From owner-freebsd-hackers@FreeBSD.ORG Wed Dec 11 10:20:57 2013 Return-Path: Delivered-To: hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 66B9F54B for ; Wed, 11 Dec 2013 10:20:57 +0000 (UTC) Received: from mail-ea0-f172.google.com (mail-ea0-f172.google.com [209.85.215.172]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 01F0B1484 for ; Wed, 11 Dec 2013 10:20:56 +0000 (UTC) Received: by mail-ea0-f172.google.com with SMTP id q10so2654246ead.17 for ; Wed, 11 Dec 2013 02:20:14 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:from:to:subject:date; bh=CRRlBwCZdU5Xn4/8/Cw7DJP5IjeqB4Ca73+RWFXsPYY=; b=wKvrWSa/4f9K/19dy2SFztZHBTFlvSTupcarkeihvXxyxW40UEF44RYa7BpCSiK9QS c0msG+zYbcbYjSaAG2RYv8c6h54fvIxN0KWnR13/voiJyrL2zucJVr+yT2k4KFlOcHpa 55pmk9NOHKhqJgs1CbkyQuvnxwvHQDHZQyyKSmCD84ioEkU+MnZgyNchF9md1P6cOi9R ProZHOlo60I6EZwTZ36AsDbnukPX+SwDoXBIAACNrHY20fKqanBTdiMh1ReI31eMNVd4 UsuUu6LjtVP3o2B1GhQ76F7JIGEu7EMrqk+K7HSvj8Etm+b5vpHlkSv48A+WW61LonTh qfkw== X-Received: by 10.15.54.130 with SMTP id t2mr934478eew.72.1386757214060; Wed, 11 Dec 2013 02:20:14 -0800 (PST) Received: from DOMYPC ([82.193.208.225]) by mx.google.com with ESMTPSA id 4sm21945735eed.14.2013.12.11.02.20.12 for (version=TLSv1 cipher=RC4-SHA bits=128/128); Wed, 11 Dec 2013 02:20:13 -0800 (PST) Message-ID: <20131211.102013.482.3@DOMY-PC> From: rank1seeker@gmail.com To: hackers@freebsd.org Subject: Panic at (pickup) process Date: Wed, 11 Dec 2013 11:20:13 +0100 X-Mailer: POP Peeper (3.8.1.0) X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 11 Dec 2013 10:20:57 -0000 Yesterday I had a panic: 9.2-RELEASE-p2 Fatal trap 12: page fault while in kernel mode fault virtual address = 0x2d fault code = supervisor read, page not present instruction pointer = 0x20:0xc062e35d stack pointer = 0x28:0xd9d4aad4 frame pointer = 0x28:0xd9d4ab04 code segment = base 0x0, limit 0xfffff, type 0x1b = DPL 0, pres 1, def32 1, gran 1 processor eflags = interrupt enabled, resume, IOPL = 0 current process = 2989 (pickup) trap number = 12 panic: page fault Uptime: 5h2m15s Physical memory: 502 MB Dumping 67 MB: 52 36 20 4 No symbol "stopped_cpus" in current context. No symbol "stoppcbs" in current context. ... #0 doadump (textdump=1) at pcpu.h:249 249 pcpu.h: No such file or directory. in pcpu.h (kgdb) #0 doadump (textdump=1) at pcpu.h:249 #1 0xc065edaf in kern_reboot (howto=260) at /usr/src/sys/kern/kern_shutdown.c:449 #2 0xc065efe1 in panic (fmt=) at /usr/src/sys/kern/kern_shutdown.c:637 #3 0xc08bb30a in trap_fatal (frame=0xd9d4aa94, eva=45) at /usr/src/sys/i386/i386/trap.c:1044 #4 0xc08bb3f1 in trap_pfault (frame=0xd9d4aa94, usermode=0, eva=45) at /usr/src/sys/i386/i386/trap.c:896 #5 0xc08bc0a0 in trap (frame=0xd9d4aa94) at /usr/src/sys/i386/i386/trap.c:555 #6 0xc08a94ec in calltrap () at /usr/src/sys/i386/i386/exception.s:170 #7 0xc062e35d in kqueue_close (fp=0xc3f1ea48, td=0xc3fb6000) at /usr/src/sys/kern/kern_event.c:1663 #8 0xc0621c86 in _fdrop (fp=0xc3f1ea48, td=0xc3fb6000) at file.h:334 #9 0xc062322d in closef (fp=0xc3f1ea48, td=0xc3fb6000) at /usr/src/sys/kern/kern_descrip.c:2303 #10 0xc0624334 in fdfree (td=0xc3fb6000) at /usr/src/sys/kern/kern_descrip.c:2007 #11 0xc0632d09 in exit1 (td=0xc3fb6000, rv=) at /usr/src/sys/kern/kern_exit.c:301 #12 0xc0633afa in sys_sys_exit (td=Could not find the frame base for "sys_sys_exit". ) at /usr/src/sys/kern/kern_exit.c:122 #13 0xc08bb8bb in syscall (frame=0xd9d4ad08) at subr_syscall.c:135 #14 0xc08a9551 in Xint0x80_syscall () at /usr/src/sys/i386/i386/exception.s:270 #15 0x00000033 in ?? () Previous frame inner to this frame (corrupt stack?) (kgdb) So I debugged ... ---- (kgdb) up 7 #7 0xc062e35d in kqueue_close (fp=0xc3f1ea48, td=0xc3fb6000) at /usr/src/sys/kern/kern_event.c:1663 1663 for (i = 0; i < kq->kq_knlistsize; i++) { (kgdb) l 1658 fdp = kq->kq_fdp; 1659 1660 KASSERT(knlist_empty(&kq->kq_sel.si_note), 1661 ("kqueue's knlist not empty")); 1662 1663 for (i = 0; i < kq->kq_knlistsize; i++) { 1664 while ((kn = SLIST_FIRST(&kq->kq_knlist[i])) != NULL) { 1665 if ((kn->kn_status & KN_INFLUX) == KN_INFLUX) { 1666 kq->kq_state |= KQ_FLUXWAIT; 1667 msleep(kq, &kq->kq_lock, PSOCK, "kqclo1", 0); (kgdb) x/i $eip 0xc062e35d : testb $0x10,0x2c(%ebx) (kgdb) p kq $1 = (struct kqueue *) 0xc3d62480 (kgdb) p *kq $2 = {kq_lock = {lock_object = {lo_name = 0xc09224a8 "kqueue", lo_flags = 21168128, lo_data = 0, lo_witness = 0x0}, mtx_lock = 3288031232}, kq_refcnt = 1, kq_list = {sle_next = 0x0}, kq_head = { tqh_first = 0x0, tqh_last = 0xc3d6249c}, kq_count = 0, kq_sel = {si_tdlist = {tqh_first = 0x0, tqh_last = 0x0}, si_note = {kl_list = {slh_first = 0x0}, kl_lock = 0xc062dd25 , kl_unlock = 0xc062dcdc , kl_assert_locked = 0xc062acdb , kl_assert_unlocked = 0xc062ace0 , kl_lockarg = 0xc3d62480}, si_mtx = 0x0}, kq_sigio = 0x0, kq_fdp = 0xc3714800, kq_state = 16, kq_knlistsize = 256, kq_knlist = 0xc358f000, kq_knhashmask = 0, kq_knhash = 0x0, kq_task = {ta_link = {stqe_next = 0x0}, ta_pending = 0, ta_priority = 0, ta_func = 0xc062de5e , ta_context = 0xc3d62480}} ---- I have absolutely no idea what is going on here .... Domagoj