none
Yet another 0x000000ab bugcheck: Gdi FONTFILEVIEW

    Question

  • Hi all,

    after applying SP1, all Windows Update hotfixes and nVidia 320.86 (Latest WHQL) display driver onto a Windows 7 machine, I encountered stop error 0x000000ab when logging off from remote desktop session, or reconnecting to a session after disconnecting.

    The error is similar to what is described in http://blogs.technet.com/b/dip/archive/2012/11/23/win2008r2-sp1-stop-0xab-with-tag-gdbr-nt-michecksessionpoolallocations-0x13f.aspx , so I used windbg for a same analysis and got the following results:

    4: kd> !analyze -v
    *******************************************************************************
    *                                                                             *
    *                        Bugcheck Analysis                                    *
    *                                                                             *
    *******************************************************************************

    SESSION_HAS_VALID_POOL_ON_EXIT (ab)
    Caused by a session driver not freeing its pool allocations prior to a
    session unload.  This indicates a bug in win32k.sys, atmfd.dll,
    rdpdd.dll or a video driver.
    Arguments:
    Arg1: 0000000000000002, session ID
    Arg2: 0000000000001500, number of paged pool bytes that are leaking
    Arg3: 0000000000000000, number of nonpaged pool bytes that are leaking
    Arg4: 000000000000002a, total number of paged and nonpaged allocations that are leaking.
        nonpaged allocations are in the upper half of this word,
        paged allocations are in the lower half of this word.

    Debugging Details:
    ------------------

    Use !poolused 8 to dump allocation info for leaked session pooltags.

    TAG_NOT_DEFINED_405: Pool

    BUGCHECK_STR:  0xAB_Pool

    DEFAULT_BUCKET_ID:  WIN7_DRIVER_FAULT

    PROCESS_NAME:  csrss.exe

    CURRENT_IRQL:  0

    ANALYSIS_VERSION: 6.3.9600.16384 (debuggers(dbg).130821-1623) amd64fre

    LAST_CONTROL_TRANSFER:  from fffff80004a81abf to fffff800046dbb80

    STACK_TEXT:  
    fffff880`0b5f1ac8 fffff800`04a81abf : 00000000`000000ab 00000000`00000002 00000000`00001500 00000000`00000000 : nt!KeBugCheckEx
    fffff880`0b5f1ad0 fffff800`04920917 : fffff880`0b5e9b40 fffff880`0b5e9000 fffff880`0b5e9000 fffffa80`0da37b50 : nt!MiCheckSessionPoolAllocations+0x13f
    fffff880`0b5f1b10 fffff800`04a1db35 : fffff880`0b5f1ba8 fffffa80`0da37b50 ffffffff`fffffe2b fffff880`0b5e9000 : nt!MiDereferenceSessionFinal+0x137
    fffff880`0b5f1bb0 fffff800`046acdbc : fffff800`04869940 00000000`00000001 00000000`00000000 fffffa80`0cc52b30 : nt! ?? ::NNGAKEGL::`string'+0x23fc5
    fffff880`0b5f1be0 fffff800`049b1a2a : fffff8a0`117f8c50 00000000`00000000 00000000`00000000 fffffa80`0da37b50 : nt!MmCleanProcessAddressSpace+0x610
    fffff880`0b5f1c30 fffff800`049b1dfd : 00000000`00000000 fffff800`04979b01 00000000`00000000 fffffa80`10449b50 : nt!PspExitThread+0x56a
    fffff880`0b5f1d30 fffff800`046cc8c6 : fffff880`04a8f180 00000000`00000080 fffffa80`0da37b50 00000000`00000246 : nt!PspTerminateThreadByPointer+0x4d
    fffff880`0b5f1d80 00000000`00000000 : fffff880`0b5f2000 fffff880`0b5ec000 fffff880`0b5f1980 00000000`00000000 : nt!KxStartSystemThread+0x16


    STACK_COMMAND:  kb

    FOLLOWUP_IP:
    nt!MiCheckSessionPoolAllocations+13f
    fffff800`04a81abf cc              int     3

    SYMBOL_STACK_INDEX:  1

    SYMBOL_NAME:  nt!MiCheckSessionPoolAllocations+13f

    FOLLOWUP_NAME:  MachineOwner

    MODULE_NAME: nt

    DEBUG_FLR_IMAGE_TIMESTAMP:  51fb06cd

    IMAGE_VERSION:  6.1.7601.18229

    IMAGE_NAME:  memory_corruption

    FAILURE_BUCKET_ID:  X64_LEAKED_SESSION_POOLTAG_Pool

    BUCKET_ID:  X64_LEAKED_SESSION_POOLTAG_Pool

    ANALYSIS_SOURCE:  KM

    FAILURE_ID_HASH_STRING:  km:x64_leaked_session_pooltag_pool

    FAILURE_ID_HASH:  {9650ff51-11f4-b11b-e151-128a2efd0412}

    Followup: MachineOwner
    ---------

    4: kd> !poolused 8
    .
     Sorting by Session Tag

                   NonPaged                  Paged
     Tag     Allocs         Used     Allocs         Used

     Gffv         0            0         42         5376    Gdi FONTFILEVIEW
     Pool         1         4096          0            0    Pool tables, etc.

    TOTAL         1         4096         42         5376

    I'm now running win32k.sys with version 7601.22416, which is higher than that in KB2786447.

    Can anyone of some help?


    Saturday, September 28, 2013 12:55 AM

Answers

All replies