Date: Wed, 15 Feb 2023 13:08:05 +0000 From: bugzilla-noreply@freebsd.org To: net@FreeBSD.org Subject: [Bug 268246] crash and panic using pfsync on 13.1-RELEASE Message-ID: <bug-268246-7501-sw40YxyhG1@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-268246-7501@https.bugs.freebsd.org/bugzilla/> References: <bug-268246-7501@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D268246 --- Comment #83 from jjasen@gmail.com --- BT: #0 __curthread () at /root/usr/src/sys/amd64/include/pcpu_aux.h:55 #1 dump_savectx () at /root/usr/src/sys/kern/kern_shutdown.c:394 #2 0xffffffff80c38ae8 in dumpsys (di=3D0x0) at /root/usr/src/sys/x86/include/dump.h:87 #3 doadump (textdump=3D<optimized out>) at /root/usr/src/sys/kern/kern_shutdown.c:423 #4 kern_reboot (howto=3D260) at /root/usr/src/sys/kern/kern_shutdown.c:497 #5 0xffffffff80c38f6e in vpanic (fmt=3D<optimized out>, ap=3Dap@entry=3D0xfffffe017cbed940) at /root/usr/src/sys/kern/kern_shutdown.c:930 #6 0xffffffff80c38da3 in panic (fmt=3D<unavailable>) at /root/usr/src/sys/kern/kern_shutdown.c:854 #7 0xffffffff81101c95 in trap_fatal (frame=3D0xfffffe017cbeda30, eva=3D24) at /root/usr/src/sys/amd64/amd64/trap.c:942 #8 0xffffffff81101cef in trap_pfault (frame=3D0xfffffe017cbeda30, usermode=3Dfalse, signo=3D<optimized out>, ucode=3D<optimized out>) at /root/usr/src/sys/amd64/amd64/trap.c:761 #9 <signal handler called> #10 0xffffffff80cd15d0 in m_copym (m=3D0x0, m@entry=3D0xfffff80115340200, off0=3D8268, len=3D8192, wait=3Dwait@entry=3D1) at /root/usr/src/sys/kern/uipc_mbuf.c:510 #11 0xffffffff80dfe81f in ip_fragment (ip=3D<optimized out>, ip@entry=3D0xfffff80115340268, m_frag=3Dm_frag@entry=3D0xfffffe017cbedcb0, mtu=3Dmtu@entry=3D9000, if_hwassist_flags=3D<optimized out>) at /root/usr/src/sys/netinet/ip_output.c:992 #12 0xffffffff80dfe1d2 in ip_output (m=3Dm@entry=3D0xfffff80115340200, opt=3D<optimized out>, opt@entry=3D0x0, ro=3D<optimized out>, ro@entry=3D0x0, flags=3Dflags@en= try=3D0, imo=3D<optimized out>, imo@entry=3D0x0, inp=3D<optimized out>, inp@entry=3D0x0) at /root/usr/src/sys/netinet/ip_output.c:816 #13 0xffffffff823516dc in pfsync_defer_tmo (arg=3D0xfffff806ea395280) at /root/usr/src/sys/netpfil/pf/if_pfsync.c:1838 #14 0xffffffff80c57263 in softclock_call_cc (c=3D<optimized out>, cc=3Dcc@entry=3D0xffffffff81ebac00 <cc_cpu>, direct=3Ddirect@entry=3D0) at /root/usr/src/sys/kern/kern_timeout.c:692 #15 0xffffffff80c576c9 in softclock (arg=3D0xffffffff81ebac00 <cc_cpu>) at /root/usr/src/sys/kern/kern_timeout.c:812 #16 0xffffffff80bf6eea in intr_event_execute_handlers (ie=3D0xfffff80104901= 300, p=3D<optimized out>) at /root/usr/src/sys/kern/kern_intr.c:1169 #17 ithread_execute_handlers (ie=3D<optimized out>, p=3D<optimized out>) at /root/usr/src/sys/kern/kern_intr.c:1182 #18 ithread_loop (arg=3Darg@entry=3D0xfffff801048949c0) at /root/usr/src/sys/kern/kern_intr.c:1270 #19 0xffffffff80bf38de in fork_exit (callout=3D0xffffffff80bf6c90 <ithread_= loop>, arg=3D0xfffff801048949c0, frame=3D0xfffffe017cbedf40) at /root/usr/src/sys/kern/kern_fork.c:1093 #20 <signal handler called> #21 mi_startup () at /root/usr/src/sys/kern/init_main.c:322 Backtrace stopped: Cannot access memory at address 0x8 (kgdb) frame 13 #13 0xffffffff823516dc in pfsync_defer_tmo (arg=3D0xfffff806ea395280) at /root/usr/src/sys/netpfil/pf/if_pfsync.c:1838 1838 ip_output(m, NULL, NULL, 0, NULL, NULL); p ip_output $1 =3D {int (struct mbuf *, struct mbuf *, struct route *, int, struct ip_moptions *, struct inpcb *)} 0xffffffff80dfd080 <ip_output> kgdb) print m $4 =3D (struct mbuf *) 0xfffff80115340200 (kgdb) print *m $5 =3D {{m_next =3D 0x0, m_slist =3D {sle_next =3D 0x0}, m_stailq =3D {stqe= _next =3D 0x0}}, { m_nextpkt =3D 0xfffff802ff9f1d00, m_slistpkt =3D {sle_next =3D 0xfffff802ff9f1d00}, m_stailqpkt =3D { stqe_next =3D 0xfffff802ff9f1d00}}, m_data =3D 0xfffff80115340268 "E"= , m_len =3D 80, m_type =3D 1, m_flags =3D 32770, {{{m_pkthdr =3D {{snd_tag =3D 0x0, rcvif =3D 0x0}, tag= s =3D {slh_first =3D 0x0}, len =3D 80, flowid =3D 0, csum_flags =3D 1025, fibnum =3D 0, numa= _domain =3D 255 '\377', rsstype =3D 0 '\000', {rcv_tstmp =3D 0, {l2hlen =3D 0 '\000', l3h= len =3D 0 '\000', l4hlen =3D 0 '\000', l5hlen =3D 0 '\000', inner_l2hlen =3D 0 = '\000', inner_l3hlen =3D 0 '\000', inner_l4hlen =3D 0 '\000', inner_l= 5hlen =3D 0 '\000'}}, PH_per =3D {eight =3D "\000\000\000\000\020\000\000", sixteen =3D= {0, 0, 16, 0}, thirtytwo =3D { 0, 16}, sixtyfour =3D {68719476736}, unintptr =3D {6871947673= 6}, ptr =3D 0x1000000000}, PH_loc =3D {eight =3D "\000\000\000\000\000\000\000", sixteen =3D= {0, 0, 0, 0}, thirtytwo =3D { 0, 0}, sixtyfour =3D {0}, unintptr =3D {0}, ptr =3D 0x0}}, {m= _epg_npgs =3D 0 '\000', m_epg_nrdy =3D 0 '\000', m_epg_hdrlen =3D 0 '\000', m_epg_trllen = =3D 0 '\000', m_epg_1st_off =3D 0, m_epg_last_len =3D 0, m_epg_flags =3D 0 '\00= 0', m_epg_record_type =3D 0 '\000', __spare =3D "\000", m_epg_enc_cnt= =3D 0, m_epg_tls =3D 0x50, m_epg_so =3D 0xff000000000401, m_epg_seqno =3D 0, m_epg_stailq = =3D { stqe_next =3D 0x1000000000}}}, {m_ext =3D {{ext_count =3D 74259= 0208, ext_cnt =3D 0x70050a62c430700}, ext_size =3D 2954964035, ext_ty= pe =3D 8, ext_flags =3D 17664, { { ext_buf =3D 0x400646585e8d0045 <error: Cannot access memory at address 0x400646585e8d0045>, ext_arg2 =3D 0x69011824d0040120}, {extpg_pa =3D {4613452213645017157, 7566355395346956576, 720575940379279360, 11029316931009191974, 21617278211379790= 7}, extpg_trail =3D "=CD=A1\000P\002;.\373\000\000\000\000\240\002\377\377\345\232\000\000\002\= 004\"\354\001\003\003\016\004\002\b\n\257<3\346\000\000\000\000\001\034P\00= 1\020\231\023\067\000\000\000\000\000\003\000\000\000\000\000\000\000\000\0= 00", extpg_hdr =3D '\000' <repeats 22 times>}}, ext_free =3D 0xffffffff82f67210 <rxb_free>, ext_arg1 =3D 0xfffff802ef19bfc0}, m_pktdat =3D 0xfffff80115340258 ""}}, m_dat =3D 0xfffff80115340220 = ""}} --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-268246-7501-sw40YxyhG1>