233617 – kldunload if_ix could crash system in iflib

Bug 233617 - kldunload if_ix could crash system in iflib

Summary: kldunload if_ix could crash system in iflib

Status:	Open

Alias:	None

Product:	Base System
Classification:	Unclassified
Component:	kern (show other bugs)
Version:	CURRENT
Hardware:	amd64 Any

Importance:	--- Affects Only Me
Assignee:	freebsd-net (Nobody)

URL:
Keywords:	crash, iflib

Depends on:
Blocks:

Reported:	2018-11-28 19:22 UTC by Lev A. Serebryakov
Modified:	2023-10-01 13:56 UTC (History)
CC List:	2 users (show)

See Also:	233114

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Lev A. Serebryakov freebsd_committer

2018-11-28 19:22:13 UTC

I need to load and unload if_ix.ko due to its problems (PR233114).
After several unloads and loads system crashes with:

Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address	= 0x64
fault code		= supervisor read data, page not present
instruction pointer	= 0x20:0xffffffff805e504d
stack pointer	        = 0x28:0xfffffe00402f5790
frame pointer	        = 0x28:0xfffffe00402f57a0
code segment		= base rx0, limit 0xfffff, type 0x1b
			= DPL 0, pres 1, long 1, def32 0, gran 1
processor eflags	= resume, IOPL = 0
current process		= 10 (idle: cpu0)
trap number		= 12
panic: page fault
cpuid = 0
time = 1543431661
KDB: stack backtrace:
db_trace_self_wrapper() at db_trace_self_wrapper+0x2b/frame 0xfffffe00402f5440
vpanic() at vpanic+0x1a3/frame 0xfffffe00402f54a0
panic() at panic+0x43/frame 0xfffffe00402f5500
trap_fatal() at trap_fatal+0x35f/frame 0xfffffe00402f5550
trap_pfault() at trap_pfault+0x49/frame 0xfffffe00402f55b0
trap() at trap+0x29e/frame 0xfffffe00402f56c0
calltrap() at calltrap+0x8/frame 0xfffffe00402f56c0
--- trap 0xc, rip = 0xffffffff805e504d, rsp = 0xfffffe00402f5790, rbp = 0xfffffe00402f57a0 ---
grouptaskqueue_enqueue() at grouptaskqueue_enqueue+0xd/frame 0xfffffe00402f57a0
iflib_fast_intr() at iflib_fast_intr+0x33/frame 0xfffffe00402f57c0
intr_event_handle() at intr_event_handle+0xbe/frame 0xfffffe00402f5810
intr_execute_handlers() at intr_execute_handlers+0x58/frame 0xfffffe00402f5840
lapic_handle_intr() at lapic_handle_intr+0x44/frame 0xfffffe00402f5860
Xapic_isr1() at Xapic_isr1+0xd9/frame 0xfffffe00402f5860
--- interrupt, rip = 0xffffffff8037699c, rsp = 0xfffffe00402f5930, rbp = 0xfffffe00402f5970 ---
acpi_cpu_idle() at acpi_cpu_idle+0x2bc/frame 0xfffffe00402f5970
cpu_idle_acpi() at cpu_idle_acpi+0x3f/frame 0xfffffe00402f5990
cpu_idle() at cpu_idle+0xa7/frame 0xfffffe00402f59b0
sched_idletd() at sched_idletd+0x515/frame 0xfffffe00402f5a70
fork_exit() at fork_exit+0x83/frame 0xfffffe00402f5ab0
fork_trampoline() at fork_trampoline+0xe/frame 0xfffffe00402f5ab0
--- trap 0, rip = 0, rsp = 0, rbp = 0 ---
Uptime: 3h26m47s
Dumping 935 out of 8144 MB:..2%..11%..21%..31%..42%..52%..62%..71%..81%..91%

Comment 1 Graham Perrin 2023-10-01 13:56:49 UTC

Thank you,

(In reply to Lev A. Serebryakov from comment #0)

I see that bug 233114 was fixed, is this kernel panic reproducible with any recently active branch of FreeBSD?