Microsoft KB Archive/811351

= An APPC Application May AV in WAPPC32!continue_verb_processing =

Article ID: 811351

Article Last Modified on 8/24/2005

-

APPLIES TO


 * Microsoft Host Integration Server 2000 Standard Edition
 * Microsoft Host Integration Server 2000 Service Pack 1

-





SYMPTOMS
An APPC application may quit unexpectedly and cause you to lose your existing host sessions. If the default debugger on the system is Dr. Watson (Drwtsn32.exe), a Drwtsn32.log file similar to the following is generated: Application exception occurred: App: APPCApp.exe (pid=720) When: 05/12/2002 @ 19:26:26.066 Exception number: c0000005 (access violation)

[...]

State Dump for Thread Id 0xd40

eax=02837801 ebx=00000001 ecx=00000000 edx=00000000 esi=000003f0 edi=00000001 eip=6340b990 esp=02e2feb0 ebp=602012d0 iopl=0        nv up ei pl zr na po nc cs=001b  ss=0023  ds=0023  es=0023  fs=0038  gs=0000             efl=00000246

function: continue_verb_processing 6340b962 8b0d00a94463    mov    ecx,[vcbptr (6344a900)] ds:6344a900=02837844 6340b968 668b150eac4463  mov     dx,[primary_rc (6344ac0e)] ds:6344ac0e=0000 6340b96f 3bfb            cmp     edi,ebx 6340b971 66895104        mov     [ecx+0x4],dx               ds:0081d5d3=???? 6340b975 a100a94463      mov    eax,[vcbptr (6344a900)] ds:6344a900=02837844 6340b97a 8b0d10ac4463 mov ecx,[secondary_rc (6344ac10)] ds:6344ac10=00000000 6340b980 894808          mov     [eax+0x8],ecx          ds:03054dd3=???????? 6340b983 7536            jnz     get_rcb+0x1db (634144bb) 6340b985 8b1508a94463    mov    edx,[rcbptr (6344a908)] ds:6344a908=00000000 6340b98b a017ac4463      mov     al,[vp_state (6344ac17)]     ds:6344ac17=01 FAULT ->6340b990 888200010000    mov     [edx+0x100],al               ds:00000100=?? 6340b996 8b0d08a94463    mov    ecx,[rcbptr (6344a908)] ds:6344a908=00000000 6340b99c 8a1518ac4463    mov     dl,[mc_vp_state (6344ac18)]  ds:6344ac18=02 6340b9a2 889101010000    mov     [ecx+0x101],dl               ds:00000101=?? 6340b9a8 a108a94463      mov    eax,[rcbptr (6344a908)] ds:6344a908=00000000 6340b9ad 8a0d19ac4463    mov     cl,[return_verb (6344ac19)]  ds:6344ac19=00 6340b9b3 888802010000    mov     [eax+0x102],cl               ds:02837903=00 6340b9b9 eb2b            jmp     get_rcb+0x206 (634144e6) 6340b9bb 8b1504a94463    mov   edx,[tpcbptr (6344a904)] ds:6344a904=01e884f8 6340b9c1 a017ac4463      mov     al,[vp_state (6344ac17)]     ds:6344ac17=01 6340b9c6 884218          mov     [edx+0x18],al                ds:0081d5d2=?? 6340b9c9 8b0d04a94463    mov   ecx,[tpcbptr (6344a904)] ds:6344a904=01e884f8


 * > Stack Back Trace <*

FramePtr ReturnAd Param#1 Param#2  Param#3  Param#4  Function Name 602012D0 85566021 840F57C0 00000104 106C15FF F88B6020 wappc32!continue_verb_processing 3F6CA151 00000000 00000000 00000000 00000000 00000000



CAUSE
A problem with the APPC API code means that this access violation (AV) may occur if an internal control block value is greater than 255 when a WinAPPCCancelAsyncRequest verb is issued by the calling application. The calling application has no way of knowing what this internal control block value is, nor does it have any way to control this value.



Service pack information
To resolve this problem, obtain the latest service pack for Microsoft Host Integration Server 2000. For more information, click the following article number to view the article in the Microsoft Knowledge Base:

328152 How to obtain the latest service pack for Host Integration Server 2000

Hotfix information
The English version of this fix has the file attributes (or later) that are listed in the following table. The dates and times for these files are listed in coordinated universal time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time tool in Control Panel.

Admin-Server Packages: Date        Time   Version      Size      File name -  15-Jan-2003  12:30  5.0.0.900    221,456   Wappc32.dll

End-User Packages: Date        Time   Version      Size      File name -  15-Jan-2003  12:30  5.0.0.900    155,920   Wappc32.dll

Note Because of file dependencies, the most recent fix that contains the preceding files may also contain additional files.



STATUS
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the &quot;Applies to&quot; section.

This problem was corrected in Microsoft Host Integration Server 2000 Service Pack 2.



MORE INFORMATION
When you examine a crash dump file of the AV, together with symbols that match in a debugging tool such as WinDBG, the stack trace is similar to the following:

Access violation - code c0000005 (!!! second chance !!!) eax=02837801 ebx=00000001 ecx=00000000 edx=00000000 esi=000003f0 edi=00000001 eip=6340b990 esp=02e2feb0 ebp=602012d0 iopl=0        nv up ei pl zr na po nc cs=001b  ss=0023  ds=0023  es=0023  fs=0038  gs=0000             efl=00000246 WAPPC32!continue_verb_processing+230: 6340b990 888200010000    mov     [edx+0x100],al          ds:0023:00000100=?? 0:014> kv ChildEBP RetAddr Args to Child 02e2febc 6340e2bc 00000000 6340daf0 02e2ff54 WAPPC32!continue_verb_processing+0x230 (FPO: [EBP 0x602012d0] [0,0,4]) 02e2fef8 67247982 1003a2f4 67270005 00000001 WAPPC32!process_hs_to_ps_records+0x7cc (FPO: [EBP 0x02e2ff54] [3,10,4]) 02e2ff54 6723c93e 1003a2f4 00000001 77f82207 SNADMOD!sepdq2_int+0x122 (FPO: [Non-Fpo]) 02e2ff74 6723ce2a 02e2ffa4 02e2ffac 02e2ff9e SNADMOD!sbpdin_int+0x23e (FPO: [EBP 0x77e969af] [4,1,4]) 02e2ffb4 77e96523 00000000 fffffffe 00000040 SNADMOD!RamPipeThread+0x1ea (FPO: [EBP 0xfffffffe] [1,7,4]) fffffffe 00000000 00000000 00000000 00000000 KERNEL32!BaseThreadStart+0x52 (FPO: [Non-Fpo]) 