[Scummvm-tracker] [ScummVM :: Bugs] #11268: SCI: QFG4: Crash when sliding down slippery slope

ScummVM :: Bugs trac at scummvm.org
Sun Nov 17 05:28:30 CET 2019 

#11268: SCI: QFG4: Crash when sliding down slippery slope
--------------------------------+-------------------------
  Reporter:  tsoliman           |      Owner:  (none)
      Type:  defect             |     Status:  new
  Priority:  normal             |  Component:  Engine: SCI
Resolution:                     |   Keywords:  sci32
      Game:  Quest for Glory 4  |
--------------------------------+-------------------------
Description changed by tsoliman:

Old description:

> This seems to be a regression of the fix for bug 9801 as it has the exact
> same symptoms.
>

> {{{
> lookupSelector: Attempt to send to non-object or invalid script. Address
> 0000:0000, method Grooper::doit (room 800, script 64977, localCall
> ffffffff)!
> }}}
> backtrace:
> {{{
> Call stack (current base: 0x9):
>  0: script 64994 - Glory::replay()
>      obj at 0001:4520 pc=0003:0551 sp=ST:0007 fp=ST:0000 argp:ST:0001
>  1: script 0 - Glory::doit()
>      by 0 obj at 0001:4520 pc=0001:02b3 sp=ST:000d fp=ST:0009 argp:ST:0008
>  2: script 64994 - Game::doit()
>      by 1 obj at 0001:4520 pc=0003:06ab sp=ST:0012 fp=ST:000f argp:ST:000e
>  3: script 64999 - cast::doit()
>      by 2 obj at 0003:14c0 pc=0004:038a sp=ST:0014 fp=ST:0014 argp:ST:0013
>  4: script 64999 - cast::eachElementDo(0000:0045)
>      by 3 obj at 0003:14c0 pc=0004:046e sp=ST:0019 fp=ST:0017 argp:ST:0015
>  5:[4]  kListEachElementDo(001c:0000, 0000:0045)
>      by 4 obj at 0000:0000 pc:none argp:ST:0019
>  6: script 64998 - hero::doit()
>      by 5 obj at 0013:1b8e pc=0006:0871 sp=ST:0023 fp=ST:001e argp:ST:001d
>  7: script 64992 - PolyPath::doit()
>      by 6 obj at 0012:01ea pc=0017:04a6 sp=ST:002b fp=ST:0025 argp:ST:0024
>  8:[7]  kDoBresen(0012:01ea)
>      by 7 obj at 0000:0000 pc:none argp:ST:002b
>  9: script 64945 - PolyPath::moveDone()
>      by 8 obj at 0012:01ea pc=001b:0268 sp=ST:002f fp=ST:002f argp:ST:002e
>  a: script 64945 - PolyPath::init()
>      by 9 obj at 0012:01ea pc=001b:0136 sp=ST:005c fp=ST:0033 argp:ST:0032
>  b: script 64992 - Motion::init()
>      by a obj at 0012:01ea pc=0017:0456 sp=ST:0060 fp=ST:005e argp:ST:005d
>  c: script 64998 - hero::setHeading(0000:0101)
>      by b obj at 0013:1b8e pc=0006:0f31 sp=ST:0063 fp=ST:0063 argp:ST:0061
>  d: script 28 - stopGroop::doit(0013:1b8e, 0000:0101, 0000:0000)
>      by c obj at 0013:1c2a pc=0013:1b12 sp=ST:0068 fp=ST:0068 argp:ST:0064
>  e: script 64977 - Grooper::doit(0013:1b8e, 0000:0101, 0000:0000)
>      by d obj at 0013:1c2a pc=0015:0143 sp=ST:0072 fp=ST:006d argp:ST:0069
> }}}
>
> Steps to reproduce:
>
> - load game
> - click on the slope to the left of ego to slide down
>
> Build info:
>
> Self compiled from git 3d112e1622 on macOS 10.15.1
>
> Save is from a new game

New description:

 This seems to be a regression of the fix for bug 9801 as it has the exact
 same symptoms.


 {{{
 lookupSelector: Attempt to send to non-object or invalid script. Address
 0000:0000, method Grooper::doit (room 800, script 64977, localCall
 ffffffff)!
 }}}
 backtrace:
 {{{
 Call stack (current base: 0x9):
  0: script 64994 - Glory::replay()
      obj at 0001:4520 pc=0003:0551 sp=ST:0007 fp=ST:0000 argp:ST:0001
  1: script 0 - Glory::doit()
      by 0 obj at 0001:4520 pc=0001:02b3 sp=ST:000d fp=ST:0009 argp:ST:0008
  2: script 64994 - Game::doit()
      by 1 obj at 0001:4520 pc=0003:06ab sp=ST:0012 fp=ST:000f argp:ST:000e
  3: script 64999 - cast::doit()
      by 2 obj at 0003:14c0 pc=0004:038a sp=ST:0014 fp=ST:0014 argp:ST:0013
  4: script 64999 - cast::eachElementDo(0000:0045)
      by 3 obj at 0003:14c0 pc=0004:046e sp=ST:0019 fp=ST:0017 argp:ST:0015
  5:[4]  kListEachElementDo(001c:0000, 0000:0045)
      by 4 obj at 0000:0000 pc:none argp:ST:0019
  6: script 64998 - hero::doit()
      by 5 obj at 0013:1b8e pc=0006:0871 sp=ST:0023 fp=ST:001e argp:ST:001d
  7: script 64992 - PolyPath::doit()
      by 6 obj at 0012:01ea pc=0017:04a6 sp=ST:002b fp=ST:0025 argp:ST:0024
  8:[7]  kDoBresen(0012:01ea)
      by 7 obj at 0000:0000 pc:none argp:ST:002b
  9: script 64945 - PolyPath::moveDone()
      by 8 obj at 0012:01ea pc=001b:0268 sp=ST:002f fp=ST:002f argp:ST:002e
  a: script 64945 - PolyPath::init()
      by 9 obj at 0012:01ea pc=001b:0136 sp=ST:005c fp=ST:0033 argp:ST:0032
  b: script 64992 - Motion::init()
      by a obj at 0012:01ea pc=0017:0456 sp=ST:0060 fp=ST:005e argp:ST:005d
  c: script 64998 - hero::setHeading(0000:0101)
      by b obj at 0013:1b8e pc=0006:0f31 sp=ST:0063 fp=ST:0063 argp:ST:0061
  d: script 28 - stopGroop::doit(0013:1b8e, 0000:0101, 0000:0000)
      by c obj at 0013:1c2a pc=0013:1b12 sp=ST:0068 fp=ST:0068 argp:ST:0064
  e: script 64977 - Grooper::doit(0013:1b8e, 0000:0101, 0000:0000)
      by d obj at 0013:1c2a pc=0015:0143 sp=ST:0072 fp=ST:006d argp:ST:0069
 }}}

 Steps to reproduce:

 - load game
 - click on the slope to the left of ego to slide down

 Build info:

 Self compiled from git 3d112e1622 on macOS 10.15.1

 Save is from a new game on the QFG Anthology CD

--
-- 
Ticket URL: <https://bugs.scummvm.org/ticket/11268#comment:2>
ScummVM :: Bugs <https://bugs.scummvm.org>
ScummVM

More information about the Scummvm-tracker mailing list