I bumped into this. The following script will cause
a kernel panic.

jail -c vnet persist name=h0
jail -c vnet persist name=h1
ifconfig epair10 create
ifconfig epair10a vnet h0
ifconfig epair10b vnet h1
jexec h0 ifconfig lo0 127.1
jexec h1 ifconfig lo0 127.1
jexec h0 ifconfig epair10a inet6 127::1
sleep 10
jexec h1 ifconfig epair10b inet6 127::1

Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address   = 0x5732aff0
fault code              = supervisor read, page not present
instruction pointer     = 0x20:0xc08b3f30
stack pointer           = 0x28:0xe67ad7e8
frame pointer           = 0x28:0xe67ad808
code segment            = base 0x0, limit 0xfffff, type 0x1b
                        = DPL 0, pres 1, def32 1, gran 1
processor eflags        = interrupt enabled, resume, IOPL = 0
current process         = 1999 (ifconfig)
Physical memory: 1007 MB
Dumping 59 MB: 44 28 12

Reading symbols from /boot/kernel/if_bridge.ko...Reading symbols from 
Loaded symbols for /boot/kernel/if_bridge.ko
Reading symbols from /boot/kernel/bridgestp.ko...Reading symbols from 
Loaded symbols for /boot/kernel/bridgestp.ko
Reading symbols from /boot/kernel/if_epair.ko...Reading symbols from 
Loaded symbols for /boot/kernel/if_epair.ko
#0  doadump () at pcpu.h:231
231     pcpu.h: No such file or directory.
        in pcpu.h
(kgdb) #0  doadump () at pcpu.h:231
#1  0xc04d8319 in db_fncall (dummy1=1, dummy2=0, dummy3=-1056936096,
    dummy4=0xe67ad580 "") at /usr/src/sys/ddb/db_command.c:548
#2  0xc04d8711 in db_command (last_cmdp=0xc0e32a5c, cmd_table=0x0, dopager=1)
    at /usr/src/sys/ddb/db_command.c:445
#3  0xc04d886a in db_command_loop () at /usr/src/sys/ddb/db_command.c:498
#4  0xc04da78d in db_trap (type=12, code=0) at /usr/src/sys/ddb/db_main.c:229
#5  0xc08f749e in kdb_trap (type=12, code=0, tf=0xe67ad7a8)
    at /usr/src/sys/kern/subr_kdb.c:546
#6  0xc0c1539f in trap_fatal (frame=0xe67ad7a8, eva=1462939632)
    at /usr/src/sys/i386/i386/trap.c:970
#7  0xc0c155d0 in trap_pfault (frame=0xe67ad7a8, usermode=0, eva=1462939632)
    at /usr/src/sys/i386/i386/trap.c:892
#8  0xc0c15bd5 in trap (frame=0xe67ad7a8) at /usr/src/sys/i386/i386/trap.c:567
#9  0xc0bfee2c in calltrap () at /usr/src/sys/i386/i386/exception.s:168
#10 0xc08b3f30 in _mtx_lock_spin_flags (m=0x5732afe0, opts=0,
    file=0xc0cfce20 "/usr/src/sys/kern/kern_timeout.c", line=333)
    at /usr/src/sys/kern/kern_mutex.c:234
#11 0xc08d682c in callout_lock (c=0xc41bb720)
    at /usr/src/sys/kern/kern_timeout.c:333
#12 0xc08d6e1f in callout_reset_on (c=0xc41bb720, to_ticks=100,
    ftn=0xc0a8bff0 <nd6_dad_timer>, arg=0xc41bb700, cpu=-559038242)
    at /usr/src/sys/kern/kern_timeout.c:697
#13 0xc0a8b768 in nd6_dad_starttimer (dp=Variable "dp" is not available.
    at /usr/src/sys/netinet6/nd6_nbr.c:1169
#14 0xc0a8c6c9 in nd6_dad_start (ifa=0xc455d600, delay=0)
    at /usr/src/sys/netinet6/nd6_nbr.c:1260
#15 0xc0a7059e in in6_update_ifa (ifp=0xc4339400, ifra=0xc4555700,
    ia=0xc455d600, flags=0) at /usr/src/sys/netinet6/in6.c:1165
#16 0xc0a717c0 in in6_control (so=0xc46159c0, cmd=2155374874,
    data=0xc4555700 "epair10b", ifp=0xc4339400, td=0xc458b2d0)
    at /usr/src/sys/netinet6/in6.c:563

Thanks for any insights, Nikos
freebsd-virtualization@freebsd.org mailing list
To unsubscribe, send any mail to 

Reply via email to