current-users: Re: 4.99.36 instability on amd64

Subject: Re: 4.99.36 instability on amd64
To: None <current-users@netbsd.org>
From: Paul Goyette <paul@whooppee.com>
List: current-users
Date: 11/15/2007 19:33:31
On Thu, 15 Nov 2007, Paul Goyette wrote:

>> panic: kernel diagnostic assertion "amap == NULL || 
>> mutex_owned(&amap->amap_l)" failed: file "/usr/src/sys/uvm/uvm_fault.c", 
>> line 896
>> kernel: protection fault trap, code=0
>
> Stopped in pid 7904.1 (xterm) at netbsd:sme_events_worker + 0x111: andl 
> $-0x2, 0x9c(%r13)

The crash is 100% reproducible.  I simply 'ssh -x' from another machine, 
start an xterm, and log out.  Wham - crash!  :)

With some helpful clues from Quentin Gardner, I got a core dump file. 
It sure takes a long time to dump 4GB of memory!  Savecore takes quite 
some time to compress it, too, and it saves only about 10% (the .core.gz 
file ended up at 3.6GB).  Then I gotta uncompress it, too!  Maybe I 
should just turn off compression in the first place?  :)

Anyway, here's the backtrace (if anyone can give me the magic gdb 
incantation to get symbols etc, I'd be glad to post them).

GNU gdb 6.5
Copyright (C) 2006 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "x86_64--netbsd"...(no debugging symbols found)

(gdb) target kvm netbsd.4.core
#0  0xffffffff802e2ae5 in cpu_reboot ()
(gdb) bt
#0  0xffffffff802e2ae5 in cpu_reboot ()
#1  0xffffffff80269e1e in panic ()
#2  0xffffffff802e45be in trap ()
#3  0xffffffff80100e22 in calltrap ()
#4  0x000000ffffffff80 in ?? ()
#5  0xffffffff8024e25e in doshutdownhooks ()
#6  0xffffffff802e29e1 in cpu_reboot ()
#7  0xffffffff80269e1e in panic ()
#8  0xffffffff80262afd in lockdebug_abort ()
#9  0xffffffff802419f6 in mutex_vector_exit ()
#10 0xffffffff8024d387 in sleepq_remove ()
#11 0xffffffff8024d620 in sleepq_unsleep ()
#12 0xffffffff802511c2 in suspendsched ()
#13 0xffffffff802a0353 in vfs_shutdown ()
#14 0xffffffff802e2abf in cpu_reboot ()
#15 0xffffffff80269e1e in panic ()
#16 0xffffffff803712dd in __kernassert ()
#17 0xffffffff801ec181 in uvm_fault_internal ()
#18 0xffffffff802e4a9c in trap ()
#19 0xffffffff80100e22 in calltrap ()
(gdb)

----------------------------------------------------------------------
|   Paul Goyette   | PGP DSS Key fingerprint: |  E-mail addresses:   |
| Customer Service | FA29 0E3B 35AF E8AE 6651 |  paul@whooppee.com   |
| Network Engineer | 0786 F758 55DE 53BA 7731 | pgoyette@juniper.net |
----------------------------------------------------------------------