[Bug 260393] Page Fault tcp_output/tcp_input

Go to: [ bottom of page ] [ top of archives ] [ this month ]
From: <bugzilla-noreply_at_freebsd.org>
Date: Mon, 20 Dec 2021 07:11:41 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=260393

--- Comment #8 from Dobri Dobrev <ddobrev85@gmail.com> ---
(In reply to Michael Tuexen from comment #7)

For help, type "help".
Type "apropos word" to search for commands related to "word"...
Reading symbols from /boot/kernel/kernel...
Reading symbols from /usr/lib/debug//boot/kernel/kernel.debug...

Unread portion of the kernel message buffer:
[314230] processor eflags       = interrupt enabled, resume, IOPL = 0
[314230] current process                = 0 (if_io_tqg_1)
[314230] trap number            = 12
[314230] panic: page fault
[314230] cpuid = 1
[314230] time = 1639952536
[314230] KDB: stack backtrace:
[314230] #0 0xffffffff80c60dd5 at kdb_backtrace+0x65
[314230] #1 0xffffffff80c1336f at vpanic+0x17f
[314230] #2 0xffffffff80c131e3 at panic+0x43
[314230] #3 0xffffffff810991b5 at trap_fatal+0x385
[314230] #4 0xffffffff8109920f at trap_pfault+0x4f
[314230] #5 0xffffffff810705e8 at calltrap+0x8
[314230] #6 0xffffffff80dd5fa9 at tcp_output+0x1339
[314230] #7 0xffffffff80dcd382 at tcp_do_segment+0x2902
[314230] #8 0xffffffff80dc9d41 at tcp_input_with_port+0xb61
[314230] #9 0xffffffff80dca9eb at tcp_input+0xb
[314230] #10 0xffffffff80dbc1bf at ip_input+0x11f
[314230] #11 0xffffffff80d491a9 at netisr_dispatch_src+0xb9
[314230] #12 0xffffffff80d2d128 at ether_demux+0x138
[314230] #13 0xffffffff80d2e4b5 at ether_nh_input+0x355
[314230] #14 0xffffffff80d491a9 at netisr_dispatch_src+0xb9
[314230] #15 0xffffffff80d2d559 at ether_input+0x69
[314230] #16 0xffffffff80d45617 at iflib_rxeof+0xc27
[314230] #17 0xffffffff80d3fc62 at _task_fn_rx+0x72
[314230] Uptime: 3d15h17m10s
[314230] Dumping 5461 out of 130927
MB:..1%..11%..21%..31%..41%..51%..61%..71%..81%..91%

__curthread () at /usr/src/sys/amd64/include/pcpu_aux.h:55
55              __asm("movq %%gs:%P1,%0" : "=r" (td) : "n" (offsetof(struct
pcpu,
(kgdb) where
#0  __curthread () at /usr/src/sys/amd64/include/pcpu_aux.h:55
#1  doadump (textdump=<optimized out>) at /usr/src/sys/kern/kern_shutdown.c:399
#2  0xffffffff80c12f6c in kern_reboot (howto=260) at
/usr/src/sys/kern/kern_shutdown.c:487
#3  0xffffffff80c133de in vpanic (fmt=0xffffffff81191bdd "%s", ap=<optimized
out>) at /usr/src/sys/kern/kern_shutdown.c:920
#4  0xffffffff80c131e3 in panic (fmt=<unavailable>) at
/usr/src/sys/kern/kern_shutdown.c:844
#5  0xffffffff810991b5 in trap_fatal (frame=0xfffffe00d3bfd5b0, eva=24) at
/usr/src/sys/amd64/amd64/trap.c:944
#6  0xffffffff8109920f in trap_pfault (frame=0xfffffe00d3bfd5b0,
usermode=false, signo=<optimized out>, ucode=<optimized out>) at
/usr/src/sys/amd64/amd64/trap.c:763
#7  <signal handler called>
#8  m_copydata (m=0x0, m@entry=0xfffff8010ee80d00, off=0, len=1, cp=<optimized
out>) at /usr/src/sys/kern/uipc_mbuf.c:657
#9  0xffffffff80dd5fa9 in tcp_output (tp=<optimized out>) at
/usr/src/sys/netinet/tcp_output.c:1081
#10 0xffffffff80dcd382 in tcp_do_segment (m=<optimized out>, th=<optimized
out>, so=<optimized out>, tp=0xfffffe0251638870, drop_hdrlen=40,
tlen=<optimized out>, iptos=0 '\000')
    at /usr/src/sys/netinet/tcp_input.c:2822
#11 0xffffffff80dc9d41 in tcp_input_with_port (mp=<optimized out>,
offp=<optimized out>, proto=<optimized out>, port=port@entry=0) at
/usr/src/sys/netinet/tcp_input.c:1400
#12 0xffffffff80dca9eb in tcp_input (mp=0xfffff8010ee80d00, offp=0x0, proto=1)
at /usr/src/sys/netinet/tcp_input.c:1496
#13 0xffffffff80dbc1bf in ip_input (m=0x0) at
/usr/src/sys/netinet/ip_input.c:834
#14 0xffffffff80d491a9 in netisr_dispatch_src (proto=1, source=source@entry=0,
m=0xfffff8015b58d700) at /usr/src/sys/net/netisr.c:1143
#15 0xffffffff80d4957f in netisr_dispatch (proto=250088704, m=0x1) at
/usr/src/sys/net/netisr.c:1234
#16 0xffffffff80d2d128 in ether_demux (ifp=ifp@entry=0xfffff80105343000, m=0x0)
at /usr/src/sys/net/if_ethersubr.c:921
#17 0xffffffff80d2e4b5 in ether_input_internal (ifp=0xfffff80105343000, m=0x0)
at /usr/src/sys/net/if_ethersubr.c:707
#18 ether_nh_input (m=<optimized out>) at /usr/src/sys/net/if_ethersubr.c:737
#19 0xffffffff80d491a9 in netisr_dispatch_src (proto=proto@entry=5,
source=source@entry=0, m=m@entry=0xfffff8015b58d700) at
/usr/src/sys/net/netisr.c:1143
#20 0xffffffff80d4957f in netisr_dispatch (proto=250088704, proto@entry=5,
m=0x1, m@entry=0xfffff8015b58d700) at /usr/src/sys/net/netisr.c:1234
#21 0xffffffff80d2d559 in ether_input (ifp=<optimized out>,
m=0xfffff8015b58d700) at /usr/src/sys/net/if_ethersubr.c:828
#22 0xffffffff80d45617 in iflib_rxeof (rxq=<optimized out>,
rxq@entry=0xfffffe00d68b6340, budget=<optimized out>) at
/usr/src/sys/net/iflib.c:3046
#23 0xffffffff80d3fc62 in _task_fn_rx (context=0xfffffe00d68b6340) at
/usr/src/sys/net/iflib.c:3989
#24 0xffffffff80c5f80d in gtaskqueue_run_locked
(queue=queue@entry=0xfffff80103920b00) at
/usr/src/sys/kern/subr_gtaskqueue.c:371
#25 0xffffffff80c5f482 in gtaskqueue_thread_loop (arg=<optimized out>,
arg@entry=0xfffffe00d6bd1020) at /usr/src/sys/kern/subr_gtaskqueue.c:547
#26 0xffffffff80bd053e in fork_exit (callout=0xffffffff80c5f3c0
<gtaskqueue_thread_loop>, arg=0xfffffe00d6bd1020, frame=0xfffffe00d3bfdf40) at
/usr/src/sys/kern/kern_fork.c:1092
#27 <signal handler called>
#28 mi_startup () at /usr/src/sys/kern/init_main.c:322
Backtrace stopped: Cannot access memory at address 0xb
(kgdb) print *tcp_output
$1 = {int (struct tcpcb *)} 0xffffffff80dd4c70 <tcp_output>
(kgdb) print *m_copydata
$2 = {void (const struct mbuf *, int, int, caddr_t)} 0xffffffff80ca5bd0
<m_copydata>
(kgdb) print *tcp_do_segment
$3 = {void (struct mbuf *, struct tcphdr *, struct socket *, struct tcpcb *,
int, int, uint8_t)} 0xffffffff80dcaa80 <tcp_do_segment>
(kgdb)

-- 
You are receiving this mail because:
You are the assignee for the bug.