Date: Fri, 14 Feb 2003 09:09:01 -0600 From: Mark Nipper <nipsy@tamu.edu> To: stable@freebsd.org Subject: crash w/ 4.7-STABLE of Wed Feb 12 22:15:15 CST 2003 Message-ID: <20030214150901.GB61301@ops.tamu.edu>
next in thread | raw e-mail | index | archive | help
I had another crash, again, with a:
---
Fatal trap 12: page fault while in kernel mode
message. However, I think I may have gotten a more useful dump
than in the past.
Before spewing out all of the data, one thing to note is
a change I made just a couple of days ago when I built this
kernel and world. I increased NGROUPS_MAX in
/usr/include/sys/sys/syslimits.h to 32 from 16. Afterwards, I
rebuilt the entire world and kernel using the new value. But I
seriously doubt this had anything to do with the crash, as I've
been seeing these crashes sporadically over the past several
months.
Anyway, I'm including all the usual information, and the
gdb session as far as I know to take it. Please render any aid
you might... :)
---
root@ops/p3:/home/crash> gdb -k kernel.debug.2 vmcore.2
GNU gdb 4.18 (FreeBSD)
Copyright 1998 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain condition=
s.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB. Type "show warranty" for details.
This GDB was configured as "i386-unknown-freebsd"...Deprecated bfd_read cal=
led at /usr/src/gnu/usr.bin/binutils/gdb/../../../../contrib/gdb/gdb/dbxrea=
d.c line 2627 in elfstab_build_psymtabs
Deprecated bfd_read called at /usr/src/gnu/usr.bin/binutils/gdb/../../../..=
/contrib/gdb/gdb/dbxread.c line 933 in fill_symbuf
IdlePTD at phsyical address 0x00320000
initial pcb at physical address 0x002994e0
panicstr: lockmgr: draining against myself
panic messages:
---
Fatal trap 12: page fault while in kernel mode
fault virtual address =3D 0x20002d
fault code =3D supervisor read, page not present
instruction pointer =3D 0x8:0xc0214cb0
stack pointer =3D 0x10:0xe0d14cd8
frame pointer =3D 0x10:0xe0d14ce8
code segment =3D base 0x0, limit 0xfffff, type 0x1b
=3D DPL 0, pres 1, def32 1, gran 1
processor eflags =3D interrupt enabled, resume, IOPL =3D 0
current process =3D 5 (syncer)
interrupt mask =3D none
trap number =3D 12
panic: page fault
syncing disks... panic: lockmgr: draining against myself
Uptime: 1d6h6m1s
dumping to dev #ad/0x20009, offset 2350209
dump ata0: resetting devices .. done
768 767 766 765 764 763 762 761 760 759 758 757 756 755 754 753 752 751 750=
749 748 747 746 745 744 743 742 741 740 739 738 737 736 735 734 733 732 73=
1 730 729 728 727 726 725 724 723 722 721 720 719 718 717 716 715 714 713 7=
12 711 710 709 708 707 706 705 704 703 702 701 700 699 698 697 696 695 694 =
693 692 691 690 689 688 687 686 685 684 683 682 681 680 679 678 677 676 675=
674 673 672 671 670 669 668 667 666 665 664 663 662 661 660 659 658 657 65=
6 655 654 653 652 651 650 649 648 647 646 645 644 643 642 641 640 639 638 6=
37 636 635 634 633 632 631 630 629 628 627 626 625 624 623 622 621 620 619 =
618 617 616 615 614 613 612 611 610 609 608 607 606 605 604 603 602 601 600=
599 598 597 596 595 594 593 592 591 590 589 588 587 586 585 584 583 582 58=
1 580 579 578 577 576 575 574 573 572 571 570 569 568 567 566 565 564 563 5=
62 561 560 559 558 557 556 555 554 553 552 551 550 549 548 547 546 545 544 =
543 542 541 540 539 538 537 536 535 534 533 532 531 530 529 528 527 526 525=
524 523 522 521 520 519 518 517 516 515 514 513 512 511 510 509 508 507 50=
6 505 504 503 502 501 500 499 498 497 496 495 494 493 492 491 490 489 488 4=
87 486 485 484 483 482 481 480 479 478 477 476 475 474 473 472 471 470 469 =
468 467 466 465 464 463 462 461 460 459 458 457 456 455 454 453 452 451 450=
449 448 447 446 445 444 443 442 441 440 439 438 437 436 435 434 433 432 43=
1 430 429 428 427 426 425 424 423 422 421 420 419 418 417 416 415 414 413 4=
12 411 410 409 408 407 406 405 404 403 402 401 400 399 398 397 396 395 394 =
393 392 391 390 389 388 387 386 385 384 383 382 381 380 379 378 377 376 375=
374 373 372 371 370 369 368 367 366 365 364 363 362 361 360 359 358 357 35=
6 355 354 353 352 351 350 349 348 347 346 345 344 343 342 341 340 339 338 3=
37 336 335 334 333 332 331 330 329 328 327 326 325 324 323 322 321 320 319 =
318 317 316 315 314 313 312 311 310 309 308 307 306 305 304 303 302 301 300=
299 298 297 296 295 294 293 292 291 290 289 288 287 286 285 284 283 282 28=
1 280 279 278 277 276 275 274 273 272 271 270 269 268 267 266 265 264 263 2=
62 261 260 259 258 257 256 255 254 253 252 251 250 249 248 247 246 245 244 =
243 242 241 240 239 238 237 236 235 234 233 232 231 230 229 228 227 226 225=
224 223 222 221 220 219 218 217 216 215 214 213 212 211 210 209 208 207 20=
6 205 204 203 202 201 200 199 198 197 196 195 194 193 192 191 190 189 188 1=
87 186 185 184 183 182 181 180 179 178 177 176 175 174 173 172 171 170 169 =
168 167 166 165 164 163 162 161 160 159 158 157 156 155 154 153 152 151 150=
149 148 147 146 145 144 143 142 141 140 139 138 137 136 135 134 133 132 13=
1 130 129 128 127 126 125 124 123 122 121 120 119 118 117 116 115 114 113 1=
12 111 110 109 108 107 106 105 104 103 102 101 100 99 98 97 96 95 94 93 92 =
91 90 89 88 87 86 85 84 83 82 81 80 79 78 77 76 75 74 73 72 71 70 69 68 67 =
66 65 64 63 62 61 60 59 58 57 56 55 54 53 52 51 50 49 48 47 46 45 44 43 42 =
41 40 39 38 37 36 35 34 33 32 31 30 29 28 27 26 25 24 23 22 21 20 19 18 17 =
16 15 14 13 12 11 10 9 8 7 6 5 4 3 2 1=20
---
#0 dumpsys () at /usr/src/sys/kern/kern_shutdown.c:487
487 if (dumping++) {
(kgdb) where
#0 dumpsys () at /usr/src/sys/kern/kern_shutdown.c:487
#1 0xc015ec13 in boot (howto=3D260) at /usr/src/sys/kern/kern_shutdown.c:3=
16
#2 0xc015f038 in poweroff_wait (junk=3D0xc0258620, howto=3D-492675008) at =
/usr/src/sys/kern/kern_shutdown.c:595
#3 0xc015903a in lockmgr (lkp=3D0xc6e0d400, flags=3D65543, interlkp=3D0xe2=
a260ac, p=3D0xdd1bd780)
at /usr/src/sys/kern/kern_lock.c:413
#4 0xc0189f7c in vop_stdlock (ap=3D0xe0d14aa0) at /usr/src/sys/kern/vfs_de=
fault.c:256
#5 0xc020a2ed in ufs_vnoperate (ap=3D0xe0d14aa0) at /usr/src/sys/ufs/ufs/u=
fs_vnops.c:2376
#6 0xc018d31d in vclean (vp=3D0xe2a26040, flags=3D8, p=3D0xdd1bd780) at vn=
ode_if.h:861
#7 0xc018d543 in vgonel (vp=3D0xe2a26040, p=3D0xdd1bd780) at /usr/src/sys/=
kern/vfs_subr.c:2037
#8 0xc018d4f5 in vrecycle (vp=3D0xe2a26040, inter_lkp=3D0x0, p=3D0xdd1bd78=
0) at /usr/src/sys/kern/vfs_subr.c:1992
#9 0xc0204a67 in ufs_inactive (ap=3D0xe0d14b28) at /usr/src/sys/ufs/ufs/uf=
s_inode.c:105
#10 0xc020a2ed in ufs_vnoperate (ap=3D0xe0d14b28) at /usr/src/sys/ufs/ufs/u=
fs_vnops.c:2376
#11 0xc018d04c in vput (vp=3D0xe2a26040) at vnode_if.h:815
#12 0xc0206d95 in qsync (mp=3D0xc603e000) at /usr/src/sys/ufs/ufs/ufs_quota=
=2Ec:690
#13 0xc0202659 in ffs_sync (mp=3D0xc603e000, waitfor=3D2, cred=3D0xc16ead00=
, p=3D0xc02ad580) at /usr/src/sys/ufs/ffs/ffs_vfsops.c:1045
#14 0xc018ef2b in sync (p=3D0xc02ad580, uap=3D0x0) at /usr/src/sys/kern/vfs=
_syscalls.c:576
#15 0xc015e9d6 in boot (howto=3D256) at /usr/src/sys/kern/kern_shutdown.c:2=
35
#16 0xc015f038 in poweroff_wait (junk=3D0xc026f24c, howto=3D-1071190673) at=
/usr/src/sys/kern/kern_shutdown.c:595
#17 0xc023c1fe in trap_fatal (frame=3D0xe0d14c98, eva=3D2097197) at /usr/sr=
c/sys/i386/i386/trap.c:974
#18 0xc023bed1 in trap_pfault (frame=3D0xe0d14c98, usermode=3D0, eva=3D2097=
197) at /usr/src/sys/i386/i386/trap.c:867
#19 0xc023babb in trap (frame=3D{tf_fs =3D 16, tf_es =3D 16, tf_ds =3D 16, =
tf_edi =3D 2097185, tf_esi =3D 0, tf_ebp =3D -523154200,=20
tf_isp =3D -523154236, tf_ebx =3D 2097185, tf_edx =3D 0, tf_ecx =3D -=
494232288, tf_eax =3D -49, tf_trapno =3D 12, tf_err =3D 0,=20
tf_eip =3D -1071559504, tf_cs =3D 8, tf_eflags =3D 66054, tf_esp =3D =
-958344192, tf_ss =3D -492675008})
at /usr/src/sys/i386/i386/trap.c:466
#20 0xc0214cb0 in vm_object_page_remove (object=3D0xe28a9d20, start=3D0, en=
d=3D0, clean_only=3D0) at /usr/src/sys/vm/vm_object.c:1562
#21 0xc018c2c9 in vinvalbuf (vp=3D0xe2a26040, flags=3D0, cred=3D0x0, p=3D0x=
dd1bd780, slpflag=3D0, slptimeo=3D0)
at /usr/src/sys/kern/vfs_subr.c:878
#22 0xc01fa457 in ffs_truncate (vp=3D0xe2a26040, length=3D0, flags=3D0, cre=
d=3D0x0, p=3D0xdd1bd780)
at /usr/src/sys/ufs/ffs/ffs_inode.c:199
#23 0xc02049d4 in ufs_inactive (ap=3D0xe0d14ed8) at /usr/src/sys/ufs/ufs/uf=
s_inode.c:89
#24 0xc020a2ed in ufs_vnoperate (ap=3D0xe0d14ed8) at /usr/src/sys/ufs/ufs/u=
fs_vnops.c:2376
#25 0xc018d04c in vput (vp=3D0xe2a26040) at vnode_if.h:815
#26 0xc01fe034 in handle_workitem_remove (dirrem=3D0xc75c88a0) at /usr/src/=
sys/ufs/ffs/ffs_softdep.c:2852
#27 0xc01fb6a1 in process_worklist_item (matchmnt=3D0x0, flags=3D0) at /usr=
/src/sys/ufs/ffs/ffs_softdep.c:716
#28 0xc01fb546 in softdep_process_worklist (matchmnt=3D0x0) at /usr/src/sys=
/ufs/ffs/ffs_softdep.c:622
#29 0xc018c973 in sched_sync () at /usr/src/sys/kern/vfs_subr.c:1177
(kgdb) up 19
#19 0xc023babb in trap (frame=3D{tf_fs =3D 16, tf_es =3D 16, tf_ds =3D 16, =
tf_edi =3D 2097185, tf_esi =3D 0, tf_ebp =3D -523154200,=20
tf_isp =3D -523154236, tf_ebx =3D 2097185, tf_edx =3D 0, tf_ecx =3D -=
494232288, tf_eax =3D -49, tf_trapno =3D 12, tf_err =3D 0,=20
tf_eip =3D -1071559504, tf_cs =3D 8, tf_eflags =3D 66054, tf_esp =3D =
-958344192, tf_ss =3D -492675008})
at /usr/src/sys/i386/i386/trap.c:466
466 (void) trap_pfault(&frame, FALSE, eva);
(kgdb) frame frame->tf_ebp frame->tf_eip
#0 vm_object_page_remove (object=3D0xe28a9d20, start=3D0, end=3D0, clean_o=
nly=3D0) at /usr/src/sys/vm/vm_object.c:1563
1563 next =3D TAILQ_NEXT(p, listq);
(kgdb) list
1558 vm_object_pip_add(object, 1);
1559 again:
1560 size =3D end - start;
1561 if (all || size > object->resident_page_count / 4) {
1562 for (p =3D TAILQ_FIRST(&object->memq); p !=3D NULL;=
p =3D next) {
1563 next =3D TAILQ_NEXT(p, listq);
1564 if (all || ((start <=3D p->pindex) && (p->p=
index < end))) {
1565 if (p->wire_count !=3D 0) {
1566 vm_page_protect(p, VM_PROT_=
NONE);
1567 if (!clean_only)
(kgdb) print p
$1 =3D 0x0
(kgdb) print listq
No symbol "listq" in current context.
(kgdb) print object
$2 =3D 0xe28a9d20
(kgdb) print object->memq
$3 =3D {tqh_first =3D 0xc09b23ec, tqh_last =3D 0xc0a4aac0}
(kgdb) print size
$4 =3D 3222849516
(kgdb) print all
$5 =3D 1
---
And that's about all I know to do with that! This is
where I could use some help.
And here's dmesg:
---
Copyright (c) 1992-2003 The FreeBSD Project.
Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
The Regents of the University of California. All rights reserved.
FreeBSD 4.7-STABLE #0: Wed Feb 12 22:15:15 CST 2003
root@ops.tamu.edu:/usr/obj/usr/src/sys/OPS
Timecounter "i8254" frequency 1193182 Hz
Timecounter "TSC" frequency 1611826781 Hz
CPU: AMD Athlon(tm) XP 1900+ (1611.83-MHz 686-class CPU)
Origin =3D "AuthenticAMD" Id =3D 0x662 Stepping =3D 2
Features=3D0x383f9ff<FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,SEP,MTRR,PGE,MCA,=
CMOV,PAT,PSE36,MMX,FXSR,SSE>
AMD Features=3D0xc0480000<MP,AMIE,DSP,3DNow!>
real memory =3D 805306368 (786432K bytes)
config> q
avail memory =3D 779886592 (761608K bytes)
Preloaded elf kernel "kernel" at 0xc0301000.
Preloaded userconfig_script "/boot/kernel.conf" at 0xc030109c.
Pentium Pro MTRR support enabled
Using $PIR table, 6 entries at 0xc00fdf10
npx0: <math processor> on motherboard
npx0: INT 16 interface
pcib0: <Host to PCI bridge> on motherboard
pci0: <PCI bus> on pcib0
pcib1: <PCI to PCI bridge (vendor=3D1106 device=3Db099)> at device 1.0 on p=
ci0
pci1: <PCI bus> on pcib1
pci1: <ATI model 5446 graphics accelerator> at 0.0 irq 15
pcib2: <PCI to PCI bridge (vendor=3D1044 device=3Da500)> at device 10.0 on =
pci0
pci2: <PCI bus> on pcib2
asr0: <Adaptec Caching SCSI RAID> mem 0xe8000000-0xe9ffffff irq 10 at devic=
e 10.1 on pci0
asr0: major=3D154
asr0: ADAPTEC 2400A FW Rev. 370L, 4 channel, 256 CCBs, Protocol I2O
fxp0: <Intel Pro 10/100B/100+ Ethernet> port 0xe000-0xe03f mem 0xed000000-0=
xed01ffff,0xed020000-0xed020fff irq 11 at device 11.
0 on pci0
fxp0: Ethernet address 00:02:b3:95:82:85
inphy0: <i82555 10/100 media interface> on miibus0
inphy0: 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto
isab0: <PCI to ISA bridge (vendor=3D1106 device=3D3147)> at device 17.0 on =
pci0
isa0: <ISA bus> on isab0
atapci0: <VIA 8233 ATA133 controller> port 0xe400-0xe40f at device 17.1 on =
pci0
ata0: at 0x1f0 irq 14 on atapci0
ata1: at 0x170 irq 15 on atapci0
orm0: <Option ROMs> at iomem 0xc0000-0xc7fff,0xc8000-0xcdfff,0xce000-0xcf7f=
f on isa0
fdc0: <NEC 72065B or clone> at port 0x3f0-0x3f5,0x3f7 irq 6 drq 2 on isa0
fdc0: FIFO enabled, 8 bytes threshold
fd0: <1440-KB 3.5" drive> on fdc0 drive 0
atkbdc0: <Keyboard controller (i8042)> at port 0x60,0x64 on isa0
atkbd0: <AT Keyboard> flags 0x1 irq 1 on atkbdc0
kbd0 at atkbd0
psm0: <PS/2 Mouse> irq 12 on atkbdc0
psm0: model IntelliMouse, device ID 3
vga0: <Generic ISA VGA> at port 0x3c0-0x3df iomem 0xa0000-0xbffff on isa0
sc0: <System console> at flags 0x100 on isa0
sc0: VGA <16 virtual consoles, flags=3D0x300>
ad1: 1916MB <Maxtor 72004 AP> [3893/16/63] at ata0-slave WDMA2
acd0: CD-RW <PLEXTOR CD-R PX-W4012A> at ata0-master PIO4
Mounting root from ufs:/dev/da0s1a
da0 at asr0 bus 0 target 0 lun 0
da0: <ADAPTEC RAID-5 370L> Fixed Direct Access SCSI-2 device=20
da0: Tagged Queueing Enabled
da0: 343419MB (703322112 512 byte sectors: 255H 63S/T 43779C)
WARNING: / was not properly dismounted
--=20
Mark Nipper e-contacts:
Computing and Information Services nipsy@tamu.edu
Texas A&M University http://ops.tamu.edu/nipsy/
College Station, TX 77843-3142 AIM/Yahoo: texasnipsy ICQ: 66971617
(979)575-3193 MSN: nipsy@tamu.edu
-----BEGIN GEEK CODE BLOCK-----
GG/IT d- s++:+ a-- C++$ UBL+++$ P--->+++ L+++$ E---
W++ N+ o K++ w(---) O++ M V(--) PS+++(+) PE(--) Y+
PGP++(+) t 5 X R tv b+++ DI+(++) D+ G e h r++ y+(**)
------END GEEK CODE BLOCK------
---begin random quote of the moment---
Do daemons dream of electric sleep()?
----end random quote of the moment----
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030214150901.GB61301>