Skip site navigation (1)Skip section navigation (2) 
Date:      Sat, 24 Aug 2019 18:38:54 +0000
From:      bugzilla-noreply@freebsd.org
To:        bugs@FreeBSD.org
Subject:   [Bug 240060] Fatal trap 12: page fault while in kernel mode: Cannot access memory at address 0x7fffffffe8a8
Message-ID:  <bug-240060-227-HeLpKDFwfX@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-240060-227@https.bugs.freebsd.org/bugzilla/>
References:  <bug-240060-227@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help 

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=240060

--- Comment #3 from Martin Filla <freebsd@sysctl.cz> ---
It is suspicion on small stack overflow

#0  __curthread () at ./machine/pcpu.h:234
#1  doadump (textdump=<optimized out>) at /usr/src/sys/kern/kern_shutdown.c:366
#2  0xffffffff80b9b09b in kern_reboot (howto=260) at
/usr/src/sys/kern/kern_shutdown.c:446
#3  0xffffffff80b9b513 in vpanic (fmt=<optimized out>, ap=0xfffffe006a2903b0)
at /usr/src/sys/kern/kern_shutdown.c:872
#4  0xffffffff80b9b303 in panic (fmt=<unavailable>) at
/usr/src/sys/kern/kern_shutdown.c:799
#5  0xffffffff81074bff in trap_fatal (frame=0xfffffe006a2905a0, eva=1040) at
/usr/src/sys/amd64/amd64/trap.c:929
#6  0xffffffff81074c59 in trap_pfault (frame=0xfffffe006a2905a0, usermode=0) at
/usr/src/sys/amd64/amd64/trap.c:765
#7  0xffffffff8107427e in trap (frame=0xfffffe006a2905a0) at
/usr/src/sys/amd64/amd64/trap.c:441
#8  <signal handler called>
#9  __mtx_lock_sleep (c=0xfffff8000ab50750, v=<optimized out>) at
/usr/src/sys/kern/kern_mutex.c:565
#10 0xffffffff80ba6813 in _sleep (ident=0xfffffe004d5a2138,
lock=0xfffff8000ab50738, priority=108, wmesg=0xffffffff8123a845 "-", sbt=0,
pr=0, flags=256)
    at /usr/src/sys/kern/kern_synch.c:226
#11 0xffffffff80bfa339 in TQ_SLEEP (t=<error reading variable: Cannot access
memory at address 0x0>, tq=<optimized out>, p=<optimized out>, 
    m=<optimized out>, pri=<optimized out>, wm=<optimized out>) at
/usr/src/sys/kern/subr_taskqueue.c:124
#12 taskqueue_drain (queue=0xfffff8000ab50700, task=0xfffffe004d5a2138) at
/usr/src/sys/kern/subr_taskqueue.c:573
#13 0xffffffff80cfee78 in ieee80211_draintask (ic=0xfffffe004d5a2020, task=0x4)
at /usr/src/sys/net80211/ieee80211_var.h:794
#14 ieee80211_waitfor_parent (ic=0xfffffe004d5a2020) at
/usr/src/sys/net80211/ieee80211_proto.c:1440
#15 0xffffffff80ce4a82 in ieee80211_ioctl (ifp=0xfffff800b1cae800,
cmd=<optimized out>, data=<optimized out>) at
/usr/src/sys/net80211/ieee80211_ioctl.c:3535
#16 0xffffffff80c9ab6a in ifhwioctl (cmd=<optimized out>, ifp=<optimized out>,
data=0xfffffe006a290a10 "wlan0", td=<optimized out>)
    at /usr/src/sys/net/if.c:2704
#17 0xffffffff80c9c0ff in ifioctl (so=0xfffff8023523b000, cmd=2149607696,
data=<optimized out>, td=0xfffff80217205000) at /usr/src/sys/net/if.c:3124
#18 0xffffffff80c04e9d in fo_ioctl (fp=<optimized out>, com=<optimized out>,
active_cred=0xfffff80217205000, td=<optimized out>, data=<optimized out>)
    at /usr/src/sys/sys/file.h:330
#19 kern_ioctl (td=0xfffff80217205000, fd=4, com=2149607696,
data=0xffffffff82112320 <common_tss> "") at /usr/src/sys/kern/sys_generic.c:800
#20 0xffffffff80c04bbe in sys_ioctl (td=0xfffff80217205000,
uap=0xfffff802172053c0) at /usr/src/sys/kern/sys_generic.c:712
#21 0xffffffff810756d9 in syscallenter (td=<optimized out>) at
/usr/src/sys/amd64/amd64/../../kern/subr_syscall.c:135
#22 amd64_syscall (td=0xfffff80217205000, traced=0) at
/usr/src/sys/amd64/amd64/trap.c:1076
#23 <signal handler called>
#24 0x00000008008d911a in ?? ()
Backtrace stopped: Cannot access memory at address 0x7fffffffe8a8
(kgdb) list
1455     *
1456     * Return 0 if we're ok, 1 if the channel needs to be reset.
1457     *
1458     * See PR kern/202502.
1459     */
1460    static int
1461    ieee80211_start_check_reset_chan(struct ieee80211vap *vap)
1462    {
1463            struct ieee80211com *ic = vap->iv_ic;
(kgdb) frame 14
#14 ieee80211_waitfor_parent (ic=0xfffffe004d5a2020) at
/usr/src/sys/net80211/ieee80211_proto.c:1440
1440            ieee80211_draintask(ic, &ic->ic_parent_task);
(kgdb) frame 13
#13 0xffffffff80cfee78 in ieee80211_draintask (ic=0xfffffe004d5a2020, task=0x4)
at /usr/src/sys/net80211/ieee80211_var.h:794
794             taskqueue_drain(ic->ic_tq, task);
(kgdb) frame 14
#14 ieee80211_waitfor_parent (ic=0xfffffe004d5a2020) at
/usr/src/sys/net80211/ieee80211_proto.c:1440
1440            ieee80211_draintask(ic, &ic->ic_parent_task);
(kgdb) print  &ic->ic_parent_task
$15 = (struct task *) 0xfffffe004d5a2138

-- 
You are receiving this mail because:
You are the assignee for the bug.

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-240060-227-HeLpKDFwfX>