kern/118955: googleearth causes panic in 7.0-BETA4/i386 -
kmem_malloc/kmem_map too small
Martin Etteldorf
etteldor at mail.be
Sat Dec 22 10:30:01 PST 2007
>Number: 118955
>Category: kern
>Synopsis: googleearth causes panic in 7.0-BETA4/i386 - kmem_malloc/kmem_map too small
>Confidential: no
>Severity: serious
>Priority: low
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Sat Dec 22 18:30:01 UTC 2007
>Closed-Date:
>Last-Modified:
>Originator: Martin Etteldorf
>Release: FreeBSD 7.0-BETA4
>Organization:
-
>Environment:
FreeBSD kadath.gruftie.net 7.0-BETA4 FreeBSD 7.0-BETA4 #2: Fri Dec 7 20:38:50 MET 2007 etteldor at kadath.gruftie.net:/usr/src/sys/i386/compile/KADATH i386
>Description:
googleearth crashes the system after visiting 3 or 4 locations.
savecore: reboot after panic: kmem_malloc(2097152): kmem_map too small: 328527872 total allocated
Dec 22 18:55:52 kadath savecore: reboot after panic: kmem_malloc(2097152): kmem_map too small: 328527872 total allocated
savecore: writing core to vmcore.0
root at kadath [/var/crash]: kgdb /boot/kernel/kernel vmcore.0
[GDB will not be able to debug user-mode threads: /usr/lib/libthread_db.so: Undefined symbol "ps_pglobal_lookup"]
GNU gdb 6.1.1 [FreeBSD]
Copyright 2004 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB. Type "show warranty" for details.
This GDB was configured as "i386-marcel-freebsd".
(no debugging symbols found)...Attempt to extract a component of a value that is not a structure pointer.
(kgdb) where
#0 0xc059d8eb in doadump ()
#1 0xc059de3d in boot ()
#2 0xc059e284 in panic ()
#3 0xc078b48d in kmem_malloc ()
#4 0xc0784206 in uma_large_malloc ()
#5 0xc058ede8 in malloc ()
#6 0xc0e4aec1 in ?? ()
#7 0x00200000 in ?? ()
#8 0xc10bd7e0 in ?? ()
#9 0x00000102 in ?? ()
#10 0x00000101 in ?? ()
#11 0xc53d6900 in ?? ()
#12 0x00200000 in ?? ()
#13 0x00000001 in ?? ()
#14 0xc53d6200 in ?? ()
#15 0xc5d52800 in ?? ()
#16 0x00000000 in ?? ()
#17 0xe7caf99c in ?? ()
#18 0xc0e4b2cd in ?? ()
#19 0xc53d6200 in ?? ()
#20 0x00000200 in ?? ()
#21 0x00000000 in ?? ()
#22 0xd9180048 in ?? ()
#23 0xd9180030 in ?? ()
#24 0x00002000 in ?? ()
#25 0xd9180000 in ?? ()
#26 0xe7caf9cc in ?? ()
#27 0xc0b38810 in ?? ()
#28 0xc53d6200 in ?? ()
#29 0x00000200 in ?? ()
#30 0x00000000 in ?? ()
#31 0x00000000 in ?? ()
#32 0x00000000 in ?? ()
#33 0xd9180048 in ?? ()
#34 0xd9180030 in ?? ()
#35 0xc0b382c6 in ?? ()
#36 0xd9180000 in ?? ()
#37 0x00000000 in ?? ()
#38 0xe7cafa1c in ?? ()
#39 0xc0d96762 in ?? ()
#40 0xd9180000 in ?? ()
#41 0xc0b0cb50 in ?? ()
#42 0xe7cafa0c in ?? ()
#43 0xc0d96687 in ?? ()
#44 0xd9180000 in ?? ()
#45 0x00000000 in ?? ()
#46 0x00001050 in ?? ()
#47 0xc5d52800 in ?? ()
#48 0xc5d52800 in ?? ()
#49 0x00000200 in ?? ()
#50 0xd9180000 in ?? ()
#51 0x00000000 in ?? ()
#52 0x001fffff in ?? ()
#53 0x00000000 in ?? ()
#54 0xe7cafa4c in ?? ()
#55 0xc0b18a7d in ?? ()
#56 0x00000000 in ?? ()
#57 0x001fffff in ?? ()
#58 0xe7cafa4c in ?? ()
#59 0xc0b18aa9 in ?? ()
#60 0xd9180000 in ?? ()
#61 0x00000001 in ?? ()
#62 0x00000000 in ?? ()
#63 0xe7cafa3c in ?? ()
#64 0xc5d52800 in ?? ()
#65 0x00000048 in ?? ()
#66 0x00000041 in ?? ()
#67 0xc5763000 in ?? ()
#68 0xc61ed600 in ?? ()
#69 0xc52cb000 in ?? ()
#70 0xe7cafabc in ?? ()
#71 0xc0b18d52 in ?? ()
#72 0xc5d52800 in ?? ()
#73 0xc1d00021 in ?? ()
#74 0x001fffff in ?? ()
#75 0x00000000 in ?? ()
#76 0xe7cafaa0 in ?? ()
#77 0xe7cafa98 in ?? ()
#78 0xe7cafa9c in ?? ()
#79 0x40005010 in ?? ()
#80 0x00000034 in ?? ()
#81 0xe7cafa9c in ?? ()
#82 0x00000279 in ?? ()
#83 0xc5d83000 in ?? ()
#84 0xc547e200 in ?? ()
#85 0xc52cb400 in ?? ()
#86 0xe7cafaac in ?? ()
#87 0xc0e48bf3 in ?? ()
#88 0xc537a740 in ?? ()
#89 0x00000000 in ?? ()
#90 0x00000000 in ?? ()
#91 0xd9180000 in ?? ()
#92 0xc5d52800 in ?? ()
#93 0x00000041 in ?? ()
#94 0xe7cafacc in ?? ()
#95 0x00000000 in ?? ()
#96 0xc6cbd740 in ?? ()
#97 0xc52cb400 in ?? ()
#98 0xe7cafb0c in ?? ()
#99 0xc0b15efd in ?? ()
#100 0xc1d00021 in ?? ()
#101 0xbeef0003 in ?? ()
#102 0x350e11e0 in ?? ()
#103 0x0000003e in ?? ()
#104 0x40005010 in ?? ()
#105 0xe7cafaf0 in ?? ()
#106 0xe7cafaf4 in ?? ()
#107 0xe7cafc10 in ?? ()
#108 0xc5319a00 in ?? ()
#109 0x00000000 in ?? ()
#110 0xc5386800 in ?? ()
#111 0x00000000 in ?? ()
#112 0x001fffff in ?? ()
#113 0x00000000 in ?? ()
#114 0x00000004 in ?? ()
#115 0xc53d6200 in ?? ()
#116 0xc59d3500 in ?? ()
#117 0xc6cbd740 in ?? ()
#118 0xe7cafb4c in ?? ()
#119 0xc0b43538 in ?? ()
#120 0xc6cbd740 in ?? ()
#121 0x00000006 in ?? ()
#122 0x00000000 in ?? ()
#123 0xe7cafb44 in ?? ()
#124 0xc0e499fe in ?? ()
#125 0xc53e8d80 in ?? ()
#126 0xc53e8880 in ?? ()
#127 0x00000020 in ?? ()
#128 0x00000004 in ?? ()
#129 0x00000028 in ?? ()
#130 0x00000000 in ?? ()
#131 0xc53d6200 in ?? ()
#132 0x00000019 in ?? ()
#133 0xc53d6700 in ?? ()
#134 0xe7cafb6c in ?? ()
#135 0xc0b410cb in ?? ()
#136 0xc53d6200 in ?? ()
#137 0xc59d3500 in ?? ()
#138 0x00000027 in ?? ()
#139 0xc6cbd740 in ?? ()
#140 0x00000019 in ?? ()
#141 0xc53d6700 in ?? ()
#142 0xe7cafb8c in ?? ()
#143 0xc0e4bc84 in ?? ()
#144 0x00000000 in ?? ()
#145 0xc53d6200 in ?? ()
#146 0xc59d3500 in ?? ()
#147 0x00000027 in ?? ()
#148 0xc6cbd740 in ?? ()
#149 0xc53d6200 in ?? ()
#150 0xe7cafbb4 in ?? ()
#151 0xc0e486bc in ?? ()
#152 0xc53d6700 in ?? ()
#153 0xc0304627 in ?? ()
#154 0xc6cbd740 in ?? ()
#155 0x00000003 in ?? ()
#156 0xc5adfcc0 in ?? ()
#157 0x00000004 in ?? ()
#158 0xc53d6700 in ?? ()
#159 0xc59c4dc8 in ?? ()
#160 0xe7cafbd8 in ?? ()
#161 0xc0569182 in giant_ioctl ()
Previous frame inner to this frame (corrupt stack?)
dmesg:
Copyright (c) 1992-2007 The FreeBSD Project.
Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
The Regents of the University of California. All rights reserved.
FreeBSD is a registered trademark of The FreeBSD Foundation.
FreeBSD 7.0-BETA4 #2: Fri Dec 7 20:38:50 MET 2007
etteldor at kadath.gruftie.net:/usr/src/sys/i386/compile/KADATH
Timecounter "i8254" frequency 1193182 Hz quality 0
CPU: AMD Athlon(tm) 64 X2 Dual Core Processor 4000+ (2104.41-MHz 686-class CPU)
Origin = "AuthenticAMD" Id = 0x60fb1 Stepping = 1
Features=0x178bfbff<FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CLFLUSH,MMX,FXSR,SSE,SSE2,HTT>
Features2=0x2001<SSE3,CX16>
AMD Features=0xea500800<SYSCALL,NX,MMX+,FFXSR,RDTSCP,LM,3DNow!+,3DNow!>
AMD Features2=0x11f<LAHF,CMP,SVM,ExtAPIC,CR8,Prefetch>
Cores per package: 2
real memory = 2012151808 (1918 MB)
avail memory = 1954721792 (1864 MB)
ACPI APIC Table: <HPQOEM SLIC-CPC>
FreeBSD/SMP: Multiprocessor System Detected: 2 CPUs
cpu0 (BSP): APIC ID: 0
cpu1 (AP): APIC ID: 1
ioapic0: Changing APIC ID to 2
ioapic0 <Version 1.1> irqs 0-23 on motherboard
cryptosoft0: <software crypto> on motherboard
acpi0: <HPQOEM SLIC-CPC> on motherboard
acpi0: [ITHREAD]
acpi0: Power Button (fixed)
acpi0: reservation of 0, a0000 (3) failed
acpi0: reservation of 100000, 77df0000 (3) failed
Timecounter "ACPI-fast" frequency 3579545 Hz quality 1000
acpi_timer0: <24-bit timer at 3.579545MHz> port 0x4008-0x400b on acpi0
acpi_hpet0: <High Precision Event Timer> iomem 0xfefff000-0xfefff3ff on acpi0
Timecounter "HPET" frequency 25000000 Hz quality 900
cpu0: <ACPI CPU> on acpi0
powernow0: <PowerNow! K8> on cpu0
cpu1: <ACPI CPU> on acpi0
powernow1: <PowerNow! K8> on cpu1
acpi_button0: <Power Button> on acpi0
pcib0: <ACPI Host-PCI bridge> port 0xcf8-0xcff on acpi0
pci0: <ACPI PCI bus> on pcib0
pci0: <memory, RAM> at device 0.0 (no driver attached)
pci0: <memory, RAM> at device 0.1 (no driver attached)
pci0: <memory, RAM> at device 0.2 (no driver attached)
pci0: <memory, RAM> at device 0.3 (no driver attached)
pci0: <memory, RAM> at device 0.4 (no driver attached)
pci0: <memory, RAM> at device 0.5 (no driver attached)
pci0: <memory, RAM> at device 0.6 (no driver attached)
pci0: <memory, RAM> at device 0.7 (no driver attached)
pcib1: <ACPI PCI-PCI bridge> at device 4.0 on pci0
pci1: <ACPI PCI bus> on pcib1
nvidia0: <GeForce 6150 LE> mem 0xfc000000-0xfcffffff,0xe0000000-0xefffffff,0xfb000000-0xfbffffff irq 16 at device 5.0 on pci0
nvidia0: [GIANT-LOCKED]
nvidia0: [ITHREAD]
pci0: <memory, RAM> at device 9.0 (no driver attached)
isab0: <PCI-ISA bridge> at device 10.0 on pci0
isa0: <ISA bus> on isab0
nfsmb0: <nForce2/3/4 MCP SMBus Controller> port 0x4c00-0x4c3f,0x4c40-0x4c7f irq 20 at device 10.1 on pci0
smbus0: <System Management Bus> on nfsmb0
smb0: <SMBus generic I/O> on smbus0
nfsmb1: <nForce2/3/4 MCP SMBus Controller> on nfsmb0
smbus1: <System Management Bus> on nfsmb1
smb1: <SMBus generic I/O> on smbus1
pci0: <memory, RAM> at device 10.2 (no driver attached)
ohci0: <OHCI (generic) USB controller> mem 0xfe02f000-0xfe02ffff irq 21 at device 11.0 on pci0
ohci0: [GIANT-LOCKED]
ohci0: [ITHREAD]
usb0: OHCI version 1.0, legacy support
usb0: <OHCI (generic) USB controller> on ohci0
usb0: USB revision 1.0
uhub0: <nVidia OHCI root hub, class 9/0, rev 1.00/1.00, addr 1> on usb0
uhub0: 8 ports with 8 removable, self powered
ehci0: <EHCI (generic) USB 2.0 controller> mem 0xfe02e000-0xfe02e0ff irq 22 at device 11.1 on pci0
ehci0: [GIANT-LOCKED]
ehci0: [ITHREAD]
usb1: EHCI version 1.0
usb1: companion controller, 8 ports each: usb0
usb1: <EHCI (generic) USB 2.0 controller> on ehci0
usb1: USB revision 2.0
uhub1: <nVidia EHCI root hub, class 9/0, rev 2.00/1.00, addr 1> on usb1
uhub1: 8 ports with 8 removable, self powered
uhub2: <HP\M^? f2105 2PORT USB 2.0 HUB, class 9/0, rev 2.00/7.02, addr 2> on uhub1
uhub2: single transaction translator
uhub2: 2 ports with 2 removable, self powered
umass0: <Generic USB2.0-CRW, class 0/0, rev 2.00/11.22, addr 3> on uhub1
ugen0: <Ralink 802.11 bg WLAN, class 0/0, rev 2.00/0.01, addr 4> on uhub1
atapci0: <nVidia nForce MCP51 SATA300 controller> port 0x9f0-0x9f7,0xbf0-0xbf3,0x970-0x977,0xb70-0xb73,0xe400-0xe40f mem 0xfe02d000-0xfe02dfff irq 23 at device 14.0 on pci0
atapci0: [ITHREAD]
ata2: <ATA channel 0> on atapci0
ata2: [ITHREAD]
ata3: <ATA channel 1> on atapci0
ata3: [ITHREAD]
atapci1: <nVidia nForce MCP51 SATA300 controller> port 0x9e0-0x9e7,0xbe0-0xbe3,0x960-0x967,0xb60-0xb63,0xd000-0xd00f mem 0xfe02c000-0xfe02cfff irq 20 at device 15.0 on pci0
atapci1: [ITHREAD]
ata4: <ATA channel 0> on atapci1
ata4: [ITHREAD]
ata5: <ATA channel 1> on atapci1
ata5: [ITHREAD]
pcib2: <ACPI PCI-PCI bridge> at device 16.0 on pci0
pci2: <ACPI PCI bus> on pcib2
fwohci0: <Lucent FW322/323> mem 0xfdbff000-0xfdbfffff irq 16 at device 5.0 on pci2
fwohci0: [FILTER]
fwohci0: OHCI version 1.0 (ROM=0)
fwohci0: No. of Isochronous channels is 8.
fwohci0: EUI64 00:11:d8:00:01:48:92:4c
fwohci0: Phy 1394a available S400, 2 ports.
fwohci0: Link S400, max_rec 1024 bytes.
fwohci0: max_rec 1024 -> 2048
firewire0: <IEEE1394(FireWire) bus> on fwohci0
sbp0: <SBP-2/SCSI over FireWire> on firewire0
fwohci0: Initiate bus reset
fwohci0: BUS reset
fwohci0: node_id=0xc800ffc0, gen=1, CYCLEMASTER mode
pcm0: <NVidia MCP51 High Definition Audio Controller> mem 0xfe024000-0xfe027fff irq 21 at device 16.1 on pci0
pcm0: [ITHREAD]
nfe0: <NVIDIA nForce 430 MCP13 Networking Adapter> port 0xcc00-0xcc07 mem 0xfe02b000-0xfe02bfff irq 22 at device 20.0 on pci0
miibus0: <MII bus> on nfe0
rlphy0: <RTL8201L 10/100 media interface> PHY 13 on miibus0
rlphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto
nfe0: Ethernet address: 00:1b:fc:41:51:64
nfe0: [FILTER]
acpi_tz0: <Thermal Zone> on acpi0
atkbdc0: <Keyboard controller (i8042)> port 0x60,0x64 irq 1 on acpi0
atkbd0: <AT Keyboard> irq 1 on atkbdc0
kbd0 at atkbd0
atkbd0: [GIANT-LOCKED]
atkbd0: [ITHREAD]
psm0: <PS/2 Mouse> irq 12 on atkbdc0
psm0: [GIANT-LOCKED]
psm0: [ITHREAD]
psm0: model IntelliMouse, device ID 3
orm0: <ISA Option ROM> at iomem 0xd0000-0xd17ff pnpid ORM0000 on isa0
ata0 at port 0x1f0-0x1f7,0x3f6 irq 14 on isa0
ata0: [ITHREAD]
ata1 at port 0x170-0x177,0x376 irq 15 on isa0
ata1: [ITHREAD]
sc0: <System console> at flags 0x100 on isa0
sc0: VGA <16 virtual consoles, flags=0x300>
vga0: <Generic ISA VGA> at port 0x3c0-0x3df iomem 0xa0000-0xbffff on isa0
Timecounters tick every 1.000 msec
firewire0: 1 nodes, maxhop <= 0, cable IRM = 0 (me)
firewire0: bus manager 0 (me)
ad4: 238475MB <Seagate ST3250820AS 3.AHG> at ata2-master SATA150
acd0: DVDR <TSSTcorpCD/DVDW TS-H653L/0514> at ata3-master SATA150
pcm0: <HDA Codec: Realtek ALC888>
pcm0: <HDA Driver Revision: 20071129_0050>
acd0: FAILURE - INQUIRY ILLEGAL REQUEST asc=0x24 ascq=0x00
cd0 at ata3 bus 0 target 0 lun 0
cd0: <TSSTcorp CD/DVDW TS-H653L 0514> Removable CD-ROM SCSI-0 device
cd0: 3.300MB/s transfers
cd0: Attempt to query device size failed: NOT READY, Medium not present - tray closed
SMP: AP CPU #1 Launched!
da0 at umass-sim0 bus 0 target 0 lun 0
da0: <Generic- Compact Flash 1.00> Removable Direct Access SCSI-0 device
da0: 40.000MB/s transfers
da0: Attempt to query device size failed: NOT READY, Medium not present
da1 at umass-sim0 bus 0 target 0 lun 1
da1: <Generic- SM/xD-Picture 1.00> Removable Direct Access SCSI-0 device
da1: 40.000MB/s transfers
da1: Attempt to query device size failed: NOT READY, Medium not present
da2 at umass-sim0 bus 0 target 0 lun 2
da2: <Generic- SD/MMC 1.00> Removable Direct Access SCSI-0 device
da2: 40.000MB/s transfers
da2: Attempt to query device size failed: NOT READY, Medium not present
da3 at umass-sim0 bus 0 target 0 lun 3
da3: <Generic- MS/MS-Pro 1.00> Removable Direct Access SCSI-0 device
da3: 40.000MB/s transfers
da3: Attempt to query device size failed: NOT READY, Medium not present
Trying to mount root from ufs:/dev/ad4s1a
WARNING: / was not properly dismounted
loaded modules:
root at kadath [/var/crash]: kldstat
Id Refs Address Size Name
1 50 0xc0400000 575ca4 kernel
2 1 0xc0976000 5834 if_tap.ko
3 2 0xc097c000 1f960 miibus.ko
4 1 0xc099c000 c0ec if_nfe.ko
5 2 0xc09a9000 4a51c sound.ko
6 1 0xc09f4000 14314 snd_hda.ko
7 1 0xc0a09000 5c74 ugen.ko
8 1 0xc0a0f000 2d24 uhid.ko
9 1 0xc0a12000 7d88 ukbd.ko
10 1 0xc0a1a000 3e74 ums.ko
11 1 0xc0a1e000 7f64 umass.ko
12 2 0xc0a26000 1792c agp.ko
13 1 0xc0a3e000 b530 cpufreq.ko
14 1 0xc0a4a000 10e88 drm.ko
15 1 0xc0a5b000 3458 ucom.ko
16 2 0xc0a5f000 181c8 firewire.ko
17 1 0xc0a78000 bfb4 sbp.ko
18 3 0xc0a84000 1bd0 smbus.ko
19 1 0xc0a86000 3260 smb.ko
20 1 0xc0a8a000 446c nfsmb.ko
21 1 0xc0a8f000 69415c nvidia.ko
22 1 0xc1124000 a7a4 aio.ko
23 1 0xc5b80000 1f000 kqemu.ko
24 1 0xc5c64000 2000 rtc.ko
>How-To-Repeat:
start up googleearth, visit 3 or 4 different locations
-> system panics
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-bugs
mailing list