* BSOD in GPLPV rev928 in xennet.sys
@ 2011-06-08 18:38 Andreas Kinzler
2011-06-09 8:56 ` James Harper
0 siblings, 1 reply; 3+ messages in thread
From: Andreas Kinzler @ 2011-06-08 18:38 UTC (permalink / raw)
To: xen-devel@lists.xensource.com, James Harper
[-- Attachment #1: Type: text/plain, Size: 649 bytes --]
Hello James,
on Windows 2008 R2 SP1 I get a BSOD on GPLPV setup. After some analyzing
I found that it is a "null ptr read" in the call to
NdisFreeToNPagedLookasideList. File is xennet6_tx.c line 336.
length = XenNet_QueryData(&pi, coalesce_remaining);
va = NdisBufferVirtualAddressSafe(pi.curr_mdl, LowPagePriority);
if (!va)
{
KdPrint((__DRIVER_NAME " failed to map buffer va - partial
send\n"));
coalesce_remaining = 0;
remaining -= min(PAGE_SIZE, remaining);
NdisFreeToNPagedLookasideList(&xi->tx_lookaside_list,
coalesce_buf);
}
else
{
Regards Andreas
[-- Attachment #2: minilyzer_08.06.2011_19-44.log --]
[-- Type: text/plain, Size: 21079 bytes --]
Minilyzer 1.1 starting...
-----
Opened log file 'minilyzer_08.06.2011_19-44.log'
Microsoft (R) Windows Debugger Version 6.12.0002.633 AMD64
Copyright (c) Microsoft Corporation. All rights reserved.
Loading Dump File [y:\downloads\060811-21481-01.dmp]
Mini Kernel Dump File: Only registers and stack trace are available
Symbol search path is: srv*Minilyzer Debugging Symbols*http://msdl.microsoft.com/download/symbols
Executable search path is:
Windows 7 Kernel Version 7601 (Service Pack 1) MP (2 procs) Free x64
Product: Server, suite: TerminalServer SingleUserTS
Built by: 7601.17592.amd64fre.win7sp1_gdr.110408-1631
Machine Name:
Kernel base = 0xfffff800`01449000 PsLoadedModuleList = 0xfffff800`0168e650
Debug session time: Wed Jun 8 19:30:27.165 2011 (UTC + 2:00)
System Uptime: 0 days 0:03:48.196
Loading Kernel Symbols
...............................................................
................................................................
.
Loading User Symbols
Loading unloaded module list
....
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Use !analyze -v to get detailed debugging information.
BugCheck D1, {28, 2, 0, fffff88003d4ec94}
Unable to load image \SystemRoot\system32\DRIVERS\xennet.sys, Win32 error 0n2
*** WARNING: Unable to verify timestamp for xennet.sys
*** ERROR: Module load completed but symbols could not be loaded for xennet.sys
Probably caused by : xennet.sys ( xennet+5c94 )
Followup: MachineOwner
---------
0: kd> !analyze -v;r;kv;lmnt;q
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
DRIVER_IRQL_NOT_LESS_OR_EQUAL (d1)
An attempt was made to access a pageable (or completely invalid) address at an
interrupt request level (IRQL) that is too high. This is usually
caused by drivers using improper addresses.
If kernel debugger is available get stack backtrace.
Arguments:
Arg1: 0000000000000028, memory referenced
Arg2: 0000000000000002, IRQL
Arg3: 0000000000000000, value 0 = read operation, 1 = write operation
Arg4: fffff88003d4ec94, address which referenced memory
Debugging Details:
------------------
READ_ADDRESS: GetPointerFromAddress: unable to read from fffff800016f8100
0000000000000028
CURRENT_IRQL: 2
FAULTING_IP:
xennet+5c94
fffff880`03d4ec94 8b4228 mov eax,dword ptr [rdx+28h]
CUSTOMER_CRASH_COUNT: 1
DEFAULT_BUCKET_ID: DRIVER_FAULT_SERVER_MINIDUMP
BUGCHECK_STR: 0xD1
PROCESS_NAME: System
TRAP_FRAME: fffff88001ff1960 -- (.trap 0xfffff88001ff1960)
.trap 0xfffff88001ff1960
NOTE: The trap frame does not contain all registers.
Some register values may be zeroed or incorrect.
rax=fffff88001ff1b60 rbx=0000000000000000 rcx=0000000000000000
rdx=0000000000000000 rsi=0000000000000000 rdi=0000000000000000
rip=fffff88003d4ec94 rsp=fffff88001ff1af0 rbp=fffffa8002885530
r8=0000000000000065 r9=0000000000000000 r10=0000000000000000
r11=fffff88001ff1b00 r12=0000000000000000 r13=0000000000000000
r14=0000000000000000 r15=0000000000000000
iopl=0 nv up ei ng nz na po nc
xennet+0x5c94:
fffff880`03d4ec94 8b4228 mov eax,dword ptr [rdx+28h] ds:2370:00000000`00000028=????????
.trap
Resetting default scope
LAST_CONTROL_TRANSFER: from fffff800014c82a9 to fffff800014c8d00
STACK_TEXT:
fffff880`01ff1818 fffff800`014c82a9 : 00000000`0000000a 00000000`00000028 00000000`00000002 00000000`00000000 : nt!KeBugCheckEx
fffff880`01ff1820 fffff800`014c6f20 : 00000000`000007ff 00000000`0000045d fffff8a0`09be5390 fffffa80`02ee31a0 : nt!KiBugCheckDispatch+0x69
fffff880`01ff1960 fffff880`03d4ec94 : 00000001`00000001 00000001`00000001 fffffa80`02885530 fffff880`03d4fba8 : nt!KiPageFault+0x260
fffff880`01ff1af0 00000001`00000001 : 00000001`00000001 fffffa80`02885530 fffff880`03d4fba8 fffff880`01ff1b60 : xennet+0x5c94
fffff880`01ff1af8 00000001`00000001 : fffffa80`02885530 fffff880`03d4fba8 fffff880`01ff1b60 fffffa80`00001000 : 0x1`00000001
fffff880`01ff1b00 fffffa80`02885530 : fffff880`03d4fba8 fffff880`01ff1b60 fffffa80`00001000 fffffa80`02885530 : 0x1`00000001
fffff880`01ff1b08 fffff880`03d4fba8 : fffff880`01ff1b60 fffffa80`00001000 fffffa80`02885530 00000000`00000000 : 0xfffffa80`02885530
fffff880`01ff1b10 fffff880`01ff1b60 : fffffa80`00001000 fffffa80`02885530 00000000`00000000 00000000`00000000 : xennet+0x6ba8
fffff880`01ff1b18 fffffa80`00001000 : fffffa80`02885530 00000000`00000000 00000000`00000000 fffff800`0150956e : 0xfffff880`01ff1b60
fffff880`01ff1b20 fffffa80`02885530 : 00000000`00000000 00000000`00000000 fffff800`0150956e 00000058`00000000 : 0xfffffa80`00001000
fffff880`01ff1b28 00000000`00000000 : 00000000`00000000 fffff800`0150956e 00000058`00000000 fffff800`01500004 : 0xfffffa80`02885530
STACK_COMMAND: kb
FOLLOWUP_IP:
xennet+5c94
fffff880`03d4ec94 8b4228 mov eax,dword ptr [rdx+28h]
SYMBOL_STACK_INDEX: 3
SYMBOL_NAME: xennet+5c94
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: xennet
IMAGE_NAME: xennet.sys
DEBUG_FLR_IMAGE_TIMESTAMP: 4defaeca
FAILURE_BUCKET_ID: X64_0xD1_xennet+5c94
BUCKET_ID: X64_0xD1_xennet+5c94
Followup: MachineOwner
---------
rax=fffff88001ff1920 rbx=fffffa8002ee31a0 rcx=000000000000000a
rdx=0000000000000028 rsi=0000000000000000 rdi=fffffa8002885530
rip=fffff800014c8d00 rsp=fffff88001ff1818 rbp=fffff88001ff19e0
r8=0000000000000002 r9=0000000000000000 r10=fffff88003d4ec94
r11=0000000000000000 r12=0000000000000000 r13=fffff88003d508f0
r14=0000000000000000 r15=0000000000000000
iopl=0 nv up ei ng nz na pe nc
cs=0010 ss=0018 ds=002b es=002b fs=0053 gs=002b efl=00000282
nt!KeBugCheckEx:
fffff800`014c8d00 48894c2408 mov qword ptr [rsp+8],rcx ss:0018:fffff880`01ff1820=000000000000000a
Child-SP RetAddr : Args to Child : Call Site
fffff880`01ff1818 fffff800`014c82a9 : 00000000`0000000a 00000000`00000028 00000000`00000002 00000000`00000000 : nt!KeBugCheckEx
fffff880`01ff1820 fffff800`014c6f20 : 00000000`000007ff 00000000`0000045d fffff8a0`09be5390 fffffa80`02ee31a0 : nt!KiBugCheckDispatch+0x69
fffff880`01ff1960 fffff880`03d4ec94 : 00000001`00000001 00000001`00000001 fffffa80`02885530 fffff880`03d4fba8 : nt!KiPageFault+0x260 (TrapFrame @ fffff880`01ff1960)
fffff880`01ff1af0 00000001`00000001 : 00000001`00000001 fffffa80`02885530 fffff880`03d4fba8 fffff880`01ff1b60 : xennet+0x5c94
fffff880`01ff1af8 00000001`00000001 : fffffa80`02885530 fffff880`03d4fba8 fffff880`01ff1b60 fffffa80`00001000 : 0x1`00000001
fffff880`01ff1b00 fffffa80`02885530 : fffff880`03d4fba8 fffff880`01ff1b60 fffffa80`00001000 fffffa80`02885530 : 0x1`00000001
fffff880`01ff1b08 fffff880`03d4fba8 : fffff880`01ff1b60 fffffa80`00001000 fffffa80`02885530 00000000`00000000 : 0xfffffa80`02885530
fffff880`01ff1b10 fffff880`01ff1b60 : fffffa80`00001000 fffffa80`02885530 00000000`00000000 00000000`00000000 : xennet+0x6ba8
fffff880`01ff1b18 fffffa80`00001000 : fffffa80`02885530 00000000`00000000 00000000`00000000 fffff800`0150956e : 0xfffff880`01ff1b60
fffff880`01ff1b20 fffffa80`02885530 : 00000000`00000000 00000000`00000000 fffff800`0150956e 00000058`00000000 : 0xfffffa80`00001000
fffff880`01ff1b28 00000000`00000000 : 00000000`00000000 fffff800`0150956e 00000058`00000000 fffff800`01500004 : 0xfffffa80`02885530
start end module name
fffff800`01326000 fffff800`01330000 kdcom kdcom.dll Sat Feb 05 17:52:49 2011 (4D4D8061)
fffff800`01400000 fffff800`01449000 hal hal.dll Sat Nov 20 14:00:25 2010 (4CE7C669)
fffff800`01449000 fffff800`01a32000 nt ntkrnlmp.exe Sat Apr 09 06:15:23 2011 (4D9FDD5B)
fffff880`00c00000 fffff880`00c2a000 ataport ataport.SYS Sat Nov 20 10:19:15 2010 (4CE79293)
fffff880`00c41000 fffff880`00c90000 mcupdate_GenuineIntel mcupdate_GenuineIntel.dll Sat Nov 20 14:03:51 2010 (4CE7C737)
fffff880`00c90000 fffff880`00ca4000 PSHED PSHED.dll Tue Jul 14 03:32:23 2009 (4A5BE027)
fffff880`00ca4000 fffff880`00d02000 CLFS CLFS.SYS Tue Jul 14 01:19:57 2009 (4A5BC11D)
fffff880`00d02000 fffff880`00dc2000 CI CI.dll Sat Nov 20 14:12:36 2010 (4CE7C944)
fffff880`00dc2000 fffff880`00de8000 pacer pacer.sys Sat Nov 20 11:52:18 2010 (4CE7A862)
fffff880`00e00000 fffff880`00e5e000 msrpc msrpc.sys Sat Nov 20 10:21:56 2010 (4CE79334)
fffff880`00e5e000 fffff880`00ebe000 NETIO NETIO.SYS Sat Nov 20 10:23:13 2010 (4CE79381)
fffff880`00ebe000 fffff880`00ece000 PCIIDEX PCIIDEX.SYS Tue Jul 14 01:19:48 2009 (4A5BC114)
fffff880`00ee0000 fffff880`00fd3000 NDIS NDIS.SYS Sat Nov 20 10:23:30 2010 (4CE79392)
fffff880`00fd3000 fffff880`00fed000 mountmgr mountmgr.sys Sat Nov 20 10:19:21 2010 (4CE79299)
fffff880`00fed000 fffff880`00ff8000 amdxata amdxata.sys Fri Mar 19 17:18:18 2010 (4BA3A3CA)
fffff880`01000000 fffff880`01015000 partmgr partmgr.sys Sat Nov 20 10:20:00 2010 (4CE792C0)
fffff880`01015000 fffff880`0102a000 volmgr volmgr.sys Sat Nov 20 10:19:28 2010 (4CE792A0)
fffff880`0102a000 fffff880`01086000 volmgrx volmgrx.sys Sat Nov 20 10:20:43 2010 (4CE792EB)
fffff880`01086000 fffff880`0108e000 intelide intelide.sys Tue Jul 14 01:19:48 2009 (4A5BC114)
fffff880`0108e000 fffff880`01097000 atapi atapi.sys Tue Jul 14 01:19:47 2009 (4A5BC113)
fffff880`0109d000 fffff880`01141000 Wdf01000 Wdf01000.sys Tue Jul 14 01:22:07 2009 (4A5BC19F)
fffff880`01141000 fffff880`01150000 WDFLDR WDFLDR.SYS Tue Jul 14 01:19:54 2009 (4A5BC11A)
fffff880`01150000 fffff880`011a7000 ACPI ACPI.sys Sat Nov 20 10:19:16 2010 (4CE79294)
fffff880`011a7000 fffff880`011b0000 WMILIB WMILIB.SYS Tue Jul 14 01:19:51 2009 (4A5BC117)
fffff880`011b0000 fffff880`011ba000 msisadrv msisadrv.sys Tue Jul 14 01:19:26 2009 (4A5BC0FE)
fffff880`011ba000 fffff880`011ed000 pci pci.sys Sat Nov 20 10:19:11 2010 (4CE7928F)
fffff880`011ed000 fffff880`011fa000 vdrvroot vdrvroot.sys Tue Jul 14 02:01:31 2009 (4A5BCADB)
fffff880`01218000 fffff880`01264000 fltmgr fltmgr.sys Sat Nov 20 10:19:24 2010 (4CE7929C)
fffff880`01264000 fffff880`012d6000 cng cng.sys Sat Nov 20 11:08:45 2010 (4CE79E2D)
fffff880`012d6000 fffff880`01301000 ksecpkg ksecpkg.sys Sat Nov 20 11:10:34 2010 (4CE79E9A)
fffff880`01301000 fffff880`01323000 tdx tdx.sys Sat Nov 20 10:21:54 2010 (4CE79332)
fffff880`01323000 fffff880`013ac000 afd afd.sys Sat Nov 20 10:23:27 2010 (4CE7938F)
fffff880`013ac000 fffff880`013f1000 netbt netbt.sys Sat Nov 20 10:23:18 2010 (4CE79386)
fffff880`01400000 fffff880`0141b000 ksecdd ksecdd.sys Sat Nov 20 10:21:15 2010 (4CE7930B)
fffff880`0141b000 fffff880`0142c000 pcw pcw.sys Tue Jul 14 01:19:27 2009 (4A5BC0FF)
fffff880`0142c000 fffff880`01436000 Fs_Rec Fs_Rec.sys Tue Jul 14 01:19:45 2009 (4A5BC111)
fffff880`01436000 fffff880`01445000 netbios netbios.sys Tue Jul 14 02:09:26 2009 (4A5BCCB6)
fffff880`0144a000 fffff880`015ed000 Ntfs Ntfs.sys Fri Mar 11 04:39:39 2011 (4D79997B)
fffff880`01600000 fffff880`0162a000 cdrom cdrom.sys Sat Nov 20 10:19:20 2010 (4CE79298)
fffff880`0162a000 fffff880`01633000 Null Null.SYS Tue Jul 14 01:19:37 2009 (4A5BC109)
fffff880`01633000 fffff880`01641000 vga vga.sys Tue Jul 14 01:38:47 2009 (4A5BC587)
fffff880`01641000 fffff880`01666000 VIDEOPRT VIDEOPRT.SYS Tue Jul 14 01:38:51 2009 (4A5BC58B)
fffff880`01666000 fffff880`01676000 watchdog watchdog.sys Tue Jul 14 01:37:35 2009 (4A5BC53F)
fffff880`01676000 fffff880`0167f000 RDPCDD RDPCDD.sys Tue Jul 14 02:16:34 2009 (4A5BCE62)
fffff880`0167f000 fffff880`01688000 rdpencdd rdpencdd.sys Tue Jul 14 02:16:34 2009 (4A5BCE62)
fffff880`01688000 fffff880`01691000 rdprefmp rdprefmp.sys Tue Jul 14 02:16:35 2009 (4A5BCE63)
fffff880`01691000 fffff880`0169c000 Msfs Msfs.SYS Tue Jul 14 01:19:47 2009 (4A5BC113)
fffff880`0169c000 fffff880`016ad000 Npfs Npfs.SYS Tue Jul 14 01:19:48 2009 (4A5BC114)
fffff880`016af000 fffff880`018b3000 tcpip tcpip.sys Sat Nov 20 10:25:52 2010 (4CE79420)
fffff880`018b3000 fffff880`018fd000 fwpkclnt fwpkclnt.sys Sat Nov 20 10:21:37 2010 (4CE79321)
fffff880`018fd000 fffff880`0190d000 vmstorfl vmstorfl.sys Sat Nov 20 10:57:30 2010 (4CE79B8A)
fffff880`0190d000 fffff880`01959000 volsnap volsnap.sys Sat Nov 20 10:20:08 2010 (4CE792C8)
fffff880`01959000 fffff880`01961000 spldr spldr.sys Mon May 11 18:56:27 2009 (4A0858BB)
fffff880`01961000 fffff880`01973000 mup mup.sys Tue Jul 14 01:23:45 2009 (4A5BC201)
fffff880`01973000 fffff880`0197c000 hwpolicy hwpolicy.sys Sat Nov 20 10:18:54 2010 (4CE7927E)
fffff880`0197c000 fffff880`01992000 disk disk.sys Tue Jul 14 01:19:57 2009 (4A5BC11D)
fffff880`01992000 fffff880`019c2000 CLASSPNP CLASSPNP.SYS Sat Nov 20 10:19:23 2010 (4CE7929B)
fffff880`019e5000 fffff880`019f2000 TDI TDI.SYS Sat Nov 20 10:22:06 2010 (4CE7933E)
fffff880`019f2000 fffff880`019fb000 wfplwf wfplwf.sys Tue Jul 14 02:09:26 2009 (4A5BCCB6)
fffff880`02600000 fffff880`0261d000 parport parport.sys Tue Jul 14 02:00:40 2009 (4A5BCAA8)
fffff880`0261d000 fffff880`0262a000 usbuhci usbuhci.sys Tue Jul 14 02:06:27 2009 (4A5BCC03)
fffff880`0262a000 fffff880`02657000 mrxsmb mrxsmb.sys Wed Feb 23 05:56:22 2011 (4D649376)
fffff880`0267f000 fffff880`0269a000 wanarp wanarp.sys Sat Nov 20 11:52:36 2010 (4CE7A874)
fffff880`0269a000 fffff880`026ae000 termdd termdd.sys Sat Nov 20 12:03:40 2010 (4CE7AB0C)
fffff880`026ae000 fffff880`026ff000 rdbss rdbss.sys Sat Nov 20 10:27:51 2010 (4CE79497)
fffff880`026ff000 fffff880`0270b000 nsiproxy nsiproxy.sys Tue Jul 14 01:21:02 2009 (4A5BC15E)
fffff880`0270b000 fffff880`02716000 mssmbios mssmbios.sys Tue Jul 14 01:31:10 2009 (4A5BC3BE)
fffff880`02716000 fffff880`02725000 discache discache.sys Tue Jul 14 01:37:18 2009 (4A5BC52E)
fffff880`02725000 fffff880`02743000 dfsc dfsc.sys Sat Nov 20 10:26:31 2010 (4CE79447)
fffff880`02743000 fffff880`02754000 blbdrive blbdrive.sys Tue Jul 14 01:35:59 2009 (4A5BC4DF)
fffff880`02754000 fffff880`0277a000 tunnel tunnel.sys Sat Nov 20 11:51:50 2010 (4CE7A846)
fffff880`0277a000 fffff880`02798000 i8042prt i8042prt.sys Tue Jul 14 01:19:57 2009 (4A5BC11D)
fffff880`02798000 fffff880`027a7000 mouclass mouclass.sys Tue Jul 14 01:19:50 2009 (4A5BC116)
fffff880`027a7000 fffff880`027b6000 kbdclass kbdclass.sys Tue Jul 14 01:19:50 2009 (4A5BC116)
fffff880`027b6000 fffff880`027c3000 fdc fdc.sys Tue Jul 14 02:00:54 2009 (4A5BCAB6)
fffff880`027c3000 fffff880`027e0000 serial serial.sys Tue Jul 14 02:00:40 2009 (4A5BCAA8)
fffff880`027e0000 fffff880`027ec000 serenum serenum.sys Tue Jul 14 02:00:33 2009 (4A5BCAA1)
fffff880`02800000 fffff880`0282f000 ndiswan ndiswan.sys Sat Nov 20 11:52:32 2010 (4CE7A870)
fffff880`0282f000 fffff880`0284a000 raspppoe raspppoe.sys Tue Jul 14 02:10:17 2009 (4A5BCCE9)
fffff880`0284a000 fffff880`0286b000 raspptp raspptp.sys Sat Nov 20 11:52:31 2010 (4CE7A86F)
fffff880`0286b000 fffff880`02885000 rassstp rassstp.sys Tue Jul 14 02:10:25 2009 (4A5BCCF1)
fffff880`02885000 fffff880`02890000 rdpbus rdpbus.sys Tue Jul 14 02:17:46 2009 (4A5BCEAA)
fffff880`02890000 fffff880`02891480 swenum swenum.sys Tue Jul 14 02:00:18 2009 (4A5BCA92)
fffff880`02892000 fffff880`028d5000 ks ks.sys Sat Nov 20 11:33:23 2010 (4CE7A3F3)
fffff880`028d5000 fffff880`028e7000 umbus umbus.sys Sat Nov 20 11:44:37 2010 (4CE7A695)
fffff880`028e8000 fffff880`0293e000 USBPORT USBPORT.SYS Sat Nov 20 11:44:00 2010 (4CE7A670)
fffff880`0293e000 fffff880`0294c000 vgapnp vgapnp.sys Tue Jul 14 01:38:47 2009 (4A5BC587)
fffff880`0294c000 fffff880`0296f980 E1G6032E E1G6032E.sys Thu May 29 01:14:51 2008 (483DE76B)
fffff880`02970000 fffff880`02986000 intelppm intelppm.sys Tue Jul 14 01:19:25 2009 (4A5BC0FD)
fffff880`02986000 fffff880`02996000 CompositeBus CompositeBus.sys Sat Nov 20 11:33:17 2010 (4CE7A3ED)
fffff880`02996000 fffff880`029ac000 AgileVpn AgileVpn.sys Tue Jul 14 02:10:24 2009 (4A5BCCF0)
fffff880`029ac000 fffff880`029d0000 rasl2tp rasl2tp.sys Sat Nov 20 11:52:34 2010 (4CE7A872)
fffff880`029d0000 fffff880`029dc000 ndistapi ndistapi.sys Tue Jul 14 02:10:00 2009 (4A5BCCD8)
fffff880`02a00000 fffff880`02a1e000 bowser bowser.sys Wed Feb 23 05:55:04 2011 (4D649328)
fffff880`02a1e000 fffff880`02a36000 mpsdrv mpsdrv.sys Tue Jul 14 02:08:25 2009 (4A5BCC79)
fffff880`02a56000 fffff880`02ab0000 usbhub usbhub.sys Sat Nov 20 11:44:30 2010 (4CE7A68E)
fffff880`02ab0000 fffff880`02ac5000 NDProxy NDProxy.SYS Sat Nov 20 11:52:20 2010 (4CE7A864)
fffff880`02ac5000 fffff880`02b1a000 udfs udfs.sys Sat Nov 20 10:26:11 2010 (4CE79433)
fffff880`02b1a000 fffff880`02b28000 crashdmp crashdmp.sys Tue Jul 14 02:01:01 2009 (4A5BCABD)
fffff880`02b28000 fffff880`02b34000 dump_dumpata dump_dumpata.sys Tue Jul 14 01:19:47 2009 (4A5BC113)
fffff880`02b34000 fffff880`02b3d000 dump_atapi dump_atapi.sys Tue Jul 14 01:19:47 2009 (4A5BC113)
fffff880`02b3d000 fffff880`02b49000 Dxapi Dxapi.sys Tue Jul 14 01:38:28 2009 (4A5BC574)
fffff880`02b49000 fffff880`02b57000 hidusb hidusb.sys Sat Nov 20 11:43:49 2010 (4CE7A665)
fffff880`02b57000 fffff880`02b70000 HIDCLASS HIDCLASS.SYS Sat Nov 20 11:43:49 2010 (4CE7A665)
fffff880`02b70000 fffff880`02b78080 HIDPARSE HIDPARSE.SYS Tue Jul 14 02:06:17 2009 (4A5BCBF9)
fffff880`02b79000 fffff880`02b7af00 USBD USBD.SYS Tue Jul 14 02:06:23 2009 (4A5BCBFF)
fffff880`02b7b000 fffff880`02b88000 mouhid mouhid.sys Tue Jul 14 02:00:20 2009 (4A5BCA94)
fffff880`02b88000 fffff880`02b96000 monitor monitor.sys Tue Jul 14 01:38:52 2009 (4A5BC58C)
fffff880`02b96000 fffff880`02bb9000 luafv luafv.sys Tue Jul 14 01:26:13 2009 (4A5BC295)
fffff880`02bb9000 fffff880`02bce000 lltdio lltdio.sys Tue Jul 14 02:08:50 2009 (4A5BCC92)
fffff880`02bce000 fffff880`02be6000 rspndr rspndr.sys Tue Jul 14 02:08:50 2009 (4A5BCC92)
fffff880`03400000 fffff880`034a6000 peauth peauth.sys Tue Jul 14 03:01:19 2009 (4A5BD8DF)
fffff880`034a6000 fffff880`034f3000 mrxsmb10 mrxsmb10.sys Wed Feb 23 05:55:12 2011 (4D649330)
fffff880`034f3000 fffff880`03517000 mrxsmb20 mrxsmb20.sys Wed Feb 23 05:55:12 2011 (4D649330)
fffff880`03517000 fffff880`035e0000 HTTP HTTP.sys Sat Nov 20 10:24:30 2010 (4CE793CE)
fffff880`035e0000 fffff880`035eb000 secdrv secdrv.SYS Wed Sep 13 15:18:38 2006 (4508052E)
fffff880`03850000 fffff880`03881000 srvnet srvnet.sys Wed Feb 23 05:55:44 2011 (4D649350)
fffff880`03881000 fffff880`03893000 tcpipreg tcpipreg.sys Sat Nov 20 11:51:48 2010 (4CE7A844)
fffff880`03893000 fffff880`038fd000 srv2 srv2.sys Wed Feb 23 05:56:00 2011 (4D649360)
fffff880`038fd000 fffff880`03995000 srv srv.sys Wed Feb 23 05:56:21 2011 (4D649375)
fffff880`03c25000 fffff880`03c96000 spsys spsys.sys Mon May 11 19:20:58 2009 (4A085E7A)
fffff880`03c96000 fffff880`03cba000 xenpci xenpci.sys Wed Jun 08 19:18:02 2011 (4DEFAECA)
fffff880`03cba000 fffff880`03ce6000 xenvbd xenvbd.sys Wed Jun 08 19:18:02 2011 (4DEFAECA)
fffff880`03ce6000 fffff880`03d49000 storport storport.sys Fri Mar 11 05:30:23 2011 (4D79A55F)
fffff880`03d49000 fffff880`03d5f000 xennet xennet.sys Wed Jun 08 19:18:02 2011 (4DEFAECA)
fffff960`000d0000 fffff960`003e2000 win32k win32k.sys unavailable (00000000)
fffff960`005b0000 fffff960`005ce000 dxg dxg.sys unavailable (00000000)
fffff960`007d0000 fffff960`007da000 TSDDD TSDDD.dll unavailable (00000000)
fffff960`00880000 fffff960`00889000 framebuf framebuf.dll unavailable (00000000)
Unloaded modules:
fffff880`019c2000 fffff880`019d0000 crashdmp.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
ImageSize: 0000E000
fffff880`019d0000 fffff880`019dc000 dump_ataport
Timestamp: unavailable (00000000)
Checksum: 00000000
ImageSize: 0000C000
fffff880`019dc000 fffff880`019e5000 dump_atapi.s
Timestamp: unavailable (00000000)
Checksum: 00000000
ImageSize: 00009000
fffff880`00dc2000 fffff880`00ddd000 sacdrv.sys
Timestamp: unavailable (00000000)
Checksum: 00000000
ImageSize: 0001B000
quit:
-----
Minilyzer 1.1 analysis of 060811-21481-01.dmp complete!
DEFAULT_BUCKET_ID: DRIVER_FAULT_SERVER_MINIDUMP
MODULE_NAME: xennet
IMAGE_NAME: xennet.sys
[-- Attachment #3: Type: text/plain, Size: 138 bytes --]
_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xensource.com
http://lists.xensource.com/xen-devel
^ permalink raw reply [flat|nested] 3+ messages in thread
* RE: BSOD in GPLPV rev928 in xennet.sys
2011-06-08 18:38 BSOD in GPLPV rev928 in xennet.sys Andreas Kinzler
@ 2011-06-09 8:56 ` James Harper
2011-06-10 8:44 ` Andreas Kinzler
0 siblings, 1 reply; 3+ messages in thread
From: James Harper @ 2011-06-09 8:56 UTC (permalink / raw)
To: Andreas Kinzler, xen-devel
> -----Original Message-----
> From: Andreas Kinzler [mailto:ml-xen-devel@hfp.de]
> Sent: Thursday, 9 June 2011 04:38
> To: xen-devel@lists.xensource.com; James Harper
> Subject: BSOD in GPLPV rev928 in xennet.sys
>
> Hello James,
>
> on Windows 2008 R2 SP1 I get a BSOD on GPLPV setup. After some
analyzing
> I found that it is a "null ptr read" in the call to
> NdisFreeToNPagedLookasideList. File is xennet6_tx.c line 336.
>
> length = XenNet_QueryData(&pi, coalesce_remaining);
> va = NdisBufferVirtualAddressSafe(pi.curr_mdl,
LowPagePriority);
> if (!va)
> {
> KdPrint((__DRIVER_NAME " failed to map buffer va -
partial
> send\n"));
> coalesce_remaining = 0;
> remaining -= min(PAGE_SIZE, remaining);
> NdisFreeToNPagedLookasideList(&xi->tx_lookaside_list,
> coalesce_buf);
> }
> else
> {
>
I can't see how that situation could arise without there being some
memory corruption somewhere... coalesce_buf is checked for NULL before
the call to NdiFreeToNPageLookasideList. Did you get the "Failed to map
buffer va - partial send" message in the logs?
James
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: RE: BSOD in GPLPV rev928 in xennet.sys
2011-06-09 8:56 ` James Harper
@ 2011-06-10 8:44 ` Andreas Kinzler
0 siblings, 0 replies; 3+ messages in thread
From: Andreas Kinzler @ 2011-06-10 8:44 UTC (permalink / raw)
To: xen-devel, James Harper
>> -----Original Message-----
>> From: Andreas Kinzler [mailto:ml-xen-devel@hfp.de]
>> Sent: Thursday, 9 June 2011 04:38
>> To: xen-devel@lists.xensource.com; James Harper
>> Subject: BSOD in GPLPV rev928 in xennet.sys
>>
>> Hello James,
>>
>> on Windows 2008 R2 SP1 I get a BSOD on GPLPV setup. After some
> analyzing
>> I found that it is a "null ptr read" in the call to
>> NdisFreeToNPagedLookasideList. File is xennet6_tx.c line 336.
>>
>> length = XenNet_QueryData(&pi, coalesce_remaining);
>> va = NdisBufferVirtualAddressSafe(pi.curr_mdl,
> LowPagePriority);
>> if (!va)
>> {
>> KdPrint((__DRIVER_NAME " failed to map buffer va -
> partial
>> send\n"));
>> coalesce_remaining = 0;
>> remaining -= min(PAGE_SIZE, remaining);
>> NdisFreeToNPagedLookasideList(&xi->tx_lookaside_list,
>> coalesce_buf);
>> }
>> else
>> {
>>
> I can't see how that situation could arise without there being some
> memory corruption somewhere... coalesce_buf is checked for NULL before
> the call to NdiFreeToNPageLookasideList. Did you get the "Failed to map
> buffer va - partial send" message in the logs?
I am not running any debuggers, I got the information from analyzing
disassembled code listings and the minidump. I may have a look at
debuggers (my time is somewhat limited).
Would you consider the rev928 version stable? What is the latest stable
version in your opinion?
Regards Andreas
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2011-06-10 8:44 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2011-06-08 18:38 BSOD in GPLPV rev928 in xennet.sys Andreas Kinzler
2011-06-09 8:56 ` James Harper
2011-06-10 8:44 ` Andreas Kinzler
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).