Date: Sun, 10 Oct 2021 11:56:47 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 259039] kernel panic in if_io_tqg_4 Message-ID: <bug-259039-227@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D259039 Bug ID: 259039 Summary: kernel panic in if_io_tqg_4 Product: Base System Version: 13.0-STABLE Hardware: amd64 OS: Any Status: New Severity: Affects Only Me Priority: --- Component: kern Assignee: bugs@FreeBSD.org Reporter: iron.udjin@gmail.com OS: stable/13-n247434-bcff2fdf8ee4 Fatal trap 12: page fault while in kernel mode cpuid =3D 4; apic id =3D 04 fault virtual address =3D 0x8 fault code =3D supervisor read data, page not present instruction pointer =3D 0x20:0xffffffff80646df8 stack pointer =3D 0x0:0xfffffe0201c61d10 frame pointer =3D 0x0:0xfffffe0201c61d50 code segment =3D base 0x0, limit 0xfffff, type 0x1b =3D DPL 0, pres 1, long 1, def32 0, gran 1 processor eflags =3D interrupt enabled, resume, IOPL =3D 0 current process =3D 0 (if_io_tqg_4) trap number =3D 12 panic: page fault cpuid =3D 4 time =3D 1633865509 KDB: stack backtrace: #0 0xffffffff805fa385 at kdb_backtrace+0x65 #1 0xffffffff805af417 at vpanic+0x187 #2 0xffffffff805af283 at panic+0x43 #3 0xffffffff8085c187 at trap_fatal+0x387 #4 0xffffffff8085c1df at trap_pfault+0x4f #5 0xffffffff8085b87a at trap+0x25a #6 0xffffffff808342d8 at calltrap+0x8 #7 0xffffffff80647007 at sbdrop+0x37 #8 0xffffffff80713946 at tcp_do_segment+0x2f86 #9 0xffffffff8070fdad at tcp_input_with_port+0x91d #10 0xffffffff8071092b at tcp_input+0xb #11 0xffffffff807042a4 at ip_input+0xc4 #12 0xffffffff806dc2ce at netisr_dispatch_src+0x9e #13 0xffffffff806c1088 at ether_demux+0x118 #14 0xffffffff806c22ee at ether_nh_input+0x30e #15 0xffffffff806dc2ce at netisr_dispatch_src+0x9e #16 0xffffffff806c1459 at ether_input+0x39 #17 0xffffffff80719341 at tcp_lro_flush+0x321 Uptime: 13d12h0m25s Dumping 23901 out of 196241 MB:..1%..11%..21%..31%..41%..51%..61%..71%..81%..91% __curthread () at /usr/src/sys/amd64/include/pcpu_aux.h:55 55 __asm("movq %%gs:%P1,%0" : "=3Dr" (td) : "n" (offsetof(stru= ct pcpu, (kgdb) bt #0 __curthread () at /usr/src/sys/amd64/include/pcpu_aux.h:55 #1 doadump (textdump=3D<optimized out>) at /usr/src/sys/kern/kern_shutdown= .c:399 #2 0xffffffff805af015 in kern_reboot (howto=3D260) at /usr/src/sys/kern/kern_shutdown.c:486 #3 0xffffffff805af486 in vpanic (fmt=3D0xffffffff808bd1a3 "%s", ap=3D<opti= mized out>) at /usr/src/sys/kern/kern_shutdown.c:919 #4 0xffffffff805af283 in panic (fmt=3D<unavailable>) at /usr/src/sys/kern/kern_shutdown.c:843 #5 0xffffffff8085c187 in trap_fatal (frame=3D0xfffffe0201c61c50, eva=3D8) = at /usr/src/sys/amd64/amd64/trap.c:941 #6 0xffffffff8085c1df in trap_pfault (frame=3Dframe@entry=3D0xfffffe0201c6= 1c50, usermode=3Dfalse, signo=3D<optimized out>, signo@entry=3D0x0, ucode=3D<opti= mized out>, ucode@entry=3D0x0) at /usr/src/sys/amd64/amd64/trap.c:760 #7 0xffffffff8085b87a in trap (frame=3D0xfffffe0201c61c50) at /usr/src/sys/amd64/amd64/trap.c:438 #8 <signal handler called> #9 sbcut_internal (sb=3Dsb@entry=3D0xfffff812a9e02260, len=3Dlen@entry=3D7= 94) at /usr/src/sys/kern/uipc_sockbuf.c:1515 #10 0xffffffff80647007 in sbdrop (sb=3Dsb@entry=3D0xfffff812a9e02260, len= =3D794) at /usr/src/sys/kern/uipc_sockbuf.c:1624 #11 0xffffffff80713946 in tcp_do_segment (m=3D0xfffff808ffa67300, th=3D<opt= imized out>, so=3D<optimized out>, tp=3D0xfffffe04453ce950, drop_hdrlen=3D<optimiz= ed out>, tlen=3D<optimized out>, iptos=3D0 '\000') at /usr/src/sys/netinet/tcp_input= .c:1852 #12 0xffffffff8070fdad in tcp_input_with_port (mp=3D<optimized out>, offp=3D<optimized out>, proto=3D<optimized out>, port=3D<optimized out>, port@entry=3D0) at /usr/src/sys/netinet/tcp_input.c:1400 #13 0xffffffff8071092b in tcp_input (mp=3D0xfffff812a9e02260, offp=3D0x31a, proto=3D30) at /usr/src/sys/netinet/tcp_input.c:1496 #14 0xffffffff807042a4 in ip_input (m=3D0x0) at /usr/src/sys/netinet/ip_input.c:834 #15 0xffffffff806dc2ce in netisr_dispatch_src (proto=3D1, source=3D<optimiz= ed out>, source@entry=3D0, m=3D0x0) at /usr/src/sys/net/netisr.c:1143 #16 0xffffffff806dc5bf in netisr_dispatch (proto=3D2850038368, m=3D0x1e) at /usr/src/sys/net/netisr.c:1234 #17 0xffffffff806c1088 in ether_demux (ifp=3Difp@entry=3D0xfffff801062c5000, m=3D0x31a) at /usr/src/sys/net/if_ethersubr.c:921 #18 0xffffffff806c22ee in ether_input_internal (ifp=3D0xfffff801062c5000, m=3D0x31a) at /usr/src/sys/net/if_ethersubr.c:707 #19 ether_nh_input (m=3D<optimized out>) at /usr/src/sys/net/if_ethersubr.c= :737 #20 0xffffffff806dc2ce in netisr_dispatch_src (proto=3Dproto@entry=3D5, source=3D<optimized out>, source@entry=3D0, m=3D0x0, m@entry=3D0xfffff808ff= a67300) at /usr/src/sys/net/netisr.c:1143 #21 0xffffffff806dc5bf in netisr_dispatch (proto=3D2850038368, proto@entry= =3D5, m=3D0x1e, m@entry=3D0xfffff808ffa67300) at /usr/src/sys/net/netisr.c:1234 #22 0xffffffff806c1459 in ether_input (ifp=3D<optimized out>, m=3D0xfffff808ffa67300) at /usr/src/sys/net/if_ethersubr.c:828 #23 0xffffffff80719341 in tcp_lro_flush (lc=3Dlc@entry=3D0xfffffe014d16a6b0, le=3D0xfffffe015050e690) at /usr/src/sys/netinet/tcp_lro.c:1350 #24 0xffffffff80719e7b in tcp_lro_rx_done (lc=3D0xfffffe014d16a6b0) at /usr/src/sys/netinet/tcp_lro.c:562 #25 tcp_lro_flush_all (lc=3Dlc@entry=3D0xfffffe014d16a6b0) at /usr/src/sys/netinet/tcp_lro.c:1506 #26 0xffffffff806d42a2 in iflib_rxeof (rxq=3D<optimized out>, budget=3D<opt= imized out>) at /usr/src/sys/net/iflib.c:3056 #27 _task_fn_rx (context=3D<optimized out>) at /usr/src/sys/net/iflib.c:3988 #28 0xffffffff805f8dfd in gtaskqueue_run_locked (queue=3Dqueue@entry=3D0xfffff80104cf8300) at /usr/src/sys/kern/subr_gtaskqueue.c:371 #29 0xffffffff805f8a63 in gtaskqueue_thread_loop (arg=3D<optimized out>, arg@entry=3D0xfffffe014d880068) at /usr/src/sys/kern/subr_gtaskqueue.c:547 #30 0xffffffff8056f269 in fork_exit (callout=3D0xffffffff805f89a0 <gtaskqueue_thread_loop>, arg=3D0xfffffe014d880068, frame=3D0xfffffe0201c62= 480) at /usr/src/sys/kern/kern_fork.c:1084 #31 <signal handler called> I don't know how to reproduce this panic. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-259039-227>