[ros-dev] CMD Overload.
James Tabor
jimtabor at adsl-64-217-116-74.dsl.hstntx.swbell.net
Fri May 6 15:36:46 CEST 2005
Hi!
Hartmut Birr wrote:
> James Tabor wrote:
>
>
>>Hi,
>>SVB revision 15031. List dll dump.
>>
>>I noticed many cmd in the process list so I could only use listdlls to
>>dump
>>the processes and command lines. I use a old cvs ros build for
>>testing, this
>>uses less drive space (2 + G), so here it is,
>>
>>
>>ListDLLs V2.23 - DLL lister for Win9x/NT
>>Copyright (C) 1997-2000 Mark Russinovich
>>http://www.sysinternals.com
>
>
> That is a result of my changes in rev 14475 and 14480. Csrss holds an
> opened handle for each process. This is necessary to identify a process
> over its process id. The process id is only unique if the process does
> live. The process itself has an opened port handle. If the process is
> closed the port handle, csrss does also close the process handle. If a
> process is terminate and does not inform csrss, csrss does not close
> the process handle. Deleting of the process' handle table will close the
> port handle, but the handle table is only deleted if no reference to the
> process exist. It seems I have to revert my changes. The old
> implementation needs a delay between removing a process id from one
> process and reassign the same id to a new process.
>
> - Hartmut
New problems,
When I execute a batch file to modify the path, after the batch file is
completed the cmd consoles go away.
First cmd;
mm/mm.c:338
Unhandled exception
Address:
0 C:\ReactOS\System32\cmd.exe
CS:EIP 1b:0
DS 23 ES 23 FS 3b GS 23
EAX: 0068f293 EBX: 00004000 ECX: 0068f1d8
EDX: 7ffe0304 EBP: 0068f298 ESI: 00000000 ESP: 0068f25c
EDI: 00000000 EFLAGS: 00010216
Frames:
400000+4dea C:\ReactOS\System32\cmd.exe
400000+2643 C:\ReactOS\System32\cmd.exe
400000+31b0 C:\ReactOS\System32\cmd.exe
400000+11e7 C:\ReactOS\System32\cmd.exe
400000+1238 C:\ReactOS\System32\cmd.exe
7c800000+28acf C:\ReactOS\system32\KERNEL32.dll
Second cmd;
mm/mm.c:338
Unhandled exception
Address:
0 C:\ReactOS\System32\cmd.exe
CS:EIP 1b:0
DS 23 ES 23 FS 3b GS 23
EAX: 0068f293 EBX: 00004000 ECX: 0068f1d8
EDX: 7ffe0304 EBP: 0068f298 ESI: 00000000 ESP: 0068f25c
EDI: 00000000 EFLAGS: 00010216
Frames:
400000+4dea C:\ReactOS\System32\cmd.exe in _ReadBatchLine {call 411748
<_FileGetString>}
400000+2643 C:\ReactOS\System32\cmd.exe in ProcessInput { if (!(ip = ReadBatchLine
(&bEchoThisLine))) }
400000+31b0 C:\ReactOS\System32\cmd.exe in main { nExitCode = ProcessInput(FALSE);}
400000+11e7 C:\ReactOS\System32\cmd.exe in ___mingw_CRTStartup
400000+1238 C:\ReactOS\System32\cmd.exe in _mainCRTStartup
7c800000+28acf C:\ReactOS\system32\KERNEL32.dll process/create.c:331 (BaseProcessStart)
Okay, this was from ls.bat which is a batch file with "xls -CF %1 %2" in it.
The cmd locks up and kdb is started;
(NTDLL:ldr/utils.c:2039) Failed to create or open dll section of '\SystemRoot\sy
stem32\winlogon.exe' (Status c0000135)
(mm/i386/page.c:283) Pde for 00c00000 - 00ffffff is not freed, RefCount 1
(dispatch.c:166)(dispatch) Select: 0
(dispatch.c:166)(dispatch) Select: 0
(dispatch.c:166)(dispatch) Select: 0
Entered debugger on last-chance exception number 14 (Page Fault)
Memory at 0x200068 could not be read: Page not present.
kdb:> bt
Eip:
<ntoskrnl.exe:98ebb (kdbg/kdb_symbols.c:541 (KdbSymFreeProcessSymbols))>
Frames:
<ntoskrnl.exe:9211a (kdbg/kdb.c:1487 (KdbDeleteProcessHook))>
<ntoskrnl.exe:7b9dd (ps/kill.c:163 (PspDeleteProcess))>
<ntoskrnl.exe:772a9 (ob/object.c:998 (ObpDeleteObject))>
<ntoskrnl.exe:773b5 (ob/object.c:1055 (ObpDeleteObjectDpcLevel))>
<ntoskrnl.exe:7757e (ob/object.c:1165 (ObfDereferenceObject))>
<ntoskrnl.exe:73b99 (ob/handle.c:78 (ObpDecrementHandleCount))>
<ntoskrnl.exe:73fd1 (ob/handle.c:212 (ObpDeleteHandle))>
<ntoskrnl.exe:7508c (ob/handle.c:909 (NtClose))>
<ntoskrnl.exe:3602 (/tmp/ccLjPSWL.s:180 (KiSystemService))>
Entered debugger on last-chance exception number 14 (Page Fault)
Memory at 0x200038 could not be read: Page not present.
KeBugCheckWithTf at ke/catch.c:217
(ke/process.c:282) Invalid detach (thread was not attached)
KeBugCheck at ke/process.c:283
A problem has been detected and ReactOS has been shut down to prevent damage to
your computer.
INVALID_PROCESS_DETACH_ATTEMPT
Technical information:
*** STOP: 0x00000006 (0x00000000,0x00000000,0x00000000,0x00000000)
Frames:
<ntoskrnl.exe:10839 (ke/bug.c:456 (KeBugCheckEx))>
<ntoskrnl.exe:10859 (ke/bug.c:476 (KeBugCheck))>
<ntoskrnl.exe:14ca3 (ke/process.c:283 (KeDetachProcess))>
<videoprt.sys:3bd6 (videoprt.c:521 (IntDetachFromCSRSS))>
<videoprt.sys:2f8d (int10.c:194 (IntInt10CallBios))>
<vbemp.sys:1dc5 (vbemp.c:757 (VBEResetDevice))>
<vbemp.sys:1973 (vbemp.c:530 (VBEResetHw))>
<videoprt.sys:23b8 (dispatch.c:54 (IntVideoPortResetDisplayParameters))>
<hal.dll:30a2 (../generic/display.c:646 (HalReleaseDisplayOwnership))>
<ntoskrnl.exe:1067b (ke/bug.c:303 (KeBugCheckWithTf))>
<ntoskrnl.exe:10c00 (ke/catch.c:212 (KiDispatchException))>
<ntoskrnl.exe:1229 (ke/i386/exp.c:176 (KiKernelTrapHandler))>
<ntoskrnl.exe:1a49 (ke/i386/exp.c:580 (KiTrapHandler))>
<ntoskrnl.exe:33e4 (/tmp/ccDVLimL.s:192 (KiTrapProlog))>
<ntoskrnl.exe:98617 (kdbg/kdb_symbols.c:81 (KdbpSymFindUserModule))>
<ntoskrnl.exe:98802 (kdbg/kdb_symbols.c:141 (KdbpSymFindModule))>
<ntoskrnl.exe:98827 (kdbg/kdb_symbols.c:160 (KdbpSymFindModuleByAddress))>
<ntoskrnl.exe:9888a (kdbg/kdb_symbols.c:222 (KdbSymPrintAddress))>
<ntoskrnl.exe:92f7b (kdbg/kdb_cli.c:590 (KdbpCmdBackTrace))>
<ntoskrnl.exe:9614e (kdbg/kdb_cli.c:2191 (KdbpDoCommand))>
<ntoskrnl.exe:962ad (kdbg/kdb_cli.c:2250 (KdbpCliMainLoop))>
<ntoskrnl.exe:9175c (kdbg/kdb.c:1070 (KdbpCallMainLoop))>
<ntoskrnl.exe:b007 (/tmp/ccGBevvE.s:142 (KdbpStackSwitchAndCall))>
Entered debugger on embedded INT3 at 0x0008:0x8000581e.
Entered debugger on embedded INT3 at 0x0008:0x8000581e.
I can execute standard execution files w/o any problem, FYI.
Well, until this is fixed I can not start checking my changes to kernel32
or ntdll modifications. BTW these changed I have are in a local branch.
Thanks,
James
More information about the Ros-dev
mailing list