[Bug 267028] kernel panics when booting with both (zfs,ko or vboxnetflt,ko or acpi_wmi.ko) and amdgpu.ko

Go to: [ bottom of page ] [ top of archives ] [ this month ]
From: <bugzilla-noreply_at_freebsd.org>
Date: Wed, 11 Dec 2024 03:33:44 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=267028

--- Comment #207 from Mark Millard <marklmi26-fbsd@yahoo.com> ---
For the trap 9's:

instruction pointer = 0x2?:0xffffffff80?f?11?

Looking at the kernel code's for around:

0xffffffff80cf011? I find the code in that area is
in qsort. The old comment # 121 found such as well:

   0xffffffff80cf00ff <+6047>:  jae    0xffffffff80cf0470 <qsort+6928>
   0xffffffff80cf0105 <+6053>:  mov    %rbx,%rax
   0xffffffff80cf0108 <+6056>:  shr    $0x2,%rax
   0xffffffff80cf010c <+6060>:  mov    %rbx,%r15
   0xffffffff80cf010f <+6063>:  shr    $0x3,%r15
   0xffffffff80cf0113 <+6067>:  lea    -0x1(%rbx),%rdx
   0xffffffff80cf0117 <+6071>:  mov    %rdx,-0xa0(%rbp)
   0xffffffff80cf011e <+6078>:  lea    -0x1(%rax),%rdx
   0xffffffff80cf0122 <+6082>:  mov    %rdx,-0x98(%rbp)

(Not that the code details inside qsort match.)

Other alternatives:

(kgdb) disass 0xffffffff80cf8110
Dump of assembler code for function deflate_slow:
   0xffffffff80cf80f8 <+1048>:  je     0xffffffff80cf812b <deflate_slow+1099>
   0xffffffff80cf80fa <+1050>:  mov    0x18(%r13),%rdi
   0xffffffff80cf80fe <+1054>:  mov    0x20(%r15),%rsi
   0xffffffff80cf8102 <+1058>:  mov    %r12d,%edx
   0xffffffff80cf8105 <+1061>:  call   0xffffffff80cfeea0 <zmemcpy>
   0xffffffff80cf810a <+1066>:  mov    %r12d,%eax
   0xffffffff80cf810d <+1069>:  add    %rax,0x18(%r13)
   0xffffffff80cf8111 <+1073>:  add    %rax,0x20(%r15)
   0xffffffff80cf8115 <+1077>:  add    %rax,0x28(%r13)
   0xffffffff80cf8119 <+1081>:  sub    %r12d,0x20(%r13)
   0xffffffff80cf811d <+1085>:  sub    %rax,0x28(%r15)
   0xffffffff80cf8121 <+1089>:  jne    0xffffffff80cf812b <deflate_slow+1099>

(kgdb) disass 0xffffffff80ef0110
Dump of assembler code for function mac_vnode_check_write_impl:
   0xffffffff80ef00f7 <+71>:    je     0xffffffff80ef00e0
<mac_vnode_check_write_impl+48>
   0xffffffff80ef00f9 <+73>:    mov    0x188(%rbx),%rcx
   0xffffffff80ef0100 <+80>:    mov    %r12,%rdi
   0xffffffff80ef0103 <+83>:    mov    %r14,%rsi
   0xffffffff80ef0106 <+86>:    mov    %rbx,%rdx
   0xffffffff80ef0109 <+89>:    call   *%rax
   0xffffffff80ef010b <+91>:    mov    %eax,%edi
   0xffffffff80ef010d <+93>:    mov    %r15d,%esi
   0xffffffff80ef0110 <+96>:    call   0xffffffff80edefb0 <mac_error_select>
   0xffffffff80ef0115 <+101>:   mov    %eax,%r15d
   0xffffffff80ef0118 <+104>:   jmp    0xffffffff80ef00e0
<mac_vnode_check_write_impl+48>
   0xffffffff80ef011a <+106>:   cmpq   $0x0,0x11d029e(%rip)        #
0xffffffff820c03c0 <mac_policy_list>
   0xffffffff80ef0122 <+114>:   je     0xffffffff80ef017f
<mac_vnode_check_write_impl+207>


(kgdb) disass 0xffffffff80ef8110
Dump of assembler code for function ffs_blkfree_cg:
   0xffffffff80ef80fa <+106>:   jbe    0xffffffff80ef81aa <ffs_blkfree_cg+282>
   0xffffffff80ef8100 <+112>:   mov    %rdi,-0x30(%rbp)
   0xffffffff80ef8104 <+116>:   mov    0x38(%rax),%r15
   0xffffffff80ef8108 <+120>:   lea    -0x38(%rbp),%r8
   0xffffffff80ef810c <+124>:   lea    -0x98(%rbp),%r9
   0xffffffff80ef8113 <+131>:   mov    %rbx,%rdi
   0xffffffff80ef8116 <+134>:   mov    %r10,-0x58(%rbp)
   0xffffffff80ef811a <+138>:   mov    %r10,%rsi
   0xffffffff80ef811d <+141>:   mov    %rdx,-0x48(%rbp)
   0xffffffff80ef8121 <+145>:   mov    $0x80,%ecx

-- 
You are receiving this mail because:
You are on the CC list for the bug.