From owner-freebsd-emulation@FreeBSD.ORG  Sat Mar  6 18:01:21 2010
Return-Path: <owner-freebsd-emulation@FreeBSD.ORG>
Delivered-To: freebsd-emulation@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id CABD5106566C;
	Sat,  6 Mar 2010 18:01:21 +0000 (UTC)
	(envelope-from to.my.trociny@gmail.com)
Received: from ey-out-2122.google.com (ey-out-2122.google.com [74.125.78.24])
	by mx1.freebsd.org (Postfix) with ESMTP id 34A368FC18;
	Sat,  6 Mar 2010 18:01:20 +0000 (UTC)
Received: by ey-out-2122.google.com with SMTP id d26so187309eyd.3
	for <multiple recipients>; Sat, 06 Mar 2010 10:01:13 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma;
	h=domainkey-signature:received:received:to:cc:subject:organization
	:from:date:message-id:user-agent:mime-version:content-type
	:content-transfer-encoding;
	bh=3e+Tx8ctqstiWQ0kWYQbNGJ7yQu3DNZplLsco6mmN7w=;
	b=BSqxm8/foN70bXVJIG0CQ1hZnOhPI/ScnoJjzQjrhhY1URcD/N+WqDX+oXnYSdCkM3
	J5TXMU9qKwdaM0iKRzY9oZatR/U5G5roU7JA1RvY7GICR3wQUuFTSoITLgQHyQq0r0Nd
	MSoSoi+N+1IMNbc1yIf2/WrHr4r/wnlbQnlcM=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma;
	h=to:cc:subject:organization:from:date:message-id:user-agent
	:mime-version:content-type:content-transfer-encoding;
	b=EcSO5aXu1OKYMDT2Y94AkFfP04xlAUGeIVrb0szFRLhZgmMzdpigvbBPPBtdHYayMr
	kVJLO72vGLIzaakd5OEwI91JWAFTWAUpWv/Z9aQGQUFdcRsj4fCtmdLV49e4GGQnyrcy
	i6P8GcqxQADGJJxd5yTVF9K/HLDZOXYYTyhvs=
Received: by 10.213.97.17 with SMTP id j17mr1541070ebn.24.1267896615124;
	Sat, 06 Mar 2010 09:30:15 -0800 (PST)
Received: from localhost ([95.69.173.225])
	by mx.google.com with ESMTPS id 15sm1574370ewy.4.2010.03.06.09.30.13
	(version=TLSv1/SSLv3 cipher=RC4-MD5);
	Sat, 06 Mar 2010 09:30:14 -0800 (PST)
To: freebsd-stable@freebsd.org
Organization: TOA Ukraine
From: Mikolaj Golub <to.my.trociny@gmail.com>
Date: Sat, 06 Mar 2010 19:30:12 +0200
Message-ID: <86zl2l2w9n.fsf@kopusha.onet>
User-Agent: Gnus/5.11 (Gnus v5.11) Emacs/22.3 (berkeley-unix)
MIME-Version: 1.0
Content-Type: text/plain; charset=koi8-r
Content-Transfer-Encoding: 8bit
Cc: alc@freebsd.org, freebsd-emulation@freebsd.org
Subject: virtualbox status on 8.0-STABLE i386
X-BeenThere: freebsd-emulation@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Development of Emulators of other operating systems
	<freebsd-emulation.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-emulation>, 
	<mailto:freebsd-emulation-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-emulation>
List-Post: <mailto:freebsd-emulation@freebsd.org>
List-Help: <mailto:freebsd-emulation-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-emulation>, 
	<mailto:freebsd-emulation-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 06 Mar 2010 18:01:21 -0000

Hi,

Recently I have updated my 8.0-STABLE i386 system and have learnt that
virtualbox begins to crash my box with the error

panic: vm_fault: fault on nofault entry, addr: c1608000

(kgdb) bt
#0  doadump () at pcpu.h:246
#1  0xc04ec379 in db_fncall (dummy1=-1064468854, dummy2=0, dummy3=-1, dummy4=0xe865d5bc "ÐÕeè")
    at /usr/src/sys/ddb/db_command.c:548
#2  0xc04ec7af in db_command (last_cmdp=0xc0e04c9c, cmd_table=0x0, dopager=0)
    at /usr/src/sys/ddb/db_command.c:445
#3  0xc04ec864 in db_command_script (command=0xc0e05bc4 "call doadump")
    at /usr/src/sys/ddb/db_command.c:516
#4  0xc04f09a0 in db_script_exec (scriptname=0xe865d6c8 "kdb.enter.panic", warnifnotfound=Variable "warnifnotfound" is not available.
)
    at /usr/src/sys/ddb/db_script.c:302
#5  0xc04f0a87 in db_script_kdbenter (eventname=0xc0cc248d "panic") at /usr/src/sys/ddb/db_script.c:324
#6  0xc04ee768 in db_trap (type=3, code=0) at /usr/src/sys/ddb/db_main.c:228
#7  0xc08d7d06 in kdb_trap (type=3, code=0, tf=0xe865d804) at /usr/src/sys/kern/subr_kdb.c:535
#8  0xc0beb39b in trap (frame=0xe865d804) at /usr/src/sys/i386/i386/trap.c:690
#9  0xc0bccd0b in calltrap () at /usr/src/sys/i386/i386/exception.s:165
#10 0xc08d7e8a in kdb_enter (why=0xc0cc248d "panic", msg=0xc0cc248d "panic") at cpufunc.h:71
#11 0xc08a88b6 in panic (fmt=0xc0cecbc4 "vm_fault: fault on nofault entry, addr: %lx")
    at /usr/src/sys/kern/kern_shutdown.c:562
#12 0xc0b0c3d7 in vm_fault (map=0xc1990000, vaddr=3244326912, fault_type=Variable "fault_type" is not available.
)
    at /usr/src/sys/vm/vm_fault.c:283
#13 0xc0bea7d6 in trap_pfault (frame=0xe865dac0, usermode=0, eva=3244330720)
    at /usr/src/sys/i386/i386/trap.c:840
#14 0xc0beb225 in trap (frame=0xe865dac0) at /usr/src/sys/i386/i386/trap.c:533
#15 0xc0bccd0b in calltrap () at /usr/src/sys/i386/i386/exception.s:165
#16 0xc12beed0 in rtR0MemObjNativeGetPagePhysAddr (pMem=0xc5ed3110, iPage=0) at pmap.h:300
#17 0xc12ac354 in SUPR0LockMem (pSession=0xc5c61c10, pvR3=695959552, cPages=1, paPages=0xc5f83668)
    at SUPDrv.c:2307
#18 0xc12ac8cb in supdrvIOCtl (uIOCtl=536892942, pDevExt=0xc12c9ac0, pSession=0xc5c61c10, 
    pReqHdr=0xc5f83650) at SUPDrv.c:1245
#19 0xc12b0c3a in VBoxDrvFreeBSDIOCtl (pDev=0xc665d800, ulCmd=536892942, 
    pvData=0xe865dd00 "À8 )\003¾ËÀq\002", fFile=3, pTd=0xc69556f0)
    at /usr/ports/emulators/virtualbox-ose-kmod/work/VirtualBox-3.1.2_OSE/out/freebsd.x86/debug/bin/src/vboxdrv/freebsd/SUPDrv-freebsd.c:505
#20 0xc0829658 in devfs_ioctl_f (fp=0xc670fa80, com=536892942, data=0xe865dd00, cred=0xc6bbeb00, 
    td=0xc69556f0) at /usr/src/sys/fs/devfs/devfs_vnops.c:659
#21 0xc08eec8d in kern_ioctl (td=0xc69556f0, fd=7, com=536892942, data=0xe865dd00 "À8 )\003¾ËÀq\002")
    at file.h:262
#22 0xc08eee14 in ioctl (td=0xc69556f0, uap=0xe865dcf8) at /usr/src/sys/kern/sys_generic.c:678
#23 0xc0beaad0 in syscall (frame=0xe865dd38) at /usr/src/sys/i386/i386/trap.c:1111
#24 0xc0bccda0 in Xint0x80_syscall () at /usr/src/sys/i386/i386/exception.s:261
#25 0x00000033 in ?? ()
Previous frame inner to this frame (corrupt stack?)
(kgdb) fr 16
#16 0xc12beed0 in rtR0MemObjNativeGetPagePhysAddr (pMem=0xc5ed3110, iPage=0) at pmap.h:300
300                     pa = (pa & PG_FRAME) | (va & PAGE_MASK);
(kgdb) list
295                      * access the PTE because it would use the new PDE.  It is,
296                      * however, safe to use the old PDE because the page table
297                      * page is preserved by the promotion.
298                      */
299                     pa = KPTmap[i386_btop(va)];
300                     pa = (pa & PG_FRAME) | (va & PAGE_MASK);
301             }
302             return (pa);
303     }
304

There were some changes in this part recently (r203182):

http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/i386/include/pmap.h.diff?r1=1.140.2.2;r2=1.140.2.3;only_with_tag=RELENG_8

So I removed KPTmap[i386_btop(va)] with *vtopte(va) and have working
virtualbox again, but I suppose this is rather the problem with virualbox and
not with the kernel code.

In February Alexander Eichner posted the patch to freebsd-emulation@ (thread
with the subject "Patch to fix VirtualBox with recent kernel versions"):

http://lists.freebsd.org/pipermail/freebsd-emulation/2010-February/007434.html

But it does not fix my panics. The patch adds additional handling in
rtR0MemObjNativeGetPagePhysAddr() for the case 
pMem.enmType == RTR0MEMOBJTYPE_MAPPING, while I am observing the panics
for pMem.enmType == RTR0MEMOBJTYPE_LOCK:

(kgdb) fr 17
#17 0xc12ac354 in SUPR0LockMem (pSession=0xc5c61c10, pvR3=695959552, cPages=1, paPages=0xc5f83668)
    at SUPDrv.c:2307
2307                paPages[iPage] = RTR0MemObjGetPagePhysAddr(Mem.MemObj, iPage);
(kgdb) p Mem.MemObj.enmType
$1 = RTR0MEMOBJTYPE_LOCK

So, it looks like some additional handling should be added for this case...

-- 
Mikolaj Golub