Author Topic: Professional bugs  (Read 1590 times)

jj2007

  • Member
  • *****
  • Posts: 9635
  • Assembler is fun ;-)
    • MasmBasic
Professional bugs
« on: November 26, 2018, 01:38:25 AM »
Just for fun: I thought of creating a thread documenting bugs made by big software companies. Let's start with WhatsApp :P

WhatsApp desktop, updated a few days ago, Win7-64:
Code: [Select]
00000001401D10CA   | 48 8B CE                  | mov rcx,rsi                           | rsi:&"n#file://#393491738963-1528635064@g.us"
00000001401D10CD   | E8 0E 2E E6 FF            | call 140033EE0                        |
00000001401D10D2   | 48 8B CF                  | mov rcx,rdi                           |
00000001401D10D5   | E8 06 2E E6 FF            | call 140033EE0                        |
00000001401D10DA   | 48 8B 7C 24 30            | mov rdi,qword ptr ss:[rsp+30]         |
00000001401D10DF   | E9 E1 FD FF FF            | jmp 1401D0EC5                         |
...
00000001401D10F0   | 48 8B 41 48               | mov rax,qword ptr ds:[rcx+48]         |
00000001401D10F4   | 48 8D 51 48               | lea rdx,qword ptr ds:[rcx+48]         |
00000001401D10F8   | 48 8B 08                  | mov rcx,qword ptr ds:[rax]            | <<<<<<<<<<< rax is zero!
00000001401D10FB   | 48 85 C9                  | test rcx,rcx                          |
00000001401D10FE   | 0F 85 2C 6C FF FF         | jne 1401C7D30                         |
00000001401D1104   | C3                        | ret                                   |

To catch such bugs, you need to set a Just-In-Time (JIT) debugger, in this case: x64Dbg (for 32-bit code, it's Olly for me).

Warning: When closing x64Dbg, it saves the database, and that can push the working set to over 1GB. You better kill x64.

jj2007

  • Member
  • *****
  • Posts: 9635
  • Assembler is fun ;-)
    • MasmBasic
WhatsApp is a bug
« Reply #1 on: May 09, 2019, 05:48:22 PM »
Sorry, WhatsApp, it's again your turn :eusa_boohoo:

Raistlin

  • Member
  • ***
  • Posts: 495
Re: Professional bugs
« Reply #2 on: May 14, 2019, 07:07:55 PM »
https://www.telegraph.co.uk/technology/2019/05/14/whatsapp-flaw-allowed-israeli-hackers-snoop-phones/   :shock:

IT Commandment 17 : "Thay shalt get rid of mainstream social media"
Are you pondering what I'm pondering? It's time to take over the world ! - let's use ASSEMBLY...

hutch--

  • Administrator
  • Member
  • ******
  • Posts: 6582
  • Mnemonic Driven API Grinder
    • The MASM32 SDK
Re: Professional bugs
« Reply #3 on: May 14, 2019, 08:55:58 PM »
 :biggrin:

> "Thay shalt get rid of mainstream social media"  :azn:
« Last Edit: May 31, 2019, 02:06:40 AM by hutch-- »
hutch at movsd dot com
http://www.masm32.com    :biggrin:  :skrewy:

AW

  • Member
  • *****
  • Posts: 2233
  • Let's Make ASM Great Again!
Re: Professional bugs
« Reply #4 on: May 14, 2019, 10:04:24 PM »
Quote
Let's start with WhatsApp :P

Now all makes sense.   :idea:

jj2007

  • Member
  • *****
  • Posts: 9635
  • Assembler is fun ;-)
    • MasmBasic
Re: Professional bugs
« Reply #5 on: May 14, 2019, 10:57:33 PM »
It's not WhatApp alone, which erratically starts thrashing my harddisk shuffling gigabytes from A to B. Right now it's at a modest 150MB, and stable, but every now and then it jumps up to ridiculous amounts of written bytes - 45 GIGA! No pattern detected so far.

Slimjet also misbehaves frequently. Thunderbird has a high disk usage, too, but it stays normally within half a GB. I wonder what they are doing :(

See the slimjet line below - and that's for only 15' CPU time, no special sites visited.

LiaoMi

  • Member
  • ****
  • Posts: 573
Re: Professional bugs
« Reply #6 on: May 14, 2019, 11:14:47 PM »
It's not WhatApp alone, which erratically starts thrashing my harddisk shuffling gigabytes from A to B. Right now it's at a modest 150MB, and stable, but every now and then it jumps up to ridiculous amounts of written bytes - 45 GIGA! No pattern detected so far.

Slimjet also misbehaves frequently. Thunderbird has a high disk usage, too, but it stays normally within half a GB. I wonder what they are doing :(

See the slimjet line below - and that's for only 15' CPU time, no special sites visited.


TimoVJL

  • Member
  • ***
  • Posts: 408
Re: Professional bugs
« Reply #7 on: May 15, 2019, 03:28:49 AM »
Windows have a one nice feature:
 Delete all Telemetry services and systems starts behaving badly, like odd file locks of several minutes, can't delete or replace file and so on.
Very professional way for punishment for user, who just block M$ of their spying system in legal way.

Google keyword: 'system process (PID 4) is locking the file'

EDIT: How to solve problem:
Quote
Check if your Application Experience service is disabled. It should be enabled and running. This problems appears if it is not.

May the source be with you

Raistlin

  • Member
  • ***
  • Posts: 495
Are you pondering what I'm pondering? It's time to take over the world ! - let's use ASSEMBLY...

LiaoMi

  • Member
  • ****
  • Posts: 573
Re: Professional bugs
« Reply #9 on: May 15, 2019, 05:58:50 AM »
And how do we solve this ?
https://thenextweb.com/security/2019/05/14/bitdefender-researchers-discover-terrifying-security-vulnerability-in-intel-cpus/

Quote
That’s where the good news ends, as BitDefender notes that a general fix is “impossible,” as the issue derives from a hardware design flaw. To conclusively protect against this attack, customers would have to replace their Intel silicon with a redesigned chip.

Intel Switches Gears to 7nm Post 10nm, First Node Live in 2021 https://www.techpowerup.com/255338/intel-switches-gears-to-7nm-post-10nm-first-node-live-in-2021

When it goes live and fit for mass production some time in 2021, Intel's 7 nm process will be a staggering 3 years behind TSMC, which fired up its 7 nm node in 2018. AMD is already mass-producing CPUs and GPUs on this node. Unlike TSMC, Intel will implement EUV (extreme ultraviolet) lithography straightaway. TSMC began 7 nm with DUV (deep ultraviolet) in 2018, and its EUV node went live in March. Samsung's 7 nm EUV node went up last October. Intel's roadmap doesn't show a leap from its current 10 nm node to 7 nm EUV, though. Intel will refine the 10 nm node to squeeze out energy-efficiency, with a refreshed 10 nm+ node that goes live some time in 2020.

The 7 nm+ node is slated for 2022, and succeeding 7 nm++ node in 2023. Intel did not detail the two besides illustrating performance/Watt gains by almost as much as the transition from 10 nm+ to 7 nm. Elsewhere in the market, the early 2020s could see TSMC 6 nm EUV take center-stage, and Samsung implement its 5 nm EUV node.

I will change my processor in 2024  :biggrin:

jj2007

  • Member
  • *****
  • Posts: 9635
  • Assembler is fun ;-)
    • MasmBasic
WhatsApp is a bug
« Reply #10 on: May 31, 2019, 12:49:08 AM »
This morning again, out of the blue, suddenly 13 GB of bytes written by WhatsApp desktop. WhatsApp is one fat bug :eusa_boohoo:

jj2007

  • Member
  • *****
  • Posts: 9635
  • Assembler is fun ;-)
    • MasmBasic
Slimjet sucks
« Reply #11 on: June 17, 2019, 06:44:57 AM »
Bloatware: 4 tabs open, 21 processes! And one of them has already written almost 2GB to disk. Fortunately I don't have an SSD :cool:


TimoVJL

  • Member
  • ***
  • Posts: 408
Re: Professional bugs
« Reply #12 on: June 17, 2019, 07:48:43 PM »
You can compare chrome engine too:
https://vivaldi.com/download/

Those sites/pages might be a real problem.
May the source be with you

hutch--

  • Administrator
  • Member
  • ******
  • Posts: 6582
  • Mnemonic Driven API Grinder
    • The MASM32 SDK
Re: Professional bugs
« Reply #13 on: June 17, 2019, 11:14:17 PM »
JJ,

Try Slimjet in incognito mode. Also go to the settings and run "Clear browsing data". The settings are useful for the problems you mention. I run the 64 bit version and never seem to have a problem.
hutch at movsd dot com
http://www.masm32.com    :biggrin:  :skrewy:

jj2007

  • Member
  • *****
  • Posts: 9635
  • Assembler is fun ;-)
    • MasmBasic
Re: Professional bugs
« Reply #14 on: June 18, 2019, 01:32:30 AM »
I suppose it's the Chrome basis. Writing gigabytes to disk is an insult anyway. Imagine you have an SSD, it will wear down quickly :sad: