I hope somebody from Microsoft monitors this list.
Win 10 Anniversary Update introduces major problems with RDBSS.sys, particularly with RDP redirector. These include BSODs and hanging on requests processing. I found that some of the problems have been already reported to MS.
Below is one of the scenarios that results in BSOD. The system was newly installed Windows 10.0.10240.9 amd64fre , i.e. this is a prerelease but the release exhibits the same behavior as far as I know.
- Install FAR Manager in Win 10 ( it has nothing to do with FAR, it crashes w/o FAR, FAR just helps to reproduce the problem ). Notice FAR doesn’t contain any kernel mode components.
- Connect to Win 10 by RDP with local disks mapped to a remote session.
- Navigate to a remote drive by entering “cd \tsclient\G” ( G is a drive letter, yours might be different )
- Browser folders on the drive.
- Systems crashes while folders are opened for browsing.
The crash is always with the code 00000000fcb0027c so it is FCB management related.
RDR_FILE_SYSTEM (27)
…
Arg1: 00000000fcb0027c
Arg2: ffffc907379bb5f8
Arg3: ffffc907379bb230
Arg4: 0000000000000000
STACK_TEXT:
ffffdf018debba88 fffff800
9a9e1582 : 00000000fcb0027c 00000000
00000027 ffffdf018debbbf0 fffff800
9a864654 : nt!DbgBreakPointWithStatus
ffffdf018debba90 fffff800
9a9e0ed5 : 0000000000000003 ffffdf01
8debbbf0 fffff8009a96ba30 00000000
00000027 : nt!KiBugCheckDebugBreak+0x12
ffffdf018debbaf0 fffff800
9a95e774 : fffff80000000000 ffffb705
979e5080 ffffc907379bb230 ffffb705
979e5080 : nt!KeBugCheck2+0x8a5
ffffdf018debc200 fffff804
ce1afcc9 : 0000000000000027 00000000
fcb0027c ffffc907379bb5f8 ffffc907
379bb230 : nt!KeBugCheckEx+0x104
ffffdf018debc240 fffff804
ce1e3376 : ffffc90700000000 00000000
00000000 ffffb70596775001 ffffb705
96775010 : rdbss! ?? ::FNODOBFM::string'+0x1ef9 ffffdf01
8debc390 fffff804ce1a29ab : ffffb705
96775010 ffffc907379bb230 ffffc907
379bb5f8 000000000076a000 : rdbss!RxCommonClose+0x126 ffffdf01
8debc430 fffff804ce1de5f6 : ffffffff
ffffffff ffffb705977b7b80 00000000
00000000 fffff804cd1b5548 : rdbss!RxFsdCommonDispatch+0x55b ffffdf01
8debc5b0 fffff804cef21203 : ffffb705
9678f040 ffffb7059596669c ffffb705
9596669c ffffb705977b7b80 : rdbss!RxFsdDispatch+0x86 ffffdf01
8debc600 fffff804cdaadc0c : ffffb705
9534b950 ffffb7059534b950 00000000
00000000 ffffb70597419e28 : rdpdr!DrPeekDispatch+0x203 ffffdf01
8debc680 fffff804cdaac5ec : ffffc907
2f0d4ee0 ffffb705977b7b80 ffffb705
97419c80 ffffb7059534b950 : mup!MupStateMachine+0x1dc ffffdf01
8debc6f0 fffff804cd187b85 : ffffb705
97738600 0000000000000000 ffffb705
94682210 ffffb705957288b0 : mup!MupClose+0x8c ffffdf01
8debc750 fffff804cd185616 : ffffb705
95549c40 ffffb705957288b0 00000000
00000001 ffffb70595644c40 : FLTMGR!FltpLegacyProcessingAfterPreCallbacksCompleted+0x1a5 ffffdf01
8debc7e0 fffff8009acc732d : ffffb705
977b7b80 0000000000000001 ffffb705
97419c80 0000000000000000 : FLTMGR!FltpDispatch+0xb6 ffffdf01
8debc840 fffff8009acc77c8 : 00000000
00000001 0000000000000000 ffffb705
944fdb00 ffffb705954ef800 : nt!IopDeleteFile+0x12d ffffdf01
8debc8c0 fffff8009a886eb6 : 00000000
00000000 0000000000000000 00000000
00000001 ffffb705977b7b80 : nt!ObpRemoveObjectRoutine+0x78 ffffdf01
8debc920 fffff8009acb391d : 00000000
00000000 ffffb705977b7b00 00000000
00000001 ffffb705977b7b60 : nt!ObfDereferenceObjectWithTag+0xc6 ffffdf01
8debc960 fffff8009acb174b : 00000000
00000000 ffffffffffffffff 00000000
011385c7 00000000036913f0 : nt!ObCloseHandleTableEntry+0x86d ffffdf01
8debcaa0 fffff8009a969393 : 00000000
00000000 ffffb70596fdd060 ffffb705
979e5080 000000000076a000 : nt!NtClose+0xcb ffffdf01
8debcb00 0000000067f1222c : 00000000
67f121ef 0000002376fde84c 00000000
67e30023 0000000000000000 : nt!KiSystemServiceCopyEnd+0x13 00000000
005ae9a8 0000000067f121ef : 00000023
76fde84c 0000000067e30023 00000000
00000000 00000000008fa694 : wow64cpu!CpupSyscallStub+0xc 00000000
005ae9b0 0000000067e4cfbd : 00000000
00769000 00000000005f2290 00000000
00000000 00000000005af210 : wow64cpu!Thunk0Arg+0x5 00000000
005aea60 0000000067e3d570 : 00000000
00000000 00000000005aeac0 00000000
005f1e78 0000000000000000 : wow64!Wow64KiUserCallbackDispatcher+0x471d 00000000
005aea90 00007ff9ed2413e1 : 00000000
00e80108 0000000000000000 00000000
00000003 0000000000768000 : wow64!Wow64LdrpInitialize+0x120 00000000
005aed40 00007ff9ed27803c : 00000000
00000000 00007ff9ed237e1d 00000000
00000000 0000000000000001 : ntdll!LdrpInitializeProcess+0x1551 00000000
005af140 00007ff9ed22896e : 00000000
005af210 0000000000000000 00000000
00000000 0000000000768000 : ntdll!_LdrpInitialize+0x4f678 00000000
005af1c0 0000000000000000 : 00000000
00000000 0000000000000000 00000000
00000000 00000000`00000000 : ntdll!LdrInitializeThunk+0xe