ReactOS in Hyper-V running on: Microsoft Windows [Version 10.0.19025.1051] =========================================== Microsoft (R) Windows Debugger Version 10.0.19494.1001 AMD64 Copyright (c) Microsoft Corporation. All rights reserved. Opened \\.\pipe\ReactOS Waiting to reconnect... (ntoskrnl\kd64\kdinit.c:74) ----------------------------------------------------- (ntoskrnl\kd64\kdinit.c:75) ReactOS 0.4.14-dev (Build 20191125-0.4.14-dev-451-g04c8ed4) (Commit 04c8ed493d48c05c26e81aa9fd498becbee03820) (ntoskrnl\kd64\kdinit.c:76) 1 System Processor [256 MB Memory] (ntoskrnl\kd64\kdinit.c:80) Command Line: DEBUG DEBUGPORT=COM1 BAUDRATE=115200 SOS MININT RDPATH=LIVECD\LIVECD.ISO RDEXPORTASCD (ntoskrnl\kd64\kdinit.c:81) ARC Paths: ramdisk(0) \ ramdisk(0) \reactos\ Connected to Windows Server 2003 3790 x86 compatible target at (Tue Nov 26 16:44:07.917 2019 (UTC + 1:00)), ptr64 FALSE Kernel Debugger connection established. (Initial Breakpoint requested) ************* Path validation summary ************** Response Time (ms) Location Deferred srv* Symbol search path is: srv* Executable search path is: Windows Server 2003 Kernel Version 3790 UP Checked x86 compatible Built by: 20191125-0.4.14-dev-451-g04c8ed4.MSVC_19.23.28107.0 Machine Name: Kernel base = 0x80400000 PsLoadedModuleList = 0x805db320 System Uptime: not available nt!DebugService2+0xe: 8056e84a cc int 3 kd> .sympath Symbol search path is: srv* Expanded Symbol search path is: cache*;SRV*https://msdl.microsoft.com/download/symbols ************* Path validation summary ************** Response Time (ms) Location Deferred srv* kd> .sympath D:\rosbuild\x86_MSVC\msvc_pdb;cache*;SRV*https://msdl.microsoft.com/download/symbols Symbol search path is: D:\rosbuild\x86_MSVC\msvc_pdb;cache*;SRV*https://msdl.microsoft.com/download/symbols Expanded Symbol search path is: d:\rosbuild\x86_msvc\msvc_pdb;cache*;srv*https://msdl.microsoft.com/download/symbols ************* Path validation summary ************** Response Time (ms) Location OK D:\rosbuild\x86_MSVC\msvc_pdb Deferred cache* Deferred SRV*https://msdl.microsoft.com/download/symbols kd> .reload Connected to Windows Server 2003 3790 x86 compatible target at (Tue Nov 26 16:44:48.197 2019 (UTC + 1:00)), ptr64 FALSE Loading Kernel Symbols ............................. Loading User Symbols Loading unloaded module list Unable to enumerate kernel-mode unloaded modules, HRESULT 0x80004005 kd> g (ntoskrnl\ke\i386\cpu.c:450) Supported CPU features : KF_V86_VIS KF_RDTSC KF_CR4 KF_CMOV KF_GLOBAL_PAGE KF_LARGE_PAGE KF_MTRR KF_CMPXCHG8B KF_MMX KF_WORKING_PTE KF_PAT KF_FXSR KF_FAST_SYSCALL KF_XMMI KF_XMMI64 KF_NX_BIT (ntoskrnl\ke\i386\cpu.c:722) Prefetch Cache: 64 bytes L2 Cache: 0 bytes L2 Cache Line: 64 bytes L2 Cache Associativity: 0 (ntoskrnl\mm\ARM3\mminit.c:1452) HAL I/O Mapping at FFFE0000 is unsafe (ntoskrnl\ke\i386\kiinit.c:252) Sampling CPU frequency failed. Using average of 3668 MHz (ntoskrnl\mm\mminit.c:131) 0x80000000 - 0x90000000 Boot Loaded Image (ntoskrnl\mm\mminit.c:135) 0xB0000000 - 0xB01C1000 PFN Database (ntoskrnl\mm\mminit.c:139) 0xB01C1000 - 0xB0329000 ARM3 Non Paged Pool (ntoskrnl\mm\mminit.c:143) 0xB9400000 - 0xBB400000 System View Space (ntoskrnl\mm\mminit.c:147) 0xBB400000 - 0xC0000000 Session Space (ntoskrnl\mm\mminit.c:150) 0xC0000000 - 0xC03FFFFF Page Tables (ntoskrnl\mm\mminit.c:153) 0xC0300000 - 0xC0300FFF Page Directories (ntoskrnl\mm\mminit.c:156) 0xC0400000 - 0xC07FFFFF Hyperspace (ntoskrnl\mm\mminit.c:159) 0xC1000000 - 0xE0FFFFFF System Cache (ntoskrnl\mm\mminit.c:163) 0xE1000000 - 0xE3400000 ARM3 Paged Pool (ntoskrnl\mm\mminit.c:166) 0xF9400000 - 0xFEC15000 System PTE Space (ntoskrnl\mm\mminit.c:169) 0xFEC15000 - 0xFFBE0000 Non Paged Pool Expansion PTE Space (ntoskrnl\config\cmcheck.c:25) CmCheckRegistry(0xB02D9008, 2) is UNIMPLEMENTED! (hal\halx86\legacy\bussupp.c:728) Found parent bus (indicating PCI Bridge). PCI devices may fail! ====== PCI BUS HARDWARE DETECTION ======= 00:00.0 Host bridge [0600]: Intel Corporation 440BX/ZX/DX - 82443BX/ZX/DX Host bridge (AGP disabled) [8086:7192] (rev 03) Subsystem: Unknown [0000:0000] Flags: bus master, medium devsel, latency 0 Device has Extended Address Decoding. It may fail to work on older BIOSes! 00:07.0 ISA bridge [0601]: Intel Corporation 82371AB/EB/MB PIIX4 ISA [8086:7110] (rev 01) Subsystem: Unknown [1414:0000] Flags: bus master, medium devsel, latency 0 Found HackFlags for your chipset Hack Flags: 1 (Hack Revision: 0-Your Revision: 1) No HackFlags for your chipset's revision! 00:07.1 IDE interface [0101]: Intel Corporation 82371AB/EB/MB PIIX4 IDE [8086:7111] (rev 01) Subsystem: Unknown [0000:0000] Flags: bus master, medium devsel, latency 0 I/O ports at ffa0 [size=32] 00:07.3 Bridge [0680]: Intel Corporation 82371AB/EB/MB PIIX4 ACPI [8086:7113] (rev 02) Subsystem: Unknown [0000:0000] Flags: medium devsel, latency 0, IRQ assignment required 00:08.0 VGA compatible controller [0300]: Microsoft Corporation Hyper-V virtual VGA [1414:5353] (rev 00) Subsystem: Unknown [0000:0000] Flags: bus master, fast devsel, latency 0, IRQ 11 Memory at f8000000 (32-bit, non-prefetchable) [size=128M] Device is using IRQ 11! ISA Cards using that IRQ may fail! ====== PCI BUS DETECTION COMPLETE ======= PC Compatible Eisa/Isa HAL Detected (sdk\lib\rtl\image.c:172) Invalid base address: 00000000 (ntoskrnl\io\iomgr\driver.c:1635) '\Driver\SACDRV' initialization failed, status (0xc0000037) (ntoskrnl\io\iomgr\driver.c:64) Deleting driver object '\Driver\SACDRV' (drivers\storage\scsiport\scsiport.c:5859) ZwOpenKey() failed with Status=0xC0000034 (hal\halx86\legacy\bussupp.c:1274) Slot assignment for 5 on bus 0 (hal\halx86\legacy\bus\pcibus.c:742) WARNING: PCI Slot Resource Assignment is FOOBAR (ntoskrnl\io\iomgr\iorsrce.c:874) IoReportResourceUsage is halfplemented! (ntoskrnl\io\iomgr\iorsrce.c:874) IoReportResourceUsage is halfplemented! (ntoskrnl\io\iomgr\driver.c:1635) '\Driver\BUSLOGIC' initialization failed, status (0xc00000c0) (ntoskrnl\io\iomgr\driver.c:64) Deleting driver object '\Driver\BUSLOGIC' (drivers\storage\scsiport\scsiport.c:2890) got ioctl intended for the mount manager: 0x4D0018 WARNING: ScsiClassDeviceControl at drivers\storage\class\class2\class2.c:3731 is UNIMPLEMENTED! (drivers\storage\scsiport\scsiport.c:2890) got ioctl intended for the mount manager: 0x4DC010 (drivers\storage\scsiport\scsiport.c:2890) got ioctl intended for the mount manager: 0x4D0010 (drivers\storage\scsiport\scsiport.c:2890) got ioctl intended for the mount manager: 0x4D0004 (drivers\storage\class\cdrom\cdrom.c:849) Reported to the MountMgr: 0 (drivers\storage\scsiport\scsiport.c:2894) unknown ioctl code: 0x560038 (drivers\storage\scsiport\scsiport.c:2894) unknown ioctl code: 0x2D1080 (drivers\storage\scsiport\scsiport.c:2890) got ioctl intended for the mount manager: 0x4D0018 WARNING: ScsiClassDeviceControl at drivers\storage\class\class2\class2.c:3731 is UNIMPLEMENTED! (drivers\storage\scsiport\scsiport.c:2890) got ioctl intended for the mount manager: 0x4DC010 (drivers\storage\scsiport\scsiport.c:2890) got ioctl intended for the mount manager: 0x4D0010 (drivers\storage\scsiport\scsiport.c:2894) unknown ioctl code: 0x56C008 (drivers\storage\scsiport\scsiport.c:2890) got ioctl intended for the mount manager: 0x4D0004 (drivers\storage\class\disk\disk.c:1185) Reported to the MountMgr: 0 (drivers\ksfilter\swenum\swenum.c:428) SWENUM loaded (ntoskrnl\mm\ARM3\sysldr.c:2990) ZwOpenFile failed for '\SystemRoot\system32\drivers\vbemp.sys' with status 0xc000003a (ntoskrnl\mm\ARM3\sysldr.c:2990) ZwOpenFile failed for '\SystemRoot\system32\drivers\vbemp.sys' with status 0xc000003a (drivers\storage\class\ramdisk\ramdisk.c:1337) IOCTL: 0x24054 is UNSUPPORTED! (drivers\storage\class\ramdisk\ramdisk.c:1337) IOCTL: 0x24038 is UNSUPPORTED! (ntoskrnl\cc\pin.c:107) Mapping/pinning with no read not implemented. Forcing read, might fail if wait not allowed (drivers\storage\class\ramdisk\ramdisk.c:1337) IOCTL: 0x41010 is UNSUPPORTED! (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\vbemp.sys at FE909000 with 9 pages (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\videoprt.sys at FE8ED000 with 1c pages (ntoskrnl\io\pnpmgr\pnpinit.c:314) IopOpenRegistryKeyEx() failed for '{4D36E968-E325-11CE-BFC1-08002BE10318}' with status 0xc0000034 (hal\halx86\legacy\bus\pcibus.c:713) HAL: No PCI Resource Adjustment done! Hardware may malfunction (ntoskrnl\io\iomgr\driver.c:358) IopOpenRegistryKeyEx() failed for 'i8042prt' with status 0xc0000034 (ntoskrnl\io\iomgr\driver.c:358) IopOpenRegistryKeyEx() failed for 'i8042prt' with status 0xc0000034 (ntoskrnl\io\iomgr\driver.c:358) IopOpenRegistryKeyEx() failed for 'i8042prt' with status 0xc0000034 (ntoskrnl\io\iomgr\driver.c:358) IopOpenRegistryKeyEx() failed for 'i8042prt' with status 0xc0000034 (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\floppy.sys at FE8D8000 with 15 pages (drivers\storage\class\ramdisk\ramdisk.c:2114) Illegal IRP: d (drivers\storage\class\ramdisk\ramdisk.c:2114) Illegal IRP: 14 (ntoskrnl\io\pnpmgr\pnpmgr.c:670) No service! (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\fs_rec.sys at FE8CB000 with 9 pages (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\null.sys at FE8C4000 with 7 pages (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\beep.sys at FE8BD000 with 7 pages (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\mouclass.sys at FE8B3000 with a pages (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\kbdclass.sys at FE8A9000 with a pages (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\blue.sys at FE89F000 with a pages (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\vgamp.sys at FE898000 with 7 pages (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\msfs.sys at FE890000 with 8 pages (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\npfs.sys at FE87E000 with 12 pages (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\ndisuio.sys at FE874000 with a pages (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\afd.sys at FE85A000 with 1a pages (drivers\storage\scsiport\scsiport.c:2894) unknown ioctl code: 0x24054 (drivers\storage\scsiport\scsiport.c:2894) unknown ioctl code: 0x24000 (drivers\storage\scsiport\scsiport.c:2894) unknown ioctl code: 0x24038 (drivers\storage\class\ramdisk\ramdisk.c:1337) IOCTL: 0x4d0008 is UNSUPPORTED! (drivers\storage\scsiport\scsiport.c:2894) unknown ioctl code: 0x2D1080 (drivers\storage\scsiport\scsiport.c:2894) unknown ioctl code: 0x560038 (drivers\storage\scsiport\scsiport.c:2890) got ioctl intended for the mount manager: 0x4DC010 (drivers\storage\scsiport\scsiport.c:2890) got ioctl intended for the mount manager: 0x4D0010 (drivers\storage\scsiport\scsiport.c:2890) got ioctl intended for the mount manager: 0x4DC010 (drivers\storage\scsiport\scsiport.c:2890) got ioctl intended for the mount manager: 0x4D0010 (drivers\storage\class\ramdisk\ramdisk.c:1337) IOCTL: 0x4d0008 is UNSUPPORTED! (drivers\storage\scsiport\scsiport.c:2894) unknown ioctl code: 0x56C008 WARNING: RtlCreateTagHeap at sdk\lib\rtl\heap.c:3890 is UNIMPLEMENTED! (base\system\smss\smss.c:242) SMSS: SmpParseCommandLine( ) failed - Status == c0000001 Boot took 528277516547 cycles! Interrupts: 3386 System Calls: 9829 Context Switches: 380 (ntoskrnl\config\cmsysini.c:1184) CmpGetRegistryPath: ConfigPath = '\SystemRoot\System32\Config\' (ntoskrnl\config\cmsysini.c:1184) CmpGetRegistryPath: ConfigPath = '\SystemRoot\System32\Config\' (ntoskrnl\config\cmsysini.c:1184) CmpGetRegistryPath: ConfigPath = '\SystemRoot\System32\Config\' (ntoskrnl\config\cmcheck.c:25) CmCheckRegistry(0xB0253008, 0) is UNIMPLEMENTED! (ntoskrnl\config\cmsysini.c:1184) CmpGetRegistryPath: ConfigPath = '\SystemRoot\System32\Config\' (ntoskrnl\config\cmcheck.c:25) CmCheckRegistry(0xB0251008, 0) is UNIMPLEMENTED! (ntoskrnl\config\cmsysini.c:1184) CmpGetRegistryPath: ConfigPath = '\SystemRoot\System32\Config\' (ntoskrnl\config\cmsysini.c:1184) CmpGetRegistryPath: ConfigPath = '\SystemRoot\System32\Config\' (ntoskrnl\config\cmcheck.c:25) CmCheckRegistry(0xB024E008, 0) is UNIMPLEMENTED! (ntoskrnl\config\cmsysini.c:1184) CmpGetRegistryPath: ConfigPath = '\SystemRoot\System32\Config\' (ntoskrnl\config\cmcheck.c:25) CmCheckRegistry(0xB024C008, 0) is UNIMPLEMENTED! (ntoskrnl\mm\ARM3\session.c:790) Session 0 is ready to go: 0xBF7F0000 0xFE82F000, 1f0f 0xB024CE00 (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\System32\win32k.sys at FE681000 with 1ae pages (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\System32\ftfd.dll at FE5B7000 with ca pages (win32ss\gdi\ntgdi\freetype.c:691) Fonts registry is empty. (win32ss\gdi\ntgdi\freetype.c:1612) Could not load font file: \SystemRoot\Fonts\. (win32ss\gdi\ntgdi\freetype.c:1612) Could not load font file: \SystemRoot\Fonts\.. (dll\win32\kernel32\client\loader.c:386) LoadLibraryExW(\??\X:\reactos\system32\csrss.exe) failing with status c000000f (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\System32\framebuf.dll at FE59F000 with 7 pages (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\System32\vgaddi.dll at FE591000 with e pages VGADDIDrvEnableDriver called... (win32ss\user\ntuser\winsta.c:241) err: Invalid window station handle (win32ss\user\ntuser\clipboard.c:31) err: Cannot open winsta (dll\win32\kernel32\client\loader.c:386) LoadLibraryExW(\??\X:\reactos\System32\winlogon.exe) failing with status c000000f err:(base\system\winlogon\winlogon.c:167) WL: RegOpenKeyExW("HKLM\System\CurrentControlSet\Services\Tcpip\Parameters") failed (error 2) (win32ss\user\ntuser\winsta.c:501) err: Initializing input window station (win32ss\user\ntuser\class.c:2335) err: SYSTEMCUR(ARROW) == NULL, should not happen!! (win32ss\user\ntuser\class.c:2335) err: SYSTEMCUR(ARROW) == NULL, should not happen!! (win32ss\user\ntuser\class.c:2335) err: SYSTEMCUR(ARROW) == NULL, should not happen!! (win32ss\user\ntuser\class.c:2335) err: SYSTEMCUR(ARROW) == NULL, should not happen!! (win32ss\user\ntuser\class.c:2335) err: SYSTEMCUR(ARROW) == NULL, should not happen!! (win32ss\user\ntuser\class.c:2335) err: SYSTEMCUR(ARROW) == NULL, should not happen!! (win32ss\user\ntuser\keyboard.c:204) err: NtDeviceIoControlFile() failed, ignored (win32ss\user\ntuser\desktop.c:3313) err: The process 0xB0209020 'winlogon.exe' didn't have an assigned startup desktop before, assigning it now! (win32ss\user\ntuser\desktop.c:3251) err: Attempted to change thread desktop although the thread has windows! (win32ss\user\winsrv\usersrv\init.c:166) We are logged off (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\System32\kbdus.dll at FE55D000 with 4 pages WARNING: HvHiveWillShrink at sdk\lib\cmlib\hivewrt.c:280 is UNIMPLEMENTED! WARNING: HvpWriteLog at sdk\lib\cmlib\hivewrt.c:29 is UNIMPLEMENTED! fixme:(dll\win32\rpcrt4\rpc_server.c:1736) (0x1000): stub err:(dll\win32\advapi32\service\eventlog.c:144) RpcBindingFree returned 0x6a6 (base\system\services\services.c:96) ScmLogEvent: RegisterEventSourceW failed 1722 WARNING: getMacAddress at base\services\dcomlaunch\network.c:32 is UNIMPLEMENTED! (base\services\dcomlaunch\network.c:130) Failed finding a proper MAC address, will generate seed (ntoskrnl\mm\ARM3\sysldr.c:176) Loading: \SystemRoot\system32\drivers\fastfat.sys at FE4D9000 with 27 pages err:(dll\win32\advapi32\service\scm.c:140) RpcBindingFree returned 0x6a6 (ntoskrnl\ps\thread.c:119) PS: Unhandled Kernel Mode Exception Pointers = 0xFE92C95C (ntoskrnl\ps\thread.c:126) Code c0000005 Addr FE4DBB6A Info0 00000000 Info1 00000004 Info2 00000000 Info3 CCCCCCCC *** Fatal System Error: 0x0000007e (0xC0000005,0xFE4DBB6A,0xFE92CE14,0xFE92CB04) Break instruction exception - code 80000003 (first chance) A fatal system error has occurred. Debugger entered on first try; Bugcheck callbacks have not been invoked. A fatal system error has occurred. For analysis of this file, run !analyze -v nt!RtlpBreakWithStatusInstruction: 8056e838 cc int 3 kd> !analyze -v Connected to Windows Server 2003 3790 x86 compatible target at (Tue Nov 26 16:46:14.828 2019 (UTC + 1:00)), ptr64 FALSE Loading Kernel Symbols ............................................... Press ctrl-c (cdb, kd, ntsd) or ctrl-break (windbg) to abort symbol loads that take too long. Run !sym noisy before .reload to track down problems loading symbols. .. Loading User Symbols ******************************************************************************* * * * Bugcheck Analysis * * * ******************************************************************************* SYSTEM_THREAD_EXCEPTION_NOT_HANDLED (7e) This is a very common bugcheck. Usually the exception address pinpoints the driver/function that caused the problem. Always note this address as well as the link date of the driver/image that contains this address. Arguments: Arg1: c0000005, The exception code that was not handled Arg2: fe4dbb6a, The address that the exception occurred at Arg3: fe92ce14, Exception Record Address Arg4: fe92cb04, Context Record Address Debugging Details: ------------------ KEY_VALUES_STRING: 1 Key : AV.Dereference Value: NullClassPtr Key : AV.Fault Value: Read Key : Analysis.CPU.Sec Value: 1 Key : Analysis.DebugAnalysisProvider.CPP Value: Create: 8007007e on DESKTOP-GPV6HGD Key : Analysis.DebugData Value: CreateObject Key : Analysis.DebugModel Value: CreateObject Key : Analysis.Elapsed.Sec Value: 6 Key : Analysis.Memory.CommitPeak.Mb Value: 73 Key : Analysis.System Value: CreateObject BUGCHECK_CODE: 7e BUGCHECK_P1: ffffffffc0000005 BUGCHECK_P2: fffffffffe4dbb6a BUGCHECK_P3: fffffffffe92ce14 BUGCHECK_P4: fffffffffe92cb04 EXCEPTION_RECORD: fe92ce14 -- (.exr 0xfffffffffe92ce14) ExceptionAddress: fe4dbb6a (fastfat!RtlpCheckListEntry+0x0000000a) ExceptionCode: c0000005 (Access violation) ExceptionFlags: 00000000 NumberParameters: 2 Parameter[0]: 00000000 Parameter[1]: 00000004 Attempt to read from address 00000004 CONTEXT: fe92cb04 -- (.cxr 0xfffffffffe92cb04) eax=ffb9b144 ebx=00000000 ecx=00000000 edx=ffbdd134 esi=fe92d054 edi=fe92d020 eip=fe4dbb6a esp=fe92cfa8 ebp=fe92cfa8 iopl=0 nv up ei ng nz na pe nc cs=0008 ss=0010 ds=0023 es=0023 fs=0030 gs=0000 efl=00010286 fastfat!RtlpCheckListEntry+0xa: fe4dbb6a 8b5104 mov edx,dword ptr [ecx+4] ds:0023:00000004=???????? Resetting default scope PROCESS_NAME: System READ_ADDRESS: Target machine operating system not supported 00000004 ERROR_CODE: (NTSTATUS) 0xc0000005 - The instruction at 0x%p referenced memory at 0x%p. The memory could not be %s. EXCEPTION_CODE_STR: c0000005 EXCEPTION_PARAMETER1: 00000000 EXCEPTION_PARAMETER2: 00000004 EXCEPTION_STR: 0xc0000005 STACK_TEXT: fe92cfa8 fe4db9e6 ffb9b144 cccccccc fe92cfd8 fastfat!RtlpCheckListEntry+0xa [D:\rosbuild\x86_MSVC\sdk\include\ddk\wdm.h @ 10566] fe92cfb8 fe4e7ccd ffb9b144 ffbdd134 00000001 fastfat!InsertTailList+0x16 [D:\rosbuild\x86_MSVC\sdk\include\ddk\wdm.h @ 10654] fe92cfd8 fe4e9ad0 ffb9b0d0 ffbdd008 fe92d2cc fastfat!vfatAddFCBToTable+0x9d [D:\reactos_master\drivers\filesystems\fastfat\fcb.c @ 412] fe92d020 fe4e9dad ffb9b0d0 cccccccc cccccccc fastfat!vfatMakeRootFCB+0x250 [D:\reactos_master\drivers\filesystems\fastfat\fcb.c @ 699] fe92d048 fe4e88a2 ffb9b0d0 fe92d474 fe92d484 fastfat!vfatOpenRootFCB+0x5d [D:\reactos_master\drivers\filesystems\fastfat\fcb.c @ 717] fe92d2cc fe4de4bd ffb9b0d0 fe92d448 fe92d2fc fastfat!vfatGetFCBForFile+0x2d2 [D:\reactos_master\drivers\filesystems\fastfat\fcb.c @ 971] fe92d304 fe4dd205 ffb9b0d0 fe92d418 ffbdc948 fastfat!VfatOpenFile+0xbd [D:\reactos_master\drivers\filesystems\fastfat\create.c @ 324] fe92d474 fe4dcb2a ffb9b018 b022b940 fe92d4a0 fastfat!VfatCreateFile+0x695 [D:\reactos_master\drivers\filesystems\fastfat\create.c @ 613] fe92d494 fe4f2498 b022f478 fe92d6d0 fe92d508 fastfat!VfatCreate+0xaa [D:\reactos_master\drivers\filesystems\fastfat\create.c @ 1102] fe92d4d0 fe4f1d54 b022f478 fe92d508 00000001 fastfat!VfatDispatchRequest+0x98 [D:\reactos_master\drivers\filesystems\fastfat\misc.c @ 125] fe92d4f8 80483537 ffb9b018 b022b940 fe92d700 fastfat!VfatBuildRequest+0xc4 [D:\reactos_master\drivers\filesystems\fastfat\misc.c @ 248] fe92d524 80476059 fe92d7bc fe92d700 cccccccc nt!IofCallDriver+0xc7 [D:\reactos_master\ntoskrnl\io\iomgr\irp.c @ 1286] fe92d6d0 8050c95a b02e8c78 00000000 b02d0548 nt!IopParseDevice+0x16e9 [D:\reactos_master\ntoskrnl\io\iomgr\file.c @ 997] fe92d7bc 80504b3b 00000000 fe92d810 00000240 nt!ObpLookupObjectName+0xa3a [D:\reactos_master\ntoskrnl\ob\obname.c @ 1003] fe92d828 8047376e fe92da10 00000000 00000000 nt!ObOpenObjectByName+0x16b [D:\reactos_master\ntoskrnl\ob\obhandle.c @ 2609] fe92d960 804710d6 fe92da48 0012019f fe92da10 nt!IopCreateFile+0x113e [D:\reactos_master\ntoskrnl\io\iomgr\file.c @ 2872] fe92d9a8 fea9597e fe92da48 0012019f fe92da10 nt!IoCreateFile+0x46 [D:\reactos_master\ntoskrnl\io\iomgr\file.c @ 3042] fe92da50 fea96911 e1046e10 00000000 fe92dcf4 mountmgr!OpenRemoteDatabase+0x14e [D:\reactos_master\drivers\filters\mountmgr\database.c @ 1872] fe92dc70 fea98041 e104923c fe92dd88 fe92dd04 mountmgr!ReconcileThisDatabaseWithMasterWorker+0x301 [D:\reactos_master\drivers\filters\mountmgr\database.c @ 665] fe92dcf4 804833db b02d0038 b02d00f0 fe92dd1c mountmgr!WorkerThread+0x201 [D:\reactos_master\drivers\filters\mountmgr\database.c @ 1236] fe92dd10 80449eba b02e8158 fe931c7c fe92dd94 nt!IopWorkItemCallback+0x3b [D:\reactos_master\ntoskrnl\io\iomgr\iowork.c @ 27] fe92dd88 80527e06 00000001 fe931c7c fe92ddcc nt!ExpWorkerThreadEntryPoint+0x1ca [D:\reactos_master\ntoskrnl\ex\work.c @ 162] fe92ddbc 805499d3 80449cf0 00000001 8000003b nt!PspSystemThreadStartup+0x76 [D:\reactos_master\ntoskrnl\ps\thread.c @ 156] fe92dddc 80527d8f 80449cf0 00000001 656d6100 nt!KiThreadStartup+0x63 [D:\reactos_master\ntoskrnl\ke\i386\thrdini.c @ 78] fe92dde0 80449cef 00000001 656d6100 0000027f nt!PspCreateThread+0xedf fe92dde4 00000000 656d6100 0000027f 00000000 nt!ExpWorkerThreadBalanceManager+0x26f FAULTING_SOURCE_LINE: D:\reactos_master\drivers\filters\mountmgr\database.c FAULTING_SOURCE_FILE: D:\reactos_master\drivers\filters\mountmgr\database.c FAULTING_SOURCE_LINE_NUMBER: 1872 SYMBOL_NAME: mountmgr!OpenRemoteDatabase+14e MODULE_NAME: mountmgr IMAGE_NAME: mountmgr.sys STACK_COMMAND: .cxr 0xfffffffffe92cb04 ; kb FAILURE_BUCKET_ID: 0x7E_mountmgr!OpenRemoteDatabase+14e OSPLATFORM_TYPE: x86 OSNAME: Windows Server 2003 FAILURE_ID_HASH: {9fafabb7-fe4b-81dd-aff3-a1b4d4a4f41d} Followup: MachineOwner --------- kd> r eax=00000003 ebx=00000000 ecx=00000000 edx=0000006a esi=ffdff408 edi=fe92c8e0 eip=8056e838 esp=fe92c4f4 ebp=fe92c520 iopl=0 nv up ei ng nz ac po nc cs=0008 ss=0010 ds=0023 es=0023 fs=0030 gs=0000 efl=00000292 nt!RtlpBreakWithStatusInstruction: 8056e838 cc int 3 kd> .exr 0xfffffffffe92ce14 ExceptionAddress: fe4dbb6a (fastfat!RtlpCheckListEntry+0x0000000a) ExceptionCode: c0000005 (Access violation) ExceptionFlags: 00000000 NumberParameters: 2 Parameter[0]: 00000000 Parameter[1]: 00000004 Attempt to read from address 00000004 kd> .cxr 0xfffffffffe92cb04 eax=ffb9b144 ebx=00000000 ecx=00000000 edx=ffbdd134 esi=fe92d054 edi=fe92d020 eip=fe4dbb6a esp=fe92cfa8 ebp=fe92cfa8 iopl=0 nv up ei ng nz na pe nc cs=0008 ss=0010 ds=0023 es=0023 fs=0030 gs=0000 efl=00010286 fastfat!RtlpCheckListEntry+0xa: fe4dbb6a 8b5104 mov edx,dword ptr [ecx+4] ds:0023:00000004=???????? kd> !teb TEB NULL... kd> !pcr KPCR for Processor 0 at ffdff000: Major 1 Minor 1 NtTib.ExceptionList: fe92c3a0 NtTib.StackBase: 00000000 NtTib.StackLimit: 00000000 NtTib.SubSystemTib: 80834000 NtTib.Version: 00000772 NtTib.UserPointer: 00000001 NtTib.SelfTib: 00000000 SelfPcr: ffdff000 Prcb: ffdff120 Irql: 00000000 IRR: 00000000 IDR: ffff3eba InterruptMode: 00000000 IDT: 80837400 GDT: 80837000 TSS: 80834000 CurrentThread: 00000000 NextThread: 00000000 IdleThread: 00000000 DpcQueue: kd> kp # ChildEBP RetAddr 00 fe92cfa8 fe4db9e6 fastfat!RtlpCheckListEntry(struct _LIST_ENTRY * Entry = 0xffb9b144 [ 0x0 - 0x0 ])+0xa [D:\rosbuild\x86_MSVC\sdk\include\ddk\wdm.h @ 10566] 01 fe92cfb8 fe4e7ccd fastfat!InsertTailList(struct _LIST_ENTRY * ListHead = 0xffb9b144 [ 0x0 - 0x0 ], struct _LIST_ENTRY * Entry = 0xffbdd134 [ 0x0 - 0x0 ])+0x16 [D:\rosbuild\x86_MSVC\sdk\include\ddk\wdm.h @ 10654] 02 fe92cfd8 fe4e9ad0 fastfat!vfatAddFCBToTable(struct DEVICE_EXTENSION * pVCB = 0xffb9b0d0, struct _VFATFCB * pFCB = 0xffbdd008)+0x9d [D:\reactos_master\drivers\filesystems\fastfat\fcb.c @ 412] 03 fe92d020 fe4e9dad fastfat!vfatMakeRootFCB(struct DEVICE_EXTENSION * pVCB = 0xffb9b0d0)+0x250 [D:\reactos_master\drivers\filesystems\fastfat\fcb.c @ 699] 04 fe92d048 fe4e88a2 fastfat!vfatOpenRootFCB(struct DEVICE_EXTENSION * pVCB = 0xffb9b0d0)+0x5d [D:\reactos_master\drivers\filesystems\fastfat\fcb.c @ 717] 05 fe92d2cc fe4de4bd fastfat!vfatGetFCBForFile(struct DEVICE_EXTENSION * pVCB = 0xffb9b0d0, struct _VFATFCB ** pParentFCB = 0xfe92d448, struct _VFATFCB ** pFCB = 0xfe92d2fc, struct _UNICODE_STRING * pFileNameU = 0xfe92d418 "\System Volume Information\MountPointManagerRemoteDatabase")+0x2d2 [D:\reactos_master\drivers\filesystems\fastfat\fcb.c @ 971] 06 fe92d304 fe4dd205 fastfat!VfatOpenFile(struct DEVICE_EXTENSION * DeviceExt = 0xffb9b0d0, struct _UNICODE_STRING * PathNameU = 0xfe92d418 "\System Volume Information\MountPointManagerRemoteDatabase", struct _FILE_OBJECT * FileObject = 0xffbdc948, unsigned long RequestedDisposition = 3, unsigned long RequestedOptions = 0x50, struct _VFATFCB ** ParentFcb = 0xfe92d448)+0xbd [D:\reactos_master\drivers\filesystems\fastfat\create.c @ 324] 07 fe92d474 fe4dcb2a fastfat!VfatCreateFile(struct _DEVICE_OBJECT * DeviceObject = 0xffb9b018 Device for "\FileSystem\fastfat", struct _IRP * Irp = 0xb022b940)+0x695 [D:\reactos_master\drivers\filesystems\fastfat\create.c @ 613] 08 fe92d494 fe4f2498 fastfat!VfatCreate(struct VFAT_IRP_CONTEXT * IrpContext = 0xb022f478)+0xaa [D:\reactos_master\drivers\filesystems\fastfat\create.c @ 1102] 09 fe92d4d0 fe4f1d54 fastfat!VfatDispatchRequest(struct VFAT_IRP_CONTEXT * IrpContext = 0xb022f478)+0x98 [D:\reactos_master\drivers\filesystems\fastfat\misc.c @ 125] 0a fe92d4f8 80483537 fastfat!VfatBuildRequest(struct _DEVICE_OBJECT * DeviceObject = 0xffb9b018 Device for "\FileSystem\fastfat", struct _IRP * Irp = 0xb022b940)+0xc4 [D:\reactos_master\drivers\filesystems\fastfat\misc.c @ 248] 0b fe92d524 80476059 nt!IofCallDriver(struct _DEVICE_OBJECT * DeviceObject = 0xffb9b018 Device for "\FileSystem\fastfat", struct _IRP * Irp = 0xb022b940)+0xc7 [D:\reactos_master\ntoskrnl\io\iomgr\irp.c @ 1286] 0c fe92d6d0 8050c95a nt!IopParseDevice(void * ParseObject = 0xb02e8c78, void * ObjectType = 0x00000000, struct _ACCESS_STATE * AccessState = 0xb02d0548, char AccessMode = 0n0 '', unsigned long Attributes = 0x240, struct _UNICODE_STRING * CompleteName = 0xfe92d810 "\Device\Harddisk0\Partition1\System Volume Information\MountPointManagerRemoteDatabase", struct _UNICODE_STRING * RemainingName = 0xfe92d790 "\System Volume Information\MountPointManagerRemoteDatabase", void * Context = 0xb01c24b0, struct _SECURITY_QUALITY_OF_SERVICE * SecurityQos = 0x00000000, void ** Object = 0xfe92d7b4)+0x16e9 [D:\reactos_master\ntoskrnl\io\iomgr\file.c @ 997] 0d fe92d7bc 80504b3b nt!ObpLookupObjectName(void * RootHandle = 0x00000000, struct _UNICODE_STRING * ObjectName = 0xfe92d810 "\Device\Harddisk0\Partition1\System Volume Information\MountPointManagerRemoteDatabase", unsigned long Attributes = 0x240, struct _OBJECT_TYPE * ObjectType = 0x00000000, char AccessMode = 0n0 '', void * ParseContext = 0xb01c24b0, struct _SECURITY_QUALITY_OF_SERVICE * SecurityQos = 0x00000000, void * InsertObject = 0x00000000, struct _ACCESS_STATE * AccessState = 0xb02d0548, struct _OBP_LOOKUP_CONTEXT * LookupContext = 0xb02d05ec, void ** FoundObject = 0xfe92d820)+0xa3a [D:\reactos_master\ntoskrnl\ob\obname.c @ 1003] 0e fe92d828 8047376e nt!ObOpenObjectByName(struct _OBJECT_ATTRIBUTES * ObjectAttributes = 0xfe92da10, struct _OBJECT_TYPE * ObjectType = 0x00000000, char AccessMode = 0n0 '', struct _ACCESS_STATE * PassedAccessState = 0xb02d0548, unsigned long DesiredAccess = 0x12019f, void * ParseContext = 0xb01c24b0, void ** Handle = 0xfe92d93c)+0x16b [D:\reactos_master\ntoskrnl\ob\obhandle.c @ 2609] 0f fe92d960 804710d6 nt!IopCreateFile(void ** FileHandle = 0xfe92da48, unsigned long DesiredAccess = 0x12019f, struct _OBJECT_ATTRIBUTES * ObjectAttributes = 0xfe92da10, struct _IO_STATUS_BLOCK * IoStatusBlock = 0xfe92da30, union _LARGE_INTEGER * AllocationSize = 0x00000000, unsigned long FileAttributes = 0x86, unsigned long ShareAccess = 0, unsigned long Disposition = 3, unsigned long CreateOptions = 0x50, void * EaBuffer = 0x00000000, unsigned long EaLength = 0, _CREATE_FILE_TYPE CreateFileType = CreateFileTypeNone (0n0), void * ExtraCreateParameters = 0x00000000, unsigned long Options = 0x108, unsigned long Flags = 0, struct _DEVICE_OBJECT * DeviceObject = 0x00000000)+0x113e [D:\reactos_master\ntoskrnl\io\iomgr\file.c @ 2872] 10 fe92d9a8 fea9597e nt!IoCreateFile(void ** FileHandle = 0xfe92da48, unsigned long DesiredAccess = 0x12019f, struct _OBJECT_ATTRIBUTES * ObjectAttributes = 0xfe92da10, struct _IO_STATUS_BLOCK * IoStatusBlock = 0xfe92da30, union _LARGE_INTEGER * AllocationSize = 0x00000000, unsigned long FileAttributes = 0x86, unsigned long ShareAccess = 0, unsigned long Disposition = 3, unsigned long CreateOptions = 0x50, void * EaBuffer = 0x00000000, unsigned long EaLength = 0, _CREATE_FILE_TYPE CreateFileType = CreateFileTypeNone (0n0), void * ExtraCreateParameters = 0x00000000, unsigned long Options = 0x108)+0x46 [D:\reactos_master\ntoskrnl\io\iomgr\file.c @ 3042] 11 fe92da50 fea96911 mountmgr!OpenRemoteDatabase(struct _DEVICE_INFORMATION * DeviceInformation = 0xe1046e10, unsigned char MigrateDatabase = 0x00 '')+0x14e [D:\reactos_master\drivers\filters\mountmgr\database.c @ 1872] 12 fe92dc70 fea98041 mountmgr!ReconcileThisDatabaseWithMasterWorker(void * Parameter = 0xe104923c)+0x301 [D:\reactos_master\drivers\filters\mountmgr\database.c @ 665] 13 fe92dcf4 804833db mountmgr!WorkerThread(struct _DEVICE_OBJECT * DeviceObject = 0xb02d0038 Device for "\Driver\MOUNTMGR", void * Context = 0xb02d00f0)+0x201 [D:\reactos_master\drivers\filters\mountmgr\database.c @ 1236] 14 fe92dd10 80449eba nt!IopWorkItemCallback(void * Parameter = 0xb02e8158)+0x3b [D:\reactos_master\ntoskrnl\io\iomgr\iowork.c @ 27] 15 fe92dd88 80527e06 nt!ExpWorkerThreadEntryPoint(void * Context = 0x00000001)+0x1ca [D:\reactos_master\ntoskrnl\ex\work.c @ 162] 16 fe92ddbc 805499d3 nt!PspSystemThreadStartup( * StartRoutine = 0x80449cf0, void * StartContext = 0x00000001)+0x76 [D:\reactos_master\ntoskrnl\ps\thread.c @ 156] 17 fe92dddc 80527d8f nt!KiThreadStartup(void)+0x63 [D:\reactos_master\ntoskrnl\ke\i386\thrdini.c @ 78] 18 fe92dde0 80449cef nt!PspCreateThread+0xedf 19 fe92dde4 00000000 nt!ExpWorkerThreadBalanceManager+0x26f << THIS IS THE FILE MOUNTMGR TRIES TO OPEN >> kd> dx -r1 ((ntoskrnl!_OBJECT_ATTRIBUTES *)0xfe92da10) ((ntoskrnl!_OBJECT_ATTRIBUTES *)0xfe92da10) : 0xfe92da10 [Type: _OBJECT_ATTRIBUTES *] [+0x000] Length : 0x18 [Type: unsigned long] [+0x004] RootDirectory : 0x0 [Type: void *] [+0x008] ObjectName : 0xfe92da00 : "\Device\Harddisk0\Partition1\System Volume Information\MountPointManagerRemoteDatabase" [Type: _UNICODE_STRING *] [+0x00c] Attributes : 0x240 [Type: unsigned long] [+0x010] SecurityDescriptor : 0x0 [Type: void *] [+0x014] SecurityQualityOfService : 0x0 [Type: void *] << THIS IS THE LINKED LIST FASTFAT TRIES TO INSERT INTO >> << NOTE THAT BOTH Flink AND Blink ARE NULL (i.e. List NOT initialized) >> kd> dx -r1 ((fastfat!_LIST_ENTRY *)0xffb9b144) ((fastfat!_LIST_ENTRY *)0xffb9b144) : 0xffb9b144 [Type: _LIST_ENTRY *] [+0x000] Flink : 0x0 [Type: _LIST_ENTRY *] [+0x004] Blink : 0x0 [Type: _LIST_ENTRY *]