On Wed, Feb 26, 2025 at 3:29 AM Petr Beneš <[email protected]> wrote: > > and frustratingly, the generated MEMORY.DMP is corrupted. >
I finally managed to capture a few non-corrupted crashdumps. The cause of crash always points to the same symbol: nt!KiIpiProcessRequests+0x193 Crashdump#1 00 fffff802`0867ad90 : 00000000`00000061 fffff307`eb40d3f0 00000000`00000000 00000000`00000000 : nt!KiIpiProcessRequests+0x193 01 fffff802`0867aaa7 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiIpiInterruptSubDispatch+0x90 02 fffff802`08566c8e : 00000000`00006000 ffffd801`78e20180 00000000`00000000 00000000`00000000 : nt!KiIpiInterrupt+0x307 03 fffff802`0855a96c : 00000000`00000000 00000000`0000609c 00000000`00000000 00000000`00000000 : nt!MiFlushTbList+0x39e 04 fffff802`0855a304 : 00000000`00000000 00000000`00000000 00000000`00000003 00179800`0000609a : nt!MiReplenishBitMap+0x5bc 05 fffff802`084d3857 : 00179841`0000609b 00000000`00000001 00000000`00000020 00000000`00000000 : nt!MiEmptyPteBins+0x124 06 fffff802`084d2d1c : 00000000`00000000 ffffd66c`00000003 ffff940f`390d7d10 fffff802`084fec14 : nt!MiReservePtes+0x447 07 fffff802`0a8b45b8 : 00000000`00015000 ffff940f`361ea3e0 00000000`00000001 00000000`00000001 : nt!MmMapLockedPagesSpecifyCache+0xcc 08 fffff802`0a8b05df : 00000000`00015000 00000000`0000100c ffff940f`00015000 ffff940f`361ea050 : rdyboost!SMKM_STORE<SMD_TRAITS>::SmStMapPhysicalRegion+0x80 09 fffff802`0a8b0327 : a8d26432`0000100c 00000000`00000000 00000000`00000000 ffff940f`3addd650 : rdyboost!ST_STORE<SMD_TRAITS>::StDmpSinglePageRetrieve+0x22f 0a fffff802`0a8b0066 : ffff940f`361ea000 fffff802`0a8ae3ff 00000000`00000000 00000000`ffffffff : rdyboost!ST_STORE<SMD_TRAITS>::StDmPageRetrieve+0x147 0b fffff802`0a8ae1ee : 00000000`00000080 ffff940f`3addd650 00000000`00000000 00000000`00000000 : rdyboost!ST_STORE<SMD_TRAITS>::StWorkItemProcess+0xa6 0c fffff802`0a8b5be1 : 00000000`00000000 ffffd801`00000000 00000000`00000000 00000000`000001de : rdyboost!SMKM_STORE<SMD_TRAITS>::SmStWorker+0x15e 0d fffff802`085dd715 : ffff940f`361ea000 fffff802`0a8b5bd0 fffff307`eb005f38 0000247f`b19bbdff : rdyboost!SMKM_STORE<SMD_TRAITS>::SmStWorkerThread+0x11 0e fffff802`0867b6ea : ffffd801`78e20180 ffff940f`361d0040 fffff802`085dd6c0 00000000`00000000 : nt!PspSystemThreadStartup+0x55 0f 00000000`00000000 : fffff307`eb40e000 fffff307`eb408000 00000000`00000000 00000000`00000000 : nt!KiStartSystemThread+0x2a Crashdump#2 00 fffff800`03476d90 : 00000000`00000000 fffff800`05a75db0 00000000`00000000 00000000`00000000 : nt!KiIpiProcessRequests+0x193 01 fffff800`03476aa7 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiIpiInterruptSubDispatch+0x90 02 fffff800`068e1749 : fffff800`024e7180 fffff800`033aa251 00000000`00000000 00000000`00000005 : nt!KiIpiInterrupt+0x307 03 fffff800`05140713 : ffffc787`47d447e0 fffff800`05a75f30 ffff9880`b57716f0 ffff9880`b5179180 : Rtnic64!MPIsr+0x41 04 fffff800`032b19e5 : ffff9880`b5771640 00000000`00000000 fffff800`024e7180 fffff800`024e7180 : ndis!ndisMIsr+0x83 05 fffff800`034718bf : fffff800`05a6ea90 ffff9880`b5771640 00000000`0000fffe fffff800`03476d90 : nt!KiCallInterruptServiceRoutine+0xa5 06 fffff800`03471b87 : ffff9880`b5b7f000 ffffc787`47d1e1a0 fffff800`05185050 00001f80`00350ac0 : nt!KiInterruptSubDispatch+0x11f 07 fffff800`0347130b : ffffc787`47d1e1a0 fffff800`068e192e ffffc787`47d447e0 00000000`00000000 : nt!KiInterruptDispatch+0x37 08 fffff800`0514063a : ffffc787`47751de0 fffff800`068e2ea8 ffffc787`47d44000 ffff078b`23b4f299 : nt!KeSynchronizeExecution+0x5b 09 fffff800`05140208 : ffffc787`47d1e1a0 fffff800`05a6ed40 ffffc787`47d44808 ffffc787`47d447e0 : ndis!ndisMDpcX+0xde 0a fffff800`0331a065 : fffff800`024e9f80 00000000`00000008 fffff800`05a6ecd0 00000000`00000008 : ndis!ndis5InterruptDpc+0x98 0b fffff800`033196bf : 00000000`00000014 00000000`00989680 00000000`0000038a 00000000`000000a2 : nt!KiExecuteAllDpcs+0x305 0c fffff800`034770e5 : 00000000`00000000 fffff800`024e7180 ffff9880`b5771640 000000d6`5dffc510 : nt!KiRetireDpcList+0x1ef 0d fffff800`03476ed0 : 00000000`00000000 fffff800`0320f2cb ffffffff`0000ffff 00000000`00000000 : nt!KxRetireDpcList+0x5 0e fffff800`03476785 : 000000d6`5dffc510 fffff800`03471c01 00000000`00000000 fffffc83`95752780 : nt!KiDispatchInterruptContinue 0f fffff800`03471c01 : 00000000`00000000 fffffc83`95752780 ffff9880`b5771640 fffff800`0387d507 : nt!KiDpcInterruptBypass+0x25 10 fffff800`038a387b : 00000000`00000000 00000000`00000008 00000000`00000008 fffff800`032f4e97 : nt!KiInterruptDispatch+0xb1 11 fffff800`03481915 : ffffffff`fffffffb ffffc787`4cf60040 ffffdc03`00000001 000000d6`5dffcee8 : nt!NtQueryKey+0x34b 12 00007ffc`6dcfc394 : 00007ffc`6b88aad7 000000d6`5dffc630 000000d6`5dffc630 00000000`00000000 : nt!KiSystemServiceCopyEnd+0x25 13 00007ffc`6b88aad7 : 000000d6`5dffc630 000000d6`5dffc630 00000000`00000000 0000025c`00000001 : ntdll!NtQueryKey+0x14 Also, I would like to reiterate that these crashes happen AT THE VERY MOMENT the xl save command is executed. I experimented with delaying the xl save by a few seconds, even minutes. The VM runs always fine until the moment xl save is executed. Then this crash happens (randomly). P.
