> Are you saying you have a complete PnP driver package
that happens to install a standard driver PLUS your filter?
Yes, my inf calls into CPU.inf for the standard driver install.
I find that very hard to believe.
Dont forget verifier is VERY specific. If a module allocates memory IT must free it. Of course intelppm.sys doesnt ever get an IRP_MJ_REMOVE_DEVICE untill the machine is just about shutdown, so it is not a scenario that has probably ever been tested.
As for my filter, it doesnt touch the Irps going from intelppm to acpi, they are all passed on. In fact during HCT my driver is actually totally inactive.
Here is the dump:
DRIVER_VERIFIER_DETECTED_VIOLATION (c4)
…
Arg1: 00000062, A driver has forgotten to free its pool allocations prior to unloading.
…
IMAGE_NAME: intelppm.sys
…
d> !verifier 3 intelppm.sys
Verify Level 9bb … enabled options are:
Special pool
Special irql
All pool allocations checked on unload
Io subsystem checking enabled
Deadlock detection enabled
DMA checking enabled
Security checks enabled
Miscellaneous checks enabled
Summary of All Verifier Statistics
RaiseIrqls 0x32
AcquireSpinLocks 0x162831
Synch Executions 0x0
Trims 0xcca1
Pool Allocations Attempted 0x24f443
Pool Allocations Succeeded 0x24f443
Pool Allocations Succeeded SpecialPool 0x24f443
Pool Allocations With NO TAG 0x0
Pool Allocations Failed 0x0
Resource Allocations Failed Deliberately 0x0
Current paged pool allocations 0x36 for 00001AA4 bytes
Peak paged pool allocations 0x41 for 0000D21C bytes
Current nonpaged pool allocations 0x109 for 00014A98 bytes
Peak nonpaged pool allocations 0x1a3 for 0001EF38 bytes
Driver Verification List
Entry State NonPagedPool PagedPool Module
84110ba0 Loaded 000003c8 0000001c intelppm.sys
Current Pool Allocations 00000008 00000001
Current Pool Bytes 000003c8 0000001c
Peak Pool Allocations 0000000c 00000004
Peak Pool Bytes 00000500 00000c1c
PoolAddress SizeInBytes Tag CallersAddress
8cb94fe0 0x00000020 Prcr 8b65ac60
8cb92e80 0x00000180 Prcr 8b65ac35
889f4fe0 0x0000001c Prcr 8b65a8ba
8cb90ff0 0x0000000c Prcr 8b65ac05
a6730fd8 0x00000024 Prcr 8b65b29f
a5ba0fa0 0x00000060 Prcr 8b65b270
8cb3cf38 0x000000c8 Prcr 8b65c1fa
8cb54f58 0x000000a4 Prcr 8b65e9ed
a51e4fd0 0x0000002c Prcr 8b65be6a
Prcr is NOT my tag, and like I said my drivers control DO is totaly inactive anyway, it isnt allocating tagged memory.
So yes, believe it, intelppm.sys really is leaking memory according to HCT.