[Bug 273250] iwm0 panics on FreeBSD 14.0-CURRENT #0 main-n261772-3a3c9242739e
- Reply: bugzilla-noreply_a_freebsd.org: "[Bug 273250] iwm0 panics on FreeBSD 14.0-CURRENT #0 main-n261772-3a3c9242739e"
- Reply: bugzilla-noreply_a_freebsd.org: "[Bug 273250] iwm0 panics on FreeBSD 14.0-CURRENT #0 main-n261772-3a3c9242739e"
- Reply: bugzilla-noreply_a_freebsd.org: "[Bug 273250] iwm0 panics on FreeBSD 14.0-CURRENT #0 main-n261772-3a3c9242739e"
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Sun, 20 Aug 2023 21:32:54 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=273250 Bug ID: 273250 Summary: iwm0 panics on FreeBSD 14.0-CURRENT #0 main-n261772-3a3c9242739e Product: Base System Version: CURRENT Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: wireless Assignee: wireless@FreeBSD.org Reporter: vidwer+fbsdbugs@gmail.com An excerpt from /var/crash/core.txt.0: iwm0: iwm_bring_down_firmware: Failed to remove station: 35 iwm0: iwm_mac_ctxt_send_cmd: Failed to send MAC context (action:2): 35 iwm0: iwm_bring_down_firmware: Failed to change mac context: 35 iwm0: Failed to remove station. Id=0 iwm0: iwm_bring_down_firmware: Failed to remove station id: 35 iwm0: iwm_update_quotas: Failed to send quota: 35 iwm0: iwm_bring_down_firmware: Failed to update PHY quota: 35 Fatal trap 12: page fault while in kernel mode cpuid = 3; apic id = 13 fault virtual address = 0xfffff80280000000 fault code = supervisor read data, page not present instruction pointer = 0x20:0xffffffff804a669e stack pointer = 0x28:0xfffffe008e50e970 frame pointer = 0x28:0xfffffe008e50e9c0 code segment = base 0x0, limit 0xfffff, type 0x1b = DPL 0, pres 1, long 1, def32 0, gran 1 processor eflags = interrupt enabled, resume, IOPL = 0 current process = 12 (irq27: iwm0) rdi: cb19a6d2 rsi: a2 rdx: 18f2e93d rcx: 8dc4fc2c r8: ea r9: fffff80280000004 rax: 14d77bdf rbx: 5c268c7 rbp: fffffe008e50e9c0 r10: 5d r11: a4 r12: 63 r13: 93 r14: 46 r15: a71c trap number = 12 panic: page fault cpuid = 3 time = 1692562496 KDB: stack backtrace: db_trace_self_wrapper() at db_trace_self_wrapper+0x2b/frame 0xfffffe008e50e730 vpanic() at vpanic+0x152/frame 0xfffffe008e50e780 panic() at panic+0x43/frame 0xfffffe008e50e7e0 trap_fatal() at trap_fatal+0x409/frame 0xfffffe008e50e840 trap_pfault() at trap_pfault+0xab/frame 0xfffffe008e50e8a0 calltrap() at calltrap+0x8/frame 0xfffffe008e50e8a0 --- trap 0xc, rip = 0xffffffff804a669e, rsp = 0xfffffe008e50e970, rbp = 0xfffffe008e50e9c0 --- rijndaelEncrypt() at rijndaelEncrypt+0x21e/frame 0xfffffe008e50e9c0 ccmp_decap() at ccmp_decap+0x427/frame 0xfffffe008e50ead0 ieee80211_crypto_decap() at ieee80211_crypto_decap+0x120/frame 0xfffffe008e50eb20 sta_input() at sta_input+0x565/frame 0xfffffe008e50ebd0 ieee80211_input_mimo() at ieee80211_input_mimo+0x203/frame 0xfffffe008e50ec80 iwm_rx_mpdu() at iwm_rx_mpdu+0x70b/frame 0xfffffe008e50ed60 iwm_intr() at iwm_intr+0xd52/frame 0xfffffe008e50ee60 ithread_loop() at ithread_loop+0x276/frame 0xfffffe008e50eef0 fork_exit() at fork_exit+0x80/frame 0xfffffe008e50ef30 fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe008e50ef30 --- trap 0, rip = 0, rsp = 0, rbp = 0 --- KDB: enter: panic __curthread () at /usr/src/sys/amd64/include/pcpu_aux.h:59 warning: Source file is more recent than executable. 59 __asm("movq %%gs:%P1,%0" : "=r" (td) : "n" (offsetof(struct pcpu, (kgdb) #0 __curthread () at /usr/src/sys/amd64/include/pcpu_aux.h:59 #1 doadump (textdump=textdump@entry=0) at /usr/src/sys/kern/kern_shutdown.c:407 #2 0xffffffff804b376a in db_dump (dummy=<optimized out>, dummy2=<optimized out>, dummy3=<optimized out>, dummy4=<optimized out>) at /usr/src/sys/ddb/db_command.c:593 #3 0xffffffff804b356d in db_command (last_cmdp=<optimized out>, cmd_table=<optimized out>, dopager=true) at /usr/src/sys/ddb/db_command.c:506 #4 0xffffffff804b323d in db_command_loop () at /usr/src/sys/ddb/db_command.c:553 #5 0xffffffff804b68f6 in db_trap (type=<optimized out>, code=<optimized out>) at /usr/src/sys/ddb/db_main.c:270 #6 0xffffffff80c3ccee in kdb_trap (type=type@entry=3, code=code@entry=0, tf=tf@entry=0xfffffe008e50e670) at /usr/src/sys/kern/subr_kdb.c:745 #7 0xffffffff810e26a6 in trap (frame=0xfffffe008e50e670) at /usr/src/sys/amd64/amd64/trap.c:610 #8 <signal handler called> #9 kdb_enter (why=<optimized out>, msg=<optimized out>) at /usr/src/sys/kern/subr_kdb.c:509 #10 0xffffffff80bee153 in vpanic (fmt=<optimized out>, ap=ap@entry=0xfffffe008e50e7c0) at /usr/src/sys/kern/kern_shutdown.c:960 #11 0xffffffff80bedf13 in panic ( fmt=0xffffffff81e852f0 <cnputs_mtx> "q\247\035\201\377\377\377\377") at /usr/src/sys/kern/kern_shutdown.c:896 #12 0xffffffff810e2b39 in trap_fatal (frame=0xfffffe008e50e8b0, eva=18446735288353947648) at /usr/src/sys/amd64/amd64/trap.c:954 #13 0xffffffff810e2beb in trap_pfault (frame=0xfffffe008e50e8b0, usermode=false, signo=<optimized out>, ucode=<optimized out>) at /usr/src/sys/amd64/amd64/trap.c:762 #14 <signal handler called> #15 rijndaelEncrypt (rk=0xfffff8027ffffff8, Nr=<optimized out>, pt=pt@entry=0xfffffe008e50ea50 "\024\202\372ɀ\232s6 >\244]\350\247\317Gb[~nRõ\234\061U\037\ng\020\327\\\001\003\304\353\071R\240\262", ct=ct@entry=0xfffffe008e50ea50 "\024\202\372ɀ\232s6 >\244]\350\247\317Gb[~nRõ\234\061U\037\ng\020\327\\\001\003\304\353\071R\240\262") at /usr/src/sys/crypto/rijndael/rijndael-alg-fst.c:1000 #16 0xffffffff804a7c77 in rijndael_encrypt (ctx=ctx@entry=0xfffff8010de2e410, src=0x18f2e93d <error: Cannot access memory at address 0x18f2e93d>, src@entry=0xfffffe008e50ea50 "\024\202\372ɀ\232s6 >\244]\350\247\317Gb[~nRõ\234\061U\037\ng\020\327\\\001\003\304\353\071R\240\262", dst=0x8dc4fc2c <error: Cannot access memory at address 0x8dc4fc2c>, dst@entry=0xfffffe008e50ea50 "\024\202\372ɀ\232s6 >\244]\350\247\317Gb[~nRõ\234\061U\037\ng\020\327\\\001\003\304\353\071R\240\262") at /usr/src/sys/crypto/rijndael/rijndael-api.c:58 #17 0xffffffff80d67257 in ccmp_decrypt (key=0xfffffe00c99ad160, pn=2686165, m=0xfffff80014937700, hdrlen=<optimized out>) at /usr/src/sys/net80211/ieee80211_crypto_ccmp.c:623 #18 ccmp_decap (k=0xfffffe00c99ad160, m=0xfffff80014937700, hdrlen=<optimized out>) at /usr/src/sys/net80211/ieee80211_crypto_ccmp.c:284 #19 0xffffffff80d661e0 in ieee80211_crypto_decap ( ni=ni@entry=0xfffffe00c99ad000, m=m@entry=0xfffff80014937700, hdrlen=26, key=key@entry=0xfffffe008e50eb60) at /usr/src/sys/net80211/ieee80211_crypto.c:684 #20 0xffffffff80da1d15 in sta_input (ni=0xfffffe00c99ad000, m=0xfffff80014937700, rxs=<optimized out>, rssi=<optimized out>, nf=<optimized out>) at /usr/src/sys/net80211/ieee80211_sta.c:782 #21 0xffffffff80d7c9e3 in ieee80211_input_mimo ( ni=ni@entry=0xfffffe00c99ad000, m=m@entry=0xfffff80014937700) at /usr/src/sys/net80211/ieee80211_input.c:102 #22 0xffffffff82fa8c1b in iwm_rx_mpdu (sc=sc@entry=0xfffffe00c5428000, m=0xfffff80014937700, offset=offset@entry=2304, stolen=<optimized out>) at /usr/src/sys/dev/iwm/if_iwm.c:3404 #23 0xffffffff82fa73e2 in iwm_handle_rxb (m=0xfffff8019aa24d00, sc=<optimized out>) at /usr/src/sys/dev/iwm/if_iwm.c:5333 #24 iwm_notif_intr (sc=<optimized out>) at /usr/src/sys/dev/iwm/if_iwm.c:5612 #25 iwm_intr (arg=<optimized out>) at /usr/src/sys/dev/iwm/if_iwm.c:5757 #26 0xffffffff80ba8126 in intr_event_execute_handlers (ie=0xfffff80003c23200, p=<optimized out>) at /usr/src/sys/kern/kern_intr.c:1207 #27 ithread_execute_handlers (ie=0xfffff80003c23200, p=<optimized out>) at /usr/src/sys/kern/kern_intr.c:1220 #28 ithread_loop (arg=arg@entry=0xfffff80003981480) at /usr/src/sys/kern/kern_intr.c:1308 #29 0xffffffff80ba45c0 in fork_exit ( callout=0xffffffff80ba7eb0 <ithread_loop>, arg=0xfffff80003981480, frame=0xfffffe008e50ef40) at /usr/src/sys/kern/kern_fork.c:1102 #30 <signal handler called> (kgdb) -- You are receiving this mail because: You are the assignee for the bug.