From owner-freebsd-current@FreeBSD.ORG Wed Aug 3 17:10:15 2005 Return-Path: X-Original-To: current@freebsd.org Delivered-To: freebsd-current@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1E0FF16A41F for ; Wed, 3 Aug 2005 17:10:14 +0000 (GMT) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from transport.cksoft.de (transport.cksoft.de [62.111.66.27]) by mx1.FreeBSD.org (Postfix) with ESMTP id 22BB243D6B for ; Wed, 3 Aug 2005 17:10:09 +0000 (GMT) (envelope-from bzeeb-lists@lists.zabbadoz.net) Received: from transport.cksoft.de (localhost [127.0.0.1]) by transport.cksoft.de (Postfix) with ESMTP id D66E71FF931 for ; Wed, 3 Aug 2005 19:10:07 +0200 (CEST) Received: by transport.cksoft.de (Postfix, from userid 66) id 519931FF90C; Wed, 3 Aug 2005 19:10:05 +0200 (CEST) Received: by mail.int.zabbadoz.net (Postfix, from userid 1060) id 68B2C1538C; Wed, 3 Aug 2005 17:09:52 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.int.zabbadoz.net (Postfix) with ESMTP id 5C84D15380 for ; Wed, 3 Aug 2005 17:09:52 +0000 (UTC) Date: Wed, 3 Aug 2005 17:09:52 +0000 (UTC) From: "Bjoern A. Zeeb" X-X-Sender: bz@e0-0.zab2.int.zabbadoz.net To: FreeBSD current mailing list Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Virus-Scanned: by AMaViS cksoft-s20020300-20031204bz on transport.cksoft.de Cc: Subject: sis0: + top + panic in bus_dmamap_load X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 03 Aug 2005 17:10:15 -0000 Hi, while testing ipfw patches hammering an interface with invalid tcp over ipv6 packets I got following: sis0: discard frame w/o packet header sis0: discard frame w/o packet header sis0: discard frame w/o packet header sis0: discard frame w/o packet header sis0: discard frame w/o packet header sis0: discard frame w/o packet header and somewhen later I got a panic I haven't been able to reproduce after the reset. At the time the panic happend a newly started top did it's first refresh cycle. I hadn't started top before. Here's all I have: Fatal trap 12: page fault while in kernel mode fault virtual address = 0xbfcb5214 fault code = supervisor read, page not present instruction pointer = 0x20:0xc0652f68 stack pointer = 0x28:0xc98aec10 frame pointer = 0x28:0xc98aec60 code segment = base 0x0, limit 0xfffff, type 0x1b = DPL 0, pres 1, def32 1, gran 1 processor eflags = interrupt enabled, resume, IOPL = 0 current process = 20 (irq10: sis0 sis1+) [thread pid 20 tid 100013 ] Stopped at bus_dmamap_load+0x308: movl PTmap(,%eax,4),%edx db> where Tracing pid 20 tid 100013 td 0xc4ad7000 bus_dmamap_load(c4affc80,0,2d485353,800,c05fae90,c4b333a8,0,c4affc80,0,c4b333bc) at bus_dmamap_load+0x308 sis_newbuf(c4b30700,c4b333a8,0) at sis_newbuf+0x8a sis_rxeof(c4b30700) at sis_rxeof+0xbc sis_intr(c4b30700) at sis_intr+0xab ithread_loop(c4ac2800,c98aed38) at ithread_loop+0x149 fork_exit(c04d6fb0,c4ac2800,c98aed38) at fork_exit+0x6f fork_trampoline() at fork_trampoline+0x8 --- trap 0x1, eip = 0, esp = 0xc98aed6c, ebp = 0 --- (gdb) l *0xc0652f68 0xc0652f68 is in bus_dmamap_load (pmap.h:201). 196 197 if ((pa = PTD[va >> PDRSHIFT]) & PG_PS) { 198 pa = (pa & ~(NBPDR - 1)) | (va & (NBPDR - 1)); 199 } else { 200 pa = *vtopte(va); 201 pa = (pa & PG_FRAME) | (va & PAGE_MASK); 202 } 203 return pa; 204 } 205 (gdb) db> show registers cs 0xc98a0020 ds 0xc4ad0028 es 0x28 fs 0xc98a0008 ss 0x28 eax 0x2d485 ecx 0x2d485353 edx 0 ebx 0xc4df5300 esp 0xc98aec10 ebp 0xc98aec60 esi 0xc4b333a8 edi 0xc4b30700 eip 0xc0652f68 bus_dmamap_load+0x308 efl 0x10202 dr0 0 dr1 0 dr2 0 dr3 0 dr4 0xffff0ff0 dr5 0x400 dr6 0xffff0ff0 dr7 0x400 bus_dmamap_load+0x308: movl PTmap(,%eax,4),%edx db> show threads 100038 (0xc4b43a80) sched_switch(c4b43a80,0,1) at sched_switch+0x15b 100070 (0xc4e65780) sched_switch(c4e65780,0,1) at sched_switch+0x15b 100066 (0xc4e65d80) sched_switch(c4e65d80,0,1) at sched_switch+0x15b 100064 (0xc4bcd000) sched_switch(c4bcd000,0,2) at sched_switch+0x15b 100053 (0xc4bce180) sched_switch(c4bce180,0,1) at sched_switch+0x15b 100056 (0xc4bcdc00) sched_switch(c4bcdc00,0,1) at sched_switch+0x15b 100050 (0xc4bce600) sched_switch(c4bce600,0,1) at sched_switch+0x15b 100057 (0xc4bcda80) sched_switch(c4bcda80,0,1) at sched_switch+0x15b 100058 (0xc4bcd900) sched_switch(c4bcd900,0,1) at sched_switch+0x15b 100051 (0xc4bce480) sched_switch(c4bce480,0,1) at sched_switch+0x15b 100059 (0xc4bcd780) sched_switch(c4bcd780,0,1) at sched_switch+0x15b 100040 (0xc4b43780) sched_switch(c4b43780,0,1) at sched_switch+0x15b 100060 (0xc4bcd600) sched_switch(c4bcd600,0,1) at sched_switch+0x15b 100055 (0xc4bcdd80) sched_switch(c4bcdd80,0,1) at sched_switch+0x15b 100043 (0xc4b43300) sched_switch(c4b43300,0,1) at sched_switch+0x15b 100044 (0xc4b43180) sched_switch(c4b43180,0,1) at sched_switch+0x15b 100045 (0xc4b43000) sched_switch(c4b43000,0,1) at sched_switch+0x15b 100046 (0xc4af7d80) sched_switch(c4af7d80,0,1) at sched_switch+0x15b 100047 (0xc4af7c00) sched_switch(c4af7c00,0,1) at sched_switch+0x15b 100048 (0xc4af7a80) sched_switch(c4af7a80,0,1) at sched_switch+0x15b 100049 (0xc4af7900) sched_switch(c4af7900,0,1) at sched_switch+0x15b 100027 (0xc4af7180) sched_switch(c4af7180,0,1) at sched_switch+0x15b 100028 (0xc4af7000) sched_switch(c4af7000,0,1) at sched_switch+0x15b 100029 (0xc4ad7d80) sched_switch(c4ad7d80,0,1) at sched_switch+0x15b 100030 (0xc4ad7c00) sched_switch(c4ad7c00,0,1) at sched_switch+0x15b 100031 (0xc4ad7a80) sched_switch(c4ad7a80,0,1) at sched_switch+0x15b 100032 (0xc4ad7900) sched_switch(c4ad7900,0,1) at sched_switch+0x15b 100033 (0xc4ad7780) sched_switch(c4ad7780,0,1) at sched_switch+0x15b 100034 (0xc4ad7600) sched_switch(c4ad7600,0,1) at sched_switch+0x15b 100035 (0xc4ad7480) fork_trampoline() at fork_trampoline 100036 (0xc4b43d80) sched_switch(c4b43d80,0,1) at sched_switch+0x15b 100037 (0xc4b43c00) fork_trampoline() at fork_trampoline 100017 (0xc4ad1900) sched_switch(c4ad1900,0,1) at sched_switch+0x15b 100018 (0xc4ad1780) fork_trampoline() at fork_trampoline 100019 (0xc4ad1600) sched_switch(c4ad1600,0,1) at sched_switch+0x15b 100020 (0xc4ad1480) sched_switch(c4ad1480,0,1) at sched_switch+0x15b 100021 (0xc4ad1300) sched_switch(c4ad1300,0,1) at sched_switch+0x15b 100022 (0xc4ad1180) sched_switch(c4ad1180,0,1) at sched_switch+0x15b 100023 (0xc4af7780) sched_switch(c4af7780,0,1) at sched_switch+0x15b 100024 (0xc4af7600) sched_switch(c4af7600,0,1) at sched_switch+0x15b 100025 (0xc4af7480) fork_trampoline() at fork_trampoline 100026 (0xc4af7300) sched_switch(c4af7300,0,1) at sched_switch+0x15b 100008 (0xc4ad0300) fork_trampoline() at fork_trampoline 100009 (0xc4ad0180) sched_switch(c4ad0180,0,1) at sched_switch+0x15b 100010 (0xc4ad0000) fork_trampoline() at fork_trampoline 100011 (0xc4ad7300) fork_trampoline() at fork_trampoline 100012 (0xc4ad7180) fork_trampoline() at fork_trampoline 100013 (0xc4ad7000) bus_dmamap_load(c4affc80,0,2d485353,800,c05fae90,c4b333a8,0,c4affc80,0,c4b333bc) at bus_dmamap_load+0x308 100014 (0xc4ad1d80) fork_trampoline() at fork_trampoline 100015 (0xc4ad1c00) fork_trampoline() at fork_trampoline 100016 (0xc4ad1a80) fork_trampoline() at fork_trampoline 100000 (0xc4ad1000) fork_trampoline() at fork_trampoline 100001 (0xc4ad0d80) fork_trampoline() at fork_trampoline 100002 (0xc4ad0c00) fork_trampoline() at fork_trampoline 100003 (0xc4ad0a80) fork_trampoline() at fork_trampoline 100004 (0xc4ad0900) fork_trampoline() at fork_trampoline 100005 (0xc4ad0780) fork_trampoline() at fork_trampoline 100006 (0xc4ad0600) sched_switch(c4ad0600,0,1) at sched_switch+0x15b 100007 (0xc4ad0480) sched_switch(c4ad0480,0,1) at sched_switch+0x15b 0 (0xc06dfe20) sched_switch(c06dfe20,0,1) at sched_switch+0x15b -- Bjoern A. Zeeb bzeeb at Zabbadoz dot NeT