Re: Process stuck in vmmaps on 8.0-BETA1

From: Kostik Belousov <kostikbel_at_gmail.com> Date: Fri, 10 Jul 2009 16:24:29 +0300 · This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:39:51 UTC

On Fri, Jul 10, 2009 at 09:42:34PM +1000, John Marshall wrote:
> rwsrv05# procstat 1270
>   PID  PPID  PGID   SID  TSID THR LOGIN    WCHAN     EMUL          COMM        
>  1270     1  1270  1270     0   1 john     vmmaps    FreeBSD ELF32 ntpd        
> 
> rwsrv05# procstat -k 1270
>   PID    TID COMM             TDNAME           KSTACK                       
>  1270 100184 ntpd             -                mi_switch sleepq_switch sleepq_wait _sleep vm_map_unlock_and_wait vm_map_delete vm_map_fixed vm_mmap mmap syscall Xint0x80_syscall 
> 
> rwsrv05# procstat -v 1270
>   PID      START        END PRT  RES PRES REF SHD FL TP PATH
>  1270  0x8048000  0x807e000 r-x   54   60   2   1 CN vn /usr/local/bin/ntpd
>  1270  0x807e000  0x8080000 rw-    2    0   1   0 C- vn /usr/local/bin/ntpd
>  1270  0x8080000  0x8100000 rw-  128    0   1   0 C- df 
>  1270 0x2807e000 0x280ab000 r-x   45    0 170  75 CN vn /libexec/ld-elf.so.1
>  1270 0x280ab000 0x280ad000 rw-    2    0   1   0 C- vn /libexec/ld-elf.so.1
>  1270 0x280ad000 0x280c0000 rw-   19    0   1   0 C- df 
>  1270 0x280c0000 0x280d7000 r-x   23    0   1   0 CN vn /lib/libm.so.5
>  1270 0x280d7000 0x280d8000 r-x    1    0   1   0 CN vn /lib/libm.so.5
>  1270 0x280d8000 0x280d9000 rw-    1    0   1   0 C- vn /lib/libm.so.5
>  1270 0x280d9000 0x28211000 r-x  312    0   1   0 CN vn /lib/libcrypto.so.5
>  1270 0x28211000 0x28212000 r-x    1    0   1   0 CN vn /lib/libcrypto.so.5
>  1270 0x28212000 0x2822a000 rw-   24    0   1   0 C- vn /lib/libcrypto.so.5
>  1270 0x2822a000 0x2822c000 rw-    2    0   1   0 C- df 
>  1270 0x2822c000 0x28232000 r-x    6    0   1   0 CN vn /lib/libkvm.so.4
>  1270 0x28232000 0x28233000 r-x    1    0   1   0 CN vn /lib/libkvm.so.4
>  1270 0x28233000 0x28234000 rw-    1    0   1   0 C- vn /lib/libkvm.so.4
>  1270 0x28234000 0x2824c000 r-x   24    0   1   0 CN vn /usr/lib/libelf.so.1
>  1270 0x2824c000 0x2824d000 r-x    1    0   1   0 CN vn /usr/lib/libelf.so.1
>  1270 0x2824d000 0x2824e000 rw-    1    0   1   0 C- vn /usr/lib/libelf.so.1
>  1270 0x2824e000 0x28251000 r-x    3    0  15  10 CN vn /usr/lib/librt.so.1
>  1270 0x28251000 0x28252000 r-x    1    0   1   0 CN vn /usr/lib/librt.so.1
>  1270 0x28252000 0x28253000 rw-    1    0   1   0 C- vn /usr/lib/librt.so.1
>  1270 0x28253000 0x28260000 r-x   13    0   1   0 CN vn /lib/libmd.so.4
>  1270 0x28260000 0x28261000 r-x    1    0   1   0 CN vn /lib/libmd.so.4
>  1270 0x28261000 0x28262000 rw-    1    0   1   0 C- vn /lib/libmd.so.4
>  1270 0x28262000 0x28351000 r-x  239    0   1   0 CN vn /lib/libc.so.7
>  1270 0x28351000 0x28352000 r-x    1    0   1   0 CN vn /lib/libc.so.7
>  1270 0x28352000 0x28358000 rw-    6    0   1   0 C- vn /lib/libc.so.7
>  1270 0x28358000 0x2836e000 rw-   22    0   1   0 C- df 
>  1270 0x2836e000 0x2837a000 ---    0    0   0   0 -- -- 
>  1270 0x28400000 0x28500000 rw-  256    0   1   0 C- df 
>  1270 0xbfbe0000 0xbfc00000 rwx   32    0   1   0 C- df 
> 
> rwsrv05# kgdb kernel.debug /dev/mem
> GNU gdb 6.1.1 [FreeBSD]
> Copyright 2004 Free Software Foundation, Inc.
> GDB is free software, covered by the GNU General Public License, and you are
> welcome to change it and/or distribute copies of it under certain conditions.
> Type "show copying" to see the conditions.
> There is absolutely no warranty for GDB.  Type "show warranty" for details.
> This GDB was configured as "i386-marcel-freebsd"...
> #0  sched_switch (td=0xc08af410, newtd=0xc4d4db40, flags=260)
>     at /usr/src/sys/kern/sched_ule.c:1864
> 1864			cpuid = PCPU_GET(cpuid);
> Ready to go.  Enter 'tr' to connect to the remote target
> with /dev/cuad0, 'tr /dev/cuad1' to connect to a different port
> or 'trf portno' to connect to the remote target with the firewire
> interface.  portno defaults to 5556.
> 
> Type 'getsyms' after connection to load kld symbols.
> 
> If you're debugging a local system, you can use 'kldsyms' instead
> to load the kld symbols.  That's a less obnoxious interface.
> (kgdb) proc 1270
> [Switching to thread 168 (Thread 100184)]#0  sched_switch (td=0xc592fd80, newtd=0xc4d4db40, flags=0x104)
>     at /usr/src/sys/kern/sched_ule.c:1864
> 1864			cpuid = PCPU_GET(cpuid);
> (kgdb) bt
> #0  sched_switch (td=0xc592fd80, newtd=0xc4d4db40, flags=0x104) at /usr/src/sys/kern/sched_ule.c:1864
> During symbol reading, Incomplete CFI data; unspecified registers at 0xc06009d6.
> #1  0xc05e788f in mi_switch (flags=0x104, newtd=0x0) at /usr/src/sys/kern/kern_synch.c:444
> #2  0xc061695c in sleepq_switch (wchan=0xc5909f00, pri=0x44) at /usr/src/sys/kern/subr_sleepqueue.c:505
> #3  0xc06175f5 in sleepq_wait (wchan=0xc5909f00, pri=0x44) at /usr/src/sys/kern/subr_sleepqueue.c:584
> #4  0xc05e7d39 in _sleep (ident=0xc5909f00, lock=0xc0a26724, priority=0x244, wmesg=0xc0837aa0 "vmmaps", timo=0x0)
>     at /usr/src/sys/kern/kern_synch.c:232
> #5  0xc0761a37 in vm_map_unlock_and_wait (map=0xc5909e80, timo=0x0) at /usr/src/sys/vm/vm_map.c:638
> #6  0xc0761ae7 in vm_map_delete (map=0xc5909e80, start=0x2836e000, end=0x28374000) at /usr/src/sys/vm/vm_map.c:2703
> #7  0xc07634ce in vm_map_fixed (map=0xc5909e80, object=0xc5254990, offset=0x0, start=0x2836e000, length=0x6000, 
>     prot=0x5, max=0x7, cow=0x112) at /usr/src/sys/vm/vm_map.c:1367
> #8  0xc0765ba8 in vm_mmap (map=0xc5909e80, addr=0xe787ac70, size=0x6000, prot=Variable "prot" is not available.
> ) at /usr/src/sys/vm/vm_mmap.c:1439
> #9  0xc076634f in mmap (td=0xc592fd80, uap=0xe787acf8) at /usr/src/sys/vm/vm_mmap.c:390
> #10 0xc07bb6bf in syscall (frame=0xe787ad38) at /usr/src/sys/i386/i386/trap.c:1073
> #11 0xc07a0150 in Xint0x80_syscall () at /usr/src/sys/i386/i386/exception.s:261
> #12 0x00000033 in ?? ()
> Previous frame inner to this frame (corrupt stack?)
> (kgdb) f 6
> #6  0xc0761ae7 in vm_map_delete (map=0xc5909e80, start=0x2836e000, end=0x28374000) at /usr/src/sys/vm/vm_map.c:2703
> 2703				(void) vm_map_unlock_and_wait(map, 0);
> (kgdb) p *entry
> $1 = {
>   prev = 0xc5812b40, 
>   next = 0xc59ec7e0, 
>   left = 0xc5812b40, 
>   right = 0xc59ec7e0, 
>   start = 0x2836e000, 
>   end = 0x2837a000, 
>   avail_ssize = 0x0, 
>   adj_free = 0x86000, 
>   max_free = 0x976e0000, 
>   object = {
>     vm_object = 0x0, 
>     sub_map = 0x0
>   }, 
>   offset = 0x0, 
>   eflags = 0x600, 
>   protection = 0x0, 
>   max_protection = 0x7, 
>   inheritance = 0x1, 
>   wired_count = 0xffffffff, 
>   lastr = 0x1c, 
>   uip = 0x0
> }
> (kgdb) 

Thank you, I see what is going on. Please, try the following patch.

diff --git a/sys/vm/vm_map.c b/sys/vm/vm_map.c
index 7cc2c2d..dc7a490 100644
--- a/sys/vm/vm_map.c
+++ b/sys/vm/vm_map.c
_at__at_ -2354,12 +2354,12 _at__at_ vm_map_wire(vm_map_t map, vm_offset_t start, vm_offset_t end,
 		if (entry->wired_count == 0) {
 			if ((entry->protection & (VM_PROT_READ|VM_PROT_EXECUTE))
 			    == 0) {
+				entry->eflags |= MAP_ENTRY_WIRE_SKIPPED;
 				if ((flags & VM_MAP_WIRE_HOLESOK) == 0) {
 					end = entry->end;
 					rv = KERN_INVALID_ADDRESS;
 					goto done;
 				}
-				entry->eflags |= MAP_ENTRY_WIRE_SKIPPED;
 				goto next_entry;
 			}
 			entry->wired_count++;