nrubsig.kpaste.net RSS- 3: kd> !analyze -v
- *******************************************************************************
- * *
- * Bugcheck Analysis *
- * *
- *******************************************************************************
- PAGE_FAULT_IN_NONPAGED_AREA (50)
- Invalid system memory was referenced. This cannot be protected by try-except.
- Typically the address is just plain bad or it is pointing at freed memory.
- Arguments:
- Arg1: ffffffffffffffd0, memory referenced.
- Arg2: 0000000000000002, value 0 = read operation, 1 = write operation.
- Arg3: fffff80007ecb964, If non-zero, the instruction address which referenced the bad memory
- address.
- Arg4: 0000000000000002, (reserved)
- Debugging Details:
- ------------------
- KEY_VALUES_STRING: 1
- Key : Analysis.CPU.Sec
- Value: 5
- Key : Analysis.DebugAnalysisProvider.CPP
- Value: Create: 8007007e on WINGRENDEL02
- Key : Analysis.DebugData
- Value: CreateObject
- Key : Analysis.DebugModel
- Value: CreateObject
- Key : Analysis.Elapsed.Sec
- Value: 7
- Key : Analysis.Memory.CommitPeak.Mb
- Value: 89
- Key : Analysis.System
- Value: CreateObject
- BUGCHECK_CODE: 50
- BUGCHECK_P1: ffffffffffffffd0
- BUGCHECK_P2: 2
- BUGCHECK_P3: fffff80007ecb964
- BUGCHECK_P4: 2
- READ_ADDRESS: ffffffffffffffd0
- MM_INTERNAL_CODE: 2
- BLACKBOXBSD: 1 (!blackboxbsd)
- BLACKBOXNTFS: 1 (!blackboxntfs)
- BLACKBOXPNP: 1 (!blackboxpnp)
- BLACKBOXWINLOGON: 1
- PROCESS_NAME: as.exe
- TRAP_FRAME: fffff48e8ef4ef20 -- (.trap 0xfffff48e8ef4ef20)
- NOTE: The trap frame does not contain all registers.
- Some register values may be zeroed or incorrect.
- rax=ffffd3034abae610 rbx=0000000000000000 rcx=0000000000000000
- rdx=0000000000000001 rsi=0000000000000000 rdi=0000000000000000
- rip=fffff80007ecb964 rsp=fffff48e8ef4f0b0 rbp=fffff48e8ef4f279
- r8=0000000000000000 r9=000001f1c564d370 r10=fffff8000e413580
- r11=0000000000000001 r12=0000000000000000 r13=0000000000000000
- r14=0000000000000000 r15=0000000000000000
- iopl=0 nv up ei pl zr na po nc
- nt!ObfReferenceObject+0x24:
- fffff800`07ecb964 f0480fc15ed0 lock xadd qword ptr [rsi-30h],rbx ds:ffffffff`ffffffd0=????????????????
- Resetting default scope
- STACK_TEXT:
- fffff48e`8ef4ec78 fffff800`08048b23 : 00000000`00000050 ffffffff`ffffffd0 00000000`00000002 fffff48e`8ef4ef20 : nt!KeBugCheckEx
- fffff48e`8ef4ec80 fffff800`07e0d450 : 00000000`00000190 00000000`00000002 fffff48e`8ef4efa0 00000000`00000000 : nt!MiSystemFault+0x1b70a3
- fffff48e`8ef4ed80 fffff800`0800d66d : 00000000`00000000 fffff800`07ec281d ffff8682`45400000 fffff800`0823ddd4 : nt!MmAccessFault+0x400
- fffff48e`8ef4ef20 fffff800`07ecb964 : fffff800`0e413580 fffff800`0e3e738e ffffd303`4abae630 00000000`00000001 : nt!KiPageFault+0x36d
- fffff48e`8ef4f0b0 fffff800`0e3fba98 : ffffd303`46c4fa20 00000000`c0000016 ffffd303`4a796940 00000000`00000000 : nt!ObfReferenceObject+0x24
- fffff48e`8ef4f0f0 fffff800`0e3f603d : 00000000`00000004 ffff8682`4b4dbc50 000001f1`c5c23080 000001f1`c564d370 : nfs41_driver!nfs41_UpcallCreate+0x268 [C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41sys_updowncall.c @ 427]
- fffff48e`8ef4f170 fffff800`0e4263be : ffffd303`46c4fa20 00000000`c0000016 00000000`c0000016 ffff8682`4b4db6a0 : nfs41_driver!nfs41_CloseSrvOpen+0x1ed [C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41sys_openclose.c @ 1476]
- fffff48e`8ef4f230 fffff800`0e41ae18 : 00000000`00000000 ffff8682`4b4dbb50 ffffd303`c0000016 ffff8682`4b4dba08 : nfs41_driver!RxCloseAssociatedSrvOpen+0x23e [base\fs\rdr2\rdbss\close.c @ 515]
- fffff48e`8ef4f2e0 fffff800`0e41a6b9 : ffff8682`4b4dbb50 ffff8682`4b4dbb50 ffffd303`41a47d00 ffffd303`00000000 : nfs41_driver!RxFinalizeNetFobx+0x138 [base\fs\rdr2\rxce\fcbstruc.c @ 4339]
- fffff48e`8ef4f360 fffff800`0e41ea36 : 00000000`00000000 fffff48e`8ef4f410 ffff8682`4b4dbb50 ffff8682`4b4dbbc0 : nfs41_driver!RxDereference+0x119 [base\fs\rdr2\rxce\fcbstruc.c @ 411]
- fffff48e`8ef4f3a0 fffff800`0e421577 : ffffd303`48cec860 ffffd303`442d7670 ffffd303`44476001 ffff8682`4c0a3010 : nfs41_driver!RxPurgeRelatedFobxs+0x3f6 [base\fs\rdr2\rxce\scavengr.c @ 755]
- fffff48e`8ef4f450 fffff800`0e401f02 : ffffd303`442d7670 ffffd303`48cec860 ffff8682`4c0a3010 ffff8682`4c0a34c0 : nfs41_driver!RxCommonSetInformation+0x2a7 [base\fs\rdr2\rdbss\fileinfo.c @ 684]
- fffff48e`8ef4f500 fffff800`0e42098d : fffff800`0e413160 fffff800`07ecad00 ffffd303`44476080 ffffd303`41a477d0 : nfs41_driver!RxFsdCommonDispatch+0x442 [base\fs\rdr2\rdbss\ntfsd.c @ 848]
- fffff48e`8ef4f600 fffff800`0e3e9197 : ffffd303`469cbbc0 ffffd303`44049bc0 ffffd303`418fe180 fffff48e`8ef4f719 : nfs41_driver!RxFsdDispatch+0xfd [base\fs\rdr2\rdbss\ntfsd.c @ 442]
- fffff48e`8ef4f630 fffff800`07ed21c5 : ffffd303`41a477d0 ffffd303`49591a20 ffffd303`444766d0 fffff800`07ecb32b : nfs41_driver!nfs41_FsdDispatch+0x67 [C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41sys_driver.c @ 1142]
- fffff48e`8ef4f670 fffff800`0c1ff558 : 00000000`00000000 00000000`00000000 ffffd303`440488f0 ffffd303`480adde8 : nt!IofCallDriver+0x55
- fffff48e`8ef4f6b0 fffff800`0c1ff0a9 : ffff8682`460bd8c0 fffff800`0c1f8000 fffff800`0c1f8000 ffffd303`49591a20 : mup!MupiCallUncProvider+0xb8
- fffff48e`8ef4f720 fffff800`0c208601 : 00000000`00000000 ffffd303`480adde0 ffffd303`4ba32730 ffffd303`49591a20 : mup!MupStateMachine+0x59
- fffff48e`8ef4f750 fffff800`07ed21c5 : ffffd303`4ab43010 00000000`00000000 ffffd303`469cbbc0 fffff800`0ab25021 : mup!MupSetInformationFile+0x201
- fffff48e`8ef4f7b0 fffff800`0ab2710f : 00000000`00000008 00000000`00000000 ffffd303`4ba32780 00000000`00000208 : nt!IofCallDriver+0x55
- fffff48e`8ef4f7f0 fffff800`0ab24a43 : fffff48e`8ef4f880 00000000`00000001 ffffd303`4815a340 fffff800`085b418e : FLTMGR!FltpLegacyProcessingAfterPreCallbacksCompleted+0x28f
- fffff48e`8ef4f860 fffff800`07ed21c5 : ffffd303`49591bc8 fffff800`07ed23a2 00000000`00000001 fffff800`0823e30e : FLTMGR!FltpDispatch+0xa3
- fffff48e`8ef4f8c0 fffff800`07e2b740 : ffffd303`4ba32780 ffffd303`49591a20 00000000`0000000d ffffd303`4ba32730 : nt!IofCallDriver+0x55
- fffff48e`8ef4f900 fffff800`07ed35ce : fffff48e`8ef4fb80 ffffd303`49591bc8 ffffd303`49591a20 00000000`00000000 : nt!IopCallDriverReference+0xd0
- fffff48e`8ef4f970 fffff800`08011505 : 00000000`00000188 00000007`ffffc530 00000007`ffffc513 00000000`00000001 : nt!NtSetInformationFile+0xbae
- fffff48e`8ef4fa90 00007ffb`6080da84 : 00007ffb`3489a432 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiSystemServiceCopyEnd+0x25
- 00000007`ffffc478 00007ffb`3489a432 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : ntdll!NtSetInformationFile+0x14
- 00000007`ffffc480 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`0000000d : cygwin1!strtosigno+0x36ea
- FAULTING_SOURCE_LINE: C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41sys_updowncall.c
- FAULTING_SOURCE_FILE: C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41sys_updowncall.c
- FAULTING_SOURCE_LINE_NUMBER: 427
- FAULTING_SOURCE_CODE:
- 423: entry->psec_ctx_clienttoken = entry->psec_ctx->ClientToken;
- 424: ObReferenceObject(entry->psec_ctx_clienttoken);
- 425: }
- 426:
- > 427: if (entry) {
- 428: /* Clear fields used for memory mappings */
- 429: switch(entry->opcode) {
- 430: case NFS41_SYSOP_WRITE:
- 431: case NFS41_SYSOP_READ:
- 432: entry->u.ReadWrite.buf = NULL;
- SYMBOL_NAME: nfs41_driver!nfs41_UpcallCreate+268
- MODULE_NAME: nfs41_driver
- IMAGE_NAME: nfs41_driver.sys
- STACK_COMMAND: .thread ; .cxr ; kb
- BUCKET_ID_FUNC_OFFSET: 268
- FAILURE_BUCKET_ID: AV_INVALID_nfs41_driver!nfs41_UpcallCreate
- OS_VERSION: 10.0.19041.1
- BUILDLAB_STR: vb_release
- OSPLATFORM_TYPE: x64
- OSNAME: Windows 10
- FAILURE_ID_HASH: {1e84f035-5ad6-3548-679b-109c80208655}
- Followup: MachineOwner
- ---------
- 3: kd>
crash because fobx deallocator was called, and then using the fobx data
Posted by Anonymous on Wed 26th Nov 2025 19:40
raw | new post
Submit a correction or amendment below (click here to make a fresh posting)
After submitting an amendment, you'll be able to view the differences between the old and new posts easily.