[Bug 254725] 13.0-RC4 crash tcp_lro
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Fri Apr 2 16:37:18 UTC 2021
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=254725
Bug ID: 254725
Summary: 13.0-RC4 crash tcp_lro
Product: Base System
Version: 13.0-STABLE
Hardware: Any
OS: Any
Status: New
Severity: Affects Only Me
Priority: ---
Component: kern
Assignee: bugs at FreeBSD.org
Reporter: chris at cretaforce.gr
I run 13.0-RC4 for few days and I got this panic:
Fatal trap 12: page fault while in kernel mode
cpuid = 7; apic id = 07
fault virtual address = 0x18
fault code = supervisor read data, page not present
instruction pointer = 0x20:0xffffffff80c9b7d8
stack pointer = 0x0:0xfffffe00357a51c0
frame pointer = 0x0:0xfffffe00357a5230
code segment = base 0x0, limit 0xfffff, type 0x1b
= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags = interrupt enabled, resume, IOPL = 0
current process = 0 (if_io_tqg_7)
trap number = 12
panic: page fault
cpuid = 7
time = 1617377524
KDB: stack backtrace:
#0 0xffffffff80c57345 at kdb_backtrace+0x65
#1 0xffffffff80c09d21 at vpanic+0x181
#2 0xffffffff80c09b93 at panic+0x43
#3 0xffffffff8108a187 at trap_fatal+0x387
#4 0xffffffff8108a1df at trap_pfault+0x4f
#5 0xffffffff8108983d at trap+0x27d
#6 0xffffffff81061768 at calltrap+0x8
#7 0xffffffff80dc8a33 at tcp_output+0x10b3
#8 0xffffffff80dc0fcb at tcp_do_segment+0x301b
#9 0xffffffff80dbd1ee at tcp_input+0xabe
#10 0xffffffff80dafbe5 at ip_input+0x125
#11 0xffffffff80d3f2ca at netisr_dispatch_src+0xca
#12 0xffffffff80d23a58 at ether_demux+0x148
#13 0xffffffff80d24ddc at ether_nh_input+0x34c
#14 0xffffffff80d3f2ca at netisr_dispatch_src+0xca
#15 0xffffffff80d23ea9 at ether_input+0x69
#16 0xffffffff80dc6a61 at tcp_flush_out_le+0x221
#17 0xffffffff80dc67fd at tcp_lro_flush+0x2ad
Uptime: 2d15h58m1s
Dumping 2453 out of 32505 MB:..1%..11%..21%..31%..41%..51%..61%..71%..81%..91%
__curthread () at /usr/src/sys/amd64/include/pcpu_aux.h:55
55 __asm("movq %%gs:%P1,%0" : "=r" (td) : "n" (offsetof(struct
pcpu,
(kgdb) #0 __curthread () at /usr/src/sys/amd64/include/pcpu_aux.h:55
#1 doadump (textdump=<optimized out>)
at /usr/src/sys/kern/kern_shutdown.c:399
#2 0xffffffff80c09916 in kern_reboot (howto=260)
at /usr/src/sys/kern/kern_shutdown.c:486
#3 0xffffffff80c09d90 in vpanic (fmt=<optimized out>, ap=<optimized out>)
at /usr/src/sys/kern/kern_shutdown.c:919
#4 0xffffffff80c09b93 in panic (fmt=<unavailable>)
at /usr/src/sys/kern/kern_shutdown.c:843
#5 0xffffffff8108a187 in trap_fatal (frame=0xfffffe00357a5100, eva=24)
at /usr/src/sys/amd64/amd64/trap.c:915
#6 0xffffffff8108a1df in trap_pfault (frame=frame at entry=0xfffffe00357a5100,
usermode=false, signo=<optimized out>, signo at entry=0x0,
ucode=<optimized out>, ucode at entry=0x0)
at /usr/src/sys/amd64/amd64/trap.c:732
#7 0xffffffff8108983d in trap (frame=0xfffffe00357a5100)
at /usr/src/sys/amd64/amd64/trap.c:398
#8 <signal handler called>
#9 m_copydata (m=m at entry=0x0, off=0, len=1, cp=<optimized out>)
at /usr/src/sys/kern/uipc_mbuf.c:656
#10 0xffffffff80dc8a33 in tcp_output (tp=0xfffffe013eac04d8)
at /usr/src/sys/netinet/tcp_output.c:1068
#11 0xffffffff80dc0fcb in tcp_do_segment (m=0xfffff804e393ca00,
th=<optimized out>, so=<optimized out>, tp=0xfffffe013eac04d8,
drop_hdrlen=64, tlen=<optimized out>, iptos=0 '\000')
at /usr/src/sys/sys/libkern.h:91
#12 0xffffffff80dbd1ee in tcp_input (mp=<optimized out>,
offp=<optimized out>, proto=<optimized out>)
at /usr/src/sys/netinet/tcp_input.c:1382
#13 0xffffffff80dafbe5 in ip_input (m=0x0)
at /usr/src/sys/netinet/ip_input.c:829
#14 0xffffffff80d3f2ca in netisr_dispatch_src (proto=1,
source=<optimized out>, source at entry=0, m=0xfffff801e35a659c)
at /usr/src/sys/net/netisr.c:1143
#15 0xffffffff80d3f5bf in netisr_dispatch (proto=0, m=0x1)
at /usr/src/sys/net/netisr.c:1234
#16 0xffffffff80d23a58 in ether_demux (ifp=ifp at entry=0xfffff80004075000,
m=0x0) at /usr/src/sys/net/if_ethersubr.c:923
#17 0xffffffff80d24ddc in ether_input_internal (ifp=0xfffff80004075000, m=0x0)
at /usr/src/sys/net/if_ethersubr.c:709
#18 ether_nh_input (m=<optimized out>) at /usr/src/sys/net/if_ethersubr.c:739
#19 0xffffffff80d3f2ca in netisr_dispatch_src (proto=proto at entry=5,
source=<optimized out>, source at entry=0, m=0xfffff801e35a659c,
m at entry=0xfffff804e393ca00) at /usr/src/sys/net/netisr.c:1143
#20 0xffffffff80d3f5bf in netisr_dispatch (proto=0, proto at entry=5, m=0x1,
m at entry=0xfffff804e393ca00) at /usr/src/sys/net/netisr.c:1234
#21 0xffffffff80d23ea9 in ether_input (ifp=<optimized out>,
m=0xfffff804e393ca00) at /usr/src/sys/net/if_ethersubr.c:830
#22 0xffffffff80dc6a61 in tcp_flush_out_le (tp=0x0,
lc=lc at entry=0xfffff8000405f830, le=le at entry=0xfffffe0104118498, locked=0)
at /usr/src/sys/netinet/tcp_lro.c:569
#23 0xffffffff80dc67fd in tcp_lro_flush (lc=lc at entry=0xfffff8000405f830,
le=0xfffffe0104118498) at /usr/src/sys/netinet/tcp_lro.c:978
#24 0xffffffff80dc6bab in tcp_lro_rx_done (lc=0xfffff8000405f830)
at /usr/src/sys/netinet/tcp_lro.c:356
#25 tcp_lro_flush_all (lc=lc at entry=0xfffff8000405f830)
at /usr/src/sys/netinet/tcp_lro.c:1123
#26 0xffffffff80d3ba22 in iflib_rxeof (rxq=<optimized out>,
rxq at entry=0xfffff8000405f800, budget=<optimized out>)
at /usr/src/sys/net/iflib.c:3017
#27 0xffffffff80d35d32 in _task_fn_rx (context=0xfffff8000405f800)
at /usr/src/sys/net/iflib.c:3949
#28 0xffffffff80c55dad in gtaskqueue_run_locked (
queue=queue at entry=0xfffff80003988800)
at /usr/src/sys/kern/subr_gtaskqueue.c:371
#29 0xffffffff80c55a4c in gtaskqueue_thread_loop (arg=<optimized out>,
arg at entry=0xfffffe00387e40b0) at /usr/src/sys/kern/subr_gtaskqueue.c:547
#30 0xffffffff80bc7c5e in fork_exit (
callout=0xffffffff80c559a0 <gtaskqueue_thread_loop>,
arg=0xfffffe00387e40b0, frame=0xfffffe00357a5b00)
at /usr/src/sys/kern/kern_fork.c:1069
#31 <signal handler called>
(kgdb)
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-bugs
mailing list