From owner-freebsd-current@FreeBSD.ORG Sun May 15 03:22:12 2005 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 8A18516A4CE; Sun, 15 May 2005 03:22:12 +0000 (GMT) Received: from sakura.ninth-nine.com (sakura.ninth-nine.com [219.127.74.120]) by mx1.FreeBSD.org (Postfix) with ESMTP id D102443D45; Sun, 15 May 2005 03:22:10 +0000 (GMT) (envelope-from nork@FreeBSD.org) Received: from nadesico.ninth-nine.com (nadesico.ninth-nine.com [219.127.74.122]) by sakura.ninth-nine.com (8.13.3/8.13.1/NinthNine) with SMTP id j4F3M2hd049281; Sun, 15 May 2005 12:22:03 +0900 (JST) (envelope-from nork@FreeBSD.org) Date: Sun, 15 May 2005 12:22:02 +0900 (JST) Message-Id: <200505150322.j4F3M2hd049281@sakura.ninth-nine.com> From: Norikatsu Shigemura To: Alan Cox In-Reply-To: <20050514193120.GX8136@cs.rice.edu> References: <200505141531.j4EFVXwA028227@sakura.ninth-nine.com> <20050514193120.GX8136@cs.rice.edu> X-Mailer: Sylpheed version 1.9.10 (GTK+ 2.6.7; i386-portbld-freebsd6.0) Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-1.6 (sakura.ninth-nine.com [219.127.74.121]); Sun, 15 May 2005 12:22:03 +0900 (JST) cc: alc@FreeBSD.org cc: jeff@FreeBSD.org cc: freebsd-current@FreeBSD.org cc: nork@FreeBSD.org cc: jhb@FreeBSD.org Subject: Re: latest current and kqemu cause a VM panic X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 15 May 2005 03:22:12 -0000 On Sat, 14 May 2005 14:31:20 -0500 Alan Cox wrote: > This indicates corruption of the page being allocated from the free > list. From the backtrace, the page's address is 0xc22cebe8. Can you > send me a dump of the 72 bytes at that location. Thank you. I have a crash dump. How do I get a dump? Maybe, althought I think following operation is currect... If I miss, please teach me! :-) # kgdb /var/crash/kernel.debug.36 /var/crash/vmcore.36 [GDB will not be able to debug user-mode threads: /usr/lib/libthread_db.so: Undefined symbol "ps_pglobal_lookup"] GNU gdb 6.1.1 [FreeBSD] (snip) #0 doadump () at pcpu.h:165 165 pcpu.h: No such file or directory. in pcpu.h (kgdb) where #0 doadump () at pcpu.h:165 #1 0xc04b42cd in boot (howto=260) at /usr/src/sys/kern/kern_shutdown.c:397 #2 0xc04b46f3 in panic (fmt=0xc065c178 "from debugger") at /usr/src/sys/kern/kern_shutdown.c:553 #3 0xc0431232 in db_panic (addr=0, have_addr=0, count=-1, modif=0xf8823994 "") at /usr/src/sys/ddb/db_command.c:435 #4 0xc04311a2 in db_command (last_cmdp=0xc06a4804, cmd_table=0x0, aux_cmd_tablep=0xc06795b8, aux_cmd_tablep_end=0xc06795bc) at /usr/src/sys/ddb/db_command.c:349 #5 0xc04312b5 in db_command_loop () at /usr/src/sys/ddb/db_command.c:455 #6 0xc0433435 in db_trap (type=3, code=0) at /usr/src/sys/ddb/db_main.c:221 #7 0xc04d4e6e in kdb_trap (type=0, code=0, tf=0xf8823af4) at /usr/src/sys/kern/subr_kdb.c:471 #8 0xc063a898 in trap (frame= {tf_fs = 8, tf_es = 40, tf_ds = -125698008, tf_edi = 256, tf_esi = 1, tf_ebp = -125682884, tf_isp = -125682912, tf_ebx = -125682820, tf_edx = 0, tf_ecx = -1056755712, tf_eax = 18, tf_trapno = 3, tf_err = 0, tf_eip = -1068676288, tf_cs = 32, tf_eflags = 646, tf_esp = -1067034858, tf_ss = -1067041121}) at /usr/src/sys/i386/i386/trap.c:581 #9 0xc06261ea in calltrap () at /usr/src/sys/i386/i386/exception.s:139 #10 0x00000008 in ?? () #11 0x00000028 in ?? () #12 0xf8820028 in ?? () #13 0x00000100 in ?? () #14 0x00000001 in ?? () #15 0xf8823b3c in ?? () #16 0xf8823b20 in ?? () #17 0xf8823b7c in ?? () #18 0x00000000 in ?? () #19 0xc1033000 in ?? () #20 0x00000012 in ?? () #21 0x00000003 in ?? () #22 0x00000000 in ?? () #23 0xc04d4b40 in kdb_enter (msg=0x0) at cpufunc.h:60 #24 0xc04b464e in panic ( fmt=0xc0672378 "vm_page_insert: page already inserted") at /usr/src/sys/kern/kern_shutdown.c:537 #25 0xc05f961a in vm_page_insert (m=0xc22cebe8, object=0xc80e4840, pindex=Unhandled dwarf expression opcode 0x93 ) at /usr/src/sys/vm/vm_page.c:539 #26 0xc05f9d38 in vm_page_alloc (object=0xc80e4840, pindex=2, req=0) at /usr/src/sys/vm/vm_page.c:867 #27 0xc05e94f0 in vm_fault (map=0xc3c23a8c, vaddr=134590464, fault_type=2 '\002', fault_flags=8) at /usr/src/sys/vm/vm_fault.c:450 #28 0xc063aaab in trap_pfault (frame=0xf8823d38, usermode=1, eva=134590856) at /usr/src/sys/i386/i386/trap.c:709 #29 0xc063a5fa in trap (frame= {tf_fs = -1067319237, tf_es = 59, tf_ds = 59, tf_edi = 134619188, tf_esi = 134619208, tf_ebp = -1077943256, tf_isp = -125682332, tf_ebx = 1757676724, tf_edx = 0, tf_ecx = 135842160, tf_eax = 134590848, tf_trapno = 12, tf_err = 7, tf_eip = 1757668780, tf_cs = 51, tf_eflags = 66118, tf_esp = -1077943296, tf_ss = 59}) at /usr/src/sys/i386/i386/trap.c:321 #30 0xc06261ea in calltrap () at /usr/src/sys/i386/i386/exception.s:139 #31 0xc062003b in bios32_init (junk=Cannot access memory at address 0xbfbfe430 ) at /usr/src/sys/i386/i386/bios.c:128 Previous frame inner to this frame (corrupt stack?) (kgdb) x/72b 0xc22cebe8 0xc22cebe8: 0x98 0xfc 0x0b 0xc2 0xe0 0xb1 0x6f 0xc0 0xc22cebf0: 0x30 0xf4 0x33 0xc2 0xa8 0xc7 0x2c 0xc2 0xc22cebf8: 0xa0 0xc7 0x2c 0xc2 0x00 0x00 0x00 0x00 0xc22cec00: 0x60 0xbc 0xc1 0xc3 0xf7 0xbe 0x00 0x00 0xc22cec08: 0x00 0x00 0x00 0x00 0x00 0x60 0xad 0x40 0xc22cec10: 0x01 0x00 0x00 0x00 0x40 0x12 0xb2 0xe1 0xc22cec18: 0x48 0x12 0xb2 0xe1 0x00 0x00 0x01 0x00 0xc22cec20: 0x56 0x00 0x00 0x00 0x00 0x00 0x00 0x00 0xc22cec28: 0x00 0x00 0x00 0x00 0x00 0x00 0x00 0x00