Date: Fri, 10 Feb 2006 01:04:02 +0500 From: Anton Barsukov <greeen.anton@gmail.com> To: John Baldwin <jhb@freebsd.org> Cc: freebsd-hackers@freebsd.org Subject: Re: kernel panic with pmap_qremove() Message-ID: <20060210010402.66a2e83d.greeen.anton@gmail.com> In-Reply-To: <200602081042.12890.jhb@freebsd.org> References: <20060128142323.046e186c.greeen.anton@gmail.com> <200602061458.36037.jhb@freebsd.org> <20060208164232.46c2bed5.greeen.anton@gmail.com> <200602081042.12890.jhb@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 8 Feb 2006 10:42:11 -0500 John Baldwin <jhb@freebsd.org> wrote: > On Wednesday 08 February 2006 06:42, Anton Barsukov wrote: > > On Mon, 6 Feb 2006 14:58:33 -0500 > > > > John Baldwin <jhb@freebsd.org> wrote: > > > On Saturday 28 January 2006 04:23, Anton Barsukov wrote: > > > > Hi everybody > > > > > > > > I install ports/benchmarks/forkbomb, > > > > when i run '%forkbomb -f', kernel panic. > > > > > > > > instruction pointer = pmap_qremove(sva=4290785280, count=0) at > > > > /usr/src/sys/i386/i386/pmap.c:896 > > > > > > > > FreeBSD 6.0-RELEASE(GENERIC) i386 > > > > machine( MB -- P4P800SE, > > > > CPU -- P4 3GHz, > > > > RAM -- 2x512Mb ) > > > > > > I wasn't able to reproduce this. Are you still able to trigger this > > > panic? > > > > > > -- > > > John Baldwin <jhb@FreeBSD.org> <>< http://www.FreeBSD.org/~jhb/ > > > "Power Users Use the Power to Serve" = http://www.FreeBSD.org > > > > Yes, the panic still arises. > > When I start under the user, kernel panics, under su the panic not present. > > Custom kernel not panic. > > Hmm, the count=0 is suspect. The line numbers don't seem to line up though > for pmap.c. Can you compile in DDB and KDB and capture a stack trace from > ddb? > > -- > John Baldwin <jhb@FreeBSD.org> <>< http://www.FreeBSD.org/~jhb/ > "Power Users Use the Power to Serve" = http://www.FreeBSD.org Please, if it will help you. #0 doadump () at pcpu.h:165 165 __asm __volatile("movl %%fs:0,%0" : "=r" (td)); (kgdb) bt #0 doadump () at pcpu.h:165 #1 0xc0690666 in boot (howto=260) at /usr/src/sys/kern/kern_shutdown.c:399 #2 0xc069099a in panic (fmt=0xc08e0869 "from debugger") at /usr/src/sys/kern/kern_shutdown.c:555 #3 0xc0470eb7 in db_panic (addr=-1064671193, have_addr=0, count=-1, modif=0xf7aba7fc "") at /usr/src/sys/ddb/db_command.c:438 #4 0xc0470e30 in db_command (last_cmdp=0xc09b6a24, cmd_table=0x0, aux_cmd_tablep=0xc0934108, aux_cmd_tablep_end=0xc0934124) at /usr/src/sys/ddb/db_command.c:350 #5 0xc0470f21 in db_command_loop () at /usr/src/sys/ddb/db_command.c:458 #6 0xc0472e5d in db_trap (type=12, code=0) at /usr/src/sys/ddb/db_main.c:221 #7 0xc06accaf in kdb_trap (type=0, code=0, tf=0xf7aba9b0) at /usr/src/sys/kern/subr_kdb.c:473 #8 0xc08acaaa in trap_fatal (frame=0xf7aba9b0, eva=0) at /usr/src/sys/i386/i386/trap.c:822 #9 0xc08ac7d0 in trap_pfault (frame=0xf7aba9b0, usermode=0, eva=3221221376) at /usr/src/sys/i386/i386/trap.c:742 #10 0xc08ac33e in trap (frame= {tf_fs = -1065091064, tf_es = -1036058584, tf_ds = -986644440, tf_edi = 256, tf_esi = -139744736, tf_ebp = -139744772, tf_isp = -139744804, tf_ebx = -4194304, tf_edx = 1047552, tf_ecx = 0, tf_eax = 935379203, tf_trapno = 12, tf_err = 2, tf_eip = -1064671193, tf_cs = 32, tf_eflags = 66054, tf_esp = 2, tf_ss = -986631928}) at /usr/src/sys/i386/i386/trap.c:432 #11 0xc08999ea in calltrap () at /usr/src/sys/i386/i386/exception.s:139 #12 0xc08a6827 in pmap_qenter (sva=4290768896, m=0xf7abaa20, count=0) at pmap.h:270 #13 0xc08341c5 in vm_thread_new (td=0x2, pages=2) at /usr/src/sys/vm/vm_glue.c:301 #14 0xc069c18a in thread_init (mem=0xc5314a80, size=372, flags=259) at /usr/src/sys/kern/kern_thread.c:184 #15 0xc082b884 in slab_zalloc (zone=0xc144dc80, wait=259) at /usr/src/sys/vm/uma_core.c:857 #16 0xc082d28a in uma_zone_slab (zone=0xc144dc80, flags=3) at /usr/src/sys/vm/uma_core.c:2034 #17 0xc082d4db in uma_zalloc_bucket (zone=0xc144dc80, flags=3) at /usr/src/sys/vm/uma_core.c:2143 #18 0xc082d0d3 in uma_zalloc_arg (zone=0xc144dc80, udata=0x0, flags=2) at /usr/src/sys/vm/uma_core.c:1951 #19 0xc069c690 in thread_alloc () at uma.h:275 #20 0xc0687630 in proc_init (mem=0xc33a0000, size=524, flags=258) at /usr/src/sys/kern/kern_proc.c:183 #21 0xc082b884 in slab_zalloc (zone=0xc144dc00, wait=258) at /usr/src/sys/vm/uma_core.c:857 #22 0xc082d28a in uma_zone_slab (zone=0xc144dc00, flags=2) at /usr/src/sys/vm/uma_core.c:2034 #23 0xc082d4db in uma_zalloc_bucket (zone=0xc144dc00, flags=2) at /usr/src/sys/vm/uma_core.c:2143 #24 0xc082d0d3 in uma_zalloc_arg (zone=0xc144dc00, udata=0x0, flags=2) at /usr/src/sys/vm/uma_core.c:1951 #25 0xc0675250 in fork1 (td=0xc2d5a000, flags=20, pages=0, procp=0xf7abacc8) at uma.h:275 #26 0xc0674ed5 in fork (td=0xc2d5a000, uap=0xf7abad04) at /usr/src/sys/kern/kern_fork.c:96 #27 0xc08ace9c in syscall (frame= {tf_fs = 59, tf_es = 59, tf_ds = 59, tf_edi = 4096, tf_esi = -1077940964, tf_ebp = -1077941048, tf_isp = -139743900, tf_ebx = 1, tf_edx = 0, tf_ecx = 22, tf_eax = 2, tf_trapno = 12, tf_err = 2, tf_eip = 671855075, tf_cs = 51, tf_eflags = 514, tf_esp = -1077941092, tf_ss = 59}) at /usr/src/sys/i386/i386/trap.c:976 #28 0xc0899a3f in Xint0x80_syscall () at /usr/src/sys/i386/i386/exception.s:200 #29 0x00000033 in ?? ()
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060210010402.66a2e83d.greeen.anton>