kern/170309: [double fault] stack overflow in VOP_IOCTL_APV()

Wed Aug 1 10:20:06 UTC 2012

>Number:         170309
>Category:       kern
>Synopsis:       [double fault] stack overflow in VOP_IOCTL_APV()
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    freebsd-bugs
>State:          open
>Quarter:        
>Keywords:       
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Wed Aug 01 10:20:05 UTC 2012
>Closed-Date:
>Last-Modified:
>Originator:     Andrey Zonov
>Release:        9.0-STABLE
>Organization:
>Environment:
FreeBSD [snip] 9.0-STABLE FreeBSD 9.0-STABLE #2 r234600M: Fri May 25 14:06:59 MSK 2012     root@[snip]:/usr/obj/usr/src/sys/stable9-amd64-dtrace  amd64
>Description:
Backtrace:

Tracing pid 20444 tid 6507799 td 0xfffffe02905bd8e0
kdb_enter() at kdb_enter+0x3b
panic() at panic+0x180
dblfault_handler() at dblfault_handler+0xa4
Xdblfault() at Xdblfault+0xa8
--- trap 0x17, rip = 0xffffffff808a7177, rsp = 0xffffff80002e7ff0, rbp = 0xffffff8bf1cd0000 ---
VOP_IOCTL_APV() at VOP_IOCTL_APV+0x7
VOP_IOCTL_APV() at VOP_IOCTL_APV+0x4a
VOP_IOCTL_APV() at VOP_IOCTL_APV+0x4a
..
VOP_IOCTL_APV() at VOP_IOCTL_APV+0x4a
VOP_IOCTL_APV() at VOP_IOCTL_APV+0x4a
VOP_IOCTL_APV() at VOP_IOCTL_APV+0x4a
vn_ioctl() at vn_ioctl+0xcc
kern_ioctl() at kern_ioctl+0x115
sys_ioctl() at sys_ioctl+0xfd
amd64_syscall() at amd64_syscall+0x5e3
Xfast_syscall() at Xfast_syscall+0xf7
--- syscall (54, FreeBSD ELF64, sys_ioctl), rip = 0x71cf294c, rsp = 0x7fffffffd408, rbp = 0x7201ab00 ---
>How-To-Repeat:

>Fix:


>Release-Note:
>Audit-Trail:
>Unformatted: