Date: Tue, 18 Jun 2024 13:40:15 +0000 From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 279653] Page fault in in6_selecthlim Message-ID: <bug-279653-7501-vqegz3mK7o@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-279653-7501@https.bugs.freebsd.org/bugzilla/> References: <bug-279653-7501@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D279653 --- Comment #9 from Daniel Ponte <amigan@gmail.com> --- kgdb output: (kgdb) print ((struct ifnet *)0xfffff8004c742000)->if_afdata[28] $1 =3D (void *) 0x0 (kgdb) print *(struct ifnet *)0xfffff8004c742000 $2 =3D {if_link =3D {cstqe_next =3D 0x0}, if_clones =3D {le_next =3D 0x0, l= e_prev =3D 0xfffff8004c897828}, if_groups =3D {cstqh_first =3D 0x0, cstqh_last =3D 0xfffff8004c742018}, if_alloctype =3D 6 '\006', if_numa_domain =3D 255 '\377', if_softc =3D 0x0, if_llsoftc =3D 0x0, if_l= 2com =3D 0x0, if_dname =3D 0xffffffff834e2000 <epairname> "epair", if_dunit =3D 0, i= f_index =3D 23, if_idxgen =3D 0, if_xname =3D "epair0b\000\000\000\000\000\000\000\000", if_description = =3D 0x0, if_flags =3D 2131970, if_drv_flags =3D 0, if_capabilities =3D 8, if_capabil= ities2 =3D 0, if_capenable =3D 8, if_capenable2 =3D 0, if_linkmib =3D 0x0, if_linkmiblen =3D 0, if_refcount =3D 4, if_type =3D 6= '\006', if_addrlen =3D 6 '\006', if_hdrlen =3D 14 '\016', if_link_state =3D 1 '\001= ', if_mtu =3D 1500, if_metric =3D 0, if_baudrate =3D 10000000000, if_hwassist =3D 0, if_epoch =3D 77, if_lastchange =3D {tv_sec =3D 1718033= 759, tv_usec =3D 498647}, if_snd =3D {ifq_head =3D 0x0, ifq_tail =3D 0x0, ifq_len =3D 0,= ifq_maxlen =3D 50, ifq_mtx =3D {lock_object =3D { lo_name =3D 0xfffff8004c742058 "epair0b", lo_flags =3D 16973824, lo= _data =3D 0, lo_witness =3D 0x0}, mtx_lock =3D 0}, ifq_drv_head =3D 0x0, ifq_drv_tail= =3D 0x0, ifq_drv_len =3D 0, ifq_drv_maxlen =3D 50, altq_type =3D 0, altq_flags =3D 1, altq_disc =3D 0x0, altq_ifp =3D 0xfffff8004c742000, altq_enqueue =3D 0x0, altq_dequeue =3D 0x0, altq_request =3D 0x0, altq_tbr = =3D 0x0, altq_cdnr =3D 0x0}, if_linktask =3D {ta_link =3D {stqe_next =3D 0x0}, ta_pending =3D 0, ta_priority =3D 0 '\000', ta_flags =3D 0 '\000', ta_f= unc =3D 0xffffffff8099ab60 <do_link_state_change>, ta_context =3D 0xfffff8004c74200= 0}, if_addmultitask =3D {ta_link =3D {stqe_next =3D 0x0}, ta_pending =3D 0, ta_priority =3D 0 '\000', ta_flags =3D 0 '\000', ta_f= unc =3D 0xffffffff8099add0 <if_siocaddmulti>, ta_context =3D 0xfffff8004c742000}, if_addr_lock =3D {lock_object =3D { lo_name =3D 0xffffffff80e985c6 "if_addr_lock", lo_flags =3D 16973824,= lo_data =3D 0, lo_witness =3D 0x0}, mtx_lock =3D 0}, if_addrhead =3D {cstqh_first = =3D 0x0, cstqh_last =3D 0xfffff8004c7421c0}, if_multiaddrs =3D { cstqh_first =3D 0x0, cstqh_last =3D 0xfffff8004c7421d0}, if_amcount =3D= 0, if_addr =3D 0xfffff8004c921000, if_hw_addr =3D 0xfffff80007d7e7d0, if_broadcastaddr =3D 0xffffffff80fa0530 <etherbroadcastaddr> "\377\377\377\377\377\377", if_afdata_lock =3D {lock_object =3D {lo_name =3D 0xffffffff80eea36d "if_afdata", lo_flags =3D 16973824, lo_data =3D 0, lo_witness =3D 0x0}, mtx_lock =3D 0}, if_afdata =3D {0x0 <repeats 44 = times>}, if_afdata_initialized =3D 0, if_fib =3D 0, if_vnet =3D 0xfffff80016c43580, if_home_vnet =3D 0xfffff800010af9c0, if_vlantrunk =3D 0x0, if_bpf =3D 0xffffffff80f9f0b0 <dead_bpf_if>, if_pcount =3D 0, if_bridge = =3D 0x0, if_lagg =3D 0x0, if_pf_kif =3D 0x0, if_carp =3D 0x0, if_label =3D 0x0, if_n= etmap =3D 0x0, if_output =3D 0xffffffff809a3760 <ifdead_output>, if_input =3D 0xffffffff809a3780 <ifdead_input>, if_bridge_input =3D 0x0, if_bridge_output =3D 0x0, if_bridge_linkstate =3D 0x0, if_start =3D 0xffffffff809a3790 <ifdead_start>, if_ioctl =3D 0xffffffff809a37a0 <ifdead_ioctl>, if_init =3D 0xffffffff834= e1020 <epair_init>, if_resolvemulti =3D 0xffffffff809a37b0 <ifdead_resolvemulti>, if_qflush =3D 0xffffffff809a37d0 <ifdead_qflush>, if_transmit =3D 0xffffffff809a37e0 <ifdead_transmit>, if_reassign =3D 0xffffffff809a5070 <ether_reassign>, if_get_counter =3D 0xffffffff809a3800 <ifdead_get_counter>, if_requestencap =3D 0xffffffff809a4fa0 <ether_requestencap>, if_counters = =3D {0xfffffe012c2c88b8, 0xfffffe012c2c88b0, 0xfffffe012c2c8878, 0xfffffe012c2c8870, 0xfffffe012c2c8868, 0xfffffe012c2c8860, 0xfffffe012c2c8858, 0xfffffe012c2c8850, 0xfffffe012c2c8848, 0xfffffe012c2c8840, 0xfffffe012c2c8838, 0xfffffe012c2c8830}, if_hw_tsomax = =3D 65518, if_hw_tsomaxsegcount =3D 35, if_hw_tsomaxsegsize =3D 2048, if_snd_tag_alloc =3D 0xffffffff809a3810 <ifdead_snd_tag_alloc>, if_ratelimit_query =3D 0xffffffff809a3820 <ifdead_ratelimit_query>, if_ratelimit_setup =3D 0x0, if_pcp =3D 255 '\377', if_debugnet_methods =3D = 0x0, if_epoch_ctx =3D {data =3D {0x0, 0x0}}, if_ispare =3D {0, 0, 0, 0}} As far as testing the patch, I can build with it, but this probably won't be reproducible anyway. I'm not totally certain what was happening when it crashed. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-279653-7501-vqegz3mK7o>