19.08.2014, 18:31
(
Последний раз редактировалось KubiPL; 10.01.2015 в 10:14.
)
FIXED.
You need to set player pos and camera pos in OnPlayerRequestClass.
----
PROBLEM:
Players got crashes only at one place (not only). It is occuring randomly to players, not always.
-> I can pay you for solving this crash.
Crash logs (at 0x00756B89):
http://pastebin.com/Wf9a2iaK
I'm using Incognito's streamer, and he said:
Video:
[ame]www.youtube.com/watch?v=wL9hO8rnUKE[/ame]
I sent 2 weeks ago email to sa-mp team, 0 anserw wow.
Im rly feed up with this crash, week of work and nothing! Any alternates? Becouse I don't want to remove all objects..
Please, SA-MP team fix this.
//Edit:
00756B89 (main 00756960) sub is (rxD3D9Instance).
ccw from MTA Team:
What can cause memory corruption? I'm using Incognito's streamer, MySQL R5 plugin and sscanf.
//EDIT
I did it, crash occuring in every place where objects are - only outside (VW 0 int 0). Last day I've add objects in Blueberry, here you go link http://pastebin.com/QChwBGeW
Crash also appear there...
I have removed whole exterior objects in VW 0, -1 crash still appear when getting back in the place near alhambra
EAX: 0x00000001 EBX: 0x00000004 ECX: 0x00000000 EDX: 0xFFFFFFFF
ESI: 0x142DA344 EDI: 0xC1000000 EBP: 0x0B469820 ESP: 0x0028FCA4
EFLAGS: 0x00010286
SCM Op: 0x470, lDbg: 0 LastRendObj: 1226
1226 - it's in game build street lamp, this para only show models which are dynamic.
Debug from streamer plugin:
2 text's are created, after this last - crash.
Total 0 objects, 0 removed buildings
//Edit
Tested with removed objects, 3D texts, gangzones, pickups.
Sometimes game freezes at Spawn procedure.
It can occur, when world isn't rendered yet for player, and he want do make any action like move forward.
You need to set player pos and camera pos in OnPlayerRequestClass.
----
PROBLEM:
Players got crashes only at one place (not only). It is occuring randomly to players, not always.
-> I can pay you for solving this crash.
Crash logs (at 0x00756B89):
http://pastebin.com/Wf9a2iaK
I'm using Incognito's streamer, and he said:
Код:
Certain combinations of objects can cause a client crash, but unless the server happens to crash for whatever reason, then this is an SA-MP problem and not a plugin problem. Try removing objects around the area where you're experiencing the crash until the crash no longer occurs.
[ame]www.youtube.com/watch?v=wL9hO8rnUKE[/ame]
I sent 2 weeks ago email to sa-mp team, 0 anserw wow.
Im rly feed up with this crash, week of work and nothing! Any alternates? Becouse I don't want to remove all objects..
Please, SA-MP team fix this.
//Edit:
00756B89 (main 00756960) sub is (rxD3D9Instance).
Код:
.text:00756960 ; =============== S U B R O U T I N E ======================================= .text:00756960 .text:00756960 .text:00756960 sub_756960 proc near ; CODE XREF: sub_7575F0+146p .text:00756960 ; .text:007584CDp ... .text:00756960 .text:00756960 var_2C = dword ptr -2Ch .text:00756960 var_20 = dword ptr -20h .text:00756960 resEntry = dword ptr -1Ch .text:00756960 var_18 = dword ptr -18h .text:00756960 var_14 = dword ptr -14h .text:00756960 var_10 = dword ptr -10h .text:00756960 var_C = dword ptr -0Ch .text:00756960 var_8 = dword ptr -8 .text:00756960 var_4 = dword ptr -4 .text:00756960 arg_0 = dword ptr 4 .text:00756960 arg_4 = dword ptr 8 .text:00756960 arg_8 = dword ptr 0Ch .text:00756960 arg_C = dword ptr 10h .text:00756960 arg_10 = dword ptr 14h .text:00756960 arg_14 = dword ptr 18h .text:00756960 arg_18 = dword ptr 1Ch .text:00756960 .text:00756960 sub esp, 1Ch .text:00756963 push ebx .text:00756964 push ebp .text:00756965 mov ebp, [esp+24h+arg_10] .text:00756969 xor eax, eax .text:0075696B push esi .text:0075696C push edi .text:0075696D mov ax, [ebp+4] .text:00756971 xor ebx, ebx .text:00756973 mov [esp+2Ch+var_18], ebx .text:00756977 lea eax, [eax+eax*8] .text:0075697A lea edi, ds:40h[eax*4] .text:00756981 mov eax, [esp+2Ch+arg_18] .text:00756985 cmp eax, ebx .text:00756987 jz short loc_7569C4 .text:00756989 mov edx, ds:rwInterface .text:0075698F lea ecx, [edi+18h] .text:00756992 push 3050Dh .text:00756997 push ecx .text:00756998 call dword ptr [edx+134h] .text:0075699E mov esi, eax .text:007569A0 mov eax, [esp+34h+arg_C] .text:007569A4 add esp, 8 .text:007569A7 mov [esp+2Ch+resEntry], esi .text:007569AB mov [eax], esi .text:007569AD mov [esi], ebx .text:007569AF mov [esi+4], ebx .text:007569B2 mov [esi+8], edi .text:007569B5 mov [esi+0Ch], ebx .text:007569B8 mov [esi+10h], ebx .text:007569BB .text:007569BB loc_7569BB: .text:007569BB mov dword ptr [esi+14h], offset sub_4C9990 .text:007569C2 jmp short loc_7569E2 .text:007569C4 ; --------------------------------------------------------------------------- .text:007569C4 .text:007569C4 loc_7569C4: ; CODE XREF: sub_756960+27j .text:007569C4 mov ecx, [esp+2Ch+arg_C] .text:007569C8 mov edx, [esp+2Ch+arg_4] .text:007569CC push offset sub_4C9990 .text:007569D1 push edi .text:007569D2 push ecx .text:007569D3 push edx .text:007569D4 call RwResourcesAllocateEntry .text:007569D9 add esp, 10h .text:007569DC mov [esp+2Ch+resEntry], eax .text:007569E0 mov esi, eax .text:007569E2 .text:007569E2 loc_7569E2: ; CODE XREF: sub_756960+62j .text:007569E2 mov ecx, edi .text:007569E4 lea ebx, [esi+18h] .text:007569E7 mov edx, ecx .text:007569E9 xor eax, eax .text:007569EB mov edi, ebx .text:007569ED shr ecx, 2 .text:007569F0 rep stosd .text:007569F2 mov ecx, edx .text:007569F4 xor edx, edx .text:007569F6 and ecx, 3 .text:007569F9 rep stosb .text:007569FB xor eax, eax .text:007569FD xor ecx, ecx .text:007569FF mov ax, [ebp+6] .text:00756A03 lea edi, [ebx+8] .text:00756A06 mov [ebx], eax .text:00756A08 mov cx, [ebp+4] .text:00756A0C mov [ebx+4], ecx .text:00756A0F mov [esp+2Ch+arg_4], edx .text:00756A13 mov [edi], edx .text:00756A15 mov [ebx+38h], edx .text:00756A18 mov eax, [ebp+0] .text:00756A1B mov [esp+2Ch+var_4], edi .text:00756A1F test ah, 1 .text:00756A22 jnz loc_756ADF .text:00756A28 xor ecx, ecx .text:00756A2A mov cx, [ebp+4] .text:00756A2E cmp ecx, edx .text:00756A30 jz short loc_756A40 .text:00756A32 lea eax, [ebp+14h] .text:00756A35 .text:00756A35 loc_756A35: ; CODE XREF: sub_756960+DEj .text:00756A35 mov edx, [eax] .text:00756A37 add eax, 0Ch .text:00756A3A add [ebx+38h], edx .text:00756A3D dec ecx .text:00756A3E jnz short loc_756A35 .text:00756A40 .text:00756A40 loc_756A40: ; CODE XREF: sub_756960+D0j .text:00756A40 mov edx, [ebx+38h] .text:00756A43 test edx, edx .text:00756A45 jz loc_756ADD .text:00756A4B mov eax, [ebp+0] .text:00756A4E mov ecx, ds:dword_C9B8C0 .text:00756A54 and eax, 0FFh .text:00756A59 add eax, ecx .text:00756A5B mov ecx, ds:rwInterface .text:00756A61 cmp byte ptr [eax+ecx+8], 4 .text:00756A66 jnz short loc_756AA6 .text:00756A68 mov cl, byte ptr [esp+2Ch+arg_8] .text:00756A6C mov eax, 55555555h .text:00756A71 cmp cl, 0FFh .text:00756A74 jnz short loc_756A85 .text:00756A76 mov ecx, [esp+2Ch+arg_0] .text:00756A7A xor eax, eax .text:00756A7C mov ax, [ecx+84h] .text:00756A83 jmp short loc_756A94 .text:00756A85 ; --------------------------------------------------------------------------- .text:00756A85 .text:00756A85 loc_756A85: ; CODE XREF: sub_756960+114j .text:00756A85 cmp cl, 1 .text:00756A88 jnz short loc_756A94 .text:00756A8A mov eax, [esp+2Ch+arg_0] .text:00756A8E mov ecx, [eax+18h] .text:00756A91 mov eax, [ecx+10h] .text:00756A94 .text:00756A94 loc_756A94: ; CODE XREF: sub_756960+123j .text:00756A94 ; sub_756960+128j .text:00756A94 lea eax, [eax+eax*2] .text:00756A97 cmp edx, eax .text:00756A99 jbe short loc_756AA6 .text:00756A9B mov [esp+2Ch+var_18], 1 .text:00756AA3 mov [ebx+38h], eax .text:00756AA6 .text:00756AA6 loc_756AA6: ; CODE XREF: sub_756960+106j .text:00756AA6 ; sub_756960+139j .text:00756AA6 mov edx, [ebx+38h] .text:00756AA9 push edi .text:00756AAA push edx .text:00756AAB call sub_4C9970 .text:00756AB0 add esp, 8 .text:00756AB3 test eax, eax .text:00756AB5 jz short loc_756ACA .text:00756AB7 mov eax, [edi] .text:00756AB9 lea edx, [esp+2Ch+arg_4] .text:00756ABD push 0 .text:00756ABF push edx .text:00756AC0 mov ecx, [eax] .text:00756AC2 push 0 .text:00756AC4 push 0 .text:00756AC6 push eax .text:00756AC7 call dword ptr [ecx+2Ch] .text:00756ACA .text:00756ACA loc_756ACA: ; CODE XREF: sub_756960+155j .text:00756ACA mov eax, [esp+40h+var_2C] .text:00756ACE xor edx, edx .text:00756AD0 test eax, eax .text:00756AD2 jz short loc_756ADF .text:00756AD4 mov dword ptr [ebx+0Ch], 4 .text:00756ADB jmp short loc_756B05 .text:00756ADD ; --------------------------------------------------------------------------- .text:00756ADD .text:00756ADD loc_756ADD: ; CODE XREF: sub_756960+E5j .text:00756ADD xor edx, edx .text:00756ADF .text:00756ADF loc_756ADF: ; CODE XREF: sub_756960+C2j .text:00756ADF ; sub_756960+172j .text:00756ADF mov eax, [ebp+0] .text:00756AE2 mov ecx, ds:dword_C9B8C0 .text:00756AE8 mov edi, ds:rwInterface .text:00756AEE and eax, 0FFh .text:00756AF3 add eax, ecx .text:00756AF5 xor ecx, ecx .text:00756AF7 mov cl, [eax+edi+8] .text:00756AFB mov eax, ds:dword_874FEC[ecx*4] .text:00756B02 mov [ebx+0Ch], eax .text:00756B05 .text:00756B05 loc_756B05: ; CODE XREF: sub_756960+17Bj .text:00756B05 lea eax, [ebx+14h] .text:00756B08 mov ecx, 2 .text:00756B0D .text:00756B0D loc_756B0D: ; CODE XREF: sub_756960+1C5j .text:00756B0D mov [eax-4], edx .text:00756B10 mov [eax], edx .text:00756B12 mov [eax+4], edx .text:00756B15 mov [eax+8], dx .text:00756B19 mov byte ptr [eax+0Ah], 0 .text:00756B1D mov byte ptr [eax+0Bh], 0 .text:00756B21 add eax, 10h .text:00756B24 dec ecx .text:00756B25 jnz short loc_756B0D .text:00756B27 lea edi, [esi+18h] .text:00756B2A xor eax, eax .text:00756B2C mov [esp+2Ch+var_14], eax .text:00756B30 mov [esp+2Ch+arg_C], eax .text:00756B34 mov [edi+34h], eax .text:00756B37 mov ax, [ebp+4] .text:00756B3B lea ecx, [edi+40h] .text:00756B3E lea esi, [ebp+10h] .text:00756B41 test eax, eax .text:00756B43 mov [esp+2Ch+arg_8], ecx .text:00756B47 mov [esp+2Ch+var_C], esi .text:00756B4B jz loc_756CFF .text:00756B51 lea ebp, [ecx+4] .text:00756B54 mov [esp+2Ch+var_8], eax .text:00756B58 .text:00756B58 loc_756B58: ; CODE XREF: sub_756960+399j .text:00756B58 mov ecx, [esp+2Ch+arg_10] .text:00756B5C mov ebx, [esi+4] .text:00756B5F mov eax, [ecx] .text:00756B61 test ah, 1 .text:00756B64 jz short loc_756B7A .text:00756B66 mov eax, [esp+2Ch+var_14] .text:00756B6A mov [ebp+14h], ebx .text:00756B6D mov [ebp+0], eax .text:00756B70 add eax, ebx .text:00756B72 mov [esp+2Ch+var_14], eax .text:00756B76 xor ecx, ecx .text:00756B78 jmp short loc_756BBE .text:00756B7A ; --------------------------------------------------------------------------- .text:00756B7A .text:00756B7A loc_756B7A: ; CODE XREF: sub_756960+204j .text:00756B7A mov edi, [esi] .text:00756B7C xor ecx, ecx .text:00756B7E cmp ebx, ecx .text:00756B80 mov [esp+2Ch+var_10], ebx .text:00756B84 jz short loc_756BB8 .text:00756B86 or edx, 0FFFFFFFFh .text:00756B89 .text:00756B89 loc_756B89: ; CODE XREF: sub_756960+249j .text:00756B89 mov ax, [edi] .text:00756B8C and eax, 0FFFFh .text:00756B91 cmp edx, eax .text:00756B93 jb short loc_756B97 .text:00756B95 mov edx, eax .text:00756B97 .text:00756B97 loc_756B97: ; CODE XREF: sub_756960+233j .text:00756B97 cmp ecx, eax .text:00756B99 ja short loc_756B9D .text:00756B9B mov ecx, eax .text:00756B9D .text:00756B9D loc_756B9D: ; CODE XREF: sub_756960+239j .text:00756B9D mov eax, [esp+2Ch+var_10] .text:00756BA1 add edi, 2 .text:00756BA4 dec eax .text:00756BA5 mov [esp+2Ch+var_10], eax .text:00756BA9 jnz short loc_756B89 .text:00756BAB sub ecx, edx .text:00756BAD inc ecx .text:00756BAE mov [ebp+14h], ecx .text:00756BB1 mov [ebp+0], edx .text:00756BB4 xor ecx, ecx .text:00756BB6 jmp short loc_756BBE .text:00756BB8 ; --------------------------------------------------------------------------- .text:00756BB8 .text:00756BB8 loc_756BB8: ; CODE XREF: sub_756960+224j .text:00756BB8 mov [ebp+14h], ecx .text:00756BBB mov [ebp+0], ecx .text:00756BBE .text:00756BBE loc_756BBE: ; CODE XREF: sub_756960+218j .text:00756BBE ; sub_756960+256j .text:00756BBE mov edx, [esi+8] .text:00756BC1 mov [ebp+0Ch], ecx .text:00756BC4 mov [ebp+4], edx .text:00756BC7 mov [ebp+8], ecx .text:00756BCA cmp [esp+2Ch+arg_4], ecx .text:00756BCE jz loc_756C88 .text:00756BD4 mov eax, [esp+2Ch+arg_C] .text:00756BD8 mov [ebp+18h], eax .text:00756BDB mov eax, [esp+2Ch+var_18] .text:00756BDF cmp eax, ecx .text:00756BE1 jz short loc_756BFC .text:00756BE3 mov ecx, [ebp+0] .text:00756BE6 mov edx, [esi] .text:00756BE8 mov eax, [esp+2Ch+arg_4] .text:00756BEC push ecx .text:00756BED push ebx .text:00756BEE push edx .text:00756BEF push eax .text:00756BF0 call near ptr dword_756830 .text:00756BF5 add esp, 10h .text:00756BF8 mov ebx, eax .text:00756BFA jmp short loc_756C3E .text:00756BFC ; --------------------------------------------------------------------------- .text:00756BFC .text:00756BFC loc_756BFC: ; CODE XREF: sub_756960+281j .text:00756BFC cmp [ebp+0], ecx .text:00756BFF jz short loc_756C23 .text:00756C01 mov eax, [esi] .text:00756C03 mov ecx, [esp+2Ch+arg_4] .text:00756C07 test ebx, ebx .text:00756C09 jz short loc_756C3E .text:00756C0B mov edx, ebx .text:00756C0D .text:00756C0D loc_756C0D: ; CODE XREF: sub_756960+2BFj .text:00756C0D mov di, [eax] .text:00756C10 add eax, 2 .text:00756C13 sub di, [ebp+0] .text:00756C17 add ecx, 2 .text:00756C1A dec edx .text:00756C1B mov [ecx-2], di .text:00756C1F jnz short loc_756C0D .text:00756C21 jmp short loc_756C3E .text:00756C23 ; --------------------------------------------------------------------------- .text:00756C23 .text:00756C23 loc_756C23: ; CODE XREF: sub_756960+29Fj .text:00756C23 mov esi, [esi] .text:00756C25 mov edi, [esp+2Ch+arg_4] .text:00756C29 lea ecx, [ebx+ebx] .text:00756C2C mov edx, ecx .text:00756C2E shr ecx, 2 .text:00756C31 rep movsd .text:00756C33 mov ecx, edx .text:00756C35 and ecx, 3 .text:00756C38 rep movsb .text:00756C3A mov esi, [esp+2Ch+var_C] .text:00756C3E .text:00756C3E loc_756C3E: ; CODE XREF: sub_756960+29Aj .text:00756C3E ; sub_756960+2A9j ... .text:00756C3E mov eax, [esp+2Ch+arg_8] .text:00756C42 mov ecx, [esp+2Ch+resEntry] .text:00756C46 mov [eax], ebx .text:00756C48 lea eax, [ecx+18h] .text:00756C4B mov ecx, [ecx+24h] .text:00756C4E cmp ecx, 4 .text:00756C51 jnz short loc_756C71 .text:00756C53 mov eax, 0AAAAAAABh .text:00756C58 push offset dword_7567A0 .text:00756C5D mul ebx .text:00756C5F shr edx, 1 .text:00756C61 push 6 .text:00756C63 push edx .text:00756C64 mov edx, [esp+38h+arg_4] .text:00756C68 push edx .text:00756C69 call loc_8247E0 .text:00756C6E add esp, 10h .text:00756C71 .text:00756C71 loc_756C71: ; CODE XREF: sub_756960+2F1j .text:00756C71 mov eax, [esp+2Ch+arg_4] .text:00756C75 lea ecx, [eax+ebx*2] .text:00756C78 mov eax, [esp+2Ch+arg_C] .text:00756C7C add eax, ebx .text:00756C7E mov [esp+2Ch+arg_4], ecx .text:00756C82 mov [esp+2Ch+arg_C], eax .text:00756C86 jmp short loc_756C91 .text:00756C88 ; --------------------------------------------------------------------------- .text:00756C88 .text:00756C88 loc_756C88: ; CODE XREF: sub_756960+26Ej .text:00756C88 mov edx, [esp+2Ch+arg_8] .text:00756C8C mov [ebp+18h], ecx .text:00756C8F mov [edx], ecx .text:00756C91 .text:00756C91 loc_756C91: ; CODE XREF: sub_756960+326j .text:00756C91 mov eax, [esp+2Ch+resEntry] .text:00756C95 lea edi, [eax+18h] .text:00756C98 mov eax, [eax+24h] .text:00756C9B add eax, 0FFFFFFFEh ; switch 5 cases .text:00756C9E cmp eax, 4 .text:00756CA1 ja short loc_756CCD ; default .text:00756CA3 jmp ds:off_756D74[eax*4] ; switch jump .text:00756CAA .text:00756CAA loc_756CAA: ; DATA XREF: .text:off_756D74o .text:00756CAA shr ebx, 1 ; case 0x2 .text:00756CAC mov [ebp+1Ch], ebx .text:00756CAF jmp short loc_756CD4 .text:00756CB1 ; --------------------------------------------------------------------------- .text:00756CB1 .text:00756CB1 loc_756CB1: ; CODE XREF: sub_756960+343j .text:00756CB1 ; DATA XREF: .text:off_756D74o .text:00756CB1 dec ebx ; case 0x3 .text:00756CB2 mov [ebp+1Ch], ebx .text:00756CB5 jmp short loc_756CD4 .text:00756CB7 ; --------------------------------------------------------------------------- .text:00756CB7 .text:00756CB7 loc_756CB7: ; CODE XREF: sub_756960+343j .text:00756CB7 ; DATA XREF: .text:off_756D74o .text:00756CB7 mov eax, 0AAAAAAABh ; case 0x4 .text:00756CBC mul ebx .text:00756CBE shr edx, 1 .text:00756CC0 mov [ebp+1Ch], edx .text:00756CC3 jmp short loc_756CD4 .text:00756CC5 ; --------------------------------------------------------------------------- .text:00756CC5 .text:00756CC5 loc_756CC5: ; CODE XREF: sub_756960+343j .text:00756CC5 ; DATA XREF: .text:off_756D74o .text:00756CC5 add ebx, 0FFFFFFFEh ; case 0x5 .text:00756CC8 mov [ebp+1Ch], ebx .text:00756CCB jmp short loc_756CD4 .text:00756CCD ; --------------------------------------------------------------------------- .text:00756CCD .text:00756CCD loc_756CCD: ; CODE XREF: sub_756960+341j .text:00756CCD mov dword ptr [ebp+1Ch], 0 ; default .text:00756CD4 .text:00756CD4 loc_756CD4: ; CODE XREF: sub_756960+34Fj .text:00756CD4 ; sub_756960+355j ... .text:00756CD4 mov ebx, [esp+2Ch+arg_8] .text:00756CD8 mov eax, [esp+2Ch+var_8] .text:00756CDC mov dword ptr [ebp+10h], 0 .text:00756CE3 add ebx, 24h .text:00756CE6 add ebp, 24h .text:00756CE9 add esi, 0Ch .text:00756CEC dec eax .text:00756CED mov [esp+2Ch+arg_8], ebx .text:00756CF1 mov [esp+2Ch+var_C], esi .text:00756CF5 mov [esp+2Ch+var_8], eax .text:00756CF9 jnz loc_756B58 .text:00756CFF .text:00756CFF loc_756CFF: ; CODE XREF: sub_756960+1EBj .text:00756CFF mov eax, [esp+2Ch+arg_4] .text:00756D03 test eax, eax .text:00756D05 jz short loc_756D13 .text:00756D07 mov ecx, [esp+2Ch+var_4] ; case 0x4 .text:00756D0B mov eax, [ecx] .text:00756D0D push eax .text:00756D0E mov edx, [eax] .text:00756D10 call dword ptr [edx+30h] .text:00756D13 .text:00756D13 loc_756D13: ; CODE XREF: sub_756960+3A5j .text:00756D13 mov eax, [esp+2Ch+arg_14] .text:00756D17 test eax, eax .text:00756D19 jz short loc_756D68 .text:00756D1B mov ecx, [esp+2Ch+arg_0] .text:00756D1F push 0 .text:00756D21 push edi .text:00756D22 push ecx .text:00756D23 call eax .text:00756D25 add esp, 0Ch .text:00756D28 test eax, eax .text:00756D2A jnz short loc_756D68 .text:00756D2C mov eax, [esp+2Ch+arg_18] .text:00756D30 test eax, eax .text:00756D32 jz short loc_756D51 .text:00756D34 mov edx, [esp+2Ch+resEntry] .text:00756D38 mov eax, ds:rwInterface .text:00756D3D push edx .text:00756D3E call dword ptr [eax+138h] .text:00756D44 add esp, 4 .text:00756D47 xor eax, eax .text:00756D49 pop edi .text:00756D4A pop esi .text:00756D4B pop ebp .text:00756D4C pop ebx .text:00756D4D add esp, 1Ch .text:00756D50 retn .text:00756D51 ; --------------------------------------------------------------------------- .text:00756D51 .text:00756D51 loc_756D51: ; CODE XREF: sub_756960+3D2j .text:00756D51 mov ecx, [esp+2Ch+resEntry] .text:00756D55 push ecx .text:00756D56 call loc_807DE0 .text:00756D5B add esp, 4 .text:00756D5E xor eax, eax .text:00756D60 pop edi .text:00756D61 pop esi .text:00756D62 pop ebp .text:00756D63 pop ebx .text:00756D64 add esp, 1Ch .text:00756D67 retn .text:00756D68 ; --------------------------------------------------------------------------- .text:00756D68 .text:00756D68 loc_756D68: ; CODE XREF: sub_756960+3B9j .text:00756D68 ; sub_756960+3CAj .text:00756D68 mov eax, [esp+2Ch+resEntry] .text:00756D6C pop edi .text:00756D6D pop esi .text:00756D6E pop ebp .text:00756D6F pop ebx .text:00756D70 add esp, 1Ch .text:00756D73 retn .text:00756D73 sub_756960 endp .text:00756D73 .text:00756D73 ; --------------------------------------------------------------------------- .text:00756D74 off_756D74 dd offset loc_756CAA ; DATA XREF: sub_756960+343r .text:00756D74 dd offset loc_756CB1 ; jump table for switch statement .text:00756D74 dd offset loc_756CB7 .text:00756D74 dd offset loc_756CC5 .text:00756D74 dd offset loc_756CC5 .text:00756D88 align 10h .text:00756D90
Quote:
|
GTA is trying to create an instance of a 3D model, but fails due to incorrect data. Possible cause is memory corruption by some unrelated problem. |
//EDIT
I did it, crash occuring in every place where objects are - only outside (VW 0 int 0). Last day I've add objects in Blueberry, here you go link http://pastebin.com/QChwBGeW
Crash also appear there...
I have removed whole exterior objects in VW 0, -1 crash still appear when getting back in the place near alhambra
EAX: 0x00000001 EBX: 0x00000004 ECX: 0x00000000 EDX: 0xFFFFFFFF
ESI: 0x142DA344 EDI: 0xC1000000 EBP: 0x0B469820 ESP: 0x0028FCA4
EFLAGS: 0x00010286
SCM Op: 0x470, lDbg: 0 LastRendObj: 1226
1226 - it's in game build street lamp, this para only show models which are dynamic.
Debug from streamer plugin:
Код:
[17:07:07] _Kubi_ has logged in. [17:07:09] 3DText PID 0 > Text: |Muzeum sztuki wspуłczesnej| color 80ffff POS [1698.9, -1667.7, 20.2] [17:07:09] 3DText PID 0 > Text: |Przebieralnia (/uniform)| color ffa500ff POS [1636.9, -1813.6, 13.5]
Total 0 objects, 0 removed buildings
//Edit
Tested with removed objects, 3D texts, gangzones, pickups.
Sometimes game freezes at Spawn procedure.
It can occur, when world isn't rendered yet for player, and he want do make any action like move forward.
