Date: Sun, 23 Jul 2006 13:59:35 +0100 (BST) From: Robert Watson <rwatson@FreeBSD.org> To: Stephen Montgomery-Smith <stephen@math.missouri.edu> Cc: freebsd-stable <freebsd-stable@freebsd.org> Subject: Re: Panic Message-ID: <20060723135739.M60996@fledge.watson.org> In-Reply-To: <44BEBA2F.3060403@math.missouri.edu> References: <44BEBA2F.3060403@math.missouri.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 19 Jul 2006, Stephen Montgomery-Smith wrote:
> I just had a kernel panic. This happened seconds after I started a reboot
> using alt-ctl-del, at about the time just after it it said it was writing
> the entropy file.
>
> Here is the kernel config file, the results of the dump, and dmesg. Do you
> want anything else? I hope this info helps.
Thanks for this report. I'm very interested in tracking this down, but need
to think about it some, as the code paths in question are quite complex.
Could you:
(1) Submit a PR for this, including all the below information. Forward the PR
receipt to me once submitted so I can grab ownership.
(2) See if you can easily reproduce the problem.
(3) Keep the core dump around for a bit longer if I need to ask you to refer
back to it.
I've recently fixed a number of bugs in the UNIX domain socket code and merged
those fixes to 7-CURRENT. My first thought was that this is a symptom of one
of those bugs, but I'm now leaning against that, so need to read code for a
bit.
Thanks,
Robert N M Watson
Computer Laboratory
University of Cambridge
>
> include GENERIC
> ident HUB2
> nooption INET6
> options SMP
> device atapicam
> makeoptions DEBUG=-g
>
>
> hub2# cd /usr/obj/usr/src/sys/HUB2/
> hub2# kgdb kernel.debug /var/crash/vmcore.196
> [GDB will not be able to debug user-mode threads: /usr/lib/libthread_db.so:
> Undefined symbol "ps_pglobal_lookup"]
> GNU gdb 6.1.1 [FreeBSD]
> Copyright 2004 Free Software Foundation, Inc.
> GDB is free software, covered by the GNU General Public License, and you are
> welcome to change it and/or distribute copies of it under certain conditions.
> Type "show copying" to see the conditions.
> There is absolutely no warranty for GDB. Type "show warranty" for details.
> This GDB was configured as "i386-marcel-freebsd".
>
> Unread portion of the kernel message buffer:
> <118>.
> <118>.
>
>
> Fatal trap 12: page fault while in kernel mode
> cpuid = 0; apic id = 00
> fault virtual address = 0x24
> fault code = supervisor read, page not present
> instruction pointer = 0x20:0xc06acdc8
> stack pointer = 0x28:0xeadd7ae0
> frame pointer = 0x28:0xeadd7c68
> code segment = base 0x0, limit 0xfffff, type 0x1b
> = DPL 0, pres 1, def32 1, gran 1
> processor eflags = interrupt enabled, resume, IOPL = 0
> current process = 479 (mountd)
> trap number = 12
> panic: page fault
> cpuid = 0
> Uptime: 17h48m47s
> Dumping 3071 MB (2 chunks)
> chunk 0: 1MB (158 pages) ... ok
> chunk 1: 3071MB (786126 pages) 3055 3039 3023 3007 2991 2975 2959 2943 2927
> 2911 2895 2879 2863 2847 2831 2815 2799 2783 2767 2751 2735 2719 2703 2687
> 2671 2655 2639 2623 2607 2591 2575 2559 2543 2527 2511 2495 2479 2463 2447
> 2431 2415 2399 2383 2367 2351 2335 2319 2303 2287 2271 2255 2239 2223 2207
> 2191 2175 2159 2143 2127 2111 2095 2079 2063 2047 2031 2015 1999 1983 1967
> 1951 1935 1919 1903 1887 1871 1855 1839 1823 1807 1791 1775 1759 1743 1727
> 1711 1695 1679 1663 1647 1631 1615 1599 1583 1567 1551 1535 1519 1503 1487
> 1471 1455 1439 1423 1407 1391 1375 1359 1343 1327 1311 1295 1279 1263 1247
> 1231 1215 1199 1183 1167 1151 1135 1119 1103 1087 1071 1055 1039 1023 1007
> 991 975 959 943 927 911 895 879 863 847 831 815 799 783 767 751 735 719 703
> 687 671 655 639 623 607 591 575 559 543 527 511 495 479 463 447 431 415 399
> 383 367 351 335 319 303 287 271 255 239 223 207 191 175 159 143 127 111 95 79
> 63 47 31 15
>
> #0 doadump () at pcpu.h:165
> 165 __asm __volatile("movl %%fs:0,%0" : "=r" (td));
> (kgdb) list 0xc06acdc8
> Function "0xc06acdc8" not defined.
> (kgdb) list *0xc06acdc8
> 0xc06acdc8 is in unp_connect (/usr/src/sys/kern/uipc_usrreq.c:992).
> 987 goto bad2;
> 988 }
> 989 unp = sotounpcb(so);
> 990 unp2 = sotounpcb(so2);
> 991 unp3 = sotounpcb(so3);
> 992 if (unp2->unp_addr != NULL) {
> 993 bcopy(unp2->unp_addr, sa,
> unp2->unp_addr->sun_len);
> 994 unp3->unp_addr = (struct sockaddr_un *) sa;
> 995 sa = NULL;
> 996 }
> (kgdb) backtrace
> #0 doadump () at pcpu.h:165
> #1 0xc0668736 in boot (howto=260) at /usr/src/sys/kern/kern_shutdown.c:409
> #2 0xc0668a5d in panic (fmt=0xc08ae2d2 "%s")
> at /usr/src/sys/kern/kern_shutdown.c:565
> #3 0xc085895c in trap_fatal (frame=0xeadd7aa0, eva=36)
> at /usr/src/sys/i386/i386/trap.c:836
> #4 0xc085869b in trap_pfault (frame=0xeadd7aa0, usermode=0, eva=36)
> at /usr/src/sys/i386/i386/trap.c:744
> #5 0xc08582d5 in trap (frame=
> {tf_fs = -814350328, tf_es = -354615256, tf_ds = -1066794968, tf_edi =
> 0, tf_esi = -926606416, tf_ebp = -354583448, tf_isp = -354583860, tf_ebx =
> -928231144, tf_edx = -927683016, tf_ecx = 4, tf_eax = -814325048, tf_trapno =
> 12, tf_err = 0, tf_eip = -1066742328, tf_cs = 32, tf_eflags = 66178, tf_esp =
> -926077568, tf_ss = -927683016}) at /usr/src/sys/i386/i386/trap.c:434
> #6 0xc08452ea in calltrap () at /usr/src/sys/i386/i386/exception.s:139
> #7 0xc06acdc8 in unp_connect (so=0xc8cc1858, nam=0xcef36b60, td=0xc883f480)
> at /usr/src/sys/kern/uipc_usrreq.c:991
> #8 0xc06ab308 in uipc_connect (so=0xc8cc1858, nam=0xcef36b60, td=0xc883f480)
> at /usr/src/sys/kern/uipc_usrreq.c:232
> #9 0xc06a295e in soconnect (so=0xc8cc1858, nam=0xcef36b60, td=0xc883f480)
> at /usr/src/sys/kern/uipc_socket.c:558
> #10 0xc06a82c8 in kern_connect (td=0xc883f480, fd=3, sa=0xcef36b60)
> at /usr/src/sys/kern/uipc_syscalls.c:536
> ---Type <return> to continue, or q <return> to quit---
> #11 0xc06a822f in connect (td=0xc883f480, uap=0xeadd7d04)
> at /usr/src/sys/kern/uipc_syscalls.c:505
> #12 0xc0858ca3 in syscall (frame=
> {tf_fs = 59, tf_es = 59, tf_ds = 59, tf_edi = 1, tf_esi = 134598656,
> tf_ebp = -1077942152, tf_isp = -354583196, tf_ebx = -2011836128, tf_edx = -1,
> tf_ecx = -2011836128, tf_eax = 98, tf_trapno = 0, tf_err = 2, tf_eip =
> -2012021137, tf_cs = 51, tf_eflags = 582, tf_esp = -1077942500, tf_ss = 59})
> at /usr/src/sys/i386/i386/trap.c:981
> #13 0xc084533f in Xint0x80_syscall () at
> /usr/src/sys/i386/i386/exception.s:200
> #14 0x00000033 in ?? ()
> Previous frame inner to this frame (corrupt stack?)
> (kgdb)
>
>
>
>
>
> Copyright (c) 1992-2006 The FreeBSD Project.
> Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
> The Regents of the University of California. All rights reserved.
> FreeBSD 6.1-STABLE #0: Tue Jul 11 19:27:52 CDT 2006
> stephen@hub2.montlan:/usr/obj/usr/src/sys/HUB2
> ACPI APIC Table: <A M I OEMAPIC >
> Timecounter "i8254" frequency 1193182 Hz quality 0
> CPU: Intel(R) Xeon(TM) CPU 3.40GHz (3391.52-MHz 686-class CPU)
> Origin = "GenuineIntel" Id = 0xf41 Stepping = 1
>
> Features=0xbfebfbff<FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CLFLUSH,DTS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE>
> Features2=0x649d<SSE3,RSVD2,MON,DS_CPL,EST,CNTX-ID,CX16,<b14>>
> AMD Features=0x20000000<LM>
> Logical CPUs per core: 2
> real memory = 3221020672 (3071 MB)
> avail memory = 3142680576 (2997 MB)
> FreeBSD/SMP: Multiprocessor System Detected: 4 CPUs
> cpu0 (BSP): APIC ID: 0
> cpu1 (AP): APIC ID: 1
> cpu2 (AP): APIC ID: 6
> cpu3 (AP): APIC ID: 7
> ioapic0 <Version 2.0> irqs 0-23 on motherboard
> ioapic1 <Version 2.0> irqs 24-47 on motherboard
> kbd1 at kbdmux0
> ath_hal: 0.9.17.2 (AR5210, AR5211, AR5212, RF5111, RF5112, RF2413, RF5413)
> acpi0: <A M I OEMRSDT> on motherboard
> acpi0: Power Button (fixed)
> Timecounter "ACPI-fast" frequency 3579545 Hz quality 1000
> acpi_timer0: <24-bit timer at 3.579545MHz> port 0x808-0x80b on acpi0
> cpu0: <ACPI CPU> on acpi0
> acpi_throttle0: <ACPI CPU Throttling> on cpu0
> cpu1: <ACPI CPU> on acpi0
> acpi_throttle1: <ACPI CPU Throttling> on cpu1
> acpi_throttle1: failed to attach P_CNT
> device_attach: acpi_throttle1 attach returned 6
> cpu2: <ACPI CPU> on acpi0
> cpu3: <ACPI CPU> on acpi0
> pcib0: <ACPI Host-PCI bridge> port 0xcf8-0xcff on acpi0
> pci0: <ACPI PCI bus> on pcib0
> pci0: <unknown> at device 0.1 (no driver attached)
> pcib1: <ACPI PCI-PCI bridge> at device 2.0 on pci0
> pci1: <ACPI PCI bus> on pcib1
> pcib2: <ACPI PCI-PCI bridge> at device 3.0 on pci0
> pci2: <ACPI PCI bus> on pcib2
> pcib3: <ACPI PCI-PCI bridge> at device 4.0 on pci0
> pci3: <ACPI PCI bus> on pcib3
> nvidia0: <GeForce 7600 GS> port 0xcf80-0xcfff mem
> 0xfb000000-0xfbffffff,0xd0000000-0xdfffffff,0xfa000000-0xfaffffff at device
> 0.0 on pci3
> nvidia0: [GIANT-LOCKED]
> pcib4: <ACPI PCI-PCI bridge> at device 28.0 on pci0
> pci4: <ACPI PCI bus> on pcib4
> em0: <Intel(R) PRO/1000 Network Connection Version - 3.2.18> port
> 0xdf80-0xdfbf mem 0xfcfe0000-0xfcffffff,0xfcfc0000-0xfcfdffff irq 24 at
> device 2.0 on pci4
> em0: Ethernet address: 00:0e:0c:63:34:14
> twe0: <3ware Storage Controller. Driver version 1.50.01.002> port
> 0xdf00-0xdf0f mem 0xfc000000-0xfc7fffff irq 25 at device 3.0 on pci4
> twe0: [GIANT-LOCKED]
> twe0: 2 ports, Firmware FE8S 1.05.00.068, BIOS BE7X 1.08.00.048
> uhci0: <UHCI (generic) USB controller> port 0xbf00-0xbf1f irq 16 at device
> 29.0 on pci0
> uhci0: [GIANT-LOCKED]
> usb0: <UHCI (generic) USB controller> on uhci0
> usb0: USB revision 1.0
> uhub0: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1
> uhub0: 2 ports with 2 removable, self powered
> uhci1: <UHCI (generic) USB controller> port 0xbf80-0xbf9f irq 19 at device
> 29.1 on pci0
> uhci1: [GIANT-LOCKED]
> usb1: <UHCI (generic) USB controller> on uhci1
> usb1: USB revision 1.0
> uhub1: Intel UHCI root hub, class 9/0, rev 1.00/1.00, addr 1
> uhub1: 2 ports with 2 removable, self powered
> pci0: <base peripheral> at device 29.4 (no driver attached)
> pci0: <base peripheral, interrupt controller> at device 29.5 (no driver
> attached)
> ehci0: <Intel 6300ESB USB 2.0 controller> mem 0xf9effc00-0xf9efffff irq 23 at
> device 29.7 on pci0
> ehci0: [GIANT-LOCKED]
> usb2: EHCI version 1.0
> usb2: companion controllers, 2 ports each: usb0 usb1
> usb2: <Intel 6300ESB USB 2.0 controller> on ehci0
> usb2: USB revision 2.0
> uhub2: Intel EHCI root hub, class 9/0, rev 2.00/1.00, addr 1
> uhub2: 4 ports with 4 removable, self powered
> pcib5: <ACPI PCI-PCI bridge> at device 30.0 on pci0
> pci5: <ACPI PCI bus> on pcib5
> em1: <Intel(R) PRO/1000 Network Connection Version - 3.2.18> port
> 0xee80-0xeebf mem 0xfeba0000-0xfebbffff irq 16 at device 3.0 on pci5
> em1: Ethernet address: 00:0e:0c:3d:e1:6f
> pcm0: <AudioPCI ES1370> port 0xee00-0xee3f irq 21 at device 4.0 on pci5
> pcm0: es1370_wrcodec: timed out
> pcm0: <Playback: DAC2 / Record: ADC>
> isab0: <PCI-ISA bridge> at device 31.0 on pci0
> isa0: <ISA bus> on isab0
> atapci0: <Intel 6300ESB UDMA100 controller> port
> 0x1f0-0x1f7,0x3f6,0x170-0x177,0x376,0xfc00-0xfc0f at device 31.1 on pci0
> ata0: <ATA channel 0> on atapci0
> ata1: <ATA channel 1> on atapci0
> pci0: <serial bus, SMBus> at device 31.3 (no driver attached)
> acpi_button0: <Power Button> on acpi0
> atkbdc0: <Keyboard controller (i8042)> port 0x60,0x64 irq 1 on acpi0
> atkbd0: <AT Keyboard> irq 1 on atkbdc0
> kbd0 at atkbd0
> atkbd0: [GIANT-LOCKED]
> psm0: <PS/2 Mouse> irq 12 on atkbdc0
> psm0: [GIANT-LOCKED]
> psm0: model IntelliMouse Explorer, device ID 4
> sio0: <16550A-compatible COM port> port 0x3f8-0x3ff irq 4 flags 0x10 on acpi0
> sio0: type 16550A
> sio1: <16550A-compatible COM port> port 0x2f8-0x2ff irq 3 on acpi0
> sio1: type 16550A
> fdc0: <floppy drive controller (FDE)> port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on
> acpi0
> fdc0: [FAST]
> fd0: <1440-KB 3.5" drive> on fdc0 drive 0
> pmtimer0 on isa0
> orm0: <ISA Option ROMs> at iomem
> 0xcf000-0xcffff,0xd0000-0xd0fff,0xd1000-0xd1fff,0xd2800-0xd37ff on isa0
> ppc0: parallel port not found.
> sc0: <System console> at flags 0x100 on isa0
> sc0: VGA <16 virtual consoles, flags=0x300>
> vga0: <Generic ISA VGA> at port 0x3c0-0x3df iomem 0xa0000-0xbffff on isa0
> ugen0: American Power Conversion Back-UPS RS 1500 FW:8.g9 .D USB FW:g9, rev
> 1.10/1.06, addr 2
> Timecounters tick every 1.000 msec
> acd0: DMA limited to UDMA33, controller found non-ATA66 cable
> acd0: DVDR <LITE-ON DVDRW SOHW-1633S/BS0C> at ata0-master UDMA33
> twed0: <Unit 0, RAID0, Normal> on twe0
> twed0: 228944MB (468879104 sectors)
> SMP: AP CPU #3 Launched!
> SMP: AP CPU #1 Launched!
> SMP: AP CPU #2 Launched!
> cd0 at ata0 bus 0 target 0 lun 0
> cd0: <LITE-ON DVDRW SOHW-1633S BS0C> Removable CD-ROM SCSI-0 device
> cd0: 33.000MB/s transfers
> cd0: Attempt to query device size failed: NOT READY, Medium not present
> Trying to mount root from ufs:/dev/twed0s3a
> WARNING: / was not properly dismounted
>
> _______________________________________________
> freebsd-stable@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-stable
> To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org"
>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060723135739.M60996>