Tamas K Lengyel
Tamas K Lengyel
> simply asserting that none of them is either crashmon or bsodmon I think the culprit in your crashes is `crashmon` itself. It is quite easy to trigger a bsod...
Yea, I'm digging into it right now too. It didn't really make much sense to me either, CR3 events don't cause any issue like that by default. With just bsodmon...
Don't think so.. It's of course one of those heisenbugs that as soon as you enable ASAN or run it through valgrind it never happens :)
You need to use https://github.com/tklengyel/valgrind
Btw > Drakvuf is already listening for CR3 changes, and crashmon is just a callback in cr3_cb loop ? That's no longer the case. There is no default cr3 listener...
So it definitely looks like the cr3 event is the culprit behind these bluescreens, but only when used with altp2m. I ran a plain cr3 event enable/disable loop dozens of...
So I have a patch to Xen that explicitely requests a TLB flush every time the altp2m changes (PTE gets propagated or gfn is remapped) and also after it is...
Interestingly with this https://github.com/tklengyel/libvmi/blob/altp2m_test/examples/event-example.c I can't trigger the bsod. It does the same thing as the crashmon+bsodmon plugin pretty much. Enables CR3 events and does altp2m remapping. With drakvuf I...
I'm also fairly confident at this point that this isn't a stale TLB issue with Xen. I tried forcing a TLB flush after every altp2m switch, after every gfn-change and...
@icedevml could you verify that this only happens if crashmon is enabled?