Date: Fri, 20 Apr 2018 23:19:39 +0000 From: bugzilla-noreply@freebsd.org To: stable@FreeBSD.org Subject: [Bug 227654] [panic] repeatable crash with IPv6+lagg+vlan+em Message-ID: <bug-227654-1689-eBHoNf3UR7@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-227654-1689@https.bugs.freebsd.org/bugzilla/> References: <bug-227654-1689@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D227654 --- Comment #2 from Eugene Grosbein <eugen@freebsd.org> --- Created attachment 192690 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D192690&action= =3Dedit debugging patch for single user only Forgot to note that my kernel has VIMAGE too. I've reproduced this with my home desktop that has serial console, so I've digged this a bit deeper suspecting that curvnet may be not initialized. I've added some debugging output, the diff is attached. KASSERT did not catch this for unknown reason, so it's commented out. Anyway, curvnet occured to be zero, so any attempt to use V_link_pfil_hook dereferences NULL producing this panic: ether_output_frame: vlan61: curvnet 0 KDB: stack backtrace: db_trace_self_wrapper() at db_trace_self_wrapper+0x2b/frame 0xfffffe0453d37= 780 ether_output() at ether_output+0x64c/frame 0xfffffe0453d37820 arprequest() at arprequest+0x443/frame 0xfffffe0453d37920 arp_ifinit() at arp_ifinit+0x58/frame 0xfffffe0453d37960 arp_handle_ifllchange() at arp_handle_ifllchange+0x3d/frame 0xfffffe0453d37= 980 if_setlladdr() at if_setlladdr+0x21e/frame 0xfffffe0453d379e0 taskqueue_run_locked() at taskqueue_run_locked+0x14c/frame 0xfffffe0453d37a= 40 taskqueue_thread_loop() at taskqueue_thread_loop+0x88/frame 0xfffffe0453d37= a70 fork_exit() at fork_exit+0x84/frame 0xfffffe0453d37ab0 fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe0453d37ab0 --- trap 0, rip =3D 0, rsp =3D 0, rbp =3D 0 --- Fatal trap 12: page fault while in kernel mode cpuid =3D 3; apic id =3D 03 fault virtual address =3D 0x28 fault code =3D supervisor read data, page not present instruction pointer =3D 0x20:0xffffffff80aca683 stack pointer =3D 0x28:0xfffffe0453d37790 frame pointer =3D 0x28:0xfffffe0453d37820 code segment =3D base 0x0, limit 0xfffff, type 0x1b =3D DPL 0, pres 1, long 1, def32 0, gran 1 processor eflags =3D interrupt enabled, resume, IOPL =3D 0 current process =3D 0 (thread taskq) trap number =3D 12 p --=20 You are receiving this mail because: You are on the CC list for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-227654-1689-eBHoNf3UR7>