nrubsig.kpaste.net RSS- ************* Preparing the environment for Debugger Extensions Gallery repositories **************
- ExtensionRepository : Implicit
- UseExperimentalFeatureForNugetShare : true
- AllowNugetExeUpdate : true
- NonInteractiveNuget : true
- AllowNugetMSCredentialProviderInstall : true
- AllowParallelInitializationOfLocalRepositories : true
- EnableRedirectToV8JsProvider : false
- -- Configuring repositories
- ----> Repository : LocalInstalled, Enabled: true
- ----> Repository : UserExtensions, Enabled: true
- >>>>>>>>>>>>> Preparing the environment for Debugger Extensions Gallery repositories completed, duration 0.016 seconds
- ************* Waiting for Debugger Extensions Gallery to Initialize **************
- >>>>>>>>>>>>> Waiting for Debugger Extensions Gallery to Initialize completed, duration 0.422 seconds
- ----> Repository : UserExtensions, Enabled: true, Packages count: 0
- ----> Repository : LocalInstalled, Enabled: true, Packages count: 41
- Microsoft (R) Windows Debugger Version 10.0.27553.1004 AMD64
- Copyright (c) Microsoft Corporation. All rights reserved.
- Loading Dump File [C:\Windows\MEMORY.DMP]
- Kernel Bitmap Dump File: Kernel address space is available, User address space may not be available.
- ************* Path validation summary **************
- Response Time (ms) Location
- Deferred srv*
- Symbol search path is: srv*
- Executable search path is:
- Windows 10 Kernel Version 19041 MP (8 procs) Free x64
- Product: WinNt, suite: TerminalServer SingleUserTS
- Edition build lab: 19041.1.amd64fre.vb_release.191206-1406
- Kernel base = 0xfffff801`50800000 PsLoadedModuleList = 0xfffff801`5142a2c0
- Debug session time: Mon May 6 14:24:50.587 2024 (UTC + 2:00)
- System Uptime: 0 days 0:02:07.334
- Loading Kernel Symbols
- ...............................................................
- ............Page df1b not present in the dump file. Type ".hh dbgerr004" for details
- ....................................................
- ................................................................
- ........
- Loading User Symbols
- PEB is paged out (Peb.Ldr = 00000036`72ae0018). Type ".hh dbgerr001" for details
- Loading unloaded module list
- .....
- For analysis of this file, run !analyze -v
- nt!KeBugCheckEx:
- fffff801`50bfdaf0 48894c2408 mov qword ptr [rsp+8],rcx ss:0018:ffffa982`ecec11d0=0000000000000018
- 3: kd> !analyze -v
- *******************************************************************************
- * *
- * Bugcheck Analysis *
- * *
- *******************************************************************************
- REFERENCE_BY_POINTER (18)
- Arguments:
- Arg1: 0000000000000000, Object type of the object whose reference count is being lowered
- Arg2: ffffe48024426080, Object whose reference count is being lowered
- Arg3: 0000000000000010, Reserved
- Arg4: 0000000000000001, Reserved
- The reference count of an object is illegal for the current state of the object.
- Each time a driver uses a pointer to an object the driver calls a kernel routine
- to increment the reference count of the object. When the driver is done with the
- pointer the driver calls another kernel routine to decrement the reference count.
- Drivers must match calls to the increment and decrement routines. This BugCheck
- can occur because an object's reference count goes to zero while there are still
- open handles to the object, in which case the fourth parameter indicates the number
- of opened handles. It may also occur when the object's reference count drops below zero
- whether or not there are open handles to the object, and in that case the fourth parameter
- contains the actual value of the pointer references count.
- Debugging Details:
- ------------------
- KEY_VALUES_STRING: 1
- Key : Analysis.CPU.mSec
- Value: 5046
- Key : Analysis.Elapsed.mSec
- Value: 5140
- Key : Analysis.IO.Other.Mb
- Value: 0
- Key : Analysis.IO.Read.Mb
- Value: 2
- Key : Analysis.IO.Write.Mb
- Value: 1
- Key : Analysis.Init.CPU.mSec
- Value: 1062
- Key : Analysis.Init.Elapsed.mSec
- Value: 4268
- Key : Analysis.Memory.CommitPeak.Mb
- Value: 96
- Key : Bugcheck.Code.KiBugCheckData
- Value: 0x18
- Key : Bugcheck.Code.LegacyAPI
- Value: 0x18
- Key : Bugcheck.Code.TargetModel
- Value: 0x18
- Key : Failure.Bucket
- Value: 0x18_nfs41_driver!handle_upcall
- Key : Failure.Hash
- Value: {c87325e8-a090-f7f4-b2bc-76277fb6bd31}
- Key : Hypervisor.Enlightenments.Value
- Value: 12576
- Key : Hypervisor.Enlightenments.ValueHex
- Value: 3120
- Key : Hypervisor.Flags.AnyHypervisorPresent
- Value: 1
- Key : Hypervisor.Flags.ApicEnlightened
- Value: 0
- Key : Hypervisor.Flags.ApicVirtualizationAvailable
- Value: 0
- Key : Hypervisor.Flags.AsyncMemoryHint
- Value: 0
- Key : Hypervisor.Flags.CoreSchedulerRequested
- Value: 0
- Key : Hypervisor.Flags.CpuManager
- Value: 0
- Key : Hypervisor.Flags.DeprecateAutoEoi
- Value: 1
- Key : Hypervisor.Flags.DynamicCpuDisabled
- Value: 0
- Key : Hypervisor.Flags.Epf
- Value: 0
- Key : Hypervisor.Flags.ExtendedProcessorMasks
- Value: 0
- Key : Hypervisor.Flags.HardwareMbecAvailable
- Value: 0
- Key : Hypervisor.Flags.MaxBankNumber
- Value: 0
- Key : Hypervisor.Flags.MemoryZeroingControl
- Value: 0
- Key : Hypervisor.Flags.NoExtendedRangeFlush
- Value: 1
- Key : Hypervisor.Flags.NoNonArchCoreSharing
- Value: 0
- Key : Hypervisor.Flags.Phase0InitDone
- Value: 1
- Key : Hypervisor.Flags.PowerSchedulerQos
- Value: 0
- Key : Hypervisor.Flags.RootScheduler
- Value: 0
- Key : Hypervisor.Flags.SynicAvailable
- Value: 1
- Key : Hypervisor.Flags.UseQpcBias
- Value: 0
- Key : Hypervisor.Flags.Value
- Value: 536632
- Key : Hypervisor.Flags.ValueHex
- Value: 83038
- Key : Hypervisor.Flags.VpAssistPage
- Value: 1
- Key : Hypervisor.Flags.VsmAvailable
- Value: 0
- Key : Hypervisor.RootFlags.AccessStats
- Value: 0
- Key : Hypervisor.RootFlags.CrashdumpEnlightened
- Value: 0
- Key : Hypervisor.RootFlags.CreateVirtualProcessor
- Value: 0
- Key : Hypervisor.RootFlags.DisableHyperthreading
- Value: 0
- Key : Hypervisor.RootFlags.HostTimelineSync
- Value: 0
- Key : Hypervisor.RootFlags.HypervisorDebuggingEnabled
- Value: 0
- Key : Hypervisor.RootFlags.IsHyperV
- Value: 0
- Key : Hypervisor.RootFlags.LivedumpEnlightened
- Value: 0
- Key : Hypervisor.RootFlags.MapDeviceInterrupt
- Value: 0
- Key : Hypervisor.RootFlags.MceEnlightened
- Value: 0
- Key : Hypervisor.RootFlags.Nested
- Value: 0
- Key : Hypervisor.RootFlags.StartLogicalProcessor
- Value: 0
- Key : Hypervisor.RootFlags.Value
- Value: 0
- Key : Hypervisor.RootFlags.ValueHex
- Value: 0
- Key : SecureKernel.HalpHvciEnabled
- Value: 0
- Key : WER.OS.Branch
- Value: vb_release
- Key : WER.OS.Version
- Value: 10.0.19041.1
- BUGCHECK_CODE: 18
- BUGCHECK_P1: 0
- BUGCHECK_P2: ffffe48024426080
- BUGCHECK_P3: 10
- BUGCHECK_P4: 1
- FILE_IN_CAB: MEMORY.DMP
- BLACKBOXBSD: 1 (!blackboxbsd)
- BLACKBOXNTFS: 1 (!blackboxntfs)
- BLACKBOXWINLOGON: 1
- PROCESS_NAME: nfsd_debug.exe
- STACK_TEXT:
- ffffa982`ecec11c8 fffff801`50c1e05b : 00000000`00000018 00000000`00000000 ffffe480`24426080 00000000`00000010 : nt!KeBugCheckEx
- ffffa982`ecec11d0 fffff801`50e29a9b : 00000000`00000002 ffffe480`24426080 00000000`00000000 fffff801`00000000 : nt!ObfReferenceObject+0x1e08eb
- ffffa982`ecec1210 fffff801`50eba365 : 00000000`00001000 00000000`00000002 ffff978f`20116010 fffff801`50a42a38 : nt!PsImpersonateClient+0x15b
- ffffa982`ecec12a0 fffff801`58c56729 : fffff801`58c8b640 ffff978f`1c9ae010 00000000`00000001 ffff978f`1c9ae010 : nt!SeImpersonateClientEx+0x35
- ffffa982`ecec12e0 fffff801`58c62767 : ffff978f`20116010 ffff978f`17bfc710 ffffa982`ecec1378 00000000`00000000 : nfs41_driver!handle_upcall+0x59 [C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41_driver.c @ 1427]
- ffffa982`ecec1340 fffff801`58c5bf68 : ffff978f`20116010 ffffa982`00282018 00000000`00000000 ffff978f`20944db0 : nfs41_driver!nfs41_upcall+0xe7 [C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41_driver.c @ 1649]
- ffffa982`ecec13b0 fffff801`58c8b976 : ffff978f`20116010 ffff978f`18ca3830 00000000`00000002 ffff978f`20116010 : nfs41_driver!nfs41_DevFcbXXXControlFile+0x128 [C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41_driver.c @ 2496]
- ffffa982`ecec1430 fffff801`58c8b698 : ffff978f`20116010 ffff978f`20116010 ffff978f`18ca3800 ffff978f`20116010 : nfs41_driver!RxXXXControlFileCallthru+0x76 [base\fs\rdr2\rdbss\ntdevfcb.c @ 130]
- ffffa982`ecec1460 fffff801`58c68242 : 00000000`00000000 ffff978f`1c9ae010 ffff978f`18ca3801 00000000`00000000 : nfs41_driver!RxCommonDevFCBIoCtl+0x58 [base\fs\rdr2\rdbss\ntdevfcb.c @ 491]
- ffffa982`ecec1490 fffff801`58c8297d : fffff801`58c75370 ffff978f`17a02100 ffffffff`ffffffff ffff978f`18ca3830 : nfs41_driver!RxFsdCommonDispatch+0x442 [base\fs\rdr2\rdbss\ntfsd.c @ 848]
- ffffa982`ecec1590 fffff801`58c5cb57 : ffff978f`20151c40 00000000`00000002 00000000`00000000 00000000`00000000 : nfs41_driver!RxFsdDispatch+0xfd [base\fs\rdr2\rdbss\ntfsd.c @ 442]
- ffffa982`ecec15c0 fffff801`50a2d835 : ffff978f`18ca3830 ffff978f`1c9ae010 ffff978f`2091e730 fffff801`50a3d15b : nfs41_driver!nfs41_FsdDispatch+0x67 [C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41_driver.c @ 6960]
- ffffa982`ecec1600 fffff801`5675f248 : fffff801`56758000 00000000`00000000 ffff978f`1c850db0 ffff978f`2014d508 : nt!IofCallDriver+0x55
- ffffa982`ecec1640 fffff801`5675ed99 : ffffe480`1d47a6e0 00000000`00000000 fffff801`56758000 00000000`00000000 : mup!MupiCallUncProvider+0xb8
- ffffa982`ecec16b0 fffff801`5675ecce : ffff978f`1c9ae010 ffff978f`2014d500 ffff978f`20944d10 00000000`00000000 : mup!MupStateMachine+0x59
- ffffa982`ecec16e0 fffff801`50a2d835 : ffff978f`20944d10 00000000`00000000 ffff978f`20151c40 00000000`00000001 : mup!MupFsdIrpPassThrough+0x17e
- ffffa982`ecec1750 fffff801`4fa24a76 : 00000000`00282018 ffffa982`ecec1950 ffff978f`18ca3830 fffff801`50e2f681 : nt!IofCallDriver+0x55
- ffffa982`ecec1790 fffff801`50a2d835 : 00000000`00000002 ffff978f`1c9ae200 ffffa982`20206f49 ffffa982`ecec1950 : FLTMGR!FltpDispatch+0xd6
- ffffa982`ecec17f0 fffff801`50e2e66c : 00000000`00000001 00000000`00282018 ffff978f`20944d10 ffff978f`209f5080 : nt!IofCallDriver+0x55
- ffffa982`ecec1830 fffff801`50e2e2ba : 00000000`00282018 ffffa982`ecec1b80 00000000`00000000 00000000`00282018 : nt!IopSynchronousServiceTail+0x34c
- ffffa982`ecec18d0 fffff801`50e2d596 : 00000000`00000001 00000000`00000000 00000000`00000000 00000000`00000000 : nt!IopXxxControlFile+0xd0a
- ffffa982`ecec1a20 fffff801`50c119c5 : ffff978f`2091e080 fffff801`00000005 00000036`731f9af8 00007ff9`a7d97cb8 : nt!NtDeviceIoControlFile+0x56
- ffffa982`ecec1a90 00007ff9`d3e0d194 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiSystemServiceCopyEnd+0x25
- 00000036`731fa728 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : 0x00007ff9`d3e0d194
- FAULTING_SOURCE_LINE: C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41_driver.c
- FAULTING_SOURCE_FILE: C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41_driver.c
- FAULTING_SOURCE_LINE_NUMBER: 1427
- FAULTING_SOURCE_CODE:
- 1423: * ntdll!RtlUserThreadStart+0x21
- 1424: * ---- snip ----
- 1425: */
- 1426: __try {
- > 1427: status = SeImpersonateClientEx(entry->psec_ctx, NULL);
- 1428: } __except(EXCEPTION_EXECUTE_HANDLER) {
- 1429: NTSTATUS code;
- 1430: code = GetExceptionCode();
- 1431: print_error("handle_upcall: Call to SeImpersonateClientEx() "
- 1432: "failed due to exception 0x%0x\n", (int)code);
- SYMBOL_NAME: nfs41_driver!handle_upcall+59
- MODULE_NAME: nfs41_driver
- IMAGE_NAME: nfs41_driver.sys
- STACK_COMMAND: .cxr; .ecxr ; kb
- BUCKET_ID_FUNC_OFFSET: 59
- FAILURE_BUCKET_ID: 0x18_nfs41_driver!handle_upcall
- OS_VERSION: 10.0.19041.1
- BUILDLAB_STR: vb_release
- OSPLATFORM_TYPE: x64
- OSNAME: Windows 10
- FAILURE_ID_HASH: {c87325e8-a090-f7f4-b2bc-76277fb6bd31}
- Followup: MachineOwner
- ---------
- 3: kd> .frame 0x4
- 04 ffffa982`ecec12e0 fffff801`58c62767 nfs41_driver!handle_upcall+0x59 [C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41_driver.c @ 1427]
- 3: kd> dr -r entry
- Couldn't resolve error at 'r -r entry'
- 3: kd> dt -r entry
- Local var @ 0xffffa982ecec1348 Type _updowncall_entry*
- 0xffff978f`17bfc710
- +0x000 version : 0xc1f8
- +0x008 xid : 0n55496
- +0x010 opcode : 9 ( NFS41_FILE_QUERY )
- +0x014 status : 0n0
- +0x018 state : 0 ( NFS41_WAITING_FOR_UPCALL )
- +0x020 lock : _FAST_MUTEX
- +0x000 Count : 0n0
- +0x008 Owner : 0xffff978f`2091e080 Void
- +0x010 Contention : 0
- +0x018 Event : _KEVENT
- +0x000 Header : _DISPATCHER_HEADER
- +0x030 OldIrql : 0
- +0x058 next : _LIST_ENTRY [ 0xfffff801`58c75d50 - 0xfffff801`58c75d50 ]
- +0x000 Flink : 0xfffff801`58c75d50 _LIST_ENTRY [ 0xffff978f`17bfc768 - 0xffff978f`17bfc768 ]
- +0x000 Flink : 0xffff978f`17bfc768 _LIST_ENTRY [ 0xfffff801`58c75d50 - 0xfffff801`58c75d50 ]
- +0x008 Blink : 0xffff978f`17bfc768 _LIST_ENTRY [ 0xfffff801`58c75d50 - 0xfffff801`58c75d50 ]
- +0x008 Blink : 0xfffff801`58c75d50 _LIST_ENTRY [ 0xffff978f`17bfc768 - 0xffff978f`17bfc768 ]
- +0x000 Flink : 0xffff978f`17bfc768 _LIST_ENTRY [ 0xfffff801`58c75d50 - 0xfffff801`58c75d50 ]
- +0x008 Blink : 0xffff978f`17bfc768 _LIST_ENTRY [ 0xfffff801`58c75d50 - 0xfffff801`58c75d50 ]
- +0x068 cond : _KEVENT
- +0x000 Header : _DISPATCHER_HEADER
- +0x000 Lock : 0n393217
- +0x000 LockNV : 0n393217
- +0x000 Type : 0x1 ''
- +0x001 Signalling : 0 ''
- +0x002 Size : 0x6 ''
- +0x003 Reserved1 : 0 ''
- +0x000 TimerType : 0x1 ''
- +0x001 TimerControlFlags : 0 ''
- +0x001 Absolute : 0y0
- +0x001 Wake : 0y0
- +0x001 EncodedTolerableDelay : 0y000000 (0)
- +0x002 Hand : 0x6 ''
- +0x003 TimerMiscFlags : 0 ''
- +0x003 Index : 0y000000 (0)
- +0x003 Inserted : 0y0
- +0x003 Expired : 0y0
- +0x000 Timer2Type : 0x1 ''
- +0x001 Timer2Flags : 0 ''
- +0x001 Timer2Inserted : 0y0
- +0x001 Timer2Expiring : 0y0
- +0x001 Timer2CancelPending : 0y0
- +0x001 Timer2SetPending : 0y0
- +0x001 Timer2Running : 0y0
- +0x001 Timer2Disabled : 0y0
- +0x001 Timer2ReservedFlags : 0y00
- +0x002 Timer2ComponentId : 0x6 ''
- +0x003 Timer2RelativeId : 0 ''
- +0x000 QueueType : 0x1 ''
- +0x001 QueueControlFlags : 0 ''
- +0x001 Abandoned : 0y0
- +0x001 DisableIncrement : 0y0
- +0x001 QueueReservedControlFlags : 0y000000 (0)
- +0x002 QueueSize : 0x6 ''
- +0x003 QueueReserved : 0 ''
- +0x000 ThreadType : 0x1 ''
- +0x001 ThreadReserved : 0 ''
- +0x002 ThreadControlFlags : 0x6 ''
- +0x002 CycleProfiling : 0y0
- +0x002 CounterProfiling : 0y1
- +0x002 GroupScheduling : 0y1
- +0x002 AffinitySet : 0y0
- +0x002 Tagged : 0y0
- +0x002 EnergyProfiling : 0y0
- +0x002 SchedulerAssist : 0y0
- +0x002 ThreadReservedControlFlags : 0y0
- +0x003 DebugActive : 0 ''
- +0x003 ActiveDR7 : 0y0
- +0x003 Instrumented : 0y0
- +0x003 Minimal : 0y0
- +0x003 Reserved4 : 0y00
- +0x003 AltSyscall : 0y0
- +0x003 UmsScheduled : 0y0
- +0x003 UmsPrimary : 0y0
- +0x000 MutantType : 0x1 ''
- +0x001 MutantSize : 0 ''
- +0x002 DpcActive : 0x6 ''
- +0x003 MutantReserved : 0 ''
- +0x004 SignalState : 0n0
- +0x008 WaitListHead : _LIST_ENTRY [ 0xffff978f`1c96e1c0 - 0xffff978f`1c96e1c0 ]
- +0x080 errno : 0
- +0x084 async_op : 0 ''
- +0x088 sec_ctx : _SECURITY_CLIENT_CONTEXT
- +0x000 SecurityQos : _SECURITY_QUALITY_OF_SERVICE
- +0x000 Length : 0
- +0x004 ImpersonationLevel : 0 ( SecurityAnonymous )
- +0x008 ContextTrackingMode : 0 ''
- +0x009 EffectiveOnly : 0 ''
- +0x010 ClientToken : (null)
- +0x018 DirectlyAccessClientToken : 0 ''
- +0x019 DirectAccessEffectiveOnly : 0 ''
- +0x01a ServerIsRemote : 0 ''
- +0x01c ClientTokenControl : _TOKEN_CONTROL
- +0x000 TokenId : _LUID
- +0x008 AuthenticationId : _LUID
- +0x010 ModifiedId : _LUID
- ************* Preparing the environment for Debugger Extensions Gallery repositories **************
- ExtensionRepository : Implicit
- UseExperimentalFeatureForNugetShare : true
- AllowNugetExeUpdate : true
- NonInteractiveNuget : true
- AllowNugetMSCredentialProviderInstall : true
- AllowParallelInitializationOfLocalRepositories : true
- EnableRedirectToV8JsProvider : false
- -- Configuring repositories
- ----> Repository : LocalInstalled, Enabled: true
- ----> Repository : UserExtensions, Enabled: true
- >>>>>>>>>>>>> Preparing the environment for Debugger Extensions Gallery repositories completed, duration 0.016 seconds
- ************* Waiting for Debugger Extensions Gallery to Initialize **************
- >>>>>>>>>>>>> Waiting for Debugger Extensions Gallery to Initialize completed, duration 0.422 seconds
- ----> Repository : UserExtensions, Enabled: true, Packages count: 0
- ----> Repository : LocalInstalled, Enabled: true, Packages count: 41
- Microsoft (R) Windows Debugger Version 10.0.27553.1004 AMD64
- Copyright (c) Microsoft Corporation. All rights reserved.
- Loading Dump File [C:\Windows\MEMORY.DMP]
- Kernel Bitmap Dump File: Kernel address space is available, User address space may not be available.
- ************* Path validation summary **************
- Response Time (ms) Location
- Deferred srv*
- Symbol search path is: srv*
- Executable search path is:
- Windows 10 Kernel Version 19041 MP (8 procs) Free x64
- Product: WinNt, suite: TerminalServer SingleUserTS
- Edition build lab: 19041.1.amd64fre.vb_release.191206-1406
- Kernel base = 0xfffff801`50800000 PsLoadedModuleList = 0xfffff801`5142a2c0
- Debug session time: Mon May 6 14:24:50.587 2024 (UTC + 2:00)
- System Uptime: 0 days 0:02:07.334
- Loading Kernel Symbols
- ...............................................................
- ............Page df1b not present in the dump file. Type ".hh dbgerr004" for details
- ....................................................
- ................................................................
- ........
- Loading User Symbols
- PEB is paged out (Peb.Ldr = 00000036`72ae0018). Type ".hh dbgerr001" for details
- Loading unloaded module list
- .....
- For analysis of this file, run !analyze -v
- nt!KeBugCheckEx:
- fffff801`50bfdaf0 48894c2408 mov qword ptr [rsp+8],rcx ss:0018:ffffa982`ecec11d0=0000000000000018
- 3: kd> !analyze -v
- *******************************************************************************
- * *
- * Bugcheck Analysis *
- * *
- *******************************************************************************
- REFERENCE_BY_POINTER (18)
- Arguments:
- Arg1: 0000000000000000, Object type of the object whose reference count is being lowered
- Arg2: ffffe48024426080, Object whose reference count is being lowered
- Arg3: 0000000000000010, Reserved
- Arg4: 0000000000000001, Reserved
- The reference count of an object is illegal for the current state of the object.
- Each time a driver uses a pointer to an object the driver calls a kernel routine
- to increment the reference count of the object. When the driver is done with the
- pointer the driver calls another kernel routine to decrement the reference count.
- Drivers must match calls to the increment and decrement routines. This BugCheck
- can occur because an object's reference count goes to zero while there are still
- open handles to the object, in which case the fourth parameter indicates the number
- of opened handles. It may also occur when the object's reference count drops below zero
- whether or not there are open handles to the object, and in that case the fourth parameter
- contains the actual value of the pointer references count.
- Debugging Details:
- ------------------
- KEY_VALUES_STRING: 1
- Key : Analysis.CPU.mSec
- Value: 5046
- Key : Analysis.Elapsed.mSec
- Value: 5140
- Key : Analysis.IO.Other.Mb
- Value: 0
- Key : Analysis.IO.Read.Mb
- Value: 2
- Key : Analysis.IO.Write.Mb
- Value: 1
- Key : Analysis.Init.CPU.mSec
- Value: 1062
- Key : Analysis.Init.Elapsed.mSec
- Value: 4268
- Key : Analysis.Memory.CommitPeak.Mb
- Value: 96
- Key : Bugcheck.Code.KiBugCheckData
- Value: 0x18
- Key : Bugcheck.Code.LegacyAPI
- Value: 0x18
- Key : Bugcheck.Code.TargetModel
- Value: 0x18
- Key : Failure.Bucket
- Value: 0x18_nfs41_driver!handle_upcall
- Key : Failure.Hash
- Value: {c87325e8-a090-f7f4-b2bc-76277fb6bd31}
- Key : Hypervisor.Enlightenments.Value
- Value: 12576
- Key : Hypervisor.Enlightenments.ValueHex
- Value: 3120
- Key : Hypervisor.Flags.AnyHypervisorPresent
- Value: 1
- Key : Hypervisor.Flags.ApicEnlightened
- Value: 0
- Key : Hypervisor.Flags.ApicVirtualizationAvailable
- Value: 0
- Key : Hypervisor.Flags.AsyncMemoryHint
- Value: 0
- Key : Hypervisor.Flags.CoreSchedulerRequested
- Value: 0
- Key : Hypervisor.Flags.CpuManager
- Value: 0
- Key : Hypervisor.Flags.DeprecateAutoEoi
- Value: 1
- Key : Hypervisor.Flags.DynamicCpuDisabled
- Value: 0
- Key : Hypervisor.Flags.Epf
- Value: 0
- Key : Hypervisor.Flags.ExtendedProcessorMasks
- Value: 0
- Key : Hypervisor.Flags.HardwareMbecAvailable
- Value: 0
- Key : Hypervisor.Flags.MaxBankNumber
- Value: 0
- Key : Hypervisor.Flags.MemoryZeroingControl
- Value: 0
- Key : Hypervisor.Flags.NoExtendedRangeFlush
- Value: 1
- Key : Hypervisor.Flags.NoNonArchCoreSharing
- Value: 0
- Key : Hypervisor.Flags.Phase0InitDone
- Value: 1
- Key : Hypervisor.Flags.PowerSchedulerQos
- Value: 0
- Key : Hypervisor.Flags.RootScheduler
- Value: 0
- Key : Hypervisor.Flags.SynicAvailable
- Value: 1
- Key : Hypervisor.Flags.UseQpcBias
- Value: 0
- Key : Hypervisor.Flags.Value
- Value: 536632
- Key : Hypervisor.Flags.ValueHex
- Value: 83038
- Key : Hypervisor.Flags.VpAssistPage
- Value: 1
- Key : Hypervisor.Flags.VsmAvailable
- Value: 0
- Key : Hypervisor.RootFlags.AccessStats
- Value: 0
- Key : Hypervisor.RootFlags.CrashdumpEnlightened
- Value: 0
- Key : Hypervisor.RootFlags.CreateVirtualProcessor
- Value: 0
- Key : Hypervisor.RootFlags.DisableHyperthreading
- Value: 0
- Key : Hypervisor.RootFlags.HostTimelineSync
- Value: 0
- Key : Hypervisor.RootFlags.HypervisorDebuggingEnabled
- Value: 0
- Key : Hypervisor.RootFlags.IsHyperV
- Value: 0
- Key : Hypervisor.RootFlags.LivedumpEnlightened
- Value: 0
- Key : Hypervisor.RootFlags.MapDeviceInterrupt
- Value: 0
- Key : Hypervisor.RootFlags.MceEnlightened
- Value: 0
- Key : Hypervisor.RootFlags.Nested
- Value: 0
- Key : Hypervisor.RootFlags.StartLogicalProcessor
- Value: 0
- Key : Hypervisor.RootFlags.Value
- Value: 0
- Key : Hypervisor.RootFlags.ValueHex
- Value: 0
- Key : SecureKernel.HalpHvciEnabled
- Value: 0
- Key : WER.OS.Branch
- Value: vb_release
- Key : WER.OS.Version
- Value: 10.0.19041.1
- BUGCHECK_CODE: 18
- BUGCHECK_P1: 0
- BUGCHECK_P2: ffffe48024426080
- BUGCHECK_P3: 10
- BUGCHECK_P4: 1
- FILE_IN_CAB: MEMORY.DMP
- BLACKBOXBSD: 1 (!blackboxbsd)
- BLACKBOXNTFS: 1 (!blackboxntfs)
- BLACKBOXWINLOGON: 1
- PROCESS_NAME: nfsd_debug.exe
- STACK_TEXT:
- ffffa982`ecec11c8 fffff801`50c1e05b : 00000000`00000018 00000000`00000000 ffffe480`24426080 00000000`00000010 : nt!KeBugCheckEx
- ffffa982`ecec11d0 fffff801`50e29a9b : 00000000`00000002 ffffe480`24426080 00000000`00000000 fffff801`00000000 : nt!ObfReferenceObject+0x1e08eb
- ffffa982`ecec1210 fffff801`50eba365 : 00000000`00001000 00000000`00000002 ffff978f`20116010 fffff801`50a42a38 : nt!PsImpersonateClient+0x15b
- ffffa982`ecec12a0 fffff801`58c56729 : fffff801`58c8b640 ffff978f`1c9ae010 00000000`00000001 ffff978f`1c9ae010 : nt!SeImpersonateClientEx+0x35
- ffffa982`ecec12e0 fffff801`58c62767 : ffff978f`20116010 ffff978f`17bfc710 ffffa982`ecec1378 00000000`00000000 : nfs41_driver!handle_upcall+0x59 [C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41_driver.c @ 1427]
- ffffa982`ecec1340 fffff801`58c5bf68 : ffff978f`20116010 ffffa982`00282018 00000000`00000000 ffff978f`20944db0 : nfs41_driver!nfs41_upcall+0xe7 [C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41_driver.c @ 1649]
- ffffa982`ecec13b0 fffff801`58c8b976 : ffff978f`20116010 ffff978f`18ca3830 00000000`00000002 ffff978f`20116010 : nfs41_driver!nfs41_DevFcbXXXControlFile+0x128 [C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41_driver.c @ 2496]
- ffffa982`ecec1430 fffff801`58c8b698 : ffff978f`20116010 ffff978f`20116010 ffff978f`18ca3800 ffff978f`20116010 : nfs41_driver!RxXXXControlFileCallthru+0x76 [base\fs\rdr2\rdbss\ntdevfcb.c @ 130]
- ffffa982`ecec1460 fffff801`58c68242 : 00000000`00000000 ffff978f`1c9ae010 ffff978f`18ca3801 00000000`00000000 : nfs41_driver!RxCommonDevFCBIoCtl+0x58 [base\fs\rdr2\rdbss\ntdevfcb.c @ 491]
- ffffa982`ecec1490 fffff801`58c8297d : fffff801`58c75370 ffff978f`17a02100 ffffffff`ffffffff ffff978f`18ca3830 : nfs41_driver!RxFsdCommonDispatch+0x442 [base\fs\rdr2\rdbss\ntfsd.c @ 848]
- ffffa982`ecec1590 fffff801`58c5cb57 : ffff978f`20151c40 00000000`00000002 00000000`00000000 00000000`00000000 : nfs41_driver!RxFsdDispatch+0xfd [base\fs\rdr2\rdbss\ntfsd.c @ 442]
- ffffa982`ecec15c0 fffff801`50a2d835 : ffff978f`18ca3830 ffff978f`1c9ae010 ffff978f`2091e730 fffff801`50a3d15b : nfs41_driver!nfs41_FsdDispatch+0x67 [C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41_driver.c @ 6960]
- ffffa982`ecec1600 fffff801`5675f248 : fffff801`56758000 00000000`00000000 ffff978f`1c850db0 ffff978f`2014d508 : nt!IofCallDriver+0x55
- ffffa982`ecec1640 fffff801`5675ed99 : ffffe480`1d47a6e0 00000000`00000000 fffff801`56758000 00000000`00000000 : mup!MupiCallUncProvider+0xb8
- ffffa982`ecec16b0 fffff801`5675ecce : ffff978f`1c9ae010 ffff978f`2014d500 ffff978f`20944d10 00000000`00000000 : mup!MupStateMachine+0x59
- ffffa982`ecec16e0 fffff801`50a2d835 : ffff978f`20944d10 00000000`00000000 ffff978f`20151c40 00000000`00000001 : mup!MupFsdIrpPassThrough+0x17e
- ffffa982`ecec1750 fffff801`4fa24a76 : 00000000`00282018 ffffa982`ecec1950 ffff978f`18ca3830 fffff801`50e2f681 : nt!IofCallDriver+0x55
- ffffa982`ecec1790 fffff801`50a2d835 : 00000000`00000002 ffff978f`1c9ae200 ffffa982`20206f49 ffffa982`ecec1950 : FLTMGR!FltpDispatch+0xd6
- ffffa982`ecec17f0 fffff801`50e2e66c : 00000000`00000001 00000000`00282018 ffff978f`20944d10 ffff978f`209f5080 : nt!IofCallDriver+0x55
- ffffa982`ecec1830 fffff801`50e2e2ba : 00000000`00282018 ffffa982`ecec1b80 00000000`00000000 00000000`00282018 : nt!IopSynchronousServiceTail+0x34c
- ffffa982`ecec18d0 fffff801`50e2d596 : 00000000`00000001 00000000`00000000 00000000`00000000 00000000`00000000 : nt!IopXxxControlFile+0xd0a
- ffffa982`ecec1a20 fffff801`50c119c5 : ffff978f`2091e080 fffff801`00000005 00000036`731f9af8 00007ff9`a7d97cb8 : nt!NtDeviceIoControlFile+0x56
- ffffa982`ecec1a90 00007ff9`d3e0d194 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiSystemServiceCopyEnd+0x25
- 00000036`731fa728 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : 0x00007ff9`d3e0d194
- FAULTING_SOURCE_LINE: C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41_driver.c
- FAULTING_SOURCE_FILE: C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41_driver.c
- FAULTING_SOURCE_LINE_NUMBER: 1427
- FAULTING_SOURCE_CODE:
- 1423: * ntdll!RtlUserThreadStart+0x21
- 1424: * ---- snip ----
- 1425: */
- 1426: __try {
- > 1427: status = SeImpersonateClientEx(entry->psec_ctx, NULL);
- 1428: } __except(EXCEPTION_EXECUTE_HANDLER) {
- 1429: NTSTATUS code;
- 1430: code = GetExceptionCode();
- 1431: print_error("handle_upcall: Call to SeImpersonateClientEx() "
- 1432: "failed due to exception 0x%0x\n", (int)code);
- SYMBOL_NAME: nfs41_driver!handle_upcall+59
- MODULE_NAME: nfs41_driver
- IMAGE_NAME: nfs41_driver.sys
- STACK_COMMAND: .cxr; .ecxr ; kb
- BUCKET_ID_FUNC_OFFSET: 59
- FAILURE_BUCKET_ID: 0x18_nfs41_driver!handle_upcall
- OS_VERSION: 10.0.19041.1
- BUILDLAB_STR: vb_release
- OSPLATFORM_TYPE: x64
- OSNAME: Windows 10
- FAILURE_ID_HASH: {c87325e8-a090-f7f4-b2bc-76277fb6bd31}
- Followup: MachineOwner
- ---------
- 3: kd> .frame 0x4
- 04 ffffa982`ecec12e0 fffff801`58c62767 nfs41_driver!handle_upcall+0x59 [C:\cygwin64\home\roland_mainz\work\msnfs41_uidmapping\ms-nfs41-client\sys\nfs41_driver.c @ 1427]
- 3: kd> dr -r entry
- Couldn't resolve error at 'r -r entry'
- 3: kd> dt -r entry
- Local var @ 0xffffa982ecec1348 Type _updowncall_entry*
- 0xffff978f`17bfc710
- +0x000 version : 0xc1f8
- +0x008 xid : 0n55496
- +0x010 opcode : 9 ( NFS41_FILE_QUERY )
- +0x014 status : 0n0
- +0x018 state : 0 ( NFS41_WAITING_FOR_UPCALL )
- +0x020 lock : _FAST_MUTEX
- +0x000 Count : 0n0
- +0x008 Owner : 0xffff978f`2091e080 Void
- +0x010 Contention : 0
- +0x018 Event : _KEVENT
- +0x000 Header : _DISPATCHER_HEADER
- +0x030 OldIrql : 0
- +0x058 next : _LIST_ENTRY [ 0xfffff801`58c75d50 - 0xfffff801`58c75d50 ]
- +0x000 Flink : 0xfffff801`58c75d50 _LIST_ENTRY [ 0xffff978f`17bfc768 - 0xffff978f`17bfc768 ]
- +0x000 Flink : 0xffff978f`17bfc768 _LIST_ENTRY [ 0xfffff801`58c75d50 - 0xfffff801`58c75d50 ]
- +0x008 Blink : 0xffff978f`17bfc768 _LIST_ENTRY [ 0xfffff801`58c75d50 - 0xfffff801`58c75d50 ]
- +0x008 Blink : 0xfffff801`58c75d50 _LIST_ENTRY [ 0xffff978f`17bfc768 - 0xffff978f`17bfc768 ]
- +0x000 Flink : 0xffff978f`17bfc768 _LIST_ENTRY [ 0xfffff801`58c75d50 - 0xfffff801`58c75d50 ]
- +0x008 Blink : 0xffff978f`17bfc768 _LIST_ENTRY [ 0xfffff801`58c75d50 - 0xfffff801`58c75d50 ]
- +0x068 cond : _KEVENT
- +0x000 Header : _DISPATCHER_HEADER
- +0x000 Lock : 0n393217
- +0x000 LockNV : 0n393217
- +0x000 Type : 0x1 ''
- +0x001 Signalling : 0 ''
- +0x002 Size : 0x6 ''
- +0x003 Reserved1 : 0 ''
- +0x000 TimerType : 0x1 ''
- +0x001 TimerControlFlags : 0 ''
- +0x001 Absolute : 0y0
- +0x001 Wake : 0y0
- +0x001 EncodedTolerableDelay : 0y000000 (0)
- +0x002 Hand : 0x6 ''
- +0x003 TimerMiscFlags : 0 ''
- +0x003 Index : 0y000000 (0)
- +0x003 Inserted : 0y0
- +0x003 Expired : 0y0
- +0x000 Timer2Type : 0x1 ''
- +0x001 Timer2Flags : 0 ''
- +0x001 Timer2Inserted : 0y0
- +0x001 Timer2Expiring : 0y0
- +0x001 Timer2CancelPending : 0y0
- +0x001 Timer2SetPending : 0y0
- +0x001 Timer2Running : 0y0
- +0x001 Timer2Disabled : 0y0
- +0x001 Timer2ReservedFlags : 0y00
- +0x002 Timer2ComponentId : 0x6 ''
- +0x003 Timer2RelativeId : 0 ''
- +0x000 QueueType : 0x1 ''
- +0x001 QueueControlFlags : 0 ''
- +0x001 Abandoned : 0y0
- +0x001 DisableIncrement : 0y0
- +0x001 QueueReservedControlFlags : 0y000000 (0)
- +0x002 QueueSize : 0x6 ''
- +0x003 QueueReserved : 0 ''
- +0x000 ThreadType : 0x1 ''
- +0x001 ThreadReserved : 0 ''
- +0x002 ThreadControlFlags : 0x6 ''
- +0x002 CycleProfiling : 0y0
- +0x002 CounterProfiling : 0y1
- +0x002 GroupScheduling : 0y1
- +0x002 AffinitySet : 0y0
- +0x002 Tagged : 0y0
- +0x002 EnergyProfiling : 0y0
- +0x002 SchedulerAssist : 0y0
- +0x002 ThreadReservedControlFlags : 0y0
- +0x003 DebugActive : 0 ''
- +0x003 ActiveDR7 : 0y0
- +0x003 Instrumented : 0y0
- +0x003 Minimal : 0y0
- +0x003 Reserved4 : 0y00
- +0x003 AltSyscall : 0y0
- +0x003 UmsScheduled : 0y0
- +0x003 UmsPrimary : 0y0
- +0x000 MutantType : 0x1 ''
- +0x001 MutantSize : 0 ''
- +0x002 DpcActive : 0x6 ''
- +0x003 MutantReserved : 0 ''
- +0x004 SignalState : 0n0
- +0x008 WaitListHead : _LIST_ENTRY [ 0xffff978f`1c96e1c0 - 0xffff978f`1c96e1c0 ]
- +0x080 errno : 0
- +0x084 async_op : 0 ''
- +0x088 sec_ctx : _SECURITY_CLIENT_CONTEXT
- +0x000 SecurityQos : _SECURITY_QUALITY_OF_SERVICE
- +0x000 Length : 0
- +0x004 ImpersonationLevel : 0 ( SecurityAnonymous )
- +0x008 ContextTrackingMode : 0 ''
- +0x009 EffectiveOnly : 0 ''
- +0x010 ClientToken : (null)
- +0x018 DirectlyAccessClientToken : 0 ''
- +0x019 DirectAccessEffectiveOnly : 0 ''
- +0x01a ServerIsRemote : 0 ''
- +0x01c ClientTokenControl : _TOKEN_CONTROL
- +0x000 TokenId : _LUID
- +0x008 AuthenticationId : _LUID
- +0x010 ModifiedId : _LUID
- +0x018 TokenSource : _TOKEN_SOURCE
- +0x0d0 psec_ctx : 0xffffe480`25171e80 _SECURITY_CLIENT_CONTEXT
- +0x000 SecurityQos : _SECURITY_QUALITY_OF_SERVICE
- +0x000 Length : 0xc
- +0x004 ImpersonationLevel : 2 ( SecurityImpersonation )
- +0x008 ContextTrackingMode : 0 ''
- +0x009 EffectiveOnly : 0 ''
- +0x010 ClientToken : 0xffffe480`24426080 Void
- +0x018 DirectlyAccessClientToken : 0 ''
- +0x019 DirectAccessEffectiveOnly : 0 ''
- +0x01a ServerIsRemote : 0x1 ''
- +0x01c ClientTokenControl : _TOKEN_CONTROL
- +0x000 TokenId : _LUID
- +0x008 AuthenticationId : _LUID
- +0x010 ModifiedId : _LUID
- +0x018 TokenSource : _TOKEN_SOURCE
- +0x0d8 open_state : 0x00000204`22c1e890 Void
- +0x0e0 session : 0x00000204`224a1b40 Void
- +0x0e8 filename : 0xfffff801`58c6edf8 _UNICODE_STRING ""
- +0x000 Length : 0
- +0x002 MaximumLength : 2
- +0x008 Buffer : 0xfffff801`58c6ed94 ""
- +0x0f0 buf : 0xffffa982`e96aebc8 Void
- +0x0f8 buf_len : 0x28
- +0x100 ChangeTime : 0
- +0x108 u : <unnamed-tag>
- +0x000 Mount : <unnamed-tag>
- +0x000 srv_name : (null)
- +0x008 root : 0x00000000`00000004 _UNICODE_STRING
- +0x010 FsAttrs : (null)
- +0x018 sec_flavor : 0
- +0x01c rsize : 0
- +0x020 wsize : 0
- +0x024 lease_time : 0
- +0x000 ReadWrite : <unnamed-tag>
- +0x000 MdlAddress : (null)
- +0x008 offset : 4
- +0x010 rxcontext : (null)
- +0x000 Lock : <unnamed-tag>
- +0x000 offset : 0n0
- +0x008 length : 0n4
- +0x010 exclusive : 0 ''
- +0x011 blocking : 0 ''
- +0x000 Unlock : <unnamed-tag>
- +0x000 count : 0
- +0x008 locks : _LOWIO_LOCK_LIST
- +0x000 Open : <unnamed-tag>
- +0x000 binfo : _FILE_BASIC_INFORMATION
- +0x028 sinfo : _FILE_STANDARD_INFORMATION
- +0x040 symlink : _UNICODE_STRING ""
- +0x050 access_mask : 0
- +0x054 access_mode : 0
- +0x058 attrs : 0
- +0x05c copts : 0
- +0x060 disp : 0
- +0x064 cattrs : 0
- +0x068 open_owner_id : 0n0
- +0x06c mode : 0
- +0x070 owner_local_uid : 0
- +0x074 owner_group_local_gid : 0
- +0x078 srv_open : (null)
- +0x080 deleg_type : 0
- +0x084 symlink_embedded : 0 ''
- +0x088 EaMdl : (null)
- +0x090 EaBuffer : (null)
- +0x000 Close : <unnamed-tag>
- +0x000 srv_open : (null)
- +0x008 remove : 0x4 ''
- +0x009 renamed : 0 ''
- +0x000 QueryFile : <unnamed-tag>
- +0x000 filter : (null)
- +0x008 InfoClass : 4 ( FileBasicInformation )
- +0x00c restart_scan : 0 ''
- +0x00d return_single : 0 ''
- +0x00e initial_query : 0 ''
- +0x010 mdl : (null)
- +0x018 mdl_buf : (null)
- +0x000 SetFile : <unnamed-tag>
- +0x000 InfoClass : 0 (No matching name)
- +0x000 SetEa : <unnamed-tag>
- +0x000 mode : 0
- +0x000 QueryEa : <unnamed-tag>
- +0x000 EaList : (null)
- +0x008 EaListLength : 4
- +0x00c Overflow : 0
- +0x010 EaIndex : 0
- +0x014 ReturnSingleEntry : 0 ''
- +0x015 RestartScan : 0 ''
- +0x000 Symlink : <unnamed-tag>
- +0x000 target : (null)
- +0x008 set : 0x4 ''
- +0x000 Volume : <unnamed-tag>
- +0x000 query : 0 (No matching name)
- +0x000 Acl : <unnamed-tag>
- +0x000 query : 0
- +0x018 TokenSource : _TOKEN_SOURCE
- +0x0d0 psec_ctx : 0xffffe480`25171e80 _SECURITY_CLIENT_CONTEXT
- +0x000 SecurityQos : _SECURITY_QUALITY_OF_SERVICE
- +0x000 Length : 0xc
- +0x004 ImpersonationLevel : 2 ( SecurityImpersonation )
- +0x008 ContextTrackingMode : 0 ''
- +0x009 EffectiveOnly : 0 ''
- +0x010 ClientToken : 0xffffe480`24426080 Void
- +0x018 DirectlyAccessClientToken : 0 ''
- +0x019 DirectAccessEffectiveOnly : 0 ''
- +0x01a ServerIsRemote : 0x1 ''
- +0x01c ClientTokenControl : _TOKEN_CONTROL
- +0x000 TokenId : _LUID
- +0x008 AuthenticationId : _LUID
- +0x010 ModifiedId : _LUID
- +0x018 TokenSource : _TOKEN_SOURCE
- +0x0d8 open_state : 0x00000204`22c1e890 Void
- +0x0e0 session : 0x00000204`224a1b40 Void
- +0x0e8 filename : 0xfffff801`58c6edf8 _UNICODE_STRING ""
- +0x000 Length : 0
- +0x002 MaximumLength : 2
- +0x008 Buffer : 0xfffff801`58c6ed94 ""
- +0x0f0 buf : 0xffffa982`e96aebc8 Void
- +0x0f8 buf_len : 0x28
- +0x100 ChangeTime : 0
- +0x108 u : <unnamed-tag>
- +0x000 Mount : <unnamed-tag>
- +0x000 srv_name : (null)
- +0x008 root : 0x00000000`00000004 _UNICODE_STRING
- +0x010 FsAttrs : (null)
- +0x018 sec_flavor : 0
- +0x01c rsize : 0
- +0x020 wsize : 0
- +0x024 lease_time : 0
- +0x000 ReadWrite : <unnamed-tag>
- +0x000 MdlAddress : (null)
- +0x008 offset : 4
- +0x010 rxcontext : (null)
- +0x000 Lock : <unnamed-tag>
- +0x000 offset : 0n0
- +0x008 length : 0n4
- +0x010 exclusive : 0 ''
- +0x011 blocking : 0 ''
- +0x000 Unlock : <unnamed-tag>
- +0x000 count : 0
- +0x008 locks : _LOWIO_LOCK_LIST
- +0x000 Open : <unnamed-tag>
- +0x000 binfo : _FILE_BASIC_INFORMATION
- +0x028 sinfo : _FILE_STANDARD_INFORMATION
- +0x040 symlink : _UNICODE_STRING ""
- +0x050 access_mask : 0
- +0x054 access_mode : 0
- +0x058 attrs : 0
- +0x05c copts : 0
- +0x060 disp : 0
- +0x064 cattrs : 0
- +0x068 open_owner_id : 0n0
- +0x06c mode : 0
- +0x070 owner_local_uid : 0
- +0x074 owner_group_local_gid : 0
- +0x078 srv_open : (null)
- +0x080 deleg_type : 0
- +0x084 symlink_embedded : 0 ''
- +0x088 EaMdl : (null)
- +0x090 EaBuffer : (null)
- +0x000 Close : <unnamed-tag>
- +0x000 srv_open : (null)
- +0x008 remove : 0x4 ''
- +0x009 renamed : 0 ''
- +0x000 QueryFile : <unnamed-tag>
- +0x000 filter : (null)
- +0x008 InfoClass : 4 ( FileBasicInformation )
- +0x00c restart_scan : 0 ''
- +0x00d return_single : 0 ''
- +0x00e initial_query : 0 ''
- +0x010 mdl : (null)
- +0x018 mdl_buf : (null)
- +0x000 SetFile : <unnamed-tag>
- +0x000 InfoClass : 0 (No matching name)
- +0x000 SetEa : <unnamed-tag>
- +0x000 mode : 0
- +0x000 QueryEa : <unnamed-tag>
- +0x000 EaList : (null)
- +0x008 EaListLength : 4
- +0x00c Overflow : 0
- +0x010 EaIndex : 0
- +0x014 ReturnSingleEntry : 0 ''
- +0x015 RestartScan : 0 ''
- +0x000 Symlink : <unnamed-tag>
- +0x000 target : (null)
- +0x008 set : 0x4 ''
- +0x000 Volume : <unnamed-tag>
- +0x000 query : 0 (No matching name)
- +0x000 Acl : <unnamed-tag>
- +0x000 query : 0
Crash in |SeImpersonateClientEx()|
Posted by Anonymous on Mon 6th May 2024 13:28
raw | new post
Submit a correction or amendment below (click here to make a fresh posting)
After submitting an amendment, you'll be able to view the differences between the old and new posts easily.