6.0-RC1 crash

From: Evgueni V. Gavrilov <aquatique_at_rusunix.org>
Date: Wed, 26 Oct 2005 09:41:04 +0700
# kgdb /usr/obj/usr/src/sys/BLACKBIRD6/kernel.debug vmcore.29
[GDB will not be able to debug user-mode threads: /usr/lib/libthread_db.so: Undefined symbol "ps_pglobal_lookup"]
GNU gdb 6.1.1 [FreeBSD]
Copyright 2004 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "i386-marcel-freebsd".

Unread portion of the kernel message buffer:


Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address	= 0x5a
fault code		= supervisor read, page not present
instruction pointer	= 0x20:0xc06a17fb
stack pointer	        = 0x28:0xeacc49d0
frame pointer	        = 0x28:0xeacc4abc
code segment		= base 0x0, limit 0xfffff, type 0x1b
			= DPL 0, pres 1, def32 1, gran 1
processor eflags	= interrupt enabled, resume, IOPL = 0
current process		= 28349 (nnrpd)
trap number		= 12
panic: page fault
cpuid = 0
Uptime: 14h54m48s
Dumping 1919 MB (2 chunks)
  chunk 0: 1MB (158 pages) ... ok
  chunk 1: 1919MB (491264 pages) 1904

Fatal trap 12: page fault while in kernel mode
cpuid = 2; apic id = 06
fault virtual address	= 0xc1c
fault code		= supervisor read, page not present
instruction pointer	= 0x20:0xc04f137c
stack pointer	        = 0x28:0xe6733c8c
frame pointer	        = 0x28:0xe6733c94
code segment		= base 0x0, limit 0xfffff, type 0x1b
			= DPL 0, pres 1, def32 1, gran 1
processor eflags	= interrupt enabled, resume, IOPL = 0
current process		= 62 (irq48: iir0)
trap number		= 12
 1888 1872 1856 1840 1824 1808 1792 1776 1760 1744 1728 1712 1696 1680 1664 1648 1632 1616 1600 1584 1568 1552 1536 1520 1504 1488 1472 1456 1440 1424 1408 1392 1376 1360 1344 1328 1312 1296 1280 1264 1248 1232 1216 1200 1184 1168 1152 1136 1120 1104 1088 1072 1056 1040 1024 1008 992 976 960 944 928 912 896 880 864 848 832 816 800 784 768 752 736 720 704 688 672 656 640 624 608 592 576 560 544 528 512 496 480 464 448 432 416 400 384 368 352 336 320 304 288 272 256 240 224 208 192 176 160 144 128 112 96 80 64 48 32 16

#0  doadump () at pcpu.h:165
165	pcpu.h: No such file or directory.
	in pcpu.h
(kgdb) where full
#0  doadump () at pcpu.h:165
No locals.
#1  0xc0567a57 in boot (howto=260) at /usr/src/sys/kern/kern_shutdown.c:399
	first_buf_printf = 1
#2  0xc0567e08 in panic (fmt=0xc072ee9c "%s") at /usr/src/sys/kern/kern_shutdown.c:555
	td = (struct thread *) 0xc3acaa80
	bootopt = 260
	newpanic = 0
	ap = 0xc3acaa80 "\fÒ\230Ä Â\230Ä"
	buf = "page fault", '\0' <repeats 245 times>
#3  0xc0705620 in trap_fatal (frame=0xeacc4990, eva=0) at /usr/src/sys/i386/i386/trap.c:831
	code = 40
	type = 12
	ss = 40
	esp = 0
	softseg = {ssd_base = 0, ssd_limit = 1048575, ssd_type = 27, ssd_dpl = 0, ssd_p = 1, ssd_xx = 0, ssd_xx1 = 0, 
  ssd_def32 = 1, ssd_gran = 1}
#4  0xc0705319 in trap_pfault (frame=0xeacc4990, usermode=0, eva=90) at /usr/src/sys/i386/i386/trap.c:742
	va = 0
	vm = (struct vmspace *) 0x0
	map = 0xc5e66834
	rv = 1
	ftype = 1 '\001'
	td = (struct thread *) 0xc3acaa80
	p = (struct proc *) 0xc498d20c
#5  0xc0704eff in trap (frame=
      {tf_fs = -1056571384, tf_es = -1056636888, tf_ds = -1056636888, tf_edi = -1056571392, tf_esi = 2, tf_ebp = -355710276, tf_isp = -355710532, tf_ebx = 0, tf_edx = 7, tf_ecx = -355710376, tf_eax = 0, tf_trapno = 12, tf_err = 0, tf_eip = -1066788869, tf_cs = 32, tf_eflags = 66118, tf_esp = -355710368, tf_ss = -1056518144}) at /usr/src/sys/i386/i386/trap.c:432
	td = (struct thread *) 0xc3acaa80
	p = (struct proc *) 0xc498d20c
	sticks = 0
	i = 0
	ucode = 0
	type = 12
	code = 0
	eva = 90
#6  0xc06f099a in calltrap () at /usr/src/sys/i386/i386/exception.s:139
No locals.
#7  0xc06a17fb in vm_fault (map=0xc1060000, vaddr=3238449152, fault_type=2 '\002', fault_flags=0)
    at /usr/src/sys/vm/vm_fault.c:293
	rv = 0
	reqpage = -1066886755
	ahead = 5
	behind = -1016206336
	behavior = 7 '\a'
	prot = 7 '\a'
	is_first_object_locked = 131072
	result = 0
	growstack = 1
	wired = 0
	map_generation = 1621
	next_object = 0x0
	marray = {0x0, 0x7, 0x246, 0xc3acaa80, 0xeacc4a94, 0xc3627400, 0xc36dec00, 0xc698edec, 0x0, 0xc3acaa80, 0xeacc4ac8, 
  0xc05595d5, 0xeacc4ad0, 0x1, 0x70000, 0xeacc4ac0}
	hardfault = 0
	faultcount = 2
	fs = {m = 0x0, object = 0xeacc4a94, pindex = 16918979663060814480, first_m = 0xc06fc582, first_object = 0x0, 
  first_pindex = 4462, map = 0xc1060000, entry = 0xc105d044, lookup_still_valid = 0, vp = 0x5}
#8  0xc07052c5 in trap_pfault (frame=0xeacc4b2c, usermode=0, eva=3238453236) at /usr/src/sys/i386/i386/trap.c:731
	va = 3238449152
	vm = (struct vmspace *) 0x0
	map = 0xc1060000
	rv = 2
	ftype = 2 '\002'
	td = (struct thread *) 0xc3acaa80
	p = (struct proc *) 0xc498d20c
#9  0xc0704eff in trap (frame=
      {tf_fs = -1065943032, tf_es = -355729368, tf_ds = 40, tf_edi = -942492608, tf_esi = 24549, tf_ebp = -355710092, tf_isp = -355710120, tf_ebx = -1056514120, tf_edx = -1012094336, tf_ecx = 4, tf_eax = -1056514120, tf_trapno = 12, tf_err = 2, tf_eip = -1066720393, tf_cs = 32, tf_eflags = 66198, tf_esp = 24549, tf_ss = -942492608}) at /usr/src/sys/i386/i386/trap.c:432
	td = (struct thread *) 0xc3acaa80
	p = (struct proc *) 0xc498d20c
	sticks = 3247367568
	i = 0
	ucode = 0
	type = 12
	code = 2
	eva = 3238453236
#10 0xc06f099a in calltrap () at /usr/src/sys/i386/i386/exception.s:139
No locals.
#11 0xc06b2377 in vm_page_cowsetup (m=0xc106dfb8) at /usr/src/sys/vm/vm_page.c:1696
No locals.
#12 0xc05a86eb in socow_setup (m0=0xc8d2d400, uio=0xc7d2b440) at /usr/src/sys/kern/uipc_cow.c:131
	sf = (struct sf_buf *) 0x5fe5
	pp = 0xc106dfb8
	pa = 3238453176
	iov = (struct iovec *) 0x4
	vmspace = (struct vmspace *) 0xc3acaa80
	offset = 1435
	uva = 3238453176
#13 0xc05accec in sosend (so=0xc61ae164, addr=0x0, uio=0xc7d2b440, top=0x0, control=0x0, flags=0, td=0xc3acaa80)
    at /usr/src/sys/kern/uipc_socket.c:748
	mp = (struct mbuf **) 0xeacc4c2c
	m = (struct mbuf *) 0xc8d2d400
	space = 24549
	len = 0
	resid = 89551
	clen = -925707264
	error = 128
	dontroute = 0
	atomic = 0
	cow_send = 0
#14 0xc0598fe7 in soo_write (fp=0xc106dfb8, uio=0xc7d2b440, active_cred=0xc3a59d00, flags=0, td=0xc3acaa80)
    at /usr/src/sys/kern/sys_socket.c:118
	so = (struct socket *) 0xc61ae164
	error = 89551
#15 0xc0591cf4 in dofilewrite (td=0xc3acaa80, fd=-1056514120, fp=0xc398e1b0, auio=0xc7d2b440, offset=Unhandled dwarf expression opcode 0x93
) at file.h:246
	cnt = 89551
	error = -1013390928
	ktruio = (struct uio *) 0x0
#16 0xc0591b2b in kern_writev (td=0xc3acaa80, fd=1, auio=0xc106dfb8) at /usr/src/sys/kern/sys_generic.c:402
	fp = (struct file *) 0xc398e1b0
	error = 0
#17 0xc0591aa5 in writev (td=0xc106dfb8, uap=0xeacc4d04) at /usr/src/sys/kern/sys_generic.c:388
	auio = (struct uio *) 0xc7d2b440
	error = 0
#18 0xc0705a07 in syscall (frame=
      {tf_fs = 134873147, tf_es = 59, tf_ds = -1078001605, tf_edi = 134950912, tf_esi = 89551, tf_ebp = -1077950728, tf_isp = -355709596, tf_ebx = 674649364, tf_edx = 0, tf_ecx = 0, tf_eax = 121, tf_trapno = 12, tf_err = 2, tf_eip = 674949283, tf_cs = 51, tf_eflags = 642, tf_esp = -1077950756, tf_ss = 59}) at /usr/src/sys/i386/i386/trap.c:976
	params = 0xbfbfc6e0 <Address 0xbfbfc6e0 out of bounds>
	callp = (struct sysent *) 0xc076cbcc
	td = (struct thread *) 0xc3acaa80
	p = (struct proc *) 0xc498d20c
	orig_tf_eflags = 642
	sticks = 0
	error = 0
	narg = 3
	args = {1, 134858144, 2, 675856384, 12, 0, 0, -996617716}
	code = 121
#19 0xc06f09ef in Xint0x80_syscall () at /usr/src/sys/i386/i386/exception.s:200
No locals.
#20 0x00000033 in ?? ()
No symbol table info available.
Previous frame inner to this frame (corrupt stack?)
Received on Wed Oct 26 2005 - 00:41:10 UTC

This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:38:46 UTC