From owner-freebsd-current@FreeBSD.ORG Sat Aug 14 16:32:17 2010 Return-Path: Delivered-To: current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 086971065694 for ; Sat, 14 Aug 2010 16:32:17 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from mail-ew0-f54.google.com (mail-ew0-f54.google.com [209.85.215.54]) by mx1.freebsd.org (Postfix) with ESMTP id 815488FC24 for ; Sat, 14 Aug 2010 16:32:16 +0000 (UTC) Received: by ewy26 with SMTP id 26so2149691ewy.13 for ; Sat, 14 Aug 2010 09:32:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:sender:received :in-reply-to:references:date:x-google-sender-auth:message-id:subject :from:to:content-type:content-transfer-encoding; bh=7wX1x9wCIwW5paJYBVYF5jq184D/S2UvlgUKmlV1jz0=; b=lXB2vzKqt/1Zqx9lUzf9JZbR9KecCPI+ArNo6paje6sBYtmb3Z7bp3ImzMNV8w0aOa nDYNH7Ut8ngUQRD3RQhGxn0ic9AJHXKxPTsXLdvMHAXeyd72trnMSTeAIcqkE+KwpKPX vL9x//87VCpPyfqAWttIPLa1mWi/O9T7RzWT0= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type :content-transfer-encoding; b=WMvJx2xVQ2iqtXyHZkr8cXfpVDhDW/GqyO2wLoHSI7zmQTx2eYwjFPgcynA804eUUP W9h3MdEDVVpkjt4EacftwZteoR/Hx07Q4K3V3F/VDTCzcla9JZ460mkQCrdRxMN3sQiq O8aDcdeYoenlH1mO975bwQ4ARjAlDrBB37an4= MIME-Version: 1.0 Received: by 10.213.32.78 with SMTP id b14mr772991ebd.84.1281802033756; Sat, 14 Aug 2010 09:07:13 -0700 (PDT) Sender: adrian.chadd@gmail.com Received: by 10.213.112.140 with HTTP; Sat, 14 Aug 2010 09:07:13 -0700 (PDT) In-Reply-To: <20100814152907.GG1670@albert.catwhisker.org> References: <20100814152907.GG1670@albert.catwhisker.org> Date: Sun, 15 Aug 2010 00:07:13 +0800 X-Google-Sender-Auth: qdCNX0yHo_-OC90MhABfHi9xzbo Message-ID: From: Adrian Chadd To: David Wolfskill , current@freebsd.org Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Cc: Subject: Re: Panic: Kernel page fault with ath0_com_lock held, r211295 X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 14 Aug 2010 16:32:17 -0000 You should be able to revert the ath changes reasonably easy. Would you mind doing that and see if that fixes or contributes to the probl= em? Thanks, Adrian On 14 August 2010 23:29, David Wolfskill wrote: > Previously built @r211278; just build r211295 this morning, and didn't > quite pass the smoke test. =A0I'll attach core.txt; here are highlights: > > FreeBSD localhost 9.0-CURRENT FreeBSD 9.0-CURRENT #89 r211295: Sat Aug 14= 07:34:56 PDT 2010 =A0 =A0 root@g1-219.catwhisker.org.:/usr/obj/usr/src/sys= /CANARY =A0i386 > ... > Kernel page fault with the following non-sleepable locks held: > exclusive sleep mutex ath0_com_lock (ath0_com_lock) r =3D 0 (0xc896e014) = locked @ /usr/src/sys/net80211/ieee80211_scan.c:957 > KDB: stack backtrace: > db_trace_self_wrapper(c0cb0eda,c53b9aa0,c08d93e5,3bd,0,...) at 0xc04da736= =3D db_trace_self_wrapper+0x26 > kdb_backtrace(3bd,0,ffffffff,c0f47aac,c53b9ad8,...) at 0xc08c4319 =3D kdb= _backtrace+0x29 > _witness_debugger(c0cb3689,c53b9aec,4,1,0,...) at 0xc08d93e5 =3D _witness= _debugger+0x25 > witness_warn(5,0,c0ceadbf,c08d0229,c0e04de0,...) at 0xc08da8ee =3D witnes= s_warn+0x1fe > trap(c53b9b78) at 0xc0bd9835 =3D trap+0x195 > calltrap() at 0xc0bc0b9c =3D calltrap+0x6 > --- trap 0xc, eip =3D 0xc0962604, esp =3D 0xc53b9bb8, ebp =3D 0xc53b9bd8 = --- > amrr_node_init(c8d3c000,c7d18d2e,c7d18d3f,1,c8d37800,...) at 0xc0962604 = =3D amrr_node_init+0x84 > ieee80211_sta_join(c8cac000,c896e320,c7d18d00,1,c896e000,...) at 0xc0985c= 07 =3D ieee80211_sta_join+0x1f7 > sta_pick_bss(c8996800,c8cac000,c0cc54c4,3bd,246,...) at 0xc0993853 =3D st= a_pick_bss+0x113 > scan_task(c8996800,1,c0cb27d9,53,c53b9cd8,...) at 0xc099102b =3D scan_tas= k+0x4bb > taskqueue_run(c894e880,c894e898,0,c0ccee5e,0,...) at 0xc08d09d3 =3D taskq= ueue_run+0xc3 > taskqueue_thread_loop(c896e074,c53b9d28,c0ca8b19,343,c0e04de0,...) at 0xc= 08d119e =3D taskqueue_thread_loop+0x6e > fork_exit(c08d1130,c896e074,c53b9d28) at 0xc0867348 =3D fork_exit+0xb8 > fork_trampoline() at 0xc0bc0c14 =3D fork_trampoline+0x8 > --- trap 0, eip =3D 0, esp =3D 0xc53b9d60, ebp =3D 0 --- > > Fatal trap 12: page fault while in kernel mode > cpuid =3D 0; apic id =3D 00 > fault virtual address =A0 =3D 0x0 > fault code =A0 =A0 =A0 =A0 =A0 =A0 =A0=3D supervisor read, page not prese= nt > instruction pointer =A0 =A0 =3D 0x20:0xc0962604 > stack pointer =A0 =A0 =A0 =A0 =A0 =3D 0x28:0xc53b9bb8 > frame pointer =A0 =A0 =A0 =A0 =A0 =3D 0x28:0xc53b9bd8 > code segment =A0 =A0 =A0 =A0 =A0 =A0=3D base 0x0, limit 0xfffff, type 0x1= b > =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0=3D DPL 0, pres 1, def32 1= , gran 1 > processor eflags =A0 =A0 =A0 =A0=3D interrupt enabled, resume, IOPL =3D 0 > current process =A0 =A0 =A0 =A0 =3D 0 (ath0 taskq) > panic: from debugger > cpuid =3D 0 > KDB: stack backtrace: > Uptime: 35s > Physical memory: 2031 MB > Dumping 94 MB: 79 63 47 31 15 > ... > Loaded symbols for /boot/kernel/tmpfs.ko > #0 =A0doadump () at pcpu.h:231 > 231 =A0 =A0 pcpu.h: No such file or directory. > =A0 =A0 =A0 =A0in pcpu.h > (kgdb) #0 =A0doadump () at pcpu.h:231 > #1 =A00xc089166e in boot (howto=3D260) at /usr/src/sys/kern/kern_shutdown= .c:416 > #2 =A00xc0891942 in panic (fmt=3DVariable "fmt" is not available. > ) at /usr/src/sys/kern/kern_shutdown.c:590 > #3 =A00xc04d8037 in db_panic (addr=3DCould not find the frame base for "d= b_panic". > ) at /usr/src/sys/ddb/db_command.c:478 > #4 =A00xc04d8661 in db_command (last_cmdp=3D0xc0de6a5c, cmd_table=3D0x0, = dopager=3D1) > =A0 =A0at /usr/src/sys/ddb/db_command.c:445 > #5 =A00xc04d87ba in db_command_loop () at /usr/src/sys/ddb/db_command.c:4= 98 > #6 =A00xc04da6dd in db_trap (type=3D12, code=3D0) at /usr/src/sys/ddb/db_= main.c:229 > #7 =A00xc08c407e in kdb_trap (type=3D12, code=3D0, tf=3D0xc53b9b78) > =A0 =A0at /usr/src/sys/kern/subr_kdb.c:535 > #8 =A00xc0bd931f in trap_fatal (frame=3D0xc53b9b78, eva=3D0) > =A0 =A0at /usr/src/sys/i386/i386/trap.c:936 > #9 =A00xc0bd9843 in trap (frame=3D0xc53b9b78) at /usr/src/sys/i386/i386/t= rap.c:326 > #10 0xc0bc0b9c in calltrap () at /usr/src/sys/i386/i386/exception.s:166 > #11 0xc0962604 in amrr_node_init (ni=3D0xc8d3c000) > =A0 =A0at /usr/src/sys/net80211/ieee80211_amrr.c:152 > #12 0xc0985c07 in ieee80211_sta_join (vap=3D0xc8cac000, chan=3D0xc896e320= , > =A0 =A0se=3D0xc7d18d00) at ieee80211_ratectl.h:80 > #13 0xc0993853 in sta_pick_bss (ss=3D0xc8996800, vap=3D0xc8cac000) > =A0 =A0at /usr/src/sys/net80211/ieee80211_scan_sta.c:1244 > #14 0xc099102b in scan_task (arg=3D0xc8996800, pending=3D1) > =A0 =A0at /usr/src/sys/net80211/ieee80211_scan.c:986 > #15 0xc08d09d3 in taskqueue_run (queue=3D0xc894e880, tpp=3D0xc53b9cd8) > =A0 =A0at /usr/src/sys/kern/subr_taskqueue.c:240 > #16 0xc08d119e in taskqueue_thread_loop (arg=3D0xc896e074) > =A0 =A0at /usr/src/sys/kern/subr_taskqueue.c:365 > #17 0xc0867348 in fork_exit (callout=3D0xc08d1130 = , > =A0 =A0arg=3D0xc896e074, frame=3D0xc53b9d28) at /usr/src/sys/kern/kern_fo= rk.c:843 > #18 0xc0bc0c14 in fork_trampoline () at /usr/src/sys/i386/i386/exception.= s:273 > > > I see that r211295 is fairly recent, but that there were some > ath(4)-related commits subsequent (r211299; r211303). =A0While I admit > but sketchy knowlegde of the code, I don't see anything glaringly > obvious there. > > I'm certainly willing to test, but I have some more critical domestic > priorities for most of the day, unfortunately. > > Peace, > david > -- > David H. Wolfskill =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0 = =A0 =A0david@catwhisker.org > Depriving a girl or boy of an opportunity for education is evil. > > See http://www.catwhisker.org/~david/publickey.gpg for my public key. >