Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 12 Jul 2009 14:22:23 -0700
From:      Kip Macy <kmacy@freebsd.org>
To:        current@freebsd.org
Subject:   Re: panic: vm_page_free_toq: freeing mapped page
Message-ID:  <3c1674c90907121422v1a45de5bnc4f83c767bd4d331@mail.gmail.com>
In-Reply-To: <20090712203105.GJ2145@acme.spoerlein.net>
References:  <20090712203105.GJ2145@acme.spoerlein.net>

next in thread | previous in thread | raw e-mail | index | archive | help
Can you try the following change:

http://svn.freebsd.org/viewvc/base/user/kmacy/releng_7_2_fcs/sys/vm/vm_obje=
ct.c?r1=3D192842&r2=3D195297

Thanks,
Kip

On Sun, Jul 12, 2009 at 1:31 PM, Ulrich Sp=F6rlein<uqs@spoerlein.net> wrote=
:
> Hi,
>
> 8.0 BETA1 @ r195622 will panic reliably when running the clang static
> analyzer on a buildworld with something like the following panic:
>
> panic: vm_page_free_toq: freeing mapped page 0xffffff00c9715b30
> cpuid =3D 1
> KDB: stack backtrace:
> db_trace_self_wrapper() at db_trace_self_wrapper+0x2a
> panic() at panic+0x182
> vm_page_free_toq() at vm_page_free_toq+0x1f6
> vm_object_terminate() at vm_object_terminate+0xb7
> vm_object_deallocate() at vm_object_deallocate+0x17a
> _vm_map_unlock() at _vm_map_unlock+0x70
> vm_map_remove() at vm_map_remove+0x6f
> vmspace_free() at vmspace_free+0x56
> vmspace_exec() at vmspace_exec+0x56
> exec_new_vmspace() at exec_new_vmspace+0x133
> exec_elf32_imgact() at exec_elf32_imgact+0x2ee
> kern_execve() at kern_execve+0x3b2
> execve() at execve+0x3d
> syscall() at syscall+0x1af
> Xfast_syscall() at Xfast_syscall+0xe1
> --- syscall (59, FreeBSD ELF64, execve), rip =3D 0x800c20d0c, rsp =3D 0x7=
fffffffd6f8, rbp =3D 0x7fffffffdbf0 ---
> KDB: enter: panic
> exclusive sleep mutex vm page queue mutex (vm page queue mutex) r =3D 0 (=
0xffffffff8095ea60) locked @ /data/freebsd-head/sys/vm/vm_object.c:688
> exclusive sleep mutex vm object (standard object) r =3D 0 (0xffffff004645=
3798) locked @ /data/freebsd-head/sys/vm/vm_object.c:450
> exclusive sleep mutex vm page queue mutex (vm page queue mutex) r =3D 0 (=
0xffffffff8095ea60) locked @ /data/freebsd-head/sys/vm/vm_object.c:688
> exclusive sleep mutex vm object (standard object) r =3D 0 (0xffffff004645=
3798) locked @ /data/freebsd-head/sys/vm/vm_object.c:450
> exclusive sleep mutex pmap (pmap) r =3D 0 (0xffffff003c8b02b8) locked @ /=
data/freebsd-head/sys/amd64/amd64/pmap.c:3955
> shared sx user map (user map) r =3D 0 (0xffffff003c8b0200) locked @ /data=
/freebsd-head/sys/vm/vm_map.c:3522
> exclusive sx so_rcv_sx (so_rcv_sx) r =3D 0 (0xffffff0004698e40) locked @ =
/data/freebsd-head/sys/kern/uipc_sockbuf.c:148
>
>
> Cheers,
> Ulrich Sp=F6rlein
> _______________________________________________
> freebsd-current@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-current
> To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org=
"
>



--=20
When bad men combine, the good must associate; else they will fall one
by one, an unpitied sacrifice in a contemptible struggle.

    Edmund Burke



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3c1674c90907121422v1a45de5bnc4f83c767bd4d331>