Date: Fri, 12 Apr 2019 10:53:51 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 236918] Crash: in iwn_ampdu_tx_stop (or ieee80211_ht_node_cleanup) Message-ID: <bug-236918-227-FKVoxvf26W@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-236918-227@https.bugs.freebsd.org/bugzilla/> References: <bug-236918-227@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D236918 --- Comment #2 from admin-freebsd-bugzilla@927589452.de --- root@deathbolt:~ # kgdb /boot/kernel/kernel /var/crash/vmcore.last=20 GNU gdb (GDB) 8.2.1 [GDB v8.2.1 for FreeBSD] Copyright (C) 2018 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.htm= l> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-portbld-freebsd12.0". Type "show configuration" for configuration details. For bug reporting instructions, please see: <http://www.gnu.org/software/gdb/bugs/>. Find the GDB manual and other documentation resources online at: <http://www.gnu.org/software/gdb/documentation/>. For help, type "help". Type "apropos word" to search for commands related to "word"... Reading symbols from /boot/kernel/kernel...Reading symbols from /usr/lib/debug//boot/kernel/kernel.debug...done. done. Unread portion of the kernel message buffer: Fatal trap 12: page fault while in kernel mode cpuid =3D 2; apic id =3D 02 fault virtual address =3D 0xeaa18da712c fault code =3D supervisor read data, page not present instruction pointer =3D 0x20:0xffffffff80645a7a stack pointer =3D 0x28:0xfffffe0000580790 frame pointer =3D 0x28:0xfffffe00005807c0 code segment =3D base 0x0, limit 0xfffff, type 0x1b =3D DPL 0, pres 1, long 1, def32 0, gran 1 processor eflags =3D interrupt enabled, resume, IOPL =3D 0 current process =3D 0 (iwn0 net80211 taskq) trap number =3D 12 WARNING !drm_modeset_is_locked(&crtc->mutex) failed at /wrkdirs/usr/ports/graphics/drm-fbsd12.0-kmod/work/kms-drm-4192575/drivers/= gpu/drm/drm_atomic_helper.c:577 WARNING !drm_modeset_is_locked(&crtc->mutex) failed at /wrkdirs/usr/ports/graphics/drm-fbsd12.0-kmod/work/kms-drm-4192575/drivers/= gpu/drm/drm_atomic_helper.c:577 WARNING !drm_modeset_is_locked(&dev->mode_config.connection_mutex) failed at /wrkdirs/usr/ports/graphics/drm-fbsd12.0-kmod/work/kms-drm-4192575/drivers/= gpu/drm/drm_atomic_helper.c:622 WARNING !drm_modeset_is_locked(&plane->mutex) failed at /wrkdirs/usr/ports/graphics/drm-fbsd12.0-kmod/work/kms-drm-4192575/drivers/= gpu/drm/drm_atomic_helper.c:821 WARNING !drm_modeset_is_locked(&plane->mutex) failed at /wrkdirs/usr/ports/graphics/drm-fbsd12.0-kmod/work/kms-drm-4192575/drivers/= gpu/drm/drm_atomic_helper.c:821 WARNING !drm_modeset_is_locked(&plane->mutex) failed at /wrkdirs/usr/ports/graphics/drm-fbsd12.0-kmod/work/kms-drm-4192575/drivers/= gpu/drm/drm_atomic_helper.c:821 WARNING !drm_modeset_is_locked(&plane->mutex) failed at /wrkdirs/usr/ports/graphics/drm-fbsd12.0-kmod/work/kms-drm-4192575/drivers/= gpu/drm/drm_atomic_helper.c:821 WARNING !drm_modeset_is_locked(&plane->mutex) failed at /wrkdirs/usr/ports/graphics/drm-fbsd12.0-kmod/work/kms-drm-4192575/drivers/= gpu/drm/drm_atomic_helper.c:821 WARNING !drm_modeset_is_locked(&plane->mutex) failed at /wrkdirs/usr/ports/graphics/drm-fbsd12.0-kmod/work/kms-drm-4192575/drivers/= gpu/drm/drm_atomic_helper.c:821 <4>WARN_ON(!mutex_is_locked(&dev->struct_mutex)) <4>WARN_ON(!mutex_is_locked(&fbc->lock))WARN_ON(!mutex_is_locked(&fbc->lock= )) panic: page fault cpuid =3D 2 time =3D 1555062663 KDB: stack backtrace: #0 0xffffffff80be7977 at kdb_backtrace+0x67 #1 0xffffffff80b9b563 at vpanic+0x1a3 #2 0xffffffff80b9b3b3 at panic+0x43 #3 0xffffffff8107496f at trap_fatal+0x35f #4 0xffffffff810749c9 at trap_pfault+0x49 #5 0xffffffff81073fee at trap+0x29e #6 0xffffffff8104f1d5 at calltrap+0x8 #7 0xffffffff80cdc774 at ieee80211_ht_node_cleanup+0x94 #8 0xffffffff80cf0db2 at node_cleanup+0x162 #9 0xffffffff80cf3253 at ieee80211_sta_leave+0x13 #10 0xffffffff80d05726 at sta_newstate+0x596 #11 0xffffffff8064dcd3 at iwn_newstate+0x733 #12 0xffffffff80cfd4b9 at ieee80211_newstate_cb+0x199 #13 0xffffffff80bf9cb4 at taskqueue_run_locked+0x154 #14 0xffffffff80bfae18 at taskqueue_thread_loop+0x98 #15 0xffffffff80b5bf33 at fork_exit+0x83 #16 0xffffffff810501be at fork_trampoline+0xe Uptime: 3d6h51m13s Dumping 3152 out of 12015 MB:..1%..11%..21%..31%..41%..51%..61%..71%..81%..= 91% __curthread () at ./machine/pcpu.h:230 230 ./machine/pcpu.h: No such file or directory. (kgdb) bt #0 __curthread () at ./machine/pcpu.h:230 #1 doadump (textdump=3D<optimized out>) at /usr/src/sys/kern/kern_shutdown= .c:366 #2 0xffffffff80b9b14b in kern_reboot (howto=3D260) at /usr/src/sys/kern/kern_shutdown.c:446 #3 0xffffffff80b9b5c3 in vpanic (fmt=3D<optimized out>, ap=3D0xfffffe00005= 804e0) at /usr/src/sys/kern/kern_shutdown.c:872 #4 0xffffffff80b9b3b3 in panic (fmt=3D<unavailable>) at /usr/src/sys/kern/kern_shutdown.c:799 #5 0xffffffff8107496f in trap_fatal (frame=3D0xfffffe00005806d0, eva=3D16123724198188) at /usr/src/sys/amd64/amd64/trap.c:929 #6 0xffffffff810749c9 in trap_pfault (frame=3D0xfffffe00005806d0, usermode= =3D0) at /usr/src/sys/amd64/amd64/trap.c:765 #7 0xffffffff81073fee in trap (frame=3D0xfffffe00005806d0) at /usr/src/sys/amd64/amd64/trap.c:441 #8 <signal handler called> #9 0xffffffff80645a7a in iwn_ampdu_tx_stop (ni=3D<optimized out>, tap=3D0xfffffe009fcf43d8) at /usr/src/sys/dev/iwn/if_iwn.c:7424 #10 0xffffffff80cdc774 in ampdu_tx_stop (tap=3D<optimized out>) at /usr/src/sys/net80211/ieee80211_ht.c:2035 #11 ieee80211_ht_node_cleanup (ni=3D0xfffffe009fcf4000) at /usr/src/sys/net80211/ieee80211_ht.c:1190 #12 0xffffffff80cf0db2 in node_cleanup (ni=3D0xfffffe009fcf4000) at /usr/src/sys/net80211/ieee80211_node.c:1208 #13 0xffffffff80cf3253 in ieee80211_sta_leave (ni=3D0xfffffe009fcf4000) at /usr/src/sys/net80211/ieee80211_node.c:1049 #14 0xffffffff80d05726 in sta_newstate (vap=3D0xfffff800107fb000, nstate=3DIEEE80211_S_AUTH, arg=3D1728) at /usr/src/sys/net80211/ieee80211_s= ta.c:373 #15 0xffffffff8064dcd3 in iwn_newstate (vap=3D0xfffff800107fb000, nstate=3DIEEE80211_S_AUTH, arg=3D1728) at /usr/src/sys/dev/iwn/if_iwn.c:2948 #16 0xffffffff80cfd4b9 in ieee80211_newstate_cb (xvap=3D0xfffff800107fb000, npending=3D<optimized out>) at /usr/src/sys/net80211/ieee80211_proto.c:2037 #17 0xffffffff80bf9cb4 in taskqueue_run_locked (queue=3D0xfffff80004866200)= at /usr/src/sys/kern/subr_taskqueue.c:465 #18 0xffffffff80bfae18 in taskqueue_thread_loop (arg=3D<optimized out>) at /usr/src/sys/kern/subr_taskqueue.c:757 #19 0xffffffff80b5bf33 in fork_exit (callout=3D0xffffffff80bfad80 <taskqueue_thread_loop>, arg=3D0xfffffe000079d148, frame=3D0xfffffe0000580a= c0) at /usr/src/sys/kern/kern_fork.c:1057 #20 <signal handler called> --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-236918-227-FKVoxvf26W>