[panic] [netinet] page fault while in kernel mode
Gleb Kozyrev
gkozyrev at ukr.net
Fri Aug 11 08:48:10 UTC 2006
Hello!
This panic happens randomly on FreeBSD 7.0-CURRENT #0: Sun Aug 6
but did happen on 7.0-CURRENT #0: Sun Jul 2 too.
=========Beginning of the citation==============
Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address = 0xdeadc136
fault code = supervisor read, page not present
instruction pointer = 0x20:0xc073eb5d
stack pointer = 0x28:0xc7a0ab34
frame pointer = 0x28:0xc7a0ab38
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, def32 1, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
current process = 24 (irq10: rl0)
trap number = 12
panic: page fault
cpuid = 0
=========The end of the citation================
=========Beginning of the citation==============
(kgdb) bt full
#0 doadump () at pcpu.h:166
No locals.
#1 0xc06a3ee0 in boot (howto=260) at /usr/src/sys/kern/kern_shutdown.c:409
first_buf_printf = 1
#2 0xc06a41f5 in panic (fmt=0xc08e7bb2 "%s") at /usr/src/sys/kern/kern_shutdown.c:565
td = (struct thread *) 0xc15b61b0
bootopt = 260
newpanic = 1
ap = 0xc7a0aa48 "НМ\224ю"
buf = "page fault", '\0' <repeats 245 times>
#3 0xc08a0aa2 in trap_fatal (frame=0xc7a0aaf4, eva=3735929142) at /usr/src/sys/i386/i386/trap.c:867
code = 0
type = 12
ss = 40
esp = 0
softseg = {ssd_base = 0, ssd_limit = 1048575, ssd_type = 27, ssd_dpl = 0, ssd_p = 1, ssd_xx = 0, ssd_xx1 = 0, ssd_def32 = 1,
ssd_gran = 1}
msg = 0x0
#4 0xc08a00df in trap (frame=
{tf_fs = -1066074104, tf_es = -1049559000, tf_ds = 40, tf_edi = 40, tf_esi = 20, tf_ebp = -945771720, tf_isp = -945771744,
tf_ebx = 4, tf_edx = -559038242, tf_ecx = -559038242, tf_eax = 0, tf_trapno = 12, tf_err = 0, tf_eip = -1066144931, tf_cs = 32,
tf_eflags = 66182, tf_esp = 4, tf_ss = -945771508})
at /usr/src/sys/i386/i386/trap.c:277
td = (struct thread *) 0xc15b61b0
p = (struct proc *) 0xc15f6d38
i = 0
ucode = 0
type = 12
code = 0
addr = -945771892
eva = 3735929142
ksi = {ksi_link = {tqe_next = 0xc09381be, tqe_prev = 0xc7a0aaac}, ksi_info = {si_signo = -1066619268, si_errno
= -1064074818, si_code = -1064127378,
si_pid = 3, si_uid = 3243991472, si_status = -945771828, si_addr = 0xc06cb8c5, si_value = {sival_int = 582, sival_ptr = 0x246},
_reason = {_fault = {
_trapno = 582}, _timer = {_timerid = 582, _overrun = -1063452444}, _mesgq = {_mqd = 582}, _poll = {_band = 582}, __spare__ =
{__spare1__ = 582,
__spare2__ = {-1063452444, -1049520332, 335, -1064074818, -945771792, -1066813323, -1049520332}}}}, ksi_flags = 1, ksi_sigq
= 0xc0925eaf}
#5 0xc088baea in calltrap () at /usr/src/sys/i386/i386/exception.s:138
No locals.
#6 0xc073eb5d in in_broadcast (in={s_addr = 3735929054}, ifp=0xdeadc0de) at /usr/src/sys/netinet/in.c:932
ifa = (struct ifaddr *) 0xdeadc0de
t = 4
#7 0xc074d3ad in tcp_input (m=0xc1722800, off0=40) at endian.h:144
th = (struct tcphdr *) 0xc1722864
ip = (struct ip *) 0xc1722850
ipov = (struct ipovly *) 0x14
inp = (struct inpcb *) 0xc1914498
optp = (u_char *) 0x0
optlen = 0
len = 4
tlen = 0
off = 20
drop_hdrlen = 40
tp = (struct tcpcb *) 0xc19631d0
thflags = 16
so = (struct socket *) 0xc191867c
todrop = 4
acked = 4
ourfinisacked = 4
needoutput = 0
tiwin = 40
to = {to_flags = 0, to_tsval = 0, to_tsecr = 0, to_mss = 0, to_requested_s_scale = 0 '\0', to_nsacks = 0 '\0', to_sacks =
0x0}
headlocked = 1
rstreason = 4
ip6 = (struct ip6_hdr *) 0x0
isipv6 = 0
#8 0xc07443ea in ip_input (m=0xc1722800) at /usr/src/sys/netinet/ip_input.c:658
ip = (struct ip *) 0xc1722850
ia = (struct in_ifaddr *) 0xc1779900
ifa = (struct ifaddr *) 0xdeadc0de
checkif = 0
hlen = 20
sum = 0
dchg = 0
odst = {s_addr = 3935646147}
__func__ = "ip_input"
#9 0xc071e298 in netisr_dispatch (num=2, m=0xdeadc0de) at /usr/src/sys/net/netisr.c:278
ni = (struct netisr *) 0x0
#10 0xc0717252 in ether_demux (ifp=0xc1693000, m=0xc1722800) at /usr/src/sys/net/if_ethersubr.c:809
eh = (struct ether_header *) 0xc1722842
isr = 0
ether_type = 2048
rule = (struct ip_fw *) 0x0
__func__ = "ether_demux"
#11 0xc0716fbe in ether_input (ifp=0xc1693000, m=0xc1722800) at /usr/src/sys/net/if_ethersubr.c:596
eh = (struct ether_header *) 0x0
etype = 2048
__func__ = "ether_input"
#12 0xc07ad77e in rl_rxeof (sc=0xc1672000) at /usr/src/sys/pci/if_rl.c:1203
m = (struct mbuf *) 0xc1722800
ifp = (struct ifnet *) 0xc1693000
rxbufpos = (uint8_t *) 0xdeadc0de <Address 0xdeadc0de out of bounds>
total_len = 60
wrap = 58800
rxstat = 0
cur_rx = 6800
limit = 0
max_bytes = 68
rx_bytes = 68
#13 0xc07ad9fb in rl_intr (arg=0xc1672000) at /usr/src/sys/pci/if_rl.c:1358
sc = (struct rl_softc *) 0xc1672000
ifp = (struct ifnet *) 0xc1693000
status = 1
#14 0xc068fd32 in ithread_execute_handlers (p=0xc15f6d38, ie=0xc15c9880) at /usr/src/sys/kern/kern_intr.c:662
ih = (struct intr_handler *) 0xc1687b40
ihn = (struct intr_handler *) 0x0
#15 0xc068fe5f in ithread_loop (arg=0xc1691280) at /usr/src/sys/kern/kern_intr.c:745
ithd = (struct intr_thread *) 0xc1691280
ie = (struct intr_event *) 0xc15c9880
td = (struct thread *) 0xc15b61b0
p = (struct proc *) 0xc15f6d38
__func__ = "ithread_loop"
#16 0xc068ee84 in fork_exit (callout=0xc068fdf8 <ithread_loop>, arg=0xc1691280, frame=0xc7a0ad38) at
/usr/src/sys/kern/kern_fork.c:818
p = (struct proc *) 0xc15f6d38
td = (struct thread *) 0xdeadc0de
#17 0xc088bb4c in fork_trampoline () at /usr/src/sys/i386/i386/exception.s:199
No locals.
=========The end of the citation================
--
With best regards, Gleb Kozyrev.
More information about the freebsd-current
mailing list