[RESOLVED] Win2008R2 SP1: STOP 0xAB in nt!MiCheckSessionPoolAllocations
Status: Resolved.
Update 110809: As part of the HTP11-10 releases, we are releasing KB2585233, which addresses a problem that results in STOP 0xAB errors. Do note that not all of these errors have the same cause. In general, have a look at outdated video drivers, printer drivers, and if applicable, update your Citrix components as well. Then, implement the latest win32k.sys hotfix, and if the issue remains, create a case with us.
We now have two customers hitting a STOP 0xAB, similar to the STOPs we saw quite some time ago, after Win2003SP1. For one of the customers, the dump shows:
BugCheck AB, {2, 50, 0, 2}
# Child-SP RetAddr Call Site
00 fffff880`0d0c0ac8 fffff800`01c8175f nt!KeBugCheckEx
01 fffff880`0d0c0ad0 fffff800`01b1e997 nt!MiCheckSessionPoolAllocations+0x13f
02 fffff880`0d0c0b10 fffff800`01c1c355 nt!MiDereferenceSessionFinal+0x137
03 fffff880`0d0c0bb0 fffff800`018b2c70 nt!MiDereferenceSession+0x815c5
04 fffff880`0d0c0be0 fffff800`01bb709a nt!MmCleanProcessAddressSpace+0x610
05 fffff880`0d0c0c30 fffff800`01bb7465 nt!PspExitThread+0x56a
06 fffff880`0d0c0d30 fffff800`018d27a6 nt!PspTerminateThreadByPointer+0x4d
07 fffff880`0d0c0d80 00000000`00000000 nt!KxStartSystemThread+0x16
To see the leaking pooltags, use:
5: kd> !poolused 8
.
Sorting by Session Tag
NonPaged Paged
Tag Allocs Used Allocs Used
Gadb 0 0 1 32 GDITAG_DC_COLOR_TRANSFORM , Binary: win32k!XDCOBJ::bAddColorTransfo
Gh2> 0 0 1 48 GDITAG_HMGR_SPRITE_TYPE , Binary: win32k.sys
Pool 1 4096 0 0 Pool tables, etc.
TOTAL 1 4096 2 80
If you encounter these STOPs on your machine(s) too, let me know!
Comments
- Anonymous
January 01, 2003
@Florian: Gadb is fixed in http://support.microsoft.com/kb/2617115/EN-US.
@Swarup Gupta: Gtmp is fixed in http://support.microsoft.com/kb/2585233/EN-US. - Anonymous
May 22, 2013
Debugging Details:
Use !poolused 8 to dump allocation info for leaked session pooltags.
TAG_NOT_DEFINED_405: Pool
BUGCHECK_STR: 0xAB_Pool
DEFAULT_BUCKET_ID: WIN7_DRIVER_FAULT
PROCESS_NAME: csrss.exe
CURRENT_IRQL: 0
LAST_CONTROL_TRANSFER: from fffff80001a1fa7f to fffff80001679c00
STACK_TEXT:
fffff88006c18ac8 fffff80001a1fa7f : 00000000000000ab 0000000000000011 0000000000000050 0000000000000000 : nt!KeBugCheckEx
fffff88006c18ad0 fffff800018be917 : fffff88006cefb40 fffff88006cef000 fffff88006cef000 fffffa800a8f8060 : nt!MiCheckSessionPoolAllocations+0x13f
fffff88006c18b10 fffff800019bba15 : fffff88006c18ba8 fffffa800a8f8060 ffffffffffffffd3 fffff88006cef000 : nt!MiDereferenceSessionFinal+0x137
fffff88006c18bb0 fffff8000164adec : fffff80001807940 0000000000000001 0000000000000000 fffffa8009804ab0 : nt! ?? ::NNGAKEGL::string'+0x24005 fffff88006c18be0 fffff8000194fcba : fffff8a016f51790 0000000000000000 0000000000000000 fffffa800a8f8060 : nt!MmCleanProcessAddressSpace+0x610 fffff88006c18c30 fffff8000195008d : 0000000000000000 fffff80001917e01 0000000000000000 0000000000000000 : nt!PspExitThread+0x56a fffff88006c18d30 fffff8000166a906 : fffff800017f4e80 0000000000000080 fffffa800a8f8060 fffffa8007ee91b0 : nt!PspTerminateThreadByPointer+0x4d fffff88006c18d80 0000000000000000 : fffff88006c19000 fffff88006c13000 fffff88006c185d0 0000000000000000 : nt!KiStartSystemThread+0x16 STACK_COMMAND: kb FOLLOWUP_IP: nt!MiCheckSessionPoolAllocations+13f fffff80001a1fa7f cc int 3
SYMBOL_STACK_INDEX: 1
SYMBOL_NAME: nt!MiCheckSessionPoolAllocations+13f
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: nt
DEBUG_FLR_IMAGE_TIMESTAMP: 5147d9c6
IMAGE_NAME: memory_corruption
FAILURE_BUCKET_ID: X64_LEAKED_SESSION_POOLTAG_Pool
BUCKET_ID: X64_LEAKED_SESSION_POOLTAG_Pool
Followup: MachineOwner
0: kd> !poolused 8 . Sorting by Session Tag NonPaged Paged Tag Allocs Used Allocs Used Gadb 0 0 1 32 GDITAG_DC_COLOR_TRANSFORM , Binary: win32k!XDCOBJ::bAddColorTransfo GhA> 0 0 1 48 GDITAG_HMGR_SPRITE_TYPE , Binary: win32k.sys Pool 1 4096 0 0 Pool tables, etc. TOTAL 1 4096 2 80 0: kd> !pooltag Pool Pooltag Pool Description: Pool tables, etc. Any idea?
- Anonymous
September 05, 2014
I'm getting these too
AG_NOT_DEFINED_405: Pool
BUGCHECK_STR: 0xAB_Pool
DEFAULT_BUCKET_ID: WIN7_DRIVER_FAULT
PROCESS_NAME: csrss.exe
CURRENT_IRQL: 0
ANALYSIS_VERSION: 6.3.9600.16384 (debuggers(dbg).130821-1623) amd64fre
LAST_CONTROL_TRANSFER: from fffff80001a28abf to fffff80001682b80
STACK_TEXT:
fffff88010766ac8 fffff80001a28abf : 00000000000000ab 0000000000000008 0000000000001ac0 0000000000000000 : nt!KeBugCheckEx
fffff88010766ad0 fffff800018c7917 : fffff8800efb0b40 fffff8800efb0000 fffff8800efb0000 fffffa830820ab00 : nt!MiCheckSessionPoolAllocations+0x13f
fffff88010766b10 fffff800019c4b35 : fffff88010766ba8 fffffa830820ab00 ffffffffffffffac fffff8800efb0000 : nt!MiDereferenceSessionFinal+0x137
fffff88010766bb0 fffff80001653dbc : fffff80001810940 0000000000000001 0000000000000000 fffffa8309fc8190 : nt! ?? ::NNGAKEGL::string'+0x23fc5<br>fffff88010766be0 fffff80001958a2a : fffff8a00709f2e0 0000000000000000 0000000000000000 fffffa830820ab00 : nt!MmCleanProcessAddressSpace+0x610<br>fffff88010766c30 fffff80001958dfd : 0000000000000000 fffff80001920b01 0000000000000000 fffffa83086c85e0 : nt!PspExitThread+0x56a<br>fffff88010766d30 fffff800016738c6 : fffff800017fde80 0000000000000080 fffffa830820ab00 00000008f95fc000 : nt!PspTerminateThreadByPointer+0x4d<br>fffff88010766d80 0000000000000000 : fffff88010767000 fffff88010761000 fffff880107665e0 0000000000000000 : nt!KxStartSystemThread+0x16<br><br><br>STACK_COMMAND: kb<br><br>FOLLOWUP_IP: <br>nt!MiCheckSessionPoolAllocations+13f<br>fffff80001a28abf cc int 3
SYMBOL_STACK_INDEX: 1
SYMBOL_NAME: nt!MiCheckSessionPoolAllocations+13f
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: nt
DEBUG_FLR_IMAGE_TIMESTAMP: 51fb06cd
IMAGE_VERSION: 6.1.7601.18229
IMAGE_NAME: memory_corruption
FAILURE_BUCKET_ID: X64_LEAKED_SESSION_POOLTAG_Pool
BUCKET_ID: X64_LEAKED_SESSION_POOLTAG_Pool
ANALYSIS_SOURCE: KM
FAILURE_ID_HASH_STRING: km:x64_leaked_session_pooltag_pool
FAILURE_ID_HASH: {9650ff51-11f4-b11b-e151-128a2efd0412}
Followup: MachineOwner
---------
4: kd> !poolused 8
.
Sorting by Session Tag
NonPaged Paged
Tag Allocs Used Allocs Used
Gtmp 0 0 4 6848 Gdi temporary allocations
Pool 1 4096 0 0 Pool tables, etc.
TOTAL 1 4096 4 6848