Date: Mon, 8 Oct 2007 17:40:02 GMT From: Shanker Balan <mail@shankerbalan.net> To: freebsd-gnats-submit@FreeBSD.org Subject: i386/117026: Panic while removing PCMCIA wireless card Message-ID: <200710081740.l98He2PV018762@www.freebsd.org> Resent-Message-ID: <200710081750.l98Ho1c5010545@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 117026
>Category: i386
>Synopsis: Panic while removing PCMCIA wireless card
>Confidential: no
>Severity: non-critical
>Priority: low
>Responsible: freebsd-i386
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Mon Oct 08 17:50:01 GMT 2007
>Closed-Date:
>Last-Modified:
>Originator: Shanker Balan
>Release: 7.0-CURRENT
>Organization:
Yahoo
>Environment:
FreeBSD partvarious-lx.eglbp.corp.yahoo.com 7.0-CURRENT FreeBSD 7.0-CURRENT #5: Sun Sep 23 13:48:49 IST 2007 shanu@partvarious-lx.eglbp.corp.yahoo.com:/usr/obj/usr/home/src/sys/MYKERNEL i386
>Description:
Ejecting the PCMCIA card causes the below panic to happen.
Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address = 0xc307f45c
fault code = supervisor write, page not present
instruction pointer = 0x20:0xc09f98d0
stack pointer = 0x28:0xd63099f0
frame pointer = 0x28:0xd6309a04
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, def32 1, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
current process = 489 (ifconfig)
trap number = 12
panic: page fault
cpuid = 0
KDB: stack backtrace:
db_trace_self_wrapper(c0aaada9,d630988c,c07501ff,c0acb176,0,...) at db_trace_self_wrapper+0x26
kdb_backtrace(c0acb176,0,c0a6b34b,d6309898,0,...) at kdb_backtrace+0x29
panic(c0a6b34b,c0acc40e,c31baf68,1,1,...) at panic+0x10f
trap_fatal(c1471000,c307f000,2,0,c0b4f080,...) at trap_fatal+0x32e
trap_pfault(d6309924,c076ae64,0,56,c31bc880,...) at trap_pfault+0x244
trap(d63099b0) at trap+0x3d4
calltrap() at calltrap+0x6
--- trap 0xc, eip = 0xc09f98d0, esp = 0xd63099f0, ebp = 0xd6309a04 ---
atomic_cmpset_int(c307f45c,c307e000,d6309a8c,c0e288da,c307f45c,...) at atomic_cmpset_int+0xc
KfAcquireSpinLock(c307f45c,3e8,d6309a7c,d6309a78,d6309a40,...) at KfAcquireSpinLock+0x20
ndis_init_nic(c307e000,c07c94c1,c0b6a600,d6309ab0,d6309bd4,...) at ndis_init_nic+0x110
ndis_init(c307e000,c0970a53,d6309bd4,4,2815b000,...) at ndis_init+0x39
ndis_ioctl(c2f80c00,80206910,c33db220,1,c330d758,...) at ndis_ioctl+0x45d
ifhwioctl(c31bc880,c0bc0c60,d6309bf4,c0820af1,c331ec60,...) at ifhwioctl+0x401
ifioctl(c331ec60,80206910,c33db220,c31bc880,4,...) at ifioctl+0x3a3
soo_ioctl(c31b6cf0,80206910,c33db220,c2d95800,c31bc880,...) at soo_ioctl+0x564
kern_ioctl(c31bc880,4,80206910,c33db220,1,...) at kern_ioctl+0x34d
ioctl(c31bc880,d6309cfc,c,c,d6309d2c,...) at ioctl+0x127
syscall(d6309d38) at syscall+0x32e
Xint0x80_syscall() at Xint0x80_syscall+0x20
--- syscall (54, FreeBSD ELF32, ioctl), eip = 0x2815e2bb, esp = 0xbfbfe5ec, ebp = 0xbfbfe628 ---
Uptime: 4m46s
Physical memory: 499 MB
Dumping 43 MB: 28 12
#0 doadump () at pcpu.h:195
195 pcpu.h: No such file or directory.
in pcpu.h
(kgdb) where
#0 doadump () at pcpu.h:195
#1 0xc074ff22 in boot (howto=260)
at /usr/home/src/sys/kern/kern_shutdown.c:409
#2 0xc075022e in panic (fmt=Variable "fmt" is not available.
) at /usr/home/src/sys/kern/kern_shutdown.c:563
#3 0xc0a17539 in trap_fatal (frame=0xd63099b0, eva=3272078428)
at /usr/home/src/sys/i386/i386/trap.c:872
#4 0xc0a17789 in trap_pfault (frame=0xd63099b0, usermode=0, eva=3272078428)
at /usr/home/src/sys/i386/i386/trap.c:785
#5 0xc0a18136 in trap (frame=0xd63099b0)
at /usr/home/src/sys/i386/i386/trap.c:463
#6 0xc09ff47b in calltrap () at /usr/home/src/sys/i386/i386/exception.s:139
#7 0xc09f98d0 in atomic_cmpset_int (dst=0x5b0cc483, exp=2304099165,
src=3968029669) at atomic.h:149
Previous frame inner to this frame (corrupt stack?)
(kgdb)
>How-To-Repeat:
Ejecting can cause this repeatedly.
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200710081740.l98He2PV018762>