[Bug 209682] [panic] [netinet] arptimer race

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Sat May 21 17:43:01 UTC 2016 

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=209682

            Bug ID: 209682
           Summary: [panic] [netinet] arptimer race
           Product: Base System
           Version: 11.0-CURRENT
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: kern
          Assignee: freebsd-bugs at FreeBSD.org
          Reporter: dchagin at FreeBSD.org

Fatal trap 9: general protection fault while in kernel mode
cpuid = 2; apic id = 02
instruction pointer     = 0x20:0xffffffff80774d1d
stack pointer           = 0x28:0xfffffe032dfe9420
frame pointer           = 0x28:0xfffffe032dfe94f0
code segment            = base 0x0, limit 0xfffff, type 0x1b
                        = DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags        = interrupt enabled, resume, IOPL = 0
current process         = 11 (swi4: clock (0))


#9  0xffffffff80cc289a in trap_check (frame=0xfffffe032dfe9370) at
/home/git/head/sys/amd64/amd64/trap.c:658
#10 <signal handler called>
#11 0xffffffff80774d1d in _rw_wlock_cookie (c=0xdeadc0dedeadc2de,
    file=0xffffffff80e40db0 "/home/git/head/sys/netinet/if_ether.c",
line=0x10a)
    at /home/git/head/sys/kern/kern_rwlock.c:264
#12 0xffffffff80a0c0a3 in arptimer (arg=0xfffff8000ffc3600) at
/home/git/head/sys/netinet/if_ether.c:266
#13 0xffffffff807a663c in softclock_call_cc (c=0xfffff8000ffc36b8,
cc=0xffffffff815f1280 <cc_cpu>, direct=0x0)
    at /home/git/head/sys/kern/kern_timeout.c:723
#14 0xffffffff807a6e6c in softclock (arg=0xffffffff815f1280 <cc_cpu>) at
/home/git/head/sys/kern/kern_timeout.c:861
#15 0xffffffff80724c48 in intr_event_execute_handlers (p=0xfffff80003df8000,
ie=0xfffff80003e17500)
    at /home/git/head/sys/kern/kern_intr.c:1262
#16 0xffffffff80725a37 in ithread_execute_handlers (p=0xfffff80003df8000,
ie=0xfffff80003e17500)
    at /home/git/head/sys/kern/kern_intr.c:1275
#17 0xffffffff80725866 in ithread_loop (arg=0xfffff80003e2e040) at
/home/git/head/sys/kern/kern_intr.c:1356
#18 0xffffffff807201f9 in fork_exit (callout=0xffffffff807256f0 <ithread_loop>,
arg=0xfffff80003e2e040,
    frame=0xfffffe032dfe9ac0) at /home/git/head/sys/kern/kern_fork.c:1035
#19 <signal handler called>

(kgdb) up 12
#12 0xffffffff80a0c0a3 in arptimer (arg=0xfffff8000ffc3600) at
/home/git/head/sys/netinet/if_ether.c:266
266             IF_AFDATA_LOCK(ifp);
(kgdb) l
261
262             callout_stop(&lle->lle_timer);
263
264             /* XXX: LOR avoidance. We still have ref on lle. */
265             LLE_WUNLOCK(lle);
266             IF_AFDATA_LOCK(ifp);
267             LLE_WLOCK(lle);
268
269             /* Guard against race with other llentry_free(). */
270             if (lle->la_flags & LLE_LINKED) {
(kgdb) p *ifp
Cannot access memory at address 0xdeadc0dedeadc0de

-- 
You are receiving this mail because:
You are the assignee for the bug.

More information about the freebsd-bugs mailing list