Major Description
The test allocates a SEC_BASED section. Ntoskrnl fails to allocate twice the same global address.
Backtrace :
#0 0x80910c13 in MiRightChildAvl (Node=0x1) at ../../ntoskrnl/mm/ARM3/miavl.h:118
#1 MiFindEmptyAddressRangeDownBasedTree@20 (Length=4096, BoundaryAddress=2139029503, Alignment=65536, Table=0x80a5f5c0, Base=0xe1087254) at ../../ntoskrnl/mm/ARM3/vadnode.c:736
#2 0x808fefdf in MmCreateArm3Section@32 (SectionObject=0xf9703bdc, DesiredAccess=983071, ObjectAttributes=0x0, InputMaximumSize=0xf9703be0, SectionPageProtection=4, AllocationAttributes=136314880, FileHandle=0x0, FileObject=0x0) at ../../ntoskrnl/mm/ARM3/section.c:2692
#3 0x8093dea2 in MmCreateSection@32 (Section=0xf9703bdc, DesiredAccess=983071, ObjectAttributes=0x0, MaximumSize=0xf9703be0, SectionPageProtection=4, AllocationAttributes=136314880, FileHandle=0x0, FileObject=0x0) at ../../ntoskrnl/mm/section.c:4971
#4 0x80901bf0 in NtCreateSection@28 (SectionHandle=0x22fd60, DesiredAccess=983071, ObjectAttributes=0x0, MaximumSize=0xf9703be0, SectionPageProtection=4, AllocationAttributes=136314880, FileHandle=0x0) at ../../ntoskrnl/mm/ARM3/section.c:3342
#5 0x8099fc1f in KiSystemCallTrampoline (StackBytes=28, Arguments=0x22fd10, Handler=0x8090186f <NtCreateSection@28>) at ../../ntoskrnl/include/internal/i386/ke.h:706
#6 @KiSystemServiceHandler@8 (TrapFrame=0xf9703d64, Arguments=0x22fd10) at ../../ntoskrnl/ke/i386/traphdlr.c:1738
#7 0x80803dae in KiFastCallEntry () at ../../ntoskrnl/ke/i386/trap.s:152
#8 0x0022fd80 in ?? ()
#9 0x7c92f696 in ?? ()
Backtrace stopped: previous frame inner to this frame (corrupt stack?)
The AVL Table is corrupt :
frame 0
#0 0x80910c13 in MiRightChildAvl (Node=0x1) at ../../ntoskrnl/mm/ARM3/miavl.h:118
118 return Node->RightChild;
x Node
0x1: Cannot access memory at address 0x1