My Oracle Support Banner

st Driver - BAD TRAP: type=31 rp=2a22061d4f0 addr=0 mmu_fsr=0 occurred in module "st" due to a NULL pointer dereference (Doc ID 2082806.1)

Last updated on MAY 11, 2022

Applies to:

Solaris Operating System - Version 11.2 and later
Information in this document applies to any platform.


System panics in the st driver due to a NULL Pointer Dereference, with the following panic string:

Panic string: BAD TRAP: type=31 rp=2a22061d4f0 addr=0 mmu_fsr=0 occurred in module "st" due to a NULL pointer dereference
==== panic user (LWP_SYS) thread: 0xc4301e54f820 PID: 6009 on CPU: 277 ====
cmd: bma -load 1.000000 -lport 59520
void unix:panicsys+0x40((const char *)0x10101798, (va_list)0x2a22061d2b8, (struct regs *)0x2050b150, (int)1, 0x9900001601, , , , , , , , 0x10101798, 0x2a22061d2b8)
unix:vpanic_common+0x78(0x10101798, 0x2a22061d2b8, 0x6858a30, 0x6858b6f, 0x2a22061d590, 0x9980001604)
void unix:panic+0x1c((const char *)0x10101798, (void *)0x31, 0x2a22061d4f0, 0, 0, 0xc431a1f0ec38, 0x101017e8, ...)
int unix:die+0x7c((unsigned)0x31, (struct regs *)0x2a22061d4f0, (caddr_t)0, (uint_t)0)
void unix:trap+0xabc((struct regs *)0x2a22061d4f0, (caddr_t)0, (uint32_t), (uint32_t))
-- trap data type: 0x31 (data access MMU miss) rp: 0x2a22061d4f0 --
addr: 0x0
pc: 0x10865204 st:st_do_kstats+0x3c: ldub [%l1], %l0
npc: 0x10865208 st:st_do_kstats+0x40: call st:st_lookup_cmd_attribute
global: %g1 8
%g2 0 %g3 0x2200121
%g4 0x2200121 %g5 0x2200121
%g6 0 %g7 0xc4301e54f820
out: %o0 0xc4342f0da500 %o1 0x100
%o2 0x202fc800 %o3 0
%o4 0x3027432a750 %o5 0
%sp 0x2a22061cd91 %o7 0xc430ff7a5680
loc: %l0 0x291f329f %l1 0
%l2 0x8f994f80 %l3 0
%l4 0 %l5 0x523e6500000
%l6 0 %l7 1
in: %i0 0xc431cb5b72c0 %i1 0xc43126cd2ea8
%i2 0xa %i3 0x10034890
%i4 0xa %i5 0xc431cb5b72c0
%fp 0x2a22061ce41 %i7 0x108537b0
<trap>void st:st_do_kstats+0x3c((struct scsi_tape *)0xc431cb5b72c0, (buf_t *)0xc43126cd2ea8, (uint8_t)0xa, (int (*)())0x10034890)
int st:st_queued_strategy+0x494((buf_t *)0xc43126cd2ea8)
int genunix:default_physio_old+0x2fc((int (*)()), (struct buf *)0xc43126cd2ea8?, (dev_t)0xf0000000dc, (int)0x100, (int (*)()), (struct uio *)0x2a22061da88)
genunix:physio((int (*)())0x1085331c, (struct buf *)0, (dev_t)0xf0000000dc,
(int)0x100, (int (*)())0x10852590, (struct uio *)0x2a22061da88) - frame recycled
int st:st_rw+0x5f8((dev_t)0xc43f0ced0740, (struct uio *)0x2a22061da88, (int)0)
int genunix:fop_write+0x84((vnode_t *)0xc43f0ced0740, (uio_t *)0x2a22061da88,
(int)0, (cred_t *)0xc430a8a2a680, (caller_context_t *)0)
ssize_t genunix:write+0x298((int), (void *), (size_t))



To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.