netbsd-bugs: kern/9326: uvm_fault in nfs at shutdown time

Subject: kern/9326: uvm_fault in nfs at shutdown time
To: None <gnats-bugs@gnats.netbsd.org>
From: Manuel Bouyer <bouyer@antioche.lip6.fr>
List: netbsd-bugs
Date: 02/01/2000 09:15:49
>Number:         9326
>Category:       kern
>Synopsis:       uvm_fault in nfs at shutdown time
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    kern-bug-people (Kernel Bug People)
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Tue Feb  1 09:15:00 2000
>Last-Modified:
>Originator:     
>Organization:

LIP6

>Release:        -current as of a few days ago
>Environment:

System: NetBSD armandeche 1.4Q NetBSD 1.4Q (ARMANDECHE) #0: Fri Jan 28 16:03:42 MET 2000 bouyer@armandeche:/home/cvs.netbsd.org/src/sys/arch/i386/compile/ARMANDECHE i386
mounting a solaris NFS server via amd for home directories.

>Description:
	
	I occasionally get a panic at shutdown time on my machine:
syncing disks... 21 20 4 done
uvm_fault(0xfb3b7a90, 0x0, 0, 1) -> 1
fatal page fault in supervisor mode
trap type 6 code 0 eip f01d414a cs 8 eflags 10292 cr2 144 cpl 0
panic: trap

	gdb says:
(gdb) where
#0  0xf027609b in vm_rfc1048 ()
#1  0x34c1000 in ?? ()
#2  0xf020b423 in cpu_reboot (howto=256, bootstr=0x0)
    at ../../../../arch/i386/i386/machdep.c:1088
#3  0xf014f124 in log (level=-265854821, fmt=0x0)
    at ../../../../kern/subr_prf.c:216
#4  0xf0210365 in trap (frame={tf_es = 16, tf_ds = 16, tf_edi = -80380328, 
      tf_esi = -79839856, tf_ebp = -79839948, tf_ebx = -263305152, 
      tf_edx = -263305152, tf_ecx = -79163948, tf_eax = 0, tf_trapno = 6, 
      tf_err = 0, tf_eip = -266518198, tf_cs = 8, tf_eflags = 66194, 
      tf_esp = -263305152, tf_ss = -79839856, tf_vm86_es = -80380328, 
      tf_vm86_ds = -79839988, tf_vm86_fs = -266965526, tf_vm86_gs = -79239140})
    at ../../../../arch/i386/i386/trap.c:309
#5  0xf0100cdd in calltrap ()
#6  0xf01d4131 in nfs_removeit (sp=0xf04e4840)
    at ../../../../nfs/nfs_vnops.c:1488
#7  0xf01a8a6b in nfs_inactive (v=0xfb3dbd90) at ../../../../nfs/nfs_node.c:214
#8  0xf0167693 in vclean (vp=0xfb361450, flags=8, p=0xfb3dc64c)
    at ../../../../sys/vnode_if.h:774
#9  0xf01677f7 in vgonel (vp=0xfb361450, p=0xfb3dc64c)
    at ../../../../kern/vfs_subr.c:1494
#10 0xf016753b in vflush (mp=0xf04be400, skipvp=0xfb352838, flags=2)
    at ../../../../kern/vfs_subr.c:1290
#11 0xf01cb779 in nfs_unmount (mp=0xf04be400, mntflags=524288, p=0xfb3dc64c)
    at ../../../../nfs/nfs_vfsops.c:767
#12 0xf016916f in dounmount (mp=0xf04be400, flags=524288, p=0xfb3dc64c)
    at ../../../../kern/vfs_syscalls.c:501
#13 0xf01684e3 in vfs_unmountall () at ../../../../kern/vfs_subr.c:2259
#14 0xf016869b in vfs_shutdown () at ../../../../kern/vfs_subr.c:2343
#15 0xf020b3fb in cpu_reboot (howto=0, bootstr=0x0)
    at ../../../../arch/i386/i386/machdep.c:1075
#16 0xf014b393 in sys_reboot (p=0xfb3dc64c, v=0xfb3dbf88, retval=0xfb3dbf80)
    at ../../../../kern/kern_xxx.c:76
#17 0xf0210951 in syscall (frame={tf_es = 31, tf_ds = 31, tf_edi = 134513638, 
      tf_esi = -272639959, tf_ebp = -272640212, tf_ebx = 2, tf_edx = 3, 
      tf_ecx = 3, tf_eax = 208, tf_trapno = 3, tf_err = 2, tf_eip = 134523783, 
      tf_cs = 23, tf_eflags = 582, tf_esp = -272640256, tf_ss = 31, 
      tf_vm86_es = 0, tf_vm86_ds = 0, tf_vm86_fs = 0, tf_vm86_gs = 0})
    at ../../../../arch/i386/i386/trap.c:760
#18 0xf0100d89 in syscall1 ()
can not access 0xefbfd72c, invalid translation (invalid PDE)
can not access 0xefbfd72c, invalid translation (invalid PDE)
Cannot access memory at address 0xefbfd72c.

	More info available on request.



>How-To-Repeat:
	
	On my system, a 'halt' or 'reboot' will trigger it.

>Fix:
	unknown
>Audit-Trail:
>Unformatted: