From owner-freebsd-current@FreeBSD.ORG Sat Jan 26 00:40:26 2008 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 82D2716A469 for ; Sat, 26 Jan 2008 00:40:26 +0000 (UTC) (envelope-from w0lfie@clear.net.nz) Received: from smtp4.clear.net.nz (smtp4.clear.net.nz [203.97.37.64]) by mx1.freebsd.org (Postfix) with ESMTP id 473F513C4D3 for ; Sat, 26 Jan 2008 00:40:26 +0000 (UTC) (envelope-from w0lfie@clear.net.nz) Received: from clear.net.nz (lb2-srcnat.clear.net.nz [203.97.32.237]) by smtp4.clear.net.nz (CLEAR Net Mail) with SMTP id <0JV80063R77B4G30@smtp4.clear.net.nz> for freebsd-current@freebsd.org; Sat, 26 Jan 2008 13:40:25 +1300 (NZDT) Date: Sat, 26 Jan 2008 13:40:23 +1300 From: Sam Banks Sender: w0lfie@clear.net.nz To: Sam Leffler Message-id: <479a8177.32d.4948.26949@clear.net.nz> MIME-version: 1.0 X-Mailer: CLEAR Net WebMail; webmail.clear.net.nz; user: w0lfie; ip: 121.73.22.121 Content-type: multipart/mixed; boundary="-=_fep17479a8177" Priority: normal Cc: freebsd-current@freebsd.org, Benjamin.Close@clearchain.com Subject: Re: if_wpi panic in 7.0-PRERELEASE X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list Reply-To: w0lfie@clear.net.nz List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 26 Jan 2008 00:40:26 -0000 This is a multi-part message in MIME format. ---=_fep17479a8177 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Thanks for that Sam :) The attached patch (against 1.5.2.1) seems to have fixed my problems. Does it look ok to everyone? If so, I would like, if possible, to get it included so other people hopefully don't run into the same problem. Cheers, Sam. ----- Original Message Follows ----- > Sam Banks wrote: > > Hey all, > > > > I have just got myself a new laptop (Dell Vostro 1500) > > which has an Intel 3945ABG wifi card in it. I am getting > > frequent kernel panics with the if_wpi driver. > > > > >From the attached kgdb output, it appears that a valid > > mbuf struct is being passed into tkip_demic but once > > m_copydata is called (within tkip_demic), it's being > > passed a null pointer. At least, this is what I can see > is going on :) > > > Does anyone have any ideas why this would be happening > > or any further insight? > > > > I've attached what info I think will be helpful but if > > there's anything else needed, just yell out. > > > > Cheers, > > > > Sam. > > > > > > FreeBSD wolfie.evil 7.0-PRERELEASE FreeBSD > > 7.0-PRERELEASE #3: Fri Jan 25 17:35:41 NZDT 2008 > > root@wolfie.evil:/usr/src/sys/i386/compile/WOLFIE i386 > > > > > > wpi0@pci0:12:0:0: class=3d0x028000 card=3d0x10208086 > > chip=3d0x42228086 rev=3d0x02 hdr=3d0x00 > > vendor =3d 'Intel Corporation' > > device =3d '10418086 Intel 3945ABG Wireless LAN > > controller' > > class =3d network > > > > > > Fatal trap 12: page fault while in kernel mode > > cpuid =3d 0; apic id =3d 00 > > fault virtual address =3d 0xc > > fault code =3d supervisor read, page not > > present > > instruction pointer =3d 0x20:0xc0597e0f > > stack pointer =3d 0x28:0xe59c0b00 > > frame pointer =3d 0x28:0xe59c0b18 > > code segment =3d base 0x0, limit 0xfffff, type > > 0x1b > > =3d DPL 0, pres 1, def32 1, gran 1 > > processor eflags =3d interrupt enabled, resume, > > IOPL =3d 0 > > current process =3d 34 (irq17: wpi0 bfe0+) > > panic: from debugger > > cpuid =3d 0 > > Uptime: 16s > > Physical memory: 2034 MB > > Dumping 72 MB: 57 41 25 9 > > > > #0 doadump () at pcpu.h:195 > > 195 pcpu.h: No such file or directory. > > in pcpu.h > > (kgdb) bt > > #0 doadump () at pcpu.h:195 > > #1 0xc054d14a in boot (howto=3d260) at > > ./../../kern/kern_shutdown.c:409 > > #2 0xc054d44f in panic (fmt=3dVariable "fmt" is not > > available. > > ) at ../../../kern/kern_shutdown.c:563 > > #3 0xc044ad49 in db_panic (addr=3dCould not find the > > frame base for "db_panic". > > ) at ../../../ddb/db_command.c:433 > > #4 0xc044b44c in db_command_loop () at > > ./../../ddb/db_command.c:401 > > #5 0xc044cd28 in db_trap (type=3d12, code=3d0) at > > ./../../ddb/db_main.c:222 > > #6 0xc0573c18 in kdb_trap (type=3d12, code=3d0, > > tf=3ddwarf2_read_address: Corrupted DWARF expression. > > ) at ../../../kern/subr_kdb.c:502 > > #7 0xc06cd159 in trap_fatal (frame=3d0xe59c0ac0, eva=3d12) > > at ../../../i386/i386/trap.c:890 > > #8 0xc06cd40e in trap_pfault (frame=3d0xe59c0ac0, > > usermode=3d0, eva=3d12) at ../../../i386/i386/trap.c:812 > > #9 0xc06cdddb in trap (frame=3d0xe59c0ac0) at > > ./../../i386/i386/trap.c:490 > > #10 0xc06b502b in calltrap () at > > ./../../i386/i386/exception.s:139 > > #11 0xc0597e0f in m_copydata (m=3d0x0, off=3d4, len=3d8, > > cp=3d0xe59c0b38 "=a4=f0i=c5 ---=_fep17479a8177 Content-Type: application/octet-stream; name="if_wpi.c.patch" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="if_wpi.c.patch" LS0tIGlmX3dwaS5jLm9yaWcJMjAwOC0wMS0yNiAxMzozMTo1MS4wMDAwMDAw MDAgKzEzMDAKKysrIGlmX3dwaS5jCTIwMDgtMDEtMjYgMTM6MzI6MDQuMDAw MDAwMDAwICsxMzAwCkBAIC0xMDQxLDcgKzEwNDEsNyBAQAogCWZvciAoaSA9 IDA7IGkgPCBXUElfUlhfUklOR19DT1VOVDsgaSsrKSB7CiAJCWRhdGEgPSAm cmluZy0+ZGF0YVtpXTsKIAotCQlkYXRhLT5tID0gbV9nZXQoTV9ET05UV0FJ VCwgTVRfSEVBREVSKTsKKwkJZGF0YS0+bSA9IG1fZ2V0aGRyKE1fRE9OVFdB SVQsIE1UX0hFQURFUik7CiAJCWlmIChkYXRhLT5tID09IE5VTEwpIHsKIAkJ CWRldmljZV9wcmludGYoc2MtPnNjX2RldiwKIAkJCSAgICAiY291bGQgbm90 IGFsbG9jYXRlIHJ4IG1idWZcbiIpOwo= ---=_fep17479a8177--