Subject: kern/11852: fatal uvm_fault() in msdosfs_write()?
To: None <gnats-bugs@gnats.netbsd.org>
From: John Hawkinson <jhawk@mit.edu>
List: netbsd-bugs
Date: 12/30/2000 13:52:16
>Number: 11852
>Category: kern
>Synopsis: fatal uvm_fault() in msdosfs_write()?
>Confidential: no
>Severity: critical
>Priority: high
>Responsible: kern-bug-people
>State: open
>Class: sw-bug
>Submitter-Id: net
>Arrival-Date: Sat Dec 30 13:52:00 PST 2000
>Closed-Date:
>Last-Modified:
>Originator: John Hawkinson
>Release: -current of 27 Dec 2000
>Organization:
MIT
>Environment:
System: NetBSD zorkmid.mit.edu 1.5O NetBSD 1.5O (ZORKMID-$Revision: 1.5 $) #68: Wed Dec 27 01:18:34 EST 2000 jhawk@zorkmid.mit.edu:/usr/local/netbsd-current/src/sys/arch/i386/compile/ZORKMID i386
>Description:
Not really sure. I was typing in an ssh window and suddenly
the machine hung and shortly afterwards rebooted. No crash dump was
left, but the message buffer was intact, and I quote it below.
uvm_fualt() returned 2, which is KERN_PROTECTION_FAILURE.
>How-To-Repeat:
uvm_fault(0xc0572740, 0xc64fd000, 0, 3) -> 2
fatal page fault in supervisor mode
trap type 6 code 2 eip c0413863 cs 8 eflags 10206 cr2 c64fd000 cpl 0
panic: trap
Begin traceback...
trap() at trap+0x1e5
--- trap (number 6) ---
memset(c6df7108,0,0,1000,c083d200) at memset+0x33
extendfile(c6e37834,0,0,0,1) at extendfile+0x1ff
deextend(c6e37834,38,c087be80,9,c6e8f8bc) at deextend+0x85
msdosfs_write(c6e8f8bc,c6e8fa44,c6edd014,c6e8f93c,c6e8f930) at msdosfs_write+0x131
vn_rdwr(1,c6df7108,c6e8f930,c,38,0,1,9,c087be80,0,c6edd014) at vn_rdwr+0xb9
cpu_coredump(c6edd014,c6df7108,c087be80,c6e8fa44,c6e8fa50) at cpu_coredump+0x9f
coredump(c6edd014) at coredump+0x2bc
sigexit(c6edd014,a,c6edd014,8ac3000,4) at sigexit+0x2e
postsig(a) at postsig+0xab
trap() at trap+0x58e
--- trap (number 4) ---
0x82823dd:
End traceback...
syncing disks... 17 17 17 17 17 17 17 17 17 17 17 17 17 17 17 17 17 17 17 17 giving up
dumping to dev 0,1 offset 396196
dump panic: wddump: polled command has been queued
Begin traceback...
wddump(1,5115b8,c6e8f494,200,8081d) at wddump+0x1de
cpu_dump(100,c0457a3b,100,3,34) at cpu_dump+0x101
dumpsys(c6e8f700,c6e8f6f4,c01bc105,100,0) at dumpsys+0xed
cpu_reboot(100,0,c6e8f734,0,6) at cpu_reboot+0x63
panic(c0457a3b,0,1000,c64fd000,c2ac2000) at panic+0xcd
trap() at trap+0x1e5
--- trap (number 6) ---
memset(c6df7108,0,0,1000,c083d200) at memset+0x33
extendfile(c6e37834,0,0,0,1) at extendfile+0x1ff
deextend(c6e37834,38,c087be80,9,c6e8f8bc) at deextend+0x85
msdosfs_write(c6e8f8bc,c6e8fa44,c6edd014,c6e8f93c,c6e8f930) at msdosfs_write+0x131
vn_rdwr(1,c6df7108,c6e8f930,c,38,0,1,9,c087be80,0,c6edd014) at vn_rdwr+0xb9
cpu_coredump(c6edd014,c6df7108,c087be80,c6e8fa44,c6e8fa50) at cpu_coredump+0x9f
coredump(c6edd014) at coredump+0x2bc
sigexit(c6edd014,a,c6edd014,8ac3000,4) at sigexit+0x2e
postsig(a) at postsig+0xab
trap() at trap+0x58e
--- trap (number 4) ---
0x82823dd:
End traceback...
dumping to dev 0,1 offset 396196
dump device not ready
panic: wdc_exec_command: polled command not done
Begin traceback...
wdc_exec_command(c07d1cf8,c6e8f2d8) at wdc_exec_command+0xca
wd_flushcache(c07ca000,10,c6e8f314,c01b2c9d,c07ca000) at wd_flushcache+0x4d
wd_shutdown(c07ca000) at wd_shutdown+0xd
doshutdownhooks(c6e8f348,c6e8f33c,c01bc105,104,0) at doshutdownhooks+0x25
cpu_reboot(104,0,c0315ac8,c07ca000,1) at cpu_reboot+0x68
panic(c045d580,2,c6e8f4cc,c03158d4,1) at panic+0xcd
wddump(1,5115b8,c6e8f494,200,8081d) at wddump+0x1de
cpu_dump(100,c0457a3b,100,3,34) at cpu_dump+0x101
dumpsys(c6e8f700,c6e8f6f4,c01bc105,100,0) at dumpsys+0xed
cpu_reboot(100,0,c6e8f734,0,6) at cpu_reboot+0x63
panic(c0457a3b,0,1000,c64fd000,c2ac2000) at panic+0xcd
trap() at trap+0x1e5
--- trap (number 6) ---
memset(c6df7108,0,0,1000,c083d200) at memset+0x33
extendfile(c6e37834,0,0,0,1) at extendfile+0x1ff
deextend(c6e37834,38,c087be80,9,c6e8f8bc) at deextend+0x85
msdosfs_write(c6e8f8bc,c6e8fa44,c6edd014,c6e8f93c,c6e8f930) at msdosfs_write+0x131
vn_rdwr(1,c6df7108,c6e8f930,c,38,0,1,9,c087be80,0,c6edd014) at vn_rdwr+0xb9
cpu_coredump(c6edd014,c6df7108,c087be80,c6e8fa44,c6e8fa50) at cpu_coredump+0x9f
coredump(c6edd014) at coredump+0x2bc
sigexit(c6edd014,a,c6edd014,8ac3000,4) at sigexit+0x2e
postsig(a) at postsig+0xab
trap() at trap+0x58e
--- trap (number 4) ---
0x82823dd:
End traceback...
dumping to dev 0,1 offset 396196
dump device not ready
rebooting...
>Fix:
>Release-Note:
>Audit-Trail:
>Unformatted: