Crash Offsets
Overview
This page attempts to collate the offsets found in this thread into a single, searchable database.
The crash offsets are available as a JSON payload should you want to use them in automatic crash detection.
Finding Your Crash Offset
In order to get the offset from a crash:
- Press Win + R, enter 'eventvwr.msc' and hit okay.
- Go to Windows Logs, then Application Logs and search for your crash.
- Under the 'general' tab, note the faulting module name (i.e.common.dll) and the fault offset(i.e. 0x000d21eb).
If you're using the event viewer for this a lot, you can use the following xml filter to only show errors generated by Freelancer.exe and flserver.exe:
<QueryList>
<Query Id="0" Path="Application">
<Select Path="Application">*[System[(Level=2) and (EventID=1000)]] and *[EventData[Data and (Data='Freelancer.exe' or Data='flserver.exe')]]</Select>
</Query>
</QueryList>
common.dll
| Module Name | Offset | Author | Date Added | Description |
|---|---|---|---|---|
| common.dll | af690 | adoxa | 2010-05-11T09:17:00.000Z | INI_Reader constructor; problem with normal FLHook (uses 1024 bytes of data, but 5480 bytes are required; plugin version uses 8192). |
| common.dll | 5e010 | adoxa | 2010-05-11T09:17:00.000Z | Part of function Fuse::UnBurn, if that helps. Likely related to a bad fuse entry. |
| common.dll | e3f9d | adoxa | 2010-05-11T09:17:00.000Z | Memory allocation failure. |
| common.dll | f24a0 | adoxa | 2010-05-11T09:17:00.000Z | Deliberate segfault (presumably a "this should never happen" scenario).* |
| common.dll | 103141 | Huor | 2010-06-09T22:22:00.000Z | Related to PhySys::PhyCollisionStateManager::enable_collisions. |
| common.dll | 603d6 | HeIIoween | 2010-06-21T19:46:00.000Z | Originates from from IObjInspectImpl::is_targetable: something that shouldn't have been targeted has been targeted. |
| common.dll | 4f486 | Huor | 2010-07-25T15:40:00.000Z | Seems to be related to cmp reading. Something has gone wrong with a cmp file or with something that uses it. |
| common.dll | 10dea | Alex | 2010-07-19T21:29:00.000Z | Good missing equipment line. |
| common.dll | 91f38 | HeIIoween | 2010-08-24T21:46:00.000Z | ship_archetype = <blank> in players file |
| common.dll | 5be63 | Lord of the Hell | 2012-01-15T14:41:00.000Z | Missing exclusion zone, but is called in asteroid/nebula file - look to FlSpew.txt for zone nickname |
| common.dll | 25cc9 | Lord of the Hell | 2012-01-15T14:41:00.000Z | Bad surface file |
| common.dll | 62555 | Gold_Sear | 2017-01-29T18:38:00.000Z | Occurs when docking with a tradelane that has neither a prev_ring nor a next_ring entry |
| common.dll | f20e3 | Cpt_Rei_Fukai | 2017-06-10T21:45:00.000Z | Bad thruster model |
| common.dll | c22fe | Cpt_Rei_Fukai | 2018-07-23T18:49:00.000Z | Occurs when you try to load a save game that contains a reputation to a faction that doesn't exist in initialworld.ini. This offset also seems to show up where faction objects are missing from save games as well. |
| common.dll | aa91a | Cpt_Rei_Fukai | 2018-11-11T20:03:00.000Z | Occurs when you try to buy a ship which contains an invalid item in its package. E.g the nickname of the engine does not exist. |
| common.dll | 4aa02 | Cellulanus | 2020-05-09T10:54:00.000Z | Occurs when an NPC that was using a weapon that's model wasn't actually set to be a gun model is destroyed. |
| common.dll | 9143 | BC46 | 2023-11-12T21:00:00.000Z | Specified loadout for [MsnSolar] is not defined in loadouts.ini. |
| common.dll | 62ffbeb | IrateRedKite | 2021-07-26T13:39:00.000Z | Relates to a bad NPC costume (inconsistent gender choices according to IDA) in mBases.ini |
| common.dll | 4fe6c | drakohen | 2022-01-14T18:51:00.000Z | CShip::Launch causes a CTD when the client and server don't have matching base nicknames in the [Object] entry in a system INI. The client is the one that has the CTD. |
| common.dll | 45c30 | IrateRedKite | 2023-03-14T10:18:00.000Z | [Asteroids] block has been declared in a system ini file without a valid zone |
| common.dll | 96879 | Beaglerush | 2023-04-11T03:18:00.000Z | Bad projectile archetype in [Gun] block. |
| common.dll | f1e32 | Gold_Sear | 2017-02-04T00:21:10.000Z | Possible max speed threshold crossed. May also relate to missing equipment hardpoints for mounting. |
| common.dll | 635c376 | FriendlyFire | 2016-06-16T19:58:00.000Z | Related to ray collision, involves PhySys::FindRayCollisions. More information can be found at https://the-starport.com/forums/topic/5738/common-dll-0x0635c376-crash?_=1715267168399. |
| common.dll | 635d32b | FriendlyFire | 2016-09-07T18:50:00.000Z | Occurs sometimes when switching systems. Relates to a broken quaternion conversion somewhere. More information can be found at https://the-starport.com/forums/topic/5772/crash-at-0x635d32b-common-dll-dump-attached/7?_=1715267168404. |
| common.dll | 97e93 | IrateRedKite | 2023-12-10T22:34:37.000Z | Bad equipment ini files. Occurred when Invalid bool values were listed in `force_gun_ori` and `requires_ammo. The actual crash here seems to be triggered by an equipment entry with bad or invalid conent though, in the case where this was discovered it was en empty [Motor] block. |
| common.dll | 10dce | IrateRedKite | 2024-01-01T20:30:42.000Z | Missing archetype. In the instance where this occurred, commodities that were for sale on bases were not being loaded. |
| common.dll | 52753 | IrateRedKite | 2024-01-13T10:58:26.000Z | [Gun] archetype references a munition that does not exist. |
| common.dll | 5da50 | IrateRedKite | 2024-01-13T11:02:55.000Z | Missing explosion archetype called. This occurred when ship collision groups with fuses attached were not included and then the main fuse was called. |
| common.dll | 44a99 | Darklighter | 2024-02-23T21:38:43.000Z | Referenced a bad [Asteroid] nickname in a field. |
| common.dll | f1e2a | McDyson | 2024-05-31T21:51:06.000Z | Possibly relates to a malformed .cmp or .3db model. Exact cause is currently unclear. |
| common.dll | 6c282 | Ven | 2024-10-02T14:25:40.000Z | Group formation leader error |
content.dll
| Module Name | Offset | Author | Date Added | Description |
|---|---|---|---|---|
| content.dll | 490a5 | FriendlyFire, Helloween | 2010-05-11T04:19:00.000Z | Related to multiple players/ships suiciding at the same moment into a planet/death zone. Also relates to formation errors, you may wish to check faction_prop.ini formation values |
| content.dll | af690 | adoxa | 2010-05-11T09:17:00.000Z | INI_Reader constructor; problem with normal FLHook (uses 1024 bytes of data, but 5480 bytes are required; plugin version uses 8192). |
| content.dll | c45a2 | HeIIoween | 2023-11-12T21:00:00.000Z | Encounter related. Can be patched with 0C458F, 8B0482->33C090 |
| content.dll | 47bc4 | Tiger_MU | 2010-10-20T11:17:00.000Z | Related to NPCs and/or their chatter. Possibly bad encounter, missing formation from factionprop.ini |
| content.dll | 5ccd4 | HeIIoween | 2011-06-03T02:20:00.000Z | Missing/mistyped formation. |
| content.dll | db0f1 | Lord of the Hell, Cpt_Rei_Fukai | 2012-01-15T14:41:00.000Z | Patrol encounter attempted to spawn inside a population zone that wasn't a patrol path. |
| content.dll | 9100f | Lord of the Hell | 2012-01-15T14:41:00.000Z | Possible bad tradelane |
| content.dll | 9566d | Lord of the Hell | 2012-01-15T14:41:00.000Z | Possible bad tradelane |
| content.dll | c465f | Nova | 2010-05-23T04:11:00.000Z | Mixed non-patched and 1.1 patched files. |
| content.dll | 55727 | Cpt_Rei_Fukai | 2018-11-11T20:03:00.000Z | Occurs when an encounter is spawned that contains more permutation lines than formations |
| content.dll | f7c2f | IrateRedKite | 2020-02-25T09:03:00.000Z | Bad rmlootprops.ini entries. |
| content.dll | e99458f | IrateRedKite | 2020-04-12T16:49:00.000Z | Patrol encounter contains a faction that is not defined in the related base's BaseFaction entries. |
| content.dll | 12e10 | IrateRedKite | 2021-07-26T13:03:00.000Z | Relates to a bad NPC costume (inconsistent gender choices according to IDA) in mBases.ini. This also occurred when attempting to load an NPC in a [BaseFaction] block that hadn't been defined as a [GF_NPC], so this crash likely just relates to a failure to load an NPC in general.. |
| content.dll | 956e4 | IrateRedKite | 2023-03-13T11:44:00.000Z | npc_ship in faction_prop.ini listed that does not exist. This offset has also been seen as 0x0013f932 in kernelbase.dll when launching flserver.exe with flhook.dll preloading files. |
| content.dll | 95598 | Laz / BC46 | 2023-10-06T11:34:00.000Z | Faction prop is missing but initial world is correct |
| content.dll | 6c216 | IrateRedKite | 2023-03-27T09:49:00.000Z | Seems to be a missing or null patrol path waypoint. This was originally triggered by giving an NPC on patrol in a ship that couldn't vanish by docking the arrival = all, -tradelane, -object_jump_gate tag. In cases where the patrol spawned at the end of the path in a docked state, it would cause this crash |
| content.dll | 53b9f | IrateRedKite | 2023-03-27T11:06:00.000Z | Bad encounter file (Missing [EncounterFormation] or [Creation] blocks.) |
| content.dll | d9151 | IrateRedKite | 2023-11-12T21:00:00.000Z | Bad path in a system encounter declaration (Missing encounter ini file) |
| content.dll | c491f | IrateRedKite | 2023-11-12T21:00:00.000Z | Empty encounter? Occured when ship_by_class had a 0 value with no alternatives |
| content.dll | 63a98 | BC46 | 2023-07-29T17:14:00.000Z | Related to character animations. This occured when voice keys were commented out in gcsexcl.ini without also commenting out their accompanying scripts. |
| content.dll | 639c6 | BC46 | 2023-07-29T17:14:00.000Z | Related to character animations. This occured when voice keys were commented out in gcsexcl.ini without also commenting out their accompanying scripts. |
| content.dll | c458f | Cpt_Rei_Fukai, FriendlyFire | 2010-05-30T23:00:00.000Z | Possibly related to missing faction entries in an mbases.ini entry. Not definite but surely encounter-related. More information can be found at https://the-starport.net/freelancer/forum/viewtopic.php?topic_id=6063 |
| content.dll | bd173 | IrateRedKite, Laz & Raikkonen | 2024-01-08T16:31:18.000Z | Converts an archID into a goodId and then uses the goodId for a lookup, which fails and is not checked, causing a crash. This occurred when ammo entries for loot were not defined in lootprops.ini. If a munition entry has 'requires_ammo = true', the ammo AND the gun both require a lootprops.ini entry. The Multiplayer crash offset for this is 0x0013fae2 in KernelBase.dll |
| content.dll | 1833f | IrateRedKite | 2024-01-11T14:01:09.000Z | A mission trigger without a condition was invoked. If the trigger doesn't require a proper condition, it needs a `Cnd_True = no_params` line. |
| content.dll | 512ac | EngiN33R, IrateRedKite | 2024-06-06T13:51:37.000Z | Faction prop is missing but initial world and empathy configuration are correct. Possibly relates to how bases are constructed. |
| content.dll | 1aa9f | Ven | 2024-10-02T14:25:40.000Z | _SendMessage (Server uses this to communicate with every function) crashes due to following reason; if anyone calls Story mission 'Act_State = SUCCEED' server will call DestroyInstance for every story instances are running, it will crash the server if there are more than 1 in action. This can be temporarily fixed by altering the function, which prevents DestroyInstance erase Story instances (it will only stop the last instance which Co-Op mod does for 0x1 iClientID). This crash has also bee observed in single player where there was a problem establishing the mission status of the player. |
| content.dll | 49c95 | Ven | 2024-10-02T14:25:40.000Z | settimer assignment error, unstable instance for unknown reasons |
| content.dll | 89651 | Ven | 2024-10-02T14:25:40.000Z | reputation based error (happened when SP Story reputation functions are enabled in MP) |
| content.dll | 2d541 | Ven | 2024-10-02T14:25:40.000Z | Story manager tried to submit an order/reputation to a NPC that does not exist. Documented this bug at SpawnShip within initState = ACTIVE trigger |
| content.dll | 55796 | Ven | 2024-10-02T14:25:40.000Z | Client crashed during MP base cutscene when server shut down (crash in DestroyInstance) |
| content.dll | 25cc9 | Ven | 2024-10-02T14:25:40.000Z | Story trigger, Act_LockDock error?, possible nullpointer base? it might be related to other story triggers too(Previous OPjump does initilaize every trigger of story manager) |
| content.dll | 2fe8f | Ven | 2024-10-02T14:25:40.000Z | AI logic error, as far as I can tell, 3 different functions use this area, one of them controls their orders as they spawn and the other one upon destruction |
server.dll
| Module Name | Offset | Author | Date Added | Description |
|---|---|---|---|---|
| server.dll | 3954990 | Laz | 2020-04-10T12:22:00.000Z | Triggered by warping to a base that doesn't have a physical presence, but has an mbase and universe entry. Deliberately triggered by warping to st03b_01_base for testing. |
| server.dll | 78d3 | adoxa | 2010-05-11T09:17:00.000Z | Called as part of pub::SpaceObj::Dock. Running FLHook on a server should fix this. |
| server.dll | 14990 | adoxa | 2010-05-11T09:17:00.000Z | Part of docking, and others (it's a function to swap the sign of a vector). This crash occurs when undocking from a base with no valid undock point. |
| server.dll | 2c267 | adoxa | 2010-05-11T09:17:00.000Z | Seems to be another part of docking, and others |
| server.dll | 2c290 | adoxa | 2010-05-11T09:17:00.000Z | Seems to be another part of docking, and others |
| server.dll | 76fdf | HeIIoween | 2010-07-22T05:10:00.000Z | Related to loading a player. Possibly a corrupt character file. |
| server.dll | 17f38 | IrateRedKite | 2020-02-03T12:56:00.000Z | Related to a bad ship loadout. Occurs after Loadout::Get (presumably returning NULL), called when a ship is created |
| server.dll | ab670 | Laz | 2020-04-10T12:22:00.000Z | Triggered by warping to a base that doesn't have a physical presence, but has an mbase and universe entry |
| server.dll | 2247f | HeIIoween | 2010-05-15T05:43:00.000Z | NPC loadout is missing engine. Attempts to enter cruise, then can't find and crashes. This crash can also occur for flserver.exe in server dll at 0x00022567. At both addresses it fails to call `CEEngine::cast(CEquip *)` |
| server.dll | f988 | IrateRedKite | 2023-03-21T10:58:00.000Z | Missing destination jumpgate |
| server.dll | 1b221 | HeIIoween | 2023-11-11T12:16:22.000Z | More than 10 holes/gates per system |
| server.dll | f988 | Ven | 2024-10-02T14:25:40.000Z | Client and Server failed to sync jump destination system, causes crash in Singleplayer |
alchemy.dll
| Module Name | Offset | Author | Date Added | Description |
|---|---|---|---|---|
| alchemy.dll | 701b | Gold_Sear | 2017-06-25T11:59:00.000Z | Rare crash, occurs inconsistently when creating an instant jump fx |
| alchemy.dll | 1f3a6 | Cpt_Rei_Fukai | 2018-11-11T20:03:00.000Z | Occurs when the <pairs> of an effect use numbers that do not exist in the <fx> part of the effect. |
| alchemy.dll | 187bc | IrateRedKite | 2023-11-12T21:00:00.000Z | Duplicate node name (occured when an emitter and node had the same name) |
dalib.dll
| Module Name | Offset | Author | Date Added | Description |
|---|---|---|---|---|
| dalib.dll | 4353 | robocop | 2010-08-25T02:49:00.000Z | Memory allocation failure (in CDPMsgList::Add). It's only asking for 12 bytes, so there must be some serious memory leakage going on. |
freelancer.exe
| Module Name | Offset | Author | Date Added | Description |
|---|---|---|---|---|
| freelancer.exe | 6100 | adoxa | 2012-01-15T14:41:00.000Z | Bad wireframe |
| freelancer.exe | 114764 | Gold_Sear | 2017-01-29T18:38:00.000Z | Occurs when a next_ring does not reference to a tradelane ring |
| freelancer.exe | 58000 | Cpt_Rei_Fukai | +050498-11-17T00:40:00.000Z | Occurs when a player has got an item equipped that no longer exists, i.e. the weapon was deleted. |
| freelancer.exe | 54f08 | HeIIoween, Louva-Deus | 2023-11-12T21:00:00.000Z | Possible corrupted mbases.ini. This is also caused by missing `gcs_fmsit_*.thn` scripts from the `DATA/SCRIPTS/GCS` folder. |
| freelancer.exe | 3bb07 | IrateRedKite | 2023-11-12T21:00:00.000Z | Invalid base room |
| freelancer.exe | 46909 | IrateRedKite | 2023-10-23T17:37:00.000Z | Invalid equipment entry in a loadout |
| freelancer.exe | e53ed | Gold_Sear | 2017-04-22T16:29:00.000Z | Occurred following a formation join and cargo scan. Cause isn't clear. |
| freelancer.exe | 8381a | IrateRedKite | 2023-12-01T21:56:56.000Z | Bad goods.ini entry. In the instance where this was occurring, the 'price' field contained invalid data. This can also occur when an item is sold for 0 credits. |
| freelancer.exe | 1531ef | IrateRedKite | 2023-12-02T12:54:47.000Z | Missing solar archetypes on system load. |
| freelancer.exe | 25640 | IrateRedKite | 2023-12-02T15:58:00.000Z | Seems to be a missing or bad nebula file. |
| freelancer.exe | 1efa9 | Laz | 2024-01-06T00:57:58.000Z | Freelancer tries to acess a directinput8 instance for the mouse and fails. It's possible that this crash is caused by a hardware issue! |
| freelancer.exe | d1744 | IrateRedKite | 2024-01-11T09:47:39.000Z | Freelancer was unable to find a system file entry defined in universe.ini. This can also occur if a system is loaded with no solar objects present. |
| freelancer.exe | 80a9b | IrateRedKite | 2024-01-16T16:15:58.000Z | Attempted to purchase a ship in multiplayer when the player had no ship. This was a forced crash that occurred when the %PACKAGE% value was removed from mpnewcharacter.fl |
| freelancer.exe | 108853 | Jammi | 2024-01-26T23:25:49.000Z | Referenced a nebula field file that didn't exist. |
| freelancer.exe | ed422 | IrateRedKite | 2024-01-29T11:06:08.000Z | Player in multiplayer died, respawned and didn't have a 'last base' to go to. This occurred when the start location was set to space, and the player died repeatedly before docking. Crash occurs on the client, not the server. |
| freelancer.exe | 1b26b7 | IrateRedKite | 2024-01-29T11:13:09.000Z | Relates to a render problem with alt-tabbing and window focus. Function at this address suggests that the crash is a fauilure to populate the IRenderPipeline or DALib::Pipeline structs correctly. |
| freelancer.exe | 13f4d7 | IrateRedKite | 2024-02-20T10:22:31.000Z | A referenced `[Effect]` nickname isn't present in an effects.ini file. |
| freelancer.exe | 14661b | Beaglerush | 2024-05-08T08:42:29.000Z | Occurs when an NPC is destroyed after it is spawned, but still has logic tied to it, For example during a trade-lane encounter. This originally occured when an NPC with a fuse to instantly destroy it was referenced the lane's destination population zone. This specific instance is handled in multiplayer, but not singleplayer, leading to this crash. |
| freelancer.exe | 13b395 | Katz, Ven | 2024-05-09T14:00:01.000Z | Possibly relates to a bad ship archetype. The function this crashes in is related to creating or showing a ship in a player's scanner range. Exact cause is unclear. |
| freelancer.exe | 12d1e4 | IrateRedKite | 2024-06-22T07:46:22.000Z | Attempted to fire an equipment object with a missing or malformed HpFire hardpoint. |
| freelancer.exe | 13d55a | Ven | 2024-10-02T14:25:40.000Z | Client tried to dock to a solar that does not exist from its perspective, either done through SwitchOut or following a formation leader that is docking |
| freelancer.exe | 1469f6 | Ven | 2024-10-02T14:25:40.000Z | Client tried to sends its targetting information to the server, but failed (tried to target during SystemSwitchOut) |
| freelancer.exe | 1aad50 | Ven | 2024-10-02T14:25:40.000Z | Based on pure speculation, Client tried to switch chars during server froze and it crashed |
ntdll.dll
| Module Name | Offset | Author | Date Added | Description |
|---|---|---|---|---|
| ntdll.dll | 3ff05 | HeIIoween | 2023-11-12T21:00:00.000Z | Incompatible d3d8.dll wrapper/converter. |
| ntdll.dll | 11689 | HeIIoween | 2010-07-23T10:50:00.000Z | Not supported/equipable archetype in players char file. |
| ntdll.dll | 101b3 | Tiger_MU | 2010-10-20T11:17:00.000Z | Related to NPCs and/or their chatter. |
| ntdll.dll | 109d8 | Jeider | 2017-07-07T22:14:00.000Z | Reason: using inherit in ShieldGenerator |
| ntdll.dll | 118ca | Livsi | 2017-02-14T20:00:00.000Z | Possible heap corruption |
| ntdll.dll | 109fb | Livsi | 2017-02-14T20:00:00.000Z | Possible heap corruption |
| ntdll.dll | 11669 | Livsi | 2017-02-14T20:00:00.000Z | Possible heap corruption |
| ntdll.dll | 109f9 | Livsi | 2017-02-14T20:00:00.000Z | Possible heap corruption |
| ntdll.dll | 864ba | Aingar | 2024-03-21T10:26:17.000Z | Damaging/Destroying an incorrectly defined collision group |
| ntdll.dll | 4591f | IrateRedKite | 2023-12-19T08:40:13.000Z | Access violation. I have been unable to reliably reproduce this crash, but it seems to relate to NPCs in some way. If this can be reproduced reliably, please update this and run Freelancer with a debugger attached. |
rendcomp.dll
| Module Name | Offset | Author | Date Added | Description |
|---|---|---|---|---|
| rendcomp.dll | 11163 | Lord of the Hell | 2012-01-15T14:41:00.000Z | bad hash at <VMeshLibrary> |
engbase.dll
| Module Name | Offset | Author | Date Added | Description |
|---|---|---|---|---|
| engbase.dll | 124bd | Nightstalker | 2010-07-19T00:36:00.000Z | Something major failing if this is occuring. Called from GetRoot and IsDescendant. |
| engbase.dll | 11731 | Caenen | 2024-02-02T00:01:24.000Z | Possibly relates to a bad fuse. The exact cause of this is unclear. |
flmaterials.dll
| Module Name | Offset | Author | Date Added | Description |
|---|---|---|---|---|
| flmaterials.dll | 5b33 | HeIIoween | 2012-04-07T04:06:00.000Z | Texture related problems. This was originally caused by a bad texture on Bw08_suprise_ge_train_1 in Tau 23 in an old HD Texture pack |
thorn.dll
| Module Name | Offset | Author | Date Added | Description |
|---|---|---|---|---|
| thorn.dll | 5dd2 | IrateRedKite | 2024-01-03T17:20:38.000Z | Attempted to call an animation for an entity in a Thorn scene that doesn't exist. Occurred when attempting to call `START_MOTION` for `sc_no loop` on a set 3db in a base ambient script. |
shading.dll
| Module Name | Offset | Author | Date Added | Description |
|---|---|---|---|---|
| shading.dll | f658 | Jos_Naabal | 2024-01-12T17:28:23.000Z | Excessive particle limits set for alchemy effects in Freelancer.ini |
rp8.dll
| Module Name | Offset | Author | Date Added | Description |
|---|---|---|---|---|
| rp8.dll | 33b2f | JosByte | 2024-10-08T07:11:04.000Z | Occurs if in the current system there is one or more objects that doesn't have power of two size textures |