Date: Tue, 26 Oct 2021 15:36:53 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 259458] iflib_rxeof NULL pointer crash with vmxnet3 driver Message-ID: <bug-259458-227-RsqJXLEgR4@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-259458-227@https.bugs.freebsd.org/bugzilla/>
index | next in thread | previous in thread | raw e-mail
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=259458 --- Comment #9 from Andriy Gapon <avg@FreeBSD.org> --- It seems that I got a little bit confused again with respect to ifl_rx_bitmap and ifl_sds.ifsd_m. iflib_rxd_pkt_get() calls rxd_frag_to_sd() before the memcpy that crashed and the latter clears the current bit in ifl_rx_bitmap. Also, *sd.ifsd_m was assigned NULL in iflib_rxd_pkt_get(). And originally I established that 'm' was not NULL, so originally ifsd_m was not NULL. So, it looks that index 327 was actually filled when the call started. The problem was only with ifsd_cl. Somehow it was not refilled and was NULL. -- You are receiving this mail because: You are the assignee for the bug.help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-259458-227-RsqJXLEgR4>