Date: Tue, 13 Mar 2001 05:35:52 -0600 From: "Zach N. Heilig" <zach@uffdaonline.net> To: Kris Kennaway <kris@obsecurity.org> Cc: "Zach N. Heilig" <zach@uffdaonline.net>, gnats-admin@FreeBSD.ORG, freebsd-bugs@FreeBSD.ORG Subject: Re: kern/25519: -STABLE crash from ordinary user (newpcm related) Message-ID: <20010313053552.A19141@murkwood.znh.org> In-Reply-To: <20010312182409.D1600@mollari.cthul.hu>; from kris@obsecurity.org on Mon, Mar 12, 2001 at 06:24:09PM -0800 References: <20010304104742.3F65AA7B@uffdaonline.net> <200103041050.f24Ao1r81678@freefall.freebsd.org> <20010305032309.A22753@murkwood.znh.org> <20010312182409.D1600@mollari.cthul.hu>
next in thread | previous in thread | raw e-mail | index | archive | help
On Mon, Mar 12, 2001 at 06:24:09PM -0800, Kris Kennaway wrote:
> On Mon, Mar 05, 2001 at 03:23:09AM -0600, Zach N. Heilig wrote:
> > Hm.. it was late when I wrote the bit of code to trigger this crash.
> > Here is a far far simpler version that crashes 100% of the time for me
> > (on two separate machines, with any user):
> >
> > (kernel from sometime on Feb 24th -- but I've observed this periodically
> > over the past few months -- I just haven't tracked it down until now)
>
> There have been a lot of updates to PCM in 4.x in the past few weeks -
> can you upgrade and verify that the problem persists?
Yes, it does still exist. I have a crash dump, here is a little bit of
information from it:
Script started on Tue Mar 13 05:27:14 2001
$ gdb -k kernel.debug vmcore.1
GNU gdb 4.18
Copyright 1998 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB. Type "show warranty" for details.
This GDB was configured as "i386-unknown-freebsd"...
IdlePTD 3682304
initial pcb at 2edde0
panicstr: page fault
panic messages:
---
Fatal trap 12: page fault while in kernel mode
fault virtual address = 0x1a
fault code = supervisor read, page not present
instruction pointer = 0x8:0xc023927e
stack pointer = 0x10:0xc37eade8
frame pointer = 0x10:0xc37eadf8
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, def32 1, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
current process = 197 (crash)
interrupt mask = none
trap number = 12
panic: page fault
syncing disks... 60 60 60 60 59 59 58 58 56 54 53 51 50 50 46 44 41 38 35 30
giving up on 27 buffers
Uptime: 18s
dumping to dev #ad/0x20001, offset 70945
dump ata0: resetting devices .. done
29 28 27 26 25 24 23 22 21 20 19 18 17 16 15 14 13 12 11 10 9 8 7 6 5 4 3 2 1 0
---
#0 dumpsys () at ../../kern/kern_shutdown.c:469
469 if (dumping++) {
(kgdb) frame 6
#6 0xc023927e in dsp_write (d=0xc06b0a00, chan=0, buf=0xc37eaee4, flag=327681)
at ../../dev/sound/pcm/dsp.c:193
193 if (wrch->flags & (CHN_F_MAPPED | CHN_F_DEAD)) return EINVAL;
(kgdb) print wrch
$1 = (pcm_channel *) 0x0
(kgdb) exit
$ exit
Script done on Tue Mar 13 05:27:35 2001
--
Zach Heilig <zach@uffdaonline.net>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010313053552.A19141>