panic on RELENG_6

John Baldwin jhb at freebsd.org
Mon Oct 20 14:44:13 PDT 2008 

On Saturday 18 October 2008 12:13:22 pm Mike Tancsa wrote:
> A kernel from Feb 2008 was working just fine 
> until we updated to a new one on Thursday
> 
> 
> kgdb kernel.debug /var/crash/vmcore.0
> GNU gdb 6.1.1 [FreeBSD]
> Copyright 2004 Free Software Foundation, Inc.
> GDB is free software, covered by the GNU General Public License, and you are
> welcome to change it and/or distribute copies of it under certain 
conditions.
> Type "show copying" to see the conditions.
> There is absolutely no warranty for GDB.  Type "show warranty" for details.
> This GDB was configured as "i386-marcel-freebsd"...
> 
> Unread portion of the kernel message buffer:
> 
> panic: page fault
> cpuid = 1
> Uptime: 1d11h24m6s
> Dumping 3580 MB (5 chunks)
>    chunk 0: 1MB (159 pages) ... ok
>    chunk 1: 3580MB (916227 pages) 3564 3548 3532 
> 3516 3500 3484 3468 3452 3436 3420 3404 3388 3372 
> 3356 3340 3324 3308 3292 3276 3260 3244 3228 3212 
> 3196 3180 3164 3148 3132 3116 3100 3084 3068 3052 
> 3036 3020 3004 2988 2972 2956 2940 2924 2908 2892 
> 2876 2860 2844 2828 2812 2796 2780 2764 2748 2732 
> 2716 2700 2684 2668 2652 2636 2620 2604 2588 2572 
> 2556 2540 2524 2508 2492 2476 2460 2444 2428 2412 
> 2396 2380 2364 2348 2332 2316 2300 2284 2268 2252 
> 2236 2220 2204 2188 2172 2156 2140 2124 2108 2092 
> 2076 2060 2044 2028 2012 1996 1980 1964 1948 1932 
> 1916 1900 1884 1868 1852 1836 1820 1804 1788 1772 
> 1756 1740 1724 1708 1692 1676 1660 1644 1628 1612 
> 1596 1580 1564 1548 1532 1516 1500 1484 1468 1452 
> 1436 1420 1404 1388 1372 1356 1340 1324 1308 1292 
> 1276 1260 1244 1228 1212 1196 1180 1164 1148 1132 
> 1116 1100 1084 1068 1052 1036 1020 1004 988 972 
> 956 940 924 908 892 876 860 844 828 812 796 780 
> 764 748 732 716 700 684 668 652 636 620 604 588 
> 572 556 540 524 508 492 476 460 444 428 412 396 
> 380 364 348 332 316 300 284 268 252 236 220 204 
> 188 172 156 140 124 108 92 76 60 44 28 12 ... ok
>    chunk 2: 1MB (147 pages)
> 
> Reading symbols from /boot/kernel/acpi.ko...done.
> Loaded symbols for /boot/kernel/acpi.ko
> Reading symbols from /boot/kernel/ichwd.ko...done.
> Loaded symbols for /boot/kernel/ichwd.ko
> #0  doadump () at pcpu.h:165
> 165     pcpu.h: No such file or directory.
>          in pcpu.h
> (kgdb) bt
> #0  doadump () at pcpu.h:165
> #1  0xc057f462 in boot (howto=260) at /usr/src/sys/kern/kern_shutdown.c:410
> #2  0xc057f789 in panic (fmt=0xc0732b6c "%s") at 
> /usr/src/sys/kern/kern_shutdown.c:566
> #3  0xc06f4d1c in trap_fatal (frame=0xebddba70, 
> eva=72) at /usr/src/sys/i386/i386/trap.c:838
> #4  0xc06f4a5b in trap_pfault (frame=0xebddba70, 
> usermode=0, eva=72) at /usr/src/sys/i386/i386/trap.c:745
> #5  0xc06f4695 in trap (frame=
>        {tf_fs = 8, tf_es = 40, tf_ds = 
> -337838040, tf_edi = 0, tf_esi = 0, tf_ebp = 
> -337790240, tf_isp = -337790308, tf_ebx = 0, 
> tf_edx = -917953980, tf_ecx = -337789924, tf_eax 
> = 0, tf_trapno = 12, tf_err = 0, tf_eip = 
> -1068033446, tf_cs = 32, tf_eflags = 66178, 
> tf_esp = -1, tf_ss = 2147483647}) at /usr/src/sys/i386/i386/trap.c:435
> #6  0xc06df5aa in calltrap () at /usr/src/sys/i386/i386/exception.s:139
> #7  0xc0571a5a in lf_advlockasync (ap=0xebddbaf8, 
> statep=0xc9492244, size=Unhandled dwarf expression opcode 0x93
> ) at /usr/src/sys/kern/kern_lockf.c:470
> #8  0xc057218b in lf_advlock (ap=0xc9492244, 
> statep=0xc9492244, size=16384) at /usr/src/sys/kern/kern_lockf.c:722
> #9  0xc068d028 in ufs_advlock (ap=0xc9492244) at 
> /usr/src/sys/ufs/ufs/ufs_vnops.c:2178
> #10 0xc0706a35 in VOP_ADVLOCK_APV (vop=0x0, a=0xc9492244) at vnode_if.c:2002
> #11 0xc05df562 in kern_open (td=0xccc01180, 
> path=0x0, pathseg=UIO_USERSPACE, flags=17, mode=416) at vnode_if.h:1029
> #12 0xc05dedfe in open (td=0xccc01180, 
> uap=0xebddbd04) at /usr/src/sys/kern/vfs_syscalls.c:971
> #13 0xc06f5063 in syscall (frame=
>        {tf_fs = 59, tf_es = 59, tf_ds = 
> -1078001605, tf_edi = 16, tf_esi = 135291904, 
> tf_ebp = -1077990024, tf_isp = -337789596, tf_ebx 
> = 674283840, tf_edx = 0, tf_ecx = 0, tf_eax = 5, 
> tf_trapno = 0, tf_err = 2, tf_eip = 674169623, 
> tf_cs = 51, tf_eflags = 646, tf_esp = 
> -1077990372, tf_ss = 59}) at /usr/src/sys/i386/i386/trap.c:984
> #14 0xc06df5ff in Xint0x80_syscall () 
at /usr/src/sys/i386/i386/exception.s:200
> #15 0x00000033 in ?? ()
> Previous frame inner to this frame (corrupt stack?)
> (kgdb)
> 
> (kgdb) bt full
> #0  doadump () at pcpu.h:165
> No locals.
> #1  0xc057f462 in boot (howto=260) at /usr/src/sys/kern/kern_shutdown.c:410
>          first_buf_printf = 1
> #2  0xc057f789 in panic (fmt=0xc0732b6c "%s") at 
> /usr/src/sys/kern/kern_shutdown.c:566
>          td = (struct thread *) 0xccc01180
>          bootopt = 260
>          newpanic = 0
>          ap = 0xccc01180 "xê9Í \024ÃÌ"
>          buf = "page fault", '\0' <repeats 245 times>
> #3  0xc06f4d1c in trap_fatal (frame=0xebddba70, 
> eva=72) at /usr/src/sys/i386/i386/trap.c:838
>          code = 40
>          ss = 40
>          esp = 0
>          type = 12
>          softseg = {ssd_base = 0, ssd_limit = 
> 1048575, ssd_type = 27, ssd_dpl = 0, ssd_p = 1, ssd_xx = 10, ssd_xx1 = 2,
>    ssd_def32 = 1, ssd_gran = 1}
>          msg = 0x0
> #4  0xc06f4a5b in trap_pfault (frame=0xebddba70, 
> usermode=0, eva=72) at /usr/src/sys/i386/i386/trap.c:745
>          va = 0
>          vm = (struct vmspace *) 0x0
>          map = 0xcab4a940
>          rv = 1
>          ftype = 1 '\001'
>          td = (struct thread *) 0xccc01180
>          p = (struct proc *) 0xcd39ea78
> #5  0xc06f4695 in trap (frame=
>        {tf_fs = 8, tf_es = 40, tf_ds = 
> -337838040, tf_edi = 0, tf_esi = 0, tf_ebp = 
> -337790240, tf_isp = -337790308, tf_ebx = 0, 
> tf_edx = -917953980, tf_ecx = -337789924, tf_eax 
> = 0, tf_trapno = 12, tf_err = 0, tf_eip = 
> -1068033446, tf_cs = 32, tf_eflags = 66178, 
> tf_esp = -1, tf_ss = 2147483647}) at /usr/src/sys/i386/i386/trap.c:435
>          td = (struct thread *) 0xccc01180
>          p = (struct proc *) 0xcd39ea78
>          sticks = 3377201424
>          type = 12
>          i = 0
>          ucode = 0
>          code = 0
>          eva = 72
> #6  0xc06df5aa in calltrap () at /usr/src/sys/i386/i386/exception.s:139
> No locals.
> #7  0xc0571a5a in lf_advlockasync (ap=0xebddbaf8, 
> statep=0xc9492244, size=Unhandled dwarf expression opcode 0x93
> ) at /usr/src/sys/kern/kern_lockf.c:470
> ---Type <return> to continue, or q <return> to quit---
>          state = (struct lockf *) 0x0
>          freestate = (struct lockf *) 0x0
>          fl = (struct flock *) 0xebddbc1c
>          lock = (struct lockf_entry *) 0x6
>          vp = (struct vnode *) 0xc94c0110
>          id = 0xcb29d7e0 "x\026?ÓØ°ÊÍ\001"
>          flags = 48
>          hash = -337790260
>          lo = (struct lock_owner *) 0x0
>          start = Unhandled dwarf expression opcode 0x93
> (kgdb)

You probably want to send this to dfr@ since this is in the advisory file 
locking code.

-- 
John Baldwin

More information about the freebsd-stable mailing list