another panic in 8.3-PRERELEASE

Konstantin Belousov kostikbel at gmail.com
Fri Feb 24 15:03:12 UTC 2012 

On Fri, Feb 24, 2012 at 04:33:36PM +0200, Konstantin Belousov wrote:
> On Thu, Feb 23, 2012 at 11:45:58PM +0900, Hiroki Sato wrote:
> > Hi,
> > 
> >  This is another reproducible panic.  This seems to happen only when
> >  top(1) is running for a long time (a sysctl() call for
> >  CTL_KERN.KERN_PROC.KERN_PROC_PROC MIB triggered it).
> > 
> > ----
> > pool.allbsd.org dumped core - see /var/crash/vmcore.0
> > 
> > Thu Feb 23 23:21:52 JST 2012
> > 
> > FreeBSD pool.allbsd.org 8.3-PRERELEASE FreeBSD 8.3-PRERELEASE #8: Thu Feb 23 04:40:54 JST 2012     hrs at pool.allbsd.org:/usr/obj/usr/src/sys/POOL  amd64
> > 
> > panic:
> > 
> > GNU gdb 6.1.1 [FreeBSD]
> > Copyright 2004 Free Software Foundation, Inc.
> > GDB is free software, covered by the GNU General Public License, and you are
> > welcome to change it and/or distribute copies of it under certain conditions.
> > Type "show copying" to see the conditions.
> > There is absolutely no warranty for GDB.  Type "show warranty" for details.
> > This GDB was configured as "amd64-marcel-freebsd"...
> > 
> > Unread portion of the kernel message buffer:
> > 
> > 
> > Fatal trap 12: page fault while in kernel mode
> > cpuid = 4; apic id = 04
> > fault virtual address	= 0x800e96000
> > fault code		= supervisor write data, protection violation
> > instruction pointer	= 0x20:0xffffffff809440cb
> > stack pointer	        = 0x28:0xffffff86c63890b0
> > frame pointer	        = 0x28:0xffffff86c6389100
> > code segment		= base 0x0, limit 0xfffff, type 0x1b
> > 			= DPL 0, pres 1, long 1, def32 0, gran 1
> > processor eflags	= interrupt enabled, resume, IOPL = 0
> > current process		= 47211 (top)
> > lock order reversal: (Giant after non-sleepable)
> >  1st 0xffffff0244b85568 process lock (process lock) @ /usr/src/sys/kern/kern_proc.c:1211
> >  2nd 0xffffffff80d74c80 Giant (Giant) @ /usr/src/sys/dev/usb/input/ukbd.c:2018
> > KDB: stack backtrace:
> > Dumping 23903 out of 24550 MB:..1%..11%..21%..31% (CTRL-C to abort)  (CTRL-C to abort) ..41%..51%..61%..71%..81%..91%
> > 
> > Reading symbols from /boot/kernel/geom_mirror.ko...Reading symbols from /boot/kernel/geom_mirror.ko.symbols...done.
> > done.
> > Loaded symbols for /boot/kernel/geom_mirror.ko
> > Reading symbols from /boot/kernel/zfs.ko...Reading symbols from /boot/kernel/zfs.ko.symbols...done.
> > done.
> > Loaded symbols for /boot/kernel/zfs.ko
> > Reading symbols from /boot/kernel/opensolaris.ko...Reading symbols from /boot/kernel/opensolaris.ko.symbols...done.
> > done.
> > Loaded symbols for /boot/kernel/opensolaris.ko
> > Reading symbols from /boot/kernel/ipfw.ko...Reading symbols from /boot/kernel/ipfw.ko.symbols...done.
> > done.
> > Loaded symbols for /boot/kernel/ipfw.ko
> > #0  doadump () at /usr/src/sys/kern/kern_shutdown.c:263
> > 263		if (textdump_pending)
> > (kgdb) #0  doadump () at /usr/src/sys/kern/kern_shutdown.c:263
> > #1  0xffffffff801f8cfc in db_fncall (dummy1=Variable "dummy1" is not available.
> > )
> >     at /usr/src/sys/ddb/db_command.c:548
> > #2  0xffffffff801f9031 in db_command (last_cmdp=0xffffffff80d37f40, cmd_table=Variable "cmd_table" is not available.
> > 
> > ) at /usr/src/sys/ddb/db_command.c:445
> > #3  0xffffffff801f9280 in db_command_loop ()
> >     at /usr/src/sys/ddb/db_command.c:498
> > #4  0xffffffff801fb369 in db_trap (type=Variable "type" is not available.
> > ) at /usr/src/sys/ddb/db_main.c:229
> > #5  0xffffffff8069dff1 in kdb_trap (type=12, code=0, tf=0xffffff86c6389000)
> >     at /usr/src/sys/kern/subr_kdb.c:548
> > #6  0xffffffff809461ed in trap_fatal (frame=0xffffff86c6389000, eva=Variable "eva" is not available.
> > )
> >     at /usr/src/sys/amd64/amd64/trap.c:820
> > #7  0xffffffff809468b5 in trap (frame=0xffffff86c6389000)
> >     at /usr/src/sys/amd64/amd64/trap.c:326
> > #8  0xffffffff8092d2f4 in calltrap ()
> >     at /usr/src/sys/amd64/amd64/exception.S:228
> > #9  0xffffffff809440cb in copyout () at /usr/src/sys/amd64/amd64/support.S:258
> > #10 0xffffffff80675f1f in sysctl_old_user (req=0xffffff86c63899c0,
> >     p=0xffffff86c6389470, l=1088) at /usr/src/sys/kern/kern_sysctl.c:1276
> > #11 0xffffffff8065f6a6 in sysctl_out_proc_copyout (ki=0xffffff86c6389470,
> >     req=0xffffff86c63899c0) at /usr/src/sys/kern/kern_proc.c:1085
> > #12 0xffffffff8065ff6c in sysctl_out_proc (p=0xffffff0244b85470,
> >     req=0xffffff86c63899c0, flags=Variable "flags" is not available.
> > ) at /usr/src/sys/kern/kern_proc.c:1114
> > #13 0xffffffff8066245e in sysctl_kern_proc (oidp=Variable "oidp" is not available.
> > )
> >     at /usr/src/sys/kern/kern_proc.c:1302
> > #14 0xffffffff806756e8 in sysctl_root (oidp=Variable "oidp" is not available.
> > )
> >     at /usr/src/sys/kern/kern_sysctl.c:1455
> > #15 0xffffffff8067598e in userland_sysctl (td=0x0, name=0xffffff86c6389a80,
> >     namelen=3, old=0x800e96000, oldlenp=Variable "oldlenp" is not available.
> > )
> >     at /usr/src/sys/kern/kern_sysctl.c:1565
> > #16 0xffffffff80675e3a in __sysctl (td=0xffffff0396ec5460,
> >     uap=0xffffff86c6389bc0) at /usr/src/sys/kern/kern_sysctl.c:1491
> > #17 0xffffffff80945809 in amd64_syscall (td=0xffffff0396ec5460, traced=0)
> >     at subr_syscall.c:114
> > #18 0xffffffff8092d5ec in Xfast_syscall ()
> >     at /usr/src/sys/amd64/amd64/exception.S:387
> > #19 0x0000000800abecfc in ?? ()
> > Previous frame inner to this frame (corrupt stack?)
> > (kgdb)
> Can you, please, print out the content of *td, e.g. from the frame 16 ?

And *req from the frame 11, please.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 196 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20120224/d3a21f97/attachment.pgp

More information about the freebsd-stable mailing list