[Bug 219994] VirtualBox crashes 11.1-BETA1

Wed Jun 14 22:24:42 UTC 2017

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=219994

--- Comment #3 from Sergey A. Osokin <osa at FreeBSD.org> ---
Hi,

gcc5 and virtualbox have been rebuilt successfully on 11-BETA1.

VirtualBox process still crashes FreeBSD 11-BETA1 VM.

Fatal trap 12: page fault while in kernel mode
cpuid = 1; apic id = 01
fault virtual address   = 0x5a
fault code              = supervisor read data, page not present
instruction pointer     = 0x20:0xffffffff80d6cf60
stack pointer           = 0x28:0xfffffe011a580420
frame pointer           = 0x28:0xfffffe011a580490
code segment            = base 0x0, limit 0xfffff, type 0x1b
                        = DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags        = interrupt enabled, resume, IOPL = 0
current process         = 1635 (VirtualBox)
trap number             = 12
panic: page fault
cpuid = 1
KDB: stack backtrace:
#0 0xffffffff80aad9c7 at kdb_backtrace+0x67
#1 0xffffffff80a6baf6 at vpanic+0x186
#2 0xffffffff80a6b963 at panic+0x43
#3 0xffffffff80ede7a2 at trap_fatal+0x322
#4 0xffffffff80ede7f9 at trap_pfault+0x49
#5 0xffffffff80ede036 at trap+0x286
#6 0xffffffff80ec2c81 at calltrap+0x8
#7 0xffffffff826bab04 at rtR0MemObjFreeBSDPhysAllocHelper+0x94
#8 0xffffffff826ba212 at rtR0MemObjFreeBSDAllocPhysPages+0x72
#9 0xffffffff826ba18b at rtR0MemObjNativeAllocPhys+0x2b
#10 0xffffffff82787981 at linprocfs_doprocstat.ratelimit+0xa835
#11 0xffffffff827a69d4 at linprocfs_doprocstat.ratelimit+0x29888
#12 0xffffffff827a9902 at linprocfs_doprocstat.ratelimit+0x2c7b6
#13 0xffffffff8269538c at supdrvIOCtlInnerUnrestricted+0x114c
#14 0xffffffff826a2d63 at VBoxDrvFreeBSDIOCtl+0x1a3
#15 0xffffffff8093ad98 at devfs_ioctl_f+0x128
#16 0xffffffff80ac9315 at kern_ioctl+0x255
#17 0xffffffff80ac904f at sys_ioctl+0x16f
Uptime: 9m15s(kgdb) list *0xffffffff80d6cf60
0xffffffff80d6cf60 is in vm_page_alloc_contig (/usr/src/sys/vm/vm_page.c:1772).
1767                        boundary))
1768                            goto retry;
1769    #endif
1770            }
1771            for (m = m_ret; m < &m_ret[npages]; m++)
1772                    if ((m->flags & PG_ZERO) != 0)
1773                            vm_page_zero_count--;
1774            mtx_unlock(&vm_page_queue_free_mtx);
1775            if (m_ret == NULL)
1776                    return (NULL);
Current language:  auto; currently minimal
(kgdb) backtrace
#0  doadump (textdump=<value optimized out>) at pcpu.h:222
#1  0xffffffff80a6b671 in kern_reboot (howto=260) at
/usr/src/sys/kern/kern_shutdown.c:366
#2  0xffffffff80a6bb30 in vpanic (fmt=<value optimized out>, ap=<value
optimized out>) at /usr/src/sys/kern/kern_shutdown.c:759
#3  0xffffffff80a6b963 in panic (fmt=<value optimized out>) at
/usr/src/sys/kern/kern_shutdown.c:690
#4  0xffffffff80ede7a2 in trap_fatal (frame=0xfffffe011a580360, eva=90) at
/usr/src/sys/amd64/amd64/trap.c:801
#5  0xffffffff80ede7f9 in trap_pfault (frame=0xfffffe011a580360, usermode=0) at
pcpu.h:222
#6  0xffffffff80ede036 in trap (frame=0xfffffe011a580360) at
/usr/src/sys/amd64/amd64/trap.c:421
#7  0xffffffff80ec2c81 in calltrap () at
/usr/src/sys/amd64/amd64/exception.S:236
#8  0xffffffff80d6cf60 in vm_page_alloc_contig (object=<value optimized out>,
pindex=<value optimized out>, req=545, 
    npages=<value optimized out>, low=0, high=18446744073709551615,
alignment=2097152, boundary=0, memattr=6 '\006') at atomic.h:460
#9  0xffffffff826bab04 in rtR0MemObjFreeBSDPhysAllocHelper () from
/boot/modules/vboxdrv.ko
#10 0xffffffff826ba212 in rtR0MemObjFreeBSDAllocPhysPages () from
/boot/modules/vboxdrv.ko
#11 0xffffffff826ba18b in rtR0MemObjNativeAllocPhys () from
/boot/modules/vboxdrv.ko
#12 0xffffffff82787981 in ?? ()
#13 0xfffffe0117dd47e0 in ?? ()
#14 0xfffffe0117db2000 in ?? ()
#15 0x0000000000000000 in ?? ()

-- 
You are receiving this mail because:
You are the assignee for the bug.