:00756C6E                 add     esp, 10h
.text:00756C71
.text:00756C71 loc_756C71:                             ; CODE XREF: sub_756960+2F1j
.text:00756C71                 mov     eax, [esp+2Ch+arg_4]
.text:00756C75                 lea     ecx, [eax+ebx*2]
.text:00756C78                 mov     eax, [esp+2Ch+arg_C]
.text:00756C7C                 add     eax, ebx
.text:00756C7E                 mov     [esp+2Ch+arg_4], ecx
.text:00756C82                 mov     [esp+2Ch+arg_C], eax
.text:00756C86                 jmp     short loc_756C91
.text:00756C88 ; ---------------------------------------------------------------------------
.text:00756C88
.text:00756C88 loc_756C88:                             ; CODE XREF: sub_756960+26Ej
.text:00756C88                 mov     edx, [esp+2Ch+arg_8]
.text:00756C8C                 mov     [ebp+18h], ecx
.text:00756C8F                 mov     [edx], ecx
.text:00756C91
.text:00756C91 loc_756C91:                             ; CODE XREF: sub_756960+326j
.text:00756C91                 mov     eax, [esp+2Ch+resEntry]
.text:00756C95                 lea     edi, [eax+18h]
.text:00756C98                 mov     eax, [eax+24h]
.text:00756C9B                 add     eax, 0FFFFFFFEh ; switch 5 cases
.text:00756C9E                 cmp     eax, 4
.text:00756CA1                 ja      short loc_756CCD ; default
.text:00756CA3                 jmp     ds:off_756D74[eax*4] ; switch jump
.text:00756CAA
.text:00756CAA loc_756CAA:                             ; DATA XREF: .text:off_756D74o
.text:00756CAA                 shr     ebx, 1          ; case 0x2
.text:00756CAC                 mov     [ebp+1Ch], ebx
.text:00756CAF                 jmp     short loc_756CD4
.text:00756CB1 ; ---------------------------------------------------------------------------
.text:00756CB1
.text:00756CB1 loc_756CB1:                             ; CODE XREF: sub_756960+343j
.text:00756CB1                                         ; DATA XREF: .text:off_756D74o
.text:00756CB1                 dec     ebx             ; case 0x3
.text:00756CB2                 mov     [ebp+1Ch], ebx
.text:00756CB5                 jmp     short loc_756CD4
.text:00756CB7 ; ---------------------------------------------------------------------------
.text:00756CB7
.text:00756CB7 loc_756CB7:                             ; CODE XREF: sub_756960+343j
.text:00756CB7                                         ; DATA XREF: .text:off_756D74o
.text:00756CB7                 mov     eax, 0AAAAAAABh ; case 0x4
.text:00756CBC                 mul     ebx
.text:00756CBE                 shr     edx, 1
.text:00756CC0                 mov     [ebp+1Ch], edx
.text:00756CC3                 jmp     short loc_756CD4
.text:00756CC5 ; ---------------------------------------------------------------------------
.text:00756CC5
.text:00756CC5 loc_756CC5:                             ; CODE XREF: sub_756960+343j
.text:00756CC5                                         ; DATA XREF: .text:off_756D74o
.text:00756CC5                 add     ebx, 0FFFFFFFEh ; case 0x5
.text:00756CC8                 mov     [ebp+1Ch], ebx
.text:00756CCB                 jmp     short loc_756CD4
.text:00756CCD ; ---------------------------------------------------------------------------
.text:00756CCD
.text:00756CCD loc_756CCD:                             ; CODE XREF: sub_756960+341j
.text:00756CCD                 mov     dword ptr [ebp+1Ch], 0 ; default
.text:00756CD4
.text:00756CD4 loc_756CD4:                             ; CODE XREF: sub_756960+34Fj
.text:00756CD4                                         ; sub_756960+355j ...
.text:00756CD4                 mov     ebx, [esp+2Ch+arg_8]
.text:00756CD8                 mov     eax, [esp+2Ch+var_8]
.text:00756CDC                 mov     dword ptr [ebp+10h], 0
.text:00756CE3                 add     ebx, 24h
.text:00756CE6                 add     ebp, 24h
.text:00756CE9                 add     esi, 0Ch
.text:00756CEC                 dec     eax
.text:00756CED                 mov     [esp+2Ch+arg_8], ebx
.text:00756CF1                 mov     [esp+2Ch+var_C], esi
.text:00756CF5                 mov     [esp+2Ch+var_8], eax
.text:00756CF9                 jnz     loc_756B58
.text:00756CFF
.text:00756CFF loc_756CFF:                             ; CODE XREF: sub_756960+1EBj
.text:00756CFF                 mov     eax, [esp+2Ch+arg_4]
.text:00756D03                 test    eax, eax
.text:00756D05                 jz      short loc_756D13
.text:00756D07                 mov     ecx, [esp+2Ch+var_4] ; case 0x4
.text:00756D0B                 mov     eax, [ecx]
.text:00756D0D                 push    eax
.text:00756D0E                 mov     edx, [eax]
.text:00756D10                 call    dword ptr [edx+30h]
.text:00756D13
.text:00756D13 loc_756D13:                             ; CODE XREF: sub_756960+3A5j
.text:00756D13                 mov     eax, [esp+2Ch+arg_14]
.text:00756D17                 test    eax, eax
.text:00756D19                 jz      short loc_756D68
.text:00756D1B                 mov     ecx, [esp+2Ch+arg_0]
.text:00756D1F                 push    0
.text:00756D21                 push    edi
.text:00756D22                 push    ecx
.text:00756D23                 call    eax
.text:00756D25                 add     esp, 0Ch
.text:00756D28                 test    eax, eax
.text:00756D2A                 jnz     short loc_756D68
.text:00756D2C                 mov     eax, [esp+2Ch+arg_18]
.text:00756D30                 test    eax, eax
.text:00756D32                 jz      short loc_756D51
.text:00756D34                 mov     edx, [esp+2Ch+resEntry]
.text:00756D38                 mov     eax, ds:rwInterface
.text:00756D3D                 push    edx
.text:00756D3E                 call    dword ptr [eax+138h]
.text:00756D44                 add     esp, 4
.text:00756D47                 xor     eax, eax
.text:00756D49                 pop     edi
.text:00756D4A                 pop     esi
.text:00756D4B                 pop     ebp
.text:00756D4C                 pop     ebx
.text:00756D4D                 add     esp, 1Ch
.text:00756D50                 retn
.text:00756D51 ; ---------------------------------------------------------------------------
.text:00756D51
.text:00756D51 loc_756D51:                             ; CODE XREF: sub_756960+3D2j
.text:00756D51                 mov     ecx, [esp+2Ch+resEntry]
.text:00756D55                 push    ecx
.text:00756D56                 call    loc_807DE0
.text:00756D5B                 add     esp, 4
.text:00756D5E                 xor     eax, eax
.text:00756D60                 pop     edi
.text:00756D61                 pop     esi
.text:00756D62                 pop     ebp
.text:00756D63                 pop     ebx
.text:00756D64                 add     esp, 1Ch
.text:00756D67                 retn
.text:00756D68 ; ---------------------------------------------------------------------------
.text:00756D68
.text:00756D68 loc_756D68:                             ; CODE XREF: sub_756960+3B9j
.text:00756D68                                         ; sub_756960+3CAj
.text:00756D68                 mov     eax, [esp+2Ch+resEntry]
.text:00756D6C                 pop     edi
.text:00756D6D                 pop     esi
.text:00756D6E                 pop     ebp
.text:00756D6F                 pop     ebx
.text:00756D70                 add     esp, 1Ch
.text:00756D73                 retn
.text:00756D73 sub_756960      endp
.text:00756D73
.text:00756D73 ; ---------------------------------------------------------------------------
.text:00756D74 off_756D74      dd offset loc_756CAA    ; DATA XREF: sub_756960+343r
.text:00756D74                 dd offset loc_756CB1    ; jump table for switch statement
.text:00756D74                 dd offset loc_756CB7
.text:00756D74                 dd offset loc_756CC5
.text:00756D74                 dd offset loc_756CC5
.text:00756D88                 align 10h
.text:00756D90
ccw from MTA Team:
Quote:

GTA is trying to create an instance of a 3D model, but fails due to incorrect data. Possible cause is memory corruption by some unrelated problem.

What can cause memory corruption? I'm using Incognito's streamer, MySQL R5 plugin and sscanf.

//EDIT
I did it, crash occuring in every place where objects are - only outside (VW 0 int 0). Last day I've add objects in Blueberry, here you go link http://pastebin.com/QChwBGeW
Crash also appear there...
I have removed whole exterior objects in VW 0, -1 crash still appear when getting back in the place near alhambra
EAX: 0x00000001 EBX: 0x00000004 ECX: 0x00000000 EDX: 0xFFFFFFFF
ESI: 0x142DA344 EDI: 0xC1000000 EBP: 0x0B469820 ESP: 0x0028FCA4
EFLAGS: 0x00010286
SCM Op: 0x470, lDbg: 0 LastRendObj: 1226

1226 - it's in game build street lamp, this para only show models which are dynamic.

Debug from streamer plugin:
Код:
[17:07:07] _Kubi_ has logged in.
[17:07:09] 3DText PID 0 > Text: |Muzeum sztuki wspуłczesnej| color 80ffff POS [1698.9, -1667.7, 20.2] 
[17:07:09] 3DText PID 0 > Text: |Przebieralnia
(/uniform)| color ffa500ff POS [1636.9, -1813.6, 13.5]
2 text's are created, after this last - crash.
Total 0 objects, 0 removed buildings

//Edit
Tested with removed objects, 3D texts, gangzones, pickups.
Sometimes game freezes at Spawn procedure.
It can occur, when world isn't rendered yet for player, and he want do make any action like move forward.
Reply


Messages In This Thread
SA-MP object overload crash - by KubiPL - 19.08.2014, 18:31
Re: SA-MP object overload crash - by Patryk98 - 19.08.2014, 19:08
Re: SA-MP object overload crash - by KubiPL - 19.08.2014, 19:20
Re: SA-MP object overload crash - by davve95 - 19.08.2014, 19:43
Re: SA-MP object overload crash - by ikey07 - 19.08.2014, 20:00
Re: SA-MP object overload crash - by kurta999 - 19.08.2014, 20:05
Re: SA-MP object overload crash - by d0 - 19.08.2014, 20:08
Re: SA-MP object overload crash - by KubiPL - 19.08.2014, 21:11
Re: SA-MP object overload crash - by vishalboy213 - 20.08.2014, 08:12
Re: SA-MP object overload crash - by KubiPL - 20.08.2014, 10:28

Forum Jump:


Users browsing this thread: 2 Guest(s)