[ofw] ***SPAM*** BugCheck in ibbus -- DRIVER_IRQL_NOT_LESS_OR_EQUAL (d1)

Deepak Gupta deepak.gupta at qlogic.com
Tue Mar 10 07:04:55 PDT 2009 

Folks,

I was doing testing of some modifications that I did in ibiou and suddenly I
got a crash in ibbus.

I am not sure whether it happened due to some changes that I did in ibiou
(because I can't see any ibiou functions in the stack trace).
Can any one point to what was the cause.
I am using 1807 revision, So there are chances that it might have got fixed.

Below is the stack trace:--

*********************************************************************************************************************************************


*******************************************************************************
*
*
*                        Bugcheck
Analysis                                    *
*
*
*******************************************************************************

DRIVER_IRQL_NOT_LESS_OR_EQUAL (d1)
An attempt was made to access a pageable (or completely invalid) address at
an
interrupt request level (IRQL) that is too high.  This is usually
caused by drivers using improper addresses.
If kernel debugger is available get stack backtrace.
Arguments:
Arg1: 0000000000000028, memory referenced
Arg2: 0000000000000002, IRQL
Arg3: 0000000000000000, value 0 = read operation, 1 = write operation
Arg4: fffffa6004ebfb54, address which referenced memory

Debugging Details:
------------------






READ_ADDRESS:  0000000000000028

CURRENT_IRQL:  2

FAULTING_IP:
ibbus!spl_qp_alias_recv_cb+1e4
[d:\winof-latest\gen1\trunk\core\al\kernel\al_smi.c @ 3344]
fffffa60`04ebfb54 8b4928          mov     ecx,dword ptr [rcx+28h]

DEFAULT_BUCKET_ID:  VISTA_DRIVER_FAULT

BUGCHECK_STR:  0xD1

PROCESS_NAME:  System

TRAP_FRAME:  fffffa60019bbae0 -- (.trap 0xfffffa60019bbae0)
NOTE: The trap frame does not contain all registers.
Some register values may be zeroed or incorrect.
rax=fffffa800726a558 rbx=0000000100000001 rcx=0000000000000000
rdx=0000000000000000 rsi=fffffa80057f6158 rdi=fffffa6004e155b9
rip=fffffa6004ebfb54 rsp=fffffa60019bbc70 rbp=fffffa6001b61d90
 r8=fffffa60019bbc70  r9=fffff80001af0002 r10=0000000000000000
r11=fffffa60019bbc60 r12=0000000000000000 r13=0000000000000000
r14=0000000000000000 r15=0000000000000000
iopl=0         nv up ei ng nz na pe nc
> 3344:     p_mad_response->remote_qp    = p_mad_request->remote_qp;
ibbus!spl_qp_alias_recv_cb+0x1e4:
fffffa60`04ebfb54 8b4928          mov     ecx,dword ptr [rcx+28h]
ds:8b68:0028=????????
Resetting default scope

LAST_CONTROL_TRANSFER:  from fffff80001b66c72 to fffff80001aae860

STACK_TEXT:
fffffa60`019bb288 fffff800`01b66c72 : fffffa80`039cebb0 00000000`00000065
00000000`00000028 fffff800`01a79c38 : nt!RtlpBreakWithStatusInstruction
fffffa60`019bb290 fffff800`01b67a2b : 00000000`00000003 00000000`00000000
fffff800`01af4d90 00000000`000000d1 : nt!KiBugCheckDebugBreak+0x12
fffffa60`019bb2f0 fffff800`01ab4494 : 00000000`00000000 00000000`00000000
00000000`00000000 00000000`00000000 : nt!KeBugCheck2+0x6eb
fffffa60`019bb960 fffff800`01ab412e : 00000000`0000000a 00000000`00000028
00000000`00000002 00000000`00000000 : nt!KeBugCheckEx+0x104
fffffa60`019bb9a0 fffff800`01ab300b : 00000000`00000000 fffffa80`0756b338
00000000`00000000 fffffa80`0723bc60 : nt!KiBugCheckDispatch+0x6e
fffffa60`019bbae0 fffffa60`04ebfb54 : fffffa80`0726a638 fffffa80`00000000
fffffa60`01b61d90 fffffa60`01990580 : nt!KiPageFault+0x20b
fffffa60`019bbc70 fffffa60`04f116e2 : fffffa80`0728c660 fffffa80`07219000
fffffa80`0726a558 00000000`00000000 : ibbus!spl_qp_alias_recv_cb+0x1e4
[d:\winof-latest\gen1\trunk\core\al\kernel\al_smi.c @ 3344]
fffffa60`019bbd50 fffffa60`04f10fb6 : fffffa80`0728c660 fffffa80`055cbab0
fffffa80`00000000 fffffa60`019bbe68 : ibbus!__notify_send_comp+0x2a2
[d:\winof-latest\gen1\trunk\core\al\al_mad.c @ 2036]
fffffa60`019bbd90 fffffa60`04f0ad50 : fffffa80`0728c660 fffffa80`055cbae8
fffffa60`019bbe70 fffffa60`04eb33e3 : ibbus!__mad_svc_send_done+0x5d6
[d:\winof-latest\gen1\trunk\core\al\al_mad.c @ 1974]
fffffa60`019bbde0 fffffa60`04ebdbee : fffffa80`0728b970 fffffa80`055cbae8
fffffa60`019bbe70 fffffa60`000000f9 : ibbus!mad_disp_send_done+0x500
[d:\winof-latest\gen1\trunk\core\al\al_mad.c @ 867]
fffffa60`019bbe30 fffffa60`04ebd38f : fffffa80`07219000 fffffa80`0723bdd0
00000000`00000000 00000000`2c0416ee : ibbus!spl_qp_comp+0x32e
[d:\winof-latest\gen1\trunk\core\al\kernel\al_smi.c @ 2769]
fffffa60`019bbf00 fffff800`01abd9d7 : fffffa80`0723bc60 fffffa80`07219000
00000000`00000000 00000000`00000000 : ibbus!spl_qp_send_dpc_cb+0x10f
[d:\winof-latest\gen1\trunk\core\al\kernel\al_smi.c @ 2549]
fffffa60`019bbf40 fffff800`01ab7865 : fffffa60`04ebd280 fffffa60`0198d180
fffffa60`01b61d90 00000000`00000000 : nt!KiRetireDpcList+0x117
fffffa60`019bbfb0 fffff800`01ab7677 : 00000000`00000012 fffffa60`0198d810
00000000`00000000 00000000`00000003 : nt!KxRetireDpcList+0x5
fffffa60`01b61ce0 fffff800`01afac68 : fffff800`01c8a341 fffffa60`0198d810
fffffa60`017d2810 fffff800`01c8a340 : nt!KiDispatchInterruptContinue
fffffa60`01b61d10 fffff800`01ad7be5 : 00000000`00000000 00000000`00000000
00000000`00000002 fffffa60`0198d180 : nt!KiDpcInterrupt+0xf8
fffffa60`01b61ea0 fffff800`01a9e701 : 00000000`00000000 00000000`00000000
00000000`00000003 00000000`00000002 : nt!KeReleaseQueuedSpinLock+0x45
fffffa60`01b61ed0 fffff800`01ad4708 : fffff6fd`3001a9f8 fffffa80`039cebb1
fffffa80`039cebb1 fffffa60`0198d180 : nt!MiAllocateKernelStackPages+0x121
fffffa60`01b61f30 fffff800`01ad51b2 : fffffa00`00003535 00000000`00000000
00000002`00004e00 00000000`00004df9 : nt!MmCreateKernelStack+0x328
fffffa60`01b61ff0 fffffa60`0101e959 : fffffa60`0101e600 fffffa60`01b620b8
00000000`00000000 fffffa60`01b621f0 :
nt!KeExpandKernelStackAndCalloutEx+0xe2
fffffa60`01b62080 fffffa60`0101c9ed : fffffa60`01b624f0 fffffa60`01b62140
fffff880`057ecc80 00000000`00000000 : Ntfs!NtfsMultipleAsync+0xf9
fffffa60`01b620f0 fffffa60`01018f2e : fffffa60`01b624f0 fffffa80`058f3010
00000000`00000bec 00000000`00000000 : Ntfs!NtfsNonCachedIo+0x24d
fffffa60`01b622c0 fffffa60`0101c118 : fffffa60`01b624f0 fffffa80`058f3010
fffffa60`01b62601 fffffa60`01b62601 : Ntfs!NtfsCommonWrite+0x4ce
fffffa60`01b624c0 fffffa60`00cc7e17 : fffffa80`058f32d8 fffffa80`058f3010
fffffa80`0429fde0 fffffa80`04d50d40 : Ntfs!NtfsFsdWrite+0x208
fffffa60`01b62730 fffffa60`00cc70dd : fffffa80`03fb1880 fffffa80`04d15140
fffffa80`0429fd00 fffff800`01bd8b00 :
fltmgr!FltpLegacyProcessingAfterPreCallbacksCompleted+0x227
fffffa60`01b627a0 fffff800`01ad3bdd : fffffa80`0429fde0 fffffa80`0429fde0
00000000`00000008 fffffa80`04d15140 : fltmgr!FltpDispatch+0xcd
fffffa60`01b62800 fffff800`01ad291d : 00000000`00000008 fffff880`057c3080
fffffa60`01b62920 00000000`00000000 : nt!IoSynchronousPageWrite+0x14d
fffffa60`01b62830 fffff800`01ac6079 : fffff880`057c3078 fffff880`057c3080
fffffa80`057c6660 fffffa80`057c6660 : nt!MiFlushSectionInternal+0x7ce
fffffa60`01b62a30 fffff800`01ac9999 : fffffa80`00000001 00000000`00000000
00000000`00000000 fffffa80`039cebb0 : nt!MmFlushSection+0x2a9
fffffa60`01b62af0 fffff800`01acd460 : fffffa80`0583cec0 00000000`00000000
00000000`00000001 fffffa60`01b62ca0 : nt!CcFlushCache+0x65a
fffffa60`01b62be0 fffff800`01acdfab : fffffa60`00000000 00000000`00000000
00000000`00000000 00000000`00000000 : nt!CcWriteBehind+0x1c0
fffffa60`01b62c70 fffff800`01ac1066 : fffffa80`039ee200 fffff800`01c5d8a0
fffffa80`0547e0d0 fffffa80`00000000 : nt!CcWorkerThread+0x17b
fffffa60`01b62cf0 fffff800`01cd7de3 : fffffa80`039ee200 00000000`00000000
fffffa80`039cebb0 00000000`00000080 : nt!ExpWorkerThread+0x11a
fffffa60`01b62d50 fffff800`01aee536 : fffffa60`0198d180 fffffa80`039cebb0
fffffa60`01996d40 00000000`00000001 : nt!PspSystemThreadStartup+0x57
fffffa60`01b62d80 00000000`00000000 : 00000000`00000000 00000000`00000000
00000000`00000000 00000000`00000000 : nt!KiStartSystemThread+0x16


STACK_COMMAND:  kb

FOLLOWUP_IP:
ibbus!spl_qp_alias_recv_cb+1e4
[d:\winof-latest\gen1\trunk\core\al\kernel\al_smi.c @ 3344]
fffffa60`04ebfb54 8b4928          mov     ecx,dword ptr [rcx+28h]

FAULTING_SOURCE_CODE:
  3340:         (uint32_t)(uintn_t)p_mad_response->send_context2 );
  3341: #pragma warning( pop )
  3342:
  3343:     /* Set the remote QP. */
> 3344:     p_mad_response->remote_qp    = p_mad_request->remote_qp;
  3345:     p_mad_response->remote_qkey = p_mad_request->remote_qkey;
  3346:
  3347:     /* Prepare to create an address vector. */
  3348:     cl_memclr( &av_attr, sizeof( ib_av_attr_t ) );
  3349:     av_attr.port_num    = p_spl_qp_svc->port_num;


SYMBOL_STACK_INDEX:  6

SYMBOL_NAME:  ibbus!spl_qp_alias_recv_cb+1e4

FOLLOWUP_NAME:  MachineOwner

MODULE_NAME: ibbus

IMAGE_NAME:  ibbus.sys

DEBUG_FLR_IMAGE_TIMESTAMP:  49b66707

FAILURE_BUCKET_ID:  X64_0xD1_ibbus!spl_qp_alias_recv_cb+1e4

BUCKET_ID:  X64_0xD1_ibbus!spl_qp_alias_recv_cb+1e4


Regards
Deepak
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openfabrics.org/pipermail/ofw/attachments/20090310/1a1ad1be/attachment.html>

More information about the ofw mailing list