Hi, all:
I got a bugcheck, but I can not find what’s problem with this. Could
anybody help me? thank you very much.
1: kd> !analyze -v
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
KERNEL_MODE_EXCEPTION_NOT_HANDLED (8e)
This is a very common bugcheck. Usually the exception address pinpoints
the driver/function that caused the problem. Always note this address
as well as the link date of the driver/image that contains this address.
Some common problems are exception code 0x80000003. This means a hard
coded breakpoint or assertion was hit, but this system was booted
/NODEBUG. This is not supposed to happen as developers should never have
hardcoded breakpoints in retail code, but …
If this happens, make sure a debugger gets connected, and the
system is booted /DEBUG. This will let us see why this breakpoint is
happening.
Arguments:
Arg1: c000001d, The exception code that was not handled
Arg2: bf81499a, The address that the exception occurred at
Arg3: f75d6cc0, Trap Frame
Arg4: 00000000
Debugging Details:
EXCEPTION_CODE: (NTSTATUS) 0xc000001d - {
FAULTING_IP:
win32k!GreCreateCompatibleBitmap+31
bf81499a 85db test ebx,ebx
TRAP_FRAME: f75d6cc0 – (.trap fffffffff75d6cc0)
ErrCode = 00000000
eax=00000110 ebx=0000003c ecx=00000000 edx=0012eb94 esi=00000001
edi=f75d6d64
eip=bf81499a esp=f75d6d34 ebp=f75d6d50 iopl=0 nv up ei pl nz na pe nc
cs=0008 ss=0010 ds=0023 es=0023 fs=0030 gs=0000 efl=00010202
win32k!GreCreateCompatibleBitmap+0x31:
bf81499a 85db test ebx,ebx
Resetting default scope
DEFAULT_BUCKET_ID: DRIVER_FAULT
BUGCHECK_STR: 0x8E
LAST_CONTROL_TRANSFER: from 8054160c to bf81499a
STACK_TEXT:
f75d6d50 8054160c 01010058 00000110 0000003c
win32k!GreCreateCompatibleBitmap+0x31
f75d6d50 7c92eb94 01010058 00000110 0000003c nt!KiFastCallEntry+0xfc
0012eb88 77ef6f39 77ef6ee4 01010058 00000110 ntdll!KiFastSystemCallRet
0012f000 77186b2f 01010058 00000110 0000003c
GDI32!NtGdiCreateCompatibleBitmap+0xc
0012f024 771b2eda 01010058 0012f068 0012f044
comctl32!CCBeginDoubleBuffer+0x4d
0012f078 771b2f7e 00157f30 01010058 00010226 comctl32!HandlePaint+0x34
0012f0a4 771b351e 01010058 0012f378 771b33ae comctl32!HandleTick+0x4b
0012f310 77d18734 00010226 00000113 0000002a comctl32!AnimateWndProc+0x170
0012f33c 77d18816 771b33ae 00010226 00000113 user32!InternalCallWinProc+0x28
0012f3a4 77d1c63f 00000000 771b33ae 00010226
user32!UserCallWinProcCheckWow+0x150
0012f3d4 77d1e905 ffff0209 00010226 00000113 user32!CallWindowProcAorW+0x98
0012f3f4 00455704 ffff0209 00010226 00000113 user32!CallWindowProcA+0x1b
WARNING: Stack unwind information not available. Following frames may be
wrong.
0012f544 00455620 0012f590 74690e6c 00030105 softinst+0x55704
0012f594 00422e4e 00000113 0000002a 00000000 softinst+0x55620
0012f5ac 77d18734 00010226 00000113 0000002a softinst+0x22e4e
0012f5d8 77d18816 01330ef8 00010226 00000113 user32!InternalCallWinProc+0x28
0012f640 77d189cd 00000000 01330ef8 00010226
user32!UserCallWinProcCheckWow+0x150
0012f6a0 77d196c7 0012f6d0 00000001 0012f978
user32!DispatchMessageWorker+0x306
0012f6b0 00470a2c 0012f6d0 7c802600 011efc18 user32!DispatchMessageA+0xf
0012f978 00492e5f 0012fb24 0049310b 0012fb1c softinst+0x70a2c
0012fb1c 00491451 0012fdf0 0049148d 0012fc70 softinst+0x92e5f
0012fc70 0045286e 011e4a90 00452cc3 00000074 softinst+0x91451
0012fdc8 00455620 0012fe14 74690e6c 00030105 softinst+0x5286e
0012fe18 00422e4e 00000202 00000000 00200074 softinst+0x55620
0012fe30 77d18734 00010204 00000202 00000000 softinst+0x22e4e
0012fe5c 77d18816 01330f46 00010204 00000202 user32!InternalCallWinProc+0x28
0012fec4 77d189cd 00000000 01330f46 00010204
user32!UserCallWinProcCheckWow+0x150
0012ff24 77d196c7 0012ff54 00000001 0012ffa0
user32!DispatchMessageWorker+0x306
0012ff34 00470a2c 0012ff54 0012ff00 c000000f user32!DispatchMessageA+0xf
0012ffa0 00494e8f 0012f134 7ffd9000 7c92e64e softinst+0x70a2c
0012ffc0 7c816d4f c000000f 0012f134 7ffd9000 softinst+0x94e8f
0012fff0 00000000 00494d98 00000000 78746341 kernel32!BaseProcessStart+0x23
FAILED_INSTRUCTION_ADDRESS:
win32k!GreCreateCompatibleBitmap+31
bf81499a 85db test ebx,ebx
FOLLOWUP_IP:
win32k!GreCreateCompatibleBitmap+31
bf81499a 85db test ebx,ebx
SYMBOL_STACK_INDEX: 0
FOLLOWUP_NAME: MachineOwner
SYMBOL_NAME: win32k!GreCreateCompatibleBitmap+31
MODULE_NAME: win32k
IMAGE_NAME: win32k.sys
DEBUG_FLR_IMAGE_TIMESTAMP: 422511a2
STACK_COMMAND: .trap fffffffff75d6cc0 ; kb
FAILURE_BUCKET_ID: 0x8E_BAD_IP_win32k!GreCreateCompatibleBitmap+31
BUCKET_ID: 0x8E_BAD_IP_win32k!GreCreateCompatibleBitmap+31
Followup: MachineOwner
1: kd>
win32k!GreCreateCompatibleBitmap:
bf814977 8bff mov edi,edi
bf814979 55 push ebp
bf81497a 8bec mov ebp,esp
bf81497c 83ec10 sub esp,0x10
bf81497f 53 push ebx
bf814980 8b5d10 mov ebx,[ebp+0x10]
bf814983 56 push esi
bf814984 33f6 xor esi,esi
1: kd> u
win32k!GreCreateCompatibleBitmap+0xf:
bf814986 46 inc esi
bf814987 f7c300000001 test ebx,0x1000000
bf81498d 57 push edi
bf81498e 8975fc mov [ebp-0x4],esi
bf814991 7593 jnz win32k!GreCreateCompatibleBitmap+0x1c (bf814926)
bf814993 8b450c mov eax,[ebp+0xc]
bf814996 85c0 test eax,eax
bf814998 7eb7 jle win32k!GreCreateCompatibleBitmap+0x117 (bf814951)
1: kd>
*win32k!GreCreateCompatibleBitmap+0x31*: *// bf814977 + 31 = bf8149A8 !=
bf81499a, why?
*bf81499a 85db test ebx,ebx
bf81499c 7eb3 jle win32k!GreCreateCompatibleBitmap+0x117 (bf814951)
bf81499e 99 cdq
bf81499f 8bc8 mov ecx,eax
bf8149a1 8bfa mov edi,edx
bf8149a3 8bc3 mov eax,ebx
bf8149a5 99 cdq
bf8149a6 52 push edx
1: kd>
win32k!GreCreateCompatibleBitmap+0x42:
bf8149a7 50 push eax
bf8149a8 57 push edi
bf8149a9 51 push ecx
bf8149aa e89ec1feff call win32k!_allmul (bf800b4d)
bf8149af 85d2 test edx,edx
bf8149b1 779e ja win32k!GreCreateCompatibleBitmap+0x117 (bf814951)
bf8149b3 3dffffff3f cmp eax,0x3fffffff
bf8149b8 7797 ja win32k!GreCreateCompatibleBitmap+0x117 (bf814951)