*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Use !analyze -v to get detailed debugging information.
BugCheck 7F, {8, 80050031, 406f8, fffff80003083d91}
Probably caused by : NETIO.SYS ( NETIO!CompareSecurityContexts+6a )
UNEXPECTED_KERNEL_MODE_TRAP (7f)
This means a trap occurred in kernel mode, and it's a trap of a kind
that the kernel isn't allowed to have/catch (bound trap) or that
is always instant death (double fault). The first number in the
bugcheck params is the number of the trap (8 = double fault, etc)
Consult an Intel x86 family manual to learn more about what these
traps are. Here is a *portion* of those codes:
If kv shows a taskGate
use .tss on the part before the colon, then kv.
Else if kv shows a trapframe
use .trap on that value
Else
.trap on the appropriate frame will show where the trap was taken
(on x86, this will be the ebp that goes with the procedure KiTrap)
Endif
kb will then show the corrected stack.
Arguments:
Arg1: 0000000000000008, EXCEPTION_DOUBLE_FAULT
Arg2: 0000000080050031
Arg3: 00000000000406f8
Arg4: fffff80003083d91
Debugging Details:
------------------
BUGCHECK_STR: 0x7f_8
CUSTOMER_CRASH_COUNT: 1
DEFAULT_BUCKET_ID: VISTA_DRIVER_FAULT
PROCESS_NAME: System
CURRENT_IRQL: 2
LAST_CONTROL_TRANSFER: from fffff8000307dca9 to fffff8000307e740
STACK_TEXT:
fffff800`0463dd28 fffff800`0307dca9 : 00000000`0000007f 00000000`00000008 00000000`80050031 00000000`000406f8 : nt!KeBugCheckEx
fffff800`0463dd30 fffff800`0307c172 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiBugCheckDispatch+0x69
fffff800`0463de70 fffff800`03083d91 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!KiDoubleFaultAbort+0xb2
fffff880`0affdfc0 fffff800`03046f5a : fffffa80`07f238f0 00000000`00000001 00000000`00000000 fffffa80`05fb97c8 : nt!SeAccessCheckWithHint+0x301
fffff880`0affe0a0 fffff880`01011c5a : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : nt!SeAccessCheckFromState+0x102
fffff880`0affe790 fffff880`0100f94f : 00000000`c0000022 00000000`00000000 00000000`00000000 00000000`00001820 : NETIO!CompareSecurityContexts+0x6a
fffff880`0affe800 fffff880`010119b5 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : NETIO!MatchValues+0xef
fffff880`0affe850 fffff880`01011845 : fffffa80`07598160 fffffa80`08436a00 fffff880`0affea78 fffff880`0afff1b0 : NETIO!FilterMatch+0x95
fffff880`0affe8a0 fffff880`01012ccb : 00000000`00000000 00000000`00000000 fffff880`0afff1b0 fffff880`0affea60 : NETIO!IndexListClassify+0x69
fffff880`0affe920 fffff880`0183e417 : fffff880`0affedf8 fffff880`0affedf8 fffff880`0afffb30 fffffa80`0868e8c0 : NETIO!KfdClassify+0xa4e
fffff880`0affec90 fffff880`0183783e : fffff880`01946690 00000000`00000000 fffffa80`07b3cc60 00000000`00000000 : tcpip!WfpAleClassify+0x57
fffff880`0affecd0 00000000`00000000 : 00000000`00000000 00000000`00000000 00000000`00000000 00000000`00000000 : tcpip!WfpAlepAuthorizeSend+0x94e
STACK_COMMAND: kb
FOLLOWUP_IP:
NETIO!CompareSecurityContexts+6a
fffff880`01011c5a 448b442470 mov r8d,dword ptr [rsp+70h]
SYMBOL_STACK_INDEX: 5
SYMBOL_NAME: NETIO!CompareSecurityContexts+6a
FOLLOWUP_NAME: MachineOwner
MODULE_NAME: NETIO
IMAGE_NAME: NETIO.SYS
DEBUG_FLR_IMAGE_TIMESTAMP: 4bbe946f
FAILURE_BUCKET_ID: X64_0x7f_8_NETIO!CompareSecurityContexts+6a
BUCKET_ID: X64_0x7f_8_NETIO!CompareSecurityContexts+6a
Followup: MachineOwner
---------