[Bug 259458] iflib_rxeof NULL pointer crash with vmxnet3 driver

From: <bugzilla-noreply_at_freebsd.org>
Date: Mon, 01 Nov 2021 09:46:28 UTC

--- Comment #13 from Andriy Gapon <avg@FreeBSD.org> ---
(In reply to Andriy Gapon from comment #12)
Applied the fix but still seeing variations of the crash.

The data I see makes me think that somehow concurrent calls to
iflib_fl_refill() for the same iflib_fl_t (free list) are happening.

One hypothetical possibility is that iflib_stop/iflib_fl_setup are not
sufficiently synchronized with the taskqueue threads (that call _task_fn_rx). 
I am not familiar with grouptask / taskqgroup code, but I do not see any
drain-like calls.

So, I wonder if there could be a race between an enqueued task and the
stop/setup operations.

You are receiving this mail because:
You are the assignee for the bug.