Panic on amd64

From: Ceri Davies <ceri_at_submonkey.net>
Date: Sun, 23 Jul 2006 13:40:37 +0100
With yesterday's -HEAD, while doing a simultaneous
'portupgrade -a' and a 'make buildworld', with the source and object
trees for the buildworld on a NFS mount from a 6-STABLE server.

Kernel config is GENERIC, plus:

device          cpufreq
device          puc
device          sound
device          snd_via8233

makeoptions     DEBUG=-g
options         KDB_UNATTENDED

This is probably reproducable, as I also experienced a panic yesterday
while doing the same thing, but I didn't have dumps configured then.

Ceri

-----

quinch# uname -a
FreeBSD quinch.private.submonkey.net 7.0-CURRENT FreeBSD 7.0-CURRENT #4: Sat Jul 22 18:06:40 BST 2006     root_at_quinch.private.submonkey.net:/usr/obj/usr/src/sys/QUINCH  amd64

quinch# kgdb kernel.debug /var/crash/vmcore.0
[GDB will not be able to debug user-mode threads: /usr/lib/libthread_db.so: Undefined symbol "ps_pglobal_lookup"]
GNU gdb 6.1.1 [FreeBSD]
Copyright 2004 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "amd64-marcel-freebsd".

Unread portion of the kernel message buffer:


Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address   = 0x48
fault code              = supervisor read, page not present
instruction pointer     = 0x8:0xffffffff80437e89
stack pointer           = 0x10:0xffffffff95320750
frame pointer           = 0x10:0xffffffff95320780
code segment            = base 0x0, limit 0xfffff, type 0x1b
                        = DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags        = interrupt enabled, resume, IOPL = 0
current process         = 79501 (script)
trap number             = 12
panic: page fault
cpuid = 0
Uptime: 18h46m56s
Physical memory: 499 MB
Dumping 156 MB: 141 125 109 93 77 61 45 29 13

#0  doadump () at pcpu.h:172
172             __asm __volatile("movq %%gs:0,%0" : "=r" (td));
(kgdb) list *0xffffffff80437e89
0xffffffff80437e89 is in _mtx_lock_flags (/usr/src/sys/kern/kern_mutex.c:279).
274     void
275     _mtx_lock_flags(struct mtx *m, int opts, const char *file, int line)
276     {
277
278             MPASS(curthread != NULL);
279             KASSERT(LOCK_CLASS(&m->mtx_object) == &lock_class_mtx_sleep,
280                 ("mtx_lock() of spin mutex %s _at_ %s:%d", m->mtx_object.lo_name,
281                 file, line));
282             WITNESS_CHECKORDER(&m->mtx_object, opts | LOP_NEWORDER | LOP_EXCLUSIVE,
283                 file, line);
(kgdb) backtrace
#0  doadump () at pcpu.h:172
#1  0xffffffff804419c9 in boot (howto=260) at /usr/src/sys/kern/kern_shutdown.c:409
#2  0xffffffff8044145b in panic (fmt=0xffffffff806b262c "%s")
    at /usr/src/sys/kern/kern_shutdown.c:565
#3  0xffffffff806445ba in trap_fatal (frame=0xc, eva=18446742974411974672)
    at /usr/src/sys/amd64/amd64/trap.c:690
#4  0xffffffff80644903 in trap_pfault (frame=0xffffffff953206a0, usermode=0)
    at /usr/src/sys/amd64/amd64/trap.c:609
#5  0xffffffff80644b54 in trap (frame=
      {tf_rdi = 56, tf_rsi = 0, tf_rdx = -2140004967, tf_rcx = 419, tf_r8 = 1, tf_r9 = -1099297576944, tf_rax = -1099297576944, tf_rbx = 56, tf_rbp = -1791883392, tf_r10 = 0, tf_r11 = -2142509056, tf_r12 = 0, tf_r13 = 419, tf_r14 = -2140004967, tf_r15 = 1, tf_trapno = 12, tf_addr = 72, tf_flags = 582, tf_err = 0, tf_rip = -2143060343, tf_cs = 8, tf_rflags = 66178, tf_rsp = -1791883424, tf_ss = 16}) at /usr/src/sys/amd64/amd64/trap.c:383
#6  0xffffffff8062fccb in calltrap () at /usr/src/sys/amd64/amd64/exception.S:168
#7  0xffffffff80437e89 in _mtx_lock_flags (m=0x38, opts=0, 
    file=0xffffffff80721d99 "/usr/src/sys/kern/vfs_mount.c", line=419) at pcpu.h:169
#8  0xffffffff804a87fe in vfs_ref (mp=0x0) at /usr/src/sys/kern/vfs_mount.c:419
#9  0xffffffff804a53b4 in vop_stdgetwritemount (ap=0xffffffff953207f0)
    at /usr/src/sys/kern/vfs_default.c:356
#10 0xffffffff8069d547 in VOP_GETWRITEMOUNT_APV (vop=0xffffff000cc22810, a=0xffffffff953207f0)
    at vnode_if.c:1823
#11 0xffffffff804bcfca in vn_start_write (vp=0xffffff000b9683b0, mpp=0xffffffff95320858, flags=1)
    at vnode_if.h:951
#12 0xffffffff804bd4ed in vn_close (vp=0xffffff000b9683b0, flags=3, file_cred=0xffffff0014d80300, 
    td=0xffffff000cc22810) at /usr/src/sys/kern/vfs_vnops.c:284
#13 0xffffffff804be88a in vn_closefile (fp=0xffffff0012d40168, td=0xffffff000cc22810)
    at /usr/src/sys/kern/vfs_vnops.c:870
#14 0xffffffff8041a851 in fdrop_locked (fp=0xffffff0012d40168, td=0xffffff000cc22810) at file.h:296
#15 0xffffffff8041ac84 in closef (fp=0xffffff0012d40168, td=0xffffff000cc22810)
    at /usr/src/sys/kern/kern_descrip.c:1979
#16 0xffffffff8041c369 in fdfree (td=0xffffff000cc22810) at /usr/src/sys/kern/kern_descrip.c:1653
#17 0xffffffff80426016 in exit1 (td=0xffffff000cc22810, rv=0) at /usr/src/sys/kern/kern_exit.c:280
#18 0xffffffff80426e1e in sys_exit (td=0x38, uap=0x0) at /usr/src/sys/kern/kern_exit.c:101
#19 0xffffffff80645437 in syscall (frame=
      {tf_rdi = 0, tf_rsi = 34365169976, tf_rdx = 34366229216, tf_rcx = 10, tf_r8 = 0, tf_r9 = 0, tf_rax = 1, tf_rbx = 0, tf_rbp = 30, tf_r10 = 0, tf_r11 = 2, tf_r12 = 140737488348832, tf_r13 = 30, tf_r14 = 0, tf_r15 = 1153657258, tf_trapno = 12, tf_addr = 34367975632, tf_flags = 0, tf_err = 2, tf_rip = 34367821068, tf_cs = 43, tf_rflags = 514, tf_rsp = 140737488346568, tf_ss = 35})
    at /usr/src/sys/amd64/amd64/trap.c:825
#20 0xffffffff8062fe68 in Xfast_syscall () at /usr/src/sys/amd64/amd64/exception.S:270
#21 0x00000008007b550c in ?? ()
Previous frame inner to this frame (corrupt stack?)

-- 
That must be wonderful!  I don't understand it at all.
                                                  -- Moliere
Received on Sun Jul 23 2006 - 10:40:46 UTC

This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:38:58 UTC