Date: Tue, 28 Oct 2003 16:46:04 -0600 From: Dan Nelson <dnelson@allantgroup.com> To: current@freebsd.org Subject: page fault in propagate_priority Message-ID: <20031028224604.GA2284@dan.emsphone.com>
next in thread | raw e-mail | index | archive | help
--45Z9DzgjV8m4Oswq Content-Type: text/plain; charset=us-ascii Content-Disposition: inline I've gotten the following panic twice in the last few days. I'm pretty sure truss has something to do with it, since I just started trussing something when it paniced. No crashdumps unfortunately, and the system locks up hard so I have to reset it. The fault address is 0x24 so it looks like a null pointer dereference of some sort. I've added asserts to propagate_priority any place a pointer to a structure is dereferenced, so if it happens again I should have the line number at least. panic1 was on an Oct 15 kernel, panic2 was on an Oct 27 kernel. -- Dan Nelson dnelson@allantgroup.com --45Z9DzgjV8m4Oswq Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename=panic1 Fatal trap 12: page fault while in kernel mode cpuid = 0; lapic.id = 03000000 fault virtual address = 0x24 fault code = supervisor read, page not present instruction pointer = 0x8:0xc056f9d6 stack pointer = 0x10:0xdc1dcc34 frame pointer = 0x10:0xdc1dcc48 code segment = base 0x0, limit 0xfffff, type 0x1b = DPL 0, pres 1, def32 1, gran 1 processor eflags = interrupt enabled, resume, IOPL = 0 current process = 13 (swi8: tty:sio clock) trap number = 12 panic: page fault cpuid = 0; lapic.id = 03000000 Stack backtrace: panic(c0728cc3,c0754b62,c29a58f4,1,1,c05913e7,c29a9380,42fabcd6,0,fffff,dc1dd09b,c0590000) at panic+0x1ec trap_fatal(dc1dcbf4,24,c047cf65,c3fe69c0,24) at trap_fatal+0x281 trap(dc1d0018,c0580010,c29a0010,24,0) at trap+0x4bc calltrap() at calltrap+0x5 --- trap 0xc, eip = 0xc056f9d6, esp = 0xdc1dcc34, ebp = 0xdc1dcc48 --- propagate_priority(c29a6ab0,90605411,0,dc1dcc74,c29a6ad0) at propagate_priority+0x66 _mtx_lock_sleep(c07bb9a0,0,0,0,c05b76a0) at _mtx_lock_sleep+0x197 softclock(0,0,0,0,c29a6ab0) at softclock+0x35d ithread_loop(c29a3d00,dc1dcd48,0,0,0) at ithread_loop+0x187 fork_exit(c05645f0,c29a3d00,dc1dcd48) at fork_exit+0x8c fork_trampoline() at fork_trampoline+0x8 --- trap 0x1, eip = 0, esp = 0xdc1dcd7c, ebp = 0 --- boot() called on cpu#0 syncing disks, buffers remaining... panic: absolutely cannot call smp_ipi_shootdown with interrupts already disabled cpuid = 0; lapic.id = 03000000 boot() called on cpu#0 Uptime: 6d7h17m43s Dumping 1023 MB Dump failed. Partition too small. pfs_vncache_unload(): 28 entries remaining Shutting down ACPI panic: absolutely cannot call smp_ipi_shootdown with interrupts already disabled cpuid = 0; lapic.id = 03000000 boot() called on cpu#0 Uptime: 6d7h17m43s --45Z9DzgjV8m4Oswq Content-Type: text/plain; charset=us-ascii Content-Disposition: attachment; filename=panic2 Fatal trap 12: page fault while in kernel mode cpuid = 0; lapic.id = 03000000 fault virtual address = 0x24 fault code = supervisor read, page not present instruction pointer = 0x8:0xc0575b16 stack pointer = 0x10:0xdc1dcc34 frame pointer = 0x10:0xdc1dcc48 code segment = base 0x0, limit 0xfffff, type 0x1b = DPL 0, pres 1, def32 1, gran 1 processor eflags = interrupt enabled, resume, IOPL = 0 current process = 13 (swi8: tty:sio clock) trap number = 12 panic: page fault cpuid = 0; lapic.id = 03000000 Stack backtrace: panic(c0730edd,c075d59e,c29a58f4,1,1,c0590206,c05a0000,c7433372,0,fffff,dc1dd09b,c05a0000) at panic+0x1ec trap_fatal(dc1dcbf4,24,dc1dcbc4,c059759b,24) at trap_fatal+0x281 trap(c29a0018,dc1d0010,c0580010,24,0) at trap+0x4bc calltrap() at calltrap+0x5 --- trap 0xc, eip = 0xc0575b16, esp = 0xdc1dcc34, ebp = 0xdc1dcc48 --- propagate_priority(c29a6ab0,c48af390,4,dc1dcc7c,c29a6ad0) at propagate_priority+0x66 _mtx_lock_sleep(c07c4520,0,0,0,c062d5b0) at _mtx_lock_sleep+0x197 softclock(0,0,0,0,c29a6ab0) at softclock+0x35d ithread_loop(c29a3d00,dc1dcd48,0,0,0) at ithread_loop+0x187 fork_exit(c056a370,c29a3d00,dc1dcd48) at fork_exit+0x8c fork_trampoline() at fork_trampoline+0x8 --- trap 0x1, eip = 0, esp = 0xdc1dcd7c, ebp = 0 --- boot() called on cpu#0 syncing disks, buffers remaining... panic: absolutely cannot call smp_ipi_shootdown with interrupts already disabled cpuid = 0; lapic.id = 03000000 boot() called on cpu#0 Uptime: 7h16m36s Dumping 1023 MB Dump failed. Partition too small. pfs_vncache_unload(): 27 entries remaining Shutting down ACPI panic: absolutely cannot call smp_ipi_shootdown with interrupts already disabled cpuid = 0; lapic.id = 03000000 boot() called on cpu#0 Uptime: 7h16m36s [-- 20 minutes passes --] spin lock sched lock held by 0xc29a6ab0 for > 5 seconds --45Z9DzgjV8m4Oswq--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20031028224604.GA2284>