Re: kernel panic by enabling net.inet.ip.random_id

From: Adrian Chadd <adrian.chadd_at_gmail.com> Date: Tue, 5 Jan 2016 18:06:41 -0800 · This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:41:02 UTC

looks like a null pointer deference. What's kgdb show at that IP?

-a

On 5 January 2016 at 17:57, Shawn Webb <shawn.webb_at_hardenedbsd.org> wrote:
> Hey All,
>
> Here's a kernel panic I'm experiencing by enabling net.inet.ip.random_id
> at boot.
>
> I'm on latest HEAD on amd64 in bhyve. I'll soon-ish be testing on native
> hardware with VIMAGE enabled.
>
> === Begin Log ===
> Kernel page fault with the following non-sleepable locks held:
> exclusive sleep mutex ip_id_mtx (ip_id_mtx) r = 0 (0xffffffff81c54830) locked _at_ /usr/src/sys/netinet/ip_id.c:227
> stack backtrace:
> #0 0xffffffff80a79620 at witness_debugger+0x70
> #1 0xffffffff80a7a937 at witness_warn+0x3d7
> #2 0xffffffff80e6b887 at trap_pfault+0x57
> #3 0xffffffff80e6b15f at trap+0x4bf
> #4 0xffffffff80e4af97 at calltrap+0x8
> #5 0xffffffff80b6c41b at ip_output+0x16b
> #6 0xffffffff80b68e82 at icmp_reflect+0x5b2
> #7 0xffffffff80b6883f at icmp_error+0x46f
> #8 0xffffffff80beeb12 at udp_input+0x982
> #9 0xffffffff80b69d1d at ip_input+0x17d
> #10 0xffffffff80b08ba1 at netisr_dispatch_src+0x81
> #11 0xffffffff80afecce at ether_demux+0x15e
> #12 0xffffffff80affa14 at ether_nh_input+0x344
> #13 0xffffffff80b08ba1 at netisr_dispatch_src+0x81
> #14 0xffffffff80afefcf at ether_input+0x4f
> #15 0xffffffff8089a5c3 at vtnet_rxq_eof+0x823
> #16 0xffffffff8089b2ce at vtnet_rx_vq_intr+0x4e
> #17 0xffffffff809e9ba6 at intr_event_execute_handlers+0x96
>
>
> Fatal trap 12: page fault while in kernel mode
> cpuid = 6; apic id = 06
> fault virtual address   = 0x5bd
> fault code              = supervisor read data, page not present
> instruction pointer     = 0x20:0xffffffff80b5de9e
> stack pointer           = 0x28:0xfffffe02b8d483e0
> frame pointer           = 0x28:0xfffffe02b8d48410
> code segment            = base 0x0, limit 0xfffff, type 0x1b
>                         = DPL 0, pres 1, long 1, def32 0, gran 1
> processor eflags        = interrupt enabled, resume, IOPL = 0
> current process         = 12 (irq265: virtio_pci0)
> [ thread pid 12 tid 100040 ]
> Stopped at      ip_fillid+0x8e: movzbl  (%rax,%rcx,1),%esi
> === End Log ===
>
> Thanks,
>
> --
> Shawn Webb
> HardenedBSD
>
> GPG Key ID:          0x6A84658F52456EEE
> GPG Key Fingerprint: 2ABA B6BD EF6A F486 BE89  3D9E 6A84 658F 5245 6EEE