_chkstr UNADDR

[derekbruening]

From timurrrr@google.com on August 04, 2011 04:16:06

Saw this once on Chromium on Windows 7:
UNADDRESSABLE ACCESS: reading 0x1265d000-0x1265d004 4 byte(s)
#1 _chkstk ntdll.dll+0x3adbf
#2 VerifyStackAvailable RPCRT4.dll+0x24d1b
#3 RpcStringBindingParseW RPCRT4.dll+0x39640
#4 CFastBH::CreateFromBindingString ole32.dll+0x31d61
#5 CFastBH::GetOrCreate ole32.dll+0x31d04
#6 CRpcResolver::GetConnection ole32.dll+0x318b3
#7 CoInitializeSecurity ole32.dll+0x31310
#8 InitializeSecurity ole32.dll+0x1faa2
#9 CComApartment::InitRemoting ole32.dll+0x3768c
#10 CComApartment::StartServer ole32.dll+0x3760a
#11 CRpcResolver::BindToSCMProxy ole32.dll+0x3d0ff
#12 CRpcResolver::CreateInstance ole32.dll+0x3dfd1
#13 CClientContextActivator::CreateInstance ole32.dll+0x3e1b9
#14 ActivationPropertiesIn::DelegateCreateInstance ole32.dll+0x4561a
#15 ICoCreateInstanceEx ole32.dll+0x45542
#16 CComActivator::DoCreateInstance ole32.dll+0x55a26
#17 CoCreateInstanceEx ole32.dll+0x55987
#18 CoCreateInstance ole32.dll+0x55940
#19 CSearchIndexNotificationQueue::s_FlushNotificationQueueThreadProc SHELL32.dll+0x5949b
#20 ExecuteWorkItemThreadProc SHLWAPI.dll+0x1b6cf
#21 RtlpTpWorkCallback ntdll.dll+0x68746
#22 TppWorkerThread ntdll.dll+0x45504
#23 BaseThreadInitThunk KERNEL32.dll+0x13677
#24 __RtlUserThreadStart ntdll.dll+0x39f02
#25 _RtlUserThreadStart ntdll.dll+0x39ed5

Couldn't repro yet.

Original issue: http://code.google.com/p/drmemory/issues/detail?id=538

[derekbruening]

From bruen...@google.com on August 04, 2011 14:40:14

xref issue #442

[derekbruening]

From bruen...@google.com on August 04, 2011 15:42:09

here's what I see on WorkerFileSystemTest.Temporary:
Error #50: UNADDRESSABLE ACCESS: reading 0x1c09d000-0x1c09d004 4 byte(s)
@0:01:00.442 in thread 1428
0x7730ad8f <ntdll.dll+0x3ad8f> ntdll.dll!_chkstk
0x75034d1b <RPCRT4.dll+0x24d1b> RPCRT4.dll!VerifyStackAvailable
0x75049640 <RPCRT4.dll+0x39640> RPCRT4.dll!RpcStringBindingParseW
0x755e7734 <ole32.dll+0x27734> ole32.dll!CFastBH::CreateFromBindingString
0x755e76d7 <ole32.dll+0x276d7> ole32.dll!CFastBH::GetOrCreate
0x755e7afa <ole32.dll+0x27afa> ole32.dll!CRpcResolver::GetConnection
0x755e72cb <ole32.dll+0x272cb> ole32.dll!CoInitializeSecurity
0x755e14ec <ole32.dll+0x214ec> ole32.dll!InitializeSecurity
0x755ed1e1 <ole32.dll+0x2d1e1> ole32.dll!CComApartment::InitRemoting
0x755ed369 <ole32.dll+0x2d369> ole32.dll!CComApartment::StartServer
0x755f4731 <ole32.dll+0x34731> ole32.dll!CRpcResolver::BindToSCMProxy
0x755f5c1e <ole32.dll+0x35c1e> ole32.dll!CRpcResolver::CreateInstance
0x7730ad8f 85 00 test (%eax) %eax

a bunch of these:
assuming mmap 0x002dd000-0x002f0000 is a stack
WARNING: 0x5d97a190 is treating mmap memory 0x002ed3f4 as a stack!

not handling expansion of custom stack?
% grep stack logs/DrMemory-chrome.exe.4252.000/global.4252.log | grep 0x1c
thread initial stack: 0x1bfa0000-0x1c09e000-0x1c0a0000, TOS=0x1c09f73c
WARNING: 0x77309e4b is treating mmap memory 0x1c09fc9c as a stack!
assuming mmap 0x1c09e000-0x1c0a0000 is a stack
thread initial stack: 0x1cce0000-0x1cdde000-0x1cde0000, TOS=0x1cddf9e0
thread initial stack: 0x1cf10000-0x1d00e000-0x1d010000, TOS=0x1d00fe44

[derekbruening]

From bruen...@google.com on August 16, 2011 10:13:17

turns out it's just the unreadable check which should be bypassed for alloca match

Status: Started
Owner: bruen...@google.com

[derekbruening]

From derek.br...@gmail.com on August 16, 2011 14:11:28

This issue was closed by revision r466 .

Status: Fixed