Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 15 Aug 2009 17:42:41 +0200
From:      Fabian Keil <freebsd-listen@fabiankeil.de>
To:        Lawrence Stewart <lstewart@freebsd.org>
Cc:        freebsd-current@freebsd.org
Subject:   Re: Fatal trap 12: page fault while in kernel mode - current process: flowcleaner
Message-ID:  <20090815174241.60dd9b12@r500.local>
In-Reply-To: <4A7C2395.6020600@freebsd.org>
References:  <20090807142027.1a30e8ba@fabiankeil.de> <4A7C2395.6020600@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help 
--Sig_/avzo__pNTjlBnhkfBtqgYLw
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: quoted-printable

Lawrence Stewart <lstewart@freebsd.org> wrote:

> Fabian Keil wrote:
> > Using:
> >=20
> > FreeBSD TP51.local 8.0-BETA2 FreeBSD 8.0-BETA2 #36: Sat Aug  1 00:07:09=
 CEST 2009
> > fk@TP51.local:/usr/obj/usr/src/sys/THINKPAD  i386
> >=20
> > I got the following panic:
> >=20
> > fk@TP51 /usr/crash $kgdb /boot/kernel/kernel.symbols vmcore.6
> > GNU gdb 6.1.1 [FreeBSD]
> > Copyright 2004 Free Software Foundation, Inc.
> > GDB is free software, covered by the GNU General Public License, and yo=
u are
> > welcome to change it and/or distribute copies of it under certain condi=
tions.
> > Type "show copying" to see the conditions.
> > There is absolutely no warranty for GDB.  Type "show warranty" for deta=
ils.
> > This GDB was configured as "i386-marcel-freebsd"...
> >=20
> > Unread portion of the kernel message buffer:
> >=20
> >=20
> > Fatal trap 12: page fault while in kernel mode
> > cpuid =3D 0; apic id =3D 00
> > fault virtual address   =3D 0x0
> > fault code              =3D supervisor read, page not present
> > instruction pointer     =3D 0x20:0x0
> > stack pointer           =3D 0x28:0xf1a2fc94
> > frame pointer           =3D 0x28:0xf1a2fcd8
> > code segment            =3D base 0x0, limit 0xfffff, type 0x1b
> >                         =3D DPL 0, pres 1, def32 1, gran 1
> > processor eflags        =3D interrupt enabled, resume, IOPL =3D 0
> > current process         =3D 40 (flowcleaner)
> > panic: from debugger
> > cpuid =3D 0
> > Uptime: 2m1s
> > Physical memory: 998 MB
> > Dumping 144 MB: 129 113 97 81 65 49 33 17 1
> >=20
> > Reading symbols from /boot/kernel/unionfs.ko...Reading symbols from /bo=
ot/kernel/unionfs.ko.symbols...done.
> > done.
> > [...]
> > Loaded symbols for /boot/kernel/fdescfs.ko
> > #0  doadump () at pcpu.h:246
> > 246     pcpu.h: No such file or directory.
> >         in pcpu.h
> > (kgdb) where
> > #0  doadump () at pcpu.h:246
> > #1  0xc0678e66 in boot (howto=3D260) at /usr/src/sys/kern/kern_shutdown=
.c:419
> > #2  0xc06790a2 in panic (fmt=3DVariable "fmt" is not available.
> > ) at /usr/src/sys/kern/kern_shutdown.c:575
> > #3  0xc04f2e57 in db_panic (addr=3DCould not find the frame base for "d=
b_panic".
> > ) at /usr/src/sys/ddb/db_command.c:478
> > #4  0xc04f33e1 in db_command (last_cmdp=3D0xc0a1f31c, cmd_table=3D0x0, =
dopager=3D1) at /usr/src/sys/ddb/db_command.c:445
> > #5  0xc04f353a in db_command_loop () at /usr/src/sys/ddb/db_command.c:4=
98
> > #6  0xc04f532d in db_trap (type=3D12, code=3D0) at /usr/src/sys/ddb/db_=
main.c:229
> > #7  0xc06a33c6 in kdb_trap (type=3D12, code=3D0, tf=3D0xf1a2fc54) at /u=
sr/src/sys/kern/subr_kdb.c:534
> > #8  0xc0913a8f in trap_fatal (frame=3D0xf1a2fc54, eva=3D0) at /usr/src/=
sys/i386/i386/trap.c:924
> > #9  0xc0913cc3 in trap_pfault (frame=3D0xf1a2fc54, usermode=3D0, eva=3D=
0) at /usr/src/sys/i386/i386/trap.c:846
> > #10 0xc091469a in trap (frame=3D0xf1a2fc54) at /usr/src/sys/i386/i386/t=
rap.c:528
> > #11 0xc08f83bb in calltrap () at /usr/src/sys/i386/i386/exception.s:165
> > #12 0x00000000 in ?? ()
> > Previous frame inner to this frame (corrupt stack?)
> >=20
> > The backtrace in ddb mentioned several flow* functions,
> > but unfortunately it doesn't seem to have survived the
> > dump.
> >=20
> > The problem occurred after booting the system with the rc.conf line:
> >   ifconfig_wlan0=3D"inet 192.168.178.49 -wme"
> > changing it to:
> >   ifconfig_wlan0=3D"inet 192.168.178.49 ssid [...] wepkey 1:[0x...] def=
txkey 1 wepmode on chanlist 7 -wme"
> > running:
> >   /etc/rc.d/netif restart
> > followed by:
> >   ifconfig wlan0
> > which showed that wlan0 got associated.
> > The panic happened less than a second later.
> >=20
> > The system is an IBM ThinkPad R51 with iwi0 as wlandev.
> > em0 was configured and up but unconnected.

> I can reliably trigger a flowcleaner panic as well on my Toshiba R600=20
> laptop with a rum based WIFI dongle (D-Link DWA-110). I only get it on=20
> teardown/detach though. Kip is aware of the issue and will hopefully=20
> have a patch for us at some point.

Thanks for the information.

Did you try disabling options FLOWTABLE already? It doesn't
strike me as particularly useful on a laptop anyway.

Fabian

--Sig_/avzo__pNTjlBnhkfBtqgYLw
Content-Type: application/pgp-signature; name=signature.asc
Content-Disposition: attachment; filename=signature.asc

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.12 (FreeBSD)

iEYEARECAAYFAkqG13sACgkQBYqIVf93VJ01WQCgv2bkE7g+x29tbP/4qOr6uw/x
F9oAoI9Dhjm5Phw0fRny1Fn/P9ZW8zH0
=z+nt
-----END PGP SIGNATURE-----

--Sig_/avzo__pNTjlBnhkfBtqgYLw--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20090815174241.60dd9b12>