[Bug 212872] Fatal trap 12: page fault while... | |supervisor read data, page not present | ipf_frag_lookup | bcmp

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Wed Sep 21 01:51:27 UTC 2016 

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=212872

            Bug ID: 212872
           Summary: Fatal trap 12: page fault while...  | |supervisor read
                    data, page not present | ipf_frag_lookup | bcmp
           Product: Base System
           Version: 10.3-RELEASE
          Hardware: amd64
                OS: Any
            Status: New
          Severity: Affects Only Me
          Priority: ---
         Component: kern
          Assignee: freebsd-bugs at FreeBSD.org
          Reporter: alexmontoanelli at gmail.com
                CC: freebsd-amd64 at FreeBSD.org
                CC: freebsd-amd64 at FreeBSD.org

This is a NAT machine.

Working with ipnat.

Around 45k nat sessions.


Full dump here;
http://pastebin.com/Lem2qGf8

Summary:
nat1 dumped core - see /var/crash/vmcore.4

Tue Sep 20 18:24:24 BRT 2016

FreeBSD nat1 10.3-RELEASE FreeBSD 10.3-RELEASE #0 r297264: Fri Mar 25 02:10:02
UTC 2016     root at releng1.nyi.freebsd.org:/usr/obj/usr/src/sys/GENERIC  amd64

panic: page fault

GNU gdb 6.1.1 [FreeBSD]
Copyright 2004 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "amd64-marcel-freebsd"...

Unread portion of the kernel message buffer:
[301648] 
[301648] 
[301648] Fatal trap 12: page fault while in kernel mode
[301648] cpuid = 3; apic id = 06
[301648] fault virtual address  = 0x100e050130
[301648] fault code             = supervisor read data, page not present
[301648] instruction pointer    = 0x20:0xffffffff80d53bac
[301648] stack pointer          = 0x28:0xfffffe01ef7093b0
[301648] frame pointer          = 0x28:0xfffffe01ef7093c0
[301648] code segment           = base 0x0, limit 0xfffff, type 0x1b
[301648]                        = DPL 0, pres 1, long 1, def32 0, gran 1
[301648] processor eflags       = interrupt enabled, resume, IOPL = 0
[301648] current process                = 12 (irq269: igb2:que 3)
[301648] trap number            = 12
[301648] panic: page fault
[301648] cpuid = 3
[301648] KDB: stack backtrace:
[301648] #0 0xffffffff8098e390 at kdb_backtrace+0x60
[301648] #1 0xffffffff80951066 at vpanic+0x126
[301648] #2 0xffffffff80950f33 at panic+0x43
[301648] #3 0xffffffff80d55f7b at trap_fatal+0x36b
[301648] #4 0xffffffff80d5627d at trap_pfault+0x2ed
[301648] #5 0xffffffff80d558fa at trap+0x47a
[301648] #6 0xffffffff80d3b8d2 at calltrap+0x8
[301648] #7 0xffffffff81e24402 at ipf_frag_lookup+0x112
[301648] #8 0xffffffff81e2427a at ipf_frag_natknown+0x4a
[301648] #9 0xffffffff81e21790 at ipf_nat_checkin+0x150
[301648] #10 0xffffffff81e3d8ff at ipf_check+0x2af
[301648] #11 0xffffffff80a24ef4 at pfil_run_hooks+0x84
[301648] #12 0xffffffff80a849be at ip_input+0x2fe
[301648] #13 0xffffffff80a24092 at netisr_dispatch_src+0x62
[301648] #14 0xffffffff80a1b456 at ether_demux+0x126
[301648] #15 0xffffffff80a1c0fe at ether_nh_input+0x35e
[301648] #16 0xffffffff80a24092 at netisr_dispatch_src+0x62
[301648] #17 0xffffffff80a1b3c1 at ether_demux+0x91
[301648] Uptime: 3d11h47m28s
[301649] Dumping 894 out of 8152 MB: (CTRL-C to abort)
..2%..11%..22%..31%..42%..51%..61%..72%..81%..92%

Reading symbols from /boot/kernel/zfs.ko.symbols...done.
Loaded symbols for /boot/kernel/zfs.ko.symbols
Reading symbols from /boot/kernel/opensolaris.ko.symbols...done.
Loaded symbols for /boot/kernel/opensolaris.ko.symbols
Reading symbols from /boot/kernel/if_lagg.ko.symbols...done.
Loaded symbols for /boot/kernel/if_lagg.ko.symbols
Reading symbols from /boot/kernel/fdescfs.ko.symbols...done.
Loaded symbols for /boot/kernel/fdescfs.ko.symbols
Reading symbols from /boot/kernel/ipl.ko.symbols...done.
Loaded symbols for /boot/kernel/ipl.ko.symbols
Reading symbols from /boot/kernel/ipfw.ko.symbols...done.
Loaded symbols for /boot/kernel/ipfw.ko.symbols
#0  doadump (textdump=<value optimized out>) at pcpu.h:219
219     pcpu.h: No such file or directory.
        in pcpu.h
(kgdb) #0  doadump (textdump=<value optimized out>) at pcpu.h:219
#1  0xffffffff80950cc2 in kern_reboot (howto=260)
    at /usr/src/sys/kern/kern_shutdown.c:486
#2  0xffffffff809510a5 in vpanic (fmt=<value optimized out>, 
    ap=<value optimized out>) at /usr/src/sys/kern/kern_shutdown.c:889
#3  0xffffffff80950f33 in panic (fmt=0x0)
    at /usr/src/sys/kern/kern_shutdown.c:818
#4  0xffffffff80d55f7b in trap_fatal (frame=<value optimized out>, 
    eva=<value optimized out>) at /usr/src/sys/amd64/amd64/trap.c:858
#5  0xffffffff80d5627d in trap_pfault (frame=0xfffffe01ef709300, 
    usermode=<value optimized out>) at /usr/src/sys/amd64/amd64/trap.c:681
#6  0xffffffff80d558fa in trap (frame=0xfffffe01ef709300)
    at /usr/src/sys/amd64/amd64/trap.c:447
#7  0xffffffff80d3b8d2 in calltrap ()
    at /usr/src/sys/amd64/amd64/exception.S:236
#8  0xffffffff80d53bac in bcmp () at /usr/src/sys/amd64/amd64/support.S:87
#9  0xffffffff81e24402 in ipf_frag_lookup ()
    at
/usr/src/sys/modules/ipfilter/../../contrib/ipfilter/netinet/ip_frag.c:697
#10 0xffffffff81e2427a in ipf_frag_natknown (fin=<value optimized out>)
    at
/usr/src/sys/modules/ipfilter/../../contrib/ipfilter/netinet/ip_frag.c:813
#11 0xffffffff81e21790 in ipf_nat_checkin (fin=0xfffffe01ef7095a8, 
    passp=0xfffffe01ef7095a4)
    at
/usr/src/sys/modules/ipfilter/../../contrib/ipfilter/netinet/ip_nat.c:5421
#12 0xffffffff81e3d8ff in ipf_check (ctx=0xffffffff81e5d848, 
    ip=<value optimized out>, hlen=<value optimized out>, 
    ifp=<value optimized out>, out=0, mp=0xfffffe01ef709708)
    at /usr/src/sys/modules/ipfilter/../../contrib/ipfilter/netinet/fil.c:3002
#13 0xffffffff80a24ef4 in pfil_run_hooks (ph=0xffffffff816a6e88, 
    mp=0xfffffe01ef709790, ifp=0xfffff80024c67800, dir=1, inp=0x0)
    at /usr/src/sys/net/pfil.c:82
#14 0xffffffff80a849be in ip_input (m=0xfffff8021a1deb00)
    at /usr/src/sys/netinet/ip_input.c:488
#15 0xffffffff80a24092 in netisr_dispatch_src (proto=<value optimized out>, 
    source=<value optimized out>, m=0x1) at /usr/src/sys/net/netisr.c:976
#16 0xffffffff80a1b456 in ether_demux (ifp=<value optimized out>, 
    m=0xfffff8021a1deb00) at /usr/src/sys/net/if_ethersubr.c:851
#17 0xffffffff80a1c0fe in ether_nh_input (m=<value optimized out>)
    at /usr/src/sys/net/if_ethersubr.c:646
#18 0xffffffff80a24092 in netisr_dispatch_src (proto=<value optimized out>, 
    source=<value optimized out>, m=0x1) at /usr/src/sys/net/netisr.c:976
#19 0xffffffff80a1b3c1 in ether_demux (ifp=0xfffff80024f2c000, 
    m=0xfffff8021a1deb00) at /usr/src/sys/net/if_ethersubr.c:760
#20 0xffffffff80a1c0fe in ether_nh_input (m=<value optimized out>)
    at /usr/src/sys/net/if_ethersubr.c:646
#21 0xffffffff80a24092 in netisr_dispatch_src (proto=<value optimized out>, 
    source=<value optimized out>, m=0x1) at /usr/src/sys/net/netisr.c:976
#22 0xffffffff804f859c in igb_rxeof (count=99)
    at /usr/src/sys/dev/e1000/if_igb.c:4746
#23 0xffffffff804f8c41 in igb_msix_que (arg=0xfffff80005455538)
    at /usr/src/sys/dev/e1000/if_igb.c:1566
#24 0xffffffff8091c99b in intr_event_execute_handlers (
    p=<value optimized out>, ie=0xfffff80005453800)
    at /usr/src/sys/kern/kern_intr.c:1264
#25 0xffffffff8091cde6 in ithread_loop (arg=0xfffff8000545eea0)
    at /usr/src/sys/kern/kern_intr.c:1277
#26 0xffffffff8091a4ea in fork_exit (
    callout=0xffffffff8091cd50 <ithread_loop>, arg=0xfffff8000545eea0, 
    frame=0xfffffe01ef709c00) at /usr/src/sys/kern/kern_fork.c:1027
#27 0xffffffff80d3be0e in fork_trampoline ()
    at /usr/src/sys/amd64/amd64/exception.S:611
#28 0x0000000000000000 in ?? ()
Current language:  auto; currently minimal
(kgdb) 

------------------------------------------------------------

-- 
You are receiving this mail because:
You are the assignee for the bug.

More information about the freebsd-bugs mailing list