From owner-freebsd-current@FreeBSD.ORG Fri Jun 17 19:20:44 2005 Return-Path: X-Original-To: current@freebsd.org Delivered-To: freebsd-current@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9D19E16A41F; Fri, 17 Jun 2005 19:20:44 +0000 (GMT) (envelope-from jhb@FreeBSD.org) Received: from mv.twc.weather.com (mv.twc.weather.com [65.212.71.225]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1549343D48; Fri, 17 Jun 2005 19:20:43 +0000 (GMT) (envelope-from jhb@FreeBSD.org) Received: from [10.50.41.231] (Not Verified[216.133.140.1]) by mv.twc.weather.com with NetIQ MailMarshal (v6, 0, 3, 8) id ; Fri, 17 Jun 2005 15:34:10 -0400 From: John Baldwin To: freebsd-current@freebsd.org Date: Fri, 17 Jun 2005 14:34:47 -0400 User-Agent: KMail/1.8 References: <20050510223636.GA49927@xor.obsecurity.org> <20050529175056.GA99318@xor.obsecurity.org> In-Reply-To: <20050529175056.GA99318@xor.obsecurity.org> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-6" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200506171434.49008.jhb@FreeBSD.org> Cc: amd64@freebsd.org, current@freebsd.org, Kris Kennaway Subject: Re: Fatal trap 12 in exec_copyout_strings() X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 17 Jun 2005 19:20:44 -0000 On Sunday 29 May 2005 01:50 pm, Kris Kennaway wrote: > On Tue, May 10, 2005 at 03:36:36PM -0700, Kris Kennaway wrote: > > Got this on a dual amd64 with 8GB RAM running 6.0 from last week: > > > > Fatal trap 12: page fault while in kernel mode > > cpuid = 1; apic id = 01 > > fault virtual address = 0xffffffffa9cdc000 > > fault code = supervisor read, page not present > > instruction pointer = 0x8:0xffffffff8037759f > > stack pointer = 0x10:0xffffffffba1637d0 > > frame pointer = 0x10:0xffffffffba163820 > > code segment = base 0x0, limit 0xfffff, type 0x1b > > = DPL 0, pres 1, long 1, def32 0, gran 1 > > processor eflags = interrupt enabled, resume, IOPL = 0 > > current process = 52247 (sh) > > [thread pid 52247 tid 100149 ] > > Stopped at exec_copyout_strings+0x12f: > > db> wh > > Tracing pid 52247 tid 100149 td 0xffffff016e5724c0 > > exec_copyout_strings() at exec_copyout_strings+0x12f > > do_execve() at do_execve+0x39a > > kern_execve() at kern_execve+0xab > > execve() at execve+0x49 > > syscall() at syscall+0x382 > > Xfast_syscall() at Xfast_syscall+0xa8 > > --- syscall (59, FreeBSD ELF64, execve), rip = 0x80090622c, rsp = > > 0x7fffffffe058, rbp = 0xffffffff --- db> > > I've got this panic twice more since. Do you have a kernel.debug? Can you do 'list *exec_copyout_strings+0x12f'? I think I've seen reports of the linux32_exec_copyout_strings() having a similar fault as well on amd64. -- John Baldwin <>< http://www.FreeBSD.org/~jhb/ "Power Users Use the Power to Serve" = http://www.FreeBSD.org