Date: Sun, 19 Aug 2001 17:22:00 +0200 (CEST) From: Alexander Leidinger <Alexander@Leidinger.net> To: grog@FreeBSD.org Cc: current@FreeBSD.org Subject: Re: panic: ffs_blkfree: freeing free block / + UDMA ICRC error with ad0 Message-ID: <200108191522.f7JFM2V97331@Magelan.Leidinger.net> In-Reply-To: <20010819111245.A77001@wantadilla.lemis.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On 19 Aug, Greg Lehey wrote:
>> -current as of Aug 16, ~2pm CEST:
>
> I don't see a "freeing free block" in the stack trace. What is
> missing from the trace below? Does the trace belong to the panic
> message?
The text you quotet is the backtrace of the coredump saved by savecore.
> The trace shows two panics: the first looks like a page fault kernel
To generate the backtrace I had to reboot twice, one of the reboots was
a little bit strange. I just got a black screen after issuing a shutdown
-r withhin X11... and then it rebootet. Perhaps there was another
coredump.
And here I have another one...:
---snip---
IdlePTD 4812800
initial pcb at 305f60
panicstr: bremfree: bp 0xc6a51d98 not locked
panic messages:
---
Fatal trap 12: page fault while in vm86 mode
fault virtual address = 0xc41c0
fault code = user read, page not present
instruction pointer = 0xc000:0x41c0
stack pointer = 0x0:0xfe0
frame pointer = 0x0:0x0
code segment = base 0x620016, limit 0x1, type 0x1
= DPL 3, pres 1, def32 0, gran 0
processor eflags = interrupt enabled, resume, vm86, IOPL = 0
current process = 544 (XF86_SVGA)
trap number = 12
panic: page fault
syncing disks... panic: bremfree: bp 0xc6a51d98 not locked
Uptime: 3h58m17s
dumping to dev ad0s2b, offset 20704
dump ata0: resetting devices .. done
[...]
#0 dumpsys () at ../../../kern/kern_shutdown.c:479
479 if (dumping++) {
(kgdb)
(kgdb) bt
#0 dumpsys () at ../../../kern/kern_shutdown.c:479
#1 0xc01baf11 in boot (howto=260) at ../../../kern/kern_shutdown.c:322
#2 0xc01bb32a in panic (fmt=0xc02ba51e "bremfree: bp %p not locked")
at ../../../kern/kern_shutdown.c:601
#3 0xc01ed20e in bremfree (bp=0xc6a51d98) at ../../../kern/vfs_bio.c:479
#4 0xc01ee948 in vfs_bio_awrite (bp=0xc6a51d98)
at ../../../kern/vfs_bio.c:1472
#5 0xc0235f72 in ffs_fsync (ap=0xc049ae8c) at ../../../ufs/ffs/ffs_vnops.c:239
#6 0xc0233f9f in ffs_sync (mp=0xc1870400, waitfor=2, cred=0xc0e61d00,
p=0xc0337000) at vnode_if.h:441
#7 0xc01fc2e1 in sync (p=0xc0337000, uap=0x0)
at ../../../kern/vfs_syscalls.c:620
#8 0xc01baa37 in boot (howto=256) at ../../../kern/kern_shutdown.c:231
#9 0xc01bb32a in panic (fmt=0xc02cfc5e "%s")
at ../../../kern/kern_shutdown.c:601
#10 0xc0276c90 in trap_fatal (frame=0xc049afa8, eva=803264)
at ../../../i386/i386/trap.c:935
#11 0xc02769c9 in trap_pfault (frame=0xc049afa8, usermode=0, eva=803264)
at ../../../i386/i386/trap.c:849
#12 0xc027615c in trap (frame={tf_fs = 0, tf_es = 0, tf_ds = 0, tf_edi = 0,
tf_esi = 12, tf_ebp = 0, tf_isp = -1068912684, tf_ebx = 31116,
tf_edx = 0, tf_ecx = 1056, tf_eax = 32868, tf_trapno = 12, tf_err = 4,
tf_eip = 16832, tf_cs = 49152, tf_eflags = 721431, tf_esp = 4064,
tf_ss = 0}) at ../../../i386/i386/trap.c:408
(kgdb)
---snip---
> mode, though the backtrace address looks user mode. The second panic
> is a "bremfree: bp not locked" in the subsequent sync. That one may
> be related to some SMP stuff that has been done recently. It would be
> interesting to look at the return address from the trap: the code
How (I didn't see "id" in the backtrace below, where do I have to
look?)?
> space ID is 0xc000, which I don't recognize. What process was
> running?
---snip---
(32) root@ttyp4 # ps -auxww -M /mnt/var/crash/vmcore.10 -N /mnt/var/crash/kernel.10
ps: Undefined error: 0
---snip---
Hmmm... \me is confused.
>> ---snip---
>> IdlePTD 4812800
>> initial pcb at 305f60
>> panicstr: bremfree: bp 0xc69e0748 not locked
>> panic messages:
>> ---
>> panic: ffs_blkfree: freeing free block
>> panic: from debugger
>> [...]
>> #0 dumpsys () at ../../../kern/kern_shutdown.c:479
>> #1 0xc01baf11 in boot (howto=260) at ../../../kern/kern_shutdown.c:322
>> #2 0xc01bb32a in panic (fmt=0xc02ba51e "bremfree: bp %p not locked")
>> at ../../../kern/kern_shutdown.c:601
>> #3 0xc01ed20e in bremfree (bp=0xc69e0748) at ../../../kern/vfs_bio.c:479
>> #4 0xc01eeb7a in getnewbuf (slpflag=0, slptimeo=0, size=8192, maxsize=8192)
>> at ../../../kern/vfs_bio.c:1632
>> #5 0xc01ef8d1 in getblk (vp=0xd063eec0, blkno=64, size=8192, slpflag=0,
>> slptimeo=0) at ../../../kern/vfs_bio.c:2244
>> #6 0xc01ed2ef in breadn (vp=0xd063eec0, blkno=64, size=8192, rablkno=0x0,
>> rabsize=0x0, cnt=0, cred=0x0, bpp=0xc049ae10)
>> at ../../../kern/vfs_bio.c:537
>> #7 0xc01ed2b4 in bread (vp=0xd063eec0, blkno=64, size=8192, cred=0x0,
>> bpp=0xc049ae10) at ../../../kern/vfs_bio.c:519
>> #8 0xc0228650 in ffs_update (vp=0xd063eda0, waitfor=0)
>> at ../../../ufs/ffs/ffs_inode.c:101
>> #9 0xc023601f in ffs_fsync (ap=0xc049ae8c) at ../../../ufs/ffs/ffs_vnops.c:292
>> #10 0xc0233f9f in ffs_sync (mp=0xc1870400, waitfor=2, cred=0xc0e61d00,
>> p=0xc0337000) at vnode_if.h:441
>> #11 0xc01fc2e1 in sync (p=0xc0337000, uap=0x0)
>> at ../../../kern/vfs_syscalls.c:620
>> #12 0xc01baa37 in boot (howto=256) at ../../../kern/kern_shutdown.c:231
>> #13 0xc01bb32a in panic (fmt=0xc02cfc5e "%s")
>> at ../../../kern/kern_shutdown.c:601
>> #14 0xc0276c90 in trap_fatal (frame=0xc049afa8, eva=794529)
>> at ../../../i386/i386/trap.c:935
>> #15 0xc02769c9 in trap_pfault (frame=0xc049afa8, usermode=0, eva=794529)
>> at ../../../i386/i386/trap.c:849
>> #16 0xc027615c in trap (frame={tf_fs = 0, tf_es = 0, tf_ds = 0, tf_edi = 3557,
>> tf_esi = 20371, tf_ebp = 24, tf_isp = -1068912684, tf_ebx = 8,
>> tf_edx = 145, tf_ecx = 3, tf_eax = 1544, tf_trapno = 12, tf_err = 4,
>> tf_eip = 8097, tf_cs = 49152, tf_eflags = 721410, tf_esp = 4030,
>> tf_ss = 0}) at ../../../i386/i386/trap.c:408
>> #17 0x1fa1 in ?? ()
>> Cannot access memory at address 0x18.
Bye,
Alexander.
--
"One world, one web, one program" -- Microsoft promotional ad
"Ein Volk, ein Reich, ein Fuehrer" -- Adolf Hitler
http://www.Leidinger.net Alexander @ Leidinger.net
GPG fingerprint = C518 BC70 E67F 143F BE91 3365 79E2 9C60 B006 3FE7
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200108191522.f7JFM2V97331>