From owner-freebsd-current@FreeBSD.ORG  Wed Aug 11 19:05:32 2004
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 7C13916A4F4
	for <current@FreeBSD.org>; Wed, 11 Aug 2004 19:05:32 +0000 (GMT)
Received: from mail6.speakeasy.net (mail6.speakeasy.net [216.254.0.206])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 1012C43D66
	for <current@FreeBSD.org>; Wed, 11 Aug 2004 19:05:18 +0000 (GMT)
	(envelope-from jhb@FreeBSD.org)
Received: (qmail 12324 invoked from network); 11 Aug 2004 19:05:17 -0000
Received: from dsl027-160-063.atl1.dsl.speakeasy.net (HELO server.baldwin.cx)
	([216.27.160.63])          (envelope-sender <jhb@FreeBSD.org>)
	encrypted SMTP
	for <current@FreeBSD.org>; 11 Aug 2004 19:05:17 -0000
Received: from [10.50.41.91] (gw1.twc.weather.com [216.133.140.1])
	(authenticated bits=0)
	by server.baldwin.cx (8.12.11/8.12.11) with ESMTP id i7BJ516V093561;
	Wed, 11 Aug 2004 15:05:13 -0400 (EDT)
	(envelope-from jhb@FreeBSD.org)
From: John Baldwin <jhb@FreeBSD.org>
To: freebsd-current@FreeBSD.org
Date: Wed, 11 Aug 2004 14:51:38 -0400
User-Agent: KMail/1.6.2
References: <20040811085229.GA62668@peter.osted.lan>
In-Reply-To: <20040811085229.GA62668@peter.osted.lan>
MIME-Version: 1.0
Content-Disposition: inline
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Message-Id: <200408111451.38656.jhb@FreeBSD.org>
X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on server.baldwin.cx
cc: current@FreeBSD.org
Subject: Re: Fatal trap 12 in kern/kern_switch.c:436
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Aug 2004 19:05:34 -0000

On Wednesday 11 August 2004 04:52 am, Peter Holm wrote:
> While stress testing with kern.threads.virtual_cpu=256 I got this
> fault after a kill -9 of a hung test program.

Do you have PREEMPTION turned on?  This is the same type of bug that people 
were seeing with PREEMPTION turned on.

> GDB: no debug ports present
> KDB: debugger backends: ddb
> KDB: current backend: ddb
> Copyright (c) 1992-2004 The FreeBSD Project.
> Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
> 	The Regents of the University of California. All rights reserved.
> FreeBSD 5.2-CURRENT #0: Wed Aug 11 04:23:56 CEST 2004
>     root@peter.osted.lan:/usr/src/sys/i386/compile/PHO
> WARNING: WITNESS option enabled, expect reduced performance.
> ACPI APIC Table: <A M I  OEMAPIC >
> Timecounter "i8254" frequency 1193182 Hz quality 0
> CPU: Intel(R) Celeron(R) CPU 1.80GHz (1799.14-MHz 686-class CPU)
>   Origin = "GenuineIntel"  Id = 0xf13  Stepping = 3
>  
> Features=0x3febfbff<FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MC
>A,CMOV,PAT,PSE36,CLFLUSH,DTS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM> real memory 
> = 267583488 (255 MB)
> avail memory = 252190720 (240 MB)
>
> ata1-master: DMA limited to UDMA33, non-ATA66 cable or device
> acd0: CDROM <SONY CD-ROM CDU5261/C200SNS> at ata1-master UDMA33
> Mounting root from ufs:/dev/ad0s1a
> kernel trap 12 with interrupts disabled
>
>
> Fatal trap 12: page fault while in kernel mode
> cpuid = 0; apic id = 00
> fault virtual address	= 0x54
> fault code		= supervisor write, page not present
> instruction pointer	= 0x8:0xc066ab08
> stack pointer	        = 0x10:0xd25c1c50
> frame pointer	        = 0x10:0xd25c1c70
> code segment		= base 0x0, limit 0xfffff, type 0x1b
> 			= DPL 0, pres 1, def32 1, gran 1
> processor eflags	= resume, IOPL = 0
> current process		= 539 (pthread_setconcurre)
> [thread 101883]
> Stopped at      setrunqueue+0x1e8:      movl    %edi,0x54(%edx)
> db> where
> setrunqueue(c1bac2c0,c1a957d0,c08b1292,484,c065038e) at setrunqueue+0x1e8
> sched_switch(c1bac2c0,0,c08b06b2,123,d3526cf3) at sched_switch+0xa4
> mi_switch(2,0,c08b2b56,f5,10000) at mi_switch+0x29f
> ast(d25c1d48) at ast+0x3fb
> doreti_ast() at doreti_ast+0x17
> db> call doadump
> Dumping 255 MB
> panic: blockable sleep lock (sleep mutex) taskqueue @
> kern/subr_taskqueue.c:132 cpuid = 0;
> Uptime: 34m36s
> panic: cv_wait: not TDS_RUNNING
> cpuid = 0;
> KDB: enter: panic
> [thread 101883]
> Stopped at      kdb_enter+0x30: leave
> db>
>
> (kgdb) l *0xc066ab08
> 0xc066ab08 is in setrunqueue (../../../kern/kern_switch.c:436).
> 431                              * put the new kse on whatever is next,
> 432                              * which may or may not be us.
> 433                              */
> 434                             td2 = TAILQ_NEXT(tda, td_runq);
> 435                             kg->kg_last_assigned = td2;
> 436                             td2->td_kse = ke;
> 437                             ke->ke_thread = td2;
> 438                     }
> 439                     sched_add(ke->ke_thread);
> 440             } else {
> (kgdb)

-- 
John Baldwin <jhb@FreeBSD.org>  <><  http://www.FreeBSD.org/~jhb/
"Power Users Use the Power to Serve!"  -  http://www.FreeBSD.org/