[Bug 257195] [tcp] panic when RACK enabled

From: <bugzilla-noreply_at_freebsd.org>
Date: Thu, 15 Jul 2021 00:00:46 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=257195

--- Comment #4 from iron.udjin@gmail.com ---
One more trace (possibly more informative):


Fatal trap 12: page fault while in kernel mode
cpuid = 4; apic id = 04
fault virtual address   = 0xffffffff0000002a
fault code              = supervisor read data, page not present
instruction pointer     = 0x20:0xffffffff81608071
stack pointer          = 0x28:0xfffffe0202a186a0
frame pointer          = 0x28:0xfffffe0202a18990
code segment            = base 0x0, limit 0xfffff, type 0x1b
                        = DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags        = interrupt enabled, resume, IOPL = 0
current process         = 11 (swi1: hpts)
trap number             = 12
panic: page fault
cpuid = 4
time = 1626306588
KDB: stack backtrace:
#0 0xffffffff80646505 at kdb_backtrace+0x65
#1 0xffffffff80602661 at vpanic+0x181
#2 0xffffffff806024d3 at panic+0x43
#3 0xffffffff8085a857 at trap_fatal+0x387
#4 0xffffffff8085a8af at trap_pfault+0x4f
#5 0xffffffff80859f63 at trap+0x253
#6 0xffffffff80833d8e at calltrap+0x8
#7 0xffffffff8075fc10 at tcp_hptsi+0x7d0
#8 0xffffffff80760ddc at tcp_hpts_thread+0x11c
#9 0xffffffff805cb221 at ithread_loop+0x191
#10 0xffffffff805c8541 at fork_exit+0x71
#11 0xffffffff80834e1e at fork_trampoline+0xe
Uptime: 25s
Dumping 4278 out of 130940 MB:..1%..11%..21%..31%..41%..51%..61%..71%..81%..91%

__curthread () at /usr/src/sys/amd64/include/pcpu_aux.h:55
55              __asm("movq %%gs:%P1,%0" : "=r" (td) : "n" (offsetof(struct
pcpu,
(kgdb) bt
#0  __curthread () at /usr/src/sys/amd64/include/pcpu_aux.h:55
#1  doadump (textdump=<optimized out>) at /usr/src/sys/kern/kern_shutdown.c:399
#2  0xffffffff8060228e in kern_reboot (howto=260) at
/usr/src/sys/kern/kern_shutdown.c:486
#3  0xffffffff806026d0 in vpanic (fmt=<optimized out>, ap=<optimized out>) at
/usr/src/sys/kern/kern_shutdown.c:919
#4  0xffffffff806024d3 in panic (fmt=<unavailable>) at
/usr/src/sys/kern/kern_shutdown.c:843
#5  0xffffffff8085a857 in trap_fatal (frame=0xfffffe0202a185e0,
eva=18446744069414584362) at /usr/src/sys/amd64/amd64/trap.c:943
#6  0xffffffff8085a8af in trap_pfault (frame=frame@entry=0xfffffe0202a185e0,
usermode=false, signo=<optimized out>, signo@entry=0x0, ucode=<optimized out>,
ucode@entry=0x0) at /usr/src/sys/amd64/amd64/trap.c:760
#7  0xffffffff80859f63 in trap (frame=0xfffffe0202a185e0) at
/usr/src/sys/amd64/amd64/trap.c:438
#8  <signal handler called>
#9  0xffffffff81608071 in rack_output (tp=<optimized out>) at
/usr/src/sys/modules/tcp/rack/../../../netinet/tcp_stacks/rack.c:16540
#10 0xffffffff8075fc10 in tcp_hptsi (hpts=hpts@entry=0xfffff8010398c780,
from_callout=from_callout@entry=1) at /usr/src/sys/netinet/tcp_hpts.c:1662
#11 0xffffffff80760ddc in tcp_hpts_thread (ctx=0xfffff8010398c780) at
/usr/src/sys/netinet/tcp_hpts.c:2035
#12 0xffffffff805cb221 in intr_event_execute_handlers (p=<optimized out>,
ie=0xfffff8010398d500) at /usr/src/sys/kern/kern_intr.c:1168
#13 ithread_execute_handlers (p=<optimized out>, ie=0xfffff8010398d500) at
/usr/src/sys/kern/kern_intr.c:1181
#14 ithread_loop (arg=arg@entry=0xfffff8010397d680) at
/usr/src/sys/kern/kern_intr.c:1269
#15 0xffffffff805c8541 in fork_exit (callout=0xffffffff805cb090 <ithread_loop>,
arg=0xfffff8010397d680, frame=0xfffffe0202a18c00) at
/usr/src/sys/kern/kern_fork.c:1083
#16 <signal handler called>

-- 
You are receiving this mail because:
You are the assignee for the bug.