From owner-freebsd-virtualization@FreeBSD.ORG  Thu Dec 30 00:30:43 2010
Return-Path: <owner-freebsd-virtualization@FreeBSD.ORG>
Delivered-To: freebsd-virtualization@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id D6F72106566C
	for <freebsd-virtualization@freebsd.org>;
	Thu, 30 Dec 2010 00:30:43 +0000 (UTC)
	(envelope-from nvass9573@gmx.com)
Received: from mailout-eu.gmx.com (mailout-eu.gmx.com [213.165.64.42])
	by mx1.freebsd.org (Postfix) with SMTP id 4CA398FC18
	for <freebsd-virtualization@freebsd.org>;
	Thu, 30 Dec 2010 00:30:43 +0000 (UTC)
Received: (qmail 31583 invoked by uid 0); 30 Dec 2010 00:30:41 -0000
Received: from 91.140.83.232 by rms-eu005.v300.gmx.net with HTTP
Content-Type: text/plain; charset="utf-8"
Date: Thu, 30 Dec 2010 01:20:26 +0100
From: "Nikos Vassiliadis" <nvass9573@gmx.com>
Message-ID: <20101230003041.25180@gmx.com>
MIME-Version: 1.0
To: freebsd-virtualization@freebsd.org
X-Authenticated: #46156728
X-Flags: 0001
X-Mailer: GMX.com Web Mailer
x-registered: 0
Content-Transfer-Encoding: 8bit
X-GMX-UID: ieUueaNOTiE+S8sqp2ZwZcx9ZUVSRBdD
Subject: inet6 panic
X-BeenThere: freebsd-virtualization@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Discussion of various virtualization techniques FreeBSD supports."
	<freebsd-virtualization.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-virtualization>,
	<mailto:freebsd-virtualization-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-virtualization>
List-Post: <mailto:freebsd-virtualization@freebsd.org>
List-Help: <mailto:freebsd-virtualization-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-virtualization>,
	<mailto:freebsd-virtualization-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 30 Dec 2010 00:30:44 -0000

Hi,

I bumped into this. The following script will cause
a kernel panic.

jail -c vnet persist name=h0
jail -c vnet persist name=h1
ifconfig epair10 create
ifconfig epair10a vnet h0
ifconfig epair10b vnet h1
jexec h0 ifconfig lo0 127.1
jexec h1 ifconfig lo0 127.1
jexec h0 ifconfig epair10a inet6 127::1
sleep 10
jexec h1 ifconfig epair10b inet6 127::1




Fatal trap 12: page fault while in kernel mode
cpuid = 0; apic id = 00
fault virtual address   = 0x5732aff0
fault code              = supervisor read, page not present
instruction pointer     = 0x20:0xc08b3f30
stack pointer           = 0x28:0xe67ad7e8
frame pointer           = 0x28:0xe67ad808
code segment            = base 0x0, limit 0xfffff, type 0x1b
                        = DPL 0, pres 1, def32 1, gran 1
processor eflags        = interrupt enabled, resume, IOPL = 0
current process         = 1999 (ifconfig)
Physical memory: 1007 MB
Dumping 59 MB: 44 28 12

Reading symbols from /boot/kernel/if_bridge.ko...Reading symbols from /boot/kernel/if_bridge.ko.symbols...done.
done.
Loaded symbols for /boot/kernel/if_bridge.ko
Reading symbols from /boot/kernel/bridgestp.ko...Reading symbols from /boot/kernel/bridgestp.ko.symbols...done.
done.
Loaded symbols for /boot/kernel/bridgestp.ko
Reading symbols from /boot/kernel/if_epair.ko...Reading symbols from /boot/kernel/if_epair.ko.symbols...done.
done.
Loaded symbols for /boot/kernel/if_epair.ko
#0  doadump () at pcpu.h:231
231     pcpu.h: No such file or directory.
        in pcpu.h
(kgdb) #0  doadump () at pcpu.h:231
#1  0xc04d8319 in db_fncall (dummy1=1, dummy2=0, dummy3=-1056936096,
    dummy4=0xe67ad580 "") at /usr/src/sys/ddb/db_command.c:548
#2  0xc04d8711 in db_command (last_cmdp=0xc0e32a5c, cmd_table=0x0, dopager=1)
    at /usr/src/sys/ddb/db_command.c:445
#3  0xc04d886a in db_command_loop () at /usr/src/sys/ddb/db_command.c:498
#4  0xc04da78d in db_trap (type=12, code=0) at /usr/src/sys/ddb/db_main.c:229
#5  0xc08f749e in kdb_trap (type=12, code=0, tf=0xe67ad7a8)
    at /usr/src/sys/kern/subr_kdb.c:546
#6  0xc0c1539f in trap_fatal (frame=0xe67ad7a8, eva=1462939632)
    at /usr/src/sys/i386/i386/trap.c:970
#7  0xc0c155d0 in trap_pfault (frame=0xe67ad7a8, usermode=0, eva=1462939632)
    at /usr/src/sys/i386/i386/trap.c:892
#8  0xc0c15bd5 in trap (frame=0xe67ad7a8) at /usr/src/sys/i386/i386/trap.c:567
#9  0xc0bfee2c in calltrap () at /usr/src/sys/i386/i386/exception.s:168
#10 0xc08b3f30 in _mtx_lock_spin_flags (m=0x5732afe0, opts=0,
    file=0xc0cfce20 "/usr/src/sys/kern/kern_timeout.c", line=333)
    at /usr/src/sys/kern/kern_mutex.c:234
#11 0xc08d682c in callout_lock (c=0xc41bb720)
    at /usr/src/sys/kern/kern_timeout.c:333
#12 0xc08d6e1f in callout_reset_on (c=0xc41bb720, to_ticks=100,
    ftn=0xc0a8bff0 <nd6_dad_timer>, arg=0xc41bb700, cpu=-559038242)
    at /usr/src/sys/kern/kern_timeout.c:697
#13 0xc0a8b768 in nd6_dad_starttimer (dp=Variable "dp" is not available.
)
    at /usr/src/sys/netinet6/nd6_nbr.c:1169
#14 0xc0a8c6c9 in nd6_dad_start (ifa=0xc455d600, delay=0)
    at /usr/src/sys/netinet6/nd6_nbr.c:1260
#15 0xc0a7059e in in6_update_ifa (ifp=0xc4339400, ifra=0xc4555700,
    ia=0xc455d600, flags=0) at /usr/src/sys/netinet6/in6.c:1165
#16 0xc0a717c0 in in6_control (so=0xc46159c0, cmd=2155374874,
    data=0xc4555700 "epair10b", ifp=0xc4339400, td=0xc458b2d0)
    at /usr/src/sys/netinet6/in6.c:563

Thanks for any insights, Nikos