Date: Mon, 16 Sep 2019 08:40:38 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 240610] [iflib] [panic] with INVARIANTS: general protection fault when kldunloading (12.1-pre-QA) Message-ID: <bug-240610-227@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D240610 Bug ID: 240610 Summary: [iflib] [panic] with INVARIANTS: general protection fault when kldunloading (12.1-pre-QA) Product: Base System Version: 12.0-STABLE Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: kern Assignee: bugs@FreeBSD.org Reporter: bugzilla.freebsd@omnilan.de Hello, this panic happens when I kldunload if_igb(4) on 12.1-prerelease with debug kernel: Fatal trap 9: general protection fault while in kernel mode=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 cpuid =3D 1; apic id =3D 01=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 instruction pointer =3D 0x20:0xffffffff80613313 stack pointer =3D 0x28:0xfffffe00005e1710=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 frame pointer =3D 0x28:0xfffffe00005e1740=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 code segment =3D base 0x0, limit 0xfffff, type 0x1b =3D DPL 0, pres 1, long 1, def32 0, gran 1=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20 processor eflags =3D interrupt enabled, resume, IOPL =3D 0 current process =3D 1941 (kldunload) trap number =3D 9=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20 panic: general protection fault cpuid =3D 1 time =3D 1568622439=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 KDB: stack backtrace: db_trace_self_wrapper() at db_trace_self_wrapper+0x2b/frame 0xfffffe00005e1= 420=20=20 vpanic() at vpanic+0x19d/frame 0xfffffe00005e1470=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 panic() at panic+0x43/frame 0xfffffe00005e14d0 trap_fatal() at trap_fatal+0x39c/frame 0xfffffe00005e1530 trap() at trap+0x6c/frame 0xfffffe00005e1640=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20 calltrap() at calltrap+0x8/frame 0xfffffe00005e1640 --- trap 0x9, rip =3D 0xffffffff80613313, rsp =3D 0xfffffe00005e1710, rbp = =3D 0xfffffe00005e1740 ---=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 _eventhandler_deregister() at _eventhandler_deregister+0x133/frame 0xfffffe00005e1740=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20 iflib_deregister() at iflib_deregister+0x44/frame 0xfffffe00005e1760 iflib_device_deregister() at iflib_device_deregister+0x347/frame 0xfffffe00005e17b0=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20 device_detach() at device_detach+0x185/frame 0xfffffe00005e17f0=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20 devclass_driver_deleted() at devclass_driver_deleted+0x4f/frame 0xfffffe00005e1830=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20 devclass_delete_driver() at devclass_delete_driver+0x9d/frame 0xfffffe00005e1870=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20 driver_module_handler() at driver_module_handler+0x10f/frame 0xfffffe00005e= 18c0=20 module_unload() at module_unload+0x32/frame 0xfffffe00005e18e0=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20 linker_file_unload() at linker_file_unload+0x21b/frame 0xfffffe00005e1940= =20=20=20=20=20=20=20 kern_kldunload() at kern_kldunload+0x10d/frame 0xfffffe00005e1980=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20 amd64_syscall() at amd64_syscall+0x276/frame 0xfffffe00005e1ab0 fast_syscall_common() at fast_syscall_common+0x101/frame 0xfffffe00005e1ab0= =20=20=20=20=20 --- syscall (444, FreeBSD ELF64, sys_kldunloadf), rip =3D 0x8002db98a, rsp = =3D 0x7fffffffe198, rbp =3D 0x7fffffffe9f0 ---=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20 KDB: enter: panic #9 0xffffffff805cf4ca in vpanic (fmt=3D<value optimized out>, ap=3D<value optimized out>) at /usr/local/share/deploy-tools/RELENG_12/src/sys/kern/kern_shutdown.c= :866 #10 0xffffffff805cf273 in panic (fmt=3D<value optimized out>) at /usr/local/share/deploy-tools/RELENG_12/src/sys/kern/kern_shutdown.c:804 #11 0xffffffff8093a0bc in trap_fatal (frame=3D<value optimized out>, eva=3D= <value optimized out>) at /usr/local/share/deploy-tools/RELENG_12/src/sys/amd64/amd64/trap.c:9= 43 #12 0xffffffff809394bc in trap (frame=3D0xfffffe00005e1650) at RELENG_12/src/sys/amd64/include/counter.h:87 #13 0xffffffff80911c2c in calltrap () at /usr/local/share/deploy-tools/RELENG_12/src/sys/amd64/amd64/exception.S:289 #14 0xffffffff80613313 in _eventhandler_deregister (list=3D0xfffff8000295eb= 80, tag=3D0xfffff80002517600) at /usr/local/share/deploy-tools/RELENG_12/src/sys/kern/subr_eventhandler.c:198 #15 0xffffffff806fc524 in iflib_deregister (ctx=3D0xfffff800023e3800) at /usr/local/share/deploy-tools/RELENG_12/src/sys/net/iflib.c:5331 #16 0xffffffff806fd427 in iflib_device_deregister (ctx=3D<value optimized o= ut>) at /usr/local/share/deploy-tools/RELENG_12/src/sys/net/iflib.c:5069 #17 0xffffffff80605ac5 in device_detach (dev=3D0xfffff80002951300) at device_if.h:234 #18 0xffffffff8060502f in devclass_driver_deleted (busclass=3D0xfffff800023= eca80, dc=3D0xfffff80002884000, driver=3D0xffffffff81f58418) at /usr/local/share/deploy-tools/RELENG_12/src/sys/kern/subr_bus.c:1227 #19 0xffffffff80604f3d in devclass_delete_driver (busclass=3D0xfffff800023e= ca80, driver=3D0xffffffff81f58418) at /usr/local/share/deploy-tools/RELENG_12/src/sys/kern/subr_bus.c:1302 #20 0xffffffff8060addf in driver_module_handler (mod=3D0xfffff800024dd900, what=3D1, arg=3D0xffffffff81f583e8) at /usr/local/share/deploy-tools/RELENG_12/src/sys/kern/subr_bus.c:5172 #21 0xffffffff805b3ee2 in module_unload (mod=3D0xfffff800024dd900) at /usr/local/share/deploy-tools/RELENG_12/src/sys/kern/kern_module.c:2= 61 #22 0xffffffff805a65bb in linker_file_unload (file=3D0xfffff8000380b400, flags=3D-1) at /usr/local/share/deploy-tools/RELENG_12/src/sys/kern/kern_linker.c:6= 97 #23 0xffffffff805a790d in kern_kldunload (td=3D<value optimized out>, filei= d=3D13, flags=3D0) at /usr/local/share/deploy-tools/RELENG_12/src/sys/kern/kern_linker.c:1= 132 ---Type <return> to continue, or q <return> to quit--- #24 0xffffffff8093abe6 in amd64_syscall (td=3D0xfffff80003cc7000, traced=3D= 0) at RELENG_12/src/sys/amd64/amd64/../../kern/subr_syscall.c:135 #25 0xffffffff80912550 in fast_syscall_common () at /usr/local/share/deploy-tools/RELENG_12/src/sys/amd64/amd64/exception.S:581 #26 0x00000008002db98a in ?? () Previous frame inner to this frame (corrupt stack?) In one of my setups, I depend on unloading if_igb(4) at runtime, so I hope = this can be fixed without too much hassle. Like mentioned, at least in my case = this isn't cosemtics only. Thanks, -Harry --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-240610-227>