Date: Tue, 19 Aug 2003 22:36:32 +0800 (HKT) From: Patrick Dung <dkt@cm61-18-141-210.hkcable.com.hk> To: FreeBSD-gnats-submit@FreeBSD.org Cc: dkt@digitalme.com Subject: kern/55784: Kernel Panic [with trace] in using netgraph (one2many and fec) Message-ID: <200308191436.h7JEaW1n001529@cm61-18-141-210.hkcable.com.hk> Resent-Message-ID: <200308200944.h7K9imms091007@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 55784
>Category: kern
>Synopsis: Kernel Panic [with trace] in using netgraph (one2many and fec)
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Wed Aug 20 02:44:47 PDT 2003
>Closed-Date:
>Last-Modified:
>Originator: Patrick Dung
>Release: FreeBSD 4.8-STABLE i386
>Organization:
N/A
>Environment:
System: FreeBSD fw.sunglan.edu.hk 4.8-STABLE FreeBSD 4.8-STABLE #0: Tue Jun 3 09:48:33 HKT 2003 root@fw.sunglan.edu.hk:/us
r/src/sys/compile/fw-03062003.cvs i386
PIII 450, FreeBSD 4-STABLE, i386
>Description:
I am using FreeBSD 4-Stable with cvsup up to 3-June-2003 HKT. I am testing with the netgraph modules (one2many and fec
). While testing them, I have changed the ipaddress using ifconfig and load kernel module (one2many/fec) and use ngctl com
mand
repeatly. I know I should not run the command or load modules repeatly but somehow I get kernel panic.
Now I get a back trace with the core dump:
Script started on Tue Jun 3 10:37:30 2003
fw# gdb -k
GNU gdb 4.18 (FreeBSD)
Copyright 1998 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB. Type "show warranty" for details.
This GDB was configured as "i386-unknown-freebsd".
(kgdb) symbol-file kernel.debug
Reading symbols from kernel.debug...Deprecated bfd_read called at /usr/src/gnu/usr.bin/binutils/gdb/../../../../contrib/gd
b/gdb/dbxread.c line 2627 in elfstab_build_psymtabs
Deprecated bfd_read called at /usr/src/gnu/usr.bin/binutils/gdb/../../../../contrib/gdb/gdb/dbxread.c line 933 in fill_sym
buf done.
(kgdb) exec-file /var/crash/kernel.0
(kgdb) core-file /var/crash/vmcore.0
IdlePTD at phsyical address 0x003fe000
initial pcb at physical address 0x0034ee00
panicstr: page fault
panic messages:
---
Fatal trap 12: page fault while in kernel mode
fault virtual address = 0x4
fault code = supervisor read, page not present
instruction pointer = 0x8:0xc110b2da
stack pointer = 0x10:0xc031c158
frame pointer = 0x10:0xc031c160
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, def32 1, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
current process = Idle
interrupt mask =
trap number = 12
panic: page fault
syncing disks...
Fatal trap 12: page fault while in kernel mode
fault virtual address = 0x30
fault code = supervisor read, page not present
instruction pointer = 0x8:0xc025820c
stack pointer = 0x10:0xc031bf4c
frame pointer = 0x10:0xc031bf54
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, def32 1, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
current process = Idle
interrupt mask = bio
trap number = 12
panic: page fault
Uptime: 30m0s
dumping to dev #ad/0x50001, offset 764963
dump ata0: resetting devices .. done
126 [CTRL-C to abort] [CTRL-C to abort] 125 124 123 122 121 120 119 118 117 116 115 114 113 112 111 110 109 108 107 106 10
5 104 103 102 101 100 99 98 97 96 95 94 93 92 91 90 89 88 87 86 85 84 83 82 81 80 79 78 77 76 75 74 73 72 71 70 69 68 67 66 65 64 63 62 61 60 59 58 57 56 55 54 53 52 51 50 49 48 47 46 45 44 43 42 41 40 39 38 37 36 35 34 33 32 31 30 29 28 27 26 25 24 23 22 21 20 19 18 17 16 15 14 13 12 11 10 9 8 7 6 5 4 3 2 1 0
---
#0 dumpsys () at ../../kern/kern_shutdown.c:487
487 if (dumping++) {
(kgdb) where
#0 dumpsys () at ../../kern/kern_shutdown.c:487
#1 0xc01842b7 in boot (howto=260) at ../../kern/kern_shutdown.c:316
#2 0xc01846f5 in panic (fmt=0xc0312b0c "%s") at ../../kern/kern_shutdown.c:595
#3 0xc02bb47f in trap_fatal (frame=0xc031bf0c, eva=48) at ../../i386/i386/trap.c:974
#4 0xc02bb12d in trap_pfault (frame=0xc031bf0c, usermode=0, eva=48) at ../../i386/i386/trap.c:867
#5 0xc02bacd3 in trap (frame={tf_fs = -1072037872, tf_es = 6422544, tf_ds = -107053054442C tf_edi = 0,
tf_esi = -1056674816, tf_ebp = -1070481580, tf_isp = -1070481608, tf_ebx = -1070379396, tf_edx = 6867008,
tf_ecx = -885163584, tf_eax = 0, tf_trapno = 12, tf_err = 0, tf_eip = -1071283700, tf_cs = 8, tf_eflags = 66050,
tf_esp = -1056674816, tf_ss = -1056674816}) at ../../i386/i386/trap.c:466
#6 0xc025820c in acquire_lock (lk=0xc0334e7c) at ../../ufs/ffs/ffs_softdep.c:266
#7 0xc025c30c in softdep_update_inodeblock (ip=0xc1046c00, bp=0xc38126e4, waitfor=0) at ../../ufs/ffs/ffs_softdep.c:3813
#8 0xc0257301 in ffs_update (vp=0xcb3d79c0, waitfor=0) at ../../ufs/ffs/ffs_inode.c:106
#9 0xc0260ee9 in ffs_fsync (ap=0xc031c000) at ../../ufs/ffs/ffs_vnops.c:273
#10 0xc025f787 in ffs_sync (mp=0xc0fff400, waitfor=2, cred=0xc0b2a880, p=0xc036af60) at vnode_if.h:558
#11 0xc01b4b6b in sync (p=0xc036af60, uap=0x0) at ../../kern/vfs_syscalls.c:577
#12 0xc0184052 in boot (howto=256) at ../../kern/kern_shutdown.c:235
#13 0xc01846f5 in panic (fmt=0xc0312b0c "%s") at ../../kern/kern_shutdown.c:595
#14 0xc02bb47f in trap_fatal (frame=0xc031c118, eva=4) at ../../i386/i386/trap.c:974
#15 0xc02bb12d in trap_pfault (frame=0xc031c118, usermode=0, eva=4) at ../../i386/i386/trap.c:867
#16 0xc02bacd3 in trap (frame={tf_fs = -1061945328, tf_es = -1070530544, tf_ds = -1071382512, tf_edi = 0,
tf_esi = -1055967744, tf_ebp = -1070481056, tf_isp = -1070481084, tf_ebx = 0, tf_edx = -1061942016,
tf_ecx = -1055893248, tf_eax = 0, tf_trapno = 12, tf_err = 0, tf_eip = -1055870246, tf_cs = 8, tf_eflags = 66118,
tf_esp = -1056978784, tf_ss = -1055967744}) at ../../i386/i386/trap.cc6
#17 0xc110b2da in ?? ()
#18 0xc110b7a7 in ?? ()
#19 0xc02adaf9 in swi_net_next ()
(kgdb) up 16
#16 0xc02bacd3 in trap (frame={tf_fs = -1061945328, tf_es = -1070530544, tf_ds = -1071382512, tf_edi = 0,
tf_esi = -1055967744, tf_ebp = -1070481056, tf_isp = -1070481084, tf_ebx = 0, tf_edx = -1061942016,kkk
tf_esi = -1055967744, tf_ebp = -1070481056, tf_isp = -1070481084, tf_ebx = 0, tf_edx = -1061942016,
tf_ecx = -1055893248, tf_eax = 0, tf_trapno = 12, tf_err = 0, tf_eip = -1055870246, tf_cs = 8, tf_eflags = 66118,
tf_esp = -1056978784, tf_ss = -1055967744}) at ../../i386/i386/trap.cc6
#17 0xc110b2da in ?? ()
#18 0xc110b7a7 in ?? ()
#19 0xc02adaf9 in swi_net_next ()
(kgdb) up 16
#16 0xc02bacd3 in trap (frame={tf_fs = -1061945328, tf_es = -1070530544, tf_ds = -1071382512, tf_edi = 0,
tf_esi = -1055967744, tf_ebp = -1070481056, tf_isp = -1070481084, tf_ebx = 0, tf_edx = -1061942016,
tf_ecx = -1055893248, tf_eax = 0, tf_trapno = 12, tf_err = 0, tf_eip = -1055870246, tf_cs = 8, tf_eflags = 66118,
tf_esp = -1056978784, tf_ss = -1055967744}) at ../../i386/i386/trap.c:466
466 (void) trap_pfault(&frame, FALSE, eva);
(kgdb) quit
fw# exit
exit
>How-To-Repeat:
After ng_fec/ng_one2may is loaded, changed the ipaddress ifconfig and load kernel module (one2many/fec) and use ngctl comm
and repeatly.
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200308191436.h7JEaW1n001529>