Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 21 Mar 2019 10:52:29 +0000
From:      bugzilla-noreply@freebsd.org
To:        net@FreeBSD.org
Subject:   [Bug 233955] [panic] Page fault in in6_purgeaddr (triggered by net/wireguard)
Message-ID:  <bug-233955-7501-pjY5qMB7n9@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-233955-7501@https.bugs.freebsd.org/bugzilla/>
References:  <bug-233955-7501@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help 
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D233955

Bernhard Froehlich <decke@FreeBSD.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Severity|Affects Only Me             |Affects Some People
           Keywords|                            |panic
            Summary|net/wireguard Occassional   |[panic] Page fault in
                   |hard reboot of FreeBSD      |in6_purgeaddr (triggered by
                   |11.2-RELEASE-p6 when used   |net/wireguard)
                   |together with setfib(1)     |

--- Comment #11 from Bernhard Froehlich <decke@FreeBSD.org> ---
This stacktrace is from
https://gist.github.com/genneko/755f6160ba2594c5945b8fc18940ea71
and I copied it here in case it vanishes on github.


dumped core - see /var/crash/vmcore.0

Tue Jan 29 11:09:03 UTC 2019

FreeBSD  12.0-RELEASE-p2 FreeBSD 12.0-RELEASE-p2 GENERIC  amd64

panic: page fault

GNU gdb 6.1.1 [FreeBSD]
Copyright 2004 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain condition=
s.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "amd64-marcel-freebsd"...

Unread portion of the kernel message buffer:
<6>in_scrubprefix: err=3D65, prefix delete failed
<6>wg0: deletion failed: 3


Fatal trap 12: page fault while in kernel mode
cpuid =3D 1; apic id =3D 01
fault virtual address   =3D 0x0
fault code              =3D supervisor read data, page not present
instruction pointer     =3D 0x20:0xffffffff80cc3fe3
stack pointer           =3D 0x28:0xfffffe001de86300
frame pointer           =3D 0x28:0xfffffe001de86450
code segment            =3D base 0x0, limit 0xfffff, type 0x1b
                        =3D DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags        =3D interrupt enabled, resume, IOPL =3D 0
current process         =3D 3813 (wireguard-go)
trap number             =3D 12
panic: page fault
cpuid =3D 1
time =3D 1548760075
KDB: stack backtrace:
#0 0xffffffff80be7977 at kdb_backtrace+0x67
#1 0xffffffff80b9b563 at vpanic+0x1a3
#2 0xffffffff80b9b3b3 at panic+0x43
#3 0xffffffff8107496f at trap_fatal+0x35f
#4 0xffffffff810749c9 at trap_pfault+0x49
#5 0xffffffff81073fee at trap+0x29e
#6 0xffffffff8104f315 at calltrap+0x8
#7 0xffffffff80de0f73 at in6_purgeaddr+0x463
#8 0xffffffff80c9662f at if_purgeaddrs+0x21f
#9 0xffffffff80ca79c1 at tunclose+0x1f1
#10 0xffffffff80a518ca at devfs_close+0x3ba
#11 0xffffffff811f89b8 at VOP_CLOSE_APV+0x78
#12 0xffffffff80c7b6bf at vn_close1+0xdf
#13 0xffffffff80c7a3c0 at vn_closefile+0x50
#14 0xffffffff80a5224c at devfs_close_f+0x2c
#15 0xffffffff80b4363a at _fdrop+0x1a
#16 0xffffffff80b466e4 at closef+0x244
#17 0xffffffff80b43b69 at closefp+0x99
Uptime: 5m14s
Dumping 190 out of 2005 MB:..9%..17%..26%..34%..43%..51%..68%..76%..85%..93%

Reading symbols from /boot/kernel/zfs.ko...Reading symbols from
/usr/lib/debug//boot/kernel/zfs.ko.debug...done.
done.
Loaded symbols for /boot/kernel/zfs.ko
Reading symbols from /boot/kernel/opensolaris.ko...Reading symbols from
/usr/lib/debug//boot/kernel/opensolaris.ko.debug...done.
done.
Loaded symbols for /boot/kernel/opensolaris.ko
Reading symbols from /boot/modules/vboxguest.ko...done.
Loaded symbols for /boot/modules/vboxguest.ko
Reading symbols from /boot/kernel/intpm.ko...Reading symbols from
/usr/lib/debug//boot/kernel/intpm.ko.debug...done.
done.
Loaded symbols for /boot/kernel/intpm.ko
Reading symbols from /boot/kernel/smbus.ko...Reading symbols from
/usr/lib/debug//boot/kernel/smbus.ko.debug...done.
done.
Loaded symbols for /boot/kernel/smbus.ko
#0  doadump (textdump=3D<value optimized out>) at pcpu.h:230
230     pcpu.h: No such file or directory.
        in pcpu.h
(kgdb) #0  doadump (textdump=3D<value optimized out>) at pcpu.h:230
#1  0xffffffff80b9b14b in kern_reboot (howto=3D260)
    at /usr/src/sys/kern/kern_shutdown.c:446
#2  0xffffffff80b9b5c3 in vpanic (fmt=3D<value optimized out>,=20
    ap=3D<value optimized out>) at /usr/src/sys/kern/kern_shutdown.c:872
#3  0xffffffff80b9b3b3 in panic (fmt=3D<value optimized out>)
    at /usr/src/sys/kern/kern_shutdown.c:799
#4  0xffffffff8107496f in trap_fatal (frame=3D0xfffffe001de86240, eva=3D0)
    at /usr/src/sys/amd64/amd64/trap.c:929
#5  0xffffffff810749c9 in trap_pfault (frame=3D0xfffffe001de86240, usermode=
=3D0)
    at pcpu.h:230
#6  0xffffffff81073fee in trap (frame=3D0xfffffe001de86240)
    at /usr/src/sys/amd64/amd64/trap.c:441
#7  0xffffffff8104f315 in calltrap ()
    at /usr/src/sys/amd64/amd64/exception.S:232
#8  0xffffffff80cc3fe3 in rtsock_addrmsg (cmd=3D2, ifa=3D0xfffff80062f71200=
,=20
    fibnum=3D-1) at /usr/src/sys/net/rtsock.c:1337
#9  0xffffffff80de0f73 in in6_purgeaddr (ifa=3D0xfffff80062f71200)
    at /usr/src/sys/netinet6/in6.c:193
#10 0xffffffff80c9662f in if_purgeaddrs (ifp=3D0xfffff80062845000)
    at /usr/src/sys/net/if.c:995
#11 0xffffffff80ca79c1 in tunclose (dev=3D<value optimized out>,=20
    foo=3D<value optimized out>, bar=3D<value optimized out>,=20
    td=3D<value optimized out>) at /usr/src/sys/net/if_tun.c:478
#12 0xffffffff80a518ca in devfs_close (ap=3D<value optimized out>)
    at /usr/src/sys/fs/devfs/devfs_vnops.c:650
#13 0xffffffff811f89b8 in VOP_CLOSE_APV (vop=3D<value optimized out>,=20
    a=3D0xfffffe001de86788) at vnode_if.c:534
#14 0xffffffff80c7b6bf in vn_close1 (vp=3D0xfffff8006291ad20, flags=3D7,=20
    file_cred=3D0xfffff80062849a00, td=3D0xfffff8001da8d000, keep_ref=3Dfal=
se)
    at vnode_if.h:225
#15 0xffffffff80c7a3c0 in vn_closefile (fp=3D0xfffff8006a031050,=20
    td=3D<value optimized out>) at /usr/src/sys/kern/vfs_vnops.c:1563
#16 0xffffffff80a5224c in devfs_close_f (fp=3D0xfffff8006a031050,=20
    td=3D<value optimized out>) at /usr/src/sys/fs/devfs/devfs_vnops.c:669
#17 0xffffffff80b4363a in _fdrop (fp=3D0xfffff8006a031050,=20
    td=3D<value optimized out>) at file.h:353
#18 0xffffffff80b466e4 in closef (fp=3D0xfffff8006a031050, td=3D0xfffff8001=
da8d000)
    at /usr/src/sys/kern/kern_descrip.c:2528
#19 0xffffffff80b43b69 in closefp (fdp=3D0xfffff8006a04d450,=20
    fd=3D<value optimized out>, fp=3D0xfffff8006a031050, td=3D0xfffff8001da=
8d000,=20
    holdleaders=3D0) at /usr/src/sys/kern/kern_descrip.c:1199
#20 0xffffffff81075449 in amd64_syscall (td=3D0xfffff8001da8d000, traced=3D=
0)
    at subr_syscall.c:135
#21 0xffffffff8104fbfd in fast_syscall_common ()
    at /usr/src/sys/amd64/amd64/exception.S:504
#22 0x000000000048bdb0 in ?? ()
Previous frame inner to this frame (corrupt stack?)
Current language:  auto; currently minimal
(kgdb)

--=20
You are receiving this mail because:
You are the assignee for the bug.=

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-233955-7501-pjY5qMB7n9>